RensvN
Lid-
Items
18 -
Registratiedatum
-
Laatst bezocht
RensvN's prestaties
-
Ik heb het programma gedownload maar als ik het opstart krijg ik een melding van 0 crashes en dat terwijl ik vanochtend nog een bluescreen heb gehad. Ik heb wel van een eerder foutmelding de berichtgeving gekopiërd. Dit kunt u vinden in mijn volgende post. ---------- Post toegevoegd om 11:17 ---------- Vorige post was om 11:16 ---------- Crash dump directory: C:\Windows\Minidump Crash dumps are enabled on your computer. On Fri 22-6-2012 7:36:46 GMT your computer crashed crash dump file: C:\Windows\Minidump\062212-30562-01.dmp This was probably caused by the following module: aswmonflt.sys (aswMonFlt+0x26C3) Bugcheck code: 0x50 (0xFFFFFFFFFFFFFFE8, 0x0, 0xFFFFFFFF8AC339CB, 0x0) Error: PAGE_FAULT_IN_NONPAGED_AREA file path: C:\Windows\system32\drivers\aswmonflt.sys product: avast! Antivirus System company: AVAST Software description: avast! File System Minifilter for Windows 2003/Vista Bug check description: This indicates that invalid system memory has been referenced. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: aswmonflt.sys (avast! File System Minifilter for Windows 2003/Vista, AVAST Software). Google query: aswmonflt.sys AVAST Software PAGE_FAULT_IN_NONPAGED_AREA On Fri 22-6-2012 7:36:46 GMT your computer crashed crash dump file: C:\Windows\memory.dmp This was probably caused by the following module: aswmonflt.sys (aswMonFlt+0x26C3) Bugcheck code: 0x50 (0xFFFFFFFFFFFFFFE8, 0x0, 0xFFFFFFFF8AC339CB, 0x0) Error: PAGE_FAULT_IN_NONPAGED_AREA file path: C:\Windows\system32\drivers\aswmonflt.sys product: avast! Antivirus System company: AVAST Software description: avast! File System Minifilter for Windows 2003/Vista Bug check description: This indicates that invalid system memory has been referenced. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: aswmonflt.sys (avast! File System Minifilter for Windows 2003/Vista, AVAST Software). Google query: aswmonflt.sys AVAST Software PAGE_FAULT_IN_NONPAGED_AREA On Fri 22-6-2012 6:05:40 GMT your computer crashed crash dump file: C:\Windows\Minidump\062212-17484-01.dmp This was probably caused by the following module: win32k.sys (win32k+0xC942A) Bugcheck code: 0x1000008E (0xFFFFFFFFC0000046, 0xFFFFFFFF82AD5940, 0xFFFFFFFF955C68B8, 0x0) Error: KERNEL_MODE_EXCEPTION_NOT_HANDLED_M file path: C:\Windows\system32\win32k.sys product: Besturingssysteem Microsoft® Windows® company: Microsoft Corporation description: Multi-User Win32-stuurprogramma Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system which cannot be identified at this time. On Mon 18-6-2012 6:22:09 GMT your computer crashed crash dump file: C:\Windows\Minidump\061812-20562-01.dmp This was probably caused by the following module: fltmgr.sys (fltmgr+0xA82F) Bugcheck code: 0x1000008E (0xFFFFFFFFC0000005, 0xFFFFFFFF8AE3B82F, 0xFFFFFFFFA95DAAA0, 0x0) Error: KERNEL_MODE_EXCEPTION_NOT_HANDLED_M file path: C:\Windows\system32\drivers\fltmgr.sys product: Besturingssysteem Microsoft® Windows® company: Microsoft Corporation description: Microsoft Bestandssysteemfilterbeheer Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system which cannot be identified at this time. On Sat 16-6-2012 14:34:44 GMT your computer crashed crash dump file: C:\Windows\Minidump\061612-19687-01.dmp This was probably caused by the following module: aswsnx.sys (aswSnx+0x8DC6) Bugcheck code: 0x1000008E (0xFFFFFFFFC0000005, 0xFFFFFFFF8AE2C0D2, 0xFFFFFFFFA80B05E4, 0x0) Error: KERNEL_MODE_EXCEPTION_NOT_HANDLED_M file path: C:\Windows\system32\drivers\aswsnx.sys product: avast! Antivirus System company: AVAST Software description: avast! Virtualization Driver Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: aswsnx.sys (avast! Virtualization Driver, AVAST Software). Google query: aswsnx.sys AVAST Software KERNEL_MODE_EXCEPTION_NOT_HANDLED_M On Sat 16-6-2012 14:32:57 GMT your computer crashed crash dump file: C:\Windows\Minidump\061612-20906-01.dmp This was probably caused by the following module: fltmgr.sys (fltmgr+0xA885) Bugcheck code: 0x1000008E (0xFFFFFFFFC0000005, 0xFFFFFFFF8AA0A885, 0xFFFFFFFF9C22F750, 