[Resolved] Can't get rid of Cpv.Srv-ad.co m Popups

[Virus of Fury]

Ls.

I have a lot of random pop ups lately since i returned from my holidays in Prague. Took my Laptop there and when i came back and i open up Soundcloud or facebook or Marktplaats.nl and type in a search box or something the moment i click it a pop up comes up also randomly when i open apps or press start on FB i get it.

Tried my Eset smart security but it dont nothing anymore, that is the day i came back i ran the smart scan and it found something but i didnt pay attention to it an thought all was fine... But i kept getting these pop ups which i never had before... strange me thinks!

I saw a few people on hte forums with kind of problem but theirs seem different then mine anyway i couldnt resolve my problem through those posts, which i normally can. This made me decide to post here, many many thanks in advance for trying to look at my problem!!

Here is de DDS:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by gebruiker at 17:39:42 on 2012-08-19
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.8100.4504 [GMT 2:00]
.
AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\spoolsv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
C:\Program Files (x86)\Bonjour\mDNSResponder.exe
C:\Windows\system32\dldwcoms.exe
C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Motorola\Bluetooth\obexsrv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
C:\Program Files\Motorola\Bluetooth\audiosrv.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Hotkey\Hotkey.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
C:\Program Files\Logitech\SetPointG\SetPointII.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Motorola\Bluetooth\btplayerctrl.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskmgr.exe
C:\Program Files\THQ\RelicCOH.exe
C:\Program Files\THQ\RelicDownloader\RelicDownloader.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
uRun: [Google Update] "C:\Users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Wisdom-soft ScreenHunter 5.1 Pro] 0
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
StartupFolder: C:\Users\GEBRUI~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Hotkey.lnk - C:\Program Files (x86)\Hotkey\Hotkey.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
IE: {7F9DB11C-E358-4ca6-A83D-ACC663939424} - {9999A076-A9E2-4C99-8A2B-632FC9429223} - C:\Program Files (x86)\Bonjour\ExplorerPlugin.dll
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15118/CTPID.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{27F64118-5A08-4A54-91CD-2F00C75E2442} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{27F64118-5A08-4A54-91CD-2F00C75E2442}\05F63796479667560234F6E6E656364796F6E6 : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{27F64118-5A08-4A54-91CD-2F00C75E2442}\255676765666962656270284F6F6664646F62707 : DhcpNameServer = 188.142.0.6 188.142.0.22 192.168.1.1
TCP: Interfaces\{27F64118-5A08-4A54-91CD-2F00C75E2442}\4586F6D637F6E6035444445313 : DhcpNameServer = 192.168.2.254
TCP: Interfaces\{49650819-33FC-4A26-A2F6-907315D11747} : DhcpNameServer = 212.47.0.4 193.85.2.100 212.47.1.4
TCP: Interfaces\{7D6B83F9-DB0C-46DB-92A5-2A8E0B8FAD9B} : DhcpNameServer = 192.168.0.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
{72853161-30C5-4D22-B7F9-0BBC1D38A37E}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
mRun-x64: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun-x64: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" /r
mRun-x64: [UpdReg] C:\Windows\UpdReg.EXE
mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun-x64: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [UnlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe"
IE-X64: {bd707fe6-39f6-4bda-9265-86a76719bdc5} - C:\Program Files\Motorola\Bluetooth\btmiesend.htm
AppInit_DLLs-X64: C:\Windows\SysWOW64\nvinit.dll
SEH-X64: {B5A7F190-DDA6-4420-B3BA-52453494E6CD}: Groove GFS Stub Execution Hook
