Ga naar inhoud

Hulp gezocht: Trojaans paard AUET

Gast Laurens1234

Door Gast Laurens1234
in Archief Bestrijding malware & virussen

 Delen

Aanbevolen berichten

Gast Laurens1234

Gast Laurens1234

Geplaatst:
Geplaatst:

Beste allemaal,

Sinds een tijdje geleden loopt mijn Firefox aan de lopende band vast. Ik kan sindsdien simpelweg gewoon vrijwel niet op het internet surfen. Ik nam al gauw aan dat er sprake was van een virus op mijn laptop dus besloot ik om een scan uit te voeren met AVG. Hier kwam het volgende uit:

16 infecties gevonden waarvan:

8 verwijderd

8 niet-verwijderd.

Hierna besloot ik om hulp te gaan zoeken op internet waarna ik terecht kwam op dit forum. Ik heb al een topic gelezen hierover waar ik uit op kon maken dat ik een scan uit moest voeren met Hijackthis. Hier kwam het volgende uit:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 17:02:32, on 24-4-2012

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\System32\Novell\XTAgent.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

c:\program files\idt\wdm\STacSV.exe

C:\Program Files\LSI SoftModem\agrsmsvc.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe

C:\WINDOWS\system32\PMService.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\McAfee\Common Framework\FrameworkService.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\mfevtps.exe

C:\Program Files\McAfee\MNAC Scanner\NACScanner.exe

c:\Program Files\Novell\ZENworks\nalntsrv.exe

c:\Program Files\Novell\ZENworks\RemoteManagement\RMAgent\ZenRem32.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\UPHClean\uphclean.exe

C:\Program Files\USBDLM\USBDLM.exe

c:\Program Files\Novell\ZENworks\wm.exe

C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe

C:\Program Files\McAfee\MNAC Scanner\Engine\enginemain.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\iprntctl.exe

C:\WINDOWS\system32\iprntlgn.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\system32\AESTFltr.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\NWTRAY.EXE

c:\Program Files\Novell\ZENworks\NalAgent.exe

C:\Program Files\McAfee\MNAC Scanner\ScannerTray.exe

C:\Program Files\McAfee\Common Framework\udaterui.exe

C:\Program Files\DivX\DivX Update\DivXUpdate.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Documents and Settings\DiggelenA\Application Data\Dropbox\bin\Dropbox.exe

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

C:\Program Files\McAfee\Common Framework\McTray.exe

C:\Program Files\AVG\AVG2012\avgwdsvc.exe

C:\Program Files\AVG\AVG2012\avgnsx.exe

C:\Program Files\AVG\AVG2012\avgemcx.exe

C:\Program Files\AVG\AVG2012\avgcsrvx.exe

C:\Program Files\AVG\AVG2012\avgtray.exe

C:\Program Files\AVG\AVG2012\avgrsx.exe

C:\Program Files\AVG\AVG2012\avgcsrvx.exe

C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

D:\Document\Downloads\HijackThis.exe

C:\Program Files\McAfee\VirusScan Enterprise\MCUPDATE.EXE

C:\Program Files\McAfee\Common Framework\McScript_InUse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Yahoo! Nederland

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Yahoo! Nederland

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.rocva.nl:8080

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = rocva*.*;;<local>

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll

O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20111206224900.dll

O2 - BHO: Trixie.Bho - {B0744341-96E0-4341-9ED2-8BC36CE0CCD0} - mscoree.dll (file missing)

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: ChromeFrame BHO - {ECB3C477-1A0A-44BD-BB57-78F9EFE34FA7} - C:\Program Files\Google\Chrome Frame\Application\18.0.1025.162\npchrome_frame.dll

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [EPA_EZ_GPO_Tool] C:\WINDOWS\system32\EZ_GPO_Tool.exe

O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON

O4 - HKLM\..\Run: [iPrint Event Monitor] C:\WINDOWS\system32\iprntlgn.exe

O4 - HKLM\..\Run: [ZENRC Tray Icon] c:\WINDOWS\system32\zentray.exe

O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [Naldesk] C:\Program Files\Novell\ZENworks\NALDESK.EXE

O4 - HKLM\..\Run: [NWTRAY] NWTRAY.EXE

O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [zwsrege] C:\Program Files\Novell\ZENworks\zwsrege.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [McAfee NAC Tray Icon] "C:\Program Files\McAfee\MNAC Scanner\ScannerTray.exe"

O4 - HKLM\..\Run: [shStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE

O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: Dropbox.lnk = C:\Documents and Settings\DiggelenA\Application Data\Dropbox\bin\Dropbox.exe

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O9 - Extra button: (no name) - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\WINDOWS\system32\mscoree.DLL

O9 - Extra 'Tools' menuitem: Tri&xie Options... - {20CCCFEC-D26F-4ffe-996B-388B39C8CCCA} - C:\WINDOWS\system32\mscoree.DLL

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: Novell delivered applications - {C1994287-422F-47aa-8E5E-6323E210A125} - c:\Program Files\Novell\ZENworks\AxNalServer.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O14 - IERESET.INF: START_PAGE_URL=http://www.rocva.nl

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1234776716312

O18 - Protocol: gcf - {9875BFAF-B04D-445E-8A69-BE36838CDE3E} - C:\Program Files\Google\Chrome Frame\Application\18.0.1025.162\npchrome_frame.dll

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: Client Update Service for Novell (cusrvc) - Novell, Inc. - C:\WINDOWS\system32\cusrvc.exe

O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe

O23 - Service: Energy Star EZ GPO Power Management Configuration Tool (EPA_GPO_PMService) - TerraNovum - C:\WINDOWS\system32\PMService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe

O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\WINDOWS\system32\mfevtps.exe

O23 - Service: McAfee Network Access Control Client (NACClient) - McAfee, Inc. - C:\Program Files\McAfee\MNAC Scanner\NACScanner.exe

O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc. - c:\Program Files\Novell\ZENworks\nalntsrv.exe

O23 - Service: Novell ZENworks Remote Management Agent (Remote Management Agent) - Novell, Inc. - c:\Program Files\Novell\ZENworks\RemoteManagement\RMAgent\ZenRem32.exe

O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\program files\idt\wdm\STacSV.exe

O23 - Service: User Profile Hive Cleanup (UPHClean) - Windows ® Codename Longhorn DDK provider - C:\Program Files\UPHClean\uphclean.exe

