Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Scan - ecops virus

Abraham54
40 antwoorden
  • Beste,
    mijn Laptop werd besmet met het ecops virus.
    ik heb een scan via Hijack en stuur deze mee.
    kan u mij advies bezorgen over wat ik mag - moet en kan verwijderen,
    Dank bij voorbaat!

    Mgv,
    Patrik

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 23:37:06, on 8/03/2012
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    C:\WINDOWS\System32\WLTRYSVC.EXE
    C:\WINDOWS\System32\bcmwltry.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    C:\Program Files\F-Secure\Common\FSMA32.EXE
    C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
    C:\PROGRA~1\Iomega\System32\AppServices.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\oodag.exe
    C:\Program Files\F-Secure\Common\FSHDLL32.EXE
    C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
    C:\WINDOWS\system32\SearchIndexer.exe
    C:\Program Files\Iomega\AutoDisk\ADService.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\F-Secure\Common\FNRB32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    C:\Program Files\F-Secure\Common\FIH32.EXE
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxsrvc.exe
    C:\WINDOWS\system32\WLTRAY.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\F-Secure\Common\FSM32.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
    C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
    C:\Program Files\F-Secure\FSGUI\fscuif.exe
    C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    C:\WINDOWS\system32\oodtray.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
    C:\Program Files\DellSupport\DSAgnt.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\TEMP\F-Secure\Anti-Virus\fsblsrv.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\msiexec.exe
    D:\Trend Micro\HiJackThis\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://be.msn.com/?lang=nl-be
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.standaard.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.be/0SENLBE/SAOS01?FORM=TOOLBR
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxysrv000b:8080
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.mil.intra;portal.mil.be;dghr.mil.*;http://intranet;http://10.102.0.36;intranet.mil.intra
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll
    O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll
    O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
    O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
    O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
    O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
    O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
    O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
    O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t
    O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
    O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
    O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
    O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing)
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB
    O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
    O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.euro.dell.com/systemprofiler/SysProExe.CAB
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263934692328
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263934671828
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/nl/7/install/gtdownde.cab
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
    O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
    O23 - Service: F-Secure BlackLight Sensor - F-Secure Corporation - C:\WINDOWS\TEMP\F-Secure\Anti-Virus\fsblsrv.exe
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
    O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\F-Secure\ORSP Client\fsorsp.exe
    O23 - Service: Iomega Activity Disk2 - Unknown owner - C:\WINDOWS\
    O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
    O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
    O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
    O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
    O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
    O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe


    End of file - 14051 bytes
  • [b:c50bb21a31]Ik wil graag dat jij je tijdens de fix aan onderstaande regels houdt:[/b:c50bb21a31]
    [list:c50bb21a31][*:c50bb21a31]Lees telkens elke instruktie eerst goed door.
    [*:c50bb21a31]De gegeven instrukties gelden alleen jouw Windows.
    [*:c50bb21a31]Maak je fouten bij de uitvoering van tools tijdens de fix, kan dat mogelijk serieuze problemen in Windows veroorzaken.
    [*:c50bb21a31][b:c50bb21a31]Installeer geen nieuwe programma's, updates of nieuwe hardware terwijl we met de fix bezig zijn.
    [*:c50bb21a31]Gebruik ook geen andere programma's of tools dan diegenen waartoe ik opdracht geef.[/b:c50bb21a31]
    [*:c50bb21a31] Emoticons (smileys) a.u.b. uitzetten, wanneer je een log post.
    [*:c50bb21a31]Gebruik altijd één scanner per keer, nooit meerdere tegelijk gebruiken.
    [*:c50bb21a31]Hou mij op de hoogte hoe jou computer op de fix reageert - goed of slecht.
    [*:c50bb21a31]Ook indien je iets niet begrijpt, meldt dat dan.
    [*:c50bb21a31]De fix, eenmaal gestart, dient afgewerkt te worden. Zelfs indien jij denkt dat alles in orde is, zijn er mogelijk nog steeds infecties.[/list:u:c50bb21a31][/color:c50bb21a31]

    Hoe heb je in eerste instantie dat virus verwijderd?

    Doe nu eerst het volgende:

    download [b:c50bb21a31]OTL[/color:c50bb21a31][/b:c50bb21a31] naar je Bureaublad

    [b:c50bb21a31]OTL.com gebruiken[/b:c50bb21a31]:[list:c50bb21a31][*:c50bb21a31][b:c50bb21a31]Notabene: [/b:c50bb21a31][/color:c50bb21a31][b:c50bb21a31]Sluit nu eerst alle andere nog openstaande
    programmavensters![/color:c50bb21a31][/b:c50bb21a31]
    [*:c50bb21a31]Het programma opstarten middels dubbelklikken op [b:c50bb21a31]OTL.com[/b:c50bb21a31].
    [*:c50bb21a31] Start verder geen andere programma's op en laat het programma ongestoord zijn werk doen.[*:c50bb21a31]Zet een vinkje bij [b:c50bb21a31]Scan All Users[/b:c50bb21a31].[*:c50bb21a31]Klik op de knop [b:c50bb21a31]Quick Scan[/b:c50bb21a31].[*:c50bb21a31]Verander de instellingen van OTL niet, tenzij ik je hiervoor specifiek instructies geef.[*:c50bb21a31]De scan zal niet heel erg lang duren.[list:c50bb21a31][*:c50bb21a31]Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is.[*:c50bb21a31][b:c50bb21a31]OTL.Txt[/b:c50bb21a31] en [b:c50bb21a31]Extras.Txt[/b:c50bb21a31]. Deze twee tekstbestanden zijn opgeslagen in dezelfde locatie als OTL.
    [*:c50bb21a31]Kopieer en plak de inhoud van het [b:c50bb21a31]OTL.Txt[/b:c50bb21a31] als eerste in je aansluitende bericht.
    [*:c50bb21a31]Kopieer en plak tevens de inhoud van [b:c50bb21a31]Extras.Txt[/b:c50bb21a31] vervolgens er bij.[/list:u:c50bb21a31]
    [*:c50bb21a31]OTL produceert behoorlijk grote logs, dus kan het gebeuren, dat je het log in twee of meerdere keren moet posten.[/list:u:c50bb21a31]
  • PC terug aan de praat gekregen na gebruik van de Kaspersky Rescue CD

    ik wil op zeker spelen en het nodige doen om alle 'vuiligheid' van mijn schijf te verwijderen..

    ik zal je advies uitvoeren en de log posten .
  • Prima gedaan dus tot nu toe en ik wacht op je volgende bericht.
  • OTL logfile created on: 9/03/2012 16:08:04 - Run 1
    OTL by OldTimer - Version 3.2.36.2 Folder = G:\
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy

    1,99 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 62,09% Memory free
    3,33 Gb Paging File | 2,69 Gb Available in Paging File | 80,71% Paging File free
    Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 21,68 Gb Total Space | 0,04 Gb Free Space | 0,18% Space Free | Partition Type: NTFS
    Drive D: | 50,00 Gb Total Space | 0,16 Gb Free Space | 0,33% Space Free | Partition Type: NTFS
    Drive G: | 15,62 Gb Total Space | 3,49 Gb Free Space | 22,32% Space Free | Partition Type: FAT32
    Drive H: | 465,76 Gb Total Space | 224,79 Gb Free Space | 48,26% Space Free | Partition Type: NTFS

    Computer Name: LAPTOP-PATRICK | User Name: LAGAE | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========[/color:fe7a88a9e2]

    PRC - [2012/03/09 11:20:34 | 000,593,920 | —- | M] (OldTimer Tools) – G:\OTL.com
    PRC - [2011/11/08 16:09:55 | 000,488,104 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    PRC - [2011/09/08 16:11:15 | 001,008,296 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    PRC - [2011/09/08 16:11:15 | 000,512,680 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\Anti-Virus\fsgk32.exe
    PRC - [2011/06/14 16:42:26 | 001,540,096 | —- | M] (Nokia) – C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
    PRC - [2011/05/24 16:21:37 | 000,061,088 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\ORSP Client\fsorsp.exe
    PRC - [2009/11/26 10:36:42 | 000,166,512 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\common\FNRB32.exe
    PRC - [2009/11/26 10:36:42 | 000,129,648 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\common\FIH32.exe
    PRC - [2009/11/26 10:36:38 | 000,186,992 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\common\FSMA32.EXE
    PRC - [2009/11/26 10:36:36 | 000,301,680 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\common\FSM32.EXE
    PRC - [2009/11/26 10:36:36 | 000,088,688 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\common\FSHDLL32.EXE
    PRC - [2009/11/26 10:35:58 | 000,522,864 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\FWES\program\fsdfwd.exe
    PRC - [2009/11/26 10:35:14 | 000,219,760 | —- | M] (F-Secure Corporation) – C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    PRC - [2009/06/03 14:46:42 | 001,025,264 | —- | M] (SupportSoft, Inc.) – C:\Program Files\Dell Support Center\gs_agent\dsc.exe
    PRC - [2009/06/03 14:46:38 | 000,206,064 | —- | M] (SupportSoft, Inc.) – C:\Program Files\Dell Support Center\bin\sprtcmd.exe
    PRC - [2008/09/04 05:02:24 | 001,295,616 | —- | M] (O&O Software GmbH) – C:\WINDOWS\system32\oodag.exe
    PRC - [2008/09/04 05:01:42 | 002,524,416 | —- | M] (O&O Software GmbH) – C:\WINDOWS\system32\oodtray.exe
    PRC - [2008/08/26 15:58:12 | 000,201,968 | —- | M] (SupportSoft, Inc.) – C:\Program Files\Dell Support Center\bin\sprtsvc.exe
    PRC - [2008/04/14 18:02:58 | 001,037,312 | —- | M] (Microsoft Corporation) – C:\WINDOWS\explorer.exe
    PRC - [2007/07/25 15:32:50 | 000,823,296 | —- | M] (Intel Corporation) – C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
    PRC - [2007/07/25 15:32:34 | 000,294,912 | —- | M] (Intel(R) Corporation) – C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
    PRC - [2007/07/25 15:30:36 | 000,974,848 | —- | M] (Intel Corporation) – C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
    PRC - [2007/07/25 15:26:14 | 000,491,520 | —- | M] (Intel Corporation) – C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
    PRC - [2007/05/10 10:22:32 | 000,405,504 | —- | M] (SigmaTel, Inc.) – C:\WINDOWS\stsystra.exe
    PRC - [2007/03/15 11:09:36 | 000,460,784 | —- | M] (Gteko Ltd.) – C:\Program Files\DellSupport\DSAgnt.exe
    PRC - [2007/02/20 11:29:08 | 001,191,936 | —- | M] (Dell Inc) – C:\Program Files\Dell\QuickSet\quickset.exe
    PRC - [2006/11/03 17:20:12 | 000,866,584 | —- | M] (Microsoft Corporation) – C:\Program Files\Windows Defender\MSASCui.exe
    PRC - [2006/11/03 17:19:58 | 000,013,592 | —- | M] (Microsoft Corporation) – C:\Program Files\Windows Defender\MsMpEng.exe
    PRC - [2002/09/24 16:39:48 | 000,151,552 | —- | M] (Iomega Corporation) – C:\Program Files\Iomega\AutoDisk\ADService.exe
    PRC - [2002/09/24 16:39:24 | 000,147,456 | —- | M] (Iomega Corporation) – C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
    PRC - [2002/09/04 14:11:04 | 000,073,728 | —- | M] (Iomega Corporation) – C:\Program Files\Iomega\System32\AppServices.exe


    ========== Modules (No Company Name) ==========[/color:fe7a88a9e2]

    MOD - [2012/02/20 16:46:16 | 005,450,752 | —- | M] () – C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
    MOD - [2012/02/20 16:45:52 | 007,953,408 | —- | M] () – C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
    MOD - [2011/10/18 16:46:54 | 011,490,816 | —- | M] () – C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
    MOD - [2011/06/24 21:56:36 | 000,087,328 | —- | M] () – C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
    MOD - [2011/06/24 21:56:14 | 001,241,888 | —- | M] () – C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
    MOD - [2011/06/09 16:38:25 | 000,030,888 | —- | M] () – C:\Program Files\F-Secure\Anti-Virus\minifilter\hashlib_x86.dll
    MOD - [2009/11/26 10:36:38 | 000,088,688 | —- | M] () – C:\Program Files\F-Secure\common\OnDemandInstallWatcher.dll
    MOD - [2009/11/26 10:36:28 | 000,236,144 | —- | M] () – \\?\c:\program files\f-secure\hips\fsumi.dll
    MOD - [2009/11/26 10:35:40 | 000,551,536 | —- | M] () – C:\Program Files\F-Secure\FSGUI\gres.dll
    MOD - [2009/11/26 10:35:36 | 000,045,056 | —- | M] () – C:\Program Files\F-Secure\FSGUI\fsavures.eng
    MOD - [2009/11/26 10:35:30 | 000,440,944 | —- | M] () – C:\Program Files\F-Secure\FSGUI\about.dll
    MOD - [2009/11/26 10:35:30 | 000,088,688 | —- | M] () – C:\Program Files\F-Secure\FSGUI\aboutres.dll
    MOD - [2009/11/26 10:35:12 | 000,036,864 | —- | M] () – C:\Program Files\F-Secure\Anti-Virus\fsavhres.eng
    MOD - [2009/02/27 18:13:06 | 000,311,296 | —- | M] () – C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.NLD
    MOD - [2007/07/25 15:25:48 | 000,118,784 | —- | M] () – C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
    MOD - [2007/04/25 09:55:40 | 001,167,360 | —- | M] () – C:\Program Files\Intel\Wireless\Bin\acAuth.dll
    MOD - [2007/03/16 17:10:38 | 000,757,760 | —- | M] () – C:\WINDOWS\system32\bcm1xsup.dll
    MOD - [2007/02/20 11:29:46 | 000,098,304 | —- | M] () – C:\Program Files\Dell\QuickSet\dadkeyb.dll
    MOD - [2006/10/11 08:26:08 | 000,012,288 | —- | M] () – C:\Program Files\F-Secure\FSGUI\strres.nld
    MOD - [2006/10/11 08:26:06 | 000,057,856 | —- | M] () – C:\Program Files\F-Secure\FSGUI\flyerres.nld


    ========== Win32 Services (SafeList) ==========[/color:fe7a88a9e2]