.
============= SERVICES / DRIVERS ===============
.
R0 epfwwfp;epfwwfp;C:\Windows\system32\DRIVERS\epfwwfp.sys --> C:\Windows\system32\DRIVERS\epfwwfp.sys [?]
R0 nvpciflt;nvpciflt;C:\Windows\system32\DRIVERS\nvpciflt.sys --> C:\Windows\system32\DRIVERS\nvpciflt.sys [?]
R1 EpfwLWF;Epfw NDIS LightWeight Filter;C:\Windows\system32\DRIVERS\EpfwLWF.sys --> C:\Windows\system32\DRIVERS\EpfwLWF.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-7-27 63960]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files\Motorola\Bluetooth\obexsrv.exe [2012-5-17 679504]
R2 dldw_device;dldw_device;C:\Windows\system32\dldwcoms.exe -service --> C:\Windows\system32\dldwcoms.exe -service [?]
R2 eamonm;eamonm;C:\Windows\system32\DRIVERS\eamonm.sys --> C:\Windows\system32\DRIVERS\eamonm.sys [?]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2011-8-9 974944]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-3-11 13336]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-5-13 1997416]
R2 PowerBiosServer;PowerBiosServer;C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [2010-11-18 32768]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-3-11 2655768]
R3 automap;Automap MIDI Driver;C:\Windows\system32\DRIVERS\automap.sys --> C:\Windows\system32\DRIVERS\automap.sys [?]
R3 Bluetooth Device Manager;Bluetooth Device Manager;C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [2012-5-17 4150864]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files\Motorola\Bluetooth\audiosrv.exe [2012-5-17 1188944]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-5-17 1028096]
R3 huawei_enumerator;huawei_enumerator;C:\Windows\system32\DRIVERS\ew_jubusenum.sys --> C:\Windows\system32\DRIVERS\ew_jubusenum.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\system32\DRIVERS\nusb3hub.sys --> C:\Windows\system32\DRIVERS\nusb3hub.sys [?]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\system32\DRIVERS\nusb3xhc.sys --> C:\Windows\system32\DRIVERS\nusb3xhc.sys [?]
R3 NvnUsbAudio;Novation USB Audio Driver;C:\Windows\system32\DRIVERS\nvnusbaudio.sys --> C:\Windows\system32\DRIVERS\nvnusbaudio.sys [?]
R3 RL_DJIFIE2_MIDI;Digital Jockey - IE2 WDM MIDI Device;C:\Windows\system32\drivers\rldjif2m.sys --> C:\Windows\system32\drivers\rldjif2m.sys [?]
R3 RL_DJIFIE2_USB;usb-audio.de driver for Reloop Digital Jockey - IE2;C:\Windows\system32\Drivers\rldjif2u.sys --> C:\Windows\system32\Drivers\rldjif2u.sys [?]
R3 RL_DJIFIE2_WDM;Digital Jockey - IE2 WDM Audio;C:\Windows\system32\drivers\rldjif2a.sys --> C:\Windows\system32\drivers\rldjif2a.sys [?]
R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\Windows\system32\DRIVERS\rtl8192Ce.sys --> C:\Windows\system32\DRIVERS\rtl8192Ce.sys [?]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 btmaudio;Motorola Bluetooth Audio Service;C:\Windows\system32\drivers\btmaud.sys --> C:\Windows\system32\drivers\btmaud.sys [?]
S3 BTMCOM;Bluetooth Serial Port;C:\Windows\system32\Drivers\btmcom.sys --> C:\Windows\system32\Drivers\btmcom.sys [?]
S3 BTMUSB;Motorola Bluetooth Radio Service;C:\Windows\system32\Drivers\btmusb.sys --> C:\Windows\system32\Drivers\btmusb.sys [?]
S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-3-19 276248]
S3 ewusbnet;HUAWEI USB-NDIS miniport;C:\Windows\system32\DRIVERS\ewusbnet.sys --> C:\Windows\system32\DRIVERS\ewusbnet.sys [?]
S3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);C:\Windows\system32\DRIVERS\JME.sys --> C:\Windows\system32\DRIVERS\JME.sys [?]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]
S3 netw5v64;Stuurprogramma voor Intel(R) Wireless WiFi Link 5000 Series-adapter voor 64-bits Windows Vista;C:\Windows\system32\DRIVERS\netw5v64.sys --> C:\Windows\system32\DRIVERS\netw5v64.sys [?]
S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
S3 RTL8167;Realtek 8167 NT-stuurprogramma;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]
S4 .EsetTrialReset;Eset Trial Reset;

