Volledige versie bekijken : Vertraging PC en andere..
thierry25 28 December 2011, 06:45 Sinds kort gaat mijn laptop hier ontzettend veel trager, zowel de laptop zelf als de verbinding (die ongewijzigd is gebleven, geen abonnementsverandering of iets dergelijks)
Ik krijg op sommige forums meldingen van hijack attempts die naar 'quarantaine' geplaats worden.
Ik krijg sinds vandaag plots of vele sites (inclusief facebook en een simpele site als hln.be (de krant)) certificaatsfouten of iets dergelijks, had al even gegoogled voor oplossing (die was herstellen van internet opties), werkte niet.. Dus dacht ik maar eens hulp te vragen aan de jongens die er beter mee overweg kunnen :)
Aldus hier mijn hijacklogje, hopelijk kunnen jullie me helpen, nu is het wel zo, als er niets mis is met mijn pctje, hoe los ik het dan op he :)
Wait and see...
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:41:05, on 28/12/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Apoint2K\HidFind.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe
C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTray.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\K-Lite Codec Pack\Media player Classic\mplayerc.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10t_Ac tiveX.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&s=2&o=vp32&d=0909&m=aspire_7735
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&s=2&o=vp32&d=0909&m=aspire_7735
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -k
O4 - HKLM\..\Run: [Acer ePower Management] C:\Program Files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe
O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe"
O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\system32\Adobe\Shockwave 11\SwHelper_1151601.exe -Update -1151601 -"Mozilla/5.0_(Windows_NT_6.0;_rv:8.0)_Gecko/20100101_Firefox/8.0" -"http://www.neopets.com/games/dgs/play_shockwave.phtml?va=&game_id=330&nc_referer=&age=1&hiscore=&sp=0&questionSet=&r=6768537&&width=740&height=500&quality=high"
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://virusscanner.telenet.be/fscax.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
--
End of file - 7385 bytes
Alvast veel dank
Rosty 28 December 2011, 14:16 1.
Download MalwareBytes' Anti-Malware (http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button) en sla het op je bureaublad op.
Dubbelklik op mbam-setup.exe om het programma te installeren.
Zorg dat er na de installatie een vinkje is geplaatst bij:
Update MalwareBytes' Anti-Malware
Start MalwareBytes' Anti-Malware
Klik daarna op "Voltooien".
Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.
Bij problemen!!! (Lees de onderstaande instructies)
Problemen bij het installeren van Malwarebytes' Anti-Malware (http://www.pcwebplus.nl/phpbb/viewtopic.php?f=207&t=3419)
Problemen bij het updaten van Malwarebytes' Anti-Malware (http://www.pcwebplus.nl/phpbb/viewtopic.php?f=207&t=3420)
Problemen bij het starten van Malwarebytes' Anti-Malware (http://www.pcwebplus.nl/phpbb/viewtopic.php?f=207&t=3421)
Het venster met de vraag of je de "Evaluatie wil starten" mag je in principe weigeren, deze kan je later ook nog inschakelen.
Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
Druk vervolgens op "Scannen" om de scan te starten.
Het scannen kan een tijdje duren, dus wees geduldig.
Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
Het log wordt automatisch bewaard door MalwareBytes' Anti-Malware en kan je terugvinden door op de "Logs" tab te klikken in het programma.
2.
Download TDSSKiller (http://support.kaspersky.com/downloads/utils/tdsskiller.zip) en plaats het op je bureaublad.
Pak de bestanden in tdsskiller.zip uit.
Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.
Let op!!! Windows Vista & 7 gebruikers dienen TDSSkiller als administrator uit te voeren "Rechtermuisknop uitvoeren als",
Als er door TDSSkiller een update wordt gevonden klikt u op de knop "Load update"
http://www.malwareinfo.nl/files/screens/TDSSkiller(update).jpg
Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.
Start nu TDSSkiller opnieuw.
Klik op "Change parameters" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
http://www.malwareinfo.nl/files/screens/TDSSkiller(opties).jpg
Klik op de knop "Start Scan" en volg de instructies.
Wanneer de scan klaar is klik je op de knop "Report".
Selecteer de inhoud (log) en plaats deze in uw volgende bericht.
Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt
Note: Indien je een waarschuwing krijgt over sptd.sys dan mag je deze 'skippen' deze hoort bij Emulatiesoftware zoals Daemon Tools.
Post de log van MBAM en TDSSkiller in je volgende antwoord.
thierry25 28 December 2011, 18:36 Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org (http://www.malwarebytes.org)
Databaseversie: v2011.12.28.01
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
eury :: PC_VAN_EURY [administrator]
28/12/2011 17:25:46
mbam-log-2011-12-28 (17-25-46).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstarten | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 163900
Verstreken tijd: 4 minuut/minuten, 59 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
17:21:40.0466 3528 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
17:21:40.0544 3528 ================================================== ==========
17:21:40.0544 3528 Current date / time: 2011/12/28 17:21:40.0544
17:21:40.0544 3528 SystemInfo:
17:21:40.0544 3528
17:21:40.0544 3528 OS Version: 6.0.6002 ServicePack: 2.0
17:21:40.0544 3528 Product type: Workstation
17:21:40.0544 3528 ComputerName: PC_VAN_EURY
17:21:40.0544 3528 UserName: eury
17:21:40.0544 3528 Windows directory: C:\Windows
17:21:40.0544 3528 System windows directory: C:\Windows
17:21:40.0544 3528 Processor architecture: Intel x86
17:21:40.0544 3528 Number of processors: 2
17:21:40.0544 3528 Page size: 0x1000
17:21:40.0544 3528 Boot type: Normal boot
17:21:40.0544 3528 ================================================== ==========
17:21:40.0950 3528 Initialize success
17:22:53.0864 4332 ================================================== ==========
17:22:53.0864 4332 Scan started
17:22:53.0864 4332 Mode: Manual; SigCheck; TDLFS;
17:22:53.0864 4332 ================================================== ==========
17:22:54.0348 4332 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
17:22:54.0473 4332 ACPI - ok
17:22:54.0582 4332 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:22:54.0597 4332 adp94xx - ok
17:22:54.0644 4332 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:22:54.0675 4332 adpahci - ok
17:22:54.0707 4332 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:22:54.0738 4332 adpu160m - ok
17:22:54.0785 4332 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:22:54.0800 4332 adpu320 - ok
17:22:54.0878 4332 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
17:22:54.0956 4332 AFD - ok
17:22:55.0097 4332 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
17:22:55.0190 4332 AgereSoftModem - ok
17:22:55.0346 4332 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:22:55.0362 4332 agp440 - ok
17:22:55.0424 4332 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:22:55.0440 4332 aic78xx - ok
17:22:55.0502 4332 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:22:55.0518 4332 aliide - ok
17:22:55.0565 4332 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:22:55.0580 4332 amdagp - ok
17:22:55.0611 4332 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:22:55.0627 4332 amdide - ok
17:22:55.0674 4332 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:22:55.0721 4332 AmdK7 - ok
17:22:55.0752 4332 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:22:55.0814 4332 AmdK8 - ok
17:22:55.0939 4332 ApfiltrService (91b05bbb609c79d73e2332b6e5f99aea) C:\Windows\system32\DRIVERS\Apfiltr.sys
17:22:55.0970 4332 ApfiltrService - ok
17:22:56.0033 4332 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:22:56.0064 4332 arc - ok
17:22:56.0126 4332 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:22:56.0142 4332 arcsas - ok
17:22:56.0189 4332 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:22:56.0251 4332 AsyncMac - ok
17:22:56.0329 4332 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
17:22:56.0345 4332 atapi - ok
17:22:56.0391 4332 athr (44362605f5fff00c9b7696b47680a8c5) C:\Windows\system32\DRIVERS\athr.sys
17:22:56.0469 4332 athr - ok
17:22:56.0672 4332 atikmdag (6f2cc6403012375385d556bf39382b74) C:\Windows\system32\DRIVERS\atikmdag.sys
17:22:56.0875 4332 atikmdag - ok
17:22:57.0000 4332 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
17:22:57.0015 4332 AVGIDSDriver - ok
17:22:57.0047 4332 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
17:22:57.0062 4332 AVGIDSEH - ok
17:22:57.0125 4332 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
17:22:57.0140 4332 AVGIDSFilter - ok
17:22:57.0156 4332 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
17:22:57.0171 4332 AVGIDSShim - ok
17:22:57.0203 4332 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
17:22:57.0218 4332 Avgldx86 - ok
17:22:57.0249 4332 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
17:22:57.0249 4332 Avgmfx86 - ok
17:22:57.0265 4332 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
17:22:57.0265 4332 Avgrkx86 - ok
17:22:57.0312 4332 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
17:22:57.0312 4332 Avgtdix - ok
17:22:57.0421 4332 b57nd60x (502f1c30bd50b32d00ce4dcaecc3d3c7) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:22:57.0468 4332 b57nd60x - ok