O23 - Service: sieber_usb_drive_letter_manager_4100_en_r01 (USBDLM) - Uwe Sieber - Uwe Sieber's Homepage - C:\Program Files\USBDLM\USBDLM.exe

O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc. - C:\WINDOWS\System32\Novell\XTAgent.exe

O23 - Service: Workstation Manager (ZFDWM) - Novell, Inc. - c:\Program Files\Novell\ZENworks\wm.exe

--

End of file - 11780 bytes

Ik zit op een dood spoor en heb eerlijk gezegd geen flauw idee hoe ik nu verder moet om mijn laptop weer virus-vrij te krijgen. Het is voor mij ook moeilijk om op te zoeken hoe ik dit verwijder aangezien het surfen op internet dus alles behalve soepel verloopt. Ik hoop dat iemand mij kan/wil helpen!

m.v.g. Laurens

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: Trixie.Bho - {B0744341-96E0-4341-9ED2-8BC36CE0CCD0} - mscoree.dll (file missing)

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

Download TDSSKiller en plaats het op je bureaublad.

Pak de bestanden in tdsskiller.zip uit.

Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.

Windows 7 en Windows Vista gebruikers:

Rechtsklik op TDSSKiller.exe -> Uitvoeren als Administrator om de tool te starten.

Als TDSSKiller bericht geeft van een beschikbare update, dan voer je deze eerst uit.

Klik op de knop "Start Scan" en volg de instructies.

Wanneer de scan klaar is klik je op de knop "Report".

Er opent een kladblokbestand. Post de inhoud van dit bestand.

Herstart de pc als TDSSKiller die optie geeft. (Reboot now)

Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt

Link naar reactie
Delen op andere sites
Gast Laurens1234

Gast Laurens1234

Geplaatst:
Geplaatst:

Hartstikke bedankt volgens mij is het opgelost.

Toen ik TDSSKiller gebruikte kwam er nog wel een high threat uit, maar volgens mij is die succesvol gecured.

De report file ziet er als volgt uit:

13:10:26.0781 5136 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43

13:10:26.0921 5136 ============================================================

13:10:26.0921 5136 Current date / time: 2012/04/25 13:10:26.0921

13:10:26.0921 5136 SystemInfo:

13:10:26.0921 5136

13:10:26.0921 5136 OS Version: 5.1.2600 ServicePack: 3.0

13:10:26.0921 5136 Product type: Workstation

13:10:26.0921 5136 ComputerName: 1NB0100

13:10:26.0921 5136 UserName: DiggelenA

13:10:26.0921 5136 Windows directory: C:\WINDOWS

13:10:26.0921 5136 System windows directory: C:\WINDOWS

13:10:26.0921 5136 Processor architecture: Intel x86

13:10:26.0921 5136 Number of processors: 2

13:10:26.0921 5136 Page size: 0x1000

13:10:26.0921 5136 Boot type: Normal boot

13:10:26.0921 5136 ============================================================

13:10:28.0468 5136 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

13:10:28.0468 5136 ============================================================

13:10:28.0468 5136 \Device\Harddisk0\DR0:

13:10:28.0468 5136 MBR partitions:

13:10:28.0468 5136 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x30D7B35

13:10:28.0468 5136 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x426E4F0, BlocksNum 0x18F56091

13:10:28.0468 5136 ============================================================

13:10:28.0484 5136 C: <-> \Device\Harddisk0\DR0\Partition0

13:10:28.0531 5136 D: <-> \Device\Harddisk0\DR0\Partition1

13:10:28.0531 5136 ============================================================

13:10:28.0531 5136 Initialize success

13:10:28.0531 5136 ============================================================

13:11:07.0203 5244 ============================================================

13:11:07.0203 5244 Scan started

13:11:07.0203 5244 Mode: Manual;

13:11:07.0203 5244 ============================================================

13:11:07.0687 5244 2o2y.sys - ok

13:11:07.0703 5244 Abiosdsk - ok

13:11:07.0718 5244 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS

13:11:07.0718 5244 abp480n5 - ok

13:11:07.0750 5244 Accelerometer (2ad11b75224bc6c54735fb6853105b8b) C:\WINDOWS\system32\DRIVERS\Accelerometer.sys

13:11:07.0750 5244 Accelerometer - ok

13:11:07.0765 5244 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

13:11:07.0765 5244 ACPI - ok

13:11:07.0781 5244 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

13:11:07.0781 5244 ACPIEC - ok

13:11:07.0781 5244 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys

13:11:07.0796 5244 adpu160m - ok

13:11:07.0828 5244 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

13:11:07.0828 5244 aec - ok

13:11:07.0875 5244 AESTAud (822d53766d57c90c437536232ece9023) C:\WINDOWS\system32\drivers\AESTAud.sys

13:11:07.0875 5244 AESTAud - ok

13:11:07.0890 5244 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys

13:11:07.0890 5244 AFD - ok

13:11:07.0906 5244 AgereModemAudio (6416f9b6b220f0a890525c38235afad7) C:\Program Files\LSI SoftModem\agrsmsvc.exe

13:11:07.0921 5244 AgereModemAudio - ok

13:11:08.0015 5244 AgereSoftModem (7560f465f1ce69c53bf17559ee195548) C:\WINDOWS\system32\DRIVERS\AGRSM.sys

