Yabui
-
Items
60 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door Yabui
-
Bug check string : IRQL_NOT_LESS_OR_EQUAL Bug check code : 0x0000000a caused by driver : ntoskrnl.exe caused by adres : ntoskrnl.exe+7f1c0 parameter 1 : 00000000`00000000 parameter 2 : 00000000`00000002 parameter 3 : 00000000`00000000 parameter 4 : fffff800`02c91442 Datum van crash 6/09 19:35
-
Ik kreeg deze foutmelding van windows, misschien iets te maken met die virus? Probleemhandtekening: Gebeurtenisnaam van probleem: BlueScreen Versie van besturingssysteem: 6.1.7601.2.1.0.768.3 Landinstelling-id: 2067 Aanvullende informatie over dit probleem: BCCode: a BCP1: 0000000000000000 BCP2: 0000000000000002 BCP3: 0000000000000000 BCP4: FFFFF80002C91442 OS Version: 6_1_7601 Service Pack: 1_0 Product: 768_1 Bestanden die helpen bij het beschrijven van het probleem: C:\Windows\Minidump\090612-10732-01.dmp C:\Users\Yannick\AppData\Local\Temp\WER-20482-0.sysdata.xml Lees de onlineprivacyverklaring: Windows 7 Privacyverklaring - Microsoft Windows Als de onlineprivacyverklaring niet beschikbaar is, lees dan onze offlineprivacyverklaring: C:\Windows\system32\nl-NL\erofflps.txt
-
Weer te euforisch, het is toch nog niet opgelost..
-
Volgens mij is het opgelost.Ik keek in mijn geschiedenis van bullguard en er stond een bestand in quarantaine(bijlage). Ik heb dat bestand verwijderd en tot nu toe nog geen last van gehad.
-
Emsisoft Emergency Kit - Versie 2.0 Laatste Update: 6/09/2012 11:38:51 Scaninstellingen: Scantype: Diepe scan Objecten: Rootkits, Geheugen, Sporen, C:\, E:\ Scan archieven: Aan ADS Scan: Aan Scan gestart: 6/09/2012 11:40:09 C:\Users\Yannick\Downloads\PISO5.1.rar -> Power.Software.PowerISO.v5.1.MULTILINGUAL.Incl.Keygen-Lz0\lzncycc1.zip -> linezer0.part1.rar -> Lz0\keygen.exe Ontdekt: possible-Threat.Keygen.LZ0!E2 C:\Users\Yannick\Downloads\PowerISO_4.2(1).rar -> PowerISO 4 Keygen.exe Ontdekt: not-a-virus.Keygen.PowerISO!E2 C:\Users\Yannick\Downloads\PowerISO_4.2.rar -> PowerISO 4 Keygen.exe Ontdekt: not-a-virus.Keygen.PowerISO!E2 C:\Users\Yannick\Downloads\PISO5.1.rar -> Power.Software.PowerISO.v5.1.MULTILINGUAL.Incl.Keygen-Lz0\lzncycc1.zip -> linezer0.part1.rar Ontdekt: possible-Threat.Keygen.LZ0!E2 C:\Users\Yannick\Downloads\PISO5.1.rar -> Power.Software.PowerISO.v5.1.MULTILINGUAL.Incl.Keygen-Lz0\lzncycc1.zip Ontdekt: possible-Threat.Keygen.LZ0!E2 C:\Users\Yannick\Desktop\0524_sr_dirt3_crack\SKIDROW crack files\SKIDROW.dll Ontdekt: Riskware.Crack!E2 C:\Users\Yannick\Desktop\0524_sr_dirt3_crack\SKIDROW crack files\paul.dll Ontdekt: Riskware.Crack!E2 C:\Users\Yannick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\71b4322e-3b50c80a -> ta\tb.class Ontdekt: Exploit.Java.CVE!E2 Gescand 554515 Gevonden 8 Scan geëindigd: 6/09/2012 12:01:53 Scantijd: 0:21:44 C:\Users\Yannick\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\71b4322e-3b50c80a -> ta\tb.class Verwijderd Exploit.Java.CVE!E2 C:\Users\Yannick\Desktop\0524_sr_dirt3_crack\SKIDROW crack files\SKIDROW.dll Verwijderd Riskware.Crack!E2 C:\Users\Yannick\Desktop\0524_sr_dirt3_crack\SKIDROW crack files\paul.dll Verwijderd Riskware.Crack!E2 C:\Users\Yannick\Downloads\PowerISO_4.2(1).rar -> PowerISO 4 Keygen.exe Verwijderd not-a-virus.Keygen.PowerISO!E2 C:\Users\Yannick\Downloads\PowerISO_4.2.rar -> PowerISO 4 Keygen.exe Verwijderd not-a-virus.Keygen.PowerISO!E2 C:\Users\Yannick\Downloads\PISO5.1.rar -> Power.Software.PowerISO.v5.1.MULTILINGUAL.Incl.Keygen-Lz0\lzncycc1.zip -> linezer0.part1.rar -> Lz0\keygen.exe Verwijderd possible-Threat.Keygen.LZ0!E2 Verwijderd 6
-
mvps.bat uitgevoerd maar geen resultaat Ik heb eens gekeken in de map : C:\windows\system32\drivers\etc. In de lijst vond ik bestandjes die aangemaakt zijn ongeveer de dag(3/09) wanneer ik die virus kreeg. Ik ben geen computerspecialist maar zijn dat eventueel kwaadaardige bestanden? Alvast bedankt!
-
Grrr, weer niets gevonden 00:01:35.0743 4140 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48 00:01:35.0996 4140 ============================================================ 00:01:35.0996 4140 Current date / time: 2012/09/06 00:01:35.0996 00:01:35.0996 4140 SystemInfo: 00:01:35.0996 4140 00:01:35.0996 4140 OS Version: 6.1.7601 ServicePack: 1.0 00:01:35.0996 4140 Product type: Workstation 00:01:35.0997 4140 ComputerName: YANNICK-PC 00:01:35.0997 4140 UserName: Yannick 00:01:35.0997 4140 Windows directory: C:\Windows 00:01:35.0998 4140 System windows directory: C:\Windows 00:01:35.0999 4140 Running under WOW64 00:01:35.0999 4140 Processor architecture: Intel x64 00:01:36.0001 4140 Number of processors: 4 00:01:36.0001 4140 Page size: 0x1000 00:01:36.0001 4140 Boot type: Normal boot 00:01:36.0001 4140 ============================================================ 00:01:39.0188 4140 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 00:01:39.0190 4140 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 00:01:39.0257 4140 ============================================================ 00:01:39.0258 4140 \Device\Harddisk0\DR0: 00:01:39.0260 4140 MBR partitions: 00:01:39.0260 4140 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000 00:01:39.0260 4140 \Device\Harddisk1\DR1: 00:01:39.0262 4140 MBR partitions: 00:01:39.0262 4140 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 00:01:39.0262 4140 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94DC800 00:01:39.0263 4140 ============================================================ 00:01:39.0267 4140 C: <-> \Device\Harddisk1\DR1\Partition2 00:01:39.0348 4140 E: <-> \Device\Harddisk0\DR0\Partition1 00:01:39.0348 4140 ============================================================ 00:01:39.0348 4140 Initialize success 00:01:39.0348 4140 ============================================================ 00:01:56.0704 2516 ============================================================ 00:01:56.0704 2516 Scan started 00:01:56.0704 2516 Mode: Manual; 00:01:56.0704 2516 ============================================================ 00:01:56.0797 2516 ================ Scan system memory ======================== 00:01:56.0797 2516 System memory - ok 00:01:56.0799 2516 ================ Scan services ============================= 00:01:56.0940 2516 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 00:01:56.0952 2516 1394ohci - ok 00:01:56.0991 2516 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 00:01:57.0016 2516 ACPI - ok 00:01:57.0030 2516 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 00:01:57.0041 2516 AcpiPmi - ok 00:01:57.0070 2516 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 00:01:57.0089 2516 AdobeARMservice - ok 00:01:57.0245 2516 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 00:01:57.0253 2516 AdobeFlashPlayerUpdateSvc - ok 00:01:57.0304 2516 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 00:01:57.0315 2516 adp94xx - ok 00:01:57.0341 2516 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 00:01:57.0354 2516 adpahci - ok 00:01:57.0381 2516 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 00:01:57.0391 2516 adpu320 - ok 00:01:57.0451 2516 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 00:01:57.0454 2516 AeLookupSvc - ok 00:01:57.0495 2516 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 00:01:57.0506 2516 AFD - ok 00:01:57.0515 2516 [ 7C0604FFC4366EE890BEB8DBB97B2169 ] AFW C:\Windows\system32\DRIVERS\afw.sys 00:01:57.0518 2516 AFW - ok 00:01:57.0534 2516 [ C1E054C08FD8876313ACC17683B3D1A6 ] afwcore C:\Windows\system32\DRIVERS\afwcore.sys 00:01:57.0542 2516 afwcore - ok 00:01:57.0551 2516 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 00:01:57.0555 2516 agp440 - ok 00:01:57.0563 2516 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 00:01:57.0567 2516 ALG - ok 00:01:57.0575 2516 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 00:01:57.0579 2516 aliide - ok 00:01:57.0585 2516 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 00:01:57.0588 2516 amdide - ok 00:01:57.0596 2516 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 00:01:57.0601 2516 AmdK8 - ok 00:01:57.0608 2516 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 00:01:57.0613 2516 AmdPPM - ok 00:01:57.0622 2516 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 00:01:57.0626 2516 amdsata - ok 00:01:57.0639 2516 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 00:01:57.0646 2516 amdsbs - ok 00:01:57.0653 2516 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 00:01:57.0655 2516 amdxata - ok 00:01:57.0665 2516 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 00:01:57.0670 2516 AppID - ok 00:01:57.0678 2516 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 00:01:57.0681 2516 AppIDSvc - ok 00:01:57.0688 2516 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 00:01:57.0691 2516 Appinfo - ok 00:01:57.0705 2516 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 00:01:57.0710 2516 arc - ok 00:01:57.0719 2516 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 00:01:57.0723 2516 arcsas - ok 00:01:57.0732 2516 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe 00:01:57.0736 2516 ASLDRService - ok 00:01:57.0741 2516 [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys 00:01:57.0750 2516 ASMMAP64 - ok 00:01:57.0755 2516 ASUSProcObsrv - ok 00:01:57.0765 2516 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 00:01:57.0767 2516 AsyncMac - ok 00:01:57.0775 2516 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 00:01:57.0777 2516 atapi - ok 00:01:57.0785 2516 [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe 00:01:57.0790 2516 ATKGFNEXSrv - ok 00:01:57.0797 2516 [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys 00:01:57.0806 2516 ATKWMIACPIIO - ok 00:01:57.0830 2516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 00:01:57.0845 2516 AudioEndpointBuilder - ok 00:01:57.0866 2516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 00:01:57.0875 2516 AudioSrv - ok 00:01:57.0885 2516 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 00:01:57.0890 2516 AxInstSV - ok 00:01:57.0909 2516 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 00:01:57.0921 2516 b06bdrv - ok 00:01:57.0933 2516 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 00:01:57.0941 2516 b57nd60a - ok 00:01:57.0954 2516 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 00:01:57.0959 2516 BDESVC - ok 00:01:57.0969 2516 [ 73F7E3E94E6122F0CB2968DB7F6A6855 ] BdSpy C:\Windows\system32\DRIVERS\BdSpy.sys 00:01:57.0973 2516 BdSpy - ok 00:01:57.0982 2516 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 00:01:57.0990 2516 Beep - ok 00:01:58.0018 2516 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 00:01:58.0038 2516 BFE - ok 00:01:58.0068 2516 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 00:01:58.0091 2516 BITS - ok 00:01:58.0102 2516 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 00:01:58.0106 2516 blbdrive - ok 00:01:58.0117 2516 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 00:01:58.0122 2516 bowser - ok 00:01:58.0131 2516 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 00:01:58.0134 2516 BrFiltLo - ok 00:01:58.0143 2516 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 00:01:58.0147 2516 BrFiltUp - ok 00:01:58.0157 2516 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 00:01:58.0176 2516 BridgeMP - ok 00:01:58.0187 2516 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 00:01:58.0193 2516 Browser - ok 00:01:58.0210 2516 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 00:01:58.0220 2516 Brserid - ok 00:01:58.0230 2516 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 00:01:58.0235 2516 BrSerWdm - ok 00:01:58.0244 2516 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 00:01:58.0248 2516 BrUsbMdm - ok 00:01:58.0257 2516 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 00:01:58.0262 2516 BrUsbSer - ok 00:01:58.0274 2516 [ 03481999118BB36F7BF4979BD436DA38 ] BsBackup C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll 00:01:58.0279 2516 BsBackup - ok 00:01:58.0296 2516 [ E37928809E692067388D16D610E2BF9F ] BsBhvScan C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe 00:01:58.0307 2516 BsBhvScan - ok 00:01:58.0321 2516 [ 751B210E8F2DAAC70FFCED2EA3DC4EE0 ] BsFileScan C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll 00:01:58.0329 2516 BsFileScan - ok 00:01:58.0351 2516 [ F7555FDC76244BDC08555CB9E22D0600 ] BsFire C:\Program Files\BullGuard Ltd\BullGuard\BsFire.dll 00:01:58.0368 2516 BsFire - ok 00:01:58.0389 2516 [ 73DC84EF5B24B159B7F6C2792D9C9C53 ] BsMailProxy C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy\BsMailProxy.dll 00:01:58.0403 2516 BsMailProxy - ok 00:01:58.0417 2516 [ F91A7F531EDF7BA4A80CB2178ECE54BB ] BsMain C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll 00:01:58.0426 2516 BsMain - ok 00:01:58.0438 2516 [ ABA92E74E5917DD1765D3D005A54325A ] BsScanner C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe 00:01:58.0445 2516 BsScanner - ok 00:01:58.0463 2516 [ 75EE63DA5FD88F04F2E5705A44A4179C ] BsUpdate C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe 00:01:58.0474 2516 BsUpdate - ok 00:01:58.0485 2516 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 00:01:58.0490 2516 BTHMODEM - ok 00:01:58.0506 2516 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 00:01:58.0512 2516 bthserv - ok 00:01:58.0517 2516 catchme - ok 00:01:58.0542 2516 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 00:01:58.0547 2516 cdfs - ok 00:01:58.0588 2516 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 00:01:58.0596 2516 cdrom - ok 00:01:58.0621 2516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 00:01:58.0629 2516 CertPropSvc - ok 00:01:58.0650 2516 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 00:01:58.0653 2516 circlass - ok 00:01:58.0680 2516 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 00:01:58.0691 2516 CLFS - ok 00:01:58.0748 2516 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 00:01:58.0756 2516 clr_optimization_v2.0.50727_32 - ok 00:01:58.0778 2516 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 00:01:58.0797 2516 clr_optimization_v2.0.50727_64 - ok 00:01:58.0831 2516 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 00:01:58.0850 2516 clr_optimization_v4.0.30319_32 - ok 00:01:58.0875 2516 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 00:01:58.0887 2516 clr_optimization_v4.0.30319_64 - ok 00:01:58.0901 2516 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 00:01:58.0904 2516 CmBatt - ok 00:01:58.0915 2516 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 00:01:58.0931 2516 cmdide - ok 00:01:58.0968 2516 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 00:01:58.0998 2516 CNG - ok 00:01:59.0016 2516 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 00:01:59.0018 2516 Compbatt - ok 00:01:59.0038 2516 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 00:01:59.0042 2516 CompositeBus - ok 00:01:59.0050 2516 COMSysApp - ok 00:01:59.0062 2516 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 00:01:59.0066 2516 crcdisk - ok 00:01:59.0091 2516 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll 00:01:59.0109 2516 CryptSvc - ok 00:01:59.0124 2516 [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys 00:01:59.0128 2516 CVirtA - ok 00:01:59.0241 2516 [ 66257CB4E4FB69887CDDC71663741435 ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe 00:01:59.0281 2516 CVPND - ok 00:01:59.0296 2516 [ CC8E52DAA9826064BA464DBE531F2BB5 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys 00:01:59.0301 2516 CVPNDRVA - ok 00:01:59.0321 2516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 00:01:59.0334 2516 DcomLaunch - ok 00:01:59.0346 2516 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 00:01:59.0354 2516 defragsvc - ok 00:01:59.0362 2516 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 00:01:59.0367 2516 DfsC - ok 00:01:59.0380 2516 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 00:01:59.0389 2516 Dhcp - ok 00:01:59.0397 2516 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 00:01:59.0400 2516 discache - ok 00:01:59.0410 2516 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 00:01:59.0414 2516 Disk - ok 00:01:59.0423 2516 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE C:\Windows\system32\DRIVERS\dne64x.sys 00:01:59.0426 2516 DNE - ok 00:01:59.0437 2516 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 00:01:59.0443 2516 Dnscache - ok 00:01:59.0455 2516 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 00:01:59.0463 2516 dot3svc - ok 00:01:59.0474 2516 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 00:01:59.0478 2516 DPS - ok 00:01:59.0485 2516 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 00:01:59.0489 2516 drmkaud - ok 00:01:59.0501 2516 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 00:01:59.0506 2516 dtsoftbus01 - ok 00:01:59.0534 2516 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 00:01:59.0550 2516 DXGKrnl - ok 00:01:59.0560 2516 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 00:01:59.0565 2516 EapHost - ok 00:01:59.0638 2516 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 00:01:59.0700 2516 ebdrv - ok 00:01:59.0709 2516 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 00:01:59.0713 2516 EFS - ok 00:01:59.0735 2516 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 00:01:59.0750 2516 ehRecvr - ok 00:01:59.0758 2516 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 00:01:59.0763 2516 ehSched - ok 00:01:59.0784 2516 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 00:01:59.0799 2516 elxstor - ok 00:01:59.0810 2516 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 00:01:59.0813 2516 ErrDev - ok 00:01:59.0839 2516 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 00:01:59.0849 2516 EventSystem - ok 00:01:59.0872 2516 [ 0D9297A4DF2E3D0DD16E80911976ECB7 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe 00:01:59.0904 2516 EvtEng - ok 00:01:59.0917 2516 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 00:01:59.0937 2516 exfat - ok 00:01:59.0950 2516 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 00:01:59.0972 2516 fastfat - ok 00:01:59.0999 2516 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 00:02:00.0017 2516 Fax - ok 00:02:00.0027 2516 