17:22:57.0593 4332 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:22:57.0624 4332 Beep - ok
17:22:57.0702 4332 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:22:57.0749 4332 blbdrive - ok
17:22:57.0811 4332 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
17:22:57.0842 4332 bowser - ok
17:22:57.0951 4332 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:22:57.0967 4332 BrFiltLo - ok
17:22:58.0029 4332 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:22:58.0061 4332 BrFiltUp - ok
17:22:58.0123 4332 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
17:22:58.0201 4332 Brserid - ok
17:22:58.0217 4332 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:22:58.0279 4332 BrSerWdm - ok
17:22:58.0310 4332 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:22:58.0357 4332 BrUsbMdm - ok
17:22:58.0466 4332 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
17:22:58.0560 4332 BrUsbSer - ok
17:22:58.0622 4332 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:22:58.0685 4332 BTHMODEM - ok
17:22:58.0763 4332 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:22:58.0809 4332 cdfs - ok
17:22:58.0856 4332 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
17:22:58.0887 4332 cdrom - ok
17:22:58.0981 4332 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
17:22:59.0028 4332 circlass - ok
17:22:59.0059 4332 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
17:22:59.0075 4332 CLFS - ok
17:22:59.0121 4332 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
17:22:59.0168 4332 CmBatt - ok
17:22:59.0199 4332 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:22:59.0215 4332 cmdide - ok
17:22:59.0246 4332 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
17:22:59.0262 4332 Compbatt - ok
17:22:59.0496 4332 cpuz132 (097a0a4899b759a4f032bd464963b4be) C:\Windows\system32\drivers\cpuz132_x32.sys
17:22:59.0511 4332 cpuz132 ( UnsignedFile.Multi.Generic ) - warning
17:22:59.0511 4332 cpuz132 - detected UnsignedFile.Multi.Generic (1)
17:22:59.0574 4332 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:22:59.0589 4332 crcdisk - ok
17:22:59.0636 4332 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:22:59.0667 4332 Crusoe - ok
17:22:59.0730 4332 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
17:22:59.0745 4332 DfsC - ok
17:22:59.0855 4332 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
17:22:59.0870 4332 disk - ok
17:22:59.0933 4332 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
17:22:59.0948 4332 DKbFltr - ok
17:22:59.0995 4332 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:23:00.0042 4332 drmkaud - ok
17:23:00.0104 4332 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
17:23:00.0167 4332 DXGKrnl - ok
17:23:00.0245 4332 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:23:00.0291 4332 E1G60 - ok
17:23:00.0401 4332 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
17:23:00.0416 4332 Ecache - ok
17:23:00.0479 4332 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:23:00.0494 4332 elxstor - ok
17:23:00.0650 4332 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:23:00.0697 4332 ErrDev - ok
17:23:00.0837 4332 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
17:23:00.0869 4332 exfat - ok
17:23:00.0931 4332 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
17:23:00.0962 4332 fastfat - ok
17:23:01.0025 4332 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:23:01.0056 4332 fdc - ok
17:23:01.0118 4332 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:23:01.0118 4332 FileInfo - ok
17:23:01.0149 4332 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:23:01.0196 4332 Filetrace - ok
17:23:01.0243 4332 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:23:01.0321 4332 flpydisk - ok
17:23:01.0368 4332 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
17:23:01.0383 4332 FltMgr - ok
17:23:01.0508 4332 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:23:01.0555 4332 Fs_Rec - ok
17:23:01.0602 4332 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:23:01.0617 4332 gagp30kx - ok
17:23:01.0680 4332 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:23:01.0758 4332 HdAudAddService - ok
17:23:01.0867 4332 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:23:01.0914 4332 HDAudBus - ok
17:23:02.0007 4332 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:23:02.0085 4332 HidBth - ok
17:23:02.0132 4332 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:23:02.0179 4332 HidIr - ok
17:23:02.0226 4332 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
17:23:02.0273 4332 HidUsb - ok
17:23:02.0351 4332 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:23:02.0351 4332 HpCISSs - ok
17:23:02.0429 4332 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
17:23:02.0460 4332 HTTP - ok
17:23:02.0522 4332 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:23:02.0538 4332 i2omp - ok
17:23:02.0616 4332 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:23:02.0647 4332 i8042prt - ok
17:23:02.0678 4332 iaStor (71ecc07bc7c5e24c3dd01d8a29a24054) C:\Windows\system32\DRIVERS\iaStor.sys
17:23:02.0709 4332 iaStor - ok
17:23:02.0772 4332 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:23:02.0803 4332 iaStorV - ok
17:23:02.0865 4332 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:23:02.0881 4332 iirsp - ok
17:23:03.0053 4332 IntcAzAudAddService (ffb0b713a54dd05193dbcd0b790b37ee) C:\Windows\system32\drivers\RTKVHDA.sys
17:23:03.0162 4332 IntcAzAudAddService - ok
17:23:03.0287 4332 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:23:03.0302 4332 intelide - ok
17:23:03.0365 4332 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:23:03.0396 4332 intelppm - ok
17:23:03.0474 4332 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:23:03.0505 4332 IpFilterDriver - ok
17:23:03.0536 4332 IpInIp - ok
17:23:03.0583 4332 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:23:03.0614 4332 IPMIDRV - ok
17:23:03.0645 4332 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:23:03.0677 4332 IPNAT - ok
17:23:03.0708 4332 irda (e50a95179211b12946f7e035d60af560) C:\Windows\system32\DRIVERS\irda.sys
17:23:03.0739 4332 irda - ok
17:23:03.0770 4332 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:23:03.0817 4332 IRENUM - ok
17:23:03.0848 4332 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:23:03.0864 4332 isapnp - ok
17:23:03.0895 4332 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
17:23:03.0911 4332 iScsiPrt - ok
17:23:03.0942 4332 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:23:03.0957 4332 iteatapi - ok
17:23:03.0973 4332 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:23:03.0989 4332 iteraid - ok
17:23:04.0035 4332 k57nd60x (eac21e8014c7e6ee341afffb7e2bbd54) C:\Windows\system32\DRIVERS\k57nd60x.sys
17:23:04.0067 4332 k57nd60x - ok
17:23:04.0098 4332 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:23:04.0113 4332 kbdclass - ok
17:23:04.0191 4332 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
17:23:04.0223 4332 kbdhid - ok
17:23:04.0285 4332 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
17:23:04.0332 4332 KSecDD - ok
17:23:04.0425 4332 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:23:04.0457 4332 lltdio - ok
17:23:04.0519 4332 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:23:04.0535 4332 LSI_FC - ok
17:23:04.0550 4332 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:23:04.0566 4332 LSI_SAS - ok
17:23:04.0597 4332 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:23:04.0613 4332 LSI_SCSI - ok
17:23:04.0644 4332 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:23:04.0691 4332 luafv - ok
17:23:04.0737 4332 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:23:04.0737 4332 megasas - ok
17:23:04.0800 4332 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:23:04.0831 4332 MegaSR - ok
17:23:04.0878 4332 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:23:04.0909 4332 Modem - ok
17:23:04.0940 4332 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:23:04.0971 4332 monitor - ok
17:23:05.0049 4332 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:23:05.0049 4332 mouclass - ok
17:23:05.0096 4332 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:23:05.0112 4332 mouhid - ok
17:23:05.0174 4332 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:23:05.0190 4332 MountMgr - ok
17:23:05.0221 4332 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:23:05.0237 4332 mpio - ok
17:23:05.0268 4332 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:23:05.0330 4332 mpsdrv - ok
17:23:05.0393 4332 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:23:05.0408 4332 Mraid35x - ok
17:23:05.0471 4332 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
17:23:05.0502 4332 MRxDAV - ok
17:23:05.0533 4332 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:23:05.0549 4332 mrxsmb - ok
17:23:05.0580 4332 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:23:05.0595 4332 mrxsmb10 - ok
17:23:05.0627 4332 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:23:05.0658 4332 mrxsmb20 - ok
17:23:05.0751 4332 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:23:05.0767 4332 msahci - ok
17:23:05.0798 4332 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:23:05.0814 4332 msdsm - ok
17:23:05.0845 4332 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:23:05.0876 4332 Msfs - ok
17:23:05.0939 4332 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:23:05.0954 4332 msisadrv - ok
17:23:06.0001 4332 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:23:06.0048 4332 MSKSSRV - ok
