Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Is mijn computer veilig?

Abraham54
34 antwoorden
  • Hallo.

    Ik heb en gebruik op mijn W7-desktop-pc AVG, Spybot en Ccleaner. Voorts doe ik regelmatig alle updates binnenhalen en installeren; handmatig wat een bewuste keuze is.

    Feitelijk heeft mijn pc geen trubbels en bovengenoemde progjes vinden ook nooit iets tijdens het uitvoeren van een scan.
    Maar… kan ik wel zeggen dat mijn computer veilig is dankzij deze progjes, of ben ik mezelf voor de gek aan het houden misschien??
    Ik doe (nog) niet aan internetbankieren, wel gebruik ik Paypal en ook daarmee nooit problemen mee gehad.
  • Het antwoord op je vraag is eigenlijk heel eenvoudig, je computer voldoet aan de gewone elementaire veiligheidseisen. Of hij daarmee ook veilig is?
    De uiteindelijke veiligheid hangt helemaal af van de gezonde argwaan van de gebruiker. Als je nooit als een gek op elke link klikt die je niet voor honderd procent vertrouwt en niet zomaar elke e-mail opent van een onbekende afzender, dan ben je voor 99,99 % veilig.
    Bij minder gezond verstand gebruik is zelfs het meest uitgebreide pakket zinloos.
    Mocht je b.v. de pech hebben dat je e-mailadres in handen is gevallen van spammers, de meeste spam zie je gewoon op afstand dat het niet deugt. Het toch uit nieuwsgierigheid openen is dan gewoon vragen om problemen.

    Edit:
    En dan vind je op deze pagina van C!T toevallig een dubieuze advertentie die je aanspoort om te beleggen in dure wijnen.
  • Dank voor het antwoord. Doe ik het toch niet slecht :)
    Inderdaad ben ik wel wat kritisch en argwanend m.b.t. mij onbekende websites en mail wat in mijn inbox is beland.
  • Hallo Charles, heb je in Spybot ook Teatimer en SD-Helper geactiveerd?
    Zoja: dan Teatimer deaktiveren!

    En dan dit: de virusherkenning van Spybot is al tijden ondermaats.
    Een veel betere ondemandscanner is Malwarebytes MBAM!

    [b:096b26e551]Welk programma[/b:096b26e551]: [b:096b26e551]Malwarebytes MBAM[/b:096b26e551][/color:096b26e551]
    [b:096b26e551]Waarvoor/waarom[/b:096b26e551]: gratis specialistische ondemandscanner om Windows snel te onderzoeken op- en te ontdoen van spy- & malware.
    [b:096b26e551]Moeilijkheidsgraad[/b:096b26e551]: geen.

    [b:096b26e551]Download Malwarebytes MBAM via één van deze locaties[/b:096b26e551]:
    [list:096b26e551][*:096b26e551][b:096b26e551]Softpedia.com[/b:096b26e551][*:096b26e551][b:096b26e551]Majorgeeks.com[/b:096b26e551][/list:u:096b26e551]
    [b:096b26e551]Allereerst[/b:096b26e551]:[list:096b26e551][*:096b26e551] Al meteen na de installatie wil 'MBAM' zijn database opwaarderen – toestaan dus.
    [*:096b26e551] Ook bij herhaald gebruik: eerst 'MBAM' updaten via de tab 'Update'![/list:u:096b26e551]
    [b:096b26e551]Malwarebytes MBAM opstarten[/b:096b26e551]:
    [list:096b26e551][*:096b26e551] [b:096b26e551]Sluit nu eerst alle nog openstaande programmavensters![/color:096b26e551][/b:096b26e551]
    [list:096b26e551][*:096b26e551][b:096b26e551]Windows 2000[/color:096b26e551][/b:096b26e551] en [b:096b26e551]Windows XP[/b:096b26e551][/color:096b26e551]: dubbelklik op de MBAM -snelkoppeling.
    [*:096b26e551][b:096b26e551]Windows Vista[/b:096b26e551][/color:096b26e551] en [b:096b26e551]Windows 7[/b:096b26e551][/color:096b26e551]: rechtsklik op de MBAM-snelkoppeling en dan kiezen voor Als Administrator uitvoeren.[/list:u:096b26e551][/list:u:096b26e551]
    [list:096b26e551][*:096b26e551][b:096b26e551]Let op:[/b:096b26e551]
    [list:096b26e551][*:096b26e551]Malwarebytes verstrekt nu de volledige versie van MBAM.
    [*:096b26e551]Bij de eerste start kijg je de mogelijkheid de gratis probeerversie van Malwarebytes AntiMalware tijdelijk te gebruiken.
    [*:096b26e551]Onafhankelijk van welke antivirusprogramma in jouw Windows adviseer ik dan voor de gratis versie te gaan en dus het vinkje bij de probeerversie te verwijderen.
    [*:096b26e551]Zodoende zal MBAM als gratis versie verder te gebruiken zijn[/list:u:096b26e551]
    [img:096b26e551]http://www.imgdumper.nl/uploads5/5006440296e1a/5006440291bd9-MBAM_4.jpg[/img:096b26e551]