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 00:02:00.0031 2516 fdc - ok 00:02:00.0040 2516 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 00:02:00.0044 2516 fdPHost - ok 00:02:00.0053 2516 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 00:02:00.0057 2516 FDResPub - ok 00:02:00.0067 2516 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 00:02:00.0071 2516 FileInfo - ok 00:02:00.0081 2516 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 00:02:00.0085 2516 Filetrace - ok 00:02:00.0094 2516 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 00:02:00.0098 2516 flpydisk - ok 00:02:00.0114 2516 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 00:02:00.0122 2516 FltMgr - ok 00:02:00.0160 2516 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 00:02:00.0187 2516 FontCache - ok 00:02:00.0197 2516 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 00:02:00.0203 2516 FontCache3.0.0.0 - ok 00:02:00.0212 2516 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 00:02:00.0217 2516 FsDepends - ok 00:02:00.0231 2516 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 00:02:00.0243 2516 Fs_Rec - ok 00:02:00.0256 2516 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 00:02:00.0263 2516 fvevol - ok 00:02:00.0274 2516 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 00:02:00.0289 2516 gagp30kx - ok 00:02:00.0322 2516 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 00:02:00.0361 2516 gpsvc - ok 00:02:00.0379 2516 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 00:02:00.0384 2516 hcw85cir - ok 00:02:00.0425 2516 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 00:02:00.0435 2516 HdAudAddService - ok 00:02:00.0456 2516 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 00:02:00.0464 2516 HDAudBus - ok 00:02:00.0501 2516 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 00:02:00.0509 2516 HidBatt - ok 00:02:00.0545 2516 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 00:02:00.0561 2516 HidBth - ok 00:02:00.0580 2516 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 00:02:00.0585 2516 HidIr - ok 00:02:00.0597 2516 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 00:02:00.0613 2516 hidserv - ok 00:02:00.0626 2516 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 00:02:00.0641 2516 HidUsb - ok 00:02:00.0651 2516 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 00:02:00.0663 2516 hkmsvc - ok 00:02:00.0696 2516 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 00:02:00.0706 2516 HomeGroupListener - ok 00:02:00.0719 2516 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 00:02:00.0727 2516 HomeGroupProvider - ok 00:02:00.0739 2516 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 00:02:00.0745 2516 HpSAMD - ok 00:02:00.0793 2516 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 00:02:00.0824 2516 HTTP - ok 00:02:00.0838 2516 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 00:02:00.0841 2516 hwpolicy - ok 00:02:00.0853 2516 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 00:02:00.0858 2516 i8042prt - ok 00:02:00.0925 2516 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 00:02:00.0933 2516 iaStor - ok 00:02:00.0978 2516 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 00:02:00.0997 2516 iaStorV - ok 00:02:01.0042 2516 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 00:02:01.0062 2516 idsvc - ok 00:02:01.0314 2516 [ 10BB0DC3361C9420CC1B0B2128BB89DB ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 00:02:01.0559 2516 igfx - ok 00:02:01.0576 2516 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 00:02:01.0581 2516 iirsp - ok 00:02:01.0610 2516 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 00:02:01.0632 2516 IKEEXT - ok 00:02:01.0651 2516 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 00:02:01.0660 2516 IntcDAud - ok 00:02:01.0676 2516 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 00:02:01.0681 2516 intelide - ok 00:02:01.0692 2516 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 00:02:01.0694 2516 intelppm - ok 00:02:01.0706 2516 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 00:02:01.0713 2516 IPBusEnum - ok 00:02:01.0722 2516 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 00:02:01.0727 2516 IpFilterDriver - ok 00:02:01.0747 2516 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 00:02:01.0763 2516 iphlpsvc - ok 00:02:01.0781 2516 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 00:02:01.0786 2516 IPMIDRV - ok 00:02:01.0797 2516 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 00:02:01.0802 2516 IPNAT - ok 00:02:01.0811 2516 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 00:02:01.0815 2516 IRENUM - ok 00:02:01.0825 2516 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 00:02:01.0829 2516 isapnp - ok 00:02:01.0844 2516 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 00:02:01.0853 2516 iScsiPrt - ok 00:02:01.0863 2516 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 00:02:01.0866 2516 kbdclass - ok 00:02:01.0875 2516 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 00:02:01.0879 2516 kbdhid - ok 00:02:01.0887 2516 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 00:02:01.0891 2516 KeyIso - ok 00:02:01.0900 2516 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 00:02:01.0905 2516 KSecDD - ok 00:02:01.0916 2516 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 00:02:01.0921 2516 KSecPkg - ok 00:02:01.0930 2516 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 00:02:01.0934 2516 ksthunk - ok 00:02:01.0951 2516 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 00:02:01.0964 2516 KtmRm - ok 00:02:01.0975 2516 [ A4A9CA24E54E81C6C3E469EAEB4B3F42 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys 00:02:01.0979 2516 L1C - ok 00:02:01.0995 2516 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 00:02:02.0006 2516 LanmanServer - ok 00:02:02.0023 2516 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 00:02:02.0031 2516 LanmanWorkstation - ok 00:02:02.0044 2516 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 00:02:02.0048 2516 lltdio - ok 00:02:02.0064 2516 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 00:02:02.0076 2516 lltdsvc - ok 00:02:02.0099 2516 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 00:02:02.0103 2516 lmhosts - ok 00:02:02.0135 2516 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 00:02:02.0145 2516 LSI_FC - ok 00:02:02.0164 2516 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 00:02:02.0169 2516 LSI_SAS - ok 00:02:02.0186 2516 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 00:02:02.0194 2516 LSI_SAS2 - ok 00:02:02.0206 2516 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 00:02:02.0212 2516 LSI_SCSI - ok 00:02:02.0227 2516 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 00:02:02.0231 2516 luafv - ok 00:02:02.0247 2516 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 00:02:02.0256 2516 Mcx2Svc - ok 00:02:02.0266 2516 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 00:02:02.0271 2516 megasas - ok 00:02:02.0293 2516 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 00:02:02.0302 2516 MegaSR - ok 00:02:02.0316 2516 [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 00:02:02.0319 2516 MEIx64 - ok 00:02:02.0341 2516 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 00:02:02.0346 2516 MMCSS - ok 00:02:02.0355 2516 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 00:02:02.0362 2516 Modem - ok 00:02:02.0377 2516 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 00:02:02.0378 2516 monitor - ok 00:02:02.0403 2516 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 00:02:02.0407 2516 mouclass - ok 00:02:02.0428 2516 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 00:02:02.0434 2516 mouhid - ok 00:02:02.0459 2516 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 00:02:02.0465 2516 mountmgr - ok 00:02:02.0485 2516 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 00:02:02.0492 2516 MozillaMaintenance - ok 00:02:02.0506 2516 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 00:02:02.0515 2516 mpio - ok 00:02:02.0528 2516 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 00:02:02.0533 2516 mpsdrv - ok 00:02:02.0587 2516 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 00:02:02.0610 2516 MpsSvc - ok 00:02:02.0624 2516 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 00:02:02.0634 2516 MRxDAV - ok 00:02:02.0646 2516 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 00:02:02.0653 2516 mrxsmb - ok 00:02:02.0669 2516 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 00:02:02.0678 2516 mrxsmb10 - ok 00:02:02.0688 2516 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 00:02:02.0701 2516 mrxsmb20 - ok 00:02:02.0720 2516 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 00:02:02.0723 2516 msahci - ok 00:02:02.0737 2516 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 00:02:02.0753 2516 msdsm - ok 00:02:02.0787 2516 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 00:02:02.0795 2516 MSDTC - ok 00:02:02.0820 2516 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 00:02:02.0830 