Vraag & Antwoord

Beveiliging & privacy

Scan - ecops virus

40 antwoorden
  • Beste, mijn Laptop werd besmet met het ecops virus. ik heb een scan via Hijack en stuur deze mee. kan u mij advies bezorgen over wat ik mag - moet en kan verwijderen, Dank bij voorbaat! Mgv, Patrik Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:37:06, on 8/03/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure\Common\FSMA32.EXE C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE C:\PROGRA~1\Iomega\System32\AppServices.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\oodag.exe C:\Program Files\F-Secure\Common\FSHDLL32.EXE C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\Dell Support Center\bin\sprtsvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Iomega\AutoDisk\ADService.exe C:\WINDOWS\Explorer.EXE C:\Program Files\F-Secure\Common\FNRB32.EXE C:\Program Files\F-Secure\Anti-Virus\fssm32.exe C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe C:\Program Files\F-Secure\Common\FIH32.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\F-Secure\Anti-Virus\fsav32.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\WLTRAY.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\F-Secure\Common\FSM32.EXE C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\Program Files\F-Secure\FSGUI\fscuif.exe C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\WINDOWS\stsystra.exe C:\Program Files\Dell Support Center\bin\sprtcmd.exe C:\WINDOWS\system32\oodtray.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Iomega\AutoDisk\ADUserMon.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe C:\Program Files\DellSupport\DSAgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\TEMP\F-Secure\Anti-Virus\fsblsrv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\msiexec.exe D:\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://be.msn.com/?lang=nl-be R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.standaard.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.be/0SENLBE/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxysrv000b:8080 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;*.mil.intra;portal.mil.be;dghr.mil.*;http://intranet;http://10.102.0.36;intranet.mil.intra R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll O2 - BHO: LitmusBHO - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll O3 - Toolbar: Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing) O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe (file missing) O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.euro.dell.com/systemprofiler/SysProExe.CAB O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263934692328 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263934671828 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/nl/7/install/gtdownde.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: F-Secure BlackLight Sensor - F-Secure Corporation - C:\WINDOWS\TEMP\F-Secure\Anti-Virus\fsblsrv.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\F-Secure\ORSP Client\fsorsp.exe O23 - Service: Iomega Activity Disk2 - Unknown owner - C:\WINDOWS\ O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe -- End of file - 14051 bytes
  • [b:c50bb21a31]Ik wil graag dat jij je tijdens de fix aan onderstaande regels houdt:[/b:c50bb21a31] [color=#0000FF:c50bb21a31][list:c50bb21a31][*:c50bb21a31]Lees telkens elke instruktie eerst goed door. [*:c50bb21a31]De gegeven instrukties gelden alleen jouw Windows. [*:c50bb21a31]Maak je fouten bij de uitvoering van tools tijdens de fix, kan dat mogelijk serieuze problemen in Windows veroorzaken. [*:c50bb21a31][b:c50bb21a31]Installeer geen nieuwe programma's, updates of nieuwe hardware terwijl we met de fix bezig zijn. [*:c50bb21a31]Gebruik ook geen andere programma's of tools dan diegenen waartoe ik opdracht geef.[/b:c50bb21a31] [*:c50bb21a31] Emoticons (smileys) a.u.b. uitzetten, wanneer je een log post. [*:c50bb21a31]Gebruik altijd één scanner per keer, nooit meerdere tegelijk gebruiken. [*:c50bb21a31]Hou mij op de hoogte hoe jou computer op de fix reageert - goed of slecht. [*:c50bb21a31]Ook indien je iets niet begrijpt, meldt dat dan. [*:c50bb21a31]De fix, eenmaal gestart, dient afgewerkt te worden. Zelfs indien jij denkt dat alles in orde is, zijn er mogelijk nog steeds infecties.[/list:u:c50bb21a31][/color:c50bb21a31] Hoe heb je in eerste instantie dat virus verwijderd? Doe nu eerst het volgende: download [url=http://oldtimer.geekstogo.com/OTL.com][b:c50bb21a31][color=red:c50bb21a31]OTL[/color:c50bb21a31][/b:c50bb21a31][/url] naar je Bureaublad [b:c50bb21a31]OTL.com gebruiken[/b:c50bb21a31]:[list:c50bb21a31][*:c50bb21a31][color=#008000:c50bb21a31][b:c50bb21a31]Notabene: [/b:c50bb21a31][/color:c50bb21a31][b:c50bb21a31][color=#0000FF:c50bb21a31]Sluit nu eerst alle andere nog openstaande programmavensters![/color:c50bb21a31][/b:c50bb21a31] [*:c50bb21a31]Het programma opstarten middels dubbelklikken op [b:c50bb21a31]OTL.com[/b:c50bb21a31]. [*:c50bb21a31] Start verder geen andere programma's op en laat het programma ongestoord zijn werk doen.[*:c50bb21a31]Zet een vinkje bij [b:c50bb21a31]Scan All Users[/b:c50bb21a31].[*:c50bb21a31]Klik op de knop [b:c50bb21a31]Quick Scan[/b:c50bb21a31].[*:c50bb21a31]Verander de instellingen van OTL niet, tenzij ik je hiervoor specifiek instructies geef.[*:c50bb21a31]De scan zal niet heel erg lang duren.[list:c50bb21a31][*:c50bb21a31]Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is.[*:c50bb21a31][b:c50bb21a31]OTL.Txt[/b:c50bb21a31] en [b:c50bb21a31]Extras.Txt[/b:c50bb21a31]. Deze twee tekstbestanden zijn opgeslagen in dezelfde locatie als OTL. [*:c50bb21a31]Kopieer en plak de inhoud van het [b:c50bb21a31]OTL.Txt[/b:c50bb21a31] als eerste in je aansluitende bericht. [*:c50bb21a31]Kopieer en plak tevens de inhoud van [b:c50bb21a31]Extras.Txt[/b:c50bb21a31] vervolgens er bij.[/list:u:c50bb21a31] [*:c50bb21a31]OTL produceert behoorlijk grote logs, dus kan het gebeuren, dat je het log in twee of meerdere keren moet posten.[/list:u:c50bb21a31]
  • PC terug aan de praat gekregen na gebruik van de Kaspersky Rescue CD ik wil op zeker spelen en het nodige doen om alle 'vuiligheid' van mijn schijf te verwijderen.. ik zal je advies uitvoeren en de log posten .
  • Prima gedaan dus tot nu toe en ik wacht op je volgende bericht.
  • OTL logfile created on: 9/03/2012 16:08:04 - Run 1 OTL by OldTimer - Version 3.2.36.2 Folder = G:\ Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy 1,99 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 62,09% Memory free 3,33 Gb Paging File | 2,69 Gb Available in Paging File | 80,71% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 21,68 Gb Total Space | 0,04 Gb Free Space | 0,18% Space Free | Partition Type: NTFS Drive D: | 50,00 Gb Total Space | 0,16 Gb Free Space | 0,33% Space Free | Partition Type: NTFS Drive G: | 15,62 Gb Total Space | 3,49 Gb Free Space | 22,32% Space Free | Partition Type: FAT32 Drive H: | 465,76 Gb Total Space | 224,79 Gb Free Space | 48,26% Space Free | Partition Type: NTFS Computer Name: LAPTOP-PATRICK | User Name: LAGAE | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717:fe7a88a9e2]========== Processes (SafeList) ==========[/color:fe7a88a9e2] PRC - [2012/03/09 11:20:34 | 000,593,920 | ---- | M] (OldTimer Tools) -- G:\OTL.com PRC - [2011/11/08 16:09:55 | 000,488,104 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\Anti-Virus\fsav32.exe PRC - [2011/09/08 16:11:15 | 001,008,296 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\Anti-Virus\fssm32.exe PRC - [2011/09/08 16:11:15 | 000,512,680 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\Anti-Virus\fsgk32.exe PRC - [2011/06/14 16:42:26 | 001,540,096 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe PRC - [2011/05/24 16:21:37 | 000,061,088 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\ORSP Client\fsorsp.exe PRC - [2009/11/26 10:36:42 | 000,166,512 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\common\FNRB32.exe PRC - [2009/11/26 10:36:42 | 000,129,648 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\common\FIH32.exe PRC - [2009/11/26 10:36:38 | 000,186,992 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\common\FSMA32.EXE PRC - [2009/11/26 10:36:36 | 000,301,680 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\common\FSM32.EXE PRC - [2009/11/26 10:36:36 | 000,088,688 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\common\FSHDLL32.EXE PRC - [2009/11/26 10:35:58 | 000,522,864 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\FWES\program\fsdfwd.exe PRC - [2009/11/26 10:35:14 | 000,219,760 | ---- | M] (F-Secure Corporation) -- C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe PRC - [2009/06/03 14:46:42 | 001,025,264 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\gs_agent\dsc.exe PRC - [2009/06/03 14:46:38 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe PRC - [2008/09/04 05:02:24 | 001,295,616 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodag.exe PRC - [2008/09/04 05:01:42 | 002,524,416 | ---- | M] (O&O Software GmbH) -- C:\WINDOWS\system32\oodtray.exe PRC - [2008/08/26 15:58:12 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe PRC - [2008/04/14 18:02:58 | 001,037,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/07/25 15:32:50 | 000,823,296 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe PRC - [2007/07/25 15:32:34 | 000,294,912 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe PRC - [2007/07/25 15:30:36 | 000,974,848 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe PRC - [2007/07/25 15:26:14 | 000,491,520 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe PRC - [2007/05/10 10:22:32 | 000,405,504 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe PRC - [2007/03/15 11:09:36 | 000,460,784 | ---- | M] (Gteko Ltd.) -- C:\Program Files\DellSupport\DSAgnt.exe PRC - [2007/02/20 11:29:08 | 001,191,936 | ---- | M] (Dell Inc) -- C:\Program Files\Dell\QuickSet\quickset.exe PRC - [2006/11/03 17:20:12 | 000,866,584 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2006/11/03 17:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpEng.exe PRC - [2002/09/24 16:39:48 | 000,151,552 | ---- | M] (Iomega Corporation) -- C:\Program Files\Iomega\AutoDisk\ADService.exe PRC - [2002/09/24 16:39:24 | 000,147,456 | ---- | M] (Iomega Corporation) -- C:\Program Files\Iomega\AutoDisk\ADUserMon.exe PRC - [2002/09/04 14:11:04 | 000,073,728 | ---- | M] (Iomega Corporation) -- C:\Program Files\Iomega\System32\AppServices.exe [color=#E56717:fe7a88a9e2]========== Modules (No Company Name) ==========[/color:fe7a88a9e2] MOD - [2012/02/20 16:46:16 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll MOD - [2012/02/20 16:45:52 | 007,953,408 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll MOD - [2011/10/18 16:46:54 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll MOD - [2011/06/09 16:38:25 | 000,030,888 | ---- | M] () -- C:\Program Files\F-Secure\Anti-Virus\minifilter\hashlib_x86.dll MOD - [2009/11/26 10:36:38 | 000,088,688 | ---- | M] () -- C:\Program Files\F-Secure\common\OnDemandInstallWatcher.dll MOD - [2009/11/26 10:36:28 | 000,236,144 | ---- | M] () -- \\?\c:\program files\f-secure\hips\fsumi.dll MOD - [2009/11/26 10:35:40 | 000,551,536 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\gres.dll MOD - [2009/11/26 10:35:36 | 000,045,056 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\fsavures.eng MOD - [2009/11/26 10:35:30 | 000,440,944 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\about.dll MOD - [2009/11/26 10:35:30 | 000,088,688 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\aboutres.dll MOD - [2009/11/26 10:35:12 | 000,036,864 | ---- | M] () -- C:\Program Files\F-Secure\Anti-Virus\fsavhres.eng MOD - [2009/02/27 18:13:06 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.NLD MOD - [2007/07/25 15:25:48 | 000,118,784 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll MOD - [2007/04/25 09:55:40 | 001,167,360 | ---- | M] () -- C:\Program Files\Intel\Wireless\Bin\acAuth.dll MOD - [2007/03/16 17:10:38 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll MOD - [2007/02/20 11:29:46 | 000,098,304 | ---- | M] () -- C:\Program Files\Dell\QuickSet\dadkeyb.dll MOD - [2006/10/11 08:26:08 | 000,012,288 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\strres.nld MOD - [2006/10/11 08:26:06 | 000,057,856 | ---- | M] () -- C:\Program Files\F-Secure\FSGUI\flyerres.nld [color=#E56717:fe7a88a9e2]========== Win32 Services (SafeList) ==========[/color:fe7a88a9e2] SRV - File not found [Auto | Stopped] -- -- (Iomega Activity Disk2) SRV - [2011/06/08 12:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2011/05/24 16:21:37 | 000,061,088 | ---- | M] (F-Secure Corporation) [On_Demand | Running] -- C:\Program Files\F-Secure\ORSP Client\fsorsp.exe -- (FSORSPClient) SRV - [2009/11/26 10:36:42 | 000,166,512 | ---- | M] (F-Secure Corporation) [On_Demand | Running] -- C:\Program Files\F-Secure\Common\FNRB32.EXE -- (F-Secure Network Request Broker) SRV - [2009/11/26 10:36:38 | 000,186,992 | ---- | M] (F-Secure Corporation) [Auto | Running] -- C:\Program Files\F-Secure\Common\FSMA32.EXE -- (FSMA) SRV - [2009/11/26 10:35:58 | 000,522,864 | ---- | M] (F-Secure Corporation) [On_Demand | Running] -- C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe -- (FSDFWD) SRV - [2009/11/26 10:35:14 | 000,219,760 | ---- | M] (F-Secure Corporation) [Auto | Running] -- C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe -- (F-Secure Gatekeeper Handler Starter) SRV - [2008/09/04 05:02:24 | 001,295,616 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\oodag.exe -- (O&O Defrag) SRV - [2008/08/26 15:58:12 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter) SRV - [2008/01/30 17:42:27 | 000,069,632 | ---- | M] (Creative Labs) [Disabled | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe -- (Creative Labs Licensing Service) SRV - [2007/08/08 17:51:48 | 000,410,904 | ---- | M] (Acronis) [Disabled | Stopped] -- C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe -- (AcrSch2Svc) SRV - [2007/07/25 15:32:34 | 000,294,912 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) Intel(R) SRV - [2007/03/19 11:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService) SRV - [2006/11/03 17:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV - [2002/09/24 16:39:48 | 000,151,552 | ---- | M] (Iomega Corporation) [Auto | Running] -- C:\Program Files\Iomega\AutoDisk\ADService.exe -- (_IOMEGA_ACTIVE_DISK_SERVICE_) SRV - [2002/09/04 14:11:04 | 000,073,728 | ---- | M] (Iomega Corporation) [Auto | Running] -- C:\Program Files\Iomega\System32\AppServices.exe -- (Iomega App Services) [color=#E56717:fe7a88a9e2]========== Driver Services (SafeList) ==========[/color:fe7a88a9e2] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (UIUSys) DRV - File not found [Kernel | Auto | Stopped] -- -- (RGFILERW) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (ossrv) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (CTUSFSYN) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (ctsfm2k) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2011/09/08 16:12:53 | 000,148,632 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys -- (F-Secure Gatekeeper) DRV - [2011/08/31 14:38:08 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys -- (WsAudio_DeviceS(5)) WsAudio_DeviceS(5) DRV - [2011/08/31 14:38:08 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys -- (WsAudio_DeviceS(4)) WsAudio_DeviceS(4) DRV - [2011/08/31 14:38:08 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys -- (WsAudio_DeviceS(3)) WsAudio_DeviceS(3) DRV - [2011/08/31 14:38:08 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys -- (WsAudio_DeviceS(2)) WsAudio_DeviceS(2) DRV - [2011/08/31 14:38:08 | 000,025,704 | ---- | M] (Wondershare) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys -- (WsAudio_DeviceS(1)) WsAudio_DeviceS(1) DRV - [2011/08/19 07:08:53 | 000,042,672 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\Drivers\fsbts.sys -- (fsbts) DRV - [2010/02/10 19:59:12 | 000,023,680 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\FNETTBOH.SYS -- (FNETTBOH) DRV - [2010/02/10 19:59:12 | 000,007,936 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\FNETURPX.SYS -- (FNETURPX) DRV - [2009/11/26 10:36:28 | 000,068,080 | ---- | M] (F-Secure Corporation) [Kernel | System | Running] -- C:\Program Files\F-Secure\HIPS\drivers\fshs.sys -- (F-Secure HIPS) DRV - [2009/11/26 10:35:58 | 000,080,016 | ---- | M] (F-Secure Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\fsdfw.sys -- (FSFW) DRV - [2009/03/18 19:09:23 | 000,033,536 | ---- | M] (Advanced Card Systems Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\a38usb.sys -- (ACSSCR) DRV - [2008/08/30 04:21:46 | 000,037,896 | ---- | M] (O&O Software GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\oobctm.sys -- (OOTextMode) DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008/04/13 19:39:51 | 000,004,992 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mspqm.sys -- (MSPQM) DRV - [2007/09/05 01:46:34 | 000,092,544 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus) DRV - [2007/08/08 07:17:54 | 002,211,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NETw4x32.sys -- (NETw4x32) Stuurprogramma voor Intel(R) DRV - [2007/05/29 14:29:30 | 000,012,416 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans) DRV - [2007/05/10 10:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2007/02/25 11:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\dsunidrv.sys -- (dsunidrv) DRV - [2007/01/19 16:14:50 | 000,409,728 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SPC610NC.SYS -- (SPC610NC) DRV - [2006/10/05 16:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct) DRV - [2006/08/16 12:57:28 | 000,018,560 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PCASp50.sys -- (PCASp50) DRV - [2006/08/09 11:11:58 | 000,156,288 | ---- | M] (Novatel Wireless Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NWADIenum.sys -- (NWADI) DRV - [2006/05/24 18:07:18 | 000,328,237 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio) DRV - [2006/05/24 18:05:26 | 000,023,271 | ---- | M] (Broadcom Corporation.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\btserial.sys -- (BTSERIAL) DRV - [2006/05/24 18:04:04 | 000,851,434 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (BTKRNL) DRV - [2006/05/24 18:01:34 | 000,030,427 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver) DRV - [2006/05/24 18:01:22 | 000,030,285 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwmodem.sys -- (btwmodem) DRV - [2006/05/24 18:00:50 | 000,066,488 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB) DRV - [2006/05/24 17:58:18 | 000,148,900 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS) DRV - [2006/05/24 17:57:00 | 000,045,683 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwhid.sys -- (btwhid) DRV - [2006/04/26 23:13:04 | 001,429,632 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w39n51.sys -- (w39n51) Intel(R) DRV - [2006/01/04 15:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\monfilt.sys -- (monfilt) DRV - [2005/08/12 17:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS -- (APPDRV) DRV - [2005/08/05 11:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp) DRV - [2005/07/14 23:58:14 | 000,028,544 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk) DRV - [2005/07/14 22:28:38 | 000,307,968 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp) DRV - [2005/07/13 00:00:30 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk) DRV - [2003/07/16 07:27:40 | 000,043,264 | R--- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ser2pl.sys -- (Ser2pl) DRV - [2002/10/01 09:22:32 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc) DRV - [2002/09/04 14:11:08 | 000,030,258 | ---- | M] (Iomega Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\iomdisk.sys -- (iomdisk) DRV - [2002/07/17 09:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (Aspi32) DRV - [2002/07/17 09:05:10 | 000,016,512 | ---- | M] (Adaptec) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ASPI32.SYS -- (ASPI) [color=#E56717:fe7a88a9e2]========== Standard Registry (SafeList) ==========[/color:fe7a88a9e2] [color=#E56717:fe7a88a9e2]========== Internet Explorer ==========[/color:fe7a88a9e2] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.live.com/ [binary data] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKLM\..\SearchScopes\{BE9A0AFE-2C43-4D1D-BB84-F154B64029EF}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&FORM=MSNIE7&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://be.msn.com/?lang=nl-be IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.live.com/ [binary data] IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1 IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.standaard.be/ IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{00331365-4C0B-44B2-BC07-8BB08C2AE7D6}: "URL" = http://uk.search.yahoo.com/search?p={searchTerms}&fr=FP-tab-web-t340&ei=UTF-8&meta=vc%3D IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{67DE7BB7-494D-4917-A453-686F412499EF}: "URL" = http://search.aol.co.uk/web?query={searchTerms}&restrict=wholeweb&isinit=true&invocationType=aolhathp_uk_Po&avtype= IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{94DF60BA-DD44-4096-9B43-9A156D576FE3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=OSDSRC IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{B0CA183F-6584-45BE-BDEF-3E94552A7387}: "URL" = http://en.wikipedia.org/wiki/{searchTerms} IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\{EE6D963B-F62C-4450-B5B8-5A7565F90C8F}: "URL" = http://search.microsoft.com/results.aspx?mkt=en-GB&setlang=en-GB&q={searchTerms} IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\SearchScopes\Live Search: "URL" = http://search.live.com/results.aspx?q={searchTerms}&mkt=nl-be&FORM=MICJE3 IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost;*.mil.intra;portal.mil.be;dghr.mil.*;http://intranet;http://10.102.0.36;intranet.mil.intra IE - HKU\S-1-5-21-1935655697-343818398-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = proxysrv000b:8080 [color=#E56717:fe7a88a9e2]========== FireFox ==========[/color:fe7a88a9e2] FF - prefs.js..browser.search.selectedEngine: "Philips Songbird" FF - prefs.js..extensions.enabledItems: 7digital@songbirdnest.com:1.7.2.1667 FF - prefs.js..extensions.enabledItems: ewaacdec@songbirdnest.com:1.0.1.1667 FF - prefs.js..extensions.enabledItems: albumart@songbirdnest.com:1.0.8.1667 FF - prefs.js..extensions.enabledItems: cd-rip@songbirdnest.com:1.0.3.1667 FF - prefs.js..extensions.enabledItems: fileassociation@philips.com:3.2.0.1002 FF - prefs.js..extensions.enabledItems: gonzo@songbirdnest.com:1.7.2 FF - prefs.js..extensions.enabledItems: gracenote@songbirdnest.com:1.0.3.1667 FF - prefs.js..extensions.enabledItems: ewh264dec@songbirdnest.com:1.0.1.1667 FF - prefs.js..extensions.enabledItems: mashTape@songbirdnest.com:1.1.3.1667 FF - prefs.js..extensions.enabledItems: ewmp3enc@songbirdnest.com:1.0.4.1667 FF - prefs.js..extensions.enabledItems: ewmpeg4dec@songbirdnest.com:1.0.1.1667 FF - prefs.js..extensions.enabledItems: msc@songbirdnest.com:1.0.4.1667 FF - prefs.js..extensions.enabledItems: mtp@songbirdnest.com:1.0.19.1667 FF - prefs.js..extensions.enabledItems: philips-addon-manager@philips.com:3.2.0.2202 FF - prefs.js..extensions.enabledItems: philips-msc-mtp-switch@philips.com:3.2.0.2200 FF - prefs.js..extensions.enabledItems: gogear@songbirdnest.com:1.0.4.1667 FF - prefs.js..extensions.enabledItems: philips-skin@philips.com:3.2.0.2207 FF - prefs.js..extensions.enabledItems: philips-ui@philips.com:3.2.0.2203 FF - prefs.js..extensions.enabledItems: purplerain@songbirdnest.com:1.7.2 FF - prefs.js..network.proxy.ftp: "proxysrv000b" FF - prefs.js..network.proxy.ftp_port: 8080 FF - prefs.js..network.proxy.gopher: "proxysrv000b" FF - prefs.js..network.proxy.gopher_port: 8080 FF - prefs.js..network.proxy.http: "proxysrv000b" FF - prefs.js..network.proxy.http_port: 8080 FF - prefs.js..network.proxy.no_proxies_on: "localhost,*.mil.intra,portal.mil.be,dghr.mil.*,http://intranet,http://10.102.0.36,intranet.mil.intra,*.local" FF - prefs.js..network.proxy.share_proxy_settings: true FF - prefs.js..network.proxy.socks: "proxysrv000b" FF - prefs.js..network.proxy.socks_port: 8080 FF - prefs.js..network.proxy.ssl: "proxysrv000b" FF - prefs.js..network.proxy.ssl_port: 8080 FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8064.0206: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=8: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Google\Update\1.2.183.7\npGoogleOneClick8.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\litmus-ff@f-secure.com: C:\Program Files\F-Secure\NRS\litmus-ff@f-secure.com [2012/02/20 16:07:53 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\ [2011/08/27 12:07:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}: C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension\ [2011/08/27 12:07:49 | 000,000,000 | ---D | M] [2010/11/29 19:07:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\LAGAE\Application Data\Mozilla\Extensions [2010/11/29 19:07:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\LAGAE\Application Data\Mozilla\Extensions\songbird@songbirdnest.com [2010/11/29 19:09:42 | 000,000,530 | ---- | M] () -- C:\Documents and Settings\LAGAE\Application Data\Philips-Songbird\Profiles\ejwh7is0.default\searchplugins\250c9527-69cf-45d4-8fb2-c090d7916341.xml File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\7DIGITAL@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\ALBUMART@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\CD-RIP@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWAACDEC@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWH264DEC@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWMP3ENC@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\EWMPEG4DEC@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\FILEASSOCIATION@PHILIPS.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GOGEAR@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GONZO@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\GRACENOTE@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MASHTAPE@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MSC@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\MTP@SONGBIRDNEST.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-ADDON-MANAGER@PHILIPS.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-MSC-MTP-SWITCH@PHILIPS.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-SKIN@PHILIPS.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PHILIPS-UI@PHILIPS.COM File not found (No name found) -- C:\PROGRAM FILES\PHILIPS\PHILIPS SONGBIRD\EXTENSIONS\PURPLERAIN@SONGBIRDNEST.COM [color=#E56717:fe7a88a9e2]========== Chrome ==========[/color:fe7a88a9e2] CHR - default_search_provider: Google () CHR - default_search_provider: search_url = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 CHR - default_search_provider: suggest_url = O1 HOSTS File: ([2007/08/04 11:45:38 | 000,000,776 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.) O2 - BHO: (Browsing Protection Class) - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation) O3 - HKLM\..\Toolbar: (Browsing Protection Toolbar) - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation) O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found. O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (no name) - {855F3B16-6D32-4FE6-8A56-BBB695989046} - No CLSID value found. O3 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuz2.dll (Conduit Ltd.) O4 - HKLM..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe (Iomega Corporation) O4 - HKLM..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc) O4 - HKLM..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) O4 - HKLM..\Run: [F-Secure Manager] C:\Program Files\F-Secure\Common\FSM32.EXE (F-Secure Corporation) O4 - HKLM..\Run: [F-Secure TNB] C:\Program Files\F-Secure\FSGUI\TNBUtil.exe (F-Secure Corporation) O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation) O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation) O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia) O4 - HKLM..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe (O&O Software GmbH) O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" File not found O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [] File not found O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.) O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [DellSupportCenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.) O4 - HKU\S-1-5-21-1935655697-343818398-725345543-1003..\Run: [NBJ] C:\Program Files\Ahead\Nero BackItUp\NBJ.exe (Ahead Software AG) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm () O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\npjpi160_26.dll (Sun Microsystems, Inc.) O9 - Extra Button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found O9 - Extra 'Tools' menuitem : ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe File not found O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm () O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/images/global/js/scanner/SysProExe.cab (Scanner.SysScanner) O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} http://support.euro.dell.com/systemprofiler/SysProExe.CAB (WMI Class) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1263934692328 (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1263934671828 (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} http://pccheckup.dellfix.com/nl/7/install/gtdownde.cab (Dell PC Checkup Installer Control) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\WgaLogon: DllName - (WgaLogon.dll) - File not found O24 - Desktop Components:0 (Mijn huidige introductiepagina) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\LAGAE\Local Settings\Application Data\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007/03/17 14:59:19 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{7cf384bc-d9a5-11dc-9b89-001422fb91bb}\Shell - "" = AutoRun O33 - MountPoints2\{7cf384bc-d9a5-11dc-9b89-001422fb91bb}\Shell\AutoRun\command - "" = N:\OnSpcLCK.exe O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell - "" = AutoRun O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\AutoRun\command - "" = H:\SETUP.EXE O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\configure\command - "" = H:\SETUP.EXE O33 - MountPoints2\{aa36a389-d4a0-11db-817d-001302dc0f29}\Shell\install\command - "" = H:\SETUP.EXE O33 - MountPoints2\{f815af2a-0b5e-11df-9e15-001422fb91bb}\Shell\Shell00\Command - "" = G:\Start.exe O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (OODBS) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717:fe7a88a9e2]========== Files/Folders - Created Within 30 Days ==========[/color:fe7a88a9e2] [2012/03/06 23:11:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Local Settings [2012/03/06 23:11:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LAGAE\Application Data\kodak [2012/03/05 20:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LAGAE\Application