    SRV - File not found [Auto | Stopped] – – (Iomega Activity Disk2)
    SRV - [2011/06/08 12:02:00 | 000,633,856 | —- | M] (Nokia) [On_Demand | Stopped] – C:\Program Files\PC Connectivity Solution\ServiceLayer.exe – (ServiceLayer)
    SRV - [2011/05/24 16:21:37 | 000,061,088 | —- | M] (F-Secure Corporation) [On_Demand | Running] – C:\Program Files\F-Secure\ORSP Client\fsorsp.exe – (FSORSPClient)
    SRV - [2009/11/26 10:36:42 | 000,166,512 | —- | M] (F-Secure Corporation) [On_Demand | Running] – C:\Program Files\F-Secure\Common\FNRB32.EXE – (F-Secure Network Request Broker)
    SRV - [2009/11/26 10:36:38 | 000,186,992 | —- | M] (F-Secure Corporation) [Auto | Running] – C:\Program Files\F-Secure\Common\FSMA32.EXE – (FSMA)
    SRV - [2009/11/26 10:35:58 | 000,522,864 | —- | M] (F-Secure Corporation) [On_Demand | Running] – C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe – (FSDFWD)
    SRV - [2009/11/26 10:35:14 | 000,219,760 | —- | M] (F-Secure Corporation) [Auto | Running] – C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe – (F-Secure Gatekeeper Handler Starter)
    SRV - [2008/09/04 05:02:24 | 001,295,616 | —- | M] (O&O Software GmbH) [Auto | Running] – C:\WINDOWS\system32\oodag.exe – (O&O Defrag)
    SRV - [2008/08/26 15:58:12 | 000,201,968 | —- | M] (SupportSoft, Inc.) [Auto | Running] – C:\Program Files\Dell Support Center\bin\sprtsvc.exe – (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)
    SRV - [2008/01/30 17:42:27 | 000,069,632 | —- | M] (Creative Labs) [Disabled | Stopped] – C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe – (Creative Labs Licensing Service)
    SRV - [2007/08/08 17:51:48 | 000,410,904 | —- | M] (Acronis) [Disabled | Stopped] – C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe – (AcrSch2Svc)
    SRV - [2007/07/25 15:32:34 | 000,294,912 | —- | M] (Intel(R) Corporation) [Auto | Running] – C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe – (WLANKEEPER) Intel(R)
    SRV - [2007/03/19 11:44:44 | 000,070,656 | —- | M] () [On_Demand | Stopped] – C:\Program Files\DellSupport\brkrsvc.exe – (DSBrokerService)
    SRV - [2006/11/03 17:19:58 | 000,013,592 | —- | M] (Microsoft Corporation) [Auto | Running] – C:\Program Files\Windows Defender\MsMpEng.exe – (WinDefend)
    SRV - [2002/09/24 16:39:48 | 000,151,552 | —- | M] (Iomega Corporation) [Auto | Running] – C:\Program Files\Iomega\AutoDisk\ADService.exe – (_IOMEGA_ACTIVE_DISK_SERVICE_)
    SRV - [2002/09/04 14:11:04 | 000,073,728 | —- | M] (Iomega Corporation) [Auto | Running] – C:\Program Files\Iomega\System32\AppServices.exe – (Iomega App Services)


    ========== Driver Services (SafeList) ==========[/color:fe7a88a9e2]

    DRV - File not found [Kernel | On_Demand | Stopped] – – (WDICA)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (UIUSys)
    DRV - File not found [Kernel | Auto | Stopped] – – (RGFILERW)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (PDRFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (PDRELI)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (PDFRAME)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (PDCOMP)
    DRV - File not found [Kernel | System | Stopped] – – (PCIDump)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (ossrv)
    DRV - File not found [Kernel | System | Stopped] – – (lbrtfdc)
    DRV - File not found [Kernel | System | Stopped] – – (i2omgmt)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (CTUSFSYN)
    DRV - File not found [Kernel | On_Demand | Stopped] – – (ctsfm2k)
    DRV - File not found [Kernel | System | Stopped] – – (Changer)
    DRV - [2011/09/08 16:12:53 | 000,148,632 | —- | M] () [Kernel | On_Demand | Running] – C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys – (F-Secure Gatekeeper)
    DRV - [2011/08/31 14:38:08 | 000,025,704 | —- | M] (Wondershare) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys – (WsAudio_DeviceS(5)) WsAudio_DeviceS(5)
    DRV - [2011/08/31 14:38:08 | 000,025,704 | —- | M] (Wondershare) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys – (WsAudio_DeviceS(4)) WsAudio_DeviceS(4)
    DRV - [2011/08/31 14:38:08 | 000,025,704 | —- | M] (Wondershare) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys – (WsAudio_DeviceS(3)) WsAudio_DeviceS(3)
    DRV - [2011/08/31 14:38:08 | 000,025,704 | —- | M] (Wondershare) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys – (WsAudio_DeviceS(2)) WsAudio_DeviceS(2)
    DRV - [2011/08/31 14:38:08 | 000,025,704 | —- | M] (Wondershare) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys – (WsAudio_DeviceS(1)) WsAudio_DeviceS(1)
    DRV - [2011/08/19 07:08:53 | 000,042,672 | —- | M] () [Kernel | Boot | Running] – C:\WINDOWS\system32\Drivers\fsbts.sys – (fsbts)
    DRV - [2010/02/10 19:59:12 | 000,023,680 | —- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\FNETTBOH.SYS – (FNETTBOH)
    DRV - [2010/02/10 19:59:12 | 000,007,936 | —- | M] (FNet Co., Ltd.) [Kernel | System | Running] – C:\WINDOWS\system32\drivers\FNETURPX.SYS – (FNETURPX)
    DRV - [2009/11/26 10:36:28 | 000,068,080 | —- | M] (F-Secure Corporation) [Kernel | System | Running] – C:\Program Files\F-Secure\HIPS\drivers\fshs.sys – (F-Secure HIPS)
    DRV - [2009/11/26 10:35:58 | 000,080,016 | —- | M] (F-Secure Corporation) [Kernel | Boot | Running] – C:\WINDOWS\System32\drivers\fsdfw.sys – (FSFW)
    DRV - [2009/03/18 19:09:23 | 000,033,536 | —- | M] (Advanced Card Systems Ltd) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\a38usb.sys – (ACSSCR)
    DRV - [2008/08/30 04:21:46 | 000,037,896 | —- | M] (O&O Software GmbH) [Kernel | On_Demand | Running] – C:\WINDOWS\System32\drivers\oobctm.sys – (OOTextMode)
    DRV - [2008/08/26 09:26:12 | 000,018,816 | —- | M] (Nokia) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\pccsmcfd.sys – (pccsmcfd)
    DRV - [2008/04/13 19:39:51 | 000,004,992 | —- | M] () [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\mspqm.sys – (MSPQM)
    DRV - [2007/09/05 01:46:34 | 000,092,544 | —- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\mcdbus.sys – (mcdbus)
    DRV - [2007/08/08 07:17:54 | 002,211,456 | —- | M] (Intel Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\NETw4x32.sys – (NETw4x32) Stuurprogramma voor Intel(R)
    DRV - [2007/05/29 14:29:30 | 000,012,416 | —- | M] (Intel Corporation) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\s24trans.sys – (s24trans)
    DRV - [2007/05/10 10:24:34 | 001,222,840 | —- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\sthda.sys – (STHDA)
    DRV - [2007/02/25 11:10:48 | 000,005,376 | –S- | M] (Gteko Ltd.) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\dsunidrv.sys – (dsunidrv)
    DRV - [2007/01/19 16:14:50 | 000,409,728 | —- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\SPC610NC.SYS – (SPC610NC)
    DRV - [2006/10/05 16:07:28 | 000,004,736 | —- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] – C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys – (DSproct)
    DRV - [2006/08/16 12:57:28 | 000,018,560 | —- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\PCASp50.sys – (PCASp50)
    DRV - [2006/08/09 11:11:58 | 000,156,288 | —- | M] (Novatel Wireless Inc) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\NWADIenum.sys – (NWADI)
    DRV - [2006/05/24 18:07:18 | 000,328,237 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\btaudio.sys – (btaudio)
    DRV - [2006/05/24 18:05:26 | 000,023,271 | —- | M] (Broadcom Corporation.) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\btserial.sys – (BTSERIAL)
    DRV - [2006/05/24 18:04:04 | 000,851,434 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\btkrnl.sys – (BTKRNL)
    DRV - [2006/05/24 18:01:34 | 000,030,427 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\btport.sys – (BTDriver)
    DRV - [2006/05/24 18:01:22 | 000,030,285 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\btwmodem.sys – (btwmodem)
    DRV - [2006/05/24 18:00:50 | 000,066,488 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\btwusb.sys – (BTWUSB)
    DRV - [2006/05/24 17:58:18 | 000,148,900 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\btwdndis.sys – (BTWDNDIS)
    DRV - [2006/05/24 17:57:00 | 000,045,683 | —- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\btwhid.sys – (btwhid)
    DRV - [2006/04/26 23:13:04 | 001,429,632 | —- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\w39n51.sys – (w39n51) Intel(R)
    DRV - [2006/01/04 15:41:48 | 001,389,056 | —- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\monfilt.sys – (monfilt)
    DRV - [2005/08/12 17:50:46 | 000,016,128 | —- | M] (Dell Inc) [Kernel | System | Running] – C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS – (APPDRV)
    DRV - [2005/08/05 11:32:16 | 000,045,312 | —- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\bcm4sbxp.sys – (bcm4sbxp)
    DRV - [2005/07/14 23:58:14 | 000,028,544 | —- | M] (REDC) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\rimmptsk.sys – (rimmptsk)
    DRV - [2005/07/14 22:28:38 | 000,307,968 | —- | M] (REDC) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\rixdptsk.sys – (rismxdp)
    DRV - [2005/07/13 00:00:30 | 000,051,328 | —- | M] (REDC) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\rimsptsk.sys – (rimsptsk)
    DRV - [2003/07/16 07:27:40 | 000,043,264 | R— | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ser2pl.sys – (Ser2pl)
    DRV - [2002/10/01 09:22:32 | 000,009,856 | —- | M] (Padus, Inc.) [Kernel | On_Demand | Running] – C:\WINDOWS\system32\drivers\pfc.sys – (pfc)
    DRV - [2002/09/04 14:11:08 | 000,030,258 | —- | M] (Iomega Corporation) [Kernel | Boot | Running] – C:\WINDOWS\System32\DRIVERS\iomdisk.sys – (iomdisk)
    DRV - [2002/07/17 09:05:10 | 000,016,512 | —- | M] (Adaptec) [Kernel | Auto | Running] – C:\WINDOWS\system32\drivers\ASPI32.SYS – (Aspi32)
    DRV - [2002/07/17 09:05:10 | 000,016,512 | —- | M] (Adaptec) [Kernel | On_Demand | Stopped] – C:\WINDOWS\system32\drivers\ASPI32.SYS – (ASPI)


    ========== Standard Registry (SafeList) ==========[/color:fe7a88a9e2]


    ========== Internet Explorer ==========[/color:fe7a88a9e2]

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.live.com/ [binary data]
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =
    IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com
    esults.aspx?q={searchTerms}&src={referrer:source?}
    IE - HKLM\..\SearchScopes\{BE9A0AFE-2C43-4D1D-BB84-F154B64029EF}: "URL" = http://search.live.com
    esults.aspx?q={searchTerms}&FORM=MSNIE7&src={referrer:source?}


    IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


    IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://be.msn.com/?lang=nl-be
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.live.com/ [binary data]
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.standaard.be/
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{00331365-4C0B-44B2-BC07-8BB08C2AE7D6}: "URL" = http://uk.search.yahoo.com/search?p={searchTerms}&fr=FP-tab-web-t340&ei=UTF-8&meta=vc%3D
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{67DE7BB7-494D-4917-A453-686F412499EF}: "URL" = http://search.aol.co.uk/web?query={searchTerms}&restrict=wholeweb&isinit=true&invocationType=aolhathp_uk_Po&avtype=
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{94DF60BA-DD44-4096-9B43-9A156D576FE3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=OSDSRC
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{B0CA183F-6584-45BE-BDEF-3E94552A7387}: "URL" = http://en.wikipedia.org/wiki/{searchTerms}
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{EE6D963B-F62C-4450-B5B8-5A7565F90C8F}: "URL" = http://search.microsoft.com
    esults.aspx?mkt=en-GB&setlang=en-GB&q={searchTerms}
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\Live Search: "URL" = http://search.live.com
    esults.aspx?q={searchTerms}&mkt=nl-be&FORM=MICJE3
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost;*.mil.intra;portal.mil.be;dghr.mil.*;http://intranet;http://10.102.0.36;intranet.mil.intra
    IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxysrv000b:8080

    ========== FireFox ==========[/color:fe7a88a9e2]

    FF - prefs.js..browser.search.selectedEngine: "Philips Songbird"
    FF - prefs.js..extensions.enabledItems: 7digital@songbirdnest.com:1.7.2.1667
    FF - prefs.js..extensions.enabledItems: ewaacdec@songbirdnest.com:1.0.1.1667
    FF - prefs.js..extensions.enabledItems: albumart@songbirdnest.com:1.0.8.1667
    FF - prefs.js..extensions.enabledItems: cd-rip@songbirdnest.com:1.0.3.1667
    FF - prefs.js..extensions.enabledItems: fileassociation@philips.com:3.2.0.1002
    FF - prefs.js..extensions.enabledItems: gonzo@songbirdnest.com:1.7.2
    FF - prefs.js..extensions.enabledItems: gracenote@songbirdnest.com:1.0.3.1667
    FF - prefs.js..extensions.enabledItems: ewh264dec@songbirdnest.com:1.0.1.1667
    FF - prefs.js..extensions.enabledItems: mashTape@songbirdnest.com:1.1.3.1667
    FF - prefs.js..extensions.enabledItems: ewmp3enc@songbirdnest.com:1.0.4.1667
    FF - prefs.js..extensions.enabledItems: ewmpeg4dec@songbirdnest.com:1.0.1.1667
    FF - prefs.js..extensions.enabledItems: msc@songbirdnest.com:1.0.4.1667
    FF - prefs.js..extensions.enabledItems: mtp@songbirdnest.com:1.0.19.1667
    FF - prefs.js..extensions.enabledItems: philips-addon-manager@philips.com:3.2.0.2202
    FF - prefs.js..extensions.enabledItems: philips-msc-mtp-switch@philips.com:3.2.0.2200
    FF - prefs.js..extensions.enabledItems: gogear@songbirdnest.com:1.0.4.1667
    FF - prefs.js..extensions.enabledItems: philips-skin@philips.com:3.2.0.2207
    FF - prefs.js..extensions.enabledItems: philips-ui@philips.com:3.2.0.2203
    FF - prefs.js..extensions.enabledItems: purplerain@songbirdnest.com:1.7.2
    FF - prefs.js..network.proxy.ftp: "proxysrv000b"
    FF - prefs.js..network.proxy.ftp_port: 8080
    FF - prefs.js..network.proxy.gopher: "proxysrv000b"
    FF - prefs.js..network.proxy.gopher_port: 8080
    FF - prefs.js..network.proxy.http: "proxysrv000b"
    FF - prefs.js..network.proxy.http_port: 8080
    FF - prefs.js..network.proxy.no_proxies_on: "localhost,*.mil.intra,portal.mil.be,dghr.mil.*,http://intranet,http://10.102.0.36,intranet.mil.intra,*.local"
    FF - prefs.js..network.proxy.share_proxy_settings: true
    FF - prefs.js..network.proxy.socks: "proxysrv000b"
    FF - prefs.js..network.proxy.socks_port: 8080
    FF - prefs.js..network.proxy.ssl: "proxysrv000b"
    FF - prefs.js..network.proxy.ssl_port: 8080

    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director
    p32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins
    pitunes.dll ()
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin
    ew_plugin
    pjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0
    pctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live
    pOLW.dll (Microsoft Corp.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live
    pOLW.dll (Microsoft Corp.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR
    ppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Google\Update\1.2.183.7
    pGoogleOneClick8.dll (Google Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\litmus-ff@f-secure.com: C:\Program Files\F-Secure\NRS\litmus-ff@f-secure.com [2012/02/20 16:07:53 | 000,000,000 | —D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011/08/27 12:07:41 | 000,000,000 | —D | M]
    FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/08/27 12:07:49 | 000,000,000 | —D | M]