2516 Msfs - ok 00:02:02.0838 2516 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 00:02:02.0841 2516 mshidkmdf - ok 00:02:02.0849 2516 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 00:02:02.0851 2516 msisadrv - ok 00:02:02.0861 2516 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 00:02:02.0868 2516 MSiSCSI - ok 00:02:02.0875 2516 msiserver - ok 00:02:02.0884 2516 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 00:02:02.0888 2516 MSKSSRV - ok 00:02:02.0894 2516 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 00:02:02.0897 2516 MSPCLOCK - ok 00:02:02.0904 2516 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 00:02:02.0907 2516 MSPQM - ok 00:02:02.0920 2516 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 00:02:02.0942 2516 MsRPC - ok 00:02:02.0953 2516 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 00:02:02.0955 2516 mssmbios - ok 00:02:02.0961 2516 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 00:02:02.0965 2516 MSTEE - ok 00:02:02.0972 2516 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 00:02:02.0975 2516 MTConfig - ok 00:02:02.0983 2516 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 00:02:02.0986 2516 Mup - ok 00:02:03.0002 2516 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 00:02:03.0016 2516 napagent - ok 00:02:03.0029 2516 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 00:02:03.0038 2516 NativeWifiP - ok 00:02:03.0062 2516 [ 6D8FCDD5BB3B676EF58FA234073492C6 ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe 00:02:03.0083 2516 NBService - ok 00:02:03.0110 2516 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys 00:02:03.0130 2516 NDIS - ok 00:02:03.0139 2516 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 00:02:03.0143 2516 NdisCap - ok 00:02:03.0150 2516 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 00:02:03.0153 2516 NdisTapi - ok 00:02:03.0161 2516 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 00:02:03.0165 2516 Ndisuio - ok 00:02:03.0176 2516 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 00:02:03.0181 2516 NdisWan - ok 00:02:03.0189 2516 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 00:02:03.0202 2516 NDProxy - ok 00:02:03.0210 2516 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 00:02:03.0213 2516 NetBIOS - ok 00:02:03.0224 2516 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 00:02:03.0231 2516 NetBT - ok 00:02:03.0238 2516 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 00:02:03.0240 2516 Netlogon - ok 00:02:03.0253 2516 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 00:02:03.0263 2516 Netman - ok 00:02:03.0280 2516 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 00:02:03.0292 2516 netprofm - ok 00:02:03.0324 2516 [ F1814E62EB6E50472AFC9903525ECEC1 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys 00:02:03.0342 2516 netr28x - ok 00:02:03.0350 2516 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 00:02:03.0355 2516 NetTcpPortSharing - ok 00:02:03.0363 2516 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 00:02:03.0367 2516 nfrd960 - ok 00:02:03.0380 2516 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll 00:02:03.0389 2516 NlaSvc - ok 00:02:03.0404 2516 [ 060DAF68493AD7ADF104413E5A62AFA8 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe 00:02:03.0410 2516 NMIndexingService - ok 00:02:03.0422 2516 [ 510755C17F4AA13605412961F58884B5 ] NovaShieldFilterDriver C:\Windows\system32\DRIVERS\NSKernel.sys 00:02:03.0427 2516 NovaShieldFilterDriver - ok 00:02:03.0435 2516 [ 440469E8505744CCAA3BA294306258AE ] NovaShieldTDIDriver C:\Windows\system32\DRIVERS\NSNetmon.sys 00:02:03.0438 2516 NovaShieldTDIDriver - ok 00:02:03.0445 2516 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 00:02:03.0456 2516 Npfs - ok 00:02:03.0463 2516 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 00:02:03.0467 2516 nsi - ok 00:02:03.0475 2516 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 00:02:03.0478 2516 nsiproxy - ok 00:02:03.0522 2516 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 00:02:03.0555 2516 Ntfs - ok 00:02:03.0562 2516 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 00:02:03.0569 2516 Null - ok 00:02:03.0911 2516 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 00:02:04.0348 2516 nvlddmkm - ok 00:02:04.0376 2516 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys 00:02:04.0378 2516 nvpciflt - ok 00:02:04.0389 2516 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 00:02:04.0399 2516 nvraid - ok 00:02:04.0413 2516 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 00:02:04.0430 2516 nvstor - ok 00:02:04.0469 2516 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc C:\Windows\system32\nvvsvc.exe 00:02:04.0488 2516 nvsvc - ok 00:02:04.0523 2516 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 00:02:04.0565 2516 nvUpdatusService - ok 00:02:04.0581 2516 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 00:02:04.0618 2516 nv_agp - ok 00:02:04.0638 2516 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 00:02:04.0649 2516 odserv - ok 00:02:04.0658 2516 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 00:02:04.0662 2516 ohci1394 - ok 00:02:04.0672 2516 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 00:02:04.0677 2516 ose - ok 00:02:04.0692 2516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 00:02:04.0702 2516 p2pimsvc - ok 00:02:04.0718 2516 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 00:02:04.0730 2516 p2psvc - ok 00:02:04.0739 2516 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 00:02:04.0743 2516 Parport - ok 00:02:04.0751 2516 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 00:02:04.0756 2516 partmgr - ok 00:02:04.0766 2516 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 00:02:04.0774 2516 PcaSvc - ok 00:02:04.0786 2516 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 00:02:04.0792 2516 pci - ok 00:02:04.0799 2516 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 00:02:04.0803 2516 pciide - ok 00:02:04.0813 2516 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 00:02:04.0820 2516 pcmcia - ok 00:02:04.0827 2516 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 00:02:04.0830 2516 pcw - ok 00:02:04.0849 2516 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 00:02:04.0864 2516 PEAUTH - ok 00:02:04.0936 2516 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 00:02:04.0941 2516 PerfHost - ok 00:02:04.0987 2516 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 00:02:05.0023 2516 pla - ok 00:02:05.0042 2516 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 00:02:05.0056 2516 PlugPlay - ok 00:02:05.0068 2516 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 00:02:05.0076 2516 PNRPAutoReg - ok 00:02:05.0091 2516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 00:02:05.0098 2516 PNRPsvc - ok 00:02:05.0119 2516 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 00:02:05.0132 2516 PolicyAgent - ok 00:02:05.0148 2516 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 00:02:05.0156 2516 Power - ok 00:02:05.0166 2516 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 00:02:05.0172 2516 PptpMiniport - ok 00:02:05.0181 2516 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 00:02:05.0187 2516 Processor - ok 00:02:05.0199 2516 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 00:02:05.0207 2516 ProfSvc - ok 00:02:05.0217 2516 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 00:02:05.0222 2516 ProtectedStorage - ok 00:02:05.0232 2516 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 00:02:05.0239 2516 Psched - ok 00:02:05.0281 2516 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 00:02:05.0316 2516 ql2300 - ok 00:02:05.0329 2516 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 00:02:05.0335 2516 ql40xx - ok 00:02:05.0348 2516 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 00:02:05.0358 2516 QWAVE - ok 00:02:05.0368 2516 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 00:02:05.0373 2516 QWAVEdrv - ok 00:02:05.0381 2516 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 00:02:05.0385 2516 RasAcd - ok 00:02:05.0395 2516 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 00:02:05.0399 2516 RasAgileVpn - ok 00:02:05.0409 2516 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 00:02:05.0416 2516 RasAuto - ok 00:02:05.0428 2516 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 00:02:05.0434 2516 Rasl2tp - ok 00:02:05.0449 2516 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 00:02:05.0461 2516 RasMan - ok 00:02:05.0472 2516 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 00:02:05.0478 2516 RasPppoe - ok 00:02:05.0488 2516 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 00:02:05.0492 2516 RasSstp - ok 00:02:05.0507 2516 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 00:02:05.0516 2516 rdbss - ok 00:02:05.0526 2516 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 00:02:05.0530 2516 rdpbus - ok 00:02:05.0540 2516 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 00:02:05.0543 2516 RDPCDD - ok 00:02:05.0556 2516 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 