0x0) Error: KERNEL_MODE_EXCEPTION_NOT_HANDLED_M file path: C:\Windows\system32\drivers\fltmgr.sys product: Besturingssysteem Microsoft® Windows® company: Microsoft Corporation description: Microsoft Bestandssysteemfilterbeheer Bug check description: This indicates that a kernel-mode program generated an exception which the error handler did not catch. This appears to be a typical software driver bug and is not likely to be caused by a hardware problem. The crash took place in a standard Microsoft module. Your system configuration may be incorrect. Possibly this problem is caused by another driver on your system which cannot be identified at this time. On Sat 9-6-2012 7:50:05 GMT your computer crashed crash dump file: C:\Windows\Minidump\060912-17406-01.dmp This was probably caused by the following module: ntkrnlpa.exe (nt+0x8E3BF) Bugcheck code: 0x1A (0x41287, 0x1C, 0x0, 0x0) Error: MEMORY_MANAGEMENT file path: C:\Windows\system32\ntkrnlpa.exe product: Microsoft® Windows® Operating System company: Microsoft Corporation description: NT Kernel & System Bug check description: This indicates that a severe memory management error occurred. This might be a case of memory corruption. More often memory corruption happens because of software errors in buggy drivers, not because of faulty RAM modules. The crash took place in the Windows kernel. Possibly this problem is caused by another driver which cannot be identified at this time. Conclusion -------------------------------------------------------------------------------- 7 crash dumps have been found and analyzed. 2 third party drivers have been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers: aswsnx.sys (avast! Virtualization Driver, AVAST Software) aswmonflt.sys (avast! File System Minifilter for Windows 2003/Vista, AVAST Software) If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems. Read the topic general suggestions for troubleshooting system crashes for more information. Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
-
Ik krijg de laatste tijd verschillende keren onderstaande melding: De pc valt uit en start opnieuw op. Kan iemand me vertellen hoe dit kan, wat dit is en wat ik moet doen. Alvast bedankt! Probleemhandtekening: Gebeurtenisnaam van probleem: BlueScreen Versie van besturingssysteem: 6.1.7601.2.1.0.256.1 Landinstelling-id: 1043 Aanvullende informatie over dit probleem: BCCode: 50 BCP1: FFFFFFE8 BCP2: 00000000 BCP3: 8AC339CB BCP4: 00000000 OS Version: 6_1_7601 Service Pack: 1_0 Product: 256_1 Bestanden die helpen bij het beschrijven van het probleem: C:\Windows\Minidump\062212-30562-01.dmp C:\Users\rens\AppData\Local\Temp\WER-59781-0.sysdata.xml Lees de onlineprivacyverklaring: Windows 7 Privacyverklaring - Microsoft Windows Als de onlineprivacyverklaring niet beschikbaar is, lees dan onze offlineprivacyverklaring: C:\Windows\system32\nl-NL\erofflps.txt
-
Bedankt, maar volgens mij heb ik onze website al eerder aangemeld , ik heb het nogmaals geprobeerd. Is er iemand anders die weet waar het aan kan liggen?
-
Heeft het niks te maken met de opbouw van de website of iets dergelijks? Wij werken met Joomla, heeft dit hier invloed op misschien? Sommige foto's staan namelijk al een jaar op de website, die zouden in mijn ogen gevonden moeten worden?!
-
Hoe kan het dat foto's van onze website niet te vinden zijn als je zoekt via google afbeeldingen. Wat moet je doen om foto's van je website in google afbeeldingen te krijgen? Alvast bedankt
-
Ik heb de stappen doorgelopen maar het probleem blijft bestaan. Deze melding blijf ik krijgen met computer 2, terwijl ik met computer 1 wel aan de bestanden van computer 2 kan via dit netwerk???
-
We hebben een thuisnetwerk ingesteld met windows 7 maar nu hebben we het volgende probleem. Ik kan wel aan de bestanden van de andere computer maar ik ben voor die andere computer niet zichtbaar in het thuisnetwerk. Wanneer deze het thuisnetwerk probeert te openen dan wordt er aangeven dat er zich geen andere computers in het netwerk bevinden. Wat gaat er fout?, volgens mij heb ik al mijn bestanden op delen staan etc. Misschien kan iemand helpen?, alle hulp is welkom.