    [2010/11/29 19:07:55 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\LAGAE\Application Data\Mozilla\Extensions
    [2010/11/29 19:07:55 | 000,000,000 | —D | M] (No name found) – C:\Documents and Settings\LAGAE\Application Data\Mozilla\Extensions\songbird@songbirdnest.com
    [2010/11/29 19:09:42 | 000,000,530 | —- | M] () – C:\Documents and Settings\LAGAE\Application Data\Philips-Songbird\Profiles\ejwh7is0.default\searchplugins\250c9527-69cf-45d4-8fb2-c090d7916341.xml
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\7DIGITAL@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\ALBUMART@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\CD-RIP@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWAACDEC@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWH264DEC@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWMP3ENC@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWMPEG4DEC@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\FILEASSOCIATION@PHILIPS.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GOGEAR@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GONZO@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GRACENOTE@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MASHTAPE@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MSC@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MTP@SONGBIRDNEST.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-ADDON-MANAGER@PHILIPS.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-MSC-MTP-SWITCH@PHILIPS.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-SKIN@PHILIPS.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-UI@PHILIPS.COM
    File not found (No name found) – C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PURPLERAIN@SONGBIRDNEST.COM

    ========== Chrome ==========[/color:fe7a88a9e2]

    CHR - default_search_provider: Google ()
    CHR - default_search_provider: search_url = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
    CHR - default_search_provider: suggest_url =

    O1 HOSTS File: ([2007/08/04 11:45:38 | 000,000,776 | —- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
    O1 - Hosts: 127.0.0.1 localhost
    O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
    O2 - BHO: (Browsing Protection Class) - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
    O3 - HKLM\..\Toolbar: (Browsing Protection Toolbar) - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
    O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
    O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found.
    O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.)
    O4 - HKLM..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe (Iomega Corporation)
    O4 - HKLM..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
    O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
    O4 - HKLM..\Run: [F-Secure Manager] C:\Program Files\F-Secure\Common\FSM32.EXE (F-Secure Corporation)
    O4 - HKLM..\Run: [F-Secure TNB] C:\Program Files\F-Secure\FSGUI\TNBUtil.exe (F-Secure Corporation)
    O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
    O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
    O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
    O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe (O&O Software GmbH)
    O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
    O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" File not found
    O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
    O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [] File not found
    O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
    O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
    O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
    O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O7 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
    O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm ()
    O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat… - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
    O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin
    pjpi160_26.dll (Sun Microsystems, Inc.)
    O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
    O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found
    O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
    O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class)
    O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
    O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/images/global/js/scanner/SysProExe.cab (Scanner.SysScanner)
    O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} http://support.euro.dell.com/systemprofiler/SysProExe.CAB (WMI Class)
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263934692328 (WUWebControl Class)
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263934671828 (MUWebControl Class)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
    O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} http://pccheckup.dellfix.com/nl/7/install/gtdownde.cab (Dell PC Checkup Installer Control)
    O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
    O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found
    O24 - Desktop Components:0 (Mijn huidige introductiepagina) - About:Home
    O24 - Desktop WallPaper: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O24 - Desktop BackupWallPaper: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
    O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
    O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O32 - AutoRun File - [2007/03/17 14:59:19 | 000,000,000 | —- | M] () - C:\AUTOEXEC.BAT – [ NTFS ]
    O33 - MountPoints2\{7cf384bc-d9a5-11dc-9b89-001422fb91bb}\Shell - "" = AutoRun
    O33 - MountPoints2\{7cf384bc-d9a5-11dc-9b89-001422fb91bb}\Shell\AutoRun\command - "" = N:\OnSpcLCK.exe
    O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell - "" = AutoRun
    O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\AutoRun\command - "" = H:\SETUP.EXE
    O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\configure\command - "" = H:\SETUP.EXE
    O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\install\command - "" = H:\SETUP.EXE
    O33 - MountPoints2\{f815af2a-0b5e-11df-9e15-001422fb91bb}\Shell\Shell00\Command - "" = G:\Start.exe
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (OODBS)
    O35 - HKLM\..comfile [open] – "%1" %*
    O35 - HKLM\..exefile [open] – "%1" %*
    O37 - HKLM\…com [@ = comfile] – "%1" %*
    O37 - HKLM\…exe [@ = exefile] – "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========[/color:fe7a88a9e2]

    [2012/03/06 23:11:37 | 000,000,000 | —D | C] – C:\Documents and Settings\All Users\Local Settings
    [2012/03/06 23:11:37 | 000,000,000 | —D | C] – C:\Documents and Settings\LAGAE\Application Data\kodak
    [2012/03/05 20:06:04 | 000,000,000 | —D | C] – C:\Documents and Settings\LAGAE\Application Data\PriceGong
    [2012/03/03 08:44:17 | 000,000,000 | RH-D | C] – C:\Documents and Settings\LAGAE\Onlangs geopend
    [2012/02/14 23:08:38 | 000,025,704 | —- | C] (Wondershare) – C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys
    [2012/02/14 23:08:20 | 000,025,704 | —- | C] (Wondershare) – C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys
    [2012/02/14 23:08:04 | 000,025,704 | —- | C] (Wondershare) – C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys
    [2012/02/14 23:07:47 | 000,025,704 | —- | C] (Wondershare) – C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys
    [2012/02/14 23:07:21 | 000,025,704 | —- | C] (Wondershare) – C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys
    [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files - Modified Within 30 Days ==========[/color:fe7a88a9e2]

    [2012/03/09 16:06:12 | 000,000,330 | -H– | M] () – C:\WINDOWS\tasks\MP Scheduled Scan.job
    [2012/03/09 16:02:50 | 000,002,048 | –S- | M] () – C:\WINDOWS\bootstat.dat
    [2012/03/09 16:02:37 | 079,042,253 | —- | M] () – C:\WINDOWS\System32\oodbs.lor
    [2012/03/06 17:39:50 | 000,000,162 | —- | M] () – C:\Documents and Settings\LAGAE\default.pls
    [2012/03/06 17:30:07 | 000,000,229 | —- | M] () – C:\WINDOWS\NeroDigital.ini
    [2012/03/02 16:44:45 | 000,002,278 | —- | M] () – C:\WINDOWS\System32\wpa.dbl
    [2012/02/20 18:19:58 | 000,274,168 | —- | M] () – C:\WINDOWS\System32\FNTCACHE.DAT
    [2012/02/20 16:44:48 | 000,611,538 | —- | M] () – C:\WINDOWS\System32\perfh013.dat
    [2012/02/20 16:44:48 | 000,512,270 | —- | M] () – C:\WINDOWS\System32\perfh009.dat
    [2012/02/20 16:44:48 | 000,125,346 | —- | M] () – C:\WINDOWS\System32\perfc013.dat
    [2012/02/20 16:44:48 | 000,092,410 | —- | M] () – C:\WINDOWS\System32\perfc009.dat
    [2012/02/10 13:58:08 | 000,000,284 | —- | M] () – C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
    [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

    ========== Files Created - No Company Name ==========[/color:fe7a88a9e2]

    [2012/02/16 06:52:23 | 000,003,072 | —- | C] () – C:\WINDOWS\System32\iacenc.dll
    [2012/02/16 06:52:23 | 000,003,072 | —- | C] () – C:\WINDOWS\System32\dllcache\iacenc.dll
    [2011/11/22 06:19:01 | 000,155,136 | —- | C] () – C:\WINDOWS\System32\AI_ContextMenu.dll
    [2011/01/31 21:43:08 | 000,522,928 | —- | C] () – C:\WINDOWS\System32\SpoonUninstall.exe
    [2011/01/17 22:38:30 | 000,000,151 | —- | C] () – C:\WINDOWS\PhotoSnapViewer.INI
    [2010/07/22 10:10:17 | 000,000,056 | -H– | C] () – C:\WINDOWS\System32\ezsidmv.dat
    [2010/07/22 09:39:10 | 000,000,032 | —- | C] () – C:\Documents and Settings\All Users\Application Data\ezsid.dat
    [2010/06/11 20:01:10 | 000,042,672 | —- | C] () – C:\WINDOWS\System32\drivers\fsbts.sys

    ========== LOP Check ==========[/color:fe7a88a9e2]

    [2010/04/18 13:25:52 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Azureus
    [2011/09/10 20:00:42 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Babylon
    [2010/10/13 21:43:50 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\DriverScanner
    [2009/08/23 09:54:31 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\F-Secure
    [2010/02/10 19:59:13 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\FNET
    [2010/10/01 16:22:42 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\fssg
    [2011/08/09 22:37:08 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Installations
    [2011/06/04 10:54:56 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
    [2008/01/26 23:21:56 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Nokia
    [2010/10/28 21:33:29 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache
    [2007/03/18 18:45:42 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Novatel Wireless
    [2010/11/13 11:56:47 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\PC Suite
    [2008/11/05 18:18:33 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\PC-Doctor
    [2008/11/05 18:18:33 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\PCDr
    [2008/02/06 20:19:53 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Seagate
    [2008/11/05 18:18:49 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\SupportSoft
    [2011/08/23 16:06:08 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\Temp
    [2010/12/29 10:30:06 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\vsosdk
    [2011/02/16 18:33:37 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\WinZip
    [2012/02/16 21:34:50 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\xml_param
    [2010/04/10 23:10:31 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
    [2009/09/12 12:10:08 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
    [2010/10/13 21:45:27 | 000,000,000 | -H-D | M] – C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
    [2010/12/03 22:42:45 | 000,000,000 | —D | M] – C:\Documents and Settings\All Users\Application Data\{F0489EF2-D393-4114-85BA-A94D71D89543}
    [2010/09/06 18:25:09 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Active Disk
    [2012/03/06 17:48:23 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Azureus
    [2011/09/10 20:00:41 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Babylon
    [2011/09/10 20:01:33 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\BabylonToolbar
    [2011/05/30 19:03:18 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\DeepBurner Pro
    [2011/10/15 10:20:27 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoft
    [2011/09/06 02:47:27 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers
    [2007/03/17 17:51:44 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\F-Secure
    [2010/10/19 17:13:38 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\FairStars Audio Converter
    [2008/01/26 18:43:10 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\MobileAction
    [2011/11/15 20:40:39 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\MP-Manager
    [2011/09/05 19:37:45 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\NCH Swift Sound
    [2011/03/31 18:45:56 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Nokia
    [2008/01/26 23:14:00 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\PC Suite
    [2010/11/20 19:52:51 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\PCDr
    [2010/11/29 19:10:28 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Philips
    [2010/11/29 19:07:47 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Philips-Songbird
    [2012/03/08 23:38:43 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\PriceGong
    [2008/02/12 23:46:59 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Regen
    [2011/09/12 18:19:03 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Songbird2
    [2010/09/29 16:12:14 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Uniblue
    [2009/03/04 17:58:44 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Windows Desktop Search
    [2008/01/14 18:08:42 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Windows Live Writer
    [2009/03/04 19:06:05 | 000,000,000 | —D | M] – C:\Documents and Settings\LAGAE\Application Data\Windows Search
    [2007/03/21 19:06:45 | 000,000,000 | —D | M] – C:\Documents and Settings\Patrick\Application Data\F-Secure
    [2008/01/30 00:31:33 | 000,000,000 | —D | M] – C:\Documents and Settings\Patrick\Application Data\PC Suite
    [2009/01/18 00:48:28 | 000,000,000 | —D | M] – C:\Documents and Settings\Patrick\Application Data\Regen
    [2012/03/09 16:06:12 | 000,000,330 | -H– | M] () – C:\WINDOWS\Tasks\MP Scheduled Scan.job
    [2011/07/02 12:09:31 | 000,000,278 | —- | M] () – C:\WINDOWS\Tasks\switchDowngrade.job
    [2011/10/08 12:30:07 | 000,000,278 | —- | M] () – C:\WINDOWS\Tasks\switchShakeIcon.job

    ========== Purity Check ==========[/color:fe7a88a9e2]



    ========== Alternate Data Streams ==========[/color:fe7a88a9e2]

    @Alternate Data Stream - 88 bytes -> C:
    ewkey:SummaryInformation
    @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\Temp:A1063995

    < End of report >
  • OTL Extras logfile created on: 9/03/2012 16:08:04 - Run 1
    OTL by OldTimer - Version 3.2.36.2 Folder = G:\
    Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.6001.18702)
    Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy

    1,99 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 62,09% Memory free
    3,33 Gb Paging File | 2,69 Gb Available in Paging File | 80,71% Paging File free
    Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
    Drive C: | 21,68 Gb Total Space | 0,04 Gb Free Space | 0,18% Space Free | Partition Type: NTFS
    Drive D: | 50,00 Gb Total Space | 0,16 Gb Free Space | 0,33% Space Free | Partition Type: NTFS
    Drive G: | 15,62 Gb Total Space | 3,49 Gb Free Space | 22,32% Space Free | Partition Type: FAT32
    Drive H: | 465,76 Gb Total Space | 224,79 Gb Free Space | 48,26% Space Free | Partition Type: NTFS

    Computer Name: LAPTOP-PATRICK | User Name: LAGAE | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

    ========== Extra Registry (SafeList) ==========[/color:06dbc1c06b]


    ========== File Associations ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
    .cpl [@ = cplfile] – rundll32.exe shell32.dll,Control_RunDLL "%1",%*

    ========== Shell Spawning ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
    batfile [open] – "%1" %*
    cmdfile [open] – "%1" %*
    comfile [open] – "%1" %*
    cplfile [cplopen] – rundll32.exe shell32.dll,Control_RunDLL "%1",%*
    exefile [open] – "%1" %*
    piffile [open] – "%1" %*
    regfile [merge] – Reg Error: Key error.
    scrfile [config] – "%1"
    scrfile [install] – rundll32.exe desk.cpl,InstallScreenSaver %l
    scrfile [open] – "%1" /S
    txtfile [edit] – Reg Error: Key error.
    Unknown [openas] – %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
    Directory [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)
    Folder [open] – %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
    Folder [explore] – %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
    Drive [find] – %SystemRoot%\Explorer.exe (Microsoft Corporation)

    ========== Security Center Settings ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
    "FirstRunDisabled" = 1
    "AntiVirusDisableNotify" = 0
    "FirewallDisableNotify" = 0
    "UpdatesDisableNotify" = 0
    "AntiVirusOverride" = 0
    "FirewallOverride" = 0

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

    ========== System Restore Settings ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
    "DisableSR" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
    "Start" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
    "Start" = 2

    ========== Firewall Settings ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
    "EnableFirewall" = 1

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
    "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
    "EnableFirewall" = 0
    "DisableNotifications" = 0

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
    "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
    "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
    "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
    "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
    "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
    "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

    ========== Authorized Applications List ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
    "C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite
    "C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6
    "C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus


    ========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color:06dbc1c06b]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}" = mSSO
    "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
    "{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery
    "{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView
    "{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld
    "{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform
    "{14FB1C47-B0F2-4DB6-B9C0-1A817862F9A3}" = ArcSoft Camera Suite 2.1
    "{168F8BAC-A269-48E9-BB7A-A51B594CF6FF}" = Microsoft .NET Framework 1.1 Dutch Language Pack
    "{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86
    "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
    "{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe
    "{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack
    "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 26
    "{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine
    "{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver
    "{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = SetPoint
    "{3248F0A8-6813-11D6-A77B-00B0D0150110}" = J2SE Runtime Environment 5.0 Update 11
    "{350C9413-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
    "{3741689E-584D-40C9-B011-373A0371846D}" = Nokia Software Updater
    "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
    "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
    "{3CDAFDF9-A993-4B64-8D9B-36253D9C0DC9}" = Windows Live Essentials
    "{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA
    "{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software
    "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
    "{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}" = mHlpDell
    "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
    "{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update
    "{4F2D3995-1EC5-3C05-B7E5-3449F802E6DE}" = Microsoft .NET Framework 4 Extended NLD Language Pack
    "{5A8AF5E0-41FE-4ADC-9E43-B01172354D87}" = MP Manager
    "{63DB9CCD-2B56-4217-9A3D-507AC78320CA}" = mWMI
    "{64371D22-A18B-436E-863B-2E12DA8042FF}" = Microsoft .NET Framework 3.0 Dutch Language Pack
    "{655A0785-CB7A-42C2-A1AE-B3FE1BFB2617}" = Windows Presentation Foundation Language Pack (NLD)
    "{69995C7A-062A-4A90-A4DF-8C22895DF522}" = iTunes
    "{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support
    "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
    "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
    "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    "{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel
    "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
    "{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport
    "{824563DE-75AD-4166-9DC0-B6482F205075}" = Belgium e-ID middleware 3.5.1 (build 5075)
    "{829CD169-E692-48E8-9BDE-A3E8D8B65538}" = mSCfg
    "{89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2}" = Philips VLounge
    "{89B078C4-50B0-453E-BF53-3A7E6A0D85FA}" = Windows Support Tools
    "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
    "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver
    "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
    "{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr
    "{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard
    "{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
    "{90120000-0010-0413-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Dutch) 12
    "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
    "{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2007
    "{90120000-0015-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
    "{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007
    "{90120000-0016-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0017-0413-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (Dutch) 2007
    "{90120000-0017-0413-0000-0000000FF1CE}_OMUI.nl-nl_{2E9BD56A-2290-46DA-869F-2EDCF0A24E8B}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2)
    "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
    "{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007
    "{90120000-0018-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
    "{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2007
    "{90120000-0019-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
    "{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2007
    "{90120000-001A-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
    "{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007
    "{90120000-001B-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
    "{90120000-001F-0407-0000-0000000FF1CE}_OMUI.nl-nl_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
    "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0409-0000-0000000FF1CE}_OMUI.nl-nl_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
    "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-040C-0000-0000000FF1CE}_OMUI.nl-nl_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
    "{90120000-001F-0413-0000-0000000FF1CE}_OMUI.nl-nl_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
    "{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
    "{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007
    "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
    "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
    "{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0044-0413-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Dutch) 2007
    "{90120000-0044-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
    "{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007
    "{90120000-006E-0413-0000-0000000FF1CE}_OMUI.nl-nl_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
    "{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007
    "{90120000-00A1-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
    "{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-00BA-0413-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Dutch) 2007
    "{90120000-00BA-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0100-0413-0000-0000000FF1CE}" = Microsoft Office O MUI (Dutch) 2007
    "{90120000-0100-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0101-0413-0000-0000000FF1CE}" = Microsoft Office X MUI (Dutch) 2007
    "{90120000-0101-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
    "{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
    "{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
    "{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
    "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
    "{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz
    "{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig
    "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
    "{95140000-0080-0413-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
    "{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth
    "{9A1027CE-83F6-3CB2-B9BA-9DA38D0907D0}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD
    "{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE}" = Broadcom 440x 10/100 Integrated Controller
    "{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender
    "{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver
    "{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
    "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
    "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
    "{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio
    "{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater
    "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
    "{AC76BA86-7AD7-1043-7B44-A95000000001}" = Adobe Reader 9.5.0 - Nederlands
    "{ADE14C1E-AA43-45D3-88E5-00767D31B0E8}" = OGA Notifier 1.7.0105.35.0
    "{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
    "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
    "{B38B1F86-8202-482F-A289-A4806DFA498D}" = Windows Live Mail
    "{B3F1E526-180B-4480-9FEC-3E2DCB8EA9CE}" = F-Secure PSC Prerequisites
    "{B7908330-93A8-4DB1-B6EE-6B0446E26939}" = Voice Tracer
    "{B8B4446F-87E1-4423-A47A-16832C24A199}" = Nokia Ovi Suite
    "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
    "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
    "{BF13AA9D-E4CE-4015-9778-ECC1D4FB06E4}" = Mouse Suite for Laptop Computers
    "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
    "{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner
    "{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution
    "{C5074CC4-0E26-4716-A307-960272A90040}" = QuickSet
    "{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs
    "{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
    "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
    "{CD95F661-A5C4-44F5-A6AA-ECDD91C240C0}" = WinZip 15.0
    "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
    "{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite
    "{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}" = U3Launcher
    "{DE9DF561-0332-42A5-AF28-4AF028B7029D}" = Windows Live Photo Gallery
    "{DF62D775-BB7C-4AFA-9CA4-DDA1C4855F28}" = Dell Mobile Broadband Card Utility
    "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
    "{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
    "{E66653A2-2B5C-4909-B71E-218164336960}" = SPC 610NC Laptop Camera
    "{E6CB18CD-04EF-4C6A-A5F3-5F49E7332895}" = O&O Defrag Professional Edition
    "{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore
    "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
    "{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse
    "{F6090A17-0967-4A8A-B3C3-422A1B514D49}" = mDrWiFi
    "{F73EA8BF-81F5-32AF-8D8A-24F12FD23B79}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD
    "{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe
    "3100-3120 USB-Handset Manager" = 3100-3120 USB-Handset Manager
    "504244733D18C8F63FF584AEB290E3904E791693" = Windows-stuurprogrammapakket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
    "72A50F48CC5601190B9C4E74D81161693133E7F7" = Windows-stuurprogrammapakket - Nokia Modem (02/25/2011 7.01.0.9)
    "819D45A9F73817F5B6D7C71A33ADAB88C5DA1765" = Windows-stuurprogrammapakket - Nokia Modem (08/03/2007 6.84.0.2)
    "8461-7759-5462-8226" = Vuze
    "Active Disk" = Active Disk
    "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
    "Adobe Shockwave Player" = Adobe Shockwave Player
    "Aimersoft Video Converter Ultimate_is1" = Aimersoft Video Converter Ultimate(Build 4.1.2.0)
    "AudibleManager" = AudibleManager
    "AVS Audio Converter_is1" = AVS Audio Converter version 7
    "AVS Update Manager_is1" = AVS Update Manager 1.0
    "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4
    "Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card
    "Canon G.726 WMP-Decoder" = Canon G.726 WMP-Decoder
    "CCleaner" = CCleaner
    "CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem
    "DelThumbs_is1" = DelThumbs
    "E0AC723A3DE3A04256288CADBBB011B112AED454" = Windows-stuurprogrammapakket - Nokia Modem (02/25/2011 4.7)
    "ENTERPRISE" = Microsoft Office Enterprise 2007
    "F785D6B63FDA08F811F56F84F831B3E291B7129A" = Windows Driver Package - Intel (w29n51) net (04/05/2006 9.0.4.13)
    "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.8.815
    "F-Secure Anti-Virus" = F-Secure Client Security - Virus- en spywarebescherming
    "F-Secure E-mail Scanning" = F-Secure Client Security - E-mail scannen
    "F-Secure ExploitShield" = F-Secure Client Security - Browserbeveiliging
    "F-Secure HIPS" = F-Secure Client Security - DeepGuard
    "F-Secure Internet Shield" = F-Secure Client Security - Internet-shield
    "F-Secure Protocol Scanner" = F-Secure Client Security - Webverkeer scannen
    "Handset Manager" =
    "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
    "ie7" = Windows Internet Explorer 7
    "ie8" = Windows Internet Explorer 8
    "InstallShield_{E66653A2-2B5C-4909-B71E-218164336960}" = SPC 610NC Laptop Camera
    "IsoBuster_is1" = IsoBuster 2.3
    "Magic ISO Maker v5.4 (build 0251)" = Magic ISO Maker v5.4 (build 0251)
    "MagicDisc 2.5.79" = MagicDisc 2.5.79
    "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
    "Microsoft .NET Framework 3.0 Dutch Language Pack" = Microsoft .NET Framework 3.0 Nederlands taalpakket
    "Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
    "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
    "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
    "Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
    "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
    "Microsoft .NET Framework 4 Extended NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Extended - NLD
    "MIXERLITE" = Mixer
    "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
    "Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition
    "NeroVision!UninstallKey" = Nero Digital
    "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
    "Nokia Ovi Suite" = Nokia Ovi Suite
    "Nokia PC Suite" = Nokia PC Suite
    "OMUI.nl-nl" = Microsoft Office Language Pack 2007 - Dutch/Nederlands
    "ProInst" = Intel(R) PROSet/Wireless Software
    "Songbird-release-1959" = Songbird 1.9.3 (Build 1959)
    "Switch" = Switch Sound File Converter
    "SynTPDeinstKey" = Synaptics Pointing Device Driver
    "UsbBoost" = UsbBoost
    "VLC media player" = VideoLAN VLC media player 0.8.6d
    "Vuze_Remote Toolbar" = Vuze Remote Toolbar
    "WIC" = Windows Imaging Component
    "Windows Media Encoder 9" = Windows Media Encoder 9 Series
    "Windows Media Format Runtime" = Windows Media Format 11 runtime
    "Windows Media Player" = Windows Media Player 11
    "Windows XP Service Pack" = Windows XP Service Pack 3
    "WinLiveSuite_Wave3" = Windows Live Essentials
    "WinRAR archiver" = WinRAR archiver
    "WMFDist11" = Windows Media Format 11 runtime
    "wmp11" = Windows Media Player 11
    "Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9
    "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
    "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0
    "ZoomBrowser EX" = Canon Utilities ZoomBrowser EX
    "ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility

    ========== HKEY_USERS Uninstall List ==========[/color:06dbc1c06b]

    [HKEY_USERS\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
    "f031ef6ac137efc5" = Dell Driver Download Manager

    ========== Last 10 Event Log Errors ==========[/color:06dbc1c06b]

    [ Application Events ]
    Error - 7/03/2012 13:03:45 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 11706
    Description = Product: Microsoft .NET Framework 1.1 – Fout 1706.Kan geen geldige
    bron voor het product Microsoft .NET Framework 1.1 vinden. Windows Installer kan
    niet worden voortgezet.

    Error - 7/03/2012 13:03:47 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 1023
    Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}'
    kan niet worden geïnstalleerd. Foutcode: 1603. Meer informatie is beschikbaar in
    logboekbestand C:\WINDOWS\TEMP\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log.

    Error - 7/03/2012 13:03:49 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000
    Description =

    Error - 8/03/2012 18:23:01 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 11706
    Description = Product: Microsoft .NET Framework 1.1 – Fout 1706.Kan geen geldige
    bron voor het product Microsoft .NET Framework 1.1 vinden. Windows Installer kan
    niet worden voortgezet.

    Error - 8/03/2012 18:23:08 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 1023
    Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}'
    kan niet worden geïnstalleerd. Foutcode: 1603. Meer informatie is beschikbaar in
    logboekbestand C:\WINDOWS\TEMP\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log.

    Error - 8/03/2012 18:23:12 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000
    Description =

    Error - 8/03/2012 18:57:03 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002
    Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen
    module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000.

    Error - 8/03/2012 18:59:05 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002
    Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen
    module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000.

    Error - 8/03/2012 19:03:55 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002
    Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen
    module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000.

    Error - 8/03/2012 21:17:42 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000
    Description =

    [ OSession Events ]
    Error - 12/03/2011 02:40:54 | Computer Name = LAPTOP-PATRICK | Source = Microsoft Office 12 Sessions | ID = 7001
    Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
    12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15
    seconds with 0 seconds of active time. This session ended with a crash.

    [ System Events ]
    Error - 8/03/2012 12:19:10 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7034
    Description = De Intel(R) PROSet/Wireless Service-service is onverwacht beëindigd.
    Dit is nu 1 keer gebeurd.

    Error - 8/03/2012 12:19:23 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001
    Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service,
    die vanwege de volgende fout niet kan worden gestart: %%1058

    Error - 8/03/2012 12:19:33 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001
    Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service,
    die vanwege de volgende fout niet kan worden gestart: %%1058

    Error - 8/03/2012 12:19:35 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7031
    Description = De Bluetooth Service-service is onverwacht gestopt. Dit is 1 keer
    gebeurd. De volgende herstelbewerking zal over 60000 milliseconden worden uitgevoerd:
    Service opnieuw starten.

    Error - 8/03/2012 18:04:22 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7000
    Description = De Iomega Activity Disk2-service kan vanwege de volgende fout niet
    worden gestart: %%2

    Error - 8/03/2012 18:04:22 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7000
    Description = De RGFILERW-service kan vanwege de volgende fout niet worden gestart:
    %%2

    Error - 8/03/2012 18:04:38 | Computer Name = LAPTOP-PATRICK | Source = Removable Storage-service | ID = 262255
    Description = RSM kan medium niet laden in station Station 0 van mediawisselaar
    Intenso Rainbow Line USB Device.

    Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Removable Storage-service | ID = 262255
    Description = RSM kan medium niet laden in station Station 0 van mediawisselaar
    Intenso Rainbow Line USB Device.

    Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001
    Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service,
    die vanwege de volgende fout niet kan worden gestart: %%1058

    Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001
    Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service,
    die vanwege de volgende fout niet kan worden gestart: %%1058


    < End of report >
  • Kan u mij advies geven over wat ik mag verwijderen van mijnPC?
    Ik denk dat er nogal wat 'ballast' tussen zit…

    Met dank
  • Jouw Windows heeft een probleem met NetFramework.
    Herinner mij eraan dat we dat oplossen wanneer de fix klaar is.
    Over ballast geproken, wacht eerst onderstaande af!