00:02:05.0559 2516 RDPENCDD - ok 00:02:05.0574 2516 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 00:02:05.0577 2516 RDPREFMP - ok 00:02:05.0590 2516 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 00:02:05.0613 2516 RDPWD - ok 00:02:05.0626 2516 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 00:02:05.0633 2516 rdyboost - ok 00:02:05.0651 2516 [ A448D11593938F061073F72BC172D466 ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe 00:02:05.0687 2516 RegSrvc - ok 00:02:05.0710 2516 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 00:02:05.0730 2516 RemoteAccess - ok 00:02:05.0754 2516 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 00:02:05.0765 2516 RemoteRegistry - ok 00:02:05.0801 2516 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 00:02:05.0811 2516 RpcEptMapper - ok 00:02:05.0838 2516 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 00:02:05.0843 2516 RpcLocator - ok 00:02:05.0887 2516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 00:02:05.0900 2516 RpcSs - ok 00:02:05.0923 2516 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 00:02:05.0930 2516 rspndr - ok 00:02:05.0952 2516 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 00:02:05.0955 2516 SamSs - ok 00:02:05.0984 2516 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 00:02:05.0989 2516 sbp2port - ok 00:02:06.0002 2516 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 00:02:06.0030 2516 SCardSvr - ok 00:02:06.0040 2516 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 00:02:06.0046 2516 scfilter - ok 00:02:06.0087 2516 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 00:02:06.0130 2516 Schedule - ok 00:02:06.0166 2516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 00:02:06.0169 2516 SCPolicySvc - ok 00:02:06.0184 2516 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 00:02:06.0191 2516 SDRSVC - ok 00:02:06.0202 2516 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 00:02:06.0218 2516 secdrv - ok 00:02:06.0227 2516 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 00:02:06.0235 2516 seclogon - ok 00:02:06.0264 2516 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 00:02:06.0285 2516 SENS - ok 00:02:06.0331 2516 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 00:02:06.0338 2516 SensrSvc - ok 00:02:06.0364 2516 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 00:02:06.0370 2516 Serenum - ok 00:02:06.0379 2516 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 00:02:06.0385 2516 Serial - ok 00:02:06.0393 2516 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 00:02:06.0397 2516 sermouse - ok 00:02:06.0420 2516 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 00:02:06.0427 2516 SessionEnv - ok 00:02:06.0435 2516 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 00:02:06.0438 2516 sffdisk - ok 00:02:06.0445 2516 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 00:02:06.0449 2516 sffp_mmc - ok 00:02:06.0456 2516 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 00:02:06.0459 2516 sffp_sd - ok 00:02:06.0466 2516 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 00:02:06.0470 2516 sfloppy - ok 00:02:06.0483 2516 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 00:02:06.0492 2516 SharedAccess - ok 00:02:06.0507 2516 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 00:02:06.0519 2516 ShellHWDetection - ok 00:02:06.0527 2516 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 00:02:06.0530 2516 SiSRaid2 - ok 00:02:06.0541 2516 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 00:02:06.0546 2516 SiSRaid4 - ok 00:02:06.0555 2516 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 00:02:06.0560 2516 Smb - ok 00:02:06.0575 2516 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 00:02:06.0580 2516 SNMPTRAP - ok 00:02:06.0588 2516 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 00:02:06.0597 2516 spldr - ok 00:02:06.0617 2516 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 00:02:06.0633 2516 Spooler - ok 00:02:06.0706 2516 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 00:02:06.0770 2516 sppsvc - ok 00:02:06.0781 2516 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 00:02:06.0786 2516 sppuinotify - ok 00:02:06.0802 2516 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 00:02:06.0813 2516 srv - ok 00:02:06.0829 2516 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 00:02:06.0838 2516 srv2 - ok 00:02:06.0847 2516 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 00:02:06.0853 2516 srvnet - ok 00:02:06.0863 2516 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 00:02:06.0870 2516 SSDPSRV - ok 00:02:06.0878 2516 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 00:02:06.0884 2516 SstpSvc - ok 00:02:06.0890 2516 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 00:02:06.0895 2516 stexstor - ok 00:02:06.0915 2516 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 00:02:06.0931 2516 stisvc - ok 00:02:06.0942 2516 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 00:02:06.0944 2516 swenum - ok 00:02:06.0961 2516 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 00:02:06.0975 2516 swprv - ok 00:02:07.0017 2516 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 00:02:07.0055 2516 SysMain - ok 00:02:07.0063 2516 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 00:02:07.0070 2516 TabletInputService - ok 00:02:07.0082 2516 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 00:02:07.0092 2516 TapiSrv - ok 00:02:07.0100 2516 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 00:02:07.0107 2516 TBS - ok 00:02:07.0151 2516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 00:02:07.0188 2516 Tcpip - ok 00:02:07.0230 2516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 00:02:07.0257 2516 TCPIP6 - ok 00:02:07.0270 2516 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 00:02:07.0273 2516 tcpipreg - ok 00:02:07.0284 2516 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 00:02:07.0287 2516 TDPIPE - ok 00:02:07.0295 2516 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 00:02:07.0298 2516 TDTCP - ok 00:02:07.0308 2516 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 00:02:07.0312 2516 tdx - ok 00:02:07.0320 2516 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 00:02:07.0323 2516 TermDD - ok 00:02:07.0345 2516 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 00:02:07.0363 2516 TermService - ok 00:02:07.0372 2516 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 00:02:07.0377 2516 Themes - ok 00:02:07.0386 2516 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 00:02:07.0389 2516 THREADORDER - ok 00:02:07.0397 2516 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 00:02:07.0404 2516 TrkWks - ok 00:02:07.0417 2516 [ D5F502C6B2E4FA6B125C01448E7A01AB ] Trufos C:\Windows\system32\DRIVERS\Trufos.sys 00:02:07.0423 2516 Trufos - ok 00:02:07.0443 2516 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 00:02:07.0449 2516 TrustedInstaller - ok 00:02:07.0472 2516 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 00:02:07.0476 2516 tssecsrv - ok 00:02:07.0494 2516 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 00:02:07.0501 2516 TsUsbFlt - ok 00:02:07.0515 2516 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 00:02:07.0522 2516 TsUsbGD - ok 00:02:07.0545 2516 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 00:02:07.0550 2516 tunnel - ok 00:02:07.0568 2516 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 00:02:07.0589 2516 uagp35 - ok 00:02:07.0611 2516 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 00:02:07.0620 2516 udfs - ok 00:02:07.0671 2516 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 00:02:07.0676 2516 UI0Detect - ok 00:02:07.0693 2516 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 00:02:07.0707 2516 uliagpkx - ok 00:02:07.0729 2516 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 00:02:07.0742 2516 umbus - ok 00:02:07.0752 2516 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 00:02:07.0756 2516 UmPass - ok 00:02:07.0776 2516 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 00:02:07.0798 2516 upnphost - ok 00:02:07.0820 2516 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 00:02:07.0824 2516 usbccgp - ok 00:02:07.0851 2516 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 00:02:07.0855 2516 usbcir - ok 00:02:07.0866 2516 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 00:02:07.0869 2516 usbehci - ok 00:02:07.0885 2516 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 00:02:07.0893 2516 usbhub - ok 00:02:07.0901 2516 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 00:02:07.0905 2516 usbohci - ok 00:02:07.0915 2516 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 00:02:07.0919 2516 usbprint - ok 00:02:07.0952 2516 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 00:02:07.0957 2516 usbscan - ok 00:02:08.0006 2516 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 00:02:08.0026 2516 USBSTOR - ok 00:02:08.0040 2516 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 00:02:08.0044 2516 usbuhci - ok 00:02:08.0087 