-
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
Mooi dan denk ik dat ik hem kwijt ben!xD Moet ik nog iets opruimen?, bestanden of programma's die weg kunnen of juist niet? Alvast bedankt! -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
Hoe vind ik dit? -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
avg geeft geen melding meer, maar wanneer ik via start bij zoeken ''conhost'' invul dan loopt hij nog steeds.. Hoort dit? -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
momenteel even niet -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
Deleting files C:\WINDOWS\TEMP\conhost.exe not found [TABLE=width: 128] [TR] [TD]2011/08/30 17:02:08.0358 4344 [/TD] [TD]TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0453 4344[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0453 4344[/TD] [TD]SystemInfo:[/TD] [/TR] [TR] [TD=colspan: 2]2011/08/30 17:02:08.0454 4344[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]OS Version: 6.1.7600 ServicePack: 0.0[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Product type: Workstation[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]ComputerName: RENS-PC[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]UserName: rens[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Windows directory: C:\Windows[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]System windows directory: C:\Windows[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Processor architecture: Intel x86[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Number of processors: 2[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Page size: 0x1000[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]Boot type: Normal boot[/TD] [/TR] [TR] [TD]2011/08/30 17:02:08.0454 4344[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:09.0154 4344[/TD] [TD]Initialize success[/TD] [/TR] [TR] [TD]2011/08/30 17:02:10.0871 4232[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:10.0872 4232[/TD] [TD]Scan started[/TD] [/TR] [TR] [TD]2011/08/30 17:02:10.0872 4232[/TD] [TD]Mode: Manual; [/TD] [/TR] [TR] [TD]2011/08/30 17:02:10.0872 4232[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0512 4232[/TD] [TD]1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0552 4232[/TD] [TD]ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0621 4232[/TD] [TD]AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0703 4232[/TD] [TD]adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0755 4232[/TD] [TD]adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0809 4232[/TD] [TD]adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0894 4232[/TD] [TD]AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0963 4232[/TD] [TD]agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:11.0993 4232[/TD] [TD]aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0129 4232[/TD] [TD]ALCXWDM (7997b6f02cbda0e31fa18cc85871b938) C:\Windows\system32\drivers\RTKVAC.SYS[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0267 4232[/TD] [TD]aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0298 4232[/TD] [TD]amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0335 4232[/TD] [TD]amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0400 4232[/TD] [TD]AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0443 4232[/TD] [TD]AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0496 4232[/TD] [TD]amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\Windows\system32\drivers\amdsata.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0549 4232[/TD] [TD]amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0604 4232[/TD] [TD]amdxata (869e67d66be326a5a9159fba8746fa70) C:\Windows\system32\drivers\amdxata.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0657 4232[/TD] [TD]AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0784 4232[/TD] [TD]arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0826 4232[/TD] [TD]arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0920 4232[/TD] [TD]AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:12.0975 4232[/TD] [TD]atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0144 4232[/TD] [TD]atikmdag (712d8a95e45b070114c5309ada7358ff) C:\Windows\system32\DRIVERS\atikmdag.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0308 4232[/TD] [TD]AVGIDSDriver (2177e7448c1ecfb35a5db417603d205a) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0341 4232[/TD] [TD]AVGIDSEH (13256fc72fa5b3f6d6e8c5957e579b7c) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0364 4232[/TD] [TD]AVGIDSFilter (fa0685cc51de5cfd804e7deaa6488e0e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0419 4232[/TD] [TD]AVGIDSShim (f788b51100d0f40ea176798cce954a1a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0469 4232[/TD] [TD]Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0544 4232[/TD] [TD]Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0579 4232[/TD] [TD]Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0657 4232[/TD] [TD]Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0752 4232[/TD] [TD]b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0796 4232[/TD] [TD]b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0840 4232[/TD] [TD]Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0933 4232[/TD] [TD]blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:13.0988 4232[/TD] [TD]bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0020 4232[/TD] [TD]BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0062 4232[/TD] [TD]BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0158 4232[/TD] [TD]Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0182 4232[/TD] [TD]BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0230 4232[/TD] [TD]BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0256 4232[/TD] [TD]BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0305 4232[/TD] [TD]BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0493 4232[/TD] [TD]cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0535 4232[/TD] [TD]cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0581 4232[/TD] [TD]circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0645 4232[/TD] [TD]CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0748 4232[/TD] [TD]CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0770 4232[/TD] [TD]cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0811 4232[/TD] [TD]CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0841 4232[/TD] [TD]Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0931 4232[/TD] [TD]CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:14.0990 4232[/TD] [TD]crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0052 4232[/TD] [TD]CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0194 4232[/TD] [TD]DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0316 4232[/TD] [TD]discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0388 4232[/TD] [TD]Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0474 4232[/TD] [TD]Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0510 4232[/TD] [TD]Dot4Print (c25fea07a8e7767e8b89ab96a3b96519) C:\Windows\system32\DRIVERS\Dot4Prt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0535 4232[/TD] [TD]Dot4Scan (9f7de667c505ce6500becdd8e11644d7) C:\Windows\system32\DRIVERS\Dot4Scan.