Data\PriceGong [2012/03/03 08:44:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\LAGAE\Onlangs geopend [2012/02/14 23:08:38 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys [2012/02/14 23:08:20 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys [2012/02/14 23:08:04 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys [2012/02/14 23:07:47 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys [2012/02/14 23:07:21 | 000,025,704 | ---- | C] (Wondershare) -- C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717:fe7a88a9e2]========== Files - Modified Within 30 Days ==========[/color:fe7a88a9e2] [2012/03/09 16:06:12 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job [2012/03/09 16:02:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012/03/09 16:02:37 | 079,042,253 | ---- | M] () -- C:\WINDOWS\System32\oodbs.lor [2012/03/06 17:39:50 | 000,000,162 | ---- | M] () -- C:\Documents and Settings\LAGAE\default.pls [2012/03/06 17:30:07 | 000,000,229 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012/03/02 16:44:45 | 000,002,278 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012/02/20 18:19:58 | 000,274,168 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012/02/20 16:44:48 | 000,611,538 | ---- | M] () -- C:\WINDOWS\System32\perfh013.dat [2012/02/20 16:44:48 | 000,512,270 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012/02/20 16:44:48 | 000,125,346 | ---- | M] () -- C:\WINDOWS\System32\perfc013.dat [2012/02/20 16:44:48 | 000,092,410 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012/02/10 13:58:08 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job [9 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717:fe7a88a9e2]========== Files Created - No Company Name ==========[/color:fe7a88a9e2] [2012/02/16 06:52:23 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012/02/16 06:52:23 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll [2011/11/22 06:19:01 | 000,155,136 | ---- | C] () -- C:\WINDOWS\System32\AI_ContextMenu.dll [2011/01/31 21:43:08 | 000,522,928 | ---- | C] () -- C:\WINDOWS\System32\SpoonUninstall.exe [2011/01/17 22:38:30 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI [2010/07/22 10:10:17 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010/07/22 09:39:10 | 000,000,032 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\ezsid.dat [2010/06/11 20:01:10 | 000,042,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\fsbts.sys [color=#E56717:fe7a88a9e2]========== LOP Check ==========[/color:fe7a88a9e2] [2010/04/18 13:25:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus [2011/09/10 20:00:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Babylon [2010/10/13 21:43:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner [2009/08/23 09:54:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\F-Secure [2010/02/10 19:59:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\FNET [2010/10/01 16:22:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\fssg [2011/08/09 22:37:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations [2011/06/04 10:54:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound [2008/01/26 23:21:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nokia [2010/10/28 21:33:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache [2007/03/18 18:45:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Novatel Wireless [2010/11/13 11:56:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite [2008/11/05 18:18:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC-Doctor [2008/11/05 18:18:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCDr [2008/02/06 20:19:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Seagate [2008/11/05 18:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft [2011/08/23 16:06:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp [2010/12/29 10:30:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\vsosdk [2011/02/16 18:33:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip [2012/02/16 21:34:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\xml_param [2010/04/10 23:10:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} [2009/09/12 12:10:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} [2010/10/13 21:45:27 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F} [2010/12/03 22:42:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{F0489EF2-D393-4114-85BA-A94D71D89543} [2010/09/06 18:25:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Active Disk [2012/03/06 17:48:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Azureus [2011/09/10 20:00:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Babylon [2011/09/10 20:01:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\BabylonToolbar [2011/05/30 19:03:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\DeepBurner Pro [2011/10/15 10:20:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoft [2011/09/06 02:47:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\DVDVideoSoftIEHelpers [2007/03/17 17:51:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\F-Secure [2010/10/19 17:13:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\FairStars Audio Converter [2008/01/26 18:43:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\MobileAction [2011/11/15 20:40:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\MP-Manager [2011/09/05 19:37:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\NCH Swift Sound [2011/03/31 18:45:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Nokia [2008/01/26 23:14:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\PC Suite [2010/11/20 19:52:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\PCDr [2010/11/29 19:10:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Philips [2010/11/29 19:07:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Philips-Songbird [2012/03/08 23:38:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\PriceGong [2008/02/12 23:46:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Regen [2011/09/12 18:19:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Songbird2 [2010/09/29 16:12:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Uniblue [2009/03/04 17:58:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Windows Desktop Search [2008/01/14 18:08:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Windows Live Writer [2009/03/04 19:06:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LAGAE\Application Data\Windows Search [2007/03/21 19:06:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patrick\Application Data\F-Secure [2008/01/30 00:31:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patrick\Application Data\PC Suite [2009/01/18 00:48:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Patrick\Application Data\Regen [2012/03/09 16:06:12 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job [2011/07/02 12:09:31 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Tasks\switchDowngrade.job [2011/10/08 12:30:07 | 000,000,278 | ---- | M] () -- C:\WINDOWS\Tasks\switchShakeIcon.job [color=#E56717:fe7a88a9e2]========== Purity Check ==========[/color:fe7a88a9e2] [color=#E56717:fe7a88a9e2]========== Alternate Data Streams ==========[/color:fe7a88a9e2] @Alternate Data Stream - 88 bytes -> C:\newkey:SummaryInformation @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\Temp:A1063995 < End of report >
  • OTL Extras logfile created on: 9/03/2012 16:08:04 - Run 1 OTL by OldTimer - Version 3.2.36.2 Folder = G:\ Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy 1,99 Gb Total Physical Memory | 1,24 Gb Available Physical Memory | 62,09% Memory free 3,33 Gb Paging File | 2,69 Gb Available in Paging File | 80,71% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 21,68 Gb Total Space | 0,04 Gb Free Space | 0,18% Space Free | Partition Type: NTFS Drive D: | 50,00 Gb Total Space | 0,16 Gb Free Space | 0,33% Space Free | Partition Type: NTFS Drive G: | 15,62 Gb Total Space | 3,49 Gb Free Space | 22,32% Space Free | Partition Type: FAT32 Drive H: | 465,76 Gb Total Space | 224,79 Gb Free Space | 48,26% Space Free | Partition Type: NTFS Computer Name: LAPTOP-PATRICK | User Name: LAGAE | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717:06dbc1c06b]========== Extra Registry (SafeList) ==========[/color:06dbc1c06b] [color=#E56717:06dbc1c06b]========== File Associations ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [color=#E56717:06dbc1c06b]========== Shell Spawning ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717:06dbc1c06b]========== Security Center Settings ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717:06dbc1c06b]========== System Restore Settings ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717:06dbc1c06b]========== Firewall Settings ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008 "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 [color=#E56717:06dbc1c06b]========== Authorized Applications List ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\ICQLite\ICQLite.exe" = C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite "C:\Program Files\ICQ6\ICQ.exe" = C:\Program Files\ICQ6\ICQ.exe:*:Enabled:ICQ6 "C:\Program Files\Azureus\Azureus.exe" = C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus [color=#E56717:06dbc1c06b]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color:06dbc1c06b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}" = mSSO "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery "{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}" = mLogView "{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld "{12451AF7-EFF8-4B5B-8255-282D7CC7CAEE}" = OviMPlatform "{14FB1C47-B0F2-4DB6-B9C0-1A817862F9A3}" = ArcSoft Camera Suite 2.1 "{168F8BAC-A269-48E9-BB7A-A51B594CF6FF}" = Microsoft .NET Framework 1.1 Dutch Language Pack "{212748BB-0DA5-46DE-82A1-403736DC9F27}" = MSVC80_x86 "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{23FB368F-1399-4EAC-817C-4B83ECBE3D83}" = mProSafe "{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 26 "{2CC53A53-44F4-4667-8584-2FFC9ACB2242}" = Ovi Desktop Sync Engine "{2D99A593-C841-43A7-B7C9-D6F3AE70B756}" = Nokia Connectivity Cable Driver "{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = SetPoint "{3248F0A8-6813-11D6-A77B-00B0D0150110}" = J2SE Runtime Environment 5.0 Update 11 "{350C9413-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3741689E-584D-40C9-B011-373A0371846D}" = Nokia Software Updater "{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3CDAFDF9-A993-4B64-8D9B-36253D9C0DC9}" = Windows Live Essentials "{3E9D596A-61D4-4239-BD19-2DB984D2A16F}" = mIWA "{3F4EC965-28EF-45C3-B063-04B25D4E9679}" = WIDCOMM Bluetooth Software "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}" = mHlpDell "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}" = Junk Mail filter update "{4F2D3995-1EC5-3C05-B7E5-3449F802E6DE}" = Microsoft .NET Framework 4 Extended NLD Language Pack "{5A8AF5E0-41FE-4ADC-9E43-B01172354D87}" = MP Manager "{63DB9CCD-2B56-4217-9A3D-507AC78320CA}" = mWMI "{64371D22-A18B-436E-863B-2E12DA8042FF}" = Microsoft .NET Framework 3.0 Dutch Language Pack "{655A0785-CB7A-42C2-A1AE-B3FE1BFB2617}" = Windows Presentation Foundation Language Pack (NLD) "{69995C7A-062A-4A90-A4DF-8C22895DF522}" = iTunes "{6A3F9D74-BB80-4451-8CA1-4B3A857F1359}" = Apple Application Support "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}" = DellSupport "{824563DE-75AD-4166-9DC0-B6482F205075}" = Belgium e-ID middleware 3.5.1 (build 5075) "{829CD169-E692-48E8-9BDE-A3E8D8B65538}" = mSCfg "{89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2}" = Philips VLounge "{89B078C4-50B0-453E-BF53-3A7E6A0D85FA}" = Windows Support Tools "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel(R) Graphics Media Accelerator Driver "{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86) "{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}" = mPfMgr "{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}" = Choice Guard "{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12 "{90120000-0010-0413-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Dutch) 12 "{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007 "{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2007 "{90120000-0015-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007 "{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007 "{90120000-0016-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0017-0413-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (Dutch) 2007 "{90120000-0017-0413-0000-0000000FF1CE}_OMUI.nl-nl_{2E9BD56A-2290-46DA-869F-2EDCF0A24E8B}" = Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007 "{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007 "{90120000-0018-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007 "{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2007 "{90120000-0019-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007 "{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2007 "{90120000-001A-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007 "{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007 "{90120000-001B-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_OMUI.nl-nl_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}_OMUI.nl-nl_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-040C-0000-0000000FF1CE}_OMUI.nl-nl_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_OMUI.nl-nl_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007 "{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007 "{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007 "{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0044-0413-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Dutch) 2007 "{90120000-0044-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007 "{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007 "{90120000-006E-0413-0000-0000000FF1CE}_OMUI.nl-nl_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007 "{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007 "{90120000-00A1-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007 "{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00BA-0413-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Dutch) 2007 "{90120000-00BA-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0100-0413-0000-0000000FF1CE}" = Microsoft Office O MUI (Dutch) 2007 "{90120000-0100-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0101-0413-0000-0000000FF1CE}" = Microsoft Office X MUI (Dutch) 2007 "{90120000-0101-0413-0000-0000000FF1CE}_OMUI.nl-nl_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007 "{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007 "{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007 "{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{90B0D222-8C21-4B35-9262-53B042F18AF9}" = mPfWiz "{94658027-9F16-4509-BBD7-A59FE57C3023}" = mZConfig "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{95140000-0080-0413-0000-0000000FF1CE}" = Microsoft Office Outlook Connector "{97C0EA4A-1A0B-4C53-ACEB-49984DA79C90}" = Google Earth "{9A1027CE-83F6-3CB2-B9BA-9DA38D0907D0}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD "{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE}" = Broadcom 440x 10/100 Integrated Controller "{A06275F4-324B-4E85-95E6-87B2CD729401}" = Windows Defender "{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}" = mDriver "{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175 "{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio "{A8F7FCEF-3CA6-4CE9-8FEA-8BB18F8686F0}" = Nokia Ovi Suite Software Updater "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5 "{AC76BA86-7AD7-1043-7B44-A95000000001}" = Adobe Reader 9.5.0 - Nederlands "{ADE14C1E-AA43-45D3-88E5-00767D31B0E8}" = OGA Notifier 1.7.0105.35.0 "{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4 "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{B38B1F86-8202-482F-A289-A4806DFA498D}" = Windows Live Mail "{B3F1E526-180B-4480-9FEC-3E2DCB8EA9CE}" = F-Secure PSC Prerequisites "{B7908330-93A8-4DB1-B6EE-6B0446E26939}" = Voice Tracer "{B8B4446F-87E1-4423-A47A-16832C24A199}" = Nokia Ovi Suite "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86) "{BF13AA9D-E4CE-4015-9778-ECC1D4FB06E4}" = Mouse Suite for Laptop Computers "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1" = Uniblue DriverScanner "{C373F7C4-05D2-4047-96D1-6AF30661C6AA}" = PC Connectivity Solution "{C5074CC4-0E26-4716-A307-960272A90040}" = QuickSet "{C99C0593-3B48-41D9-B42F-6E035B320449}" = Broadcom Management Programs "{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CD95F661-A5C4-44F5-A6AA-ECDD91C240C0}" = WinZip 15.0 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0D14551-3A2D-433B-861F-F4DCE5422759}" = Nokia PC Suite "{D8E363A7-88B7-446D-B2C0-E26CE4DC8E54}" = U3Launcher "{DE9DF561-0332-42A5-AF28-4AF028B7029D}" = Windows Live Photo Gallery "{DF62D775-BB7C-4AFA-9CA4-DDA1C4855F28}" = Dell Mobile Broadband Card Utility "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series "{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software) "{E66653A2-2B5C-4909-B71E-218164336960}" = SPC 610NC Laptop Camera "{E6CB18CD-04EF-4C6A-A5F3-5F49E7332895}" = O&O Defrag Professional Edition "{E81667C6-2856-46D6-ABEA-6A2F42166779}" = mCore "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5}" = mMHouse "{F6090A17-0967-4A8A-B3C3-422A1B514D49}" = mDrWiFi "{F73EA8BF-81F5-32AF-8D8A-24F12FD23B79}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD "{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4}" = mWlsSafe "3100-3120 USB-Handset Manager" = 3100-3120 USB-Handset Manager "504244733D18C8F63FF584AEB290E3904E791693" = Windows-stuurprogrammapakket - Nokia pccsmcfd (08/22/2008 7.0.0.0) "72A50F48CC5601190B9C4E74D81161693133E7F7" = Windows-stuurprogrammapakket - Nokia Modem (02/25/2011 7.01.0.9) "819D45A9F73817F5B6D7C71A33ADAB88C5DA1765" = Windows-stuurprogrammapakket - Nokia Modem (08/03/2007 6.84.0.2) "8461-7759-5462-8226" = Vuze "Active Disk" = Active Disk "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Shockwave Player" = Adobe Shockwave Player "Aimersoft Video Converter Ultimate_is1" = Aimersoft Video Converter Ultimate(Build 4.1.2.0) "AudibleManager" = AudibleManager "AVS Audio Converter_is1" = AVS Audio Converter version 7 "AVS Update Manager_is1" = AVS Update Manager 1.0 "AVS4YOU Software Navigator_is1" = AVS4YOU Software Navigator 1.4 "Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card "Canon G.726 WMP-Decoder" = Canon G.726 WMP-Decoder "CCleaner" = CCleaner "CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3" = Conexant HDA D110 MDC V.92 Modem "DelThumbs_is1" = DelThumbs "E0AC723A3DE3A04256288CADBBB011B112AED454" = Windows-stuurprogrammapakket - Nokia Modem (02/25/2011 4.7) "ENTERPRISE" = Microsoft Office Enterprise 2007 "F785D6B63FDA08F811F56F84F831B3E291B7129A" = Windows Driver Package - Intel (w29n51) net (04/05/2006 9.0.4.13) "Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.8.815 "F-Secure Anti-Virus" = F-Secure Client Security - Virus- en spywarebescherming "F-Secure E-mail Scanning" = F-Secure Client Security - E-mail scannen "F-Secure ExploitShield" = F-Secure Client Security - Browserbeveiliging "F-Secure HIPS" = F-Secure Client Security - DeepGuard "F-Secure Internet Shield" = F-Secure Client Security - Internet-shield "F-Secure Protocol Scanner" = F-Secure Client Security - Webverkeer scannen "Handset Manager" = "IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs "ie7" = Windows Internet Explorer 7 "ie8" = Windows Internet Explorer 8 "InstallShield_{E66653A2-2B5C-4909-B71E-218164336960}" = SPC 610NC Laptop Camera "IsoBuster_is1" = IsoBuster 2.3 "Magic ISO Maker v5.4 (build 0251)" = Magic ISO Maker v5.4 (build 0251) "MagicDisc 2.5.79" = MagicDisc 2.5.79 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.0 Dutch Language Pack" = Microsoft .NET Framework 3.0 Nederlands taalpakket "Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Extended - NLD "MIXERLITE" = Mixer "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition "NeroVision!UninstallKey" = Nero Digital "NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs "Nokia Ovi Suite" = Nokia Ovi Suite "Nokia PC Suite" = Nokia PC Suite "OMUI.nl-nl" = Microsoft Office Language Pack 2007 - Dutch/Nederlands "ProInst" = Intel(R) PROSet/Wireless Software "Songbird-release-1959" = Songbird 1.9.3 (Build 1959) "Switch" = Switch Sound File Converter "SynTPDeinstKey" = Synaptics Pointing Device Driver "UsbBoost" = UsbBoost "VLC media player" = VideoLAN VLC media player 0.8.6d "Vuze_Remote Toolbar" = Vuze Remote Toolbar "WIC" = Windows Imaging Component "Windows Media Encoder 9" = Windows Media Encoder 9 Series "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinLiveSuite_Wave3" = Windows Live Essentials "WinRAR archiver" = WinRAR archiver "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01009" = Microsoft User-Mode Driver Framework Feature Pack 1.9 "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0 "ZoomBrowser EX" = Canon Utilities ZoomBrowser EX "ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility [color=#E56717:06dbc1c06b]========== HKEY_USERS Uninstall List ==========[/color:06dbc1c06b] [HKEY_USERS\S-1-5-21-1935655697-343818398-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "f031ef6ac137efc5" = Dell Driver Download Manager [color=#E56717:06dbc1c06b]========== Last 10 Event Log Errors ==========[/color:06dbc1c06b] [ Application Events ] Error - 7/03/2012 13:03:45 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 11706 Description = Product: Microsoft .NET Framework 1.1 -- Fout 1706.Kan geen geldige bron voor het product Microsoft .NET Framework 1.1 vinden. Windows Installer kan niet worden voortgezet. Error - 7/03/2012 13:03:47 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 1023 Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}' kan niet worden geïnstalleerd. Foutcode: 1603. Meer informatie is beschikbaar in logboekbestand C:\WINDOWS\TEMP\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log. Error - 7/03/2012 13:03:49 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000 Description = Error - 8/03/2012 18:23:01 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 11706 Description = Product: Microsoft .NET Framework 1.1 -- Fout 1706.Kan geen geldige bron voor het product Microsoft .NET Framework 1.1 vinden. Windows Installer kan niet worden voortgezet. Error - 8/03/2012 18:23:08 | Computer Name = LAPTOP-PATRICK | Source = MsiInstaller | ID = 1023 Description = Product: Microsoft .NET Framework 1.1 - Update '{0213C6AF-5562-4D09-884C-2ADCFC8C2F35}' kan niet worden geïnstalleerd. Foutcode: 1603. Meer informatie is beschikbaar in logboekbestand C:\WINDOWS\TEMP\NDP1.1sp1-KB2656353-X86\NDP1.1sp1-KB2656353-X86-msi.0.log. Error - 8/03/2012 18:23:12 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000 Description = Error - 8/03/2012 18:57:03 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002 Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000. Error - 8/03/2012 18:59:05 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002 Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000. Error - 8/03/2012 19:03:55 | Computer Name = LAPTOP-PATRICK | Source = Application Hang | ID = 1002 Description = Vastgelopen toepassing: rundll32.exe, versie: 5.1.2600.5512, vastgelopen module: hungapp, versie: 0.0.0.0, vastgelopen op: 0x00000000. Error - 8/03/2012 21:17:42 | Computer Name = LAPTOP-PATRICK | Source = NativeWrapper | ID = 5000 Description = [ OSession Events ] Error - 12/03/2011 02:40:54 | Computer Name = LAPTOP-PATRICK | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash. [ System Events ] Error - 8/03/2012 12:19:10 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7034 Description = De Intel(R) PROSet/Wireless Service-service is onverwacht beëindigd. Dit is nu 1 keer gebeurd. Error - 8/03/2012 12:19:23 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001 Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service, die vanwege de volgende fout niet kan worden gestart: %%1058 Error - 8/03/2012 12:19:33 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001 Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service, die vanwege de volgende fout niet kan worden gestart: %%1058 Error - 8/03/2012 12:19:35 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7031 Description = De Bluetooth Service-service is onverwacht gestopt. Dit is 1 keer gebeurd. De volgende herstelbewerking zal over 60000 milliseconden worden uitgevoerd: Service opnieuw starten. Error - 8/03/2012 18:04:22 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7000 Description = De Iomega Activity Disk2-service kan vanwege de volgende fout niet worden gestart: %%2 Error - 8/03/2012 18:04:22 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7000 Description = De RGFILERW-service kan vanwege de volgende fout niet worden gestart: %%2 Error - 8/03/2012 18:04:38 | Computer Name = LAPTOP-PATRICK | Source = Removable Storage-service | ID = 262255 Description = RSM kan medium niet laden in station Station 0 van mediawisselaar Intenso Rainbow Line USB Device. Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Removable Storage-service | ID = 262255 Description = RSM kan medium niet laden in station Station 0 van mediawisselaar Intenso Rainbow Line USB Device. Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001 Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service, die vanwege de volgende fout niet kan worden gestart: %%1058 Error - 8/03/2012 18:04:43 | Computer Name = LAPTOP-PATRICK | Source = Service Control Manager | ID = 7001 Description = De Verbindingsbeheer voor RAS-service is afhankelijk van de Telephony-service, die vanwege de volgende fout niet kan worden gestart: %%1058 < End of report >
  • Kan u mij advies geven over wat ik mag verwijderen van mijnPC? Ik denk dat er nogal wat 'ballast' tussen zit... Met dank
  • Jouw Windows heeft een probleem met NetFramework. Herinner mij eraan dat we dat oplossen wanneer de fix klaar is. Over ballast geproken, wacht eerst onderstaande af! [b:9631e67e50]Sluit voordat je OTL de fix laat doen, eerst alle andere openstaande vensters![/b:9631e67e50] Start OTL[list:9631e67e50][*:9631e67e50]Plak de volgende (vetgedrukte, blauwe tekst) onder [color=#0000FF:9631e67e50][b:9631e67e50]Custom Scans/Fixes[/b:9631e67e50][/color:9631e67e50] [b:9631e67e50][color=#0000FF:9631e67e50] :OTL C:\newkey:SummaryInformation C:\Documents and Settings\All Users\Application Data\Temp:A1063995 :Services :Reg :Files :Commands [purity] [emptytemp] [emptyflash] [createrestorepoint] [reboot][/color:9631e67e50][/b:9631e67e50] [*:9631e67e50]Klik daarna bovenaan op de knop [color=#FF0000:9631e67e50][b:9631e67e50]Run Fix[/b:9631e67e50][/color:9631e67e50][*:9631e67e50]Laat het programma ongestoord zijn werk doen. [*:9631e67e50]De pc zal na afloop opnieuw opgestart worden. [*:9631e67e50]Post tevens de inhoud van het OTL-scanlog[/list:u:9631e67e50]
  • Hieronder het resultaat van de scan :: Graag uw analyse Met beste dank All processes killed ========== OTL ========== ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 67 bytes User: All Users ->Temp folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: L ->Temp folder emptied: 9037676 bytes ->Temporary Internet Files folder emptied: 10726693 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 6376988 bytes ->Apple Safari cache emptied: 0 bytes ->Flash cache emptied: 470 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 246162 bytes User: NetworkService ->Temp folder emptied: 2570126 bytes ->Temporary Internet Files folder emptied: 72304933 bytes User: P ->Temp folder emptied: 49632 bytes ->Temporary Internet Files folder emptied: 67 bytes ->Java cache emptied: 11311 bytes ->Flash cache emptied: 1073 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2166767 bytes %systemroot%\System32 .tmp files removed: 3590429 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 31633452 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 44323060 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 175,00 mb [EMPTYFLASH] User: Administrator User: All Users User: Default User User: L ->Flash cache emptied: 0 bytes User: LocalService User: NetworkService User: P ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb Restore point Set: OTL Restore Point (0) OTL by OldTimer - Version 3.2.36.2 log created on 03102012_143954 Files\Folders moved on Reboot... Registry entries deleted on Reboot...
  • Ik zie tot mijn ontsteltenis, dat ik jouw een verkeerd opgesteld script heb laten doen. Dus helaas moeten we dat nu herhalen, nu is het aangepast: [b:d73a6309fa]sluit voordat je OTL de fix laat doen, eerst alle andere openstaande vensters![/b:d73a6309fa] Start OTL[list:d73a6309fa][*:d73a6309fa]Plak de volgende (vetgedrukte, blauwe tekst) onder [color=#0000FF:d73a6309fa][b:d73a6309fa]Custom Scans/Fixes[/b:d73a6309fa][/color:d73a6309fa] [b:d73a6309fa][color=#0000FF:d73a6309fa] :OTL @Alternate Data Stream - 88 bytes -> C:\newkey:SummaryInformation @Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\Temp:A1063995 :Services :Reg :Files :Commands [purity] [emptytemp] [emptyflash] [createrestorepoint] [reboot][/color:d73a6309fa][/b:d73a6309fa] [*:d73a6309fa]Klik daarna bovenaan op de knop [color=#FF0000:d73a6309fa][b:d73a6309fa]Run Fix[/b:d73a6309fa][/color:d73a6309fa][*:d73a6309fa]Laat het programma ongestoord zijn werk doen. [*:d73a6309fa]De pc zal na afloop opnieuw opgestart worden. [*:d73a6309fa]Post tevens de inhoud van het OTL-scanlog[/list:u:d73a6309fa]
  • geen probleem, ik zal de nieuwe script deze avond uitproberen. ik moet toch geen problemen verwachten?
  • Problemen hoef je niet te verwachten inderdaad, maar 100% garantie kan ik ook weer niet geven.
  • OLT scan uitgevoerd Met dank voor uw medewerking en advies. All processes killed ========== OTL ========== ADS C:\newkey:SummaryInformation deleted successfully. ADS C:\Documents and Settings\All Users\Application Data\Temp:A1063995 deleted successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users ->Temp folder emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: L ->Temp folder emptied: 9808 bytes ->Temporary Internet Files folder emptied: 2898951 bytes ->Java cache emptied: 0 bytes ->Google Chrome cache emptied: 0 bytes ->Apple Safari cache emptied: 0 bytes ->Flash cache emptied: 470 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 2676 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: P ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->Flash cache emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 2824290 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 6,00 mb [EMPTYFLASH]Total Files Cleaned = 6,00 mb [EMPTYFLASH] User: Administrator User: All Users User: Default User User: L ->Flash cache emptied: 0 bytes User: LocalService User: NetworkService User: P ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb Restore point Set: OTL Restore Point (0) OTL by OldTimer - Version 3.2.36.2 log created on 03122012_192441 Files\Folders moved on Reboot... Registry entries deleted on Reboot...