.
=============== Created Last 30 ================
.
2012-08-19 12:05:05   --------   d-----w-   C:\Program Files (x86)\ESET
2012-08-18 15:08:46   514560   ----a-w-   C:\Windows\SysWow64\qdvd.dll
2012-08-18 15:08:46   366592   ----a-w-   C:\Windows\System32\qdvd.dll
2012-08-17 19:36:52   9133488   ----a-w-   C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9875EDF8-63E0-4677-82EA-9100F1C061C2}\mpengine.dll
2012-08-15 10:05:50   552960   ----a-w-   C:\Windows\System32\drivers\bthport.sys
2012-08-15 10:03:08   751104   ----a-w-   C:\Windows\System32\win32spl.dll
2012-08-15 10:03:07   67072   ----a-w-   C:\Windows\splwow64.exe
2012-08-15 10:03:07   559104   ----a-w-   C:\Windows\System32\spoolsv.exe
2012-08-15 10:03:07   503808   ----a-w-   C:\Windows\System32\srcore.dll
2012-08-15 10:03:07   492032   ----a-w-   C:\Windows\SysWow64\win32spl.dll
2012-08-15 10:03:07   43008   ----a-w-   C:\Windows\SysWow64\srclient.dll
2012-08-15 10:03:06   59392   ----a-w-   C:\Windows\System32\browcli.dll
2012-08-15 10:03:06   41984   ----a-w-   C:\Windows\SysWow64\browcli.dll
2012-08-15 10:03:06   136704   ----a-w-   C:\Windows\System32\browser.dll
2012-08-15 10:03:05   3148800   ----a-w-   C:\Windows\System32\win32k.sys
2012-08-15 10:03:04   956928   ----a-w-   C:\Windows\System32\localspl.dll
.
==================== Find3M  ====================
.
2012-07-09 08:44:35   721758   ----a-w-   C:\Windows\unins000.exe
2012-06-29 03:56:34   2312704   ----a-w-   C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11   1392128   ----a-w-   C:\Windows\System32\wininet.dll
2012-06-29 03:48:07   1494528   ----a-w-   C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49   173056   ----a-w-   C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48   2382848   ----a-w-   C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58   1800704   ----a-w-   C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01   1129472   ----a-w-   C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59   1427968   ----a-w-   C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43   142848   ----a-w-   C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45   2382848   ----a-w-   C:\Windows\SysWow64\mshtml.tlb
2012-06-06 06:49:52   1070152   ----a-w-   C:\Windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06:16   2004480   ----a-w-   C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16   1881600   ----a-w-   C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54   1133568   ----a-w-   C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52   1390080   ----a-w-   C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52   1236992   ----a-w-   C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06   805376   ----a-w-   C:\Windows\SysWow64\cdosys.dll
2012-06-02 22:15:31   2622464   ----a-w-   C:\Windows\System32\wucltux.dll
2012-06-02 22:15:08   99840   ----a-w-   C:\Windows\System32\wudriver.dll
2012-06-02 13:19:42   186752   ----a-w-   C:\Windows\System32\wuwebv.dll
2012-06-02 13:15:12   36864   ----a-w-   C:\Windows\System32\wuapp.exe
2012-06-02 05:50:10   458704   ----a-w-   C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16   95600   ----a-w-   C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16   151920   ----a-w-   C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31   340992   ----a-w-   C:\Windows\System32\schannel.dll
2012-06-02 05:44:21   307200   ----a-w-   C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42   22016   ----a-w-   C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39   225280   ----a-w-   C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10   219136   ----a-w-   C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09   96768   ----a-w-   C:\Windows\SysWow64\sspicli.dll
2012-05-31 10:25:12   279656   ------w-   C:\Windows\System32\MpSigStub.exe
2010-03-31 09:36:24   81920   ----a-w-   C:\Program Files\devcon_amd64.exe
.
============= FINISH: 17:40:09,25 ===============


And the Attach:


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 6-7-2011 20:44:09
System Uptime: 19-8-2012 9:55:30 (8 hours ago)
.
Motherboard: CLEVO CO.                        |  | W150HRM                        
Processor: Intel(R) Core(TM) i7-2720QM CPU @ 2.20GHz | SOCKET 0 | 2201/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 465 GiB total, 352,825 GiB free.
D: is CDROM ()
G: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP152: 27-7-2012 21:29:48 - Windows Update
RP153: 31-7-2012 13:47:02 - Windows Update
RP154: 6-8-2012 18:59:54 - Windows Update
RP155: 10-8-2012 8:47:27 - Windows Update
RP156: 15-8-2012 12:03:13 - Windows Update
RP157: 18-8-2012 17:08:50 - Windows Update
.
==== Installed Programs ======================
.
AcusticaAudio Nebula3Free
Adobe Reader X (10.1.4) - Nederlands
AoA Audio Extractor
Atmosphere
Audacity 1.3.14 (Unicode)
Audio Damage DubStation VST v1.0.2.0
BiFilter v2.3
BisonCam
Bonjour
Catanya 1.0.1
CDXtract 4.5
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Company of Heroes
Company of Heroes - FAKEMSI
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DMGAudio Compassion 1.06
Dropbox
Effectrix
Elemental Audio Eqium VST RTAS v2.1.2
eLicenser Control
eReg
FabFilter Timeless VST RTAS v1.01
FilterBank v3.3
Google Chrome
Hotkey 3.3017
Huawei modem
Intel(R) C++ Redistributables for Windows* on IA-32
Intel(R) C++ Redistributables for Windows* on IA-64
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
iZotope Stutter Edit
JMicron Ethernet Adapter NDIS Driver
JMicron Flash Media Controller Driver
LAME v3.98.3 for Audacity
Live 8.1.4
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft PowerPoint Viewer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MyTomTom 3.2.0.700
Native Instruments Massive
Native Instruments Reaktor 5
Native Instruments Service Center
Native Instruments Skanner
Native Instruments Traktor
Native Instruments Traktor 2
NVIDIA PhysX
Ohm Force - Ohmicide VST
OhmForce Ohmygod VST2
Overloud BREVERB VST RTAS v1.1.1
Realtek High Definition Audio Driver
REALTEK Wireless LAN Driver
reFX Nexus VSTi RTAS v2.2.0
Renesas Electronics USB 3.0 Host Controller Driver
rgc:audio sfz VSTi v1.96
Rob Papen SubBoomBass 1.0.5 Multi-core
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2553431) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition
Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)
Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)
Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)
Simplo Video Camera
SoundHack Spectral Shapers VST RTAS v1.24
SSL Duende Native (32-bit) v3.6.6
THX TruStudio Pro
Tone2 Gladiator VSTi v2.2
Tone2 Warmverb multi-FX full
TreeSize Free V2.5
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
URS Classic Console Strip Pro VST RTAS v1.0
VirtualCloneDrive
Visual Studio C++ 10.0 Runtime
Vogue
WebCam Installer
WinRAR 4.00 (32-bit)
YAMAHA VST Plugin Final Master Trial
.
==== End Of File ===========================

[1972vet]

Greetings Virus of Fury and Welcome to our Forums,
 
Please disable the active protection component of your antivirus and antispyware programs by following the directions that apply Here.
...of those, many people overlook the Windows Defender since, for most, there is no icon for it in the system tray. Scroll through those directives above and look for this application specifically, to make certain it is disabled.

Please download combofix from This Webpage...and read through the instructions there for running the tool.

***Important Note***
Please read through the guidance on that web page carefully and thoroughly...and install the Recovery Console. Using this tool without the Recovery Console installed is NOT RECOMMENDED.

If you have Windows Vista or Windows 7, you can skip the recovery console step...in Vista/7 it's in the System Recovery Options menu. The System Recovery Options menu is on the Windows Vista or Windows 7 installation disc. If Windows doesn't start correctly, you can use these tools to repair startup problems.


The Windows Recovery Console will allow you to boot into a special recovery (repair) mode that is not otherwise available. This allows us to more easily help you should your computer have a problem after an attempted removal of malware.  It's a simple procedure that will only take a few moments.

Once installed, a blue screen prompt should appear that reads as follows:

The Recovery Console was successfully installed.