17:23:06.0079 4332 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:23:06.0110 4332 MSPCLOCK - ok
17:23:06.0141 4332 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:23:06.0173 4332 MSPQM - ok
17:23:06.0219 4332 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
17:23:06.0235 4332 MsRPC - ok
17:23:06.0251 4332 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:23:06.0266 4332 mssmbios - ok
17:23:06.0313 4332 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:23:06.0360 4332 MSTEE - ok
17:23:06.0422 4332 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
17:23:06.0438 4332 Mup - ok
17:23:06.0469 4332 mwlPSDFilter (2de94e435c3efde58c7b1856d4f20724) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
17:23:06.0469 4332 mwlPSDFilter - ok
17:23:06.0485 4332 mwlPSDNServ (61920a7146eed3d903dbbb8ec295af76) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
17:23:06.0500 4332 mwlPSDNServ - ok
17:23:06.0516 4332 mwlPSDVDisk (e0f49721e68ebd2983e84c44fada6665) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
17:23:06.0516 4332 mwlPSDVDisk - ok
17:23:06.0609 4332 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
17:23:06.0641 4332 NativeWifiP - ok
17:23:06.0719 4332 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
17:23:06.0750 4332 NDIS - ok
17:23:06.0797 4332 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:23:06.0828 4332 NdisTapi - ok
17:23:06.0859 4332 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:23:06.0875 4332 Ndisuio - ok
17:23:06.0921 4332 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
17:23:06.0953 4332 NdisWan - ok
17:23:06.0984 4332 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:23:07.0031 4332 NDProxy - ok
17:23:07.0062 4332 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:23:07.0093 4332 NetBIOS - ok
17:23:07.0124 4332 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
17:23:07.0155 4332 netbt - ok
17:23:07.0218 4332 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:23:07.0233 4332 nfrd960 - ok
17:23:07.0249 4332 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
17:23:07.0296 4332 Npfs - ok
17:23:07.0311 4332 NSCIRDA (6d8d2e5652fc2442c810c5d8be784148) C:\Windows\system32\DRIVERS\nscirda.sys
17:23:07.0358 4332 NSCIRDA - ok
17:23:07.0374 4332 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:23:07.0405 4332 nsiproxy - ok
17:23:07.0483 4332 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
17:23:07.0545 4332 Ntfs - ok
17:23:07.0639 4332 NTIDrvr (6dcaa65f49ef3b97a5cffc0cb5de1c2f) C:\Windows\system32\Drivers\NTIDrvr.sys
17:23:07.0655 4332 NTIDrvr - ok
17:23:07.0733 4332 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:23:07.0779 4332 ntrigdigi - ok
17:23:07.0811 4332 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:23:07.0857 4332 Null - ok
17:23:07.0904 4332 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:23:07.0920 4332 nvraid - ok
17:23:07.0967 4332 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:23:07.0967 4332 nvstor - ok
17:23:07.0998 4332 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:23:08.0013 4332 nv_agp - ok
17:23:08.0029 4332 NwlnkFlt - ok
17:23:08.0045 4332 NwlnkFwd - ok
17:23:08.0091 4332 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
17:23:08.0138 4332 ohci1394 - ok
17:23:08.0169 4332 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:23:08.0216 4332 Parport - ok
17:23:08.0247 4332 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
17:23:08.0263 4332 partmgr - ok
17:23:08.0279 4332 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:23:08.0325 4332 Parvdm - ok
17:23:08.0372 4332 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
17:23:08.0388 4332 pci - ok
17:23:08.0419 4332 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
17:23:08.0435 4332 pciide - ok
17:23:08.0497 4332 pcmcia (b7c5a8769541900f6dfa6fe0c5e4d513) C:\Windows\system32\DRIVERS\pcmcia.sys
17:23:08.0513 4332 pcmcia - ok
17:23:08.0559 4332 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:23:08.0637 4332 PEAUTH - ok
17:23:08.0778 4332 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:23:08.0809 4332 PptpMiniport - ok
17:23:08.0856 4332 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
17:23:08.0887 4332 Processor - ok
17:23:08.0996 4332 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
17:23:09.0027 4332 PSched - ok
17:23:09.0121 4332 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:23:09.0215 4332 ql2300 - ok
17:23:09.0324 4332 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:23:09.0339 4332 ql40xx - ok
17:23:09.0386 4332 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:23:09.0417 4332 QWAVEdrv - ok
17:23:09.0464 4332 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:23:09.0495 4332 RasAcd - ok
17:23:09.0542 4332 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:23:09.0667 4332 Rasl2tp - ok
17:23:09.0745 4332 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
17:23:09.0792 4332 RasPppoe - ok
17:23:09.0839 4332 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
17:23:09.0870 4332 RasSstp - ok
17:23:09.0932 4332 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
17:23:09.0948 4332 rdbss - ok
17:23:09.0979 4332 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:23:10.0010 4332 RDPCDD - ok
17:23:10.0041 4332 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:23:10.0073 4332 rdpdr - ok
17:23:10.0135 4332 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:23:10.0182 4332 RDPENCDD - ok
17:23:10.0275 4332 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
17:23:10.0322 4332 RDPWD - ok
17:23:10.0463 4332 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:23:10.0525 4332 rspndr - ok
17:23:10.0634 4332 RTHDMIAzAudService (4a8393f03cb2f40e08126d83916c5633) C:\Windows\system32\drivers\RtHDMIV.sys
17:23:10.0650 4332 RTHDMIAzAudService - ok
17:23:10.0697 4332 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:23:10.0712 4332 sbp2port - ok
17:23:10.0806 4332 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
17:23:10.0853 4332 sdbus - ok
17:23:10.0899 4332 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:23:10.0946 4332 secdrv - ok
17:23:10.0977 4332 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:23:11.0040 4332 Serenum - ok
17:23:11.0071 4332 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:23:11.0133 4332 Serial - ok
17:23:11.0165 4332 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:23:11.0196 4332 sermouse - ok
17:23:11.0274 4332 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:23:11.0305 4332 sffdisk - ok
17:23:11.0336 4332 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:23:11.0383 4332 sffp_mmc - ok
17:23:11.0430 4332 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:23:11.0461 4332 sffp_sd - ok
17:23:11.0492 4332 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:23:11.0555 4332 sfloppy - ok
17:23:11.0664 4332 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:23:11.0679 4332 sisagp - ok
17:23:11.0742 4332 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:23:11.0742 4332 SiSRaid2 - ok
17:23:11.0773 4332 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:23:11.0789 4332 SiSRaid4 - ok
17:23:11.0851 4332 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
17:23:11.0867 4332 Smb - ok
17:23:11.0898 4332 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:23:11.0913 4332 spldr - ok
17:23:11.0960 4332 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
17:23:11.0991 4332 srv - ok
17:23:12.0054 4332 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
17:23:12.0085 4332 srv2 - ok
17:23:12.0101 4332 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
17:23:12.0132 4332 srvnet - ok
17:23:12.0179 4332 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:23:12.0179 4332 swenum - ok
17:23:12.0210 4332 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:23:12.0225 4332 Symc8xx - ok
17:23:12.0241 4332 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:23:12.0257 4332 Sym_hi - ok
17:23:12.0272 4332 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:23:12.0288 4332 Sym_u3 - ok
17:23:12.0350 4332 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
17:23:12.0397 4332 Tcpip - ok
17:23:12.0444 4332 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
17:23:12.0475 4332 Tcpip6 - ok
17:23:12.0506 4332 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
17:23:12.0522 4332 tcpipreg - ok
17:23:12.0569 4332 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:23:12.0615 4332 TDPIPE - ok
17:23:12.0647 4332 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:23:12.0678 4332 TDTCP - ok
17:23:12.0725 4332 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
17:23:12.0756 4332 tdx - ok
17:23:12.0787 4332 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
17:23:12.0803 4332 TermDD - ok
17:23:12.0865 4332 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:23:12.0912 4332 tssecsrv - ok
17:23:12.0974 4332 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:23:13.0005 4332 tunmp - ok
17:23:13.0052 4332 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
17:23:13.0068 4332 tunnel - ok
17:23:13.0099 4332 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:23:13.0115 4332 uagp35 - ok
17:23:13.0161 4332 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
17:23:13.0177 4332 UBHelper - ok
17:23:13.0208 4332 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
17:23:13.0239 4332 udfs - ok
17:23:13.0317 4332 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:23:13.0317 4332 uliagpkx - ok
17:23:13.0349 4332 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:23:13.0380 4332 uliahci - ok