13:11:08.0031 5244 AgereSoftModem - ok

13:11:08.0046 5244 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys

13:11:08.0046 5244 agp440 - ok

13:11:08.0062 5244 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys

13:11:08.0062 5244 agpCPQ - ok

13:11:08.0078 5244 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys

13:11:08.0078 5244 Aha154x - ok

13:11:08.0078 5244 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys

13:11:08.0078 5244 aic78u2 - ok

13:11:08.0093 5244 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys

13:11:08.0093 5244 aic78xx - ok

13:11:08.0109 5244 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll

13:11:08.0109 5244 Alerter - ok

13:11:08.0140 5244 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe

13:11:08.0140 5244 ALG - ok

13:11:08.0140 5244 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys

13:11:08.0140 5244 AliIde - ok

13:11:08.0156 5244 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys

13:11:08.0156 5244 alim1541 - ok

13:11:08.0171 5244 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys

13:11:08.0171 5244 amdagp - ok

13:11:08.0171 5244 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys

13:11:08.0171 5244 amsint - ok

13:11:08.0218 5244 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

13:11:08.0218 5244 Apple Mobile Device - ok

13:11:08.0250 5244 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll

13:11:08.0250 5244 AppMgmt - ok

13:11:08.0265 5244 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

13:11:08.0265 5244 Arp1394 - ok

13:11:08.0265 5244 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys

13:11:08.0265 5244 asc - ok

13:11:08.0281 5244 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys

13:11:08.0281 5244 asc3350p - ok

13:11:08.0281 5244 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys

13:11:08.0281 5244 asc3550 - ok

13:11:08.0359 5244 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

13:11:08.0359 5244 aspnet_state - ok

13:11:08.0375 5244 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

13:11:08.0375 5244 AsyncMac - ok

13:11:08.0390 5244 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

13:11:08.0390 5244 atapi - ok

13:11:08.0390 5244 Atdisk - ok

13:11:08.0406 5244 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

13:11:08.0406 5244 Atmarpc - ok

13:11:08.0421 5244 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll

13:11:08.0421 5244 AudioSrv - ok

13:11:08.0437 5244 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

13:11:08.0437 5244 audstub - ok

13:11:08.0890 5244 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe

13:11:08.0953 5244 AVGIDSAgent - ok

13:11:09.0062 5244 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys

13:11:09.0062 5244 AVGIDSDriver - ok

13:11:09.0078 5244 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys

13:11:09.0078 5244 AVGIDSEH - ok

13:11:09.0093 5244 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys

13:11:09.0093 5244 AVGIDSFilter - ok

13:11:09.0109 5244 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys

13:11:09.0125 5244 AVGIDSShim - ok

13:11:09.0156 5244 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys

13:11:09.0156 5244 Avgldx86 - ok

13:11:09.0171 5244 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys

13:11:09.0171 5244 Avgmfx86 - ok

13:11:09.0187 5244 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys

13:11:09.0187 5244 Avgrkx86 - ok

13:11:09.0218 5244 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys

13:11:09.0218 5244 Avgtdix - ok

13:11:09.0343 5244 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe

13:11:09.0343 5244 avgwd - ok

13:11:09.0390 5244 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

13:11:09.0421 5244 Beep - ok

13:11:09.0468 5244 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll

13:11:09.0484 5244 BITS - ok

13:11:09.0484 5244 BlankScr (0d266f08aed52d9b17b3c61be01dd576) C:\WINDOWS\system32\drivers\BlankScr.sys

13:11:09.0609 5244 BlankScr - ok

13:11:09.0640 5244 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll

13:11:09.0640 5244 Browser - ok

13:11:09.0671 5244 BTWUSB (581ca1a9b6f8cba92e3bc8460c14faab) C:\WINDOWS\system32\Drivers\btwusb.sys

13:11:09.0671 5244 BTWUSB - ok

13:11:09.0687 5244 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys

13:11:09.0687 5244 cbidf - ok

13:11:09.0687 5244 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

13:11:09.0687 5244 cbidf2k - ok

13:11:09.0703 5244 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys

13:11:09.0703 5244 cd20xrnt - ok

13:11:09.0703 5244 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

13:11:09.0734 5244 Cdaudio - ok

13:11:09.0750 5244 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

13:11:09.0750 5244 Cdfs - ok

13:11:09.0765 5244 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

13:11:09.0765 5244 Cdrom - ok

13:11:09.0765 5244 Changer - ok

13:11:09.0796 5244 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe

13:11:09.0796 5244 CiSvc - ok

13:11:09.0796 5244 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe

13:11:09.0796 5244 ClipSrv - ok

13:11:09.0890 5244 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

13:11:09.0890 5244 clr_optimization_v2.0.50727_32 - ok

13:11:09.0921 5244 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

13:11:09.0921 5244 clr_optimization_v4.0.30319_32 - ok

13:11:09.0921 5244 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

13:11:09.0937 5244 CmBatt - ok

13:11:09.0937 5244 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys

13:11:09.0937 5244 CmdIde - ok

13:11:10.0000 5244 Com4QLBEx (2f27104f5d6ed63fdac38cacb9d19dfd) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

13:11:10.0000 5244 Com4QLBEx - ok

13:11:10.0015 5244 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

13:11:10.0015 5244 Compbatt - ok

13:11:10.0015 5244 COMSysApp - ok

13:11:10.0031 5244 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys

13:11:10.0031 5244 Cpqarray - ok

13:11:10.0046 5244 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll

13:11:10.0046 5244 CryptSvc - ok

13:11:10.0078 5244 cusrvc (ccdf15672bfdadef3b39e249fed23298) C:\WINDOWS\system32\cusrvc.exe

13:11:10.0078 5244 cusrvc - ok

13:11:10.0093 5244 CVirtA (5c706c06c1279952d2cc1a609ca948bf) C:\WINDOWS\system32\DRIVERS\CVirtA.sys

13:11:10.0109 5244 CVirtA - ok

13:11:10.0234 5244 CVPND (eedbab8486e358cdd6687e666941b30c) C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe

13:11:10.0250 5244 CVPND - ok

13:11:10.0375 5244 CVPNDRVA (5ba042bcab6246c6bba51606afd7b488) C:\WINDOWS\system32\Drivers\CVPNDRVA.sys

13:11:10.0468 5244 CVPNDRVA - ok

13:11:10.0484 5244 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys

13:11:10.0484 5244 dac2w2k - ok

13:11:10.0500 5244 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys

13:11:10.0500 5244 dac960nt - ok

13:11:10.0500 5244 Darpan (566cca06fb1b98dff3e9eea563b6334e) C:\WINDOWS\system32\DRIVERS\Darpan.sys

13:11:10.0515 5244 Darpan - ok

13:11:10.0578 5244 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll

13:11:10.0593 5244 DcomLaunch - ok

13:11:10.0609 5244 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll

13:11:10.0609 5244 Dhcp - ok

13:11:10.0625 5244 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

13:11:10.0625 5244 Disk - ok

13:11:10.0625 5244 dmadmin - ok

13:11:10.0703 5244 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

13:11:10.0718 5244 dmboot - ok

13:11:10.0734 5244 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

13:11:10.0750 5244 dmio - ok

13:11:10.0750 5244 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

13:11:10.0750 5244 dmload - ok

13:11:10.0765 5244 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll

13:11:10.0765 5244 dmserver - ok

13:11:10.0796 5244 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

13:11:10.0796 5244 DMusic - ok

13:11:10.0828 5244 DNE (2eddbb3ef1dd5a28cb07c149d36e7286) C:\WINDOWS\system32\DRIVERS\dne2000.sys

