Vraag & Antwoord

Beveiliging & privacy

te trage Win 7

88 antwoorden
  • Hoi, wil je het volgende doen: Kladblok starten en dan in de menubalk bij Opmaak het vinkje weghalen bij Automatische terugloop. Dat gedaan hebbende post je vervolgens een nieuw Hijack This-log.
  • OK, bij deze: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:05:48, on 04/02/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v8.00 (8.00.7601.17514) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe C:\Users\Walop\Desktop\utorrent.exe D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\IPS\IPSBHO.DLL O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKCU\..\Run: [Gadwin PrintScreen Pro] "C:\Program Files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe" /nosplash O4 - HKCU\..\Run: [uTorrent] "C:\Users\Walop\Desktop\utorrent.exe" O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\vsocklib.dll O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe -- End of file - 3326 bytes
  • Met jouw log is niks mis. Kan je wat duidelijker zijn over de problemen, die je met Windows 7 hebt?
  • Ik kan alleen maar zeggen dat Win 7 bij mij traag reageert, b.v. op het openen van toepassingen. Ook krijg ik soms een witachtig scherm. Ik heb een oudere PC met Win XP (die ik nu gebruik) die met dezelfde toepassingen minder moeite heeft. Ik heb al een paar adviezen opgevolgd die ik kreeg bij OS Windows, een daarvan was dus een HJT scan. Ik zal e.e.a een paar dagen testen. In elk geval bedankt.
  • Hallo baksteen, dan gaan we nu eerst maar dieper in jouw Windows 7 kijken! [color=#FF0000:d2d2684346][b:d2d2684346]Stap •1•[/b:d2d2684346][/color:d2d2684346] [b:d2d2684346]Welk programma[/b:d2d2684346]: [b:d2d2684346]TDSSStarter.exe[/b:d2d2684346] [b:d2d2684346]Waarvoor/waarom[/b:d2d2684346]: Rootkitscanner [b:d2d2684346]Moeilijkheidsgraad[/b:d2d2684346]: geen Download [b:d2d2684346][url=http://home.kpn.nl/stefsmeenk/tools/TDSSKStarter.exe]TDSSStarter [/url][/b:d2d2684346] naar het bureaublad. [b:d2d2684346]"TDSSSStarter.exe" gebruiken[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346] [b:d2d2684346][color=#0000FF:d2d2684346]Sluit nu eerst alle nog openstaande programmavensters![/color:d2d2684346][/b:d2d2684346] [list:d2d2684346][*:d2d2684346][b:d2d2684346][color=#0000FF:d2d2684346]Windows 2000[/color:d2d2684346][/b:d2d2684346] en [color=#0000FF:d2d2684346][b:d2d2684346]Windows XP[/b:d2d2684346][/color:d2d2684346]: start het tool middels dubbelklik op "[i:d2d2684346] TDSSStarter .exe[/i:d2d2684346]". [*:d2d2684346][color=#0000FF:d2d2684346][b:d2d2684346]Windows Vista[/b:d2d2684346][/color:d2d2684346] en [color=#0000FF:d2d2684346][b:d2d2684346]Windows 7[/b:d2d2684346][/color:d2d2684346]: start het tool middels rechtsklik op "[i:d2d2684346]TDSSStarter.exe[/i:d2d2684346]" en dan kiezen voor [i:d2d2684346][b:d2d2684346]Als Administrator uitvoeren[/b:d2d2684346][/i:d2d2684346].[/list:u:d2d2684346] [*:d2d2684346]Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten. [*:d2d2684346]Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.[/list:u:d2d2684346] [color=#FF0000:d2d2684346][b:d2d2684346]Stap •2•[/b:d2d2684346][/color:d2d2684346] [b:d2d2684346]Welk programma[/b:d2d2684346]: ComboFix [b:d2d2684346]Waarvoor/waarom[/b:d2d2684346]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en zo mogelijk op te schonen. [b:d2d2684346]Moeilijkheidsgraad[/b:d2d2684346]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:d2d2684346]Downloadlokatie[/b:d2d2684346]: Dit programma absoluut naar het bureaublad downloaden! [b:d2d2684346]Download ComboFix via één van deze locaties[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:d2d2684346]Bleepingcomputer[/b:d2d2684346][/url] [*:d2d2684346][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:d2d2684346]ForoSpyware[/b:d2d2684346][/url] [*:d2d2684346][url=http://subs.geekstogo.com/ComboFix.exe][b:d2d2684346]Geekstogo[/b:d2d2684346][/url][/list:u:d2d2684346] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:d2d2684346]Hier[/b:d2d2684346][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn! [url=http://www.bleepingcomputer.com/forums/topic114351.html][b:d2d2684346]Hier[/b:d2d2684346][/url] en [url=http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html][b:d2d2684346]hier[/b:d2d2684346][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:d2d2684346]Voor alle duidelijkheid nogmaals[/b:d2d2684346]: ComboFix dient vanaf het bureaublad gestart te worden. [b:d2d2684346]Opmerkingen[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).[/list:u:d2d2684346] [b:d2d2684346]ComboFix opstarten[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346] [b:d2d2684346][color=#0000FF:d2d2684346]Sluit nu eerst alle nog openstaande programmavensters![/color:d2d2684346][/b:d2d2684346] [list:d2d2684346][*:d2d2684346][b:d2d2684346][color=#0000FF:d2d2684346]Windows 2000[/color:d2d2684346][/b:d2d2684346] en [color=#0000FF:d2d2684346][b:d2d2684346]Windows XP[/b:d2d2684346][/color:d2d2684346]: start ComboFix.exe middels dubbelklik op ComboFix.exe. [*:d2d2684346][color=#0000FF:d2d2684346][b:d2d2684346]Windows Vista[/b:d2d2684346][/color:d2d2684346] en [color=#0000FF:d2d2684346][b:d2d2684346]Windows 7[/b:d2d2684346][/color:d2d2684346]: start ComboFix.exe via rechtsklik op ComboFix.exe en kies dan voor [i:d2d2684346][b:d2d2684346]Als Administrator uitvoeren[/b:d2d2684346][/i:d2d2684346].[/list:u:d2d2684346][/list:u:d2d2684346] [b:d2d2684346]ComboFix is opgestart[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:d2d2684346]Combofix sluit tijdens de scan de internet verbinding; probeer deze tussentijds niet te herstellen! [*:d2d2684346]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:d2d2684346]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:d2d2684346]Post de inhoud van dit logbestand in je volgende bericht. [*:d2d2684346]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:d2d2684346] [b:d2d2684346]Belangrijke opmerking[/b:d2d2684346]: [list:d2d2684346][*:d2d2684346][b:d2d2684346][color=Red:d2d2684346]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:d2d2684346][/b:d2d2684346] [*:d2d2684346][b:d2d2684346][color=blue:d2d2684346]Illegal operation attempted on a registery key that has been marked for deletion.[/color:d2d2684346][/b:d2d2684346] [*:d2d2684346][b:d2d2684346][color=Red:d2d2684346]Start dan de computer opnieuw op.[/color:d2d2684346][/b:d2d2684346][/list:u:d2d2684346] [color=#FF0000:d2d2684346][b:d2d2684346]Stap •3•[/b:d2d2684346][/color:d2d2684346] [b:d2d2684346]Samenvattend: hierna post je in jouw volgende bericht de inhoud van de volgende logs:[/b:d2d2684346] [list:d2d2684346][*:d2d2684346] TDSSKStarter-log [*:d2d2684346] ComboFix.txt-log [/list:u:d2d2684346]
  • Hier is de TDSSSTARTER log 15:59:39.0765 2032 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49 15:59:39.0765 2032 ============================================================ 15:59:39.0765 2032 Current date / time: 2012/02/05 15:59:39.0765 15:59:39.0765 2032 SystemInfo: 15:59:39.0765 2032 15:59:39.0765 2032 OS Version: 6.1.7601 ServicePack: 1.0 15:59:39.0765 2032 Product type: Workstation 15:59:39.0765 2032 ComputerName: WIN7-PC 15:59:39.0765 2032 UserName: Walop 15:59:39.0765 2032 Windows directory: C:\Windows 15:59:39.0765 2032 System windows directory: C:\Windows 15:59:39.0765 2032 Processor architecture: Intel x86 15:59:39.0765 2032 Number of processors: 4 15:59:39.0765 2032 Page size: 0x1000 15:59:39.0780 2032 Boot type: Normal boot 15:59:39.0780 2032 ============================================================ 15:59:51.0137 2032 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 15:59:51.0137 2032 \Device\Harddisk0\DR0: 15:59:51.0153 2032 MBR used 15:59:51.0153 2032 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41 15:59:51.0168 2032 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3A380DBF, BlocksNum 0x3A380D41 15:59:51.0278 2032 Initialize success 15:59:51.0278 2032 ============================================================ 15:59:51.0356 0980 ============================================================ 15:59:51.0356 0980 Scan started 15:59:51.0356 0980 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent; 15:59:51.0356 0980 ============================================================ 15:59:58.0875 0980 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys 15:59:58.0953 0980 1394ohci - ok 15:59:59.0078 0980 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 15:59:59.0109 0980 ACPI - ok 15:59:59.0202 0980 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 15:59:59.0234 0980 AcpiPmi - ok 15:59:59.0358 0980 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 15:59:59.0390 0980 adp94xx - ok 15:59:59.0468 0980 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 15:59:59.0483 0980 adpahci - ok 15:59:59.0530 0980 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 15:59:59.0546 0980 adpu320 - ok 15:59:59.0608 0980 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 15:59:59.0655 0980 AFD - ok 15:59:59.0717 0980 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 15:59:59.0733 0980 agp440 - ok 15:59:59.0780 0980 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 15:59:59.0811 0980 aic78xx - ok 16:00:00.0450 0980 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 16:00:00.0528 0980 aliide - ok 16:00:00.0950 0980 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 16:00:00.0981 0980 amdagp - ok 16:00:01.0043 0980 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 16:00:01.0059 0980 amdide - ok 16:00:01.0106 0980 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 16:00:01.0152 0980 AmdK8 - ok 16:00:01.0917 0980 amdkmdag (f89643a2ca001b1162061e306f8bf267) C:\Windows\system32\DRIVERS\atikmdag.sys 16:00:02.0057 0980 amdkmdag - ok 16:00:02.0135 0980 amdkmdap (fb68e1b9cec598f0f69503f3aebb45dd) C:\Windows\system32\DRIVERS\atikmpag.sys 16:00:02.0151 0980 amdkmdap - ok 16:00:02.0198 0980 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 16:00:02.0244 0980 AmdPPM - ok 16:00:02.0322 0980 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 16:00:02.0338 0980 amdsata - ok 16:00:02.0400 0980 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 16:00:02.0416 0980 amdsbs - ok 16:00:02.0447 0980 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 16:00:02.0447 0980 amdxata - ok 16:00:02.0572 0980 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 16:00:02.0650 0980 AppID - ok 16:00:02.0744 0980 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 16:00:02.0775 0980 arc - ok 16:00:02.0806 0980 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 16:00:02.0806 0980 arcsas - ok 16:00:02.0868 0980 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 16:00:02.0915 0980 AsyncMac - ok 16:00:02.0946 0980 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 16:00:02.0962 0980 atapi - ok 16:00:03.0071 0980 AtiHdmiService (5371ff39ab5c496ac609f9dad755d778) C:\Windows\system32\drivers\AtiHdmi.sys 16:00:18.0110 0980 AtiHdmiService - ok 16:00:18.0749 0980 atikmdag (f89643a2ca001b1162061e306f8bf267) C:\Windows\system32\DRIVERS\atikmdag.sys 16:00:24.0989 0980 atikmdag - ok 16:00:28.0094 0980 AtiPcie (aca01c43d065e546c6dc88ea669ceca6) C:\Windows\system32\DRIVERS\AtiPcie.sys 16:00:28.0172 0980 AtiPcie - ok 16:00:31.0448 0980 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 16:00:31.0494 0980 b06bdrv - ok 16:00:31.0650 0980 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 16:00:31.0666 0980 b57nd60x - ok 16:00:31.0713 0980 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 16:00:31.0775 0980 Beep - ok 16:00:31.0978 0980 BHDrvx86 (e685ba3267c5a4ec4ce9e2b4a1481725) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20120121.002\BHDrvx86.sys 16:00:31.0994 0980 BHDrvx86 - ok 16:00:32.0087 0980 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 16:00:32.0118 0980 blbdrive - ok 16:00:32.0774 0980 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 16:00:32.0789 0980 bowser - ok 16:00:33.0210 0980 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 16:00:33.0242 0980 BrFiltLo - ok 16:00:33.0242 0980 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 16:00:33.0273 0980 BrFiltUp - ok 16:00:34.0224 0980 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 16:00:34.0240 0980 Brserid - ok 16:00:34.0708 0980 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 16:00:34.0755 0980 BrSerWdm - ok 16:00:34.0973 0980 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 16:00:35.0036 0980 BrUsbMdm - ok 16:00:35.0192 0980 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 16:00:35.0270 0980 BrUsbSer - ok 16:00:35.0441 0980 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 16:00:35.0504 0980 BTHMODEM - ok 16:00:35.0660 0980 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 16:00:35.0706 0980 cdfs - ok 16:00:35.0909 0980 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys 16:00:35.0940 0980 cdrom - ok 16:00:36.0112 0980 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 16:00:36.0143 0980 circlass - ok 16:00:36.0284 0980 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 16:00:36.0299 0980 CLFS - ok 16:00:38.0312 0980 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 16:00:38.0343 0980 CmBatt - ok 16:00:38.0452 0980 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 16:00:38.0468 0980 cmdide - ok 16:00:38.0577 0980 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys 16:00:38.0624 0980 CNG - ok 16:00:38.0702 0980 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 16:00:38.0717 0980 Compbatt - ok 16:00:38.0811 0980 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys 16:00:38.0826 0980 CompositeBus - ok 16:00:38.0936 0980 cpuz132 - ok 16:00:39.0731 0980 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 16:00:39.0747 0980 crcdisk - ok 16:00:39.0794 0980 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 16:00:39.0825 0980 CSC - ok 16:00:39.0840 0980 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 16:00:39.0903 0980 DfsC - ok 16:00:39.0918 0980 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 16:00:39.0934 0980 discache - ok 16:00:41.0120 0980 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 16:00:41.0120 0980 Disk - ok 16:00:41.0354 0980 DiskSec (f6010162368d9bef934f1647f2430446) C:\Windows\system32\drivers\DiskSec.sys 16:00:41.0416 0980 DiskSec ( UnsignedFile.Multi.Generic ) - warning 16:00:41.0416 0980 DiskSec - detected UnsignedFile.Multi.Generic (1) 16:00:41.0494 0980 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 16:00:41.0525 0980 drmkaud - ok 16:00:41.0666 0980 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 16:00:41.0681 0980 DXGKrnl - ok 16:00:41.0837 0980 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 16:00:42.0024 0980 ebdrv - ok 16:00:42.0149 0980 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 16:00:42.0212 0980 eeCtrl - ok 16:00:42.0758 0980 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 16:00:42.0804 0980 elxstor - ok 16:00:43.0350 0980 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 16:00:43.0350 0980 EraserUtilRebootDrv - ok 16:00:44.0177 0980 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 16:00:44.0474 0980 ErrDev - ok 16:00:44.0536 0980 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 16:00:44.0614 0980 exfat - ok 16:00:44.0723 0980 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 16:00:44.0801 0980 fastfat - ok 16:00:44.0848 0980 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 16:00:44.0864 0980 fdc - ok 16:00:44.0879 0980 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 16:00:44.0879 0980 FileInfo - ok 16:00:44.0895 0980 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 16:00:44.0942 0980 Filetrace - ok 16:00:44.0957 0980 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 16:00:44.0973 0980 flpydisk - ok 16:00:44.0988 0980 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 16:00:45.0004 0980 FltMgr - ok 16:00:45.0020 0980 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 16:00:45.0020 0980 FsDepends - ok 16:00:45.0035 0980 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 16:00:45.0035 0980 Fs_Rec - ok 16:00:45.0160 0980 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 16:00:45.0176 0980 fvevol - ok 16:00:45.0191 0980 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 16:00:45.0207 0980 gagp30kx - ok 16:00:45.0238 0980 hcmon (88a6f2571405b3a4abc4ed2f52136317) C:\Windows\system32\drivers\hcmon.sys 16:00:45.0254 0980 hcmon - ok 16:00:45.0862 0980 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 16:00:48.0561 0980 hcw85cir - ok 16:00:48.0608 0980 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 16:00:48.0639 0980 HdAudAddService - ok 16:00:48.0748 0980 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys 16:00:48.0779 0980 HDAudBus - ok 16:00:48.0779 0980 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 16:00:48.0810 0980 HidBatt - ok 16:00:48.0857 0980 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 16:00:48.0888 0980 HidBth - ok 16:00:48.0935 0980 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 16:00:48.0966 0980 HidIr - ok 16:00:49.0388 0980 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys 16:00:49.0512 0980 HidUsb - ok 16:00:49.0575 0980 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 16:00:49.0590 0980 HpSAMD - ok 16:00:49.0622 0980 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 16:00:49.0653 0980 HTTP - ok 16:00:49.0731 0980 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 16:00:49.0731 0980 hwpolicy - ok 16:00:49.0840 0980 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 16:00:49.0856 0980 i8042prt - ok 16:00:49.0887 0980 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 16:00:49.0949 0980 iaStorV - ok 16:00:50.0464 0980 IDSVix86 (b6662611e8fa3a71473c4a9bd0d23755) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20120203.002\IDSvix86.sys 16:00:50.0464 0980 IDSVix86 - ok 16:00:50.0526 0980 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 16:00:50.0542 0980 iirsp - ok 16:00:50.0604 0980 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 16:00:50.0604 0980 intelide - ok 16:00:50.0979 0980 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 16:00:51.0072 0980 intelppm - ok 16:00:51.0494 0980 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 16:00:51.0681 0980 IpFilterDriver - ok 16:00:52.0211 0980 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 16:00:52.0336 0980 IPMIDRV - ok 16:00:52.0383 0980 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 16:00:52.0476 0980 IPNAT - ok 16:00:52.0570 0980 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 16:00:52.0710 0980 IRENUM - ok 16:00:53.0116 0980 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 16:00:53.0194 0980 isapnp - ok 16:00:53.0631 0980 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 16:00:53.0693 0980 iScsiPrt - ok 16:00:56.0064 0980 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys 16:00:56.0064 0980 kbdclass - ok 16:00:56.0564 0980 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys 16:00:56.0954 0980 kbdhid - ok 16:00:57.0437 0980 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys 16:00:57.0453 0980 KSecDD - ok 16:00:59.0122 0980 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys 16:00:59.0138 0980 KSecPkg - ok 16:00:59.0184 0980 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 16:00:59.0216 0980 lltdio - ok 16:00:59.0808 0980 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 16:00:59.0855 0980 LSI_FC - ok 16:01:00.0292 0980 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 16:01:00.0339 0980 LSI_SAS - ok 16:01:00.0791 0980 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 16:01:00.0807 0980 LSI_SAS2 - ok 16:01:01.0150 0980 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 16:01:01.0166 0980 LSI_SCSI - ok 16:01:01.0212 0980 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 16:01:01.0259 0980 luafv - ok 16:01:01.0290 0980 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 16:01:01.0306 0980 megasas - ok 16:01:01.0322 0980 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 16:01:01.0322 0980 MegaSR - ok 16:01:01.0337 0980 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 16:01:01.0384 0980 Modem - ok 16:01:01.0462 0980 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 16:01:01.0540 0980 monitor - ok 16:01:01.0540 0980 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys 16:01:01.0556 0980 mouclass - ok 16:01:01.0649 0980 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 16:01:01.0743 0980 mouhid - ok 16:01:02.0133 0980 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 16:01:02.0148 0980 mountmgr - ok 16:01:02.0289 0980 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 16:01:02.0304 0980 mpio - ok 16:01:02.0351 0980 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 16:01:02.0507 0980 mpsdrv - ok 16:01:02.0835 0980 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 16:01:03.0162 0980 MRxDAV - ok 16:01:03.0568 0980 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 16:01:03.0677 0980 mrxsmb - ok 16:01:04.0036 0980 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 16:01:04.0083 0980 mrxsmb10 - ok 16:01:06.0470 0980 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 16:01:06.0501 0980 mrxsmb20 - ok 16:01:06.0532 0980 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 16:01:06.0548 0980 msahci - ok 16:01:06.0563 0980 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 16:01:06.0610 0980 msdsm - ok 16:01:06.0828 0980 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 16:01:06.0844 0980 Msfs - ok 16:01:07.0140 0980 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 16:01:07.0218 0980 mshidkmdf - ok 16:01:07.0250 0980 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 16:01:07.0281 0980 msisadrv - ok 16:01:07.0546 0980 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 16:01:07.0577 0980 MSKSSRV - ok 16:01:07.0671 0980 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 16:01:07.0749 0980 MSPCLOCK - ok 16:01:07.0780 0980 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 16:01:07.0811 0980 MSPQM - ok 16:01:07.0952 0980 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 16:01:07.0967 0980 MsRPC - ok 16:01:08.0014 0980 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys 16:01:08.0030 0980 mssmbios - ok 16:01:08.0061 0980 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 16:01:08.0108 0980 MSTEE - ok 16:01:08.0123 0980 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 16:01:08.0139 0980 MTConfig - ok 16:01:08.0154 0980 MTsensor (cbe71c122434805cb73ffb6619f60598) C:\Windows\system32\DRIVERS\ASACPI.sys 16:01:08.0170 0980 MTsensor - ok 16:01:08.0186 0980 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 