  • Goed zo. We gaan nu nog dieper scannen! [color=#FF0000:937ee6826e][b:937ee6826e]Stap •1•[/b:937ee6826e][/color:937ee6826e] [b:937ee6826e]Welk programma[/b:937ee6826e]: [b:937ee6826e]TDSSStarter.exe[/b:937ee6826e] [b:937ee6826e]Waarvoor/waarom[/b:937ee6826e]: Rootkitscanner [b:937ee6826e]Moeilijkheidsgraad[/b:937ee6826e]: geen Download [b:937ee6826e][url=http://home.kpn.nl/stefsmeenk/tools/TDSSKStarter.exe]TDSSStarter[/url][/b:937ee6826e] naar het bureaublad. [b:937ee6826e]"TDSSSStarter.exe" gebruiken[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e] [b:937ee6826e][color=#0000FF:937ee6826e]Sluit nu eerst alle nog openstaande programmavensters![/color:937ee6826e][/b:937ee6826e] [list:937ee6826e][*:937ee6826e][b:937ee6826e][color=#0000FF:937ee6826e]Windows 2000[/color:937ee6826e][/b:937ee6826e] en [color=#0000FF:937ee6826e][b:937ee6826e]Windows XP[/b:937ee6826e][/color:937ee6826e]: start het tool middels dubbelklik op "[i:937ee6826e] TDSSStarter .exe[/i:937ee6826e]". [*:937ee6826e][color=#0000FF:937ee6826e][b:937ee6826e]Windows Vista[/b:937ee6826e][/color:937ee6826e] en [color=#0000FF:937ee6826e][b:937ee6826e]Windows 7[/b:937ee6826e][/color:937ee6826e]: start het tool middels rechtsklik op "[i:937ee6826e]TDSSStarter.exe[/i:937ee6826e]" en dan kiezen voor [i:937ee6826e][b:937ee6826e]Als Administrator uitvoeren[/b:937ee6826e][/i:937ee6826e].[/list:u:937ee6826e] [*:937ee6826e]Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten. [*:937ee6826e]Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.[/list:u:937ee6826e] [color=#FF0000:937ee6826e][b:937ee6826e]Stap •2•[/b:937ee6826e][/color:937ee6826e] [b:937ee6826e]Welk programma[/b:937ee6826e]: ComboFix [b:937ee6826e]Waarvoor/waarom[/b:937ee6826e]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en zo mogelijk op te schonen. [b:937ee6826e]Moeilijkheidsgraad[/b:937ee6826e]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:937ee6826e]Downloadlokatie[/b:937ee6826e]: Dit programma absoluut naar het bureaublad downloaden! [b:937ee6826e]Download ComboFix via één van deze locaties[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:937ee6826e]Bleepingcomputer[/b:937ee6826e][/url] [*:937ee6826e][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:937ee6826e]ForoSpyware[/b:937ee6826e][/url] [*:937ee6826e][url=http://subs.geekstogo.com/ComboFix.exe][b:937ee6826e]Geekstogo[/b:937ee6826e][/url][/list:u:937ee6826e] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:937ee6826e]Hier[/b:937ee6826e][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn! [url=http://www.bleepingcomputer.com/forums/topic114351.html][b:937ee6826e]Hier[/b:937ee6826e][/url] en [url=http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html][b:937ee6826e]hier[/b:937ee6826e][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:937ee6826e]Voor alle duidelijkheid nogmaals[/b:937ee6826e]: ComboFix dient vanaf het bureaublad gestart te worden. [b:937ee6826e]Opmerkingen[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).[/list:u:937ee6826e] [b:937ee6826e]ComboFix opstarten[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e] [b:937ee6826e][color=#0000FF:937ee6826e]Sluit nu eerst alle nog openstaande programmavensters![/color:937ee6826e][/b:937ee6826e] [list:937ee6826e][*:937ee6826e][b:937ee6826e][color=#0000FF:937ee6826e]Windows 2000[/color:937ee6826e][/b:937ee6826e] en [color=#0000FF:937ee6826e][b:937ee6826e]Windows XP[/b:937ee6826e][/color:937ee6826e]: start ComboFix.exe middels dubbelklik op ComboFix.exe. [*:937ee6826e][color=#0000FF:937ee6826e][b:937ee6826e]Windows Vista[/b:937ee6826e][/color:937ee6826e] en [color=#0000FF:937ee6826e][b:937ee6826e]Windows 7[/b:937ee6826e][/color:937ee6826e]: start ComboFix.exe via rechtsklik op ComboFix.exe en kies dan voor [i:937ee6826e][b:937ee6826e]Als Administrator uitvoeren[/b:937ee6826e][/i:937ee6826e].[/list:u:937ee6826e][/list:u:937ee6826e] [b:937ee6826e]ComboFix is opgestart[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:937ee6826e]Combofix sluit tijdens de scan de internet verbinding; probeer deze tussentijds niet te herstellen! [*:937ee6826e]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:937ee6826e]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:937ee6826e]Post de inhoud van dit logbestand in je volgende bericht. [*:937ee6826e]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:937ee6826e] [b:937ee6826e]Belangrijke opmerking[/b:937ee6826e]: [list:937ee6826e][*:937ee6826e][b:937ee6826e][color=Red:937ee6826e]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:937ee6826e][/b:937ee6826e] [*:937ee6826e][b:937ee6826e][color=blue:937ee6826e]Illegal operation attempted on a registery key that has been marked for deletion.[/color:937ee6826e][/b:937ee6826e] [*:937ee6826e][b:937ee6826e][color=Red:937ee6826e]Start dan de computer opnieuw op.[/color:937ee6826e][/b:937ee6826e][/list:u:937ee6826e] [color=#FF0000:937ee6826e][b:937ee6826e]Stap •3•[/b:937ee6826e][/color:937ee6826e] [b:937ee6826e]Samenvattend: hierna post je in jouw volgende bericht de inhoud van de volgende logs:[/b:937ee6826e] [list:937ee6826e][*:937ee6826e] TDSSKStarter-log [*:937ee6826e] ComboFix.txt-log [/list:u:937ee6826e]
  • System Restore Point Check: TDSSKiller Starter Restore Point Created Succesfully ============================================== Older logs ============================================== C:\TDSSStarter\Report_20121303_1706_.log C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt ============================================== EOF
  • Waar is nu het nieuwe log? Ik heb jou opdracht gegeven om TDSSStarter te gebruiken, maar daarnaast heb je ook TDSSKiller gebruikt. Waarom. Ik wil nu graag dat jij beide logs post: [b:113682c875]C:\TDSSStarter\Report_20121303_1706_.log C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt[/b:113682c875]
  • Foutje gemaakt... Ik zet het straks recht...
  • System Restore Point Check: TDSSKiller Starter Restore Point Created Succesfully ============================================== Older logs ============================================== C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt ============================================== EOF 17:03:31.0984 1168 TDSS rootkit removing tool 2.7.19.0 Mar 5 2012 11:23:39 17:03:32.0015 1168 ============================================================ 17:03:32.0015 1168 Current date / time: 2012/03/13 17:03:32.0015 17:03:32.0015 1168 SystemInfo: 17:03:32.0015 1168 17:03:32.0015 1168 OS Version: 5.1.2600 ServicePack: 3.0 17:03:32.0015 1168 Product type: Workstation 17:03:32.0015 1168 ComputerName: LAPTOP 17:03:32.0015 1168 UserName: L 17:03:32.0015 1168 Windows directory: C:\WINDOWS 17:03:32.0015 1168 System windows directory: C:\WINDOWS 17:03:32.0015 1168 Processor architecture: Intel x86 17:03:32.0015 1168 Number of processors: 2 17:03:32.0015 1168 Page size: 0x1000 17:03:32.0015 1168 Boot type: Normal boot 17:03:32.0015 1168 ============================================================ 17:03:34.0328 1168 Drive \Device\Harddisk0\DR0 - Size: 0x1248119400 (73.13 Gb), SectorSize: 0x200, Cylinders: 0x254A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:03:34.0328 1168 Drive \Device\Harddisk1\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 17:03:34.0687 1168 Drive \Device\Harddisk2\DR7 - Size: 0x3E8800000 (15.63 Gb), SectorSize: 0x200, Cylinders: 0x7F8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 17:03:34.0687 1168 \Device\Harddisk0\DR0: 17:03:34.0687 1168 MBR used 17:03:34.0687 1168 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x2B5B98E 17:03:34.0687 1168 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2B73214, BlocksNum 0x63FFABF 17:03:34.0687 1168 \Device\Harddisk1\DR5: 17:03:34.0687 1168 MBR used 17:03:34.0687 1168 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02 17:03:34.0687 1168 \Device\Harddisk2\DR7: 17:03:34.0687 1168 MBR used 17:03:34.0687 1168 \Device\Harddisk2\DR7\Partition0: MBR, Type 0xB, StartLBA 0x2D8, BlocksNum 0x1F43D28 17:03:35.0390 1168 Initialize success 17:03:35.0390 1168 ============================================================ 17:03:55.0015 4268 ============================================================ 17:03:55.0015 4268 Scan started 17:03:55.0015 4268 Mode: Manual; 17:03:55.0015 4268 ============================================================ 17:03:55.0859 4268 Abiosdsk - ok 17:03:55.0859 4268 abp480n5 - ok 17:03:55.0921 4268 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys 17:03:55.0921 4268 ACPI - ok 17:03:55.0968 4268 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys 17:03:55.0968 4268 ACPIEC - ok 17:03:56.0015 4268 ACSSCR (b6a0f723a54884e77fce0f69083f90c9) C:\WINDOWS\system32\DRIVERS\a38usb.sys 17:03:56.0062 4268 ACSSCR - ok 17:03:56.0062 4268 adpu160m - ok 17:03:56.0093 4268 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 17:03:56.0109 4268 aec - ok 17:03:56.0156 4268 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINDOWS\system32\DRIVERS\AegisP.sys 17:03:56.0203 4268 AegisP - ok 17:03:56.0265 4268 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 17:03:56.0265 4268 AFD - ok 17:03:56.0281 4268 Aha154x - ok 17:03:56.0296 4268 aic78u2 - ok 17:03:56.0296 4268 aic78xx - ok 17:03:56.0328 4268 AliIde - ok 17:03:56.0328 4268 amsint - ok 17:03:56.0390 4268 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS 17:03:56.0406 4268 APPDRV - ok 17:03:56.0468 4268 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 17:03:56.0468 4268 Arp1394 - ok 17:03:56.0468 4268 asc - ok 17:03:56.0484 4268 asc3350p - ok 17:03:56.0500 4268 asc3550 - ok 17:03:56.0546 4268 ASPI (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\System32\DRIVERS\ASPI32.sys 17:03:56.0546 4268 ASPI - ok 17:03:56.0578 4268 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys 17:03:56.0578 4268 Aspi32 - ok 17:03:56.0609 4268 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:03:56.0609 4268 AsyncMac - ok 17:03:56.0656 4268 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 17:03:56.0656 4268 atapi - ok 17:03:56.0671 4268 Atdisk - ok 17:03:56.0718 4268 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:03:56.0718 4268 Atmarpc - ok 17:03:56.0781 4268 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 17:03:56.0781 4268 audstub - ok 17:03:56.0812 4268 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 17:03:56.0843 4268 bcm4sbxp - ok 17:03:56.0875 4268 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 17:03:56.0875 4268 Beep - ok 17:03:56.0937 4268 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys 17:03:56.0953 4268 btaudio - ok 17:03:57.0000 4268 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys 17:03:57.0015 4268 BTDriver - ok 17:03:57.0093 4268 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys 17:03:57.0125 4268 BTKRNL - ok 17:03:57.0156 4268 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys 17:03:57.0156 4268 BTSERIAL - ok 17:03:57.0187 4268 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys 17:03:57.0203 4268 BTWDNDIS - ok 17:03:57.0265 4268 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys 17:03:57.0265 4268 btwhid - ok 17:03:57.0296 4268 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys 17:03:57.0296 4268 btwmodem - ok 17:03:57.0328 4268 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys 17:03:57.0343 4268 BTWUSB - ok 17:03:57.0375 4268 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 17:03:57.0375 4268 cbidf2k - ok 17:03:57.0406 4268 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 17:03:57.0406 4268 CCDECODE - ok 17:03:57.0421 4268 cd20xrnt - ok 17:03:57.0468 4268 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 17:03:57.0468 4268 Cdaudio - ok 17:03:57.0484 4268 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 17:03:57.0484 4268 Cdfs - ok 17:03:57.0531 4268 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 17:03:57.0546 4268 Cdrom - ok 17:03:57.0578 4268 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys 17:03:57.0578 4268 cercsr6 - ok 17:03:57.0593 4268 Changer - ok 17:03:57.0718 4268 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 17:03:57.0718 4268 CmBatt - ok 17:03:57.0734 4268 CmdIde - ok 17:03:57.0750 4268 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys 17:03:57.0750 4268 Compbatt - ok 17:03:57.0765 4268 Cpqarray - ok 17:03:57.0796 4268 ctsfm2k - ok 17:03:57.0812 4268 CTUSFSYN - ok 17:03:57.0828 4268 dac2w2k - ok 17:03:57.0843 4268 dac960nt - ok 17:03:57.0859 4268 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 17:03:57.0859 4268 Disk - ok 17:03:57.0937 4268 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys 17:03:57.0968 4268 dmboot - ok 17:03:58.0000 4268 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\drivers\dmio.sys 17:03:58.0000 4268 dmio - ok 17:03:58.0031 4268 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 17:03:58.0031 4268 dmload - ok 17:03:58.0062 4268 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 17:03:58.0062 4268 DMusic - ok 17:03:58.0109 4268 dpti2o - ok 17:03:58.0156 4268 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 17:03:58.0156 4268 drmkaud - ok 17:03:58.0265 4268 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys 17:03:58.0265 4268 DSproct - ok 17:03:58.0312 4268 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys 17:03:58.0359 4268 dsunidrv - ok 17:03:58.0546 4268 F-Secure Gatekeeper (29d12e1e45d93b45d2598e2663bbeff4) C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys 17:03:58.0562 4268 F-Secure Gatekeeper - ok 17:03:58.0656 4268 F-Secure HIPS (6137a461cea0277ef62f53df4badf7d0) C:\Program Files\F-Secure\HIPS\drivers\fshs.sys 17:03:58.0671 4268 F-Secure HIPS - ok 17:03:58.0781 4268 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 17:03:58.0796 4268 Fastfat - ok 17:03:58.0843 4268 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 17:03:58.0843 4268 Fdc - ok 17:03:58.0906 4268 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys 17:03:58.0906 4268 Fips - ok 17:03:58.0953 4268 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 