When you see that screen, please continue as follows:

• Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
• Click Yes to allow ComboFix to continue scanning for malware.
  

When the tool is finished, it will produce a log file for you. Please post that log back here on your next reply. Thanks!

Note:
Do not mouseclick combofix's window while it's running....that may cause the scan to stall

[Virus of Fury]

ComboFix 12-08-20.02 - gebruiker 20-08-2012  20:12:00.1.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.31.1043.18.8100.6337 [GMT 2:00]
Gestart vanuit: c:\users\gebruiker\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Nieuw herstelpunt werd aangemaakt
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\gebruiker\AppData\Roaming\Desktopicon
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2012-07-20 to 2012-08-20  ))))))))))))))))))))))))))))))
.
.
2012-08-20 18:15 . 2012-08-20 18:15   --------   d-----w-   c:\users\UpdatusUser\AppData\Local\temp
2012-08-20 18:15 . 2012-08-20 18:15   --------   d-----w-   c:\users\Default\AppData\Local\temp
2012-08-18 15:08 . 2012-05-04 11:00   366592   ----a-w-   c:\windows\system32\qdvd.dll
2012-08-18 15:08 . 2012-05-04 09:59   514560   ----a-w-   c:\windows\SysWow64\qdvd.dll
2012-08-18 15:08 . 2012-08-18 15:08   --------   d-----w-   c:\users\gebruiker\AppData\Roaming\InstallShield
2012-08-17 19:36 . 2012-06-29 10:04   9133488   ----a-w-   c:\programdata\Microsoft\Windows Defender\Definition Updates\{9875EDF8-63E0-4677-82EA-9100F1C061C2}\mpengine.dll
2012-08-15 10:05 . 2012-07-06 20:07   552960   ----a-w-   c:\windows\system32\drivers\bthport.sys
2012-08-15 10:03 . 2012-02-11 06:43   751104   ----a-w-   c:\windows\system32\win32spl.dll
2012-08-15 10:03 . 2012-05-05 08:36   503808   ----a-w-   c:\windows\system32\srcore.dll
2012-08-15 10:03 . 2012-05-05 07:46   43008   ----a-w-   c:\windows\SysWow64\srclient.dll
2012-08-15 10:03 . 2012-02-11 06:36   559104   ----a-w-   c:\windows\system32\spoolsv.exe
2012-08-15 10:03 . 2012-02-11 06:36   67072   ----a-w-   c:\windows\splwow64.exe
2012-08-15 10:03 . 2012-02-11 05:43   492032   ----a-w-   c:\windows\SysWow64\win32spl.dll
2012-08-15 10:03 . 2012-07-04 22:16   73216   ----a-w-   c:\windows\system32\netapi32.dll
2012-08-15 10:03 . 2012-07-04 22:13   59392   ----a-w-   c:\windows\system32\browcli.dll
2012-08-15 10:03 . 2012-07-04 22:13   136704   ----a-w-   c:\windows\system32\browser.dll
2012-08-15 10:03 . 2012-07-04 21:14   41984   ----a-w-   c:\windows\SysWow64\browcli.dll
2012-08-15 10:03 . 2012-07-18 18:15   3148800   ----a-w-   c:\windows\system32\win32k.sys
2012-08-15 10:03 . 2012-05-14 05:26   956928   ----a-w-   c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 10:03 . 2011-09-07 17:09   62134624   ----a-w-   c:\windows\system32\MRT.exe
2012-07-09 08:44 . 2012-07-09 08:50   721758   ----a-w-   c:\windows\unins000.exe
2012-06-09 05:43 . 2012-07-10 17:24   14172672   ----a-w-   c:\windows\system32\shell32.dll
2012-06-06 06:49 . 2012-06-06 06:49   1070152   ----a-w-   c:\windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06 . 2012-07-10 17:24   2004480   ----a-w-   c:\windows\system32\msxml6.dll
2012-06-06 06:06 . 2012-07-10 17:24   1881600   ----a-w-   c:\windows\system32\msxml3.dll
2012-06-06 06:02 . 2012-07-10 17:24   1133568   ----a-w-   c:\windows\system32\cdosys.dll
2012-06-06 05:05 . 2012-07-10 17:24   1390080   ----a-w-   c:\windows\SysWow64\msxml6.dll
2012-06-06 05:05 . 2012-07-10 17:24   1236992   ----a-w-   c:\windows\SysWow64\msxml3.dll