2516 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 00:02:08.0102 2516 usbvideo - ok 00:02:08.0111 2516 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 00:02:08.0132 2516 UxSms - ok 00:02:08.0139 2516 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 00:02:08.0142 2516 VaultSvc - ok 00:02:08.0149 2516 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 00:02:08.0152 2516 vdrvroot - ok 00:02:08.0168 2516 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 00:02:08.0182 2516 vds - ok 00:02:08.0188 2516 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 00:02:08.0191 2516 vga - ok 00:02:08.0197 2516 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 00:02:08.0200 2516 VgaSave - ok 00:02:08.0211 2516 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 00:02:08.0217 2516 vhdmp - ok 00:02:08.0222 2516 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 00:02:08.0225 2516 viaide - ok 00:02:08.0232 2516 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 00:02:08.0236 2516 volmgr - ok 00:02:08.0248 2516 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 00:02:08.0256 2516 volmgrx - ok 00:02:08.0266 2516 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 00:02:08.0272 2516 volsnap - ok 00:02:08.0290 2516 [ 3B98AB9849754CB88265111422441DF7 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe 00:02:08.0303 2516 vpnagent - ok 00:02:08.0309 2516 [ 13E6D95E7AC67ABB7A1196557EF8849F ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys 00:02:08.0313 2516 vpnva - ok 00:02:08.0321 2516 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 00:02:08.0326 2516 vsmraid - ok 00:02:08.0361 2516 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 00:02:08.0402 2516 VSS - ok 00:02:08.0411 2516 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 00:02:08.0415 2516 vwifibus - ok 00:02:08.0426 2516 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 00:02:08.0431 2516 vwififlt - ok 00:02:08.0449 2516 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 00:02:08.0462 2516 W32Time - ok 00:02:08.0476 2516 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 00:02:08.0481 2516 WacomPen - ok 00:02:08.0491 2516 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 00:02:08.0496 2516 WANARP - ok 00:02:08.0504 2516 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 00:02:08.0507 2516 Wanarpv6 - ok 00:02:08.0544 2516 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 00:02:08.0575 2516 WatAdminSvc - ok 00:02:08.0619 2516 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 00:02:08.0657 2516 wbengine - ok 00:02:08.0671 2516 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 00:02:08.0681 2516 WbioSrvc - ok 00:02:08.0699 2516 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 00:02:08.0712 2516 wcncsvc - ok 00:02:08.0721 2516 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 00:02:08.0728 2516 WcsPlugInService - ok 00:02:08.0738 2516 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 00:02:08.0742 2516 Wd - ok 00:02:08.0765 2516 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 00:02:08.0782 2516 Wdf01000 - ok 00:02:08.0792 2516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 00:02:08.0798 2516 WdiServiceHost - ok 00:02:08.0805 2516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 00:02:08.0810 2516 WdiSystemHost - ok 00:02:08.0825 2516 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 00:02:08.0836 2516 WebClient - ok 00:02:08.0849 2516 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 00:02:08.0859 2516 Wecsvc - ok 00:02:08.0872 2516 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 00:02:08.0878 2516 wercplsupport - ok 00:02:08.0889 2516 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 00:02:08.0895 2516 WerSvc - ok 00:02:08.0904 2516 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 00:02:08.0907 2516 WfpLwf - ok 00:02:08.0916 2516 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 00:02:08.0920 2516 WIMMount - ok 00:02:08.0926 2516 WinDefend - ok 00:02:08.0941 2516 WinHttpAutoProxySvc - ok 00:02:08.0965 2516 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 00:02:08.0973 2516 Winmgmt - ok 00:02:09.0026 2516 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 00:02:09.0073 2516 WinRM - ok 00:02:09.0115 2516 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 00:02:09.0139 2516 Wlansvc - ok 00:02:09.0200 2516 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 00:02:09.0262 2516 wlidsvc - ok 00:02:09.0276 2516 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 00:02:09.0277 2516 WmiAcpi - ok 00:02:09.0322 2516 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 00:02:09.0335 2516 wmiApSrv - ok 00:02:09.0351 2516 WMPNetworkSvc - ok 00:02:09.0378 2516 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 00:02:09.0386 2516 WPCSvc - ok 00:02:09.0414 2516 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 00:02:09.0420 2516 WPDBusEnum - ok 00:02:09.0440 2516 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 00:02:09.0443 2516 ws2ifsl - ok 00:02:09.0484 2516 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll 00:02:09.0492 2516 wscsvc - ok 00:02:09.0548 2516 WSearch - ok 00:02:09.0667 2516 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 00:02:09.0728 2516 wuauserv - ok 00:02:09.0743 2516 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 00:02:09.0752 2516 WudfPf - ok 00:02:09.0794 2516 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 00:02:09.0813 2516 WUDFRd - ok 00:02:09.0825 2516 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 00:02:09.0835 2516 wudfsvc - ok 00:02:09.0852 2516 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 00:02:09.0865 2516 WwanSvc - ok 00:02:09.0887 2516 ================ Scan global =============================== 00:02:09.0900 2516 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 00:02:09.0912 2516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 00:02:09.0931 2516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 00:02:09.0941 2516 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 00:02:09.0955 2516 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 00:02:09.0964 2516 [Global] - ok 00:02:09.0965 2516 ================ Scan MBR ================================== 00:02:09.0969 2516 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 00:02:09.0980 2516 \Device\Harddisk0\DR0 - ok 00:02:09.0986 2516 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1 00:02:10.0081 2516 \Device\Harddisk1\DR1 - ok 00:02:10.0084 2516 ================ Scan VBR ================================== 00:02:10.0088 2516 [ 8397D6020769503B6B53E88EC47F6C5B ] \Device\Harddisk0\DR0\Partition1 00:02:10.0091 2516 \Device\Harddisk0\DR0\Partition1 - ok 00:02:10.0096 2516 [ EB55CCF85C55764C8F79A8FF5F830B4B ] \Device\Harddisk1\DR1\Partition1 00:02:10.0100 2516 \Device\Harddisk1\DR1\Partition1 - ok 00:02:10.0105 2516 [ AD82CC29DDA228C2B447722FB7FF0F83 ] \Device\Harddisk1\DR1\Partition2 00:02:10.0107 2516 \Device\Harddisk1\DR1\Partition2 - ok 00:02:10.0108 2516 ============================================================ 00:02:10.0108 2516 Scan finished 00:02:10.0108 2516 ============================================================ 00:02:10.0123 1268 Detected object count: 0 00:02:10.0123 1268 Actual detected object count: 0
-
Helaas, het probleem is er nog steeds. Zijn er nog andere alternatieven voor mijn pc te scannen?
-
Scan zojuist uitgevoerd. Ik heb nog niets gemerkt of ik nog wordt doorverwezen , dat zal ik morgen al dan niet opmerken. Alvast bedankt! ComboFix 12-09-04.02 - Yannick 05/09/2012 1:47.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.4008.2256 [GMT 2:00] Gestart vanuit: c:\users\Yannick\Desktop\ComboFix.exe AV: BullGuard Antivirus *Enabled/Updated* {504FFF66-3028-EB7E-2E60-62B19ADD791C} FW: BullGuard Firewall *Disabled* {68747E43-7A47-EA26-053F-CB84640E3E67} SP: BullGuard Antispyware *Enabled/Updated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk c:\programdata\Roaming c:\programdata\Roaming\Intel\Wireless\Settings\Settings.ini c:\windows\SysWow64\tmp4290.tmp c:\windows\SysWow64\tmp42A1.tmp . . (((((((((((((((((((( Bestanden Gemaakt van 2012-08-04 to 2012-09-04 )))))))))))))))))))))))))))))) . . 2012-09-04 23:54 . 2012-09-04 23:54 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-09-04 23:54 . 2012-09-04 23:54 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-09-03 23:19 . 2012-09-03 23:19 388096 ----a-r- c:\users\Yannick\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-09-03 23:19 . 2012-09-03 23:19 -------- d-----w- c:\program files (x86)\Trend Micro 2012-09-02 22:11 . 2012-09-02 22:10 100216 ----a-w- c:\windows\SysWow64\BgGamingMonitor.dll 2012-09-02 22:11 . 2012-09-02 22:10 111064 ----a-w- c:\windows\system32\BgGamingMonitor.dll 2012-09-02 22:11 . 2012-09-02 22:10 54624 ----a-w- c:\windows\SysWow64\BGLsp.dll 2012-09-02 22:11 . 2012-09-02 22:10 63840 ----a-w- c:\windows\system32\BGLsp.dll 2012-09-02 21:49 . 2012-09-04 23:36 -------- d-----w- c:\users\Yannick\AppData\Roaming\BullGuard 2012-09-02 21:48 . 2012-09-04 23:53 -------- d-----w- c:\programdata\BullGuard 2012-09-02 21:48 . 