    [b:9631e67e50]Sluit voordat je OTL de fix laat doen, eerst alle andere openstaande vensters![/b:9631e67e50]

    Start OTL[list:9631e67e50][*:9631e67e50]Plak de volgende (vetgedrukte, blauwe tekst) onder [b:9631e67e50]Custom Scans/Fixes[/b:9631e67e50][/color:9631e67e50]

    [b:9631e67e50]
    :OTL

    C:
    ewkey:SummaryInformation
    C:\Documents and Settings\All Users\Application Data\Temp:A1063995


    :Services


    :Reg


    :Files


    :Commands
    [purity]

    [emptytemp]
    [emptyflash]
    [createrestorepoint]
    [reboot][/color:9631e67e50][/b:9631e67e50]


    [*:9631e67e50]Klik daarna bovenaan op de knop [b:9631e67e50]Run Fix[/b:9631e67e50][/color:9631e67e50][*:9631e67e50]Laat het programma ongestoord zijn werk doen.
    [*:9631e67e50]De pc zal na afloop opnieuw opgestart worden.
    [*:9631e67e50]Post tevens de inhoud van het OTL-scanlog[/list:u:9631e67e50]
  • Hieronder het resultaat van de scan ::

    Graag uw analyse

    Met beste dank


    All processes killed
    ========== OTL ==========
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    ========== FILES ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrator
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 67 bytes

    User: All Users
    ->Temp folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: L
    ->Temp folder emptied: 9037676 bytes
    ->Temporary Internet Files folder emptied: 10726693 bytes
    ->Java cache emptied: 0 bytes
    ->Google Chrome cache emptied: 6376988 bytes
    ->Apple Safari cache emptied: 0 bytes
    ->Flash cache emptied: 470 bytes

    User: LocalService
    ->Temp folder emptied: 66016 bytes
    ->Temporary Internet Files folder emptied: 246162 bytes

    User: NetworkService
    ->Temp folder emptied: 2570126 bytes
    ->Temporary Internet Files folder emptied: 72304933 bytes

    User: P
    ->Temp folder emptied: 49632 bytes
    ->Temporary Internet Files folder emptied: 67 bytes
    ->Java cache emptied: 11311 bytes
    ->Flash cache emptied: 1073 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 2166767 bytes
    %systemroot%\System32 .tmp files removed: 3590429 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 31633452 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 44323060 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 175,00 mb


    [EMPTYFLASH]

    User: Administrator

    User: All Users

    User: Default User

    User: L
    ->Flash cache emptied: 0 bytes

    User: LocalService

    User: NetworkService

    User: P
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0,00 mb

    Restore point Set: OTL Restore Point (0)

    OTL by OldTimer - Version 3.2.36.2 log created on 03102012_143954

    Files\Folders moved on Reboot…

    Registry entries deleted on Reboot…
  • Ik zie tot mijn ontsteltenis, dat ik jouw een verkeerd opgesteld script heb laten doen.
    Dus helaas moeten we dat nu herhalen, nu is het aangepast:


    [b:d73a6309fa]sluit voordat je OTL de fix laat doen, eerst alle andere openstaande vensters![/b:d73a6309fa]

    Start OTL[list:d73a6309fa][*:d73a6309fa]Plak de volgende (vetgedrukte, blauwe tekst) onder [b:d73a6309fa]Custom Scans/Fixes[/b:d73a6309fa][/color:d73a6309fa]

    [b:d73a6309fa]
    :OTL

    @Alternate Data Stream - 88 bytes -> C:
    ewkey:SummaryInformation
    @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\Temp:A1063995



    :Services


    :Reg


    :Files


    :Commands
    [purity]

    [emptytemp]
    [emptyflash]
    [createrestorepoint]
    [reboot][/color:d73a6309fa][/b:d73a6309fa]


    [*:d73a6309fa]Klik daarna bovenaan op de knop [b:d73a6309fa]Run Fix[/b:d73a6309fa][/color:d73a6309fa][*:d73a6309fa]Laat het programma ongestoord zijn werk doen.
    [*:d73a6309fa]De pc zal na afloop opnieuw opgestart worden.
    [*:d73a6309fa]Post tevens de inhoud van het OTL-scanlog[/list:u:d73a6309fa]
  • geen probleem, ik zal de nieuwe script deze avond uitproberen.

    ik moet toch geen problemen verwachten?
  • Problemen hoef je niet te verwachten inderdaad, maar 100% garantie kan ik ook weer niet geven.
  • OLT scan uitgevoerd

    Met dank voor uw medewerking en advies.


    All processes killed
    ========== OTL ==========
    ADS C:
    ewkey:SummaryInformation deleted successfully.
    ADS C:\Documents and Settings\All Users\Application Data\Temp:A1063995 deleted successfully.
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    ========== FILES ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrator
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: All Users
    ->Temp folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: L

    ->Temp folder emptied: 9808 bytes
    ->Temporary Internet Files folder emptied: 2898951 bytes
    ->Java cache emptied: 0 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Apple Safari cache emptied: 0 bytes
    ->Flash cache emptied: 470 bytes

    User: LocalService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: NetworkService
    ->Temp folder emptied: 2676 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes

    User: P
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Java cache emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 2824290 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 6,00 mb


    [EMPTYFLASH]Total Files Cleaned = 6,00 mb


    [EMPTYFLASH]

    User: Administrator

    User: All Users

    User: Default User

    User: L
    ->Flash cache emptied: 0 bytes

    User: LocalService

    User: NetworkService

    User: P
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0,00 mb

    Restore point Set: OTL Restore Point (0)

    OTL by OldTimer - Version 3.2.36.2 log created on 03122012_192441

    Files\Folders moved on Reboot…

    Registry entries deleted on Reboot…
  • Goed zo.

    We gaan nu nog dieper scannen!

    [b:937ee6826e]Stap •1•[/b:937ee6826e][/color:937ee6826e]
    [b:937ee6826e]Welk programma[/b:937ee6826e]: [b:937ee6826e]TDSSStarter.exe[/b:937ee6826e]
    [b:937ee6826e]Waarvoor/waarom[/b:937ee6826e]: Rootkitscanner
    [b:937ee6826e]Moeilijkheidsgraad[/b:937ee6826e]: geen
    Download [b:937ee6826e]TDSSStarter[/b:937ee6826e] naar het bureaublad.

    [b:937ee6826e]"TDSSSStarter.exe" gebruiken[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e] [b:937ee6826e]Sluit nu eerst alle nog openstaande programmavensters![/color:937ee6826e][/b:937ee6826e]
    [list:937ee6826e][*:937ee6826e][b:937ee6826e]Windows 2000[/color:937ee6826e][/b:937ee6826e] en [b:937ee6826e]Windows XP[/b:937ee6826e][/color:937ee6826e]: start het tool middels dubbelklik op "[i:937ee6826e] TDSSStarter .exe[/i:937ee6826e]".
    [*:937ee6826e][b:937ee6826e]Windows Vista[/b:937ee6826e][/color:937ee6826e] en [b:937ee6826e]Windows 7[/b:937ee6826e][/color:937ee6826e]: start het tool middels rechtsklik op "[i:937ee6826e]TDSSStarter.exe[/i:937ee6826e]" en dan kiezen voor [i:937ee6826e][b:937ee6826e]Als Administrator uitvoeren[/b:937ee6826e][/i:937ee6826e].[/list:u:937ee6826e]

    [*:937ee6826e]Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten.
    [*:937ee6826e]Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.[/list:u:937ee6826e]


    [b:937ee6826e]Stap •2•[/b:937ee6826e][/color:937ee6826e]
    [b:937ee6826e]Welk programma[/b:937ee6826e]: ComboFix
    [b:937ee6826e]Waarvoor/waarom[/b:937ee6826e]: Zeer specialistische scanner om Windows diepgaand te onderzoeken
    en zo mogelijk op te schonen.
    [b:937ee6826e]Moeilijkheidsgraad[/b:937ee6826e]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
    [b:937ee6826e]Downloadlokatie[/b:937ee6826e]: Dit programma absoluut naar het bureaublad downloaden!
    [b:937ee6826e]Download ComboFix via één van deze locaties[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e][b:937ee6826e]Bleepingcomputer[/b:937ee6826e]
    [*:937ee6826e][b:937ee6826e]ForoSpyware[/b:937ee6826e]
    [*:937ee6826e][b:937ee6826e]Geekstogo[/b:937ee6826e][/list:u:937ee6826e]
    [b:937ee6826e]Hier[/b:937ee6826e] zie je hoe je ComboFix moet gebruiken.

    Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn!
    [b:937ee6826e]Hier[/b:937ee6826e] en [b:937ee6826e]hier[/b:937ee6826e] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

    [b:937ee6826e]Voor alle duidelijkheid nogmaals[/b:937ee6826e]: ComboFix dient vanaf het bureaublad gestart te worden.

    [b:937ee6826e]Opmerkingen[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren!
    Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).[/list:u:937ee6826e]
    [b:937ee6826e]ComboFix opstarten[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e] [b:937ee6826e]Sluit nu eerst alle nog openstaande programmavensters![/color:937ee6826e][/b:937ee6826e]
    [list:937ee6826e][*:937ee6826e][b:937ee6826e]Windows 2000[/color:937ee6826e][/b:937ee6826e] en [b:937ee6826e]Windows XP[/b:937ee6826e][/color:937ee6826e]: start ComboFix.exe middels dubbelklik op ComboFix.exe.
    [*:937ee6826e][b:937ee6826e]Windows Vista[/b:937ee6826e][/color:937ee6826e] en [b:937ee6826e]Windows 7[/b:937ee6826e][/color:937ee6826e]: start ComboFix.exe via rechtsklik op ComboFix.exe en kies dan voor [i:937ee6826e][b:937ee6826e]Als Administrator uitvoeren[/b:937ee6826e][/i:937ee6826e].[/list:u:937ee6826e][/list:u:937ee6826e]
    [b:937ee6826e]ComboFix is opgestart[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
    [*:937ee6826e]Combofix sluit tijdens de scan de internet verbinding; probeer deze tussentijds niet te herstellen!
    [*:937ee6826e]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
    [*:937ee6826e]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
    [*:937ee6826e]Post de inhoud van dit logbestand in je volgende bericht.
    [*:937ee6826e]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:937ee6826e]
    [b:937ee6826e]Belangrijke opmerking[/b:937ee6826e]:
    [list:937ee6826e][*:937ee6826e][b:937ee6826e]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:937ee6826e][/b:937ee6826e]
    [*:937ee6826e][b:937ee6826e]Illegal operation attempted on a registery key that has been marked for deletion.[/color:937ee6826e][/b:937ee6826e]
    [*:937ee6826e][b:937ee6826e]Start dan de computer opnieuw op.[/color:937ee6826e][/b:937ee6826e][/list:u:937ee6826e]

    [b:937ee6826e]Stap •3•[/b:937ee6826e][/color:937ee6826e]
    [b:937ee6826e]Samenvattend: hierna post je in jouw volgende bericht de inhoud van de volgende logs:[/b:937ee6826e]
    [list:937ee6826e][*:937ee6826e] TDSSKStarter-log
    [*:937ee6826e] ComboFix.txt-log
    [/list:u:937ee6826e]
  • System Restore Point Check:

    TDSSKiller Starter Restore Point Created Succesfully
    ==============================================

    Older logs
    ==============================================
    C:\TDSSStarter\Report_20121303_1706_.log
    C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt
    ==============================================
    EOF
  • Waar is nu het nieuwe log?

    Ik heb jou opdracht gegeven om TDSSStarter te gebruiken, maar daarnaast heb je ook TDSSKiller gebruikt. Waarom.

    Ik wil nu graag dat jij beide logs post:

    [b:113682c875]C:\TDSSStarter\Report_20121303_1706_.log
    C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt[/b:113682c875]
  • Foutje gemaakt…
    Ik zet het straks recht…
  • System Restore Point Check:

    TDSSKiller Starter Restore Point Created Succesfully
    ==============================================

    Older logs
    ==============================================
    C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt
    ==============================================
    EOF