2012-06-06 05:03 . 2012-07-10 17:24   805376   ----a-w-   c:\windows\SysWow64\cdosys.dll
2012-06-02 22:19 . 2012-06-21 20:09   38424   ----a-w-   c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 20:09   2428952   ----a-w-   c:\windows\system32\wuaueng.dll
2012-06-02 22:19 . 2012-06-21 20:09   57880   ----a-w-   c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 20:09   44056   ----a-w-   c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 20:09   701976   ----a-w-   c:\windows\system32\wuapi.dll
2012-06-02 22:15 . 2012-06-21 20:09   2622464   ----a-w-   c:\windows\system32\wucltux.dll
2012-06-02 22:15 . 2012-06-21 20:09   99840   ----a-w-   c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 20:09   186752   ----a-w-   c:\windows\system32\wuwebv.dll
2012-06-02 13:15 . 2012-06-21 20:09   36864   ----a-w-   c:\windows\system32\wuapp.exe
2012-06-02 05:50 . 2012-07-10 17:24   458704   ----a-w-   c:\windows\system32\drivers\cng.sys
2012-06-02 05:48 . 2012-07-10 17:24   151920   ----a-w-   c:\windows\system32\drivers\ksecpkg.sys
2012-06-02 05:48 . 2012-07-10 17:24   95600   ----a-w-   c:\windows\system32\drivers\ksecdd.sys
2012-06-02 05:45 . 2012-07-10 17:24   340992   ----a-w-   c:\windows\system32\schannel.dll
2012-06-02 05:44 . 2012-07-10 17:24   307200   ----a-w-   c:\windows\system32\ncrypt.dll
2012-06-02 04:40 . 2012-07-10 17:24   22016   ----a-w-   c:\windows\SysWow64\secur32.dll
2012-06-02 04:40 . 2012-07-10 17:24   225280   ----a-w-   c:\windows\SysWow64\schannel.dll
2012-06-02 04:39 . 2012-07-10 17:24   219136   ----a-w-   c:\windows\SysWow64\ncrypt.dll
2012-06-02 04:34 . 2012-07-10 17:24   96768   ----a-w-   c:\windows\SysWow64\sspicli.dll
2012-05-31 10:25 . 2011-09-07 17:20   279656   ------w-   c:\windows\system32\MpSigStub.exe
2010-03-31 09:36 . 2010-03-31 09:36   81920   ----a-w-   c:\program files\devcon_amd64.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   94208   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   94208   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   94208   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Wisdom-soft ScreenHunter 5.1 Pro"="0" [X]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe" [2010-11-01 1374720]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
.
c:\users\gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech . Productregistratie.lnk - c:\program files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe [2009-11-16 517384]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Hotkey.lnk - c:\program files (x86)\Hotkey\Hotkey.exe [2010-11-29 2766336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 btmaudio;Motorola Bluetooth Audio Service;c:\windows\system32\drivers\btmaud.sys [2010-10-14 43008]
R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys [2010-06-30 52736]
R3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys [2010-12-16 486144]
R3 cphs;Intel(R) Content Protection HECI Service;c:\windows\SysWow64\IntelCpHeciSvc.exe [2012-03-19 276248]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2011-02-11 256000]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2010-12-06 174168]
R3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [2010-11-10 131600]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 netw5v64;Stuurprogramma voor Intel(R) Wireless WiFi Link 5000 Series-adapter voor 64-bits Windows Vista;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-09-08 1255736]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2009-02-13 14464]
R4 .EsetTrialReset;Eset Trial Reset;