17:03:58.0953 4268 Flpydisk - ok 17:03:59.0000 4268 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 17:03:59.0000 4268 FltMgr - ok 17:03:59.0046 4268 FNETTBOH (a9e2df40ed6ec9e8885da72b6e1818f3) C:\WINDOWS\system32\drivers\FNETTBOH.SYS 17:03:59.0078 4268 FNETTBOH - ok 17:03:59.0125 4268 FNETURPX (784ffba7ee5c5f3a396407e4712f72f0) C:\WINDOWS\system32\drivers\FNETURPX.SYS 17:03:59.0125 4268 FNETURPX - ok 17:03:59.0171 4268 fsbts (343786e182b9c9ae3066e00dec650f50) C:\WINDOWS\system32\Drivers\fsbts.sys 17:03:59.0171 4268 fsbts - ok 17:03:59.0218 4268 FSFW (3b40b0703059461f6f739f4d88faa6f8) C:\WINDOWS\system32\drivers\fsdfw.sys 17:03:59.0218 4268 FSFW - ok 17:03:59.0250 4268 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 17:03:59.0250 4268 Fs_Rec - ok 17:03:59.0296 4268 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:03:59.0296 4268 Ftdisk - ok 17:03:59.0328 4268 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 17:03:59.0328 4268 GEARAspiWDM - ok 17:03:59.0359 4268 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 17:03:59.0359 4268 Gpc - ok 17:03:59.0406 4268 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 17:03:59.0421 4268 HDAudBus - ok 17:03:59.0453 4268 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 17:03:59.0453 4268 HidUsb - ok 17:03:59.0484 4268 hpn - ok 17:03:59.0578 4268 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys 17:03:59.0671 4268 HSF_DPV - ok 17:03:59.0703 4268 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys 17:03:59.0734 4268 HSXHWAZL - ok 17:03:59.0796 4268 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 17:03:59.0796 4268 HTTP - ok 17:03:59.0812 4268 i2omgmt - ok 17:03:59.0828 4268 i2omp - ok 17:03:59.0859 4268 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:03:59.0859 4268 i8042prt - ok 17:03:59.0968 4268 ialm (cc449157474d5e43daea7e20f52c635a) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 17:04:00.0000 4268 ialm - ok 17:04:00.0046 4268 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 17:04:00.0062 4268 Imapi - ok 17:04:00.0078 4268 ini910u - ok 17:04:00.0093 4268 IntelIde - ok 17:04:00.0140 4268 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys 17:04:00.0140 4268 intelppm - ok 17:04:00.0187 4268 iomdisk (9d7069d72c0c72952f05e1688a5ae89d) C:\WINDOWS\system32\DRIVERS\iomdisk.sys 17:04:00.0218 4268 iomdisk - ok 17:04:00.0281 4268 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 17:04:00.0281 4268 Ip6Fw - ok 17:04:00.0312 4268 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:04:00.0312 4268 IpFilterDriver - ok 17:04:00.0343 4268 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 17:04:00.0343 4268 IpInIp - ok 17:04:00.0359 4268 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 17:04:00.0375 4268 IpNat - ok 17:04:00.0406 4268 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 17:04:00.0406 4268 IPSec - ok 17:04:00.0437 4268 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 17:04:00.0437 4268 IRENUM - ok 17:04:00.0484 4268 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys 17:04:00.0484 4268 isapnp - ok 17:04:00.0515 4268 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:04:00.0531 4268 Kbdclass - ok 17:04:00.0546 4268 kbdhid (b833b70fe639f01fb36cedabe57ef031) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 17:04:00.0546 4268 kbdhid - ok 17:04:00.0593 4268 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 17:04:00.0593 4268 kmixer - ok 17:04:00.0640 4268 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 17:04:00.0640 4268 KSecDD - ok 17:04:00.0671 4268 lbrtfdc - ok 17:04:00.0734 4268 mcdbus (f922b609524cf1ed66a1a109f3ce014f) C:\WINDOWS\system32\DRIVERS\mcdbus.sys 17:04:00.0781 4268 mcdbus - ok 17:04:00.0828 4268 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 17:04:00.0875 4268 mdmxsdk - ok 17:04:00.0937 4268 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 17:04:00.0937 4268 mnmdd - ok 17:04:00.0984 4268 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys 17:04:00.0984 4268 Modem - ok 17:04:01.0093 4268 monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\monfilt.sys 17:04:01.0156 4268 monfilt - ok 17:04:01.0171 4268 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys 17:04:01.0171 4268 Mouclass - ok 17:04:01.0234 4268 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys 17:04:01.0234 4268 mouhid - ok 17:04:01.0250 4268 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 17:04:01.0265 4268 MountMgr - ok 17:04:01.0265 4268 mraid35x - ok 17:04:01.0312 4268 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:04:01.0312 4268 MRxDAV - ok 17:04:01.0468 4268 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:04:01.0484 4268 MRxSmb - ok 17:04:01.0515 4268 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 17:04:01.0515 4268 Msfs - ok 17:04:01.0562 4268 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 17:04:01.0562 4268 MSKSSRV - ok 17:04:01.0625 4268 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:04:01.0625 4268 MSPCLOCK - ok 17:04:01.0640 4268 MSPQM (398fad33f4b8654d5ba703ff53b2b02a) C:\WINDOWS\system32\drivers\MSPQM.sys 17:04:01.0671 4268 MSPQM - ok 17:04:01.0718 4268 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:04:01.0734 4268 mssmbios - ok 17:04:01.0765 4268 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 17:04:01.0781 4268 MSTEE - ok 17:04:01.0812 4268 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 17:04:01.0812 4268 Mup - ok 17:04:01.0859 4268 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 17:04:01.0875 4268 NABTSFEC - ok 17:04:01.0906 4268 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 17:04:01.0906 4268 NDIS - ok 17:04:01.0937 4268 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 17:04:01.0937 4268 NdisIP - ok 17:04:01.0984 4268 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:04:01.0984 4268 NdisTapi - ok 17:04:02.0015 4268 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:04:02.0015 4268 Ndisuio - ok 17:04:02.0031 4268 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:04:02.0046 4268 NdisWan - ok 17:04:02.0093 4268 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 17:04:02.0093 4268 NDProxy - ok 17:04:02.0109 4268 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 17:04:02.0125 4268 NetBIOS - ok 17:04:02.0140 4268 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 17:04:02.0156 4268 NetBT - ok 17:04:02.0281 4268 NETw3x32 (71371ed9086a3d65f43967c89634e9a9) C:\WINDOWS\system32\DRIVERS\NETw3x32.sys 17:04:02.0390 4268 NETw3x32 - ok 17:04:02.0546 4268 NETw4x32 (b5ab1108b377b5f3d37409fabda01453) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys 17:04:02.0609 4268 NETw4x32 - ok 17:04:02.0656 4268 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 17:04:02.0656 4268 NIC1394 - ok 17:04:02.0703 4268 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 17:04:02.0718 4268 Npfs - ok 17:04:02.0781 4268 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 17:04:02.0796 4268 Ntfs - ok 17:04:02.0812 4268 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 17:04:02.0812 4268 Null - ok 17:04:02.0875 4268 NWADI (091a1284aa583288b64dcd370d1b421e) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys 17:04:02.0875 4268 NWADI - ok 17:04:02.0921 4268 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:04:02.0921 4268 NwlnkFlt - ok 17:04:02.0937 4268 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:04:02.0937 4268 NwlnkFwd - ok 17:04:03.0000 4268 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 17:04:03.0000 4268 ohci1394 - ok 17:04:03.0015 4268 ossrv - ok 17:04:03.0078 4268 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\drivers\Parport.sys 17:04:03.0078 4268 Parport - ok 17:04:03.0109 4268 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 17:04:03.0109 4268 PartMgr - ok 17:04:03.0140 4268 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys 17:04:03.0140 4268 ParVdm - ok 17:04:03.0171 4268 PCASp50 (803c8e7f4d00fe832c1f3871514fec85) C:\WINDOWS\system32\Drivers\PCASp50.sys 17:04:03.0171 4268 PCASp50 - ok 17:04:03.0468 4268 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 17:04:03.0468 4268 pccsmcfd - ok 17:04:03.0625 4268 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys 17:04:03.0625 4268 PCI - ok 17:04:03.0640 4268 PCIDump - ok 17:04:03.0687 4268 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys 17:04:03.0687 4268 PCIIde - ok 17:04:03.0734 4268 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys 17:04:03.0734 4268 Pcmcia - ok 17:04:03.0750 4268 PDCOMP - ok 17:04:03.0765 4268 PDFRAME - ok 17:04:03.0781 4268 PDRELI - ok 17:04:03.0781 4268 PDRFRAME - ok 17:04:03.0796 4268 perc2 - ok 17:04:03.0812 4268 perc2hib - ok 17:04:03.0875 4268 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys 17:04:03.0890 4268 pfc - ok 17:04:03.0953 4268 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 17:04:03.0953 4268 PptpMiniport - ok 17:04:04.0000 4268 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 17:04:04.0015 4268 PSched - ok 17:04:04.0031 4268 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 17:04:04.0031 4268 Ptilink - ok 17:04:04.0031 4268 ql1080 - ok 17:04:04.0046 4268 Ql10wnt - ok 17:04:04.0062 4268 ql12160 - ok 17:04:04.0078 4268 ql1240 - ok 17:04:04.0093 4268 ql1280 - ok 17:04:04.0109 4268 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 17:04:04.0109 4268 RasAcd - ok 17:04:04.0140 4268 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:04:04.0140 4268 Rasl2tp - ok 17:04:04.0156 4268 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:04:04.0171 4268 RasPppoe - ok 17:04:04.0187 4268 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 17:04:04.0187 4268 Raspti - ok 17:04:04.0218 4268 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 17:04:04.0218 4268 Rdbss - ok 17:04:04.0234 4268 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:04:04.0234 4268 RDPCDD - ok 17:04:04.0265 4268 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:04:04.0281 4268 rdpdr - ok 17:04:04.0328 4268 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys 17:04:04.0343 4268 RDPWD - ok 17:04:04.0375 4268 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys 17:04:04.0375 4268 redbook - ok 17:04:04.0406 4268 RGFILERW - ok 17:04:04.0437 4268 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys 17:04:04.0468 4268 rimmptsk - ok 17:04:04.0484 4268 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys 17:04:04.0515 4268 rimsptsk - ok 17:04:04.0578 4268 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys 17:04:04.0609 4268 rismxdp - ok 17:04:04.0671 4268 s24trans (eadfb87f911a7a75d1b80617f92901e8) C:\WINDOWS\system32\DRIVERS\s24trans.sys 17:04:04.0671 4268 s24trans - ok 17:04:04.0750 4268 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys 17:04:04.0750 4268 sbp2port - ok 17:04:04.0781 4268 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys 17:04:04.0781 4268 sdbus - ok 17:04:04.0828 4268 Secdrv (4756ca8ac897e1a7e55e422b3fd2d455) C:\WINDOWS\system32\DRIVERS\secdrv.sys 17:04:04.0859 4268 Secdrv - ok 17:04:04.0906 4268 Ser2pl (b490ad520257dda26c1d587a71e527b5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys 17:04:04.0906 4268 Ser2pl - ok 17:04:04.0968 4268 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 17:04:04.0968 4268 Serenum - ok 17:04:05.0000 4268 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\drivers\Serial.sys 17:04:05.0015 4268 Serial - ok 17:04:05.0078 4268 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys 17:04:05.0078 4268 sffdisk - ok 17:04:05.0125 4268 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys 17:04:05.0125 4268 sffp_sd - ok 17:04:05.0140 4268 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 17:04:05.0140 4268 Sfloppy - ok 17:04:05.0171 4268 Simbad - ok 17:04:05.0203 4268 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 17:04:05.0203 4268 SLIP - ok 17:04:05.0218 4268 Sparrow - ok 17:04:05.0296 4268 SPC610NC (06d0e7c3500310a9349ce347ea410c0b) C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS 17:04:05.0375 4268 SPC610NC - ok 17:04:05.0421 4268 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 17:04:05.0421 4268 splitter - ok 17:04:05.0453 4268 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys 17:04:05.0468 4268 sr - ok 17:04:05.0515 4268 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 17:04:05.0531 4268 Srv - ok 17:04:05.0656 4268 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys 17:04:05.0687 4268 STHDA - ok 17:04:05.0734 4268 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 17:04:05.0734 4268 streamip - ok 17:04:05.0796 4268 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 17:04:05.0796 4268 swenum - ok 17:04:05.0812 4268 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 17:04:05.0828 4268 swmidi - ok 17:04:05.0843 4268 symc810 - ok 17:04:05.0859 4268 symc8xx - ok 17:04:05.0875 4268 sym_hi - ok 17:04:05.0890 4268 sym_u3 - ok 17:04:05.0953 4268 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys 17:04:05.0984 4268 SynTP - ok 17:04:06.0015 4268 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 17:04:06.0015 4268 sysaudio - ok 17:04:06.0093 4268 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 17:04:06.0109 4268 Tcpip - ok 17:04:06.0140 4268 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 17:04:06.0156 4268 TDPIPE - ok 17:04:06.0203 4268 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 17:04:06.0203 4268 TDTCP - ok 17:04:06.0250 4268 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 17:04:06.0250 4268 TermDD - ok 17:04:06.0265 4268 TosIde - ok 17:04:06.0312 4268 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 17:04:06.0312 4268 Udfs - ok 17:04:06.0328 4268 UIUSys - ok 17:04:06.0343 4268 ultra - ok 17:04:06.0390 4268 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 17:04:06.0390 4268 Update - ok 17:04:06.0453 4268 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:04:06.0453 4268 usbccgp - ok 17:04:06.0500 4268 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 17:04:06.0500 4268 usbehci - ok 