    [*:096b26e551][b:096b26e551]Doe ook nog het volgende:[/b:096b26e551]
    [list:096b26e551][*:096b26e551]Zodra het programma gestart is, ga dan naar het tabblad "[b:096b26e551]Instellingen[/b:096b26e551]".
    [*:096b26e551]Vink hier aan: "[b:096b26e551]Sluit Internet Explorer tijdens verwijdering van malware[/b:096b26e551]".[/list:u:096b26e551][/list:u:096b26e551]

    [b:096b26e551]Scannen[/b:096b26e551]:
    [list:096b26e551][*:096b26e551] Bij het starten van 'MBAM' kies je voor 'Snelle Scan'.
    [*:096b26e551]Het scannen kan een tijdje duren, dus wees geduldig. Indien de scan voltooid is, klik dan op de knop 'OK'.
    [*:096b26e551]Klik daarna op de knop 'Bekijk Resultaten' om de resultaten te zien.[/list:u:096b26e551]
    [b:096b26e551]Infecties gevonden[/b:096b26e551]:
    [list:096b26e551][*:096b26e551]Klik nu eerst op OK om de melding weg te klikken
    [*:096b26e551]Klik vervolgens rechtsonder op de knop Bekijk resultaten.
    [*:096b26e551]Zorg er nu voor dat alle gevonden infecties aangevinkt zijn, en klik linksonder op Verwijder geselecteerde.
    [*:096b26e551]Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
    [*:096b26e551]Indien 'MBAM' moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven – dan telkens op 'OK' klikken!
    [*:096b26e551]Daarna zal 'MBAM' vragen om de Computer opnieuw op te starten - dus sta toe dat de computer opnieuw opgestart wordt.[/list:u:096b26e551]
    [b:096b26e551]MBAM-Log[/b:096b26e551]:
    [list:096b26e551][*:096b26e551] Het log wordt automatisch bewaard door 'MBAM' en dat kan je terugvinden door in het hoofdmenu van 'MBAM' op de tab 'Logbestanden' te klikken.[/list:u:096b26e551]
    [b:096b26e551]Post aansluitend in je volgende bericht de inhoud van het MBAM-log.[/b:096b26e551][/color:096b26e551]
  • Ik heb bovenstaand programma laten draaien, maar restarten werd niet gevraagd…
    Hieronder het -nogal korte- logje:

    Malwarebytes Anti-Malware 1.65.1.1000
    www.malwarebytes.org

    Databaseversie: v2012.11.03.03

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    ikke :: MIJN_PC [administrator]

    03-11-2012 13:20
    mbam-log-2012-11-03 (13-20-57).txt

    Scantype: Snelle scan
    Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM | P2P
    Uitgeschakelde scanopties:
    Objecten gescand: 191350
    Verstreken tijd: 1 minuut/minuten, 58 seconde(n)

    Geheugenprocessen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Geheugenmodulen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registersleutels gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerwaarden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerdata gedetecteerd: 1
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Slecht: (0) Goed: (1) -> Succesvol in quarantaine geplaatst en gerepareerd.