13:11:10.0828 5244 DNE - ok

13:11:10.0843 5244 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll

13:11:10.0843 5244 Dnscache - ok

13:11:10.0859 5244 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll

13:11:10.0875 5244 Dot3svc - ok

13:11:10.0875 5244 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys

13:11:10.0875 5244 dpti2o - ok

13:11:10.0875 5244 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

13:11:10.0890 5244 drmkaud - ok

13:11:10.0921 5244 e1kexpress (21375e1d8c9657e1587dcc2efd0723ee) C:\WINDOWS\system32\DRIVERS\e1k5132.sys

13:11:10.0921 5244 e1kexpress - ok

13:11:10.0937 5244 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll

13:11:10.0937 5244 EapHost - ok

13:11:10.0953 5244 EPA_GPO_PMService (bc2f57375af167cf249ed88564d69102) C:\WINDOWS\system32\PMService.exe

13:11:10.0968 5244 EPA_GPO_PMService - ok

13:11:10.0968 5244 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll

13:11:10.0968 5244 ERSvc - ok

13:11:11.0000 5244 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe

13:11:11.0000 5244 Eventlog - ok

13:11:11.0031 5244 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll

13:11:11.0031 5244 EventSystem - ok

13:11:11.0078 5244 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

13:11:11.0093 5244 Fastfat - ok

13:11:11.0109 5244 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll

13:11:11.0109 5244 FastUserSwitchingCompatibility - ok

13:11:11.0125 5244 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys

13:11:11.0125 5244 Fdc - ok

13:11:11.0140 5244 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

13:11:11.0171 5244 Fips - ok

13:11:11.0171 5244 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys

13:11:11.0171 5244 Flpydisk - ok

13:11:11.0187 5244 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys

13:11:11.0187 5244 FltMgr - ok

13:11:11.0265 5244 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

13:11:11.0265 5244 FontCache3.0.0.0 - ok

13:11:11.0281 5244 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

13:11:11.0296 5244 Fs_Rec - ok

13:11:11.0312 5244 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

13:11:11.0312 5244 Ftdisk - ok

13:11:11.0328 5244 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

13:11:11.0328 5244 Gpc - ok

13:11:11.0375 5244 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe

13:11:11.0390 5244 gupdate - ok

13:11:11.0390 5244 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe

13:11:11.0390 5244 gupdatem - ok

13:11:11.0406 5244 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

13:11:11.0406 5244 HDAudBus - ok

13:11:11.0437 5244 HECI (a88485dc6a7136c10d9a6c7e38fdfe3c) C:\WINDOWS\system32\DRIVERS\HECI.sys

13:11:11.0437 5244 HECI - ok

13:11:11.0484 5244 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

13:11:11.0484 5244 helpsvc - ok

13:11:11.0484 5244 HidServ - ok

13:11:11.0500 5244 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

13:11:11.0500 5244 HidUsb - ok

13:11:11.0531 5244 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll

13:11:11.0531 5244 hkmsvc - ok

13:11:11.0546 5244 hpdskflt (b5e68a5d9e0aac82e4ddd340e1f0274a) C:\WINDOWS\system32\DRIVERS\hpdskflt.sys

13:11:11.0546 5244 hpdskflt - ok

13:11:11.0562 5244 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys

13:11:11.0562 5244 hpn - ok

13:11:11.0593 5244 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\WINDOWS\system32\DRIVERS\HpqKbFiltr.sys

13:11:11.0593 5244 HpqKbFiltr - ok

13:11:11.0625 5244 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

13:11:11.0625 5244 HTTP - ok

13:11:11.0656 5244 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll

13:11:11.0656 5244 HTTPFilter - ok

13:11:11.0671 5244 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys

13:11:11.0703 5244 i2omgmt - ok

13:11:11.0703 5244 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys

13:11:11.0703 5244 i2omp - ok

13:11:11.0734 5244 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

13:11:11.0734 5244 i8042prt - ok

13:11:11.0875 5244 ialm (a0bce8a8a403609d90597b5c673e5268) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

13:11:11.0906 5244 ialm - ok

13:11:12.0078 5244 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

13:11:12.0093 5244 idsvc - ok

13:11:12.0156 5244 IFXTPM (91c5e9f49f32110ced27e2f902fad607) C:\WINDOWS\system32\DRIVERS\IFXTPM.SYS

13:11:12.0156 5244 IFXTPM - ok

13:11:12.0171 5244 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

13:11:12.0171 5244 Imapi - ok

13:11:12.0203 5244 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe

13:11:12.0203 5244 ImapiService - ok

13:11:12.0234 5244 Impcd (e3c36ac5ae87ec970ae8ea2a93d59ae1) C:\WINDOWS\system32\DRIVERS\Impcd.sys

13:11:12.0234 5244 Impcd - ok

13:11:12.0250 5244 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys

13:11:12.0250 5244 ini910u - ok

13:11:12.0281 5244 IntcDAud (a58a567b601866bee62d8dda78e6e101) C:\WINDOWS\system32\DRIVERS\IntcDAud.sys

13:11:12.0281 5244 IntcDAud - ok

13:11:12.0281 5244 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys

13:11:12.0281 5244 IntelIde - ok

13:11:12.0296 5244 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

13:11:12.0296 5244 intelppm - ok

13:11:12.0312 5244 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

13:11:12.0312 5244 Ip6Fw - ok

13:11:12.0328 5244 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

13:11:12.0328 5244 IpFilterDriver - ok

13:11:12.0328 5244 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

13:11:12.0328 5244 IpInIp - ok

13:11:12.0343 5244 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

13:11:12.0343 5244 IpNat - ok

13:11:12.0359 5244 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

13:11:12.0359 5244 IPSec - ok

13:11:12.0359 5244 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

13:11:12.0359 5244 IRENUM - ok

13:11:12.0375 5244 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

13:11:12.0375 5244 isapnp - ok

13:11:12.0437 5244 JavaQuickStarterService (5e06a9d23727daf96faa796f1135fdcd) C:\Program Files\Java\jre6\bin\jqs.exe