S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 62496]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-12-26 25960]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 146432]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 38288]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe [2010-12-16 679504]
S2 dldw_device;dldw_device;c:\windows\system32\dldwcoms.exe [2008-05-02 1035776]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 202576]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2011-08-09 974944]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-12-26 1997416]
S2 PowerBiosServer;PowerBiosServer;c:\program files (x86)\Hotkey\PowerBiosServer.exe [2010-11-18 32768]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768]
S3 automap;Automap MIDI Driver;c:\windows\system32\DRIVERS\automap.sys [2012-04-19 18776]
S3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [2010-12-16 4150864]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe [2010-12-16 1188944]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-05-17 1028096]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2011-02-11 86016]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 181248]
S3 NvnUsbAudio;Novation USB Audio Driver;c:\windows\system32\DRIVERS\nvnusbaudio.sys [2011-10-05 53080]
S3 RL_DJIFIE2_MIDI;Digital Jockey - IE2 WDM MIDI Device;c:\windows\system32\drivers\rldjif2m.sys [2009-10-30 36416]
S3 RL_DJIFIE2_USB;usb-audio.de driver for Reloop Digital Jockey - IE2;c:\windows\system32\Drivers\rldjif2u.sys [2009-10-30 460864]
S3 RL_DJIFIE2_WDM;Digital Jockey - IE2 WDM Audio;c:\windows\system32\drivers\rldjif2a.sys [2009-10-30 49728]
S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2010-10-04 1102952]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2012-08-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3593670260-2180827866-1624307833-1002Core.job
- c:\users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-08 09:40]
.
2012-08-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3593670260-2180827866-1624307833-1002UA.job
- c:\users\gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-08 09:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   97792   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   97792   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   97792   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12   97792   ----a-w-   c:\users\gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-10-29 11544680]
"THXCfg64"="c:\windows\system32\THXCfg64.dll" [2010-09-14 25600]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-06-23 1744152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-03-19 170264]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-03-19 398616]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-03-19 439064]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-08-09 4030008]
"BTMTrayAgent"="c:\program files\Motorola\Bluetooth\btmshell.dll" [2010-12-28 21706320]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKLM-Run-UnlockerAssistant - c:\program files (x86)\Unlocker\UnlockerAssistant.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Audacity 1.3 Beta (Unicode)_is1 - f:\audacity 1.3 beta (unicode)\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\.EsetTrialReset]
"ImagePath"=""
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2012-08-20  20:17:47
ComboFix-quarantined-files.txt  2012-08-20 18:17
.
Pre-Run: 379.164.872.704 bytes beschikbaar
Post-Run: 380.917.751.808 bytes beschikbaar
.
- - End Of File - - 6B58E55B97DC6F51FA09A6AA0E8BB5F4

[1972vet]

Please download MiniToolBox and run it.

Check Flush DNS and Reset IE Proxy Settings check boxes.
Click Go...please copy/paste the results in your next reply.

Next, let's make sure your on board software is up to date:
Download FileHippo's Update Checker. Double-click the FHSetup.exe file to install it. When the install completes, you'll find the Update Checker shortcut on the desk top. Double-click on it and a scan begins with the results showing in your browser. Any software it finds to be out of date, will be presented in your browser. Just click on the download link provided there to download your software updates. Ignore the beta software unless you want that...during the scanner initialization, you can click the settings link, then click the results tab and check the box "Hide beta versions". After clicking the OK button, click the "Retry" link to continue the scan with those settings. Please remember to post back your results. Thanks!

[Virus of Fury]

MiniToolBox by Farbar  Version: 23-07-2012
Ran by gebruiker (administrator) on 21-08-2012 at 17:54:51
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-configuratie

De DNS-omzettingscache is leeggemaakt.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

**** End of log ****

[Virus of Fury]

Hi i did the two processen you described, above is the first update.

And i attached a print screen of the filehippo report, i couldnt update my chrome with the downloaded update yet. I clicked it it say u want to update i say yes but nothing happens.

[Virus of Fury]

O it was a beta update .... sry :)

[1972vet]

OK, so how's it behaving for you now?

[Virus of Fury]

Still the same i guess, i added a screen where u can see the pop ups.

I've found a site which describes a process to remove but not works case i cant find random.exe in my list.