    Mappen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Bestanden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    (einde)
  • Laten we kijken of er nog vieze toolbar instellingen enz. aanwezig zijn:

    [b:7f2bd65f1f]Welk programma[/b:7f2bd65f1f]: [b:7f2bd65f1f]AdwCleaner[/b:7f2bd65f1f][/color:7f2bd65f1f]
    [b:7f2bd65f1f]Waarvoor/waarom[/b:7f2bd65f1f]: Scanner om Windows op te schonen en te ontdoen van malafide toolbars.
    [b:7f2bd65f1f]Moeilijkheidsgraad[/b:7f2bd65f1f]: Geen.
    [b:7f2bd65f1f]Downloadlokatie[/b:7f2bd65f1f]: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen!
    [b:7f2bd65f1f]Download[/b:7f2bd65f1f]: AdwCleaner by Xplode.

    [b:7f2bd65f1f]Opmerkingen[/b:7f2bd65f1f]:
    [list:7f2bd65f1f][*:7f2bd65f1f][b:7f2bd65f1f] Alle openstaande programma's en webpagina's dienen afgesloten te zijn[/b:7f2bd65f1f][/color:7f2bd65f1f].
    [*:7f2bd65f1f]Dat na opstarten van [b:7f2bd65f1f]AdwCleaner[/b:7f2bd65f1f][/color:7f2bd65f1f] de snelkoppelingen verdwijnen van bureaublad, is normaal.[/list:u:7f2bd65f1f]
    [b:7f2bd65f1f]AdwCleaner[/color:7f2bd65f1f] opstarten[/b:7f2bd65f1f]:
    [list:7f2bd65f1f][*:7f2bd65f1f][b:7f2bd65f1f]Windows 2000[/color:7f2bd65f1f][/b:7f2bd65f1f] en [b:7f2bd65f1f]Windows XP[/b:7f2bd65f1f][/color:7f2bd65f1f]: dubbelklik op adwcleaner.exe.
    [*:7f2bd65f1f][b:7f2bd65f1f]Windows Vista[/b:7f2bd65f1f][/color:7f2bd65f1f] en [b:7f2bd65f1f]Windows 7[/b:7f2bd65f1f][/color:7f2bd65f1f]: via rechtsklik op adwcleaner.exe en kies voor "Als Administrator uitvoeren".[/list:u:7f2bd65f1f]
    [b:7f2bd65f1f]AdwCleaner[/color:7f2bd65f1f] is opgestart[/b:7f2bd65f1f]:
    [list:7f2bd65f1f][*:7f2bd65f1f]Klik op de knop [b:7f2bd65f1f]Verwijderen[/b:7f2bd65f1f][/color:7f2bd65f1f]
    [*:7f2bd65f1f]Klik bij [b:7f2bd65f1f]AdwCleaner – Afsluiting van de programma's[/b:7f2bd65f1f][/color:7f2bd65f1f] op [b:7f2bd65f1f]OK[/b:7f2bd65f1f]
    [*:7f2bd65f1f]Klik bij [b:7f2bd65f1f]AdwCleaner – Herstarten noodzakelijk[/b:7f2bd65f1f][/color:7f2bd65f1f] op [b:7f2bd65f1f]OK[/b:7f2bd65f1f][/list:u:7f2bd65f1f]
    [b:7f2bd65f1f]AdwCleaner[/color:7f2bd65f1f] logbestand[/b:7f2bd65f1f]:
    [list:7f2bd65f1f][*:7f2bd65f1f]Nadat de PC opnieuw is opgestart, opent een logfile.
    [*:7f2bd65f1f]Post vervolgens de inhoud van dit log in je volgende bericht.[/list:u:7f2bd65f1f]
  • [quote:709578df24="Abraham54"]Laten we kijken of er nog vieze toolbar instellingen enz. aanwezig zijn:[/quote:709578df24]
    Hier maak ik me geen zorgen over. Om het simpele feit dat ik niets van moet hebben van toolbars. Ben er altijd alert op omdat diverse programma's dit ingebakken hebben, maar dan haal ik het vinkje juist weg :lol:
  • Gebruik het tool toch maar om zeker te gaan.
    Want indien je via Softonic software hebt gedownload, kan er wel een en ander in jouw Windows zitten!
  • [quote:b0dcb6c745="Abraham54"]Gebruik het tool toch maar om zeker te gaan.
    Want indien je via Softonic software hebt gedownload, kan er wel een en ander in jouw Windows zitten![/quote:b0dcb6c745]
    [quote:b0dcb6c745]Dat na opstarten van AdwCleaner de snelkoppelingen verdwijnen van bureaublad, is normaal.[/quote:b0dcb6c745]
    Ow, dat vind ik juist niet normaal…. En, hoe krijg ik die allemaal weer terug??
  • Die verschijnen vanzelf weer bij het opnieuw opstarten!
  • # AdwCleaner v2.006 - Verslag gemaakt op 03/11/2012 om 21:20:02
    # Geactualiseerd op 30/10/2012 door Xplode
    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Gebruiker : ikke - MIJN_PC
    # Opstarten Modus : Normale modus
    # Gelanceerd vanaf : C:\adwcleaner.exe
    # Optie [Verwijderen]