17:23:13.0395 4332 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:23:13.0411 4332 UlSata - ok
17:23:13.0427 4332 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:23:13.0442 4332 ulsata2 - ok
17:23:13.0473 4332 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:23:13.0520 4332 umbus - ok
17:23:13.0567 4332 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
17:23:13.0598 4332 usbccgp - ok
17:23:13.0629 4332 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:23:13.0692 4332 usbcir - ok
17:23:13.0754 4332 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
17:23:13.0785 4332 usbehci - ok
17:23:13.0817 4332 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
17:23:13.0832 4332 usbhub - ok
17:23:13.0879 4332 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:23:13.0926 4332 usbohci - ok
17:23:13.0941 4332 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
17:23:13.0988 4332 usbprint - ok
17:23:14.0035 4332 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:23:14.0066 4332 USBSTOR - ok
17:23:14.0082 4332 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
17:23:14.0144 4332 usbuhci - ok
17:23:14.0238 4332 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
17:23:14.0285 4332 usbvideo - ok
17:23:14.0363 4332 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:23:14.0409 4332 vga - ok
17:23:14.0441 4332 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:23:14.0472 4332 VgaSave - ok
17:23:14.0487 4332 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:23:14.0503 4332 viaagp - ok
17:23:14.0534 4332 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:23:14.0581 4332 ViaC7 - ok
17:23:14.0612 4332 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:23:14.0628 4332 viaide - ok
17:23:14.0643 4332 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:23:14.0643 4332 volmgr - ok
17:23:14.0706 4332 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
17:23:14.0721 4332 volmgrx - ok
17:23:14.0753 4332 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
17:23:14.0768 4332 volsnap - ok
17:23:14.0831 4332 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:23:14.0846 4332 vsmraid - ok
17:23:14.0877 4332 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:23:14.0940 4332 WacomPen - ok
17:23:14.0971 4332 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:23:15.0033 4332 Wanarp - ok
17:23:15.0049 4332 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:23:15.0065 4332 Wanarpv6 - ok
17:23:15.0174 4332 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:23:15.0189 4332 Wd - ok
17:23:15.0267 4332 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:23:15.0314 4332 Wdf01000 - ok
17:23:15.0470 4332 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:23:15.0517 4332 WmiAcpi - ok
17:23:15.0611 4332 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:23:15.0642 4332 ws2ifsl - ok
17:23:15.0689 4332 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:23:15.0751 4332 WUDFRd - ok
17:23:15.0813 4332 MBR (0x1B8) (beedf9b7f43a72a91456f7131afc11b2) \Device\Harddisk0\DR0
17:23:16.0203 4332 \Device\Harddisk0\DR0 - ok
17:23:16.0219 4332 Boot (0x1200) (7e0ffd73a1860cddc97cc7dbe72eada3) \Device\Harddisk0\DR0\Partition0
17:23:16.0219 4332 \Device\Harddisk0\DR0\Partition0 - ok
17:23:16.0219 4332 ================================================== ==========
17:23:16.0219 4332 Scan finished
17:23:16.0219 4332 ================================================== ==========
17:23:16.0235 5360 Detected object count: 1
17:23:16.0235 5360 Actual detected object count: 1
17:25:06.0495 5360 cpuz132 ( UnsignedFile.Multi.Generic ) - skipped by user
17:25:06.0495 5360 cpuz132 ( UnsignedFile.Multi.Generic ) - User select action: Skip
Rosty 29 December 2011, 11:52 Download ComboFix van één van deze locaties:
Link 1 (http://download.bleepingcomputer.com/sUBs/ComboFix.exe)
Link 2 (http://www.forospyware.com/sUBs/ComboFix.exe)
* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix. Hier is een handleiding over hoe je ze kan uitschakelen:
Klik hier (http://www.bleepingcomputer.com/forums/topic114351.html)
Als het je niet lukt om ze uit te schakelen, ga dan gewoon door naar de volgende stap. Dubbeklik op ComboFix.exe en volg de meldingen op het scherm. ComboFix zal controleren of dat de Microsoft Windows Recovery Console reeds is geïnstalleerd.
**Let op: Als de Microsoft Windows Recovery Console al is geïnstalleerd, dan krijg je de volgende schermen niet te zien en zal ComboFix automatisch verder gaan met het scannen naar malware. Volg de meldingen op het scherm om ComboFix de Microsoft Windows Recovery Console te laten downloaden en installeren.https://vorming.minatica.be/handleiding/canned_speech/cf-rc-auto.jpg
Je krijgt de volgende melding te zien wanneer ComboFix de Microsoft Windows Recovery Console succesvol heeft geïnstalleerd:
https://vorming.minatica.be/handleiding/canned_speech/rc-auto-done.jpg
Klik op Ja om verder te gaan met het scannen naar malware.
Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.
thierry25 3 January 2012, 23:30 Als eerste, sorry voor vertraging, feestdagen etc en combofix heeft zijn tijd wel genomen lol, hier dus het logje
ComboFix 12-01-03.04 - eury 03/01/2012 22:06:46.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3066.2069 [GMT 1:00]
Gestart vanuit: c:\users\eury\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\eury\AppData\Roaming\mIRC\logs\status.log
c:\windows\iun6002.exe
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-12-03 to 2012-01-03 ))))))))))))))))))))))))))))))
.
.
2012-01-03 21:13 . 2012-01-03 21:24 -------- d-----w- c:\users\eury\AppData\Local\temp
2012-01-03 21:13 . 2012-01-03 21:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-28 04:18 . 2011-12-28 04:18 388096 ----a-r- c:\users\eury\AppData\Roaming\Microsoft\Installer\ {45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-12-21 19:53 . 2011-11-03 22:39 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-12-21 19:53 . 2011-11-03 22:42 678912 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2011-12-21 19:31 . 2011-11-03 22:31 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-12-21 19:31 . 2011-11-03 23:16 141112 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2011-12-21 19:31 . 2011-11-03 22:37 194048 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2011-12-21 19:31 . 2011-11-03 22:47 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-12-21 19:31 . 2011-11-03 22:40 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-21 19:29 . 2011-10-27 08:01 3602816 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-12-21 19:29 . 2011-10-27 08:01 3550080 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-12-21 19:29 . 2011-10-14 16:02 429056 ----a-w- c:\windows\system32\EncDec.dll
2011-12-21 19:29 . 2011-11-08 14:42 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-21 19:29 . 2011-11-08 12:10 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2011-12-21 19:29 . 2011-11-23 13:37 2043904 ----a-w- c:\windows\system32\win32k.sys
2011-12-21 19:29 . 2011-10-25 15:56 49152 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-21 18:40 . 2011-12-21 18:40 -------- d-----w- c:\users\eury\AppData\Roaming\AVG2012
2011-12-21 18:37 . 2012-01-03 20:55 -------- d-----w- c:\windows\system32\drivers\AVG
2011-12-21 18:37 . 2011-12-21 18:54 -------- d-----w- c:\programdata\AVG2012
2011-12-21 18:25 . 2012-01-03 20:55 -------- d-----w- c:\programdata\MFAData
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2011-12-10 14:24 . 2011-01-24 15:29 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-11-17 17:39 . 2011-06-19 01:19 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-07 05:23 . 2011-10-07 05:23 230608 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2011-11-05 07:30 . 2011-11-11 19:27 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\eg isPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-05-14 21:02 120104 ----a-w- c:\program files\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-01-27 61440]
"AmIcoSinglun"="c:\program files\AmIcoSingLun\AmIcoSinglun.exe" [2008-10-24 237568]
"PLFSetI"="c:\windows\PLFSetI.exe" [2008-07-29 200704]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2009-02-24 204800]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2009-02-24 870920]
"BackupManagerTray"="c:\program files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-04-11 249600]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-06-23 440864]
"EgisTecLiveUpdate"="c:\program files\EgisTec Egis Software Update\EgisUpdate.exe" [2009-05-13 199464]
"mwlDaemon"="c:\program files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2009-05-14 345384]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-03-17 421888]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2011-12-03 2415456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 01:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2009-03-11 00:48 6957600 ----a-w- c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
2009-03-11 00:49 1833504 ----a-w- c:\program files\Realtek\Audio\HDA\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiSpywareOverride"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Inhoud van de 'Gedeelde Taken' map
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.google.be/
Trusted Zone: tube8.com\www
TCP: DhcpNameServer = 195.130.131.4 195.130.130.132
FF - ProfilePath - c:\users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/
.
- - - - ORPHANS VERWIJDERD - - - -
.