2012-09-02 21:48 -------- d-----w- c:\program files\Common Files\BullGuard Ltd 2012-09-02 21:48 . 2012-09-02 21:48 -------- d-----w- c:\program files\BullGuard Ltd 2012-09-02 21:45 . 2012-09-02 21:51 -------- d-----w- c:\users\Yannick\AppData\Roaming\BatteryBar 2012-09-02 21:45 . 2012-09-02 21:45 -------- d-----w- c:\program files\BatteryBar 2012-09-02 00:25 . 2012-09-02 00:25 126976 --sha-r- c:\windows\SysWow64\C_863J.dll 2012-09-01 14:37 . 2012-09-01 14:37 -------- d-----w- c:\program files (x86)\Common Files\Java 2012-09-01 14:36 . 2012-09-01 14:36 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2012-09-01 14:36 . 2012-09-01 14:36 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2012-09-01 12:47 . 2012-09-01 12:47 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3AB719B7-4B80-4185-B819-DD1A0AC02225}\offreg.dll 2012-09-01 08:27 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3AB719B7-4B80-4185-B819-DD1A0AC02225}\mpengine.dll 2012-08-30 20:07 . 2012-08-30 20:07 -------- d-----w- c:\users\Yannick\AppData\Roaming\Software Inspection Library 2012-08-30 16:54 . 2012-08-30 16:54 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll 2012-08-30 12:41 . 2012-08-30 12:41 -------- d-----w- c:\users\Yannick\AppData\Roaming\Subtitle Edit 2012-08-30 12:41 . 2012-08-30 12:41 -------- d-----w- c:\program files (x86)\Subtitle Edit 2012-08-30 12:29 . 2012-08-30 12:30 -------- d-----w- c:\program files (x86)\SubSync 2012-08-30 12:29 . 2012-08-30 12:29 249856 ------w- c:\windows\Setup1.exe 2012-08-30 12:29 . 2012-08-30 12:29 73216 ----a-w- c:\windows\ST6UNST.EXE 2012-08-16 22:26 . 2012-09-03 15:28 -------- d-----w- c:\users\Yannick\AppData\Roaming\Xfire 2012-08-16 22:26 . 2012-08-31 17:41 -------- d-----w- c:\programdata\Xfire 2012-08-16 22:26 . 2012-08-16 22:26 -------- d-----w- c:\program files (x86)\Xfire 2012-08-15 23:21 . 2012-06-29 04:55 17809920 ----a-w- c:\windows\system32\mshtml.dll 2012-08-15 23:21 . 2012-06-29 04:09 10925568 ----a-w- c:\windows\system32\ieframe.dll 2012-08-14 10:04 . 2012-08-14 10:04 -------- d-----w- c:\program files (x86)\Activision 2012-08-10 10:31 . 2012-08-10 10:31 -------- d-----w- c:\program files (x86)\WAV MP3 Converter 4 2012-08-09 12:50 . 2012-08-09 12:53 -------- d-----w- c:\users\Yannick\AppData\Roaming\Foxit Software 2012-08-09 12:50 . 2012-08-09 12:50 -------- d-----w- c:\program files (x86)\Foxit Software 2012-08-09 10:44 . 2012-08-09 10:44 -------- d-----w- c:\program files (x86)\MSXML 4.0 2012-08-07 12:26 . 2012-08-07 12:26 -------- d-----w- c:\users\Yannick\AppData\Local\Ahead 2012-08-07 12:25 . 2012-08-07 12:25 -------- d-----w- c:\users\Yannick\AppData\Roaming\Ahead 2012-08-07 12:25 . 2012-08-07 12:25 -------- d-----w- c:\programdata\Ahead 2012-08-07 12:21 . 2012-08-07 12:21 -------- d-----w- c:\programdata\Nero 2012-08-07 12:21 . 2012-08-07 12:21 -------- d-----w- c:\program files (x86)\Nero 2012-08-07 12:21 . 2012-08-07 12:24 -------- d-----w- c:\program files (x86)\Common Files\Ahead . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-09-02 22:11 . 2011-09-22 10:32 25160 ----a-w- c:\windows\system32\drivers\NSNetmon.sys 2012-09-02 22:11 . 2011-09-22 10:32 38528 ----a-r- c:\windows\system32\drivers\Afw.sys 2012-09-02 22:09 . 2011-09-22 10:32 256072 ----a-w- c:\windows\system32\drivers\NSKernel.sys 2012-09-02 22:08 . 2011-09-22 10:32 290376 ----a-w- c:\windows\system32\drivers\Trufos.sys 2012-09-02 22:05 . 2011-09-22 10:32 445568 ----a-r- c:\windows\system32\drivers\AfwCore.sys 2012-09-01 14:36 . 2012-03-18 14:31 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll 2012-08-15 23:20 . 2012-02-25 16:00 62134624 ----a-w- c:\windows\system32\MRT.exe 2012-08-14 22:12 . 2012-04-29 12:24 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-08-14 22:12 . 2012-02-29 17:57 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-25 22:51 . 2012-07-25 22:51 42440 ----a-w- c:\windows\SysWow64\xfcodec.dll 2012-07-25 22:51 . 2012-07-25 22:51 28104 ----a-w- c:\windows\system32\xfcodec64.dll 2012-06-25 15:19 . 2012-06-25 15:19 466456 ----a-w- c:\windows\system32\wrap_oal.dll 2012-06-25 15:19 . 2012-06-25 15:19 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll 2012-06-25 15:19 . 2012-06-25 15:19 122904 ----a-w- c:\windows\system32\OpenAL32.dll 2012-06-25 15:19 . 2012-06-25 15:19 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll 2012-06-19 18:28 . 2012-06-19 18:28 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-06-09 05:43 . 2012-07-13 22:01 14172672 ----a-w- c:\windows\system32\shell32.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Facebook Update"="c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-14 138096] "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 153136] "ShowBatteryBar"="c:\program files\BatteryBar\ShowBatteryBar.exe" [2009-05-28 89600] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608] "ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624] "HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] . c:\users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Xfire.lnk - c:\program files (x86)\Xfire\Xfire.exe [2012-7-26 3553224] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner] @="Service" . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056] R3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;d:\i386\AsPrOb64.sys [x] R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-30 114144] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-25 1255736] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992] S1 AFW;Agnitum Firewall Driver;c:\windows\system32\DRIVERS\afw.sys [2012-09-02 38528] S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536] S1 BdSpy;BdSpy;c:\windows\system32\DRIVERS\BdSpy.sys [2011-09-22 66272] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-19 283200] S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys [2012-09-02 256072] S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys [2012-09-02 25160] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416] S2 BsBackup;BullGuard backup service;c:\windows\System32\SvcHost.exe [2009-07-14 27136] S2 BsBhvScan;BullGuard Behavioural Detection;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2012-09-02 368480] S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe [2009-07-14 27136] S2 BsFire;BullGuard firewall service;c:\windows\System32\SvcHost.exe [2009-07-14 27136] S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe [2009-07-14 27136] S2 BsMain;BullGuard main service;c:\windows\System32\SvcHost.exe [2009-07-14 27136] S2 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2012-09-02 201056] S2 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2012-09-02 379744] S2 vpnagent;Cisco AnyConnect VPN Agent;c:\program files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2011-09-22 645048] S3 afwcore;afwcore;c:\windows\system32\DRIVERS\afwcore.sys [2012-09-02 445568] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440] S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912] S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-22 56344] S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2010-10-14 1147232] . . Inhoud van de 'Gedeelde Taken' map . 2012-09-04 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-29 22:12] . 2012-09-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000Core.job - c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-03 11:50] . 2012-09-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000UA.job - c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-03 11:50] . 2012-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000Core.job - c:\users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-01 18:08] . 2012-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000UA.job - c:\users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-01 18:08] . 2012-09-04 c:\windows\Tasks\vmvsr.job - c:\windows\system32\rundll32.exe [2009-07-13 01:14] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-07-28 167704] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-07-28 392472] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-07-28 416024] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-27 2184520] "CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-18 767312] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x1 "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {{878AC5FC-BE78-4bae-896C-7F75B790A71E} - c:\program files (x86)\PokerStars.BE\PokerStarsUpdate.exe LSP: c:\windows\system32\BGLsp.dll TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\ur2xp1h6.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p= . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-09-05 01:57:51 ComboFix-quarantined-files.txt 2012-09-04 23:57 . Pre-Run: 25.604.190.208 bytes beschikbaar Post-Run: 25.280.856.064 bytes beschikbaar . - - End Of File - - D733A039E84812C186A7222C33AC8D19
-
Ik was iets te euforisch, ik word toch nog altijd doorverwezen..
-
Ik wordt niet meer doorverwezen naar die website ! Lijkt me dus in orde. Bedankt voor je snel antwoord en je hulp !