17:04:06.0531 4268 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 17:04:06.0531 4268 usbhub - ok 17:04:06.0593 4268 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:04:06.0593 4268 usbscan - ok 17:04:06.0656 4268 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:04:06.0656 4268 USBSTOR - ok 17:04:06.0687 4268 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 17:04:06.0687 4268 usbuhci - ok 17:04:06.0734 4268 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 17:04:06.0734 4268 VgaSave - ok 17:04:06.0734 4268 ViaIde - ok 17:04:06.0828 4268 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys 17:04:06.0828 4268 VolSnap - ok 17:04:06.0937 4268 w39n51 (95c7421f8bafc85ba09d33364058937d) C:\WINDOWS\system32\DRIVERS\w39n51.sys 17:04:07.0031 4268 w39n51 - ok 17:04:07.0078 4268 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 17:04:07.0078 4268 Wanarp - ok 17:04:07.0093 4268 WDICA - ok 17:04:07.0125 4268 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 17:04:07.0125 4268 wdmaud - ok 17:04:07.0218 4268 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys 17:04:07.0250 4268 winachsf - ok 17:04:07.0328 4268 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 17:04:07.0328 4268 WmiAcpi - ok 17:04:07.0390 4268 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:04:07.0406 4268 WpdUsb - ok 17:04:07.0453 4268 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 17:04:07.0453 4268 WS2IFSL - ok 17:04:07.0515 4268 WsAudio_DeviceS(1) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys 17:04:07.0546 4268 WsAudio_DeviceS(1) - ok 17:04:07.0640 4268 WsAudio_DeviceS(2) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys 17:04:07.0656 4268 WsAudio_DeviceS(2) - ok 17:04:07.0687 4268 WsAudio_DeviceS(3) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys 17:04:07.0703 4268 WsAudio_DeviceS(3) - ok 17:04:07.0734 4268 WsAudio_DeviceS(4) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys 17:04:07.0734 4268 WsAudio_DeviceS(4) - ok 17:04:07.0796 4268 WsAudio_DeviceS(5) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys 17:04:07.0812 4268 WsAudio_DeviceS(5) - ok 17:04:07.0875 4268 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 17:04:07.0875 4268 WSTCODEC - ok 17:04:07.0906 4268 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:04:07.0921 4268 WudfPf - ok 17:04:07.0953 4268 WudfRd (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 17:04:07.0968 4268 WudfRd - ok 17:04:08.0015 4268 MBR (0x1B8) (e7d69fbcd87e8b5ad9d652d5ffe0af4c) \Device\Harddisk0\DR0 17:04:08.0062 4268 \Device\Harddisk0\DR0 - ok 17:04:08.0359 4268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR5 17:04:08.0453 4268 \Device\Harddisk1\DR5 - ok 17:04:08.0468 4268 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk2\DR7 17:04:08.0468 4268 \Device\Harddisk2\DR7 - ok 17:04:08.0484 4268 Boot (0x1200) (f0ffa4494d1428cacdb3b2bea1920eeb) \Device\Harddisk0\DR0\Partition0 17:04:08.0484 4268 \Device\Harddisk0\DR0\Partition0 - ok 17:04:08.0515 4268 Boot (0x1200) (07d1cc5232ff7546d279e5581bfeecab) \Device\Harddisk0\DR0\Partition1 17:04:08.0515 4268 \Device\Harddisk0\DR0\Partition1 - ok 17:04:08.0515 4268 Boot (0x1200) (02bdd5cd96c189715261d70d30b506cf) \Device\Harddisk1\DR5\Partition0 17:04:08.0531 4268 \Device\Harddisk1\DR5\Partition0 - ok 17:04:08.0531 4268 Boot (0x1200) (3a7fc3eb59f839b6a1282447a4814a9e) \Device\Harddisk2\DR7\Partition0 17:04:08.0531 4268 \Device\Harddisk2\DR7\Partition0 - ok 17:04:08.0531 4268 ============================================================ 17:04:08.0531 4268 Scan finished 17:04:08.0531 4268 ============================================================ 17:04:08.0546 5316 Detected object count: 0 17:04:08.0546 5316 Actual detected object count: 0 17:04:57.0343 5500 ============================================================ 17:04:57.0343 5500 Scan started 17:04:57.0343 5500 Mode: Manual; 17:04:57.0343 5500 ============================================================ 17:04:58.0531 5500 Abiosdsk - ok 17:04:58.0546 5500 abp480n5 - ok 17:04:58.0593 5500 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys 17:04:58.0609 5500 ACPI - ok 17:04:58.0640 5500 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys 17:04:58.0640 5500 ACPIEC - ok 17:04:58.0687 5500 ACSSCR (b6a0f723a54884e77fce0f69083f90c9) C:\WINDOWS\system32\DRIVERS\a38usb.sys 17:04:58.0687 5500 ACSSCR - ok 17:04:58.0703 5500 adpu160m - ok 17:04:58.0734 5500 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 17:04:58.0734 5500 aec - ok 17:04:58.0781 5500 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINDOWS\system32\DRIVERS\AegisP.sys 17:04:58.0781 5500 AegisP - ok 17:04:58.0843 5500 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 17:04:58.0843 5500 AFD - ok 17:04:58.0859 5500 Aha154x - ok 17:04:58.0875 5500 aic78u2 - ok 17:04:58.0875 5500 aic78xx - ok 17:04:58.0906 5500 AliIde - ok 17:04:58.0921 5500 amsint - ok 17:04:58.0968 5500 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS 17:04:58.0968 5500 APPDRV - ok 17:04:59.0000 5500 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 17:04:59.0000 5500 Arp1394 - ok 17:04:59.0015 5500 asc - ok 17:04:59.0031 5500 asc3350p - ok 17:04:59.0046 5500 asc3550 - ok 17:04:59.0093 5500 ASPI (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\System32\DRIVERS\ASPI32.sys 17:04:59.0093 5500 ASPI - ok 17:04:59.0109 5500 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys 17:04:59.0109 5500 Aspi32 - ok 17:04:59.0156 5500 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:04:59.0156 5500 AsyncMac - ok 17:04:59.0203 5500 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 17:04:59.0218 5500 atapi - ok 17:04:59.0218 5500 Atdisk - ok 17:04:59.0250 5500 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:04:59.0265 5500 Atmarpc - ok 17:04:59.0296 5500 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 17:04:59.0296 5500 audstub - ok 17:04:59.0343 5500 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 17:04:59.0343 5500 bcm4sbxp - ok 17:04:59.0359 5500 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 17:04:59.0359 5500 Beep - ok 17:04:59.0421 5500 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys 17:04:59.0421 5500 btaudio - ok 17:04:59.0484 5500 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys 17:04:59.0484 5500 BTDriver - ok 17:04:59.0562 5500 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys 17:04:59.0578 5500 BTKRNL - ok 17:04:59.0593 5500 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys 17:04:59.0593 5500 BTSERIAL - ok 17:04:59.0640 5500 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys 17:04:59.0640 5500 BTWDNDIS - ok 17:04:59.0703 5500 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys 17:04:59.0703 5500 btwhid - ok 17:04:59.0734 5500 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys 17:04:59.0734 5500 btwmodem - ok 17:04:59.0765 5500 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys 17:04:59.0765 5500 BTWUSB - ok 17:04:59.0796 5500 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 17:04:59.0812 5500 cbidf2k - ok 17:04:59.0843 5500 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 17:04:59.0843 5500 CCDECODE - ok 17:04:59.0843 5500 cd20xrnt - ok 17:04:59.0875 5500 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 17:04:59.0875 5500 Cdaudio - ok 17:04:59.0906 5500 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 17:04:59.0906 5500 Cdfs - ok 17:04:59.0953 5500 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 17:04:59.0953 5500 Cdrom - ok 17:05:00.0000 5500 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys 17:05:00.0000 5500 cercsr6 - ok 17:05:00.0015 5500 Changer - ok 17:05:00.0062 5500 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 17:05:00.0062 5500 CmBatt - ok 17:05:00.0078 5500 CmdIde - ok 17:05:00.0093 5500 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys 17:05:00.0093 5500 Compbatt - ok 17:05:00.0125 5500 Cpqarray - ok 17:05:00.0140 5500 ctsfm2k - ok 17:05:00.0156 5500 CTUSFSYN - ok 17:05:00.0171 5500 dac2w2k - ok 17:05:00.0187 5500 dac960nt - ok 17:05:00.0203 5500 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 17:05:00.0203 5500 Disk - ok 17:05:00.0312 5500 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys 17:05:00.0312 5500 dmboot - ok 17:05:00.0343 5500 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\drivers\dmio.sys 17:05:00.0359 5500 dmio - ok 17:05:00.0375 5500 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 17:05:00.0375 5500 dmload - ok 17:05:00.0406 5500 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 17:05:00.0406 5500 DMusic - ok 17:05:00.0437 5500 dpti2o - ok 17:05:00.0468 5500 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 17:05:00.0484 5500 drmkaud - ok 17:05:00.0562 5500 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys 17:05:00.0562 5500 DSproct - ok 17:05:00.0625 5500 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys 17:05:00.0625 5500 dsunidrv - ok 17:05:00.0812 5500 F-Secure Gatekeeper (29d12e1e45d93b45d2598e2663bbeff4) C:\Program Files\F-Secure\Anti-Virus\minifilter\fsgk.sys 17:05:00.0812 5500 F-Secure Gatekeeper - ok 17:05:00.0906 5500 F-Secure HIPS (6137a461cea0277ef62f53df4badf7d0) C:\Program Files\F-Secure\HIPS\drivers\fshs.sys 17:05:00.0906 5500 F-Secure HIPS - ok 17:05:00.0953 5500 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 17:05:00.0968 5500 Fastfat - ok 17:05:00.0984 5500 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 17:05:00.0984 5500 Fdc - ok 17:05:01.0046 5500 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys 17:05:01.0046 5500 Fips - ok 17:05:01.0078 5500 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 17:05:01.0078 5500 Flpydisk - ok 17:05:01.0109 5500 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 17:05:01.0109 5500 FltMgr - ok 17:05:01.0156 5500 FNETTBOH (a9e2df40ed6ec9e8885da72b6e1818f3) C:\WINDOWS\system32\drivers\FNETTBOH.SYS 17:05:01.0156 5500 FNETTBOH - ok 17:05:01.0187 5500 FNETURPX (784ffba7ee5c5f3a396407e4712f72f0) C:\WINDOWS\system32\drivers\FNETURPX.SYS 17:05:01.0187 5500 FNETURPX - ok 17:05:01.0250 5500 fsbts (343786e182b9c9ae3066e00dec650f50) C:\WINDOWS\system32\Drivers\fsbts.sys 17:05:01.0250 5500 fsbts - ok 17:05:01.0296 5500 FSFW (3b40b0703059461f6f739f4d88faa6f8) C:\WINDOWS\system32\drivers\fsdfw.sys 17:05:01.0296 5500 FSFW - ok 17:05:01.0312 5500 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 17:05:01.0312 5500 Fs_Rec - ok 17:05:01.0359 5500 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:05:01.0359 5500 Ftdisk - ok 17:05:01.0484 5500 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 17:05:01.0484 5500 GEARAspiWDM - ok 17:05:01.0515 5500 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 17:05:01.0515 5500 Gpc - ok 17:05:01.0531 5500 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 17:05:01.0531 5500 HDAudBus - ok 17:05:01.0578 5500 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 17:05:01.0578 5500 HidUsb - ok 17:05:01.0593 5500 hpn - ok 17:05:01.0687 5500 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys 17:05:01.0703 5500 HSF_DPV - ok 17:05:01.0718 5500 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys 17:05:01.0734 5500 HSXHWAZL - ok 17:05:01.0781 5500 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 17:05:01.0796 5500 HTTP - ok 17:05:01.0796 5500 i2omgmt - ok 17:05:01.0812 5500 i2omp - ok 17:05:01.0843 5500 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:05:01.0843 5500 i8042prt - ok 17:05:01.0953 5500 ialm (cc449157474d5e43daea7e20f52c635a) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 17:05:01.0968 5500 ialm - ok 17:05:02.0031 5500 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 17:05:02.0031 5500 Imapi - ok 17:05:02.0046 5500 ini910u - ok 17:05:02.0062 5500 IntelIde - ok 17:05:02.0109 5500 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys 17:05:02.0109 5500 intelppm - ok 17:05:02.0156 5500 iomdisk (9d7069d72c0c72952f05e1688a5ae89d) C:\WINDOWS\system32\DRIVERS\iomdisk.sys 17:05:02.0156 5500 iomdisk - ok 17:05:02.0187 5500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 17:05:02.0187 5500 Ip6Fw - ok 17:05:02.0218 5500 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:05:02.0218 5500 IpFilterDriver - ok 17:05:02.0250 5500 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 17:05:02.0250 5500 IpInIp - ok 17:05:02.0265 5500 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 17:05:02.0265 5500 IpNat - ok 17:05:02.0296 5500 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 17:05:02.0296 5500 IPSec - ok 17:05:02.0328 5500 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 17:05:02.0328 5500 IRENUM - ok 17:05:02.0343 5500 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys 17:05:02.0343 5500 isapnp - ok 17:05:02.0390 5500 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:05:02.0390 5500 Kbdclass - ok 17:05:02.0421 5500 kbdhid (b833b70fe639f01fb36cedabe57ef031) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 17:05:02.0421 5500 kbdhid - ok 17:05:02.0453 5500 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 17:05:02.0453 5500 kmixer - ok 17:05:02.0500 5500 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 17:05:02.0500 5500 KSecDD - ok 17:05:02.0515 5500 lbrtfdc - ok 17:05:02.0578 5500 mcdbus (f922b609524cf1ed66a1a109f3ce014f) C:\WINDOWS\system32\DRIVERS\mcdbus.sys 17:05:02.0578 5500 mcdbus - ok 17:05:02.0625 5500 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys 17:05:02.0625 5500 mdmxsdk - ok 17:05:02.0687 5500 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 17:05:02.0687 5500 mnmdd - ok 17:05:02.0734 5500 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys 17:05:02.0734 5500 Modem - ok 17:05:02.0843 5500 monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\monfilt.sys 17:05:02.0859 5500 monfilt - ok 17:05:02.0875 5500 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys 17:05:02.0890 5500 Mouclass - ok 17:05:02.0937 5500 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys 17:05:02.0937 5500 mouhid - ok 17:05:02.0968 