13:11:12.0437 5244 JavaQuickStarterService - ok

13:11:12.0468 5244 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

13:11:12.0468 5244 Kbdclass - ok

13:11:12.0500 5244 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

13:11:12.0500 5244 kmixer - ok

13:11:12.0500 5244 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

13:11:12.0531 5244 KSecDD - ok

13:11:12.0546 5244 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll

13:11:12.0562 5244 LanmanServer - ok

13:11:12.0578 5244 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll

13:11:12.0578 5244 lanmanworkstation - ok

13:11:12.0593 5244 lbrtfdc - ok

13:11:12.0609 5244 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll

13:11:12.0609 5244 LmHosts - ok

13:11:12.0656 5244 McAfeeFramework (062d80f13d762f7bc2f38430d60f5048) C:\Program Files\McAfee\Common Framework\FrameworkService.exe

13:11:12.0656 5244 McAfeeFramework - ok

13:11:12.0703 5244 McShield (50182e471b44c7a0f63b46e2def08b0f) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe

13:11:12.0703 5244 McShield - ok

13:11:12.0750 5244 McTaskManager (b15bb3aef59158b4e1dda5328c842713) C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe

13:11:12.0750 5244 McTaskManager - ok

13:11:12.0812 5244 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

13:11:12.0812 5244 MDM - ok

13:11:12.0828 5244 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll

13:11:12.0828 5244 Messenger - ok

13:11:12.0843 5244 mfeapfk (c0d975d64c1af8057f2d75b1297a6979) C:\WINDOWS\system32\drivers\mfeapfk.sys

13:11:12.0843 5244 mfeapfk - ok

13:11:12.0859 5244 mfeavfk (c169326049a8a03d5f905b34f5a65f8c) C:\WINDOWS\system32\drivers\mfeavfk.sys

13:11:12.0875 5244 mfeavfk - ok

13:11:12.0875 5244 mfeavfk01 - ok

13:11:12.0890 5244 mfebopk (50b0253b2484a306a20d8695c5ae5858) C:\WINDOWS\system32\drivers\mfebopk.sys

13:11:12.0890 5244 mfebopk - ok

13:11:12.0921 5244 mfehidk (188b40866db2ab8ef262febc65291687) C:\WINDOWS\system32\drivers\mfehidk.sys

13:11:12.0937 5244 mfehidk - ok

13:11:12.0953 5244 mfempefw (98e150a7c37766d47ed2e118e9f42eba) C:\WINDOWS\system32\drivers\mfempefw.sys

13:11:12.0968 5244 mfempefw - ok

13:11:12.0984 5244 mferkdet (c1b30af2e18e69bf8ceb39b33f32d3c1) C:\WINDOWS\system32\drivers\mferkdet.sys

13:11:12.0984 5244 mferkdet - ok

13:11:13.0000 5244 mfetdi2k (97ef4ca122ddda4781ff557e65dfb262) C:\WINDOWS\system32\drivers\mfetdi2k.sys

13:11:13.0000 5244 mfetdi2k - ok

13:11:13.0015 5244 mfetdik (28a2f3c4ca8c2063087c9fcd963586c0) C:\WINDOWS\system32\drivers\mfetdik.sys

13:11:13.0015 5244 mfetdik - ok

13:11:13.0031 5244 mfevtp (49c8e20d178be981ff28523a942a570f) C:\WINDOWS\system32\mfevtps.exe

13:11:13.0031 5244 mfevtp - ok

13:11:13.0078 5244 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

13:11:13.0093 5244 mnmdd - ok

13:11:13.0140 5244 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe

13:11:13.0140 5244 mnmsrvc - ok

13:11:13.0156 5244 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

13:11:13.0156 5244 Modem - ok

13:11:13.0171 5244 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

13:11:13.0171 5244 Mouclass - ok

13:11:13.0187 5244 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys

13:11:13.0187 5244 mouhid - ok

13:11:13.0203 5244 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

13:11:13.0218 5244 MountMgr - ok

13:11:13.0234 5244 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys

13:11:13.0234 5244 mraid35x - ok

13:11:13.0250 5244 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

13:11:13.0265 5244 MRxDAV - ok

13:11:13.0296 5244 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

13:11:13.0312 5244 MRxSmb - ok

13:11:13.0343 5244 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe

13:11:13.0343 5244 MSDTC - ok

13:11:13.0359 5244 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

13:11:13.0375 5244 Msfs - ok

13:11:13.0390 5244 MSIServer - ok

13:11:13.0406 5244 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

13:11:13.0406 5244 MSKSSRV - ok

13:11:13.0421 5244 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

13:11:13.0437 5244 MSPCLOCK - ok

13:11:13.0437 5244 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

13:11:13.0437 5244 MSPQM - ok

13:11:13.0453 5244 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

13:11:13.0453 5244 mssmbios - ok

13:11:13.0468 5244 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys

13:11:13.0484 5244 Mup - ok

13:11:13.0656 5244 NACClient (08bd6880fd5c07b4cada9f62c8074bcf) C:\Program Files\McAfee\MNAC Scanner\NACScanner.exe

13:11:13.0671 5244 NACClient - ok

13:11:13.0750 5244 NALNTSERVICE (5ea25a3d7a78581ee8180cf0049b335f) c:\Program Files\Novell\ZENworks\nalntsrv.exe

13:11:13.0750 5244 NALNTSERVICE - ok

13:11:13.0828 5244 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll

13:11:13.0843 5244 napagent - ok

13:11:13.0875 5244 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

13:11:13.0890 5244 NDIS - ok

13:11:13.0906 5244 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

13:11:13.0906 5244 NdisTapi - ok

13:11:13.0906 5244 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

13:11:13.0906 5244 Ndisuio - ok

13:11:13.0921 5244 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

13:11:13.0921 5244 NdisWan - ok

13:11:13.0937 5244 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

13:11:14.0015 5244 NDProxy - ok

13:11:14.0015 5244 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

13:11:14.0015 5244 NetBIOS - ok

13:11:14.0046 5244 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

13:11:14.0046 5244 NetBT - ok

13:11:14.0078 5244 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe

13:11:14.0078 5244 NetDDE - ok

13:11:14.0078 5244 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe

13:11:14.0078 5244 NetDDEdsdm - ok

13:11:14.0093 5244 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:11:14.0093 5244 Netlogon - ok

13:11:14.0109 5244 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll

13:11:14.0109 5244 Netman - ok

13:11:14.0218 5244 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

13:11:14.0218 5244 NetTcpPortSharing - ok

13:11:14.0562 5244 NETw5x32 (e0e8dfcd98bdbe8468f0202a64541222) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys

13:11:14.0593 5244 NETw5x32 - ok

13:11:14.0703 5244 NetwareWorkstation (a48f743759ea1c7917eb21cadf75f566) C:\WINDOWS\system32\NetWare\nwfs.sys