MSConfigStartUp-ISPMonitor - c:\users\eury\Desktop\isp.exe
.
.
.
************************************************** ************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-03 22:24
Windows 6.0.6002 Service Pack 2 NTFS
.
scannen van verborgen processen ...
.
scannen van verborgen autostart items ...
.
scannen van verborgen bestanden ...
.
Scan succesvol afgerond
verborgen bestanden: 0
.
************************************************** ************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
Voltooingstijd: 2012-01-03 22:27:11
ComboFix-quarantined-files.txt 2012-01-03 21:27
.
Pre-Run: 58.292.461.568 bytes beschikbaar
Post-Run: 58.943.606.784 bytes beschikbaar
.
- - End Of File - - AB038544F739F8E93A6C9F5C3B7B838F
Rosty 3 January 2012, 23:50 De scan is dan toch gelukt zie ik!!
Doe nog even volgende:
Download TDSSKiller (http://support.kaspersky.com/downloads/utils/tdsskiller.zip) en plaats het op je bureaublad.
Pak de bestanden in tdsskiller.zip uit.
Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.
Let op!!! Windows Vista & 7 gebruikers dienen TDSSkiller als administrator uit te voeren "Rechtermuisknop uitvoeren als",
Als er door TDSSkiller een update wordt gevonden klikt u op de knop "Load update"
http://www.malwareinfo.nl/files/screens/TDSSkiller(update).jpg
Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.
Start nu TDSSkiller opnieuw.
Klik op "Change parameters" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
http://www.malwareinfo.nl/files/screens/TDSSkiller(opties).jpg
Klik op de knop "Start Scan" en volg de instructies.
Wanneer de scan klaar is klik je op de knop "Report".
Selecteer de inhoud (log) en plaats deze in uw volgende bericht.
Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt
Note: Indien je een waarschuwing krijgt over sptd.sys dan mag je deze 'skippen' deze hoort bij Emulatiesoftware zoals Daemon Tools.
thierry25 4 January 2012, 02:29 Ja, scan duurde alleen een tijdje, dacht even dat ie gecrashed was maar dat was het niet, ik heb dit laatste ook gedaaan, kheb enkel zelfde 'threat' mogen skippen, was mijn cpuid vor temperaturen na te kijken
hier logje
01:26:39.0098 5128 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
01:26:39.0194 5128 ================================================== ==========
01:26:39.0194 5128 Current date / time: 2012/01/04 01:26:39.0194
01:26:39.0194 5128 SystemInfo:
01:26:39.0194 5128
01:26:39.0195 5128 OS Version: 6.0.6002 ServicePack: 2.0
01:26:39.0195 5128 Product type: Workstation
01:26:39.0195 5128 ComputerName: PC_VAN_EURY
01:26:39.0195 5128 UserName: eury
01:26:39.0195 5128 Windows directory: C:\Windows
01:26:39.0195 5128 System windows directory: C:\Windows
01:26:39.0195 5128 Processor architecture: Intel x86
01:26:39.0195 5128 Number of processors: 2
01:26:39.0195 5128 Page size: 0x1000
01:26:39.0195 5128 Boot type: Normal boot
01:26:39.0195 5128 ================================================== ==========
01:26:39.0618 5128 Initialize success
01:26:55.0541 4752 ================================================== ==========
01:26:55.0541 4752 Scan started
01:26:55.0541 4752 Mode: Manual; SigCheck; TDLFS;
01:26:55.0541 4752 ================================================== ==========
01:26:56.0074 4752 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
01:26:56.0179 4752 ACPI - ok
01:26:56.0309 4752 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
01:26:56.0333 4752 adp94xx - ok
01:26:56.0453 4752 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
01:26:56.0477 4752 adpahci - ok
01:26:56.0513 4752 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
01:26:56.0530 4752 adpu160m - ok
01:26:56.0558 4752 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
01:26:56.0577 4752 adpu320 - ok
01:26:56.0632 4752 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
01:26:56.0692 4752 AFD - ok
01:26:56.0837 4752 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
01:26:56.0945 4752 AgereSoftModem - ok
01:26:57.0099 4752 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
01:26:57.0120 4752 agp440 - ok
01:26:57.0163 4752 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
01:26:57.0187 4752 aic78xx - ok
01:26:57.0294 4752 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
01:26:57.0314 4752 aliide - ok
01:26:57.0375 4752 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
01:26:57.0394 4752 amdagp - ok
01:26:57.0432 4752 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
01:26:57.0450 4752 amdide - ok
01:26:57.0519 4752 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
01:26:57.0576 4752 AmdK7 - ok
01:26:57.0637 4752 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
01:26:57.0681 4752 AmdK8 - ok
01:26:57.0734 4752 ApfiltrService (91b05bbb609c79d73e2332b6e5f99aea) C:\Windows\system32\DRIVERS\Apfiltr.sys
01:26:57.0785 4752 ApfiltrService - ok
01:26:57.0943 4752 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
01:26:57.0965 4752 arc - ok
01:26:58.0070 4752 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
01:26:58.0092 4752 arcsas - ok
01:26:58.0138 4752 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
01:26:58.0181 4752 AsyncMac - ok
01:26:58.0208 4752 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
01:26:58.0228 4752 atapi - ok
01:26:58.0338 4752 athr (44362605f5fff00c9b7696b47680a8c5) C:\Windows\system32\DRIVERS\athr.sys
01:26:58.0427 4752 athr - ok
01:26:58.0770 4752 atikmdag (6f2cc6403012375385d556bf39382b74) C:\Windows\system32\DRIVERS\atikmdag.sys
01:26:58.0936 4752 atikmdag - ok
01:26:59.0114 4752 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
01:26:59.0134 4752 AVGIDSDriver - ok
01:26:59.0269 4752 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
01:26:59.0287 4752 AVGIDSEH - ok
01:26:59.0353 4752 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
01:26:59.0369 4752 AVGIDSFilter - ok
01:26:59.0389 4752 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
01:26:59.0403 4752 AVGIDSShim - ok
01:26:59.0446 4752 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
01:26:59.0495 4752 Avgldx86 - ok
01:26:59.0636 4752 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
01:26:59.0650 4752 Avgmfx86 - ok
01:26:59.0679 4752 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
01:26:59.0695 4752 Avgrkx86 - ok
01:26:59.0743 4752 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
01:26:59.0766 4752 Avgtdix - ok
01:26:59.0944 4752 b57nd60x (502f1c30bd50b32d00ce4dcaecc3d3c7) C:\Windows\system32\DRIVERS\b57nd60x.sys
01:26:59.0988 4752 b57nd60x - ok
01:27:00.0148 4752 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
01:27:00.0176 4752 Beep - ok
01:27:00.0305 4752 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
01:27:00.0343 4752 blbdrive - ok
01:27:00.0477 4752 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
01:27:00.0515 4752 bowser - ok
01:27:00.0687 4752 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
01:27:00.0724 4752 BrFiltLo - ok
01:27:00.0785 4752 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
01:27:00.0846 4752 BrFiltUp - ok
01:27:01.0075 4752 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
01:27:01.0151 4752 Brserid - ok
01:27:01.0280 4752 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
01:27:01.0339 4752 BrSerWdm - ok
01:27:01.0391 4752 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
01:27:01.0461 4752 BrUsbMdm - ok
01:27:01.0556 4752 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
01:27:01.0646 4752 BrUsbSer - ok
01:27:01.0729 4752 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
01:27:01.0816 4752 BTHMODEM - ok
01:27:01.0926 4752 catchme - ok
01:27:02.0017 4752 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
01:27:02.0052 4752 cdfs - ok
01:27:02.0126 4752 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
01:27:02.0158 4752 cdrom - ok
01:27:02.0188 4752 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
01:27:02.0232 4752 circlass - ok
01:27:02.0274 4752 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
01:27:02.0296 4752 CLFS - ok
01:27:02.0348 4752 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
01:27:02.0397 4752 CmBatt - ok
01:27:02.0441 4752 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
01:27:02.0457 4752 cmdide - ok
01:27:02.0491 4752 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
01:27:02.0505 4752 Compbatt - ok
01:27:02.0557 4752 cpuz132 (097a0a4899b759a4f032bd464963b4be) C:\Windows\system32\drivers\cpuz132_x32.sys
01:27:02.0631 4752 cpuz132 ( UnsignedFile.Multi.Generic ) - warning
01:27:02.0632 4752 cpuz132 - detected UnsignedFile.Multi.Generic (1)
01:27:02.0704 4752 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
01:27:02.0719 4752 crcdisk - ok
01:27:02.0756 4752 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
01:27:02.0822 4752 Crusoe - ok
01:27:02.0877 4752 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
01:27:02.0897 4752 DfsC - ok
01:27:02.0985 4752 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
01:27:03.0006 4752 disk - ok
01:27:03.0085 4752 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
01:27:03.0112 4752 DKbFltr - ok
01:27:03.0281 4752 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
01:27:03.0312 4752 drmkaud - ok
01:27:03.0424 4752 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
01:27:03.0467 4752 DXGKrnl - ok
01:27:03.0571 4752 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
01:27:03.0616 4752 E1G60 - ok
01:27:03.0738 4752 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
01:27:03.0758 4752 Ecache - ok
01:27:03.0820 4752 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
01:27:03.0861 4752 elxstor - ok
01:27:03.0921 4752 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
01:27:03.0970 4752 ErrDev - ok
01:27:04.0181 4752 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
01:27:04.0213 4752 exfat - ok
01:27:04.0275 4752 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
01:27:04.0353 4752 fastfat - ok
01:27:04.0464 4752 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