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0593 4232[/TD] [TD]dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0665 4232[/TD] [TD]drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:15.0715 4232[/TD] [TD]DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0031 4232[/TD] [TD]ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0200 4232[/TD] [TD]elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0237 4232[/TD] [TD]ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0311 4232[/TD] [TD]exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0343 4232[/TD] [TD]fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0390 4232[/TD] [TD]fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0440 4232[/TD] [TD]FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0497 4232[/TD] [TD]Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0527 4232[/TD] [TD]flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0568 4232[/TD] [TD]FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0619 4232[/TD] [TD]FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0649 4232[/TD] [TD]Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0698 4232[/TD] [TD]fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0779 4232[/TD] [TD]gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0862 4232[/TD] [TD]hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0923 4232[/TD] [TD]HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:16.0998 4232[/TD] [TD]HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0041 4232[/TD] [TD]HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0092 4232[/TD] [TD]HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0162 4232[/TD] [TD]HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0229 4232[/TD] [TD]HPFXBULK (9e3944a558ab84853ef985988e23a8a4) C:\Windows\system32\drivers\hpfxbulk.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0270 4232[/TD] [TD]HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0350 4232[/TD] [TD]HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0384 4232[/TD] [TD]hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0440 4232[/TD] [TD]i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0513 4232[/TD] [TD]iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\Windows\system32\drivers\iaStorV.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0587 4232[/TD] [TD]iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0638 4232[/TD] [TD]intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0695 4232[/TD] [TD]intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0740 4232[/TD] [TD]IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0776 4232[/TD] [TD]IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0821 4232[/TD] [TD]IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0884 4232[/TD] [TD]IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0916 4232[/TD] [TD]isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0951 4232[/TD] [TD]iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:17.0997 4232[/TD] [TD]kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0060 4232[/TD] [TD]kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0166 4232[/TD] [TD]KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0208 4232[/TD] [TD]KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0302 4232[/TD] [TD]lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0385 4232[/TD] [TD]LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0430 4232[/TD] [TD]LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0474 4232[/TD] [TD]LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0529 4232[/TD] [TD]LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0568 4232[/TD] [TD]luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0833 4232[/TD] [TD]megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0883 4232[/TD] [TD]MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0931 4232[/TD] [TD]Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:18.0989 4232[/TD] [TD]monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0025 4232[/TD] [TD]mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0112 4232[/TD] [TD]mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0160 4232[/TD] [TD]mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0196 4232[/TD] [TD]mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0229 4232[/TD] [TD]mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0283 4232[/TD] [TD]MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0349 4232[/TD] [TD]mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0400 4232[/TD] [TD]mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0450 4232[/TD] [TD]mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0484 4232[/TD] [TD]msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0537 4232[/TD] [TD]msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0622 4232[/TD] [TD]Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0664 4232[/TD] [TD]mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0762 4232[/TD] [TD]msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0842 4232[/TD] [TD]MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0875 4232[/TD] [TD]MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0899 4232[/TD] [TD]MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0936 4232[/TD] [TD]MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:19.0987 4232[/TD] [TD]mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0051 4232[/TD] [TD]MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0088 4232[/TD] [TD]MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0115 4232[/TD] [TD]Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0166 4232[/TD] [TD]NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0240 4232[/TD] [TD]NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0273 4232[/TD] [TD]NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0314 4232[/TD] [TD]NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0355 4232[/TD] [TD]Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0406 4232[/TD] [TD]NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0446 4232[/TD] [TD]NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0506 4232[/TD] [TD]NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0558 4232[/TD] [TD]NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0641 4232[/TD] [TD]nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0710 4232[/TD] [TD]nmwcd (712bc0c22ba00b2ba324c6b8df668ee7) C:\Windows\system32\drivers\ccdcmb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0781 4232[/TD] [TD]nmwcdc (7312987b6ccde6f6cee32c14bed1ca2e) C:\Windows\system32\drivers\ccdcmbo.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0821 4232[/TD] [TD]Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0861 4232[/TD] [TD]nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:20.0936 4232[/TD] [TD]Ntfs (187002ce05693c306f43c873f821381f) C:\Windows\system32\drivers\Ntfs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0023 4232[/TD] [TD]Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0068 4232[/TD] [TD]nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\Windows\system32\drivers\nvraid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0111 4232[/TD] [TD]nvstor (4520b63899e867f354ee012d34e11536) C:\Windows\system32\drivers\nvstor.