13:11:14.0703 5244 NetwareWorkstation - ok

13:11:14.0750 5244 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

13:11:14.0750 5244 NIC1394 - ok

13:11:14.0765 5244 NICM (d686538f37dff96042047930650ac88d) C:\WINDOWS\system32\drivers\nicm.sys

13:11:14.0765 5244 NICM - ok

13:11:14.0781 5244 nipplpt2 (75a2b89e72c4181fb28b4c9a9a728973) C:\WINDOWS\system32\drivers\nipplpt.sys

13:11:14.0781 5244 nipplpt2 - ok

13:11:14.0812 5244 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll

13:11:14.0812 5244 Nla - ok

13:11:14.0812 5244 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

13:11:14.0843 5244 Npfs - ok

13:11:14.0890 5244 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

13:11:14.0921 5244 Ntfs - ok

13:11:14.0937 5244 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:11:14.0937 5244 NtLmSsp - ok

13:11:14.0968 5244 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll

13:11:14.0968 5244 NtmsSvc - ok

13:11:14.0984 5244 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

13:11:15.0000 5244 Null - ok

13:11:15.0015 5244 NWDHCP (a4b071419e0ea596ffb3da89c1f04e61) C:\WINDOWS\system32\NetWare\nwdhcp.sys

13:11:15.0015 5244 NWDHCP - ok

13:11:15.0031 5244 NWDNS (b6f69f4d4fae462574f3440070ac22ec) C:\WINDOWS\system32\NetWare\nwdns.sys

13:11:15.0031 5244 NWDNS - ok

13:11:15.0031 5244 NWFILTER (3d8f24cbed28067e4c5a960ee67cdb19) C:\WINDOWS\system32\NetWare\nwfilter.sys

13:11:15.0046 5244 NWFILTER - ok

13:11:15.0046 5244 NWHOST (baa75acf404bebce7065663664a7c3e4) C:\WINDOWS\system32\NetWare\NWHOST.sys

13:11:15.0046 5244 NWHOST - ok

13:11:15.0062 5244 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

13:11:15.0062 5244 NwlnkFlt - ok

13:11:15.0062 5244 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

13:11:15.0062 5244 NwlnkFwd - ok

13:11:15.0078 5244 NWSAP (2726a6792bbb080ff345ed9a8111360f) C:\WINDOWS\system32\NetWare\NWSAP.sys

13:11:15.0078 5244 NWSAP - ok

13:11:15.0093 5244 NWSIPX32 (e00b0349cc3921225ad60728230d78be) C:\WINDOWS\system32\NetWare\nwsipx32.sys

13:11:15.0093 5244 NWSIPX32 - ok

13:11:15.0093 5244 NWSLP (10e02fc7585e495dd963031520ad2f0a) C:\WINDOWS\system32\NetWare\nwslp.sys

13:11:15.0109 5244 NWSLP - ok

13:11:15.0109 5244 NWSNS (172308996609da67e99c87fa784df8bc) C:\WINDOWS\system32\NetWare\NWSNS.sys

13:11:15.0109 5244 NWSNS - ok

13:11:15.0125 5244 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

13:11:15.0125 5244 ohci1394 - ok

13:11:15.0187 5244 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

13:11:15.0203 5244 ose - ok

13:11:15.0234 5244 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys

13:11:15.0234 5244 Parport - ok

13:11:15.0250 5244 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

13:11:15.0281 5244 PartMgr - ok

13:11:15.0296 5244 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

13:11:15.0296 5244 ParVdm - ok

13:11:15.0312 5244 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

13:11:15.0312 5244 PCI - ok

13:11:15.0312 5244 PCIDump - ok

13:11:15.0312 5244 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

13:11:15.0328 5244 PCIIde - ok

13:11:15.0343 5244 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys

13:11:15.0375 5244 Pcmcia - ok

13:11:15.0406 5244 PCnet (7bc8027d56fab153a987c56ae9835664) C:\WINDOWS\system32\DRIVERS\pcntpci5.sys

13:11:15.0406 5244 PCnet - ok

13:11:15.0406 5244 PDCOMP - ok

13:11:15.0406 5244 PDFRAME - ok

13:11:15.0421 5244 PDRELI - ok

13:11:15.0421 5244 PDRFRAME - ok

13:11:15.0421 5244 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys

13:11:15.0437 5244 perc2 - ok

13:11:15.0437 5244 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys

13:11:15.0437 5244 perc2hib - ok

13:11:15.0484 5244 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe

13:11:15.0484 5244 PlugPlay - ok

13:11:15.0515 5244 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:11:15.0515 5244 PolicyAgent - ok

13:11:15.0531 5244 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

13:11:15.0531 5244 PptpMiniport - ok

13:11:15.0531 5244 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:11:15.0531 5244 ProtectedStorage - ok

13:11:15.0546 5244 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

13:11:15.0546 5244 PSched - ok

13:11:15.0546 5244 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

13:11:15.0546 5244 Ptilink - ok

13:11:15.0562 5244 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys

13:11:15.0562 5244 PxHelp20 - ok

13:11:15.0578 5244 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys

13:11:15.0578 5244 ql1080 - ok

13:11:15.0578 5244 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys

13:11:15.0578 5244 Ql10wnt - ok

13:11:15.0593 5244 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys

13:11:15.0593 5244 ql12160 - ok

13:11:15.0593 5244 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys

13:11:15.0609 5244 ql1240 - ok

13:11:15.0609 5244 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys

13:11:15.0609 5244 ql1280 - ok

13:11:15.0625 5244 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

13:11:15.0640 5244 RasAcd - ok

13:11:15.0656 5244 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll

13:11:15.0671 5244 RasAuto - ok

13:11:15.0687 5244 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

13:11:15.0687 5244 Rasl2tp - ok

13:11:15.0703 5244 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll

13:11:15.0718 5244 RasMan - ok

13:11:15.0718 5244 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

13:11:15.0734 5244 RasPppoe - ok

13:11:15.0734 5244 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

13:11:15.0734 5244 Raspti - ok

13:11:15.0765 5244 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

13:11:15.0765 5244 Rdbss - ok

13:11:15.0781 5244 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

13:11:15.0781 5244 RDPCDD - ok

13:11:15.0812 5244 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

13:11:15.0812 5244 rdpdr - ok

13:11:15.0828 5244 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys

13:11:15.0843 5244 RDPWD - ok

13:11:15.0875 5244 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe

13:11:15.0875 5244 RDSessMgr - ok

13:11:15.0906 5244 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

13:11:15.0906 5244 redbook - ok

13:11:15.0968 5244 Remote Management Agent (cd1f0f292423e3b14aca57c7a45a1892) c:\Program Files\Novell\ZENworks\RemoteManagement\RMAgent\ZenRem32.exe