(Web site link removed as untrusted. Research shows the site you posted is hosted in China. Users are cautioned not to have clicked the link while it was live...and apologies if any have already done so. If issues arise, for those few who may have clicked on the link which WAS included here live, please start your own thread and detail what issues you may be experiencing.

User Virus of Fury, please, I caution you, DO NOT post links to anything in this forum. Do NOT upload any attachments unless you are specifically asked to do so. Thanks for your cooperation and understanding.)
Edited by 72Vet

But it seems the same behaviour still as before and my anti virus dont find anything

...have you considered resetting Firefox? Does this issue occur for all browsers?

[Virus of Fury]

I am really sorry, didnt know that. I thought that the link to that site was helpfull. But it seems that it is another Bogus. I am really sorry of my behaviour wont do that again before it is asked!

[Virus of Fury]

I dont use Firefox actually, i use chrome is there a similar option on Chrome or shall i just try reinstall?

By the way i notoced a change in a game that i always like to play, i used to be able to play it with graphics on full but after the flush it started lagging! Is this a common side effect? it seems the switch between my intel desktop graphics and game graphics card is affected.

[1972vet]

I dont use Firefox actually, i use chrome is there a similar option on Chrome or shall i just try reinstall?

By the way i notoced a change in a game that i always like to play, i used to be able to play it with graphics on full but after the flush it started lagging! Is this a common side effect? it seems the switch between my intel desktop graphics and game graphics card is affected.

If reinstalling Chrome doesn't cause any heartburn for you then do it. Once you uninstall it thought,  you MUST also delete it's folder before you reinstall it. Are you seeing this behavior with Internet Explorer? I don't see any evidence that you should so I would imagine it relates to either some add-on for Chrome or perhaps something as simple as deleting the cache and removing cookies.

[Virus of Fury]

I think that was it, i uninstalled chrome and installed that new beta version and the problem seems to be gone for now  Many thanks for that!!! And sorry o have bothered u with this "simple"problem feel a bit stupid.

But still have this problem with this game Company of Heroes, after the combofix or the flush it started stuttering and it seems that it was triggered after the processes were done. At first it started stuttering, the fps i mean. i can play it on lowest settings fine but i'd like to play at full settings as before. It had a problem with installation before and this was like every setting which i changed was undone after i restarted the game everytime. Like if i changed graphic settings after a restart they would always appear as before the change in the same way. Now that problem seems gone i think but my performance dropped with a big big step... i cant seem to find my nvidia anymore

[1972vet]

I think that was it, i uninstalled chrome and installed that new beta version and the problem seems to be gone for now...
Uninstalling then reinstalling software often cures a myriad of ills.

But still have this problem with this game Company of Heroes, after the combofix or the flush it started stuttering and it seems that it was triggered after the processes were done... Now that problem seems gone i think but my performance dropped with a big big step...
Flushing DNS has no affect at all on the performance of any game. It merely removes from memory, any previously held domain name information. That "memory" data is the storage (or cache) of domain names as they relate to their Internet Protocol (IP) address.  The DNS cache is a system whereby a computer can connect to a web site in a shorter amount of time than it would if it had to look up the IP address for the particular web site. Caching these does save time, but the cache can also become corrupted or out of date and should be emptied from time to time. It only means that it may take another extra split second to connect to a web site while it has to look up the IP address for the domain name that was typed into the browser address bar...but would have nothing whatsoever to do with how your game performs.

i cant seem to find my nvidia anymore
...and I should say in response to this, that it should be in the same place it was the last time you accessed it, since we also did absolutely nothing with nVidia.

Are you having any other issues we can help with?

[Virus of Fury]

Ok, well i understand your points but i have to point to the fact that the moment after i did the processes u asked for dont recall which one but after that i played COH and my performance seemed to have gone down, i suppose going back to the previous recovery point does not make any difference right?

Would u suggest reinstalling the game? i should have done that earlier but the settings it was in were fine for me then... so i never did and right now it seems to remember if i change something which it didn't do before.

Also when i started the game in my taskbar it used to display an icon of my graphics card and of that it was in use, this seems gone now. I closed that once to see what happen but never saw it again when i started the game.