01:27:04.0516 4752 fdc - ok
01:27:04.0617 4752 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
01:27:04.0632 4752 FileInfo - ok
01:27:04.0655 4752 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
01:27:04.0699 4752 Filetrace - ok
01:27:04.0736 4752 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
01:27:04.0793 4752 flpydisk - ok
01:27:04.0949 4752 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
01:27:04.0976 4752 FltMgr - ok
01:27:05.0093 4752 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
01:27:05.0140 4752 Fs_Rec - ok
01:27:05.0202 4752 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
01:27:05.0222 4752 gagp30kx - ok
01:27:05.0305 4752 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
01:27:05.0402 4752 HdAudAddService - ok
01:27:05.0525 4752 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:27:05.0597 4752 HDAudBus - ok
01:27:05.0703 4752 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
01:27:05.0790 4752 HidBth - ok
01:27:05.0858 4752 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
01:27:05.0978 4752 HidIr - ok
01:27:06.0076 4752 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
01:27:06.0139 4752 HidUsb - ok
01:27:06.0184 4752 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
01:27:06.0199 4752 HpCISSs - ok
01:27:06.0256 4752 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
01:27:06.0309 4752 HTTP - ok
01:27:06.0410 4752 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
01:27:06.0423 4752 i2omp - ok
01:27:06.0465 4752 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
01:27:06.0507 4752 i8042prt - ok
01:27:06.0576 4752 iaStor (71ecc07bc7c5e24c3dd01d8a29a24054) C:\Windows\system32\DRIVERS\iaStor.sys
01:27:06.0604 4752 iaStor - ok
01:27:06.0642 4752 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
01:27:06.0681 4752 iaStorV - ok
01:27:06.0746 4752 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
01:27:06.0765 4752 iirsp - ok
01:27:06.0991 4752 IntcAzAudAddService (ffb0b713a54dd05193dbcd0b790b37ee) C:\Windows\system32\drivers\RTKVHDA.sys
01:27:07.0206 4752 IntcAzAudAddService - ok
01:27:07.0336 4752 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
01:27:07.0348 4752 intelide - ok
01:27:07.0383 4752 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
01:27:07.0420 4752 intelppm - ok
01:27:07.0546 4752 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:27:07.0594 4752 IpFilterDriver - ok
01:27:07.0627 4752 IpInIp - ok
01:27:07.0673 4752 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
01:27:07.0723 4752 IPMIDRV - ok
01:27:07.0773 4752 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
01:27:07.0812 4752 IPNAT - ok
01:27:07.0892 4752 irda (e50a95179211b12946f7e035d60af560) C:\Windows\system32\DRIVERS\irda.sys
01:27:07.0945 4752 irda - ok
01:27:08.0024 4752 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
01:27:08.0077 4752 IRENUM - ok
01:27:08.0118 4752 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
01:27:08.0137 4752 isapnp - ok
01:27:08.0241 4752 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
01:27:08.0266 4752 iScsiPrt - ok
01:27:08.0301 4752 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
01:27:08.0319 4752 iteatapi - ok
01:27:08.0353 4752 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
01:27:08.0374 4752 iteraid - ok
01:27:08.0436 4752 k57nd60x (eac21e8014c7e6ee341afffb7e2bbd54) C:\Windows\system32\DRIVERS\k57nd60x.sys
01:27:08.0473 4752 k57nd60x - ok
01:27:08.0516 4752 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
01:27:08.0535 4752 kbdclass - ok
01:27:08.0581 4752 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
01:27:08.0656 4752 kbdhid - ok
01:27:08.0721 4752 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
01:27:08.0758 4752 KSecDD - ok
01:27:08.0830 4752 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
01:27:08.0876 4752 lltdio - ok
01:27:08.0915 4752 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
01:27:08.0936 4752 LSI_FC - ok
01:27:08.0964 4752 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
01:27:08.0981 4752 LSI_SAS - ok
01:27:09.0001 4752 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
01:27:09.0016 4752 LSI_SCSI - ok
01:27:09.0043 4752 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
01:27:09.0079 4752 luafv - ok
01:27:09.0116 4752 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
01:27:09.0131 4752 megasas - ok
01:27:09.0295 4752 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
01:27:09.0343 4752 MegaSR - ok
01:27:09.0425 4752 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
01:27:09.0469 4752 Modem - ok
01:27:09.0580 4752 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
01:27:09.0621 4752 monitor - ok
01:27:09.0683 4752 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
01:27:09.0701 4752 mouclass - ok
01:27:09.0737 4752 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
01:27:09.0771 4752 mouhid - ok
01:27:09.0803 4752 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
01:27:09.0818 4752 MountMgr - ok
01:27:09.0852 4752 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
01:27:09.0866 4752 mpio - ok
01:27:09.0931 4752 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
01:27:09.0972 4752 mpsdrv - ok
01:27:10.0041 4752 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
01:27:10.0052 4752 Mraid35x - ok
01:27:10.0130 4752 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
01:27:10.0147 4752 MRxDAV - ok
01:27:10.0177 4752 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:27:10.0230 4752 mrxsmb - ok
01:27:10.0266 4752 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:27:10.0298 4752 mrxsmb10 - ok
01:27:10.0387 4752 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:27:10.0422 4752 mrxsmb20 - ok
01:27:10.0464 4752 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
01:27:10.0478 4752 msahci - ok
01:27:10.0535 4752 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
01:27:10.0554 4752 msdsm - ok
01:27:10.0596 4752 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
01:27:10.0653 4752 Msfs - ok
01:27:10.0804 4752 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
01:27:10.0822 4752 msisadrv - ok
01:27:10.0870 4752 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
01:27:10.0970 4752 MSKSSRV - ok
01:27:11.0066 4752 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
01:27:11.0113 4752 MSPCLOCK - ok
01:27:11.0130 4752 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
01:27:11.0171 4752 MSPQM - ok
01:27:11.0214 4752 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
01:27:11.0233 4752 MsRPC - ok
01:27:11.0265 4752 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
01:27:11.0279 4752 mssmbios - ok
01:27:11.0314 4752 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
01:27:11.0362 4752 MSTEE - ok
01:27:11.0435 4752 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
01:27:11.0452 4752 Mup - ok
01:27:11.0486 4752 mwlPSDFilter (2de94e435c3efde58c7b1856d4f20724) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
01:27:11.0508 4752 mwlPSDFilter - ok
01:27:11.0531 4752 mwlPSDNServ (61920a7146eed3d903dbbb8ec295af76) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
01:27:11.0552 4752 mwlPSDNServ - ok
01:27:11.0569 4752 mwlPSDVDisk (e0f49721e68ebd2983e84c44fada6665) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
01:27:11.0593 4752 mwlPSDVDisk - ok
01:27:11.0670 4752 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
01:27:11.0723 4752 NativeWifiP - ok
01:27:11.0827 4752 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
01:27:11.0910 4752 NDIS - ok
01:27:12.0037 4752 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
01:27:12.0087 4752 NdisTapi - ok
01:27:12.0292 4752 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
01:27:12.0337 4752 Ndisuio - ok
01:27:12.0382 4752 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:27:12.0429 4752 NdisWan - ok
01:27:12.0443 4752 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
01:27:12.0480 4752 NDProxy - ok
01:27:12.0599 4752 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
01:27:12.0634 4752 NetBIOS - ok
01:27:12.0676 4752 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
01:27:12.0708 4752 netbt - ok
01:27:12.0743 4752 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
01:27:12.0758 4752 nfrd960 - ok
01:27:12.0787 4752 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
01:27:12.0825 4752 Npfs - ok
01:27:12.0866 4752 NSCIRDA (6d8d2e5652fc2442c810c5d8be784148) C:\Windows\system32\DRIVERS\nscirda.sys
01:27:12.0903 4752 NSCIRDA - ok
01:27:12.0996 4752 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
01:27:13.0023 4752 nsiproxy - ok
01:27:13.0094 4752 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
01:27:13.0129 4752 Ntfs - ok
01:27:13.0212 4752 NTIDrvr (6dcaa65f49ef3b97a5cffc0cb5de1c2f) C:\Windows\system32\Drivers\NTIDrvr.sys
01:27:13.0221 4752 NTIDrvr - ok
01:27:13.0261 4752 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
01:27:13.0306 4752 ntrigdigi - ok
01:27:13.0381 4752 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
01:27:13.0406 4752 Null - ok
01:27:13.0529 4752 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
01:27:13.0542 4752 nvraid - ok
01:27:13.0626 4752 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
01:27:13.0642 4752 nvstor - ok
01:27:13.0683 4752 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
01:27:13.0701 4752 nv_agp - ok
01:27:13.0724 4752 NwlnkFlt - ok
01:27:13.0757 4752 NwlnkFwd - ok
01:27:13.0851 4752 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
01:27:13.0908 4752 ohci1394 - ok
01:27:14.0067 4752 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
01:27:14.0144 4752 Parport - ok
01:27:14.0188 4752 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
01:27:14.0209 4752 partmgr - ok
01:27:14.0234 4752 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
01:27:14.0305 4752 Parvdm - ok
01:27:14.0447 4752 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