13:11:15.0984 5244 Remote Management Agent - ok

13:11:16.0000 5244 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll

13:11:16.0015 5244 RemoteAccess - ok

13:11:16.0031 5244 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll

13:11:16.0031 5244 RemoteRegistry - ok

13:11:16.0062 5244 RESMGR (382ec29aa5bbd5ea7e959167f9cdada2) C:\WINDOWS\system32\NetWare\resmgr.sys

13:11:16.0062 5244 RESMGR - ok

13:11:16.0093 5244 rimspci (e891f07815af88075705ef6a248711f6) C:\WINDOWS\system32\DRIVERS\rimspe86.sys

13:11:16.0093 5244 rimspci - ok

13:11:16.0109 5244 risdpcie (d853d35f792a3a44726a794bf9a0bbc3) C:\WINDOWS\system32\DRIVERS\risdpe86.sys

13:11:16.0109 5244 risdpcie - ok

13:11:16.0125 5244 rixdpcie (cf2de2365fd99e5b8e38c9f3467dcdb8) C:\WINDOWS\system32\DRIVERS\rixdpe86.sys

13:11:16.0125 5244 rixdpcie - ok

13:11:16.0140 5244 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe

13:11:16.0140 5244 RpcLocator - ok

13:11:16.0187 5244 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll

13:11:16.0203 5244 RpcSs - ok

13:11:16.0234 5244 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe

13:11:16.0234 5244 RSVP - ok

13:11:16.0250 5244 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe

13:11:16.0265 5244 SamSs - ok

13:11:16.0281 5244 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe

13:11:16.0281 5244 SCardSvr - ok

13:11:16.0312 5244 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll

13:11:16.0312 5244 Schedule - ok

13:11:16.0343 5244 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys

13:11:16.0343 5244 sdbus - ok

13:11:16.0343 5244 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

13:11:16.0343 5244 Secdrv - ok

13:11:16.0359 5244 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll

13:11:16.0375 5244 seclogon - ok

13:11:16.0390 5244 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll

13:11:16.0390 5244 SENS - ok

13:11:16.0406 5244 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

13:11:16.0406 5244 serenum - ok

13:11:16.0406 5244 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys

13:11:16.0421 5244 Serial - ok

13:11:16.0453 5244 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

13:11:16.0484 5244 Sfloppy - ok

13:11:16.0562 5244 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll

13:11:16.0578 5244 SharedAccess - ok

13:11:16.0609 5244 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll

13:11:16.0609 5244 ShellHWDetection - ok

13:11:16.0625 5244 Simbad - ok

13:11:16.0625 5244 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys

13:11:16.0640 5244 sisagp - ok

13:11:16.0640 5244 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys

13:11:16.0656 5244 Sparrow - ok

13:11:16.0671 5244 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

13:11:16.0671 5244 splitter - ok

13:11:16.0687 5244 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe

13:11:16.0687 5244 Spooler - ok

13:11:16.0718 5244 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

13:11:16.0718 5244 sr - ok

13:11:16.0734 5244 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll

13:11:16.0750 5244 srservice - ok

13:11:16.0781 5244 Srv (0f6aefad3641a657e18081f52d0c15af) C:\WINDOWS\system32\DRIVERS\srv.sys

13:11:16.0781 5244 Srv - ok

13:11:16.0828 5244 SRVLOC (9a44b2bacf48abba25cbd043770a7fcb) C:\WINDOWS\system32\NetWare\srvloc.sys

13:11:16.0828 5244 SRVLOC - ok

13:11:16.0843 5244 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll

13:11:16.0843 5244 SSDPSRV - ok

13:11:16.0890 5244 STacSV (43dc7ada838f6a24b93b7c7ff2fcd08d) c:\program files\idt\wdm\STacSV.exe

13:11:16.0906 5244 STacSV - ok

13:11:17.0000 5244 STHDA (517746e78da290700d82976a5b7e99a7) C:\WINDOWS\system32\drivers\sthda.sys

13:11:17.0015 5244 STHDA - ok

13:11:17.0109 5244 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll

13:11:17.0109 5244 stisvc - ok

13:11:17.0140 5244 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

13:11:17.0140 5244 swenum - ok

13:11:17.0171 5244 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

13:11:17.0171 5244 swmidi - ok

13:11:17.0171 5244 SwPrv - ok

13:11:17.0187 5244 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys

13:11:17.0187 5244 symc810 - ok

13:11:17.0187 5244 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys

13:11:17.0203 5244 symc8xx - ok

13:11:17.0203 5244 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys

13:11:17.0203 5244 sym_hi - ok

13:11:17.0203 5244 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys

13:11:17.0203 5244 sym_u3 - ok

13:11:17.0250 5244 SynTP (596573e770d7743ce66c54390857f697) C:\WINDOWS\system32\DRIVERS\SynTP.sys

13:11:17.0250 5244 SynTP - ok

13:11:17.0250 5244 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

13:11:17.0265 5244 sysaudio - ok

13:11:17.0281 5244 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe

13:11:17.0281 5244 SysmonLog - ok

13:11:17.0312 5244 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll

13:11:17.0312 5244 TapiSrv - ok

13:11:17.0343 5244 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

13:11:17.0343 5244 Tcpip - ok

13:11:17.0359 5244 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

13:11:17.0390 5244 TDPIPE - ok

13:11:17.0406 5244 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

13:11:17.0406 5244 TDTCP - ok

13:11:17.0421 5244 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

13:11:17.0421 5244 TermDD - ok

13:11:17.0453 5244 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll

13:11:17.0468 5244 TermService - ok

13:11:17.0484 5244 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll

13:11:17.0484 5244 Themes - ok

13:11:17.0515 5244 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe

13:11:17.0515 5244 TlntSvr - ok

13:11:17.0531 5244 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys

13:11:17.0531 5244 TosIde - ok

13:11:17.0546 5244 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll

13:11:17.0546 5244 TrkWks - ok

13:11:17.0578 5244 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

13:11:17.0609 5244 Udfs - ok

13:11:17.0625 5244 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys

13:11:17.0625 5244 ultra - ok

13:11:17.0656 5244 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

13:11:17.0671 5244 Update - ok

13:11:17.0781 5244 UPHClean (325fb38c323c63c7f57885b4dfb1b91e) C:\Program Files\UPHClean\uphclean.exe