    ***** [Diensten] *****


    ***** [Files / Mappen] *****

    Map Verwijdert : C:\Users\ikke\AppData\Roaming\Mozilla\Firefox\Profiles\13tol7rs.default\Conduit
    Map Verwijdert : C:\Users\ikke\AppData\Roaming\Mozilla\Firefox\Profiles\13tol7rs.default\ConduitEngine

    ***** [Register] *****

    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
    Sleutel Verwijdert : HKCU\Software\Softonic
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
    Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}]

    ***** [Browsers] *****

    -\\ Internet Explorer v9.0.8112.16421

    [OK] Het register bevat geen enkele ongeoorloofde invoer.

    -\\ Mozilla Firefox v16.0.1 (nl)

    Profielnaam : default
    File : C:\Users\ikke\AppData\Roaming\Mozilla\Firefox\Profiles\13tol7rs.default\prefs.js

    Verwijdert : user_pref("CT1142434..clientLogIsEnabled", true);
    Verwijdert : user_pref("CT1142434..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[…]
    Verwijdert : user_pref("CT1142434..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[…]
    Verwijdert : user_pref("CT1142434.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
    Verwijdert : user_pref("CT1142434.AppTrackingLastCheckTime", "Fri Mar 11 2011 21:55:44 GMT+0100");
    Verwijdert : user_pref("CT1142434.CTID", "CT1142434");
    Verwijdert : user_pref("CT1142434.CurrentServerDate", "11-3-2011");
    Verwijdert : user_pref("CT1142434.DialogsAlignMode", "LTR");
    Verwijdert : user_pref("CT1142434.DialogsGetterLastCheckTime", "Wed Mar 09 2011 18:02:20 GMT+0100");
    Verwijdert : user_pref("CT1142434.DownloadReferralCookieData", "");
    Verwijdert : user_pref("CT1142434.EMailNotifierCheckInterval", "10");
    Verwijdert : user_pref("CT1142434.EMailNotifierLabelLength", 5);
    Verwijdert : user_pref("CT1142434.EMailNotifierPollDate", "Fri Mar 11 2011 22:57:48 GMT+0100");
    Verwijdert : user_pref("CT1142434.EMailNotifierSound", "C:\\Windows\\Media\
    otify.wav");
    Verwijdert : user_pref("CT1142434.EnableClickToSearchBox", false);
    Verwijdert : user_pref("CT1142434.EnableSearchHistory", false);
    Verwijdert : user_pref("CT1142434.EnableSearchSuggest", false);
    Verwijdert : user_pref("CT1142434.FeedLastCount128310532959950927", 397);
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281434", "Thu Nov 18 2010 17:23:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281435", "Thu Nov 18 2010 17:23:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281436", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281437", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281438", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281440", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281441", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281448", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281449", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128438076084281450", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128602241715400083", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128615453827932114", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128641067326825683", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128698049183969143", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128844595886093873", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128852531378813074", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate128855931728863207", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate7044458", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate9119346", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate9119347", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate9119348", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedPollDate9119349", "Thu Nov 18 2010 17:23:21 GMT+0100");
    Verwijdert : user_pref("CT1142434.FeedTTL128438076084281435", 10);
    Verwijdert : user_pref("CT1142434.FirstServerDate", "18-11-2010");
    Verwijdert : user_pref("CT1142434.FirstTime", true);