5500 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 17:05:02.0968 5500 MountMgr - ok 17:05:02.0968 5500 mraid35x - ok 17:05:03.0000 5500 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:05:03.0000 5500 MRxDAV - ok 17:05:03.0062 5500 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:05:03.0062 5500 MRxSmb - ok 17:05:03.0109 5500 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 17:05:03.0109 5500 Msfs - ok 17:05:03.0140 5500 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 17:05:03.0140 5500 MSKSSRV - ok 17:05:03.0312 5500 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:05:03.0312 5500 MSPCLOCK - ok 17:05:03.0515 5500 MSPQM (398fad33f4b8654d5ba703ff53b2b02a) C:\WINDOWS\system32\drivers\MSPQM.sys 17:05:03.0515 5500 MSPQM - ok 17:05:03.0562 5500 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:05:03.0562 5500 mssmbios - ok 17:05:03.0609 5500 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 17:05:03.0609 5500 MSTEE - ok 17:05:03.0640 5500 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 17:05:03.0640 5500 Mup - ok 17:05:03.0687 5500 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 17:05:03.0687 5500 NABTSFEC - ok 17:05:03.0718 5500 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 17:05:03.0718 5500 NDIS - ok 17:05:03.0734 5500 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 17:05:03.0734 5500 NdisIP - ok 17:05:03.0796 5500 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:05:03.0796 5500 NdisTapi - ok 17:05:03.0812 5500 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:05:03.0812 5500 Ndisuio - ok 17:05:03.0828 5500 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:05:03.0828 5500 NdisWan - ok 17:05:03.0875 5500 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 17:05:03.0890 5500 NDProxy - ok 17:05:03.0937 5500 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 17:05:03.0937 5500 NetBIOS - ok 17:05:03.0968 5500 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 17:05:03.0968 5500 NetBT - ok 17:05:04.0093 5500 NETw3x32 (71371ed9086a3d65f43967c89634e9a9) C:\WINDOWS\system32\DRIVERS\NETw3x32.sys 17:05:04.0109 5500 NETw3x32 - ok 17:05:04.0250 5500 NETw4x32 (b5ab1108b377b5f3d37409fabda01453) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys 17:05:04.0281 5500 NETw4x32 - ok 17:05:04.0343 5500 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 17:05:04.0343 5500 NIC1394 - ok 17:05:04.0375 5500 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 17:05:04.0375 5500 Npfs - ok 17:05:04.0421 5500 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 17:05:04.0437 5500 Ntfs - ok 17:05:04.0468 5500 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 17:05:04.0468 5500 Null - ok 17:05:04.0531 5500 NWADI (091a1284aa583288b64dcd370d1b421e) C:\WINDOWS\system32\DRIVERS\NWADIenum.sys 17:05:04.0531 5500 NWADI - ok 17:05:04.0578 5500 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:05:04.0578 5500 NwlnkFlt - ok 17:05:04.0593 5500 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:05:04.0593 5500 NwlnkFwd - ok 17:05:04.0656 5500 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 17:05:04.0656 5500 ohci1394 - ok 17:05:04.0671 5500 ossrv - ok 17:05:04.0734 5500 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\drivers\Parport.sys 17:05:04.0734 5500 Parport - ok 17:05:04.0750 5500 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 17:05:04.0750 5500 PartMgr - ok 17:05:04.0781 5500 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys 17:05:04.0781 5500 ParVdm - ok 17:05:04.0812 5500 PCASp50 (803c8e7f4d00fe832c1f3871514fec85) C:\WINDOWS\system32\Drivers\PCASp50.sys 17:05:04.0812 5500 PCASp50 - ok 17:05:04.0859 5500 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 17:05:04.0859 5500 pccsmcfd - ok 17:05:04.0921 5500 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys 17:05:04.0921 5500 PCI - ok 17:05:04.0937 5500 PCIDump - ok 17:05:04.0984 5500 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys 17:05:05.0000 5500 PCIIde - ok 17:05:05.0046 5500 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys 17:05:05.0062 5500 Pcmcia - ok 17:05:05.0062 5500 PDCOMP - ok 17:05:05.0078 5500 PDFRAME - ok 17:05:05.0093 5500 PDRELI - ok 17:05:05.0109 5500 PDRFRAME - ok 17:05:05.0125 5500 perc2 - ok 17:05:05.0140 5500 perc2hib - ok 17:05:05.0203 5500 pfc (ed2e7f396b4098608c95bc3806bdf6fc) C:\WINDOWS\system32\drivers\pfc.sys 17:05:05.0203 5500 pfc - ok 17:05:05.0250 5500 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 17:05:05.0250 5500 PptpMiniport - ok 17:05:05.0281 5500 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 17:05:05.0296 5500 PSched - ok 17:05:05.0312 5500 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 17:05:05.0312 5500 Ptilink - ok 17:05:05.0328 5500 ql1080 - ok 17:05:05.0343 5500 Ql10wnt - ok 17:05:05.0359 5500 ql12160 - ok 17:05:05.0375 5500 ql1240 - ok 17:05:05.0390 5500 ql1280 - ok 17:05:05.0406 5500 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 17:05:05.0406 5500 RasAcd - ok 17:05:05.0421 5500 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:05:05.0421 5500 Rasl2tp - ok 17:05:05.0453 5500 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:05:05.0453 5500 RasPppoe - ok 17:05:05.0468 5500 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 17:05:05.0468 5500 Raspti - ok 17:05:05.0515 5500 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 17:05:05.0515 5500 Rdbss - ok 17:05:05.0531 5500 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:05:05.0531 5500 RDPCDD - ok 17:05:05.0562 5500 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:05:05.0562 5500 rdpdr - ok 17:05:05.0640 5500 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys 17:05:05.0640 5500 RDPWD - ok 17:05:05.0703 5500 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys 17:05:05.0703 5500 redbook - ok 17:05:05.0734 5500 RGFILERW - ok 17:05:05.0781 5500 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys 17:05:05.0781 5500 rimmptsk - ok 17:05:05.0796 5500 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys 17:05:05.0796 5500 rimsptsk - ok 17:05:05.0843 5500 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys 17:05:05.0843 5500 rismxdp - ok 17:05:05.0890 5500 s24trans (eadfb87f911a7a75d1b80617f92901e8) C:\WINDOWS\system32\DRIVERS\s24trans.sys 17:05:05.0890 5500 s24trans - ok 17:05:05.0937 5500 sbp2port (b244960e5a1db8e9d5d17086de37c1e4) C:\WINDOWS\system32\DRIVERS\sbp2port.sys 17:05:05.0937 5500 sbp2port - ok 17:05:05.0984 5500 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys 17:05:05.0984 5500 sdbus - ok 17:05:06.0046 5500 Secdrv (4756ca8ac897e1a7e55e422b3fd2d455) C:\WINDOWS\system32\DRIVERS\secdrv.sys 17:05:06.0046 5500 Secdrv - ok 17:05:06.0109 5500 Ser2pl (b490ad520257dda26c1d587a71e527b5) C:\WINDOWS\system32\DRIVERS\ser2pl.sys 17:05:06.0109 5500 Ser2pl - ok 17:05:06.0156 5500 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 17:05:06.0156 5500 Serenum - ok 17:05:06.0218 5500 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\drivers\Serial.sys 17:05:06.0218 5500 Serial - ok 17:05:06.0265 5500 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys 17:05:06.0265 5500 sffdisk - ok 17:05:06.0312 5500 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys 17:05:06.0312 5500 sffp_sd - ok 17:05:06.0343 5500 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 17:05:06.0343 5500 Sfloppy - ok 17:05:06.0375 5500 Simbad - ok 17:05:06.0406 5500 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 17:05:06.0406 5500 SLIP - ok 17:05:06.0421 5500 Sparrow - ok 17:05:06.0500 5500 SPC610NC (06d0e7c3500310a9349ce347ea410c0b) C:\WINDOWS\system32\DRIVERS\SPC610NC.SYS 17:05:06.0500 5500 SPC610NC - ok 17:05:06.0562 5500 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 17:05:06.0562 5500 splitter - ok 17:05:06.0593 5500 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys 17:05:06.0593 5500 sr - ok 17:05:06.0656 5500 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 17:05:06.0656 5500 Srv - ok 17:05:06.0765 5500 STHDA (951801dfb54d86f611f0af47825476f9) C:\WINDOWS\system32\drivers\sthda.sys 17:05:06.0765 5500 STHDA - ok 17:05:06.0828 5500 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 17:05:06.0828 5500 streamip - ok 17:05:06.0875 5500 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 17:05:06.0875 5500 swenum - ok 17:05:06.0906 5500 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 17:05:06.0906 5500 swmidi - ok 17:05:06.0921 5500 symc810 - ok 17:05:06.0937 5500 symc8xx - ok 17:05:06.0953 5500 sym_hi - ok 17:05:06.0953 5500 sym_u3 - ok 17:05:07.0031 5500 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys 17:05:07.0031 5500 SynTP - ok 17:05:07.0046 5500 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 17:05:07.0046 5500 sysaudio - ok 17:05:07.0125 5500 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 17:05:07.0125 5500 Tcpip - ok 17:05:07.0171 5500 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 17:05:07.0171 5500 TDPIPE - ok 17:05:07.0203 5500 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 17:05:07.0203 5500 TDTCP - ok 17:05:07.0250 5500 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 17:05:07.0250 5500 TermDD - ok 17:05:07.0265 5500 TosIde - ok 17:05:07.0312 5500 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 17:05:07.0312 5500 Udfs - ok 17:05:07.0328 5500 UIUSys - ok 17:05:07.0343 5500 ultra - ok 17:05:07.0406 5500 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 17:05:07.0406 5500 Update - ok 17:05:07.0468 5500 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:05:07.0468 5500 usbccgp - ok 17:05:07.0515 5500 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 17:05:07.0531 5500 usbehci - ok 17:05:07.0546 5500 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 17:05:07.0546 5500 usbhub - ok 17:05:07.0609 5500 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:05:07.0609 5500 usbscan - ok 17:05:07.0656 5500 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:05:07.0671 5500 USBSTOR - ok 17:05:07.0703 5500 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 17:05:07.0718 5500 usbuhci - ok 17:05:07.0750 5500 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 17:05:07.0750 5500 VgaSave - ok 17:05:07.0765 5500 ViaIde - ok 17:05:07.0812 5500 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys 17:05:07.0812 5500 VolSnap - ok 17:05:07.0906 5500 w39n51 (95c7421f8bafc85ba09d33364058937d) C:\WINDOWS\system32\DRIVERS\w39n51.sys 17:05:07.0921 5500 w39n51 - ok 17:05:07.0984 5500 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 17:05:07.0984 5500 Wanarp - ok 17:05:08.0000 5500 WDICA - ok 17:05:08.0046 5500 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 17:05:08.0046 5500 wdmaud - ok 17:05:08.0140 5500 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys 17:05:08.0156 5500 winachsf - ok 17:05:08.0203 5500 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 17:05:08.0203 5500 WmiAcpi - ok 17:05:08.0250 5500 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:05:08.0265 5500 WpdUsb - ok 17:05:08.0312 5500 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 17:05:08.0312 5500 WS2IFSL - ok 17:05:08.0375 5500 WsAudio_DeviceS(1) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(1).sys 17:05:08.0375 5500 WsAudio_DeviceS(1) - ok 17:05:08.0421 5500 WsAudio_DeviceS(2) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(2).sys 17:05:08.0421 5500 WsAudio_DeviceS(2) - ok 17:05:08.0468 5500 WsAudio_DeviceS(3) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(3).sys 17:05:08.0468 5500 WsAudio_DeviceS(3) - ok 17:05:08.0484 5500 WsAudio_DeviceS(4) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(4).sys 17:05:08.0500 5500 WsAudio_DeviceS(4) - ok 17:05:08.0546 5500 WsAudio_DeviceS(5) (4160cbe59d9b5be22e4c3897e8db9d56) C:\WINDOWS\system32\drivers\WsAudio_DeviceS(5).sys 17:05:08.0546 5500 WsAudio_DeviceS(5) - ok 17:05:08.0609 5500 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 17:05:08.0609 5500 WSTCODEC - ok 17:05:08.0656 5500 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:05:08.0656 5500 WudfPf - ok 17:05:08.0687 5500 WudfRd (f91ff1e51fca30b3c3981db7d5924252) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 17:05:08.0687 5500 WudfRd - ok 17:05:08.0734 5500 MBR (0x1B8) (e7d69fbcd87e8b5ad9d652d5ffe0af4c) \Device\Harddisk0\DR0 17:05:08.0765 5500 \Device\Harddisk0\DR0 - ok 17:05:08.0781 5500 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR5 17:05:08.0781 5500 \Device\Harddisk1\DR5 - ok 17:05:08.0796 5500 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk2\DR7 17:05:08.0796 5500 \Device\Harddisk2\DR7 - ok 17:05:08.0828 5500 Boot (0x1200) (f0ffa4494d1428cacdb3b2bea1920eeb) \Device\Harddisk0\DR0\Partition0 17:05:08.0828 5500 \Device\Harddisk0\DR0\Partition0 - ok 17:05:08.0859 5500 Boot (0x1200) (07d1cc5232ff7546d279e5581bfeecab) \Device\Harddisk0\DR0\Partition1 17:05:08.0859 5500 \Device\Harddisk0\DR0\Partition1 - ok 17:05:08.0859 5500 Boot (0x1200) (02bdd5cd96c189715261d70d30b506cf) \Device\Harddisk1\DR5\Partition0 17:05:08.0859 5500 \Device\Harddisk1\DR5\Partition0 - ok 17:05:08.0875 5500 Boot (0x1200) (3a7fc3eb59f839b6a1282447a4814a9e) \Device\Harddisk2\DR7\Partition0 17:05:08.0875 5500 \Device\Harddisk2\DR7\Partition0 - ok 17:05:08.0875 5500 ============================================================ 17:05:08.0875 5500 Scan finished 17:05:08.0875 5500 ============================================================ 17:05:08.0890 5740 Detected object count: 0 17:05:08.0890 5740 Actual detected object count: 0 17:05:12.0359 4728 Deinitialize success
  • System Restore Point Check: TDSSKiller Starter Restore Point Created Succesfully ============================================== Older logs ============================================== C:\TDSSStarter\Report_20121303_1706_.log C:\TDSSKiller.2.7.19.0_13.03.2012_17.03.31_log.txt ============================================== EOF
  • Oké. Alles ziet er goed uit. Dan wordt het nu tijd ComboFix te gaan doen.

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.