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0232 4232[/TD] [TD]nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0280 4232[/TD] [TD]ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0362 4232[/TD] [TD]Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0436 4232[/TD] [TD]partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0467 4232[/TD] [TD]Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0540 4232[/TD] [TD]pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0567 4232[/TD] [TD]pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0597 4232[/TD] [TD]pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0680 4232[/TD] [TD]pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0714 4232[/TD] [TD]pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0760 4232[/TD] [TD]PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0929 4232[/TD] [TD]PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:21.0984 4232[/TD] [TD]Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0035 4232[/TD] [TD]Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0090 4232[/TD] [TD]ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0133 4232[/TD] [TD]ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0174 4232[/TD] [TD]QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0230 4232[/TD] [TD]RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0275 4232[/TD] [TD]RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0314 4232[/TD] [TD]Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0377 4232[/TD] [TD]RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0406 4232[/TD] [TD]RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0447 4232[/TD] [TD]rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0484 4232[/TD] [TD]rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0518 4232[/TD] [TD]RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0579 4232[/TD] [TD]RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0643 4232[/TD] [TD]RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0683 4232[/TD] [TD]RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0719 4232[/TD] [TD]RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0768 4232[/TD] [TD]rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0879 4232[/TD] [TD]rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0926 4232[/TD] [TD]RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:22.0971 4232[/TD] [TD]s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0073 4232[/TD] [TD]SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0124 4232[/TD] [TD]SAS***IL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SAS***IL.SYS[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0209 4232[/TD] [TD]sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0249 4232[/TD] [TD]scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0330 4232[/TD] [TD]secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0403 4232[/TD] [TD]Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0455 4232[/TD] [TD]Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0488 4232[/TD] [TD]sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0580 4232[/TD] [TD]sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0635 4232[/TD] [TD]sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0660 4232[/TD] [TD]sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0696 4232[/TD] [TD]sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0744 4232[/TD] [TD]sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0775 4232[/TD] [TD]SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0812 4232[/TD] [TD]SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0865 4232[/TD] [TD]Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:23.0933 4232[/TD] [TD]spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0040 4232[/TD] [TD]srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0131 4232[/TD] [TD]srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0166 4232[/TD] [TD]srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0223 4232[/TD] [TD]stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0268 4232[/TD] [TD]storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0333 4232[/TD] [TD]storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0368 4232[/TD] [TD]swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0484 4232[/TD] [TD]Tcpip (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\drivers\tcpip.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0568 4232[/TD] [TD]TCPIP6 (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\DRIVERS\tcpip.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0627 4232[/TD] [TD]tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0664 4232[/TD] [TD]TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0693 4232[/TD] [TD]TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0739 4232[/TD] [TD]tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0767 4232[/TD] [TD]TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0898 4232[/TD] [TD]tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:24.0952 4232[/TD] [TD]tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0011 4232[/TD] [TD]uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0043 4232[/TD] [TD]udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0150 4232[/TD] [TD]uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0184 4232[/TD] [TD]umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0226 4232[/TD] [TD]UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0329 4232[/TD] [TD]upperdev (7062ed67a10f1c83b2ab951736e24f11) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0364 4232[/TD] [TD]usbccgp (c31ae588e403042632dc796cf09e30b0) C:\Windows\system32\DRIVERS\usbccgp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0405 4232[/TD] [TD]usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0441 4232[/TD] [TD]usbehci (e4c436d914768ce965d5e659ba7eebd8) C:\Windows\system32\DRIVERS\usbehci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0559 4232[/TD] [TD]usbhub (bdcd7156ec37448f08633fd899823620) C:\Windows\system32\DRIVERS\usbhub.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0597 4232[/TD] [TD]usbohci (eb2d819a639015253c871cda09d91d58) C:\Windows\system32\drivers\usbohci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0653 4232[/TD] [TD]usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0765 4232[/TD] [TD]usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0837 4232[/TD] [TD]usbser (88701eca76145e2c011c0eeff0f7b70e) C:\Windows\system32\DRIVERS\usbser.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0885 4232[/TD] [TD]UsbserFilt (b76d8039f5b595c4ca551b3d5dd15a98) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:25.0947 4232[/TD] [TD]USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\Windows\system32\DRIVERS\USBSTOR.SYS[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0040 4232[/TD] [TD]usbuhci (22480bf4e5a09192e5e30ba4dde79fa4) C:\Windows\system32\DRIVERS\usbuhci.