13:11:17.0781 5244 UPHClean - ok

13:11:17.0812 5244 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll

13:11:17.0828 5244 upnphost - ok

13:11:17.0843 5244 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe

13:11:17.0843 5244 UPS - ok

13:11:17.0875 5244 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys

13:11:17.0875 5244 USBAAPL - ok

13:11:17.0890 5244 USBDLM (7ee4372b18b6f3d06a0e02fb2e2c0a48) C:\Program Files\USBDLM\USBDLM.exe

13:11:17.0890 5244 USBDLM - ok

13:11:17.0921 5244 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

13:11:17.0921 5244 usbehci - ok

13:11:17.0937 5244 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

13:11:17.0937 5244 usbhub - ok

13:11:17.0953 5244 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

13:11:17.0953 5244 usbscan - ok

13:11:17.0968 5244 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

13:11:17.0968 5244 USBSTOR - ok

13:11:18.0015 5244 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

13:11:18.0015 5244 VgaSave - ok

13:11:18.0015 5244 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys

13:11:18.0015 5244 viaagp - ok

13:11:18.0031 5244 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys

13:11:18.0031 5244 ViaIde - ok

13:11:18.0046 5244 vmscsi (82132036ee4d3e8aa3e73feebe1a9741) C:\WINDOWS\system32\drivers\vmscsi.sys

13:11:18.0171 5244 vmscsi - ok

13:11:18.0187 5244 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

13:11:18.0218 5244 VolSnap - ok

13:11:18.0250 5244 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe

13:11:18.0250 5244 VSS - ok

13:11:18.0265 5244 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll

13:11:18.0281 5244 W32Time - ok

13:11:18.0281 5244 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

13:11:18.0281 5244 Wanarp - ok

13:11:18.0343 5244 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys

13:11:18.0343 5244 Wdf01000 - ok

13:11:18.0343 5244 WDICA - ok

13:11:18.0375 5244 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

13:11:18.0375 5244 wdmaud - ok

13:11:18.0390 5244 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll

13:11:18.0390 5244 WebClient - ok

13:11:18.0437 5244 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll

13:11:18.0453 5244 winmgmt - ok

13:11:18.0484 5244 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll

13:11:18.0484 5244 WmdmPmSN - ok

13:11:18.0546 5244 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll

13:11:18.0546 5244 Wmi - ok

13:11:18.0562 5244 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys

13:11:18.0562 5244 WmiAcpi - ok

13:11:18.0593 5244 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe

13:11:18.0593 5244 WmiApSrv - ok

13:11:18.0703 5244 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe

13:11:18.0718 5244 WMPNetworkSvc - ok

13:11:18.0859 5244 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

13:11:18.0875 5244 WPFFontCache_v0400 - ok

13:11:18.0937 5244 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll

13:11:18.0953 5244 wscsvc - ok

13:11:18.0984 5244 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll

13:11:18.0984 5244 wuauserv - ok

13:11:19.0031 5244 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

13:11:19.0031 5244 WudfPf - ok

13:11:19.0046 5244 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

13:11:19.0046 5244 WudfRd - ok

13:11:19.0078 5244 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll

13:11:19.0078 5244 WudfSvc - ok

13:11:19.0125 5244 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll

13:11:19.0140 5244 WZCSVC - ok

13:11:19.0140 5244 xcpip - ok

13:11:19.0171 5244 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll

13:11:19.0171 5244 xmlprov - ok

13:11:19.0187 5244 xpsec - ok

13:11:19.0218 5244 XTAgent (0b6cd7f4ad6ae20f7585416f7cc3e09d) C:\WINDOWS\System32\Novell\XTAgent.exe

13:11:19.0234 5244 XTAgent - ok

13:11:19.0296 5244 ZFDWM (0cecef6cf073aad201b5d671a3c0cd60) c:\Program Files\Novell\ZENworks\wm.exe

13:11:19.0296 5244 ZFDWM - ok

13:11:19.0343 5244 MBR (0x1B8) (c2e679390497c67c223fe0db950cad34) \Device\Harddisk0\DR0

13:11:19.0343 5244 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected

13:11:19.0343 5244 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)

13:11:19.0343 5244 Boot (0x1200) (c264062dbf26fd5d095a8f6a20daab32) \Device\Harddisk0\DR0\Partition0

13:11:19.0343 5244 \Device\Harddisk0\DR0\Partition0 - ok

13:11:19.0359 5244 Boot (0x1200) (315d5368f53e50b2044f093300b1dfa5) \Device\Harddisk0\DR0\Partition1

13:11:19.0359 5244 \Device\Harddisk0\DR0\Partition1 - ok

13:11:19.0359 5244 ============================================================

13:11:19.0359 5244 Scan finished

13:11:19.0359 5244 ============================================================

13:11:19.0375 5556 Detected object count: 1

13:11:19.0375 5556 Actual detected object count: 1

13:11:58.0796 5556 \Device\Harddisk0\DR0\# - copied to quarantine

13:11:58.0796 5556 \Device\Harddisk0\DR0 - copied to quarantine

13:11:58.0812 5556 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot

13:11:58.0843 5556 \Device\Harddisk0\DR0 - ok

13:11:58.0843 5556 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure

Volgens mij is alles in orde want mijn internet browser werkt weer helemaal soepel. Bedankt!!

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Problemen van de baan, dan is het tijd voor de “grote schoonmaak” : verwijderen van gebruikte programma’s, een cleaning en het verwijderen van de besmette herstelpunten.

Verwijder TDSS Killer.

Download CCleaner.

Klik op “Download Latest Version” en dan start de download van CCleaner automatisch en gratis op.

Installeer het en start CCleaner op. Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en 'Schoonmaken'. Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”. Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

Het is aangewezen om de bestaande herstelpunten te verwijderen (daar zitten besmette herstelpunten tussen die je eventueel zou kunnen terugzetten). Doe dit via Start -> Configuratiescherm -> Systeem -> Systeemherstel -> "Systeemherstel op alle stations uitschakelen" aanvinken. Toepassen en OK. PC herstarten en het vinkje terug weg halen.

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.