    Verwijdert : user_pref("CT1142434.FirstTimeFF3", true);
    Verwijdert : user_pref("CT1142434.FixPageNotFoundErrors", true);
    Verwijdert : user_pref("CT1142434.GroupingServerCheckInterval", 1440);
    Verwijdert : user_pref("CT1142434.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
    Verwijdert : user_pref("CT1142434.HasUserGlobalKeys", true);
    Verwijdert : user_pref("CT1142434.Initialize", true);
    Verwijdert : user_pref("CT1142434.InitializeCommonPrefs", true);
    Verwijdert : user_pref("CT1142434.InstallationAndCookieDataSentCount", 3);
    Verwijdert : user_pref("CT1142434.InstalledDate", "Thu Nov 18 2010 17:23:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.InvalidateCache", false);
    Verwijdert : user_pref("CT1142434.IsGrouping", false);
    Verwijdert : user_pref("CT1142434.IsMulticommunity", false);
    Verwijdert : user_pref("CT1142434.IsOpenThankYouPage", true);
    Verwijdert : user_pref("CT1142434.IsOpenUninstallPage", true);
    Verwijdert : user_pref("CT1142434.LanguagePackLastCheckTime", "Fri Mar 11 2011 17:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.LanguagePackReloadIntervalMM", 1440);
    Verwijdert : user_pref("CT1142434.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[…]
    Verwijdert : user_pref("CT1142434.LastLogin_3.2.4.0", "Mon Jan 17 2011 13:40:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.LastLogin_3.3.2.1", "Fri Mar 11 2011 21:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.LatestVersion", "3.2.5.2");
    Verwijdert : user_pref("CT1142434.Locale", "en-us");
    Verwijdert : user_pref("CT1142434.MCDetectTooltipHeight", "83");
    Verwijdert : user_pref("CT1142434.MCDetectTooltipShow", false);
    Verwijdert : user_pref("CT1142434.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@
    ank/tooltip/?version=1");
    Verwijdert : user_pref("CT1142434.MCDetectTooltipWidth", "295");
    Verwijdert : user_pref("CT1142434.RadioIsPodcast", true);
    Verwijdert : user_pref("CT1142434.RadioLastCheckTime", "Thu Nov 18 2010 17:23:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.RadioLastUpdateIPServer", "0");
    Verwijdert : user_pref("CT1142434.RadioLastUpdateServer", "128929877726170000");
    Verwijdert : user_pref("CT1142434.RadioMediaID", "7044458");
    Verwijdert : user_pref("CT1142434.RadioMediaType", "Media Player");
    Verwijdert : user_pref("CT1142434.RadioMenuSelectedID", "EBRadioPodcastPreffix7044458-0");
    Verwijdert : user_pref("CT1142434.RadioStationName", "SolderSmoke127");
    Verwijdert : user_pref("CT1142434.RadioStationURL", "hxxp://www.soldersmoke.com/soldersmoke127.mp3");
    Verwijdert : user_pref("CT1142434.SHRINK_TOOLBAR", 1);
    Verwijdert : user_pref("CT1142434.SearchBackToDefaultEngine", false);
    Verwijdert : user_pref("CT1142434.SearchBoxWidth", 100);
    Verwijdert : user_pref("CT1142434.SearchFromAddressBarIsInit", true);
    Verwijdert : user_pref("CT1142434.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT114[…]
    Verwijdert : user_pref("CT1142434.SearchInNewTabEnabled", true);
    Verwijdert : user_pref("CT1142434.SearchInNewTabIntervalMM", 1440);
    Verwijdert : user_pref("CT1142434.SearchInNewTabLastCheckTime", "Fri Mar 11 2011 17:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[…]
    Verwijdert : user_pref("CT1142434.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[…]
    Verwijdert : user_pref("CT1142434.SearchInNewTabUserEnabled", false);
    Verwijdert : user_pref("CT1142434.ServiceMapLastCheckTime", "Fri Mar 11 2011 17:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.SettingsLastCheckTime", "Fri Mar 11 2011 20:47:48 GMT+0100");
    Verwijdert : user_pref("CT1142434.SettingsLastUpdate", "1299476695");
    Verwijdert : user_pref("CT1142434.ThirdPartyComponentsInterval", 504);
    Verwijdert : user_pref("CT1142434.ThirdPartyComponentsLastCheck", "Wed Mar 09 2011 18:02:19 GMT+0100");
    Verwijdert : user_pref("CT1142434.ThirdPartyComponentsLastUpdate", "1246790578");