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0116 4232[/TD] [TD]vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0163 4232[/TD] [TD]vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0231 4232[/TD] [TD]VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0271 4232[/TD] [TD]vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0316 4232[/TD] [TD]viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0352 4232[/TD] [TD]ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0405 4232[/TD] [TD]viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0465 4232[/TD] [TD]vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0506 4232[/TD] [TD]VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0564 4232[/TD] [TD]volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0598 4232[/TD] [TD]volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0660 4232[/TD] [TD]volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0732 4232[/TD] [TD]vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0781 4232[/TD] [TD]vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0834 4232[/TD] [TD]WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0877 4232[/TD] [TD]WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:26.0900 4232[/TD] [TD]Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0014 4232[/TD] [TD]Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0088 4232[/TD] [TD]Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0218 4232[/TD] [TD]WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0259 4232[/TD] [TD]WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0392 4232[/TD] [TD]WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0484 4232[/TD] [TD]WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0596 4232[/TD] [TD]ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0677 4232[/TD] [TD]WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0751 4232[/TD] [TD]WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0830 4232[/TD] [TD]MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0855 4232[/TD] [TD]Boot (0x1200) (93a9cbaafa5ae8e3564bafb1e319b27c) \Device\Harddisk0\DR0\Partition0[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0890 4232[/TD] [TD]Boot (0x1200) (bbea1fa1500f8682ed1864157f0c84d3) \Device\Harddisk0\DR0\Partition1[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0900 4232[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0900 4232[/TD] [TD]Scan finished[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0900 4232[/TD] [TD]================================================================================[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0921 0960[/TD] [TD]Detected object count: 0[/TD] [/TR] [TR] [TD]2011/08/30 17:02:27.0921 0960[/TD] [TD]Actual detected object count: 0[/TD] [/TR] [/TABLE] -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
Ik zag dat ik een foutje had gemaakt, ik had alleen een snelkoppeling van Comofix op het bureaublad staan, dus ik heb het opnieuw gedaan. Ik weet niet of het verschil maakt, ik ga AVG nog eens aanzetten _____________________________________________________________________ ComboFix 11-08-30.01 - rens 30-08-2011 16:05:31.3.2 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.31.1043.18.3071.1811 [GMT 2:00] Gestart vanuit: c:\users\rens\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\rens\Desktop\CFScript.txt AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . Besmet exemplaar van c:\windows\system32\userinit.exe werd aangetroffen en gedesinfecteerd Hersteld exemplaar van - c:\windows\SoftwareDistribution\Download\18e2c83e42cc8f0cc17b5dbfaf982690\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2011-07-28 to 2011-08-30 )))))))))))))))))))))))))))))) . . 2011-08-30 14:16 . 2011-08-30 14:16 -------- d-----w- c:\users\Rens2\AppData\Local\temp 2011-08-30 14:16 . 2011-08-30 14:16 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-08-29 11:50 . 2011-08-29 11:50 -------- d-----w- c:\program files\Trend Micro 2011-08-29 06:57 . 2006-09-17 23:57 19456 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sugs1pc.dll 2011-08-26 06:58 . 2011-08-26 09:08 -------- d-----w- c:\program files\Mozilla Sunbird 2011-08-24 07:22 . 2011-08-24 07:22 -------- d-----w- c:\program files\Common Files\Corel 2011-08-24 06:17 . 2011-07-09 04:30 2048 ----a-w- c:\windows\system32\tzres.dll 2011-08-18 09:04 . 2011-08-18 09:45 -------- d-----w- c:\users\rens\.jenny 2011-08-17 12:27 . 2011-08-24 06:07 -------- d-----w- c:\program files\SUPERAntiSpyware 2011-08-15 14:18 . 2011-08-15 14:18 -------- d-----w- c:\users\rens\AppData\Local\PackageAware 2011-08-15 14:18 . 2011-08-15 14:19 -------- d-----w- c:\program files\PDF Password Remover v3.1 2011-08-15 13:20 . 2011-08-16 06:12 -------- d-----w- c:\program files\ElcomSoft 2011-08-09 14:01 . 2011-08-09 14:01 -------- d-----w- c:\windows\Sun 2011-08-05 13:24 . 2011-08-05 13:24 -------- d-----w- C:\antecwww 2011-08-05 10:32 . 2011-08-05 10:32 -------- d-----w- c:\users\rens\AppData\Local\TomTom 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom International B.V 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom HOME 2 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom DesktopSuite . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-06 17:52 . 2011-07-05 10:57 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 17:52 . 2011-07-05 10:57 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-06 06:39 . 2011-06-06 12:56 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-11 02:37 . 2011-07-17 08:14 2332672 ----a-w- c:\windows\system32\win32k.sys 2011-08-17 09:14 . 2011-03-25 09:06 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2011-05-30 09:33 2495816 ----a-w- c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2011-05-20 724536] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-04-22 247728] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-07-29 4599680] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X] "SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704] "AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2011-04-18 2334560] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Malwarebytes' Anti-Malware (reboot)"="c:\users\rens\Documents\Rens\gomeo\Malwarebytes' Anti-Malware\mbam.exe" [2011-07-06 1047656] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . c:\users\rens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-05-30 1025352] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-19 1343400] S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 22992] S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592] S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-01-07 248656] S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-04-04 297168] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2011-07-12 67664] S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-07-19 123264] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-04-18 7398752] S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520] S2 lxdx_device;lxdx_device;c:\windows\system32\lxdxcoms.exe [2009-10-16 589824] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592] S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-04-14 134480] S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 24144] S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-02-10 21968] S3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 . Inhoud van de 'Gedeelde Taken' map . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . . ------- Bijkomende Scan ------- . IE: Converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Geselecteerde koppelingen converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Koppelingdoel converteren naar Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Koppelingdoel converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Selectie converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm TCP: DhcpNameServer = 62.179.104.196 213.46.228.196 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll FF - ProfilePath - c:\users\rens\AppData\Roaming\Mozilla\Firefox\Profiles\382ib1qx.default\ FF - prefs.js: browser.startup.homepage - Google FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\progra~1\AVG\AVG10\avgchsvx.exe c:\program files\AVG\AVG10\avgnsx.exe c:\program files\AVG\AVG10\avgemcx.exe c:\windows\system32\conhost.exe c:\windows\system32\WUDFHost.exe c:\windows\system32\taskhost.exe c:\windows\system32\conhost.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\system32\sppsvc.exe c:\windows\TEMP\conhost.exe c:\windows\system32\conhost.exe c:\progra~1\AVG\AVG10\avgrsx.exe c:\program files\AVG\AVG10\avgcsrvx.exe . ************************************************************************** . Voltooingstijd: 2011-08-30 16:23:58 - machine werd herstart ComboFix-quarantined-files.txt 2011-08-30 14:23 ComboFix2.txt 2011-08-30 13:41 ComboFix3.txt 2011-08-30 07:33 . Pre-Run: 571.940.319.232 bytes beschikbaar Post-Run: 571.869.700.096 bytes beschikbaar . - - End Of File - - 7F92667D1FB4651BC4789FD9E5DB45F4 ---------- Post toegevoegd om 16:35 ---------- Vorige post was om 16:34 ---------- Als ik via start in de zoekbalk: ''conhost'' intyp dan krijg ik nog gewoon conhost.exe 6.1.7600.16850 . Dus volgens mij zit de boosdoener er nog? -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
ComboFix 11-08-30.01 - rens 30-08-2011 15:26:16.2.2 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.31.1043.18.3071.1706 [GMT 2:00] Gestart vanuit: c:\users\rens\Downloads\ComboFix.exe gebruikte Opdracht switches :: c:\users\rens\Desktop\CFScript.txt AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((( Bestanden Gemaakt van 2011-07-28 to 2011-08-30 )))))))))))))))))))))))))))))) . . 2011-08-30 13:37 . 2011-08-30 13:37 -------- d-----w- c:\users\Rens2\AppData\Local\temp 2011-08-30 13:37 . 2011-08-30 13:37 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-08-29 11:50 . 2011-08-29 11:50 -------- d-----w- c:\program files\Trend Micro 2011-08-29 06:57 . 2006-09-17 23:57 19456 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sugs1pc.dll 2011-08-26 06:58 . 2011-08-26 09:08 -------- d-----w- c:\program files\Mozilla Sunbird 2011-08-24 07:22 . 2011-08-24 07:22 -------- d-----w- c:\program files\Common Files\Corel 2011-08-24 06:17 . 2011-07-09 04:30 2048 ----a-w- c:\windows\system32\tzres.dll 2011-08-18 09:04 . 2011-08-18 09:45 -------- d-----w- c:\users\rens\.jenny 2011-08-17 12:27 . 2011-08-24 06:07 -------- d-----w- c:\program files\SUPERAntiSpyware 2011-08-15 14:18 . 2011-08-15 14:18 -------- d-----w- c:\users\rens\AppData\Local\PackageAware 2011-08-15 14:18 . 2011-08-15 14:19 -------- d-----w- c:\program files\PDF Password Remover v3.1 2011-08-15 13:20 . 2011-08-16 06:12 -------- d-----w- c:\program files\ElcomSoft 2011-08-09 14:01 . 2011-08-09 14:01 -------- d-----w- c:\windows\Sun 2011-08-05 13:24 . 2011-08-05 13:24 -------- d-----w- C:\antecwww 2011-08-05 10:32 . 2011-08-05 10:32 -------- d-----w- c:\users\rens\AppData\Local\TomTom 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom International B.V 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom HOME 2 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom DesktopSuite . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-06 17:52 . 2011-07-05 10:57 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 17:52 . 2011-07-05 10:57 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-06 06:39 . 2011-06-06 12:56 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-11 02:37 . 2011-07-17 08:14 2332672 ----a-w- c:\windows\system32\win32k.sys 2011-08-17 09:14 . 2011-03-25 09:06 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2011-05-30 09:33 2495816 ----a-w- c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2011-05-20 724536] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-04-22 247728] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-07-29 4599680] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X] "SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704] "AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2011-04-18 2334560] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Malwarebytes' Anti-Malware (reboot)"="c:\users\rens\Documents\Rens\gomeo\Malwarebytes' Anti-Malware\mbam.exe" [2011-07-06 1047656] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . c:\users\rens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-05-30 1025352] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-19 1343400] S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 22992] S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592] S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-01-07 248656] S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-04-04 297168] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2011-07-12 67664] S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-07-19 123264] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-04-18 7398752] S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520] S2 lxdx_device;lxdx_device;c:\windows\system32\lxdxcoms.exe [2009-10-16 589824] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592] S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-04-14 134480] S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 24144] S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-02-10 21968] S3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 . Inhoud van de 'Gedeelde Taken' map . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . . ------- Bijkomende Scan ------- . IE: Converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Geselecteerde koppelingen converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Koppelingdoel converteren naar Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Koppelingdoel converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Selectie converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm TCP: DhcpNameServer = 62.179.104.196 213.46.228.196 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll FF - ProfilePath - c:\users\rens\AppData\Roaming\Mozilla\Firefox\Profiles\382ib1qx.default\ FF - prefs.js: browser.startup.homepage - Google FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-08-30 15:41:20 ComboFix-quarantined-files.txt 2011-08-30 13:41 ComboFix2.txt 2011-08-30 07:33 . Pre-Run: 571.956.928.512 bytes beschikbaar Post-Run: 571.903.664.128 bytes beschikbaar . - - End Of File - - 8268701378EA163D9FF68F87ACD69C8F -
Trojaans paard Agent_r.AOB
RensvN reageerde op RensvN's topic in Archief Bestrijding malware & virussen