16:01:08.0186 0980 Mup - ok 16:01:08.0217 0980 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 16:01:08.0232 0980 NativeWifiP - ok 16:01:08.0404 0980 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20120204.023\NAVENG.SYS 16:01:08.0404 0980 NAVENG - ok 16:01:08.0607 0980 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20120204.023\NAVEX15.SYS 16:01:08.0622 0980 NAVEX15 - ok 16:01:09.0075 0980 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 16:01:09.0137 0980 NDIS - ok 16:01:09.0496 0980 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 16:01:09.0730 0980 NdisCap - ok 16:01:09.0995 0980 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 16:01:10.0026 0980 NdisTapi - ok 16:01:10.0151 0980 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 16:01:10.0198 0980 Ndisuio - ok 16:01:10.0401 0980 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 16:01:10.0510 0980 NdisWan - ok 16:01:10.0650 0980 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 16:01:10.0666 0980 NDProxy - ok 16:01:10.0791 0980 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 16:01:10.0822 0980 NetBIOS - ok 16:01:11.0134 0980 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 16:01:11.0228 0980 NetBT - ok 16:01:11.0477 0980 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 16:01:11.0508 0980 nfrd960 - ok 16:01:11.0696 0980 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 16:01:11.0727 0980 Npfs - ok 16:01:11.0836 0980 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 16:01:11.0898 0980 nsiproxy - ok 16:01:12.0257 0980 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 16:01:12.0288 0980 Ntfs - ok 16:01:12.0320 0980 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 16:01:12.0351 0980 Null - ok 16:01:12.0413 0980 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 16:01:12.0429 0980 nvraid - ok 16:01:12.0460 0980 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 16:01:12.0538 0980 nvstor - ok 16:01:12.0569 0980 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 16:01:12.0585 0980 nv_agp - ok 16:01:12.0616 0980 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 16:01:12.0710 0980 ohci1394 - ok 16:01:12.0725 0980 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 16:01:12.0741 0980 Parport - ok 16:01:12.0756 0980 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 16:01:12.0756 0980 partmgr - ok 16:01:12.0772 0980 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 16:01:12.0803 0980 Parvdm - ok 16:01:12.0819 0980 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 16:01:12.0819 0980 pci - ok 16:01:12.0834 0980 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 16:01:12.0850 0980 pciide - ok 16:01:12.0866 0980 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 16:01:13.0209 0980 pcmcia - ok 16:01:13.0302 0980 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 16:01:13.0318 0980 pcw - ok 16:01:13.0396 0980 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 16:01:13.0521 0980 PEAUTH - ok 16:01:13.0646 0980 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 16:01:13.0661 0980 PptpMiniport - ok 16:01:13.0677 0980 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 16:01:13.0708 0980 Processor - ok 16:01:13.0770 0980 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 16:01:13.0802 0980 Psched - ok 16:01:13.0926 0980 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\Windows\system32\Drivers\PxHelp20.sys 16:01:14.0192 0980 PxHelp20 - ok 16:01:14.0504 0980 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 16:01:14.0535 0980 ql2300 - ok 16:01:14.0582 0980 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 16:01:14.0582 0980 ql40xx - ok 16:01:14.0644 0980 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 16:01:14.0660 0980 QWAVEdrv - ok 16:01:14.0706 0980 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 16:01:14.0722 0980 RasAcd - ok 16:01:14.0831 0980 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 16:01:14.0909 0980 RasAgileVpn - ok 16:01:14.0972 0980 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 16:01:15.0003 0980 Rasl2tp - ok 16:01:15.0112 0980 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 16:01:15.0143 0980 RasPppoe - ok 16:01:15.0143 0980 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 16:01:15.0221 0980 RasSstp - ok 16:01:15.0299 0980 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 16:01:15.0330 0980 rdbss - ok 16:01:15.0330 0980 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 16:01:15.0346 0980 rdpbus - ok 16:01:15.0377 0980 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 16:01:15.0408 0980 RDPCDD - ok 16:01:15.0440 0980 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 16:01:15.0471 0980 RDPDR - ok 16:01:15.0486 0980 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 16:01:15.0502 0980 RDPENCDD - ok 16:01:15.0502 0980 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 16:01:15.0518 0980 RDPREFMP - ok 16:01:15.0596 0980 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 16:01:15.0627 0980 RDPWD - ok 16:01:15.0642 0980 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 16:01:15.0658 0980 rdyboost - ok 16:01:15.0689 0980 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 16:01:15.0705 0980 rspndr - ok 16:01:15.0830 0980 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys 16:01:15.0830 0980 RTL8167 - ok 16:01:15.0861 0980 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 16:01:15.0908 0980 s3cap - ok 16:01:15.0923 0980 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 16:01:15.0939 0980 sbp2port - ok 16:01:15.0954 0980 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 16:01:15.0970 0980 scfilter - ok 16:01:15.0986 0980 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 16:01:16.0048 0980 secdrv - ok 16:01:16.0079 0980 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 16:01:16.0079 0980 Serenum - ok 16:01:16.0095 0980 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 16:01:16.0126 0980 Serial - ok 16:01:16.0142 0980 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 16:01:16.0142 0980 sermouse - ok 16:01:16.0173 0980 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 16:01:16.0204 0980 sffdisk - ok 16:01:16.0204 0980 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 16:01:16.0220 0980 sffp_mmc - ok 16:01:16.0235 0980 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 16:01:16.0266 0980 sffp_sd - ok 16:01:16.0282 0980 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 16:01:16.0298 0980 sfloppy - ok 16:01:16.0298 0980 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 16:01:16.0313 0980 sisagp - ok 16:01:16.0329 0980 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 16:01:16.0329 0980 SiSRaid2 - ok 16:01:16.0344 0980 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 16:01:16.0360 0980 SiSRaid4 - ok 16:01:16.0376 0980 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 16:01:16.0391 0980 Smb - ok 16:01:16.0407 0980 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 16:01:16.0422 0980 spldr - ok 16:01:16.0516 0980 SRTSP (83726cf02eced69138948083e06b6eac) C:\Windows\System32\Drivers\NAV\1206000.01D\SRTSP.SYS 16:01:16.0516 0980 SRTSP - ok 16:01:16.0547 0980 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\Windows\system32\drivers\NAV\1206000.01D\SRTSPX.SYS 16:01:16.0547 0980 SRTSPX - ok 16:01:16.0594 0980 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 16:01:16.0656 0980 srv - ok 16:01:16.0688 0980 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 16:01:16.0703 0980 srv2 - ok 16:01:16.0750 0980 SrvHsfPCI (682fcf7d2eb5158cd30408e976562408) C:\Windows\system32\DRIVERS\VSTBS23.SYS 16:01:16.0766 0980 SrvHsfPCI - ok 16:01:16.0828 0980 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS 16:01:16.0844 0980 SrvHsfV92 - ok 16:01:16.0890 0980 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS 16:01:16.0922 0980 SrvHsfWinac - ok 16:01:16.0922 0980 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 16:01:17.0000 0980 srvnet - ok 16:01:17.0015 0980 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 16:01:17.0031 0980 stexstor - ok 16:01:17.0062 0980 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 16:01:17.0062 0980 storflt - ok 16:01:17.0109 0980 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 16:01:17.0109 0980 storvsc - ok 16:01:17.0124 0980 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys 16:01:17.0140 0980 swenum - ok 16:01:17.0156 0980 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\Windows\system32\drivers\NAV\1206000.01D\SYMDS.SYS 16:01:17.0156 0980 SymDS - ok 16:01:17.0187 0980 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\Windows\system32\drivers\NAV\1206000.01D\SYMEFA.SYS 16:01:17.0202 0980 SymEFA - ok 16:01:17.0218 0980 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\Windows\system32\Drivers\SYMEVENT.SYS 16:01:17.0234 0980 SymEvent - ok 16:01:17.0265 0980 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\NAV\1206000.01D\Ironx86.SYS 16:01:17.0280 0980 SymIRON - ok 16:01:17.0312 0980 SymNetS (cc71cf163de8b62ccd077e20e909c960) C:\Windows\System32\Drivers\NAV\1206000.01D\SYMNETS.SYS 16:01:17.0327 0980 SymNetS - ok 16:01:17.0374 0980 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys 16:01:17.0530 0980 Tcpip - ok 16:01:17.0624 0980 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys 16:01:17.0639 0980 TCPIP6 - ok 16:01:17.0748 0980 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 16:01:17.0780 0980 tcpipreg - ok 16:01:17.0795 0980 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 16:01:17.0826 0980 TDPIPE - ok 16:01:17.0826 0980 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 16:01:17.0936 0980 TDTCP - ok 16:01:18.0060 0980 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 16:01:18.0076 0980 tdx - ok 16:01:18.0092 0980 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys 16:01:18.0092 0980 TermDD - ok 16:01:18.0154 0980 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 16:01:18.0185 0980 tssecsrv - ok 16:01:18.0216 0980 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 16:01:18.0248 0980 TsUsbFlt - ok 16:01:18.0279 0980 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 16:01:18.0294 0980 tunnel - ok 16:01:18.0435 0980 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 16:01:18.0482 0980 uagp35 - ok 16:01:18.0497 0980 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 16:01:18.0513 0980 udfs - ok 16:01:18.0544 0980 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 16:01:18.0560 0980 uliagpkx - ok 16:01:18.0575 0980 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys 16:01:18.0591 0980 umbus - ok 16:01:18.0700 0980 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 16:01:18.0700 0980 UmPass - ok 16:01:18.0716 0980 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\drivers\usbccgp.sys 16:01:18.0747 0980 usbccgp - ok 16:01:18.0763 0980 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 16:01:18.0778 0980 usbcir - ok 16:01:18.0794 0980 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 16:01:18.0794 0980 usbehci - ok 16:01:18.0825 0980 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 16:01:18.0841 0980 usbhub - ok 16:01:18.0841 0980 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys 16:01:18.0872 0980 usbohci - ok 16:01:18.0887 0980 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 