-
Beste, Ik heb deze week iets verkeerd gedownload waardoor ik een trojan heb. Mijn virusscanner (bullguard) zou die normaal gezien verwijderd hebben. Toch heb ik nog altijd wat problemen met een virus/spyware/geen idee wat het is. Als ik iets via google zoek word ik doorverwezen naar een compleet andere site (zie bijlage). Bullguard vindt geen virussen of dergelijke maar ik heb het opgezocht op internet en het zou wel degelijk kwaadaardig zijn. Iemand die weet hoe ik dit kan oplossen? Alvast bedankt Hijack bestand : Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 1:43:13, on 4/09/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Normal Running processes: C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files (x86)\Xfire\Xfire.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [showBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire\Xfire.exe O4 - Global Startup: vpngui.exe.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll O9 - Extra button: PokerStars.be - {878AC5FC-BE78-4bae-896C-7F75B790A71E} - C:\Program Files (x86)\PokerStars.BE\PokerStarsUpdate.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll BgGamingMonitor.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe O23 - Service: BullGuard Behavioural Detection (BsBhvScan) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11330 bytes
-
Gisterenavond kon ik helemaal niet meer aanmelden op Windows. Er verschenen rare meldingen als ik mijn pc opstartte. Na lang proberen toch nog in Veilige modus geraakt. Daarna dat bestand verwijderd maar toch nog meldingen gehad van virussen. Dan heb ik maar besloten mijn computer binnen te steken bij de computerwinkel. Hopelijk hebben zij meer succes! Ondanks geen resultaat wil ik jullie toch bedanken voor de uitstekende hulp! Als mijn computer in het vervolg nog mankementjes vertoont kom ik zeker eerst raad vragen bij PCH! Bedankt Groetjes
-
Helaas pindakaas. Ik heb de quarantaine van Norton verwijderd maar heb nog steeds last van aanvallen. Wat nu?
-
Consrv.dll is opeens verdwenen , maar toch nog last van aanvallen(virussen?) Dat bestand kan ik helaas niet verwijderen omdat ik niet gemachtigd ben. Nochtans ben ik de enige gebruiker van deze laptop. Gr
-
EDIT : inhoud post verwijderd wegens onleesbaar ! [ATTACH]16670[/ATTACH] Excelbestand geupload omdat mijn post er toch maar wat raar uitziet DrWeb1.xlsx
-
Vanmorgen had ik weer hetzelfde probleem dat ik niet kon aanmelden in normale modus. Maar in mijn veilige modus vond ik wel het bestand consrv.dll in de map windows/system32. Als ik dat bestand handmatig verwijder, zou het probleem dan opgelost zijn? Groetjes
-
Emsisoft Emergency Kit - Versie 1.0 Laatste Update: 20/02/2012 13:47:58 Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\, D:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 21/02/2012 14:12:04 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9107 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9110 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9185 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9186 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9853 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 Gescand Bestanden: 177585 Sporen: 404762 Cookies: 208 Processen: 75 Gevonden Bestanden: 0 Sporen: 0 Cookies: 5 Processen: 0 Registersleutels: 0 Scan Geëindigd: 22/02/2012 4:55:31 Scantijd: 14:43:27 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9185 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9186 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9853 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9107 Verwijderd Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:9110 Verwijderd Trace.TrackingCookie.ads.pubmatic.com!A2 Verwijderd Bestanden: 0 Sporen: 0 Cookies: 5 Maar ik word nog altijd aangevallen via verdachte bestanden/virussen. Is er echt geen mogelijkheid om dit te vermijden? Hier een afbeelding van NortonAntivirus http://i40.tinypic.com/145xsy.jpg
-
Ok ik zal dit vanavond of morgen doen Kmoet nu naar school, alvast bedankt voor de hulp! Groetjes
-
Dat ik virusvrij ben Dat mijn computer niet meer wordt aangevallen zodat ik soms Norton kan uitschakelen.
-
Dus ik mag zeker mijn Norton antivirus niet uitzetten? Zou formateren helpen dan?
-
Heel vreemd, het bestand 'conserv.dll' staat nergens op mijn c-schijf. Is dat omdat het geblokkeerd is door norton? Zoja : als ik norton uitschakel, kan het dan zijn dat die virus actief wordt? Groetjes
-
Norton vindt geen geinfecteerde bestanden meer. Maar als ik mijn pc opstart dan verschijnt dit : http://i44.tinypic.com/331odbm.jpg (mocht de afbeelding niet duidelijk zijn) Het geblokkeerde bestand bevindt zich in de volgende map : C:\windows\system32\consrv.dll
-
http://i39.tinypic.com/6tk3yw.jpg Volgens mij bedoel je dit?
-
Emsisoft Emergency Kit - Versie 1.0 Laatste Update: 20/02/2012 13:47:58 Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\, D:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 20/02/2012 13:51:07 c:\users\asus\appdata\roaming\Microsoft\Internet Explorer\Quick Launch\PartyPoker.lnk Ontdekt: Trace.File.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 1 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 10 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 2 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 4 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 5 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 6 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 7 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 9 Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> AdsLastKnownState Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> AppPath Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> id Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> InitialPort Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> InstallState Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> SL Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> TableType Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> useCount Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming --> CFDialogShown Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming --> FreshInstall Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> DisplayIcon Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> DisplayName Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> InstallLocation Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> Publisher Ontdekt: Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> UninstallString Ontdekt: Trace.Registry.PartyPoker!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:16 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:17 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:108 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:122 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:125 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:256 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:257 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:258 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:259 Ontdekt: Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1115 Ontdekt: Trace.TrackingCookie.tracking.publicidees.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1116 Ontdekt: Trace.TrackingCookie.tracking.publicidees.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1168 Ontdekt: Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1921 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1987 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3243 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3303 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3481 Ontdekt: Trace.TrackingCookie.sex!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3486 Ontdekt: Trace.TrackingCookie.sex!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:4427 Ontdekt: Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:6031 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:6032 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:7771 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:7774 Ontdekt: Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8077 Ontdekt: Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8316 Ontdekt: Trace.TrackingCookie.ads.bleepingcomputer.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8561 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8562 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8563 Ontdekt: Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\ProgramData\TrackMania\Cache\64DAF7469F9A32BB52557E899801C4BB_Skins%5cStadium%5cMod%5cafrika.zip Ontdekt: Trojan.JS.IframeRef!IK C:\Users\All Users\TrackMania\Cache\64DAF7469F9A32BB52557E899801C4BB_Skins%5cStadium%5cMod%5cafrika.zip Ontdekt: Trojan.JS.IframeRef!IK Gescand Bestanden: 177663 Sporen: 404762 Cookies: 764 Processen: 66 Gevonden Bestanden: 2 Sporen: 24 Cookies: 28 Processen: 0 Registersleutels: 0 Scan Geëindigd: 20/02/2012 15:26:09 Scantijd: 1:35:02 C:\ProgramData\TrackMania\Cache\64DAF7469F9A32BB52557E899801C4BB_Skins%5cStadium%5cMod%5cafrika.zip Verwijderd Trojan.JS.IframeRef!IK C:\Users\All Users\TrackMania\Cache\64DAF7469F9A32BB52557E899801C4BB_Skins%5cStadium%5cMod%5cafrika.zip Verwijderd Trojan.JS.IframeRef!IK C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8561 Verwijderd Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8562 Verwijderd Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8563 Verwijderd Trace.TrackingCookie.ad.yieldmanager.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8316 Verwijderd Trace.TrackingCookie.ads.bleepingcomputer.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:8077 Verwijderd Trace.TrackingCookie.doubleclick.net!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:7771 Verwijderd Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:7774 Verwijderd Trace.TrackingCookie.ads.pubmatic.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:6031 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:6032 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3481 Verwijderd Trace.TrackingCookie.sex!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3486 Verwijderd Trace.TrackingCookie.sex!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1921 Verwijderd Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1987 Verwijderd Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3243 Verwijderd Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:3303 Verwijderd Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:4427 Verwijderd Trace.TrackingCookie.www.googleadservices.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1115 Verwijderd Trace.TrackingCookie.tracking.publicidees.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1116 Verwijderd Trace.TrackingCookie.tracking.publicidees.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:108 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:122 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:125 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:256 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:257 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:258 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:259 Verwijderd Trace.TrackingCookie.myspace.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:16 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:17 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 C:\Users\Asus\AppData\Roaming\Mozilla\Firefox\Profiles\1oxb8gyd.default\cookies.sqlite:1168 Verwijderd Trace.TrackingCookie.be.sitestat.com!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 1 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 10 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 2 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 4 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 5 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 6 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 7 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> 9 Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> AdsLastKnownState Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> AppPath Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> id Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> InitialPort Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> InstallState Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> SL Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> TableType Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming\PartyPoker --> useCount Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming --> CFDialogShown Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_CURRENT_USER\Software\PartyGaming --> FreshInstall Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> DisplayIcon Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> DisplayName Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> InstallLocation Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> Publisher Verwijderd Trace.Registry.PartyPoker!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PartyPoker --> UninstallString Verwijderd Trace.Registry.PartyPoker!A2 c:\users\asus\appdata\roaming\Microsoft\Internet Explorer\Quick Launch\PartyPoker.lnk Verwijderd Trace.File.PartyPoker!A2 Verwijderd Bestanden: 2 Sporen: 24 Cookies: 28 ---------- Post toegevoegd om 15:35 ---------- Vorige post was om 15:30 ---------- virus nog steeds aanwezig volgens Norton.