01:27:14.0467 4752 pci - ok
01:27:14.0553 4752 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
01:27:14.0572 4752 pciide - ok
01:27:14.0614 4752 pcmcia (b7c5a8769541900f6dfa6fe0c5e4d513) C:\Windows\system32\DRIVERS\pcmcia.sys
01:27:14.0639 4752 pcmcia - ok
01:27:14.0796 4752 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
01:27:14.0900 4752 PEAUTH - ok
01:27:15.0045 4752 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
01:27:15.0079 4752 PptpMiniport - ok
01:27:15.0212 4752 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
01:27:15.0238 4752 Processor - ok
01:27:15.0367 4752 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
01:27:15.0409 4752 PSched - ok
01:27:15.0533 4752 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
01:27:15.0600 4752 ql2300 - ok
01:27:15.0773 4752 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
01:27:15.0795 4752 ql40xx - ok
01:27:15.0837 4752 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
01:27:15.0875 4752 QWAVEdrv - ok
01:27:16.0013 4752 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
01:27:16.0063 4752 RasAcd - ok
01:27:16.0142 4752 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:27:16.0178 4752 Rasl2tp - ok
01:27:16.0227 4752 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
01:27:16.0253 4752 RasPppoe - ok
01:27:16.0334 4752 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
01:27:16.0374 4752 RasSstp - ok
01:27:16.0491 4752 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
01:27:16.0518 4752 rdbss - ok
01:27:16.0548 4752 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:27:16.0588 4752 RDPCDD - ok
01:27:16.0618 4752 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
01:27:16.0651 4752 rdpdr - ok
01:27:16.0682 4752 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
01:27:16.0717 4752 RDPENCDD - ok
01:27:16.0791 4752 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
01:27:16.0829 4752 RDPWD - ok
01:27:16.0963 4752 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
01:27:17.0033 4752 rspndr - ok
01:27:17.0144 4752 RTHDMIAzAudService (4a8393f03cb2f40e08126d83916c5633) C:\Windows\system32\drivers\RtHDMIV.sys
01:27:17.0177 4752 RTHDMIAzAudService - ok
01:27:17.0224 4752 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
01:27:17.0240 4752 sbp2port - ok
01:27:17.0344 4752 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
01:27:17.0400 4752 sdbus - ok
01:27:17.0537 4752 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
01:27:17.0611 4752 secdrv - ok
01:27:17.0647 4752 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
01:27:17.0724 4752 Serenum - ok
01:27:17.0749 4752 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
01:27:17.0810 4752 Serial - ok
01:27:17.0834 4752 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
01:27:17.0877 4752 sermouse - ok
01:27:17.0916 4752 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
01:27:17.0938 4752 sffdisk - ok
01:27:17.0963 4752 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
01:27:17.0997 4752 sffp_mmc - ok
01:27:18.0022 4752 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
01:27:18.0086 4752 sffp_sd - ok
01:27:18.0198 4752 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
01:27:18.0255 4752 sfloppy - ok
01:27:18.0351 4752 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
01:27:18.0368 4752 sisagp - ok
01:27:18.0402 4752 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
01:27:18.0416 4752 SiSRaid2 - ok
01:27:18.0461 4752 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
01:27:18.0477 4752 SiSRaid4 - ok
01:27:18.0638 4752 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
01:27:18.0671 4752 Smb - ok
01:27:18.0720 4752 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
01:27:18.0739 4752 spldr - ok
01:27:18.0781 4752 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
01:27:18.0803 4752 srv - ok
01:27:18.0841 4752 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
01:27:18.0881 4752 srv2 - ok
01:27:19.0012 4752 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
01:27:19.0041 4752 srvnet - ok
01:27:19.0157 4752 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
01:27:19.0175 4752 swenum - ok
01:27:19.0220 4752 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
01:27:19.0240 4752 Symc8xx - ok
01:27:19.0334 4752 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
01:27:19.0348 4752 Sym_hi - ok
01:27:19.0369 4752 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
01:27:19.0385 4752 Sym_u3 - ok
01:27:19.0543 4752 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
01:27:19.0605 4752 Tcpip - ok
01:27:19.0709 4752 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
01:27:19.0760 4752 Tcpip6 - ok
01:27:19.0857 4752 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
01:27:19.0885 4752 tcpipreg - ok
01:27:19.0930 4752 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
01:27:19.0988 4752 TDPIPE - ok
01:27:20.0148 4752 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
01:27:20.0192 4752 TDTCP - ok
01:27:20.0244 4752 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
01:27:20.0280 4752 tdx - ok
01:27:20.0345 4752 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
01:27:20.0365 4752 TermDD - ok
01:27:20.0441 4752 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:27:20.0502 4752 tssecsrv - ok
01:27:20.0613 4752 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
01:27:20.0654 4752 tunmp - ok
01:27:20.0756 4752 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
01:27:20.0783 4752 tunnel - ok
01:27:20.0806 4752 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
01:27:20.0825 4752 uagp35 - ok
01:27:20.0859 4752 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
01:27:20.0874 4752 UBHelper - ok
01:27:20.0983 4752 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
01:27:21.0023 4752 udfs - ok
01:27:21.0127 4752 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
01:27:21.0147 4752 uliagpkx - ok
01:27:21.0267 4752 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
01:27:21.0291 4752 uliahci - ok
01:27:21.0341 4752 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
01:27:21.0363 4752 UlSata - ok
01:27:21.0435 4752 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
01:27:21.0455 4752 ulsata2 - ok
01:27:21.0542 4752 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
01:27:21.0590 4752 umbus - ok
01:27:21.0631 4752 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
01:27:21.0667 4752 usbccgp - ok
01:27:21.0696 4752 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
01:27:21.0799 4752 usbcir - ok
01:27:21.0917 4752 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
01:27:21.0954 4752 usbehci - ok
01:27:21.0993 4752 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
01:27:22.0031 4752 usbhub - ok
01:27:22.0070 4752 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
01:27:22.0146 4752 usbohci - ok
01:27:22.0163 4752 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
01:27:22.0223 4752 usbprint - ok
01:27:22.0333 4752 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:27:22.0362 4752 USBSTOR - ok
01:27:22.0405 4752 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
01:27:22.0471 4752 usbuhci - ok
01:27:22.0566 4752 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
01:27:22.0619 4752 usbvideo - ok
01:27:22.0742 4752 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
01:27:22.0783 4752 vga - ok
01:27:22.0846 4752 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
01:27:22.0881 4752 VgaSave - ok
01:27:22.0906 4752 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
01:27:22.0924 4752 viaagp - ok
01:27:22.0947 4752 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
01:27:22.0981 4752 ViaC7 - ok
01:27:23.0087 4752 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
01:27:23.0101 4752 viaide - ok
01:27:23.0124 4752 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
01:27:23.0140 4752 volmgr - ok
01:27:23.0224 4752 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
01:27:23.0244 4752 volmgrx - ok
01:27:23.0314 4752 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
01:27:23.0335 4752 volsnap - ok
01:27:23.0389 4752 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
01:27:23.0408 4752 vsmraid - ok
01:27:23.0437 4752 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
01:27:23.0514 4752 WacomPen - ok
01:27:23.0632 4752 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
01:27:23.0697 4752 Wanarp - ok
01:27:23.0703 4752 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
01:27:23.0729 4752 Wanarpv6 - ok
01:27:23.0836 4752 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
01:27:23.0849 4752 Wd - ok
01:27:23.0938 4752 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
01:27:23.0966 4752 Wdf01000 - ok
01:27:24.0056 4752 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:27:24.0116 4752 WmiAcpi - ok
01:27:24.0175 4752 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
01:27:24.0227 4752 ws2ifsl - ok
01:27:24.0344 4752 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:27:24.0399 4752 WUDFRd - ok
01:27:24.0461 4752 MBR (0x1B8) (beedf9b7f43a72a91456f7131afc11b2) \Device\Harddisk0\DR0
01:27:24.0862 4752 \Device\Harddisk0\DR0 - ok
01:27:24.0867 4752 Boot (0x1200) (7e0ffd73a1860cddc97cc7dbe72eada3) \Device\Harddisk0\DR0\Partition0
01:27:24.0868 4752 \Device\Harddisk0\DR0\Partition0 - ok
01:27:24.0871 4752 ================================================== ==========
01:27:24.0871 4752 Scan finished
01:27:24.0872 4752 ================================================== ==========
01:27:24.0886 5664 Detected object count: 1
01:27:24.0886 5664 Actual detected object count: 1
01:27:43.0995 5664 cpuz132 ( UnsignedFile.Multi.Generic ) - skipped by user
01:27:43.0995 5664 cpuz132 ( UnsignedFile.Multi.Generic ) - User select action: Skip
Rosty 4 January 2012, 10:00 Download de Emsisoft Emergency Kit (http://download11.emsisoft.com/EmsisoftEmergencyKit.zip) naar het bureaublad en pak het ZIP bestand uit.