    17:03:31.0984 1168 TDSS rootkit removing tool 2.7.19.0 Mar 5 2012 11:23:39
    17:03:32.0015 1168 ============================================================
    17:03:32.0015 1168 Current date / time: 2012/03/13 17:03:32.0015
    17:03:32.0015 1168 SystemInfo:
    17:03:32.0015 1168
    17:03:32.0015 1168 OS Version: 5.1.2600 ServicePack: 3.0
    17:03:32.0015 1168 Product type: Workstation
    17:03:32.0015 1168 ComputerName: LAPTOP
    17:03:32.0015 1168 UserName: L
    17:03:32.0015 1168 Windows directory: C:\WINDOWS
    17:03:32.0015 1168 System windows directory: C:\WINDOWS
    17:03:32.0015 1168 Processor architecture: Intel x86
    17:03:32.0015 1168 Number of processors: 2
    17:03:32.0015 1168 Page size: 0x1000
    17:03:32.0015 1168 Boot type: Normal boot
    17:03:32.0015 1168 ============================================================
    17:03:34.0328 1168 Drive \Device\Harddisk0\DR0 - Size: 0x1248119400 (73.13 Gb), SectorSize: 0x200, Cylinders: 0x254A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    17:03:34.0328 1168 Drive \Device\Harddisk1\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
    17:03:34.0687 1168 Drive \Device\Harddisk2\DR7 - Size: 0x3E8800000 (15.63 Gb), SectorSize: 0x200, Cylinders: 0x7F8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
    17:03:34.0687 1168 \Device\Harddisk0\DR0:
    17:03:34.0687 1168 MBR used
    17:03:34.0687 1168 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x2B5B98E
    17:03:34.0687 1168 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2B73214, BlocksNum 0x63FFABF
    17:03:34.0687 1168 \Device\Harddisk1\DR5:
    17:03:34.0687 1168 MBR used
    17:03:34.0687 1168 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
    17:03:34.0687 1168 \Device\Harddisk2\DR7:
    17:03:34.0687 1168 MBR used
    17:03:34.0687 1168 \Device\Harddisk2\DR7\Partition0: MBR, Type 0xB, StartLBA 0x2D8, BlocksNum 0x1F43D28
    17:03:35.0390 1168 Initialize success
    17:03:35.0390 1168 ============================================================
    17:03:55.0015 4268 ============================================================
    17:03:55.0015 4268 Scan started
    17:03:55.0015 4268 Mode: Manual;
    17:03:55.0015 4268 ============================================================
    17:03:55.0859 4268 Abiosdsk - ok
    17:03:55.0859 4268 abp480n5 - ok
    17:03:55.0921 4268 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    17:03:55.0921 4268 ACPI - ok
    17:03:55.0968 4268 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys
    17:03:55.0968 4268 ACPIEC - ok
    17:03:56.0015 4268 ACSSCR (b6a0f723a54884e77fce0f69083f90c9) C:\WINDOWS\system32\DRIVERS\a38usb.sys
    17:03:56.0062 4268 ACSSCR - ok
    17:03:56.0062 4268 adpu160m - ok
    17:03:56.0093 4268 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    17:03:56.0109 4268 aec - ok
    17:03:56.0156 4268 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    17:03:56.0203 4268 AegisP - ok
    17:03:56.0265 4268 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    17:03:56.0265 4268 AFD - ok
    17:03:56.0281 4268 Aha154x - ok
    17:03:56.0296 4268 aic78u2 - ok
    17:03:56.0296 4268 aic78xx - ok
    17:03:56.0328 4268 AliIde - ok
    17:03:56.0328 4268 amsint - ok
    17:03:56.0390 4268 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
    17:03:56.0406 4268 APPDRV - ok
    17:03:56.0468 4268 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
    17:03:56.0468 4268 Arp1394 - ok
    17:03:56.0468 4268 asc - ok
    17:03:56.0484 4268 asc3350p - ok
    17:03:56.0500 4268 asc3550 - ok
    17:03:56.0546 4268 ASPI (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\System32\DRIVERS\ASPI32.sys
    17:03:56.0546 4268 ASPI - ok
    17:03:56.0578 4268 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
    17:03:56.0578 4268 Aspi32 - ok
    17:03:56.0609 4268 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    17:03:56.0609 4268 AsyncMac - ok
    17:03:56.0656 4268 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    17:03:56.0656 4268 atapi - ok
    17:03:56.0671 4268 Atdisk - ok
    17:03:56.0718 4268 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    17:03:56.0718 4268 Atmarpc - ok
    17:03:56.0781 4268 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    17:03:56.0781 4268 audstub - ok
    17:03:56.0812 4268 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
    17:03:56.0843 4268 bcm4sbxp - ok
    17:03:56.0875 4268 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    17:03:56.0875 4268 Beep - ok
    17:03:56.0937 4268 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys
    17:03:56.0953 4268 btaudio - ok
    17:03:57.0000 4268 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys
    17:03:57.0015 4268 BTDriver - ok
    17:03:57.0093 4268 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
    17:03:57.0125 4268 BTKRNL - ok
    17:03:57.0156 4268 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys
    17:03:57.0156 4268 BTSERIAL - ok
    17:03:57.0187 4268 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
    17:03:57.0203 4268 BTWDNDIS - ok
    17:03:57.0265 4268 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys
    17:03:57.0265 4268 btwhid - ok
    17:03:57.0296 4268 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
    17:03:57.0296 4268 btwmodem - ok
    17:03:57.0328 4268 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys
    17:03:57.0343 4268 BTWUSB - ok
    17:03:57.0375 4268 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    17:03:57.0375 4268 cbidf2k - ok
    17:03:57.0406 4268 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    17:03:57.0406 4268 CCDECODE - ok
    17:03:57.0421 4268 cd20xrnt - ok
    17:03:57.0468 4268 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    17:03:57.0468 4268 Cdaudio - ok
    17:03:57.0484 4268 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    17:03:57.0484 4268 Cdfs - ok
    17:03:57.0531 4268 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    17:03:57.0546 4268 Cdrom - ok
    17:03:57.0578 4268 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys
    17:03:57.0578 4268 cercsr6 - ok
    17:03:57.0593 4268 Changer - ok
    17:03:57.0718 4268 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
    17:03:57.0718 4268 CmBatt - ok
    17:03:57.0734 4268 CmdIde - ok
    17:03:57.0750 4268 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
    17:03:57.0750 4268 Compbatt - ok
    17:03:57.0765 4268 Cpqarray - ok
    17:03:57.0796 4268 ctsfm2k - ok
    17:03:57.0812 4268 CTUSFSYN - ok
    17:03:57.0828 4268 dac2w2k - ok
    17:03:57.0843 4268 dac960nt - ok
    17:03:57.0859 4268 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    17:03:57.0859 4268 Disk - ok
    17:03:57.0937 4268 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys
    17:03:57.0968 4268 dmboot - ok
    17:03:58.0000 4268 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\drivers\dmio.sys
    17:03:58.0000 4268 dmio - ok
    17:03:58.0031 4268 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    17:03:58.0031 4268 dmload - ok
    17:03:58.0062 4268 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    17:03:58.0062 4268 DMusic - ok
    17:03:58.0109 4268 dpti2o - ok
    17:03:58.0156 4268 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    17:03:58.0156 4268 drmkaud - ok
    17:03:58.0265 4268 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
    17:03:58.0265 4268 DSproct - ok
    17:03:58.0312 4268 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
    17:03:58.0359 4268 dsunidrv - ok
    17:03:58.0546 4268 F-Secure Gatekeeper (29d12e1e45d93b45d2598e2663bbeff4) C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys
    17:03:58.0562 4268 F-Secure Gatekeeper - ok
    17:03:58.0656 4268 F-Secure HIPS (6137a461cea0277ef62f53df4badf7d0) C:\Program Files\F-Secure\HIPS\drivers\fshs.sys
    17:03:58.0671 4268 F-Secure HIPS - ok
    17:03:58.0781 4268 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    17:03:58.0796 4268 Fastfat - ok
    17:03:58.0843 4268 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
    17:03:58.0843 4268 Fdc - ok
    17:03:58.0906 4268 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys
    17:03:58.0906 4268 Fips - ok
    17:03:58.0953 4268 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
    17:03:58.0953 4268 Flpydisk - ok
    17:03:59.0000 4268 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
    17:03:59.0000 4268 FltMgr - ok
    17:03:59.0046 4268 FNETTBOH (a9e2df40ed6ec9e8885da72b6e1818f3) C:\WINDOWS\system32\drivers\FNETTBOH.SYS
    17:03:59.0078 4268 FNETTBOH - ok
    17:03:59.0125 4268 FNETURPX (784ffba7ee5c5f3a396407e4712f72f0) C:\WINDOWS\system32\drivers\FNETURPX.SYS
    17:03:59.0125 4268 FNETURPX - ok
    17:03:59.0171 4268 fsbts (343786e182b9c9ae3066e00dec650f50) C:\WINDOWS\system32\Drivers\fsbts.sys
    17:03:59.0171 4268 fsbts - ok
    17:03:59.0218 4268 FSFW (3b40b0703059461f6f739f4d88faa6f8) C:\WINDOWS\system32\drivers\fsdfw.sys
    17:03:59.0218 4268 FSFW - ok
    17:03:59.0250 4268 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    17:03:59.0250 4268 Fs_Rec - ok
    17:03:59.0296 4268 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    17:03:59.0296 4268 Ftdisk - ok
    17:03:59.0328 4268 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
    17:03:59.0328 4268 GEARAspiWDM - ok
    17:03:59.0359 4268 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    17:03:59.0359 4268 Gpc - ok
    17:03:59.0406 4268 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    17:03:59.0421 4268 HDAudBus - ok
    17:03:59.0453 4268 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    17:03:59.0453 4268 HidUsb - ok
    17:03:59.0484 4268 hpn - ok
    17:03:59.0578 4268 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
    17:03:59.0671 4268 HSF_DPV - ok
    17:03:59.0703 4268 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
    17:03:59.0734 4268 HSXHWAZL - ok
    17:03:59.0796 4268 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    17:03:59.0796 4268 HTTP - ok
    17:03:59.0812 4268 i2omgmt - ok
    17:03:59.0828 4268 i2omp - ok
    17:03:59.0859 4268 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    17:03:59.0859 4268 i8042prt - ok
    17:03:59.0968 4268 ialm (cc449157474d5e43daea7e20f52c635a) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
    17:04:00.0000 4268 ialm - ok
    17:04:00.0046 4268 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    17:04:00.0062 4268 Imapi - ok
    17:04:00.0078 4268 ini910u - ok
    17:04:00.0093 4268 IntelIde - ok
    17:04:00.0140 4268 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    17:04:00.0140 4268 intelppm - ok
    17:04:00.0187 4268 iomdisk (9d7069d72c0c72952f05e1688a5ae89d) C:\WINDOWS\system32\DRIVERS\iomdisk.sys
    17:04:00.0218 4268 iomdisk - ok
    17:04:00.0281 4268 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
    17:04:00.0281 4268 Ip6Fw - ok
    17:04:00.0312 4268 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    17:04:00.0312 4268 IpFilterDriver - ok
    17:04:00.0343 4268 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    17:04:00.0343 4268 IpInIp - ok
    17:04:00.0359 4268 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    17:04:00.0375 4268 IpNat - ok
    17:04:00.0406 4268 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    17:04:00.0406 4268 IPSec - ok
    17:04:00.0437 4268 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    17:04:00.0437 4268 IRENUM - ok
    17:04:00.0484 4268 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    17:04:00.0484 4268 isapnp - ok
    17:04:00.0515 4268 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    17:04:00.0531 4268 Kbdclass - ok
    17:04:00.0546 4268 kbdhid (b833b70fe639f01fb36cedabe57ef031) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    17:04:00.0546 4268 kbdhid - ok
    17:04:00.0593 4268 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    17:04:00.0593 4268 kmixer - ok
    17:04:00.0640 4268 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    17:04:00.0640 4268 KSecDD - ok
    17:04:00.0671 4268 lbrtfdc - ok
    17:04:00.0734 4268 mcdbus (f922b609524cf1ed66a1a109f3ce014f) C:\WINDOWS\system32\DRIVERS\mcdbus.sys
    17:04:00.0781 4268 mcdbus - ok
    17:04:00.0828 4268 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    17:04:00.0875 4268 mdmxsdk - ok
    17:04:00.0937 4268 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    17:04:00.0937 4268 mnmdd - ok
    17:04:00.0984 4268 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys
    17:04:00.0984 4268 Modem - ok
    17:04:01.0093 4268 monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\monfilt.sys
    17:04:01.0156 4268 monfilt - ok
    17:04:01.0171 4268 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    17:04:01.0171 4268 Mouclass - ok
    17:04:01.0234 4268 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    17:04:01.0234 4268 mouhid - ok
    17:04:01.0250 4268 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    17:04:01.0265 4268 MountMgr - ok
    17:04:01.0265 4268 mraid35x - ok
    17:04:01.0312 4268 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    17:04:01.0312 4268 MRxDAV - ok
    17:04:01.0468 4268 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    17:04:01.0484 4268 MRxSmb - ok
    17:04:01.0515 4268 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    17:04:01.0515 4268 Msfs - ok
    17:04:01.0562 4268 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
    17:04:01.0562 4268 MSKSSRV - ok
    17:04:01.0625 4268 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    17:04:01.0625 4268 MSPCLOCK - ok
    17:04:01.0640 4268 MSPQM (398fad33f4b8654d5ba703ff53b2b02a) C:\WINDOWS\system32\drivers\MSPQM.sys
    17:04:01.0671 4268 MSPQM - ok
    17:04:01.0718 4268 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    17:04:01.0734 4268 mssmbios - ok
    17:04:01.0765 4268 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
    17:04:01.0781 4268 MSTEE - ok
    17:04:01.0812 4268 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    17:04:01.0812 4268 Mup - ok
    17:04:01.0859 4268 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    17:04:01.0875 4268 NABTSFEC - ok
    17:04:01.0906 4268 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    17:04:01.0906 4268 NDIS - ok
    17:04:01.0937 4268 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    17:04:01.0937 4268 NdisIP - ok
    17:04:01.0984 4268 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS
    distapi.sys
    17:04:01.0984 4268 NdisTapi - ok
    17:04:02.0015 4268 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS
    disuio.sys
    17:04:02.0015 4268 Ndisuio - ok
    17:04:02.0031 4268 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS
    diswan.sys
    17:04:02.0046 4268 NdisWan - ok
    17:04:02.0093 4268 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    17:04:02.0093 4268 NDProxy - ok
    17:04:02.0109 4268 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS
    etbios.sys
    17:04:02.0125 4268 NetBIOS - ok
    17:04:02.0140 4268 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS
    etbt.sys
    17:04:02.0156 4268 NetBT - ok
    17:04:02.0281 4268 NETw3x32 (71371ed9086a3d65f43967c89634e9a9) C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
    17:04:02.0390 4268 NETw3x32 - ok
    17:04:02.0546 4268 NETw4x32 (b5ab1108b377b5f3d37409fabda01453) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
    17:04:02.0609 4268 NETw4x32 - ok
    17:04:02.0656 4268 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS
    ic1394.sys
    17:04:02.0656 4268 NIC1394 - ok
    17:04:02.0703 4268 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    17:04:02.0718 4268 Npfs - ok
    17:04:02.0781 4268 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    17:04:02.0796 4268 Ntfs - ok
    17:04:02.0812 4268 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    17:04:02.0812 4268 Null - ok
    17:04:02.0875 4268 NWADI (091a1284aa583288b64dcd370d1b421e) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys
    17:04:02.0875 4268 NWADI - ok
    17:04:02.0921 4268 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS
    wlnkflt.sys
    17:04:02.0921 4268 NwlnkFlt - ok
    17:04:02.0937 4268 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS
    wlnkfwd.sys
    17:04:02.0937 4268 NwlnkFwd - ok
    17:04:03.0000 4268 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
    17:04:03.0000 4268 ohci1394 - ok
    17:04:03.0015 4268 ossrv - ok
    17:04:03.0078 4268 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\drivers\Parport.sys
    17:04:03.0078 4268 Parport - ok
    17:04:03.0109 4268 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    17:04:03.0109 4268 PartMgr - ok
    17:04:03.0140 4268 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys
    17:04:03.0140 4268 ParVdm - ok
    17:04:03.0171 4268 PCASp50 (803c8e7f4d00fe832c1f3871514fec85) C:\WINDOWS\system32\Drivers\PCASp50.sys
    17:04:03.0171 4268 PCASp50 - ok
    17:04:03.0468 4268 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    17:04:03.0468 4268 pccsmcfd - ok
    17:04:03.0625 4268 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys
    17:04:03.0625 4268 PCI - ok
    17:04:03.0640 4268 PCIDump - ok
    17:04:03.0687 4268 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys
    17:04:03.0687 4268 PCIIde - ok
    17:04:03.0734 4268 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys
    17:04:03.0734 4268 Pcmcia - ok
    17:04:03.0750 4268 PDCOMP - ok
    17:04:03.0765 4268 PDFRAME - ok
    17:04:03.0781 4268 PDRELI - ok
    17:04:03.0781 4268 PDRFRAME - ok
    17:04:03.0796 4268 perc2 - ok
    17:04:03.0812 4268 perc2hib - ok
    17:04:03.0875 4268 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys
    17:04:03.0890 4268 pfc - ok
    17:04:03.0953 4268 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    17:04:03.0953 4268 PptpMiniport - ok
    17:04:04.0000 4268 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    17:04:04.0015 4268 PSched - ok
    17:04:04.0031 4268 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    17:04:04.0031 4268 Ptilink - ok
    17:04:04.0031 4268 ql1080 - ok
    17:04:04.0046 4268 Ql10wnt - ok
    17:04:04.0062 4268 ql12160 - ok
    17:04:04.0078 4268 ql1240 - ok
    17:04:04.0093 4268 ql1280 - ok
    17:04:04.0109 4268 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    17:04:04.0109 4268 RasAcd - ok
    17:04:04.0140 4268 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    17:04:04.0140 4268 Rasl2tp - ok
    17:04:04.0156 4268 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    17:04:04.0171 4268 RasPppoe - ok
    17:04:04.0187 4268 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    17:04:04.0187 4268 Raspti - ok
    17:04:04.0218 4268 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    17:04:04.0218 4268 Rdbss - ok
    17:04:04.0234 4268 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    17:04:04.0234 4268 RDPCDD - ok
    17:04:04.0265 4268 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    17:04:04.0281 4268 rdpdr - ok
    17:04:04.0328 4268 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
    17:04:04.0343 4268 RDPWD - ok
    17:04:04.0375 4268 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys
    17:04:04.0375 4268 redbook - ok
    17:04:04.0406 4268 RGFILERW - ok
    17:04:04.0437 4268 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
    17:04:04.0468 4268 rimmptsk - ok
    17:04:04.0484 4268 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
    17:04:04.0515 4268 rimsptsk - ok
    17:04:04.0578 4268 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
    17:04:04.0609 4268 rismxdp - ok
    17:04:04.0671 4268 s24trans (eadfb87f911a7a75d1b80617f92901e8) C:\WINDOWS\system32\DRIVERS\s24trans.sys
    17:04:04.0671 4268 s24trans - ok
    17:04:04.0750 4268 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
    17:04:04.0750 4268 sbp2port - ok
    17:04:04.0781 4268 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
    17:04:04.0781 4268 sdbus - ok
    17:04:04.0828 4268 Secdrv (4756ca8ac897e1a7e55e422b3fd2d455) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    17:04:04.0859 4268 Secdrv - ok
    17:04:04.0906 4268 Ser2pl (b490ad520257dda26c1d587a71e527b5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
    17:04:04.0906 4268 Ser2pl - ok
    17:04:04.0968 4268 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    17:04:04.0968 4268 Serenum - ok
    17:04:05.0000 4268 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\drivers\Serial.sys
    17:04:05.0015 4268 Serial - ok
    17:04:05.0078 4268 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
    17:04:05.0078 4268 sffdisk - ok
    17:04:05.0125 4268 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
    17:04:05.0125 4268 sffp_sd - ok
    17:04:05.0140 4268 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    17:04:05.0140 4268 Sfloppy - ok
    17:04:05.0171 4268 Simbad - ok
    17:04:05.0203 4268 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
    17:04:05.0203 4268 SLIP - ok
    17:04:05.0218 4268 Sparrow - ok
    17:04:05.0296 4268 SPC610NC (06d0e7c3500310a9349ce347ea410c0b) C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS
    17:04:05.0375 4268 SPC610NC - ok
    17:04:05.0421 4268 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    17:04:05.0421 4268 splitter - ok
    17:04:05.0453 4268 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys
    17:04:05.0468 4268 sr - ok
    17:04:05.0515 4268 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    17:04:05.0531 4268 Srv - ok
    17:04:05.0656 4268 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys
    17:04:05.0687 4268 STHDA - ok
    17:04:05.0734 4268 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    17:04:05.0734 4268 streamip - ok
    17:04:05.0796 4268 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    17:04:05.0796 4268 swenum - ok
    17:04:05.0812 4268 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    17:04:05.0828 4268 swmidi - ok
    17:04:05.0843 4268 symc810 - ok
    17:04:05.0859 4268 symc8xx - ok
    17:04:05.0875 4268 sym_hi - ok
    17:04:05.0890 4268 sym_u3 - ok
    17:04:05.0953 4268 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys
    17:04:05.0984 4268 SynTP - ok
    17:04:06.0015 4268 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    17:04:06.0015 4268 sysaudio - ok
    17:04:06.0093 4268 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    17:04:06.0109 4268 Tcpip - ok
    17:04:06.0140 4268 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    17:04:06.0156 4268 TDPIPE - ok
    17:04:06.0203 4268 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    17:04:06.0203 4268 TDTCP - ok
    17:04:06.0250 4268 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    17:04:06.0250 4268 TermDD - ok
    17:04:06.0265 4268 TosIde - ok
    17:04:06.0312 4268 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    17:04:06.0312 4268 Udfs - ok
    17:04:06.0328 4268 UIUSys - ok
    17:04:06.0343 4268 ultra - ok
    17:04:06.0390 4268 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    17:04:06.0390 4268 Update - ok
    17:04:06.0453 4268 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    17:04:06.0453 4268 usbccgp - ok
    17:04:06.0500 4268 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    17:04:06.0500 4268 usbehci - ok
    17:04:06.0531 4268 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    17:04:06.0531 4268 usbhub - ok
    17:04:06.0593 4268 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    17:04:06.0593 4268 usbscan - ok
    17:04:06.0656 4268 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    17:04:06.0656 4268 USBSTOR - ok
    17:04:06.0687 4268 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    17:04:06.0687 4268 usbuhci - ok
    17:04:06.0734 4268 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    17:04:06.0734 4268 VgaSave - ok
    17:04:06.0734 4268 ViaIde - ok
    17:04:06.0828 4268 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys
    17:04:06.0828 4268 VolSnap - ok
    17:04:06.0937 4268 w39n51 (95c7421f8bafc85ba09d33364058937d) C:\WINDOWS\system32\DRIVERS\w39n51.sys
    17:04:07.0031 4268 w39n51 - ok
    17:04:07.0078 4268 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    17:04:07.0078 4268 Wanarp - ok
    17:04:07.0093 4268 WDICA - ok
    17:04:07.0125 4268 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    17:04:07.0125 4268 wdmaud - ok
    17:04:07.0218 4268 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
    17:04:07.0250 4268 winachsf - ok
    17:04:07.0328 4268 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
    17:04:07.0328 4268 WmiAcpi - ok
    17:04:07.0390 4268 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    17:04:07.0406 4268 WpdUsb - ok
    17:04:07.0453 4268 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    17:04:07.0453 4268 WS2IFSL - ok
    17:04:07.0515 4268 WsAudio_DeviceS(1) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys
    17:04:07.0546 4268 WsAudio_DeviceS(1) - ok
    17:04:07.0640 4268 WsAudio_DeviceS(2) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys
    17:04:07.0656 4268 WsAudio_DeviceS(2) - ok
    17:04:07.0687 4268 WsAudio_DeviceS(3) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys
    17:04:07.0703 4268 WsAudio_DeviceS(3) - ok
    17:04:07.0734 4268 WsAudio_DeviceS(4) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys
    17:04:07.0734 4268 WsAudio_DeviceS(4) - ok
    17:04:07.0796 4268 WsAudio_DeviceS(5) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys
    17:04:07.0812 4268 WsAudio_DeviceS(5) - ok
    17:04:07.0875 4268 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    17:04:07.0875 4268 WSTCODEC - ok
    17:04:07.0906 4268 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    17:04:07.0921 4268 WudfPf - ok
    17:04:07.0953 4268 WudfRd (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    17:04:07.0968 4268 WudfRd - ok
    17:04:08.0015 4268 MBR (0x1B8) (e7d69fbcd87e8b5ad9d652d5ffe0af4c) \Device\Harddisk0\DR0
    17:04:08.0062 4268 \Device\Harddisk0\DR0 - ok
    17:04:08.0359 4268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR5
    17:04:08.0453 4268 \Device\Harddisk1\DR5 - ok
    17:04:08.0468 4268 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk2\DR7
    17:04:08.0468 4268 \Device\Harddisk2\DR7 - ok
    17:04:08.0484 4268 Boot (0x1200) (f0ffa4494d1428cacdb3b2bea1920eeb) \Device\Harddisk0\DR0\Partition0
    17:04:08.0484 4268 \Device\Harddisk0\DR0\Partition0 - ok
    17:04:08.0515 4268 Boot (0x1200) (07d1cc5232ff7546d279e5581bfeecab) \Device\Harddisk0\DR0\Partition1
    17:04:08.0515 4268 \Device\Harddisk0\DR0\Partition1 - ok
    17:04:08.0515 4268 Boot (0x1200) (02bdd5cd96c189715261d70d30b506cf) \Device\Harddisk1\DR5\Partition0
    17:04:08.0531 4268 \Device\Harddisk1\DR5\Partition0 - ok
    17:04:08.0531 4268 Boot (0x1200) (3a7fc3eb59f839b6a1282447a4814a9e) \Device\Harddisk2\DR7\Partition0
    17:04:08.0531 4268 \Device\Harddisk2\DR7\Partition0 - ok
    17:04:08.0531 4268 ============================================================
    17:04:08.0531 4268 Scan finished
    17:04:08.0531 4268 ============================================================
    17:04:08.0546 5316 Detected object count: 0
    17:04:08.0546 5316 Actual detected object count: 0
    17:04:57.0343 5500 ============================================================
    17:04:57.0343 5500 Scan started
    17:04:57.0343 5500 Mode: Manual;
    17:04:57.0343 5500 ============================================================
    17:04:58.0531 5500 Abiosdsk - ok
    17:04:58.0546 5500 abp480n5 - ok
    17:04:58.0593 5500 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    17:04:58.0609 5500 ACPI - ok
    17:04:58.0640 5500 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys
    17:04:58.0640 5500 ACPIEC - ok
    17:04:58.0687 5500 ACSSCR (b6a0f723a54884e77fce0f69083f90c9) C:\WINDOWS\system32\DRIVERS\a38usb.sys
    17:04:58.0687 5500 ACSSCR - ok
    17:04:58.0703 5500 adpu160m - ok
    17:04:58.0734 5500 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    17:04:58.0734 5500 aec - ok
    17:04:58.0781 5500 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    17:04:58.0781 5500 AegisP - ok
    17:04:58.0843 5500 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    17:04:58.0843 5500 AFD - ok
    17:04:58.0859 5500 Aha154x - ok
    17:04:58.0875 5500 aic78u2 - ok
    17:04:58.0875 5500 aic78xx - ok
    17:04:58.0906 5500 AliIde - ok
    17:04:58.0921 5500 amsint - ok
    17:04:58.0968 5500 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
    17:04:58.0968 5500 APPDRV - ok
    17:04:59.0000 5500 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
    17:04:59.0000 5500 Arp1394 - ok
    17:04:59.0015 5500 asc - ok
    17:04:59.0031 5500 asc3350p - ok
    17:04:59.0046 5500 asc3550 - ok
    17:04:59.0093 5500 ASPI (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\System32\DRIVERS\ASPI32.sys
    17:04:59.0093 5500 ASPI - ok
    17:04:59.0109 5500 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
    17:04:59.0109 5500 Aspi32 - ok
    17:04:59.0156 5500 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    17:04:59.0156 5500 AsyncMac - ok
    17:04:59.0203 5500 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    17:04:59.0218 5500 atapi - ok
    17:04:59.0218 5500 Atdisk - ok
    17:04:59.0250 5500 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    17:04:59.0265 5500 Atmarpc - ok
    17:04:59.0296 5500 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    17:04:59.0296 5500 audstub - ok
    17:04:59.0343 5500 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
    17:04:59.0343 5500 bcm4sbxp - ok
    17:04:59.0359 5500 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    17:04:59.0359 5500 Beep - ok
    17:04:59.0421 5500 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys
    17:04:59.0421 5500 btaudio - ok
    17:04:59.0484 5500 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys
    17:04:59.0484 5500 BTDriver - ok
    17:04:59.0562 5500 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
    17:04:59.0578 5500 BTKRNL - ok
    17:04:59.0593 5500 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys
    17:04:59.0593 5500 BTSERIAL - ok
    17:04:59.0640 5500 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
    17:04:59.0640 5500 BTWDNDIS - ok
    17:04:59.0703 5500 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys
    17:04:59.0703 5500 btwhid - ok
    17:04:59.0734 5500 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
    17:04:59.0734 5500 btwmodem - ok
    17:04:59.0765 5500 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys
    17:04:59.0765 5500 BTWUSB - ok
    17:04:59.0796 5500 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    17:04:59.0812 5500 cbidf2k - ok
    17:04:59.0843 5500 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    17:04:59.0843 5500 CCDECODE - ok
    17:04:59.0843 5500 cd20xrnt - ok
    17:04:59.0875 5500 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    17:04:59.0875 5500 Cdaudio - ok
    17:04:59.0906 5500 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    17:04:59.0906 5500 Cdfs - ok
    17:04:59.0953 5500 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    17:04:59.0953 5500 Cdrom - ok
    17:05:00.0000 5500 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys
    17:05:00.0000 5500 cercsr6 - ok
    17:05:00.0015 5500 Changer - ok
    17:05:00.0062 5500 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
    17:05:00.0062 5500 CmBatt - ok
    17:05:00.0078 5500 CmdIde - ok
    17:05:00.0093 5500 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
    17:05:00.0093 5500 Compbatt - ok
    17:05:00.0125 5500 Cpqarray - ok
    17:05:00.0140 5500 ctsfm2k - ok
    17:05:00.0156 5500 CTUSFSYN - ok
    17:05:00.0171 5500 dac2w2k - ok
    17:05:00.0187 5500 dac960nt - ok
    17:05:00.0203 5500 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    17:05:00.0203 5500 Disk - ok
    17:05:00.0312 5500 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys
    17:05:00.0312 5500 dmboot - ok
    17:05:00.0343 5500 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\drivers\dmio.sys
    17:05:00.0359 5500 dmio - ok
    17:05:00.0375 5500 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    17:05:00.0375 5500 dmload - ok
    17:05:00.0406 5500 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    17:05:00.0406 5500 DMusic - ok
    17:05:00.0437 5500 dpti2o - ok
    17:05:00.0468 5500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    17:05:00.0484 5500 drmkaud - ok
    17:05:00.0562 5500 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
    17:05:00.0562 5500 DSproct - ok
    17:05:00.0625 5500 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
    17:05:00.0625 5500 dsunidrv - ok
    17:05:00.0812 5500 F-Secure Gatekeeper (29d12e1e45d93b45d2598e2663bbeff4) C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys
    17:05:00.0812 5500 F-Secure Gatekeeper - ok
    17:05:00.0906 5500 F-Secure HIPS (6137a461cea0277ef62f53df4badf7d0) C:\Program Files\F-Secure\HIPS\drivers\fshs.sys
    17:05:00.0906 5500 F-Secure HIPS - ok
    17:05:00.0953 5500 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    17:05:00.0968 5500 Fastfat - ok
    17:05:00.0984 5500 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
    17:05:00.0984 5500 Fdc - ok
    17:05:01.0046 5500 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys
    17:05:01.0046 5500 Fips - ok
    17:05:01.0078 5500 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
    17:05:01.0078 5500 Flpydisk - ok
    17:05:01.0109 5500 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
    17:05:01.0109 5500 FltMgr - ok
    17:05:01.0156 5500 FNETTBOH (a9e2df40ed6ec9e8885da72b6e1818f3) C:\WINDOWS\system32\drivers\FNETTBOH.SYS
    17:05:01.0156 5500 FNETTBOH - ok
    17:05:01.0187 5500 FNETURPX (784ffba7ee5c5f3a396407e4712f72f0) C:\WINDOWS\system32\drivers\FNETURPX.SYS
    17:05:01.0187 5500 FNETURPX - ok
    17:05:01.0250 5500 fsbts (343786e182b9c9ae3066e00dec650f50) C:\WINDOWS\system32\Drivers\fsbts.sys
    17:05:01.0250 5500 fsbts - ok
    17:05:01.0296 5500 FSFW (3b40b0703059461f6f739f4d88faa6f8) C:\WINDOWS\system32\drivers\fsdfw.sys
    17:05:01.0296 5500 FSFW - ok
    17:05:01.0312 5500 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    17:05:01.0312 5500 Fs_Rec - ok
    17:05:01.0359 5500 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    17:05:01.0359 5500 Ftdisk - ok
    17:05:01.0484 5500 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
    17:05:01.0484 5500 GEARAspiWDM - ok
    17:05:01.0515 5500 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    17:05:01.0515 5500 Gpc - ok
    17:05:01.0531 5500 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    17:05:01.0531 5500 HDAudBus - ok
    17:05:01.0578 5500 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    17:05:01.0578 5500 HidUsb - ok
    17:05:01.0593 5500 hpn - ok
    17:05:01.0687 5500 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
    17:05:01.0703 5500 HSF_DPV - ok
    17:05:01.0718 5500 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
    17:05:01.0734 5500 HSXHWAZL - ok
    17:05:01.0781 5500 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    17:05:01.0796 5500 HTTP - ok
    17:05:01.0796 5500 i2omgmt - ok
    17:05:01.0812 5500 i2omp - ok