ComboFix 11-08-29.03 - rens 30-08-2011 9:16.1.2 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.31.1043.18.3071.1476 [GMT 2:00] Gestart vanuit: c:\users\rens\Downloads\ComboFix.exe AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\setup.lnk c:\windows\system32\icsxml c:\windows\system32\icsxml\cmnicfg.xml c:\windows\system32\icsxml\ipcfg.xml c:\windows\system32\icsxml\osinfo.xml c:\windows\system32\icsxml\potscfg.xml c:\windows\system32\icsxml\pppcfg.xml c:\windows\TEMP\conhost.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2011-07-28 to 2011-08-30 )))))))))))))))))))))))))))))) . . 2011-08-30 07:27 . 2011-08-30 07:27 -------- d-----w- c:\users\Rens2\AppData\Local\temp 2011-08-30 07:27 . 2011-08-30 07:27 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-08-29 11:50 . 2011-08-29 11:50 -------- d-----w- c:\program files\Trend Micro 2011-08-29 06:57 . 2006-09-17 23:57 19456 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\sugs1pc.dll 2011-08-26 06:58 . 2011-08-26 09:08 -------- d-----w- c:\program files\Mozilla Sunbird 2011-08-24 07:22 . 2011-08-24 07:22 -------- d-----w- c:\program files\Common Files\Corel 2011-08-24 06:17 . 2011-07-09 04:30 2048 ----a-w- c:\windows\system32\tzres.dll 2011-08-18 09:04 . 2011-08-18 09:45 -------- d-----w- c:\users\rens\.jenny 2011-08-17 12:27 . 2011-08-24 06:07 -------- d-----w- c:\program files\SUPERAntiSpyware 2011-08-15 14:18 . 2011-08-15 14:18 -------- d-----w- c:\users\rens\AppData\Local\PackageAware 2011-08-15 14:18 . 2011-08-15 14:19 -------- d-----w- c:\program files\PDF Password Remover v3.1 2011-08-15 13:20 . 2011-08-16 06:12 -------- d-----w- c:\program files\ElcomSoft 2011-08-09 14:01 . 2011-08-09 14:01 -------- d-----w- c:\windows\Sun 2011-08-05 13:24 . 2011-08-05 13:24 -------- d-----w- C:\antecwww 2011-08-05 10:32 . 2011-08-05 10:32 -------- d-----w- c:\users\rens\AppData\Local\TomTom 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom International B.V 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom HOME 2 2011-08-05 10:31 . 2011-08-05 10:31 -------- d-----w- c:\program files\TomTom DesktopSuite . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-07-06 17:52 . 2011-07-05 10:57 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-06 17:52 . 2011-07-05 10:57 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-06 06:39 . 2011-06-06 12:56 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-11 02:37 . 2011-07-17 08:14 2332672 ----a-w- c:\windows\system32\win32k.sys 2011-08-17 09:14 . 2011-03-25 09:06 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2011-05-30 09:33 2495816 ----a-w- c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816] . [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2011-05-20 724536] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-04-22 247728] "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-07-29 4599680] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X] "SoundMan"="SOUNDMAN.EXE" [2009-04-14 604704] "AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2011-04-18 2334560] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Malwarebytes' Anti-Malware (reboot)"="c:\users\rens\Documents\Rens\gomeo\Malwarebytes' Anti-Malware\mbam.exe" [2011-07-06 1047656] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . c:\users\rens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-05-30 1025352] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 136176] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-19 1343400] S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 22992] S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592] S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-01-07 248656] S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-04-04 297168] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2011-07-12 67664] S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-07-19 123264] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-04-18 7398752] S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520] S2 lxdx_device;lxdx_device;c:\windows\system32\lxdxcoms.exe [2009-10-16 589824] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592] S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-04-14 134480] S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 24144] S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-02-10 21968] S3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 . Inhoud van de 'Gedeelde Taken' map . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . 2011-08-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-03-14 13:00] . . ------- Bijkomende Scan ------- . IE: Converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Geselecteerde koppelingen converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Koppelingdoel converteren naar Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Koppelingdoel converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Selectie converteren naar bestaand PDF-bestand - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm TCP: DhcpNameServer = 62.179.104.196 213.46.228.196 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll FF - ProfilePath - c:\users\rens\AppData\Roaming\Mozilla\Firefox\Profiles\382ib1qx.default\ FF - prefs.js: browser.search.selectedEngine - Search-Results FF - prefs.js: browser.startup.homepage - Google FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?babsrc=toolbar2&q= FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . - - - - ORPHANS VERWIJDERD - - - - . WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) HKCU-Run-updateMgr - c:\program files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe AddRemove-MozBackup - c:\users\rens\Documents\Rens\MozBackup\Uninstall.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-08-30 09:33:55 ComboFix-quarantined-files.txt 2011-08-30 07:33 . Pre-Run: 572.343.328.768 bytes beschikbaar Post-Run: 572.347.035.648 bytes beschikbaar . - - End Of File - - 93A42A5D19BE7E5766C044E1CE0417C3 Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:35:33, on 30-8-2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16839) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\SOUNDMAN.EXE C:\Program Files\AVG\AVG10\avgtray.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe C:\Program Files\AVG\AVG10\avgui.exe C:\Program Files\AVG\AVG10\avgcfgex.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\notepad.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Users\rens\Documents\Rens\gomeo\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O8 - Extra context menu item: Converteren naar bestaand PDF-bestand - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Geselecteerde koppelingen converteren naar bestaand PDF-bestand - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Koppelingdoel converteren naar Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Koppelingdoel converteren naar bestaand PDF-bestand - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Selectie converteren naar bestaand PDF-bestand - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: lxdx_device - - C:\Windows\system32\lxdxcoms.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- End of file - 7114 bytes ---------- Post toegevoegd om 09:36 ---------- Vorige post was om 09:36 ---------- Volgens mij is hij ge-updated
OVER ONS
PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!