    Verwijdert : user_pref("CT1142434.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1142434");
    Verwijdert : user_pref("CT1142434.UserID", "UN50916926785409022");
    Verwijdert : user_pref("CT1142434.ValidationData_Toolbar", 1);
    Verwijdert : user_pref("CT1142434.WeatherNetwork", "");
    Verwijdert : user_pref("CT1142434.WeatherPollDate", "Fri Mar 11 2011 17:55:35 GMT+0100");
    Verwijdert : user_pref("CT1142434.WeatherUnit", "C");
    Verwijdert : user_pref("CT1142434.alertChannelId", "5219");
    Verwijdert : user_pref("CT1142434.components.1000048", false);
    Verwijdert : user_pref("CT1142434.components.1000082", false);
    Verwijdert : user_pref("CT1142434.components.1000234", false);
    Verwijdert : user_pref("CT1142434.components.128310532836044676", false);
    Verwijdert : user_pref("CT1142434.components.128310532959950927", false);
    Verwijdert : user_pref("CT1142434.components.128310562102450776", false);
    Verwijdert : user_pref("CT1142434.components.128310725223544710", false);
    Verwijdert : user_pref("CT1142434.components.128310734362763181", false);
    Verwijdert : user_pref("CT1142434.components.128311716593081623", false);
    Verwijdert : user_pref("CT1142434.components.128311853912638123", false);
    Verwijdert : user_pref("CT1142434.components.128548638653669655", false);
    Verwijdert : user_pref("CT1142434.components.128830791194319325", false);
    Verwijdert : user_pref("CT1142434.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.[…]
    Verwijdert : user_pref("CT1142434.globalFirstTimeInfoLastCheckTime", "Fri Mar 11 2011 21:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.isAppTrackingManagerOn", true);
    Verwijdert : user_pref("CT1142434.myStuffEnabled", true);
    Verwijdert : user_pref("CT1142434.myStuffPublihserMinWidth", 400);
    Verwijdert : user_pref("CT1142434.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[…]
    Verwijdert : user_pref("CT1142434.myStuffServiceIntervalMM", 1440);
    Verwijdert : user_pref("CT1142434.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[…]
    Verwijdert : user_pref("CT1142434.oldAppsList", "128344668875263134,128310532294950884,1000048,128311853912638123[…]
    Verwijdert : user_pref("CT1142434.testingCtid", "");
    Verwijdert : user_pref("CT1142434.toolbarAppMetaDataLastCheckTime", "Fri Mar 11 2011 17:55:34 GMT+0100");
    Verwijdert : user_pref("CT1142434.toolbarContextMenuLastCheckTime", "Thu Nov 18 2010 17:23:15 GMT+0100");
    Verwijdert : user_pref("CT1142434.usageEnabled", false);
    Verwijdert : user_pref("CT1142434.usagesFlag", 2);
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/?aid=5219&fid=5199", "\"0\"");
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/?aid=909619&fid=905414", "\"0\""[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com
    oot/5219/5199/NL", "\"0\"");
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com
    oot/909619/905414/NL", "\"0\"")[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1142434", […]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.app.conduit-services.com/apps/TranslatedApps.ash[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.engine.conduit-services.com/apps/TranslatedApps.[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.2[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1142434",[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63428984078257[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=11/8/20[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=12/21/2[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=12/27/2[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=12/30/2[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT1142434&octid=[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com
    oot/CT1142434/CT1142434[…]
    Verwijdert : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"[…]
    Verwijdert : user_pref("CommunityToolbar.EngineOwner", "CT1142434");
    Verwijdert : user_pref("CommunityToolbar.EngineOwnerGuid", "{7adf87fb-c108-4a73-8135-1cca9779fb5b}");