    17:05:01.0843 5500 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    17:05:01.0843 5500 i8042prt - ok
    17:05:01.0953 5500 ialm (cc449157474d5e43daea7e20f52c635a) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
    17:05:01.0968 5500 ialm - ok
    17:05:02.0031 5500 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    17:05:02.0031 5500 Imapi - ok
    17:05:02.0046 5500 ini910u - ok
    17:05:02.0062 5500 IntelIde - ok
    17:05:02.0109 5500 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    17:05:02.0109 5500 intelppm - ok
    17:05:02.0156 5500 iomdisk (9d7069d72c0c72952f05e1688a5ae89d) C:\WINDOWS\system32\DRIVERS\iomdisk.sys
    17:05:02.0156 5500 iomdisk - ok
    17:05:02.0187 5500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
    17:05:02.0187 5500 Ip6Fw - ok
    17:05:02.0218 5500 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    17:05:02.0218 5500 IpFilterDriver - ok
    17:05:02.0250 5500 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    17:05:02.0250 5500 IpInIp - ok
    17:05:02.0265 5500 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    17:05:02.0265 5500 IpNat - ok
    17:05:02.0296 5500 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    17:05:02.0296 5500 IPSec - ok
    17:05:02.0328 5500 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    17:05:02.0328 5500 IRENUM - ok
    17:05:02.0343 5500 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    17:05:02.0343 5500 isapnp - ok
    17:05:02.0390 5500 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    17:05:02.0390 5500 Kbdclass - ok
    17:05:02.0421 5500 kbdhid (b833b70fe639f01fb36cedabe57ef031) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    17:05:02.0421 5500 kbdhid - ok
    17:05:02.0453 5500 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    17:05:02.0453 5500 kmixer - ok
    17:05:02.0500 5500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    17:05:02.0500 5500 KSecDD - ok
    17:05:02.0515 5500 lbrtfdc - ok
    17:05:02.0578 5500 mcdbus (f922b609524cf1ed66a1a109f3ce014f) C:\WINDOWS\system32\DRIVERS\mcdbus.sys
    17:05:02.0578 5500 mcdbus - ok
    17:05:02.0625 5500 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    17:05:02.0625 5500 mdmxsdk - ok
    17:05:02.0687 5500 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    17:05:02.0687 5500 mnmdd - ok
    17:05:02.0734 5500 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys
    17:05:02.0734 5500 Modem - ok
    17:05:02.0843 5500 monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\monfilt.sys
    17:05:02.0859 5500 monfilt - ok
    17:05:02.0875 5500 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    17:05:02.0890 5500 Mouclass - ok
    17:05:02.0937 5500 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    17:05:02.0937 5500 mouhid - ok
    17:05:02.0968 5500 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    17:05:02.0968 5500 MountMgr - ok
    17:05:02.0968 5500 mraid35x - ok
    17:05:03.0000 5500 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    17:05:03.0000 5500 MRxDAV - ok
    17:05:03.0062 5500 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    17:05:03.0062 5500 MRxSmb - ok
    17:05:03.0109 5500 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    17:05:03.0109 5500 Msfs - ok
    17:05:03.0140 5500 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
    17:05:03.0140 5500 MSKSSRV - ok
    17:05:03.0312 5500 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    17:05:03.0312 5500 MSPCLOCK - ok
    17:05:03.0515 5500 MSPQM (398fad33f4b8654d5ba703ff53b2b02a) C:\WINDOWS\system32\drivers\MSPQM.sys
    17:05:03.0515 5500 MSPQM - ok
    17:05:03.0562 5500 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    17:05:03.0562 5500 mssmbios - ok
    17:05:03.0609 5500 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
    17:05:03.0609 5500 MSTEE - ok
    17:05:03.0640 5500 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    17:05:03.0640 5500 Mup - ok
    17:05:03.0687 5500 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    17:05:03.0687 5500 NABTSFEC - ok
    17:05:03.0718 5500 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    17:05:03.0718 5500 NDIS - ok
    17:05:03.0734 5500 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    17:05:03.0734 5500 NdisIP - ok
    17:05:03.0796 5500 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS
    distapi.sys
    17:05:03.0796 5500 NdisTapi - ok
    17:05:03.0812 5500 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS
    disuio.sys
    17:05:03.0812 5500 Ndisuio - ok
    17:05:03.0828 5500 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS
    diswan.sys
    17:05:03.0828 5500 NdisWan - ok
    17:05:03.0875 5500 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    17:05:03.0890 5500 NDProxy - ok
    17:05:03.0937 5500 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS
    etbios.sys
    17:05:03.0937 5500 NetBIOS - ok
    17:05:03.0968 5500 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS
    etbt.sys
    17:05:03.0968 5500 NetBT - ok
    17:05:04.0093 5500 NETw3x32 (71371ed9086a3d65f43967c89634e9a9) C:\WINDOWS\system32\DRIVERS\NETw3x32.sys
    17:05:04.0109 5500 NETw3x32 - ok
    17:05:04.0250 5500 NETw4x32 (b5ab1108b377b5f3d37409fabda01453) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
    17:05:04.0281 5500 NETw4x32 - ok
    17:05:04.0343 5500 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS
    ic1394.sys
    17:05:04.0343 5500 NIC1394 - ok
    17:05:04.0375 5500 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    17:05:04.0375 5500 Npfs - ok
    17:05:04.0421 5500 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    17:05:04.0437 5500 Ntfs - ok
    17:05:04.0468 5500 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    17:05:04.0468 5500 Null - ok
    17:05:04.0531 5500 NWADI (091a1284aa583288b64dcd370d1b421e) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys
    17:05:04.0531 5500 NWADI - ok
    17:05:04.0578 5500 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS
    wlnkflt.sys
    17:05:04.0578 5500 NwlnkFlt - ok
    17:05:04.0593 5500 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS
    wlnkfwd.sys
    17:05:04.0593 5500 NwlnkFwd - ok
    17:05:04.0656 5500 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
    17:05:04.0656 5500 ohci1394 - ok
    17:05:04.0671 5500 ossrv - ok
    17:05:04.0734 5500 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\drivers\Parport.sys
    17:05:04.0734 5500 Parport - ok
    17:05:04.0750 5500 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    17:05:04.0750 5500 PartMgr - ok
    17:05:04.0781 5500 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys
    17:05:04.0781 5500 ParVdm - ok
    17:05:04.0812 5500 PCASp50 (803c8e7f4d00fe832c1f3871514fec85) C:\WINDOWS\system32\Drivers\PCASp50.sys
    17:05:04.0812 5500 PCASp50 - ok
    17:05:04.0859 5500 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    17:05:04.0859 5500 pccsmcfd - ok
    17:05:04.0921 5500 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys
    17:05:04.0921 5500 PCI - ok
    17:05:04.0937 5500 PCIDump - ok
    17:05:04.0984 5500 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys
    17:05:05.0000 5500 PCIIde - ok
    17:05:05.0046 5500 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys
    17:05:05.0062 5500 Pcmcia - ok
    17:05:05.0062 5500 PDCOMP - ok
    17:05:05.0078 5500 PDFRAME - ok
    17:05:05.0093 5500 PDRELI - ok
    17:05:05.0109 5500 PDRFRAME - ok
    17:05:05.0125 5500 perc2 - ok
    17:05:05.0140 5500 perc2hib - ok
    17:05:05.0203 5500 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys
    17:05:05.0203 5500 pfc - ok
    17:05:05.0250 5500 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    17:05:05.0250 5500 PptpMiniport - ok
    17:05:05.0281 5500 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    17:05:05.0296 5500 PSched - ok
    17:05:05.0312 5500 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    17:05:05.0312 5500 Ptilink - ok
    17:05:05.0328 5500 ql1080 - ok
    17:05:05.0343 5500 Ql10wnt - ok
    17:05:05.0359 5500 ql12160 - ok
    17:05:05.0375 5500 ql1240 - ok
    17:05:05.0390 5500 ql1280 - ok
    17:05:05.0406 5500 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    17:05:05.0406 5500 RasAcd - ok
    17:05:05.0421 5500 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    17:05:05.0421 5500 Rasl2tp - ok
    17:05:05.0453 5500 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    17:05:05.0453 5500 RasPppoe - ok
    17:05:05.0468 5500 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    17:05:05.0468 5500 Raspti - ok
    17:05:05.0515 5500 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    17:05:05.0515 5500 Rdbss - ok
    17:05:05.0531 5500 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    17:05:05.0531 5500 RDPCDD - ok
    17:05:05.0562 5500 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    17:05:05.0562 5500 rdpdr - ok
    17:05:05.0640 5500 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
    17:05:05.0640 5500 RDPWD - ok
    17:05:05.0703 5500 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys
    17:05:05.0703 5500 redbook - ok
    17:05:05.0734 5500 RGFILERW - ok
    17:05:05.0781 5500 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
    17:05:05.0781 5500 rimmptsk - ok
    17:05:05.0796 5500 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
    17:05:05.0796 5500 rimsptsk - ok
    17:05:05.0843 5500 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
    17:05:05.0843 5500 rismxdp - ok
    17:05:05.0890 5500 s24trans (eadfb87f911a7a75d1b80617f92901e8) C:\WINDOWS\system32\DRIVERS\s24trans.sys
    17:05:05.0890 5500 s24trans - ok
    17:05:05.0937 5500 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys
    17:05:05.0937 5500 sbp2port - ok
    17:05:05.0984 5500 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
    17:05:05.0984 5500 sdbus - ok
    17:05:06.0046 5500 Secdrv (4756ca8ac897e1a7e55e422b3fd2d455) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    17:05:06.0046 5500 Secdrv - ok
    17:05:06.0109 5500 Ser2pl (b490ad520257dda26c1d587a71e527b5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys
    17:05:06.0109 5500 Ser2pl - ok
    17:05:06.0156 5500 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    17:05:06.0156 5500 Serenum - ok
    17:05:06.0218 5500 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\drivers\Serial.sys
    17:05:06.0218 5500 Serial - ok
    17:05:06.0265 5500 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
    17:05:06.0265 5500 sffdisk - ok
    17:05:06.0312 5500 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
    17:05:06.0312 5500 sffp_sd - ok
    17:05:06.0343 5500 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    17:05:06.0343 5500 Sfloppy - ok
    17:05:06.0375 5500 Simbad - ok
    17:05:06.0406 5500 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
    17:05:06.0406 5500 SLIP - ok
    17:05:06.0421 5500 Sparrow - ok
    17:05:06.0500 5500 SPC610NC (06d0e7c3500310a9349ce347ea410c0b) C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS
    17:05:06.0500 5500 SPC610NC - ok
    17:05:06.0562 5500 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    17:05:06.0562 5500 splitter - ok
    17:05:06.0593 5500 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys
    17:05:06.0593 5500 sr - ok
    17:05:06.0656 5500 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    17:05:06.0656 5500 Srv - ok
    17:05:06.0765 5500 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys
    17:05:06.0765 5500 STHDA - ok
    17:05:06.0828 5500 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    17:05:06.0828 5500 streamip - ok
    17:05:06.0875 5500 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    17:05:06.0875 5500 swenum - ok
    17:05:06.0906 5500 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    17:05:06.0906 5500 swmidi - ok
    17:05:06.0921 5500 symc810 - ok
    17:05:06.0937 5500 symc8xx - ok
    17:05:06.0953 5500 sym_hi - ok
    17:05:06.0953 5500 sym_u3 - ok
    17:05:07.0031 5500 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys
    17:05:07.0031 5500 SynTP - ok
    17:05:07.0046 5500 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    17:05:07.0046 5500 sysaudio - ok
    17:05:07.0125 5500 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    17:05:07.0125 5500 Tcpip - ok
    17:05:07.0171 5500 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    17:05:07.0171 5500 TDPIPE - ok
    17:05:07.0203 5500 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    17:05:07.0203 5500 TDTCP - ok
    17:05:07.0250 5500 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    17:05:07.0250 5500 TermDD - ok
    17:05:07.0265 5500 TosIde - ok
    17:05:07.0312 5500 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    17:05:07.0312 5500 Udfs - ok
    17:05:07.0328 5500 UIUSys - ok
    17:05:07.0343 5500 ultra - ok
    17:05:07.0406 5500 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    17:05:07.0406 5500 Update - ok
    17:05:07.0468 5500 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    17:05:07.0468 5500 usbccgp - ok
    17:05:07.0515 5500 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    17:05:07.0531 5500 usbehci - ok
    17:05:07.0546 5500 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    17:05:07.0546 5500 usbhub - ok
    17:05:07.0609 5500 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    17:05:07.0609 5500 usbscan - ok
    17:05:07.0656 5500 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    17:05:07.0671 5500 USBSTOR - ok
    17:05:07.0703 5500 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    17:05:07.0718 5500 usbuhci - ok
    17:05:07.0750 5500 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    17:05:07.0750 5500 VgaSave - ok
    17:05:07.0765 5500 ViaIde - ok
    17:05:07.0812 5500 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys
    17:05:07.0812 5500 VolSnap - ok
    17:05:07.0906 5500 w39n51 (95c7421f8bafc85ba09d33364058937d) C:\WINDOWS\system32\DRIVERS\w39n51.sys
    17:05:07.0921 5500 w39n51 - ok
    17:05:07.0984 5500 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    17:05:07.0984 5500 Wanarp - ok
    17:05:08.0000 5500 WDICA - ok
    17:05:08.0046 5500 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    17:05:08.0046 5500 wdmaud - ok
    17:05:08.0140 5500 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
    17:05:08.0156 5500 winachsf - ok
    17:05:08.0203 5500 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
    17:05:08.0203 5500 WmiAcpi - ok
    17:05:08.0250 5500 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    17:05:08.0265 5500 WpdUsb - ok
    17:05:08.0312 5500 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    17:05:08.0312 5500 WS2IFSL - ok
    17:05:08.0375 5500 WsAudio_DeviceS(1) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys
    17:05:08.0375 5500 WsAudio_DeviceS(1) - ok
    17:05:08.0421 5500 WsAudio_DeviceS(2) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys
    17:05:08.0421 5500 WsAudio_DeviceS(2) - ok
    17:05:08.0468 5500 WsAudio_DeviceS(3) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys
    17:05:08.0468 5500 WsAudio_DeviceS(3) - ok
    17:05:08.0484 5500 WsAudio_DeviceS(4) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys
    17:05:08.0500 5500 WsAudio_DeviceS(4) - ok
    17:05:08.0546 5500 WsAudio_DeviceS(5) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys
    17:05:08.0546 5500 WsAudio_DeviceS(5) - ok
    17:05:08.0609 5500 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    17:05:08.0609 5500 WSTCODEC - ok
    17:05:08.0656 5500 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    17:05:08.0656 5500 WudfPf - ok
    17:05:08.0687 5500 WudfRd (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    17:05:08.0687 5500 WudfRd - ok
    17:05:08.0734 5500 MBR (0x1B8) (e7d69fbcd87e8b5ad9d652d5ffe0af4c) \Device\Harddisk0\DR0
    17:05:08.0765 5500 \Device\Harddisk0\DR0 - ok
    17:05:08.0781 5500 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR5
    17:05:08.0781 5500 \Device\Harddisk1\DR5 - ok
    17:05:08.0796 5500 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk2\DR7
    17:05:08.0796 5500 \Device\Harddisk2\DR7 - ok
    17:05:08.0828 5500 Boot (0x1200) (f0ffa4494d1428cacdb3b2bea1920eeb) \Device\Harddisk0\DR0\Partition0
    17:05:08.0828 5500 \Device\Harddisk0\DR0\Partition0 - ok
    17:05:08.0859 5500 Boot (0x1200) (07d1cc5232ff7546d279e5581bfeecab) \Device\Harddisk0\DR0\Partition1
    17:05:08.0859 5500 \Device\Harddisk0\DR0\Partition1 - ok
    17:05:08.0859 5500 Boot (0x1200) (02bdd5cd96c189715261d70d30b506cf) \Device\Harddisk1\DR5\Partition0
    17:05:08.0859 5500 \Device\Harddisk1\DR5\Partition0 - ok
    17:05:08.0875 5500 Boot (0x1200) (3a7fc3eb59f839b6a1282447a4814a9e) \Device\Harddisk2\DR7\Partition0
    17:05:08.0875 5500 \Device\Harddisk2\DR7\Partition0 - ok
    17:05:08.0875 5500 ============================================================
    17:05:08.0875 5500 Scan finished
    17:05:08.0875 5500 ============================================================
    17:05:08.0890 5740 Detected object count: 0
    17:05:08.0890 5740 Actual detected object count: 0
    17:05:12.0359 4728 Deinitialize success
  • System Restore Point Check:

    TDSSKiller Starter Restore Point Created Succesfully
    ==============================================

    Older logs
    ==============================================
    C:\TDSSStarter\Report_20121303_1706_.log
    C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt
    ==============================================
    EOF
  • Oké. Alles ziet er goed uit.

    Dan wordt het nu tijd ComboFix te gaan doen.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.