16:01:18.0919 0980 usbprint - ok 16:01:18.0950 0980 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 16:01:18.0981 0980 usbscan - ok 16:01:19.0012 0980 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS 16:01:19.0043 0980 USBSTOR - ok 16:01:19.0059 0980 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys 16:01:19.0090 0980 usbuhci - ok 16:01:19.0262 0980 VBoxDrv (103b23ec82c08fc4bdbc369552ffab2a) C:\Windows\system32\DRIVERS\VBoxDrv.sys 16:01:19.0262 0980 VBoxDrv - ok 16:01:19.0293 0980 VBoxNetAdp (226cd9e42be28a84ec56430fbb57224f) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys 16:01:19.0293 0980 VBoxNetAdp - ok 16:01:19.0340 0980 VBoxNetFlt (0a5d6512dcb14135a388d0e7e69e01bb) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys 16:01:19.0340 0980 VBoxNetFlt - ok 16:01:19.0355 0980 VBoxUSBMon (96a478edfb1fbf1fc663beb09b4175a8) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys 16:01:19.0355 0980 VBoxUSBMon - ok 16:01:19.0387 0980 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 16:01:19.0387 0980 vdrvroot - ok 16:01:19.0402 0980 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 16:01:19.0418 0980 vga - ok 16:01:19.0433 0980 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 16:01:19.0449 0980 VgaSave - ok 16:01:19.0605 0980 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 16:01:19.0621 0980 vhdmp - ok 16:01:19.0667 0980 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 16:01:19.0667 0980 viaagp - ok 16:01:19.0699 0980 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 16:01:19.0714 0980 ViaC7 - ok 16:01:19.0745 0980 VIAHdAudAddService (dc56a867a2d92e1c51cb6d3f9c540548) C:\Windows\system32\drivers\viahduaa.sys 16:01:19.0777 0980 VIAHdAudAddService - ok 16:01:19.0886 0980 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 16:01:19.0933 0980 viaide - ok 16:01:20.0057 0980 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 16:01:20.0073 0980 vmbus - ok 16:01:20.0089 0980 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 16:01:20.0120 0980 VMBusHID - ok 16:01:20.0135 0980 vmci (15759158f7531853616b2b43af962fcb) C:\Windows\system32\DRIVERS\vmci.sys 16:01:20.0151 0980 vmci - ok 16:01:20.0182 0980 vmkbd (050b387296f34735d21dfa87cec37352) C:\Windows\system32\drivers\VMkbd.sys 16:01:20.0198 0980 vmkbd - ok 16:01:20.0229 0980 vmm (e41fef9e3056fe88c71e411f705be41e) C:\Windows\system32\Drivers\vmm.sys 16:01:20.0229 0980 vmm - ok 16:01:20.0307 0980 VMnetAdapter (1afa4af55cbea579a4bbe4f90967f720) C:\Windows\system32\DRIVERS\vmnetadapter.sys 16:01:20.0323 0980 VMnetAdapter - ok 16:01:20.0369 0980 VMnetBridge (392964a7bf46986fbd44b24a3bec2088) C:\Windows\system32\DRIVERS\vmnetbridge.sys 16:01:20.0369 0980 VMnetBridge - ok 16:01:20.0385 0980 VMnetuserif (effcb341824be12e3134d4fb970a11e4) C:\Windows\system32\drivers\vmnetuserif.sys 16:01:20.0401 0980 VMnetuserif - ok 16:01:20.0432 0980 VMparport (ed1ce6bd51e2a1204c74720060744e90) C:\Windows\system32\Drivers\VMparport.sys 16:01:20.0463 0980 VMparport - ok 16:01:20.0603 0980 vmx86 (20b24d3b2dac84664eefeebf55b53008) C:\Windows\system32\Drivers\vmx86.sys 16:01:20.0619 0980 vmx86 - ok 16:01:20.0619 0980 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 16:01:20.0635 0980 volmgr - ok 16:01:20.0853 0980 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 16:01:20.0869 0980 volmgrx - ok 16:01:20.0915 0980 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 16:01:20.0931 0980 volsnap - ok 16:01:20.0962 0980 VPCNetS2 (f96a678debdccb0b4bb7f38cb2580589) C:\Windows\system32\DRIVERS\VMNetSrv.sys 16:01:20.0978 0980 VPCNetS2 - ok 16:01:20.0993 0980 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 16:01:21.0009 0980 vsmraid - ok 16:01:21.0025 0980 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 16:01:21.0087 0980 vwifibus - ok 16:01:21.0103 0980 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 16:01:21.0118 0980 WacomPen - ok 16:01:21.0149 0980 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 16:01:21.0196 0980 WANARP - ok 16:01:21.0196 0980 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 16:01:21.0212 0980 Wanarpv6 - ok 16:01:21.0383 0980 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 16:01:21.0383 0980 Wd - ok 16:01:21.0399 0980 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 16:01:21.0415 0980 Wdf01000 - ok 16:01:21.0446 0980 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 16:01:21.0461 0980 WfpLwf - ok 16:01:21.0461 0980 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 16:01:21.0477 0980 WIMMount - ok 16:01:21.0633 0980 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 16:01:21.0664 0980 WmiAcpi - ok 16:01:21.0680 0980 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 16:01:21.0711 0980 ws2ifsl - ok 16:01:21.0836 0980 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 16:01:21.0883 0980 WudfPf - ok 16:01:22.0007 0980 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 16:01:22.0039 0980 WUDFRd - ok 16:01:22.0054 0980 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 16:01:22.0678 0980 \Device\Harddisk0\DR0 - ok 16:01:22.0678 0980 Boot (0x1200) (151f12efde28fa2c08cd08e1ff1dbbb5) \Device\Harddisk0\DR0\Partition0 16:01:22.0678 0980 \Device\Harddisk0\DR0\Partition0 - ok 16:01:22.0678 0980 Boot (0x1200) (3262cad7a20f0598ba1f6dcfea77bb26) \Device\Harddisk0\DR0\Partition1 16:01:22.0678 0980 \Device\Harddisk0\DR0\Partition1 - ok 16:01:22.0678 0980 ============================================================ 16:01:22.0678 0980 Scan finished 16:01:22.0678 0980 ============================================================ 16:01:26.0765 1772 Deinitialize success ============================================== Last Created System Restore Point ============================================== RP155: 04/02/2012 14:02:58 - Installed HiJackThis ============================================== EOF
  • Hoi Baksteen, nog geen tijd gehad voor ComboFix? In ieder geval geen rootkits in de MBRS van de HD's!
  • Nee, nog niet, maar komt vandaag.
  • Hier is hij dan: ComboFix 12-02-06.02 - Walop 07/02/2012 1:33.1.4 - x86 Microsoft Windows 7 Professional 6.1.7601.1.1252.31.1033.18.3327.2238 [GMT 1:00] Gestart vanuit: c:\users\Walop\Desktop\ComboFix.exe AV: Norton AntiVirus *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} SP: Norton AntiVirus *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\IsUn0413.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2012-01-07 to 2012-02-07 )))))))))))))))))))))))))))))) . . 2012-02-07 00:51 . 2012-02-07 00:52 -------- d-----w- c:\users\Walop\AppData\Local\temp 2012-02-07 00:51 . 2012-02-07 00:51 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-02-05 14:58 . 2012-02-05 15:01 -------- d-----w- C:\TDSSStarter 2012-02-04 13:03 . 2012-02-04 13:03 388096 ----a-r- c:\users\Walop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-01-31 13:55 . 2012-01-31 13:55 -------- d-----w- c:\windows\system32\drivers\NAV\1207000.00D 2012-01-31 13:44 . 2011-11-17 05:41 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-01-31 13:44 . 2011-11-17 05:41 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2012-01-31 13:44 . 2011-11-17 05:39 369352 ----a-w- c:\windows\system32\drivers\cng.sys 2012-01-31 13:44 . 2011-11-17 05:35 314880 ----a-w- c:\windows\system32\webio.dll 2012-01-31 13:44 . 2011-11-17 05:34 100352 ----a-w- c:\windows\system32\sspicli.dll 2012-01-31 13:44 . 2011-11-17 05:34 224768 ----a-w- c:\windows\system32\schannel.dll 2012-01-31 13:44 . 2011-11-17 05:32 1038848 ----a-w- c:\windows\system32\lsasrv.dll 2012-01-31 13:44 . 2011-11-17 05:29 22528 ----a-w- c:\windows\system32\lsass.exe 2012-01-31 13:44 . 2011-11-17 05:34 15872 ----a-w- c:\windows\system32\sspisrv.dll 2012-01-31 13:44 . 2011-11-17 05:34 22016 ----a-w- c:\windows\system32\secur32.dll 2012-01-26 17:39 . 2012-01-26 17:43 -------- d-----w- c:\program files\SecondLifeViewer 2012-01-13 15:04 . 2012-02-03 21:48 45016 ----a-w- c:\program files\Mozilla Firefox\mozutils.dll 2012-01-13 15:04 . 2012-01-13 15:04 626688 ----a-w- c:\program files\Mozilla Firefox\msvcr80.dll 2012-01-13 15:04 . 2012-01-13 15:04 548864 ----a-w- c:\program files\Mozilla Firefox\msvcp80.dll 2012-01-13 15:04 . 2012-01-13 15:04 479232 ----a-w- c:\program files\Mozilla Firefox\msvcm80.dll 2012-01-11 21:52 . 2011-11-17 05:38 1288472 ----a-w- c:\windows\system32\ntdll.dll 2012-01-11 21:52 . 2011-11-19 14:01 67072 ----a-w- c:\windows\system32\packager.dll 2012-01-11 21:52 . 2011-10-26 04:32 514560 ----a-w- c:\windows\system32\qdvd.dll 2012-01-11 21:52 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\system32\quartz.dll 2012-01-10 12:57 . 2012-01-10 13:17 -------- d-----w- c:\users\Walop\VirtualBox VMs 2012-01-10 12:47 . 2011-12-19 13:11 158512 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2012-01-10 12:46 . 2011-12-19 13:11 91440 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-01-10 13:23 . 2012-01-07 13:40 165232 ---ha-w- c:\users\Walop\AppData\Roaming\Microsoft\Virtual PC\VPCKeyboard.dll 2011-12-19 13:12 . 2011-12-19 13:12 104752 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys 2011-12-19 13:11 . 2011-12-19 13:11 116016 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys 2011-12-19 13:11 . 2011-12-19 13:11 135472 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll 2011-12-10 14:24 . 2011-05-09 23:00 20464 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-11-24 04:25 . 2011-12-14 14:14 2342912 ----a-w- c:\windows\system32\win32k.sys 2011-11-19 15:56 . 2011-05-14 10:48 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-11-13 22:43 . 2011-11-13 22:43 55664 ----a-w- c:\windows\system32\drivers\vmx86.sys 2011-11-13 22:43 . 2012-01-07 13:58 783472 ----a-w- c:\windows\system32\vnetlib.dll 2011-11-13 22:42 . 2012-01-07 13:58 354416 ----a-w- c:\windows\system32\vmnetdhcp.exe 2011-11-13 22:42 . 2012-01-07 13:58 433264 ----a-w- c:\windows\system32\vmnat.exe 2011-11-13 22:42 . 2011-11-13 22:42 23792 ----a-w- c:\windows\system32\drivers\vmparport.sys 2011-11-13 22:42 . 2012-01-07 13:58 25584 ----a-w- c:\windows\system32\drivers\VMkbd.sys 2011-11-13 22:42 . 2012-01-07 13:58 25712 ----a-w- c:\windows\system32\drivers\vmnetuserif.sys 2011-11-13 20:59 . 2011-11-13 20:59 252016 ----a-w- c:\windows\system32\vmnc.dll 2011-11-13 20:33 . 2011-11-13 20:33 55408 ----a-w- c:\windows\system32\vmnetbridge.dll 2011-11-13 20:33 . 2011-11-13 20:33 49776 ----a-w- c:\windows\system32\vnetinst.dll 2011-11-13 20:33 . 2011-11-13 20:33 36464 ----a-w- c:\windows\system32\drivers\vmnetbridge.sys 2011-11-13 20:33 . 2011-11-13 20:33 19568 ----a-w- c:\windows\system32\drivers\vmnet.sys 2011-11-13 20:33 . 2011-11-13 20:33 16624 ----a-w- c:\windows\system32\drivers\vmnetadapter.sys 2012-02-03 21:48 . 2011-04-30 16:50 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gadwin PrintScreen Pro"="c:\program files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe" [2010-10-14 507904] "uTorrent"="c:\users\Walop\Desktop\utorrent.exe" [2011-04-10 399736] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKLM\~\startupfolder\C:^Users^Walop^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MiniReminder.lnk] path=c:\users\Walop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MiniReminder.lnk backup=c:\windows\pss\MiniReminder.lnk.Startup backupExtension=.Startup . [HKLM\~\startupfolder\C:^Users^Walop^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk] path=c:\users\Walop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk backup=c:\windows\pss\OpenOffice.org 3.3.lnk.Startup backupExtension=.Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2012-01-02 09:07 843712 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2012-01-03 21:51 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2011-09-27 06:22 59240 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CPMonitor] 2009-07-21 10:50 84464 ----a-w- c:\program files\Roxio 2010\5.0\CPMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool] 2009-06-23 00:18 494064 ----a-w- c:\program files\Roxio 2010\Roxio Burn\RoxioBurnLauncher.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadwin PrintScreen Pro] 2010-10-14 08:03 507904 ----a-w- c:\program files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2011-06-21 12:51 136176 ----atw- c:\users\Walop\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] 2009-07-24 07:33 240112 ----a-w- c:\program files\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatchTray12.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC] 2010-04-06 20:25 102400 ----a-w- c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] 2011-04-10 11:39 399736 ----a-w- c:\users\Walop\Desktop\utorrent.exe . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-28 1343400] R4 RoxMediaDB12;RoxMediaDB12;c:\program files\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe [2009-07-24 1116656] R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe [2009-07-24 219632] R4 VMUSBArbService;VMware USB Arbitration Service;c:\program files\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-08-29 665200] S0 DiskSec;Magix Volume Filter Driver; [x] S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NAV\1206000.01D\SYMDS.SYS [2011-01-27 340088] S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NAV\1206000.01D\SYMEFA.SYS [2011-03-15 744568] S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [2011-08-08 98928] S1 BHDrvx86;BHDrvx86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20120121.002\BHDrvx86.sys [2011-12-01 820344] S1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20120203.002\IDSvix86.sys [2011-12-15 368248] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NAV\1206000.01D\Ironx86.SYS [2011-01-27 136312] S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NAV\1206000.01D\SYMNETS.SYS [2011-03-22 296568] S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-12-19 158512] S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2011-12-19 91440] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-04-20 176128] S2 NAV;Norton AntiVirus;c:\program files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe [2011-04-17 130008] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-04-20 7772160] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-04-19 243712] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-02-04 106104] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776] S3 SrvHsfPCI;SrvHsfPCI;c:\windows\system32\DRIVERS\VSTBS23.SYS [2009-07-13 266752] S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992] S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504] S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 104752] S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [2011-12-19 116016] S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-10-21 1102848] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - cpuz132 . Inhoud van de 'Gedeelde Taken' map . 2012-02-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1690226732-1544728178-401627873-1000Core.job - c:\users\Walop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-21 12:51] . 2012-02-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1690226732-1544728178-401627873-1000UA.job - c:\users\Walop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-21 12:51] . 2012-02-07 c:\windows\Tasks\PCCT - MAGIX AG.job - c:\program files\MAGIX\PC_Check_Tuning_2010_Download-versie\MxTray.exe [2010-10-31 12:35] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.foozir.com/ LSP: %SystemRoot%\system32\vsocklib.dll TCP: DhcpNameServer = 62.179.104.196 213.46.228.196 FF - ProfilePath - c:\users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2865317&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - uTorrentBar_NL Customized Web Search FF - user.js: yahoo.homepage.dontask - true . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-Van Dale Grote woordenboeken Engels - c:\windows\ISUN0413.EXE . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\NAV] "ImagePath"="\"c:\program files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe\" /s \"NAV\" /m \"c:\program files\Norton AntiVirus\Engine\18.6.0.29\diMaster.dll\" /prefetch:1" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-02-07 02:00:49 ComboFix-quarantined-files.txt 2012-02-07 01:00 . Pre-Run: 235,845,050,368 bytes free Post-Run: 236,350,263,296 bytes free . - - End Of File - - E062EFDEAF588FFA0DC9EB1D933C528F
  • Door de toolbar van uTorrent mee te installeren, heb je nu Conduit in Firefox zitten! [b:435c16ea28]Welk programma[/b:435c16ea28]: Zoek.exe van Smeenk [b:435c16ea28]Waarvoor/waarom[/b:435c16ea28]: multifunktioneel tool [b:435c16ea28]Moeilijkheidsgraad[/b:435c16ea28]: geen. [b:435c16ea28]Download[/b:435c16ea28]: [url=http://home.kpn.nl/stefsmeenk/zoek.exe][b:435c16ea28]zoek.exe van Smeenk[/b:435c16ea28][/url] [b:435c16ea28]"Zoek.exe van Smeenk" gebruiken[/b:435c16ea28]: [list:435c16ea28][*:435c16ea28] [b:435c16ea28][color=#0000FF:435c16ea28]Sluit nu eerst alle nog openstaande programmavensters![/color:435c16ea28][/b:435c16ea28] [list:435c16ea28][*:435c16ea28][b:435c16ea28][color=#0000FF:435c16ea28]Windows 2000[/color:435c16ea28][/b:435c16ea28] en [color=#0000FF:435c16ea28][b:435c16ea28]Windows XP[/b:435c16ea28][/color:435c16ea28]: start het tool middels dubbelklik op "[i:435c16ea28]Zoek.exe van Smeenk[/i:435c16ea28]". [*:435c16ea28][color=#0000FF:435c16ea28][b:435c16ea28]Windows Vista[/b:435c16ea28][/color:435c16ea28] en [color=#0000FF:435c16ea28][b:435c16ea28]Windows 7[/b:435c16ea28][/color:435c16ea28]: start het tool middels rechtsklik op "[i:435c16ea28]Zoek.exe van Smeenk[/i:435c16ea28]" en dan kiezen voor [i:435c16ea28][b:435c16ea28] Als Administrator uitvoeren[/b:435c16ea28][/i:435c16ea28].[/list:u:435c16ea28][/list:u:435c16ea28] Er start nu een zwart CMD/Opdrachtpromptvenster op. [list:435c16ea28][*:435c16ea28]Typ nu in dat venster [b:435c16ea28]B[/b:435c16ea28] gevolgd door Enter om "Custom search" te starten. [*:435c16ea28]Een kladblokdocument met de naam "input.txt" zal nu openen. [*:435c16ea28]Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenster[/list:u:435c16ea28] [b:435c16ea28][color=#0000FF:435c16ea28] conduit; Conduit; [/color:435c16ea28][/b:435c16ea28] [list:435c16ea28][*:435c16ea28]Wanneer je de blauwe gekleurde tekst in het lege kladblokvenster geplakt hebt, mag je input.txt sluiten, laat de wijzigingen opslaan. [*:435c16ea28]Hierna begint de scan te lopen, wacht geduldig tot een log opent en post het resultaat in je volgende bericht.[/list:u:435c16ea28]
  • Voordt ik grijs werd, was ik blond. Grijs heeft me niet slimmer gemaakt. ================== Zoek.exe by smeenk Updated 25-01-2012 ================== *************Folders************ 2011-04-04 11:49:37 2011-04-05 13:35:44 -------- d-----w- C:\Program Files\ConduitEngine 2011-04-04 11:50:03 2011-04-04 11:52:08 -------- d-----w- C:\Users\Walop\AppData\LocalLow\Conduit 2011-04-04 11:49:44 2011-04-04 11:52:06 -------- d-----w- C:\Users\Walop\AppData\LocalLow\ConduitEngine 2011-04-04 11:52:08 2011-04-04 11:52:21 -------- d-----w- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\Repository\conduit_CT2865317_CT2865317 2011-04-04 11:52:09 2011-04-04 11:52:09 -------- d-----w- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\Repository\conduit_CT2865317_nl 2011-04-05 11:53:02 2011-06-23 12:27:37 -------- d-----w- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\conduit 2011-06-23 12:10:08 2012-02-07 12:49:13 -------- d-----w- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\conduitCommon 2011-04-05 11:53:15 2011-04-05 11:57:35 -------- d-----w- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\ConduitEngine 2011-04-05 11:56:19 2011-04-05 13:35:07 -------- d-----w- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com **************Files************* --- C:\Program Files\ConduitEngine\ConduitEngineUninstall.exe --- Company: Conduit Ltd. File Description: Conduit Engine Uninstall File Version: 1, 0, 2, 0 Product Name: Conduit Engine Uninstall Copyright: Copyright © Conduit Ltd. 2008 Original Filename: ConduitEngineUninstall.exe File size: 23648 Created time: 2011-04-04 11:49:37 Modified time: 2010-11-25 08:32:42 MD5: DF465BE110DC0F7E5329D1B8065A405F SHA1: 4CBEA1ADF328E3DAF17DE451C4DEDB9FF17DEA43 --- C:\Users\Walop\AppData\LocalLow\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_1257316_1252989_NL.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 194 Created time: 2011-04-04 11:52:50 Modified time: 2011-04-04 19:26:43 MD5: DF1BA1CA7D81E69473C7431A1EFFFD38 SHA1: 66A5AED661BFD906F11145D8395801438F00644F --- C:\Users\Walop\AppData\LocalLow\Conduit\Community Alerts\Feeds\http___alerts_conduit-services_com_root_909619_905414_NL.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 191 Created time: 2011-04-04 11:52:50 Modified time: 2011-04-04 19:26:43 MD5: 43C93B80235159F037CEA9A173922F92 SHA1: 494F12D6BA666E764916BCA632F27184D8FBA98C --- C:\Users\Walop\AppData\LocalLow\Conduit\Toolbar\Facebook\http___facebook_conduit-services_com_Settings_ashx_locale=nl&browserType=IE&toolbarVersion=6_2_7_3.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 10964 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 7F8108D51E1F2A4E04C715872A147987 SHA1: 01AC36FFFCA4681B6AF0976A3F3FDF9C7217886F --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_About_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 821 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 99D5F75C338F2A877CBF891E0F18746E SHA1: D8C9E840C1F5C24B24CF9184F57DA0EAF507383A --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Browse_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 729 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: F2291FAB46ED9291A1A2FFE9F88E9D84 SHA1: 2C7CDE46E3821024F6FDF336C5A5E5B9F7BBD494 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Contact_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 531 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: A847C5F6CE2C700048749892DD2E0619 SHA1: FE31F8A744662A52F930B9C9775584EF31B0EC8E --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Hide_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 669 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: FED9E00C76F647EE6A0B7CC684C89F0C SHA1: 3180AB21F3B9DA50C9F436E3E4F4105D00DE2289 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_LikeIcon_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 263 Created time: 2011-04-04 11:52:37 Modified time: 2011-04-04 11:52:37 MD5: 36BD416D16391EFAAAFB2C3C54EAE986 SHA1: 93DC0AAC1E084DBBC1C546824F2B49E9896A981A --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoreFromPublisher_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 734 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 943ADFD9E0DF1507F7BC419802BF4303 SHA1: 7CA4DFAE78E394166767C916B6BDE19659809CAB --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_More_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 562 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 36C6FB9C84D4AF5C5D7C5B277A0E4A01 SHA1: D683ED1303DC287F61C0FA2FACABC8572D68FC57 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoveLeft_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 610 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 68E9E9252E45ED7BD51B8680E8DD4462 SHA1: 6ADBC289C1A16D68ECB42F3077D65BBE71C3016A --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_MoveRight_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 606 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 8D8D187BA99DBEF76E4286668B474A4E SHA1: 76E1542C2734F5CE92675B5DE067350D9A8636AD --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Options_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 493 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 275C9DA2D536F18F528C80E050C3D705 SHA1: A07031202B3495758619A7F86D2B7E48FEB0B077 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Privacy_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 706 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 3AD88BD8E832DA39FAAEDF07AD595F94 SHA1: 6C9437BE57831928C7DA6746F1F8B54C9B5F4E21 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Refresh_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 674 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 650731EEF807C292E699779B12CBE552 SHA1: B6FD7E166FA1FE448301FBC2B11AE5325B11CF4C --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Share_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 696 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 70D43EC3F4BD7C10D5534EFCEC6D7AE5 SHA1: 7066A3BA72EC8A1B0A5162569ACF13B5D5A928C2 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Upgrade_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 607 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 9B4D914888BCFFCBAE6757A0E450551C SHA1: C3C138518228F61CC4BC2F9D29AE569933BD5BCD --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_app_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=appContextMenu&locale=nl-nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 6645 Created time: 2011-04-04 11:52:06 Modified time: 2011-04-04 11:52:10 MD5: 4D84DC5C159F3F4F9692A0A903F87B83 SHA1: B7EDBE47154C2A1BF84F63F27F626C14D72EF257 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_app_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=appContextMenu2_0&locale=nl-nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 6848 Created time: 2011-04-04 11:52:37 Modified time: 2011-04-04 11:52:37 MD5: 26268E4931DCC2CAAB685C7873687AD1 SHA1: AA1918D8AE0FCEDE339A10EAF51808C18826DAE7 --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_engine_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=engineContextMenu&locale=nl-nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 4083 Created time: 2011-04-04 11:52:06 Modified time: 2011-04-04 11:52:10 MD5: 2E4619A8B94D1B62D28DA0DC87BE28AD SHA1: 877DBF4BD25EB3C464DA72D0A8E77BE11BE4C8AE --- C:\Users\Walop\AppData\LocalLow\ConduitEngine\ExternalComponent\http___contextmenu_engine_conduit-services_com_apps_TranslatedApps_ashx_productId=1&name=engineContextMenu2_0&locale=nl-nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 4498 Created time: 2011-04-04 11:52:37 Modified time: 2011-04-04 11:52:37 MD5: D1508EAFC9AB475DA8BFC2A8F5C6BCEE SHA1: 51E7DCB3A1B14A184D662041A94BEE722E2BC26A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634215803994037500_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 752 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 0FF53562D6B8E9DE569945DBD55270D8 SHA1: 1A8767DE08B9B80B98738CB046CB286277F468BE --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634215829629975000_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 663 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 79F3F686A6C47867DD7EEE27EF1F2F96 SHA1: 756FE83C0BC72B237E5203D6EB88E18D8466AAE1 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634219291587531250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 861 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: A276631C543FF46289E60346DB096F6F SHA1: 7EA03DF0830969E15B376ED0389E4F54BAF0C0A7 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634220946896281250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 633 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:10 MD5: 51EA87AFACA1E0861BE32ACF0A70FCA5 SHA1: D6F7D28D498E07717FDC09CF1877BE8855DCCBFD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634226715423943750_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 679 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 35CC663FEF2BA24D110D83F7E7BC13FA SHA1: AB018F7BA43414E11B900B4C789F8ECDEC59E453 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_634244832697856250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1190 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 882670329B254795D93AC1F9B2FB0D53 SHA1: B7A1A975E40F98ED875452DAF9F190B7B49A6B46 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633826753881225000_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1238 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 36AF2F0ED92774CAFC81516A143F15C9 SHA1: 75C7286272FF7FBE9BEB1F640E6C7B8EFEDCC15A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633826758646068750_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1238 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 36AF2F0ED92774CAFC81516A143F15C9 SHA1: 75C7286272FF7FBE9BEB1F640E6C7B8EFEDCC15A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827552376087500_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1209 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:10 MD5: C48497E1806503750A9942E11DF24D6F SHA1: 9D2687457359B5C8C9665BDCF2D9D4813DE93E2D --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827552502181250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1199 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: A1FD6E124B43657A31CDF749AC4BFC3A SHA1: 3A9303AC75A5ECF6B8B038007B60B7FDD3395CFF --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827552614056250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1127 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 55DD7E8CE32CD69B7594AD173F3C21BC SHA1: AEB01339229CF1AD20F1CEBFD7EB79AB08957BD3 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827552723118750_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1214 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 7E4465251C69FC1893A66CD62B968D2B SHA1: 806C8EA24F735C73ED5D8F65C4F41950EDFFD2A2 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827565870150000_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1209 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: C48497E1806503750A9942E11DF24D6F SHA1: 9D2687457359B5C8C9665BDCF2D9D4813DE93E2D --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d633827655684775000_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1199 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: A1FD6E124B43657A31CDF749AC4BFC3A SHA1: 3A9303AC75A5ECF6B8B038007B60B7FDD3395CFF --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d634161798257141250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1108 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: D3F59A757505809B67E19367BD8663D2 SHA1: 04375094B8CEF4F4B5AB53B9DEF278710BA69D0B --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d634161799307581250_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1188 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 212028E46D8DB0FBBEF7F095105E6ED0 SHA1: 014A611A9F517924043A4E38CF8A93F4BE0F1E2A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_b99f575c-76e9-4402-8755-330aaffa3e6d634161801077882500_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 1102 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 5BE48357BFC5718F7A1FAC614E43E1D4 SHA1: B86CA251C388A9A701014AA7570DC9B691DD1915 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_17_286_CT2865317_Images_SearchActivationButton-go_but01_gif-General-634220918830656250_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 291 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:10 MD5: 47169130441835D901EC4A4A4C1D8135 SHA1: 91383662806FC1265E9F0BCBEADA96DDDD75B0FC --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_About_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 821 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 99D5F75C338F2A877CBF891E0F18746E SHA1: D8C9E840C1F5C24B24CF9184F57DA0EAF507383A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Browse_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 729 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: F2291FAB46ED9291A1A2FFE9F88E9D84 SHA1: 2C7CDE46E3821024F6FDF336C5A5E5B9F7BBD494 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Contact_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 531 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: A847C5F6CE2C700048749892DD2E0619 SHA1: FE31F8A744662A52F930B9C9775584EF31B0EC8E --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Hide_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 669 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: FED9E00C76F647EE6A0B7CC684C89F0C SHA1: 3180AB21F3B9DA50C9F436E3E4F4105D00DE2289 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_LikeIcon_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 263 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 36BD416D16391EFAAAFB2C3C54EAE986 SHA1: 93DC0AAC1E084DBBC1C546824F2B49E9896A981A --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_MoreFromPublisher_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 734 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 943ADFD9E0DF1507F7BC419802BF4303 SHA1: 7CA4DFAE78E394166767C916B6BDE19659809CAB --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_More_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 562 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 36C6FB9C84D4AF5C5D7C5B277A0E4A01 SHA1: D683ED1303DC287F61C0FA2FACABC8572D68FC57 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Options_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 493 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 275C9DA2D536F18F528C80E050C3D705 SHA1: A07031202B3495758619A7F86D2B7E48FEB0B077 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Privacy_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 706 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 3AD88BD8E832DA39FAAEDF07AD595F94 SHA1: 6C9437BE57831928C7DA6746F1F8B54C9B5F4E21 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Refresh_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 674 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 650731EEF807C292E699779B12CBE552 SHA1: B6FD7E166FA1FE448301FBC2B11AE5325B11CF4C --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_ConduitEngine_ContextMenu_Share_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 696 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 70D43EC3F4BD7C10D5534EFCEC6D7AE5 SHA1: 7066A3BA72EC8A1B0A5162569ACF13B5D5A928C2 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_Conduit_com_bankImages_ConduitEngine_ContextMenu_Upgrade_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 607 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 9B4D914888BCFFCBAE6757A0E450551C SHA1: C3C138518228F61CC4BC2F9D29AE569933BD5BCD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Events_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 705 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 70B83DCDF7A6FA34240E1AA1D23EE535 SHA1: 39A34735CE9B5C09D27502F50C19965D0B6C5D33 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Friends_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 746 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 2AE805114215925E00858FD2FEFF1439 SHA1: 19F56A3631B678BE4FB25C83BD82D481C62B25BD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Groups_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 669 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 6CFEA2D0DB786FDB4D72C1C1DE036822 SHA1: D5B022702B19D871D8775E2D3B2781D7BBD84E68 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Home_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 338 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: DB45ACA16C515F2FD8CB3B6F5E4FC386 SHA1: 69A0D59C3C448E9E3761FBA39A708A5091F64BE7 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Inbox_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 545 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 6EB69BFCBFD422247C103705B532BFE1 SHA1: A8393CD0A83AFCF27C84EAF287354A4F49E3E3A5 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Logout_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 514 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 7F396C3A400239B9B66DEC2D503D86BB SHA1: 540A2D472368F2291ACDD9CBCD4076EA03B65EAB --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Photos_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 3355 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: EC261A170D34BE434129E71B9C2C0408 SHA1: F7D4189457707930B8651C08CAB523627F3DCAA1 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Profile_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 594 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 62C86296694EF7F41D380804A58EF5CA SHA1: CA14553EC2EF2378481D03ECB4B1000E536B30AA --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Settings_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 415 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: E42D284CC0436B66C1DB4AAFFCCC1957 SHA1: 9B5C0B22975D89D5733422424ABDA8ACA259B89F --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Share_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 461 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: B4AEAC6600360BC4148538F716453AAC SHA1: 417DA0B34599514A462498B9BECA25C739C7FBE1 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_bankImages_FaceBook_Status_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 699 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 640E17444F44717CA5039BCB7FD3551E SHA1: 9A45E697C9D06E4D339857E7A2B066CBCD91E942 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_about_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 403 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: EC3C2B4E0DEC4D880BAFF88ABBF94188 SHA1: 6F0F2AB4D87FAB206C9F23A308935CEB7173F08F --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_clear_history_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 414 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: A9E001CBC00B06B121DFBC80707F5298 SHA1: 16920DA511D382AA2D84A311845CCFD427F77C34 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_contact_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 278 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 15DEF39E438E807E2F0E22D44FDC7FB7 SHA1: 156D99EBEE95E8DE645A8C33E6455C9F223550A5 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_help_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 405 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 995595D4C685D659E8F03CD0A287EDDF SHA1: F0065792A12674FF7EED9E5C849FE9099FF3BAD5 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_home_page_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 405 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: AA39D8A6B65E208901EBA9F3D4728D3E SHA1: B8BA512C5A654ADD1AD8965497D19857ED977603 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_options_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 361 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 464E244E7E2F27FB85E0C3AB69D72104 SHA1: B0B4928D0BFF02E9059F7F03DC823CF68C3C25D0 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_privacy_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 425 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 6427565C7105DC497287866100F260BB SHA1: 95CBA3C0ED843607C74C3DFD7A76B63ACCA39A50 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_refresh_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 381 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: AE7C9F67594A84B096D225601ACB0B2A SHA1: 8073F35A7C57A82423716D76E4A19C891312E613 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_shrink_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 351 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: C3EBA0237D68F665AF6D663906221092 SHA1: FB26335CDE1C10907E2A6F74AEAEA282F2B3E908 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_main_menu_upgrade_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 399 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 8BE02D510B4B2E05AD2611B1E9A0BD56 SHA1: B6CD487F3EC7E89E3D5E4826CFD03CD21A2369C3 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_SearchEngines_images_search_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 405 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 66018EAE0906C9831A821CAE5D1089BB SHA1: 641D081D84DB561A3241D51A1CDCA83774837F18 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_SearchEngines_news_icon_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 371 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 84896837EDB1A78C14DB6A2F3A0AEE3A SHA1: B0A35B5DFA1A2E4E9A4894493FB39217FC656204 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_searchengines_search_icon_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 322 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 948781E4B6478290050ECA4423B89B1E SHA1: 594ABA2E77DC98BD9DE123025F68ECF386A46905 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_SearchEngines_site_search_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 625 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: C23D4DB18B6BB4F38ECBA57AD414A5CF SHA1: ACE176B9C6AB938146B9AECEE3B66B6402D9BCCD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_searchengines_softonic_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 606 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 2A1D4FB45F62D3D260F2134228FAB05E SHA1: 6D628AF7E038905E19802DE56594D493CE6B9604 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_SearchEngines_tfd_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 240 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: AE5A39669C623937C0839E079E1088D5 SHA1: F832F4EF2EFC48EA5D3006CE63D37E38DC26DED4 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_images_SearchEngines_video_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 335 Created time: 2011-04-04 11:52:10 Modified time: 2011-04-04 11:52:10 MD5: 766433EF38BDA83C4FD4932027A4B9D5 SHA1: BB365A128056C288DD28C0493790FEB1D6D2F01E --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___storage_conduit_com_MarketPlace_b9_e6d_b99f575c-76e9-4402-8755-330aaffa3e6d_Appearance_634161804982048752_png.png --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 977 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 9707F0FD36497409796431CE1BB23DBF SHA1: 237994CEB0DF2AB09D4ACD7C3945CED3611499AD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___weather_conduit_com_images_weather_Default_partly_cloudy_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 173 Created time: 2011-04-04 11:52:38 Modified time: 2011-04-04 11:52:38 MD5: E509575F473727B14C87367068C42353 SHA1: 060979D60FDD17A62B48E1D419671106A80B41C6 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___weather_conduit_com_images_weather_Default_partly_cloudy_night_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 212 Created time: 2011-04-04 18:56:45 Modified time: 2011-04-04 18:56:45 MD5: 88CD5B8D6F007347115A8A602E5D158B SHA1: B6340CE239278BD12421E67DDD44F889122CCBFD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\CacheIcons\http___weather_conduit_com_images_weather_Default_sunny_night_gif.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 204 Created time: 2011-04-04 20:08:46 Modified time: 2011-04-04 20:08:46 MD5: 5EBD213E8A460652C883CBF68C152B5B SHA1: E8F68F253E95F1C3BCF9982AE4D5B9B9A43A03AD --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=GottenApps&locale=nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 7046 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 2FEB6772FE1EAADE909B94F77730A174 SHA1: 5075360CD2903B1D70E4B1A60DB761181FD20BEA --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=OtherApps&locale=nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 5524 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: A682A34DF1ECD0DAD55086A5288F23CA SHA1: BCF640A2354A04DAFD6F0E82DB2A41F9047291ED --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=SharedApps&locale=nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 6590 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:08 MD5: 426C9C41725757215503322236595685 SHA1: C733AC1DA711F5450E3458083F951E031EC6CC04 --- C:\Users\Walop\AppData\LocalLow\uTorrentBar_NL\ExternalComponent\http___contextmenu_toolbar_conduit-services_com__name=Toolbar&locale=nl.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 5587 Created time: 2011-04-04 11:52:08 Modified time: 2011-04-04 11:52:10 MD5: E7D50C1445DBC5D6E34B782763AFEAAC SHA1: 8529F272A1C2AFE1DE8544606455D34CD417FBA2 --- C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@apps.conduit[2].txt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 254 Created time: 2011-04-04 19:16:10 Modified time: 2011-04-04 19:16:10 MD5: E71FED255DD5EB6B8BC4FADAA271F772 SHA1: F25BAC38C22E3234567F309C9F79A1CF33E74917 --- C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@conduit[3].txt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 245 Created time: 2011-04-04 19:52:29 Modified time: 2011-04-04 19:52:29 MD5: 2297D1836A2BF66BCD0C61F77537328F SHA1: ABBD97C9F4AB11E08F6C579D0B6BCAA508C105CE --- C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@search.conduit[1].txt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 276 Created time: 2011-04-04 21:52:17 Modified time: 2011-04-04 21:52:17 MD5: 3B83641CD55B0DCAE84B2419446C3947 SHA1: AE132D68EEB732FE313CA4208EE8DB9720CE7188 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\chrome\conduitengine.jar --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 729935 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: 4A2D55615F60C3A00E03ECFD39224EC5 SHA1: E1AF71CE9231DA474362023A3D3B20EFC86CA23D --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\components\ConduitAutoCompleteSearch.xpt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 166 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: 806EA6CC4DCBF88A20AA3331BCDC9918 SHA1: 419D04E4754E4AEC9484D3621E265F905C4A1D54 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\components\ConduitToolbar.idl --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 152 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: 33D4D4337895FCA507DF937B5980D41A SHA1: 4AFAEBC4699E9ACC2C7F2D8120A2057735711788 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\components\ConduitToolbar.xpt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 140 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: DFFE26916941DE0A33E503FD38008290 SHA1: CEDCC4563C0B95192676A97E9A2028EC7ACE2865 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\searchplugin\conduit.gif --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 173 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: 225B6898AE7D6E0CE88B3FE57BD750F2 SHA1: 2076D33DFA6D2786E9DBF2824D6C909918E7A1DD --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\searchplugin\conduit.PNG --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 255 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: AF3A51D0B8D6F04EE33307A654560DBE SHA1: 3AAC40D1F8CAA5B057AAF3E4D9682F22118D18BE --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\searchplugin\conduit.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 913 Created time: 2011-04-05 11:56:19 Modified time: 2011-03-13 13:30:30 MD5: 4E45A93B99F44F41EADFB167FB85FB02 SHA1: 5BED080630263B5FE4C3EF1344CA666E01A7EBF1 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206}\components\ConduitAutoCompleteSearch.js --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 9052 Created time: 2012-01-12 00:28:26 Modified time: 2012-01-11 10:45:58 MD5: AF98421711C6CFA73D6720C455D92DAC SHA1: F60C6056185AFF4E63A010122786961346C020B3 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206}\components\ConduitAutoCompleteSearch.xpt --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 166 Created time: 2012-01-12 00:28:26 Modified time: 2012-01-11 10:45:58 MD5: 806EA6CC4DCBF88A20AA3331BCDC9918 SHA1: 419D04E4754E4AEC9484D3621E265F905C4A1D54 --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206}\searchplugin\conduit.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 931 Created time: 2012-01-12 00:28:26 Modified time: 2012-01-11 10:45:58 MD5: 4BDDE7ACBE027CB89B491454F6FD8CE1 SHA1: 8198D8874179A32F6D31D486744374DC923307FB --- C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\searchplugins\conduit.xml --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 931 Created time: 2011-04-05 11:53:22 Modified time: 2011-06-20 12:08:20 MD5: 4BDDE7ACBE027CB89B491454F6FD8CE1 SHA1: 8198D8874179A32F6D31D486744374DC923307FB --- C:\Users\Walop\Downloads\X-Files\01\04 - Conduit.avi --- Company: ------ File Description: ------ File Version: ------ Product Name: ------ Copyright: ------ Original Filename: ------ File size: 367161344 Created time: 2012-01-21 20:32:03 Modified time: 2012-01-29 20:20:40 MD5: 9BB74FA9ABA51A75D3FC049C35B7D4AF SHA1: 709EA642BD728A6B81814ECAE7E82B48F335DFEF ********************************
  • Baksteen schrijft: "Voordt ik grijs werd, was ik blond. Grijs heeft me niet slimmer gemaakt." Dus ook niet meer zo jong in jaren? We gaan Conduit verwijderen: [b:64f05b3852]"Zoek.exe van Smeenk" gebruiken[/b:64f05b3852]: [list:64f05b3852][*:64f05b3852] [b:64f05b3852][color=#0000FF:64f05b3852]Sluit nu eerst alle nog openstaande programmavensters![/color:64f05b3852][/b:64f05b3852] [list:64f05b3852][*:64f05b3852][b:64f05b3852][color=#0000FF:64f05b3852]Windows 2000[/color:64f05b3852][/b:64f05b3852] en [color=#0000FF:64f05b3852][b:64f05b3852]Windows XP[/b:64f05b3852][/color:64f05b3852]: start het tool middels dubbelklik op "[i:64f05b3852]Zoek.exe van Smeenk[/i:64f05b3852]". [*:64f05b3852][color=#0000FF:64f05b3852][b:64f05b3852]Windows Vista[/b:64f05b3852][/color:64f05b3852] en [color=#0000FF:64f05b3852][b:64f05b3852]Windows 7[/b:64f05b3852][/color:64f05b3852]: start het tool middels rechtsklik op "[i:64f05b3852]Zoek.exe van Smeenk[/i:64f05b3852]" en dan kiezen voor [i:64f05b3852][b:64f05b3852]Als Administrator uitvoeren[/b:64f05b3852][/i:64f05b3852].[/list:u:64f05b3852][/list:u:64f05b3852] Er start nu een zwart CMD/Opdrachtpromptvenster op. [list:64f05b3852][*:64f05b3852]Typ nu in dat venster [b:64f05b3852]C[/b:64f05b3852] gevolgd door Enter om "Delete files/folders" te starten. [*:64f05b3852]Een kladblokdocument met de naam "input.txt" zal nu openen. [*:64f05b3852]Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenster[/list:u:64f05b3852] [color=#0000FF:64f05b3852][b:64f05b3852]C:\Program Files\ConduitEngine; C:\Users\Walop\AppData\LocalLow\Conduit; C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@apps.conduit[2].txt; C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@conduit[3].txt; C:\Users\Walop\AppData\Roaming\Microsoft\Windows\Cookies\Low\walop@search.conduit[1].txt; C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com; C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\components; C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\engine@conduit.com\searchplugin; C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\extensions\{87775fdb-6972-41f9-ae51-8326e38cb206}; C:\Users\Walop\AppData\Roaming\Mozilla\Firefox\Profiles\fyygn3jj.default\searchplugins; C:\Windows\Temp\*; C:\Users\cinxan\AppData\Local\Temp\*;[/b:64f05b3852][/color:64f05b3852] [list:64f05b3852][*:64f05b3852]Wanneer je de blauwe gekleurde tekst in het lege kladblokvenster geplakt hebt, mag je input.txt sluiten, laat wijzigingen opslaan. [*:64f05b3852]Hierna begint de verwijderscan te lopen, wacht geduldig tot een log opent en post het resultaat in je volgende bericht. [*:64f05b3852]Het kan gebeuren dat de computer rebooten moet.[/list:u:64f05b3852] [b:64f05b3852]"Zoek.exe van Smeenk" gebruiken[/b:64f05b3852]: [list:64f05b3852][*:64f05b3852] [b:64f05b3852][color=#0000FF:64f05b3852]Sluit nu eerst alle nog openstaande programmavensters![/color:64f05b3852][/b:64f05b3852] [list:64f05b3852][*:64f05b3852][b:64f05b3852][color=#0000FF:64f05b3852]Windows 2000[/color:64f05b3852][/b:64f05b3852] en [color=#0000FF:64f05b3852][b:64f05b3852]Windows XP[/b:64f05b3852][/color:64f05b3852]: start het tool middels dubbelklik op "[i:64f05b3852]Zoek.exe van Smeenk[/i:64f05b3852]". [*:64f05b3852][color=#0000FF:64f05b3852][b:64f05b3852]Windows Vista[/b:64f05b3852][/color:64f05b3852] en [color=#0000FF:64f05b3852][b:64f05b3852]Windows 7[/b:64f05b3852][/color:64f05b3852]: start het tool middels rechtsklik op "[i:64f05b3852]Zoek.exe van Smeenk[/i:64f05b3852]" en dan kiezen voor [i:64f05b3852][b:64f05b3852]Als Administrator uitvoeren[/b:64f05b3852][/i:64f05b3852].[/list:u:64f05b3852][/list:u:64f05b3852] Er start nu een zwart CMD/Opdrachtpromptvenster op. [list:64f05b3852][*:64f05b3852]Typ nu in dat venster [b:64f05b3852]E[/b:64f05b3852] gevolgd door Enter om "View content of folders" te starten. [*:64f05b3852]Een kladblokdocument met de naam "input.txt" zal nu openen. [*:64f05b3852]Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenster[/list:u:64f05b3852] [color=#0000FF:64f05b3852][b:64f05b3852] {87775fdb-6972-41f9-ae51-8326e38cb206};[/b:64f05b3852][/color:64f05b3852] [list:64f05b3852][*:64f05b3852]Wanneer je de blauwe gekleurde tekst in het lege kladblokvenster geplakt hebt, mag je input.txt sluiten, laat de wijzigingen opslaan. [*:64f05b3852]Hierna begint de scan te lopen, wacht geduldig tot een log opent en post het resultaat in je volgende bericht.[/list:u:64f05b3852]
  • Het is nog niet gelukt de eerste verwijderscan te voltooien; gisteranvond begonnen en de hele nacht door. Met de tweede heb ik dus nog even gewacht.
  • Je hebt Zoek.exe wel met administratorrechten opgestart?
  • ja, heb ik gedaan, maar ik zal het nog een keer proberen. Trouwens, hoe lang duurt zo'n scan gewoonlijk?
  • Indien het dan nog niet wil lukken, probeer het dan in Veilige modus!
  • Oh, baksteen is een jongere oudere :D 70+ Heel stom van me ...... hoe ga ik naar de veilige modus (safe mode) in Win 7 UK?
  • Dat is nog steeds hetzelfde zoals dat al vanaf windows 95 geldt. Zie ook: http://users.telenet.be/marcvn/spyware/veilige-modus.html
  • Hallo, Het zit niet mee. Een term zoals "safe mode" kan ik niet vinden in de UK versie van Win7, F5 en F8 werken niet, dus ik heb via msconfig gekozen voor "diagnostic startup" en opgestart. Onder ZOEK als adminitrator gekozen voor optie C en het text-bestand ingevoerd. Ik krijg dan de medeling: "Warning: input.txt is too small!!! Probably you misunderstood your helpers instructions. Do you want to try again? yes/no" Ik heb het dus een keer of 10 geprobeerd, zonder het gewenste reaultaat. ~zucht~ Domme vraag misschien: kan ik die bestanden ook met de hand verwijderen? En, wat IS "Conduit" eigenlijk?
  • Goede middag, Misschien wil een van jullie deze scan eens nalopen; ik heb wat problemen met Win 7. Alvast bedankt. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:05:19, on 04/02/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v8.00 (8.00.7601.17514) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Gadwin Systems\PrintScreenPro \PrintScreenPro.exe C:\Users\Walop\Desktop\utorrent.exe D:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Windows\system32\taskeng.exe R1 - HKCU\Software\Microsoft\Internet Explorer \Main,Search Page = http://go.microsoft.com/fwlink/? LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foozir.com/ R1 - HKLM\Software\Microsoft\Internet Explorer \Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer \Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer \Main,Search Page = http://go.microsoft.com/fwlink/? LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer \Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer \Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer \Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596- FA578C2EBDC3} - C:\Program Files\Common Files\Adobe \Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84- 6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\IPS\IPSBHO.DLL O2 - BHO: Windows Live ID Sign-in Helper - {9030D464- 4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445 -435b-BC74-9C25C1C588A9} - C:\Program Files\Java \jre6\bin\jp2ssv.dll O4 - HKCU\..\Run: [Gadwin PrintScreen Pro] "C:\Program Files\Gadwin Systems\PrintScreenPro\PrintScreenPro.exe" /nosplash O4 - HKCU\..\Run: [uTorrent] "C:\Users\Walop\Desktop \utorrent.exe" O9 - Extra button: @C:\Program Files\Windows Live \Companion\companionlang.dll,-600 - {0000036B-C524-4050- 81A0-243669A86B9F} - C:\Program Files\Windows Live \Companion\companioncore.dll O10 - Unknown file in Winsock LSP: c:\program files \common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files \common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\windows \system32\vsocklib.dll O10 - Unknown file in Winsock LSP: c:\windows \system32\vsocklib.dll O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O23 - Service: AMD External Events Utility - AMD - C: \Windows\system32\atiesrxx.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C: \Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine \18.6.0.29\ccSvcHst.exe -- End of file - 3359 bytes

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.