    Verwijdert : user_pref("CommunityToolbar.EngineOwnerToolbarId", "hamlinks");
    Verwijdert : user_pref("CommunityToolbar.IsEngineShown", true);
    Verwijdert : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
    Verwijdert : user_pref("CommunityToolbar.OriginalEngineOwner", "CT1142434");
    Verwijdert : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{7adf87fb-c108-4a73-8135-1cca9779fb5b}");
    Verwijdert : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "hamlinks");
    Verwijdert : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale
    egion.pr[…]
    Verwijdert : user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT1142434");
    Verwijdert : user_pref("CommunityToolbar.ToolbarsList2", "CT1142434");
    Verwijdert : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri Mar 11 2011 17:53:16 GMT+01[…]
    Verwijdert : user_pref("CommunityToolbar.alert.alertEnabled", false);
    Verwijdert : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
    Verwijdert : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Wed Mar 09 2011 18:02:29 GMT+0100");
    Verwijdert : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Verwijdert : user_pref("CommunityToolbar.alert.locale", "en");
    Verwijdert : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
    Verwijdert : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Mar 11 2011 17:53:14 GMT+0100");
    Verwijdert : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
    Verwijdert : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
    Verwijdert : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Verwijdert : user_pref("CommunityToolbar.alert.showTrayIcon", false);
    Verwijdert : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
    Verwijdert : user_pref("CommunityToolbar.alert.userId", "c2e8d7b6-c17f-49bd-844c-d4efedea116b");
    Verwijdert : user_pref("CommunityToolbar.globalUserId", "71583f9e-0d4a-448f-8f9c-9c83572cd9ed");
    Verwijdert : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
    Verwijdert : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
    Verwijdert : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Fri Mar 11 2011 17:53:25 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.FirstServerDate", "11/18/2010 18");
    Verwijdert : user_pref("ConduitEngine.FirstTime", true);
    Verwijdert : user_pref("ConduitEngine.FirstTimeFF3", true);
    Verwijdert : user_pref("ConduitEngine.HasUserGlobalKeys", true);
    Verwijdert : user_pref("ConduitEngine.HideEngineAfterRestart", true);
    Verwijdert : user_pref("ConduitEngine.Initialize", true);
    Verwijdert : user_pref("ConduitEngine.InitializeCommonPrefs", true);
    Verwijdert : user_pref("ConduitEngine.InstalledDate", "Thu Nov 18 2010 17:23:14 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.IsMulticommunity", false);
    Verwijdert : user_pref("ConduitEngine.IsOpenThankYouPage", false);
    Verwijdert : user_pref("ConduitEngine.IsOpenUninstallPage", true);
    Verwijdert : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.LastLogin_3.2.4.0", "Mon Jan 17 2011 13:40:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.LastLogin_3.3.2.1", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.PublisherContainerWidth", 0);
    Verwijdert : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
    Verwijdert : user_pref("ConduitEngine.SettingsLastCheckTime", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.UserID", "UN68143937815336269");
    Verwijdert : user_pref("ConduitEngine.approveUntrustedApps", true);
    Verwijdert : user_pref("ConduitEngine.componentAlertEnabled", false);
    Verwijdert : user_pref("ConduitEngine.engineLocale", "nl");
    Verwijdert : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Fri Mar 11 2011 17:53:15 GMT+0100");
    Verwijdert : user_pref("ConduitEngine.initDone", true);
    Verwijdert : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
    Verwijdert : user_pref("ConduitEngine.isDetectionEnabled", false);
    Verwijdert : user