Open de map "EmsisoftEmergencyKit" en dubbelklik op "Start.exe"
Klik nu op "Emergency Kit Scanner" u krijg nu een melding dat het is aanbevolen om eerst te updaten sta dit toe door te klikken op "Ja"
http://i1103.photobucket.com/albums/g476/pcwebplus/EmsisoftEK11.jpg
Als de update gereed is en de melding "Update process is succesvol afgerond" verschijnt klikt u op "menu" en dan op "Scan PC"
Selecteer de optie "Diep" als deze niet standaard al zo is ingesteld.
Klik Nu op de knop "Scan" en doe verder niets op de computer tijdens het scannen, deze scan kan een geruime tijd in beslag nemen dus wacht dit geduldig af.
Het venster met de waarschuwing over een verhoogd risico kunt u sluiten als de scan gereed is.
Opmerking:
Als u deze melding ziet.
C:\Documents and Settings\username\Bureaublad\ComboFix.exe/$0\List.bat Verwijderd Virus.Win32.HTML!IK
Wanneer het bestand in het venster met scanresultaten staat kun je rechtsklikken op die detectie en kiezen voor "Versturen als vals alarm (False Positive)".
Zorg ervoor dat alle gevonden items zijn aangevinkt en druk dan op de knop "verwijder geselecteerde" u zal nu de volgende melding krijgen maar klik hier op "Ja"
http://i1103.photobucket.com/albums/g476/pcwebplus/EmsisoftEK2.jpg
Als het verwijderen gereed is klikt u op de knop "View report" en selecteert u het tekstbestand van deze scan met de naam zoals: a2scan_110730-111615.txt
Plaats de inhoud van dit LOG bestand straks in uw volgende bericht.
Herstart nu de computer.
thierry25 4 January 2012, 23:44 Emsisoft Emergency Kit - Versie 1.0
Laatste Update: 4/01/2012 20:45:56
Scaninstellingen:
Scantype: Diepe Scan
Objecten: Geheugen, Sporen, Cookies, C:\
Scan archieven: Aan
Heuristieken: Uit
ADS Scan: Aan
Scan gestart: 4/01/2012 20:46:51
Key: HKEY_LOCAL_MACHINE\software\Driver Robot Ontdekt: Trace.Registry.DriverRobot!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\eury@com[1].txt Ontdekt: Trace.TrackingCookie.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@about[1].txt Ontdekt: Trace.TrackingCookie.about!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@com[1].txt Ontdekt: Trace.TrackingCookie.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@hc2.humanclick[1].txt Ontdekt: Trace.TrackingCookie.hc2.humanclick!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@hc2.humanclick[3].txt Ontdekt: Trace.TrackingCookie.hc2.humanclick!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@news.com[1].txt Ontdekt: Trace.TrackingCookie.news.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@weborama[1].txt Ontdekt: Trace.TrackingCookie.weborama!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 001 Ontdekt: Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 005 Ontdekt: Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 006 Ontdekt: Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 007 Ontdekt: Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 008 Ontdekt: Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883954 012 Ontdekt: Trace.TrackingCookie.myspace.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254960280574 001 Ontdekt: Trace.TrackingCookie.ad.zanox.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1294025784957 001 Ontdekt: Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1303435131741 001 Ontdekt: Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1307755955364 000 Ontdekt: Trace.TrackingCookie.d1.openx.org!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1307847571974 000 Ontdekt: Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981030731 035 Ontdekt: Trace.TrackingCookie.www.fpctraffic.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 400 Ontdekt: Trace.TrackingCookie.media!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 401 Ontdekt: Trace.TrackingCookie.media!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 402 Ontdekt: Trace.TrackingCookie.media!A2
Gescand
Bestanden: 179956
Sporen: 403649
Cookies: 5664
Processen: 69
Gevonden
Bestanden: 0
Sporen: 1
Cookies: 25
Processen: 0
Registersleutels: 0
Scan Geëindigd: 4/01/2012 22:37:20
Scantijd: 1:50:29
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 400 Verwijderd Trace.TrackingCookie.media!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 401 Verwijderd Trace.TrackingCookie.media!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981031216 402 Verwijderd Trace.TrackingCookie.media!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1320981030731 035 Verwijderd Trace.TrackingCookie.www.fpctraffic.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1307755955364 000 Verwijderd Trace.TrackingCookie.d1.openx.org!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1294025784957 001 Verwijderd Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1303435131741 001 Verwijderd Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1307847571974 000 Verwijderd Trace.TrackingCookie.adserv!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254960280574 001 Verwijderd Trace.TrackingCookie.ad.zanox.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883954 012 Verwijderd Trace.TrackingCookie.myspace.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 001 Verwijderd Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 005 Verwijderd Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 006 Verwijderd Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 007 Verwijderd Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Mozilla\Firefox\Prof iles\a5qcpl38.default\cookies.sqlite:1254688883829 008 Verwijderd Trace.TrackingCookie.ign.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@weborama[1].txt Verwijderd Trace.TrackingCookie.weborama!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@news.com[1].txt Verwijderd Trace.TrackingCookie.news.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@hc2.humanclick[1].txt Verwijderd Trace.TrackingCookie.hc2.humanclick!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@hc2.humanclick[3].txt Verwijderd Trace.TrackingCookie.hc2.humanclick!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@about[1].txt Verwijderd Trace.TrackingCookie.about!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\eury@com[1].txt Verwijderd Trace.TrackingCookie.com!A2
C:\Users\eury\AppData\Roaming\Microsoft\Windows\Co okies\Low\eury@com[1].txt Verwijderd Trace.TrackingCookie.com!A2
Key: HKEY_LOCAL_MACHINE\software\Driver Robot Verwijderd Trace.Registry.DriverRobot!A2
Verwijderd
Bestanden: 0
Sporen: 1
Cookies: 22
Rosty 5 January 2012, 09:25 Nog problemen nu?
thierry25 6 January 2012, 00:34 Zou het niet meteen kunnen zeggen, heb sinds die laatste acties niets meer gedaan, ik laat je morgen iets weten^^
thierry25 7 January 2012, 07:31 Voor de moment lijkt alles in orde, alvast bedankt :)
Rosty 7 January 2012, 10:03 Ga naar Start - Uitvoeren
en Geef hier het volgende in: Combofix /Uninstall
Druk daarna op OK.
Als het goed is krijg je dan een melding dat Combofix verwijderd werd.
Voorbeeld:
http://home.kpn.nl/stefsmeenk/CFUninstall.PNG
Uitvoeren kan ook gestart worden door de toetsencombinatie http://home.kpn.nl/stefsmeenk/W+R.jpg
Vertel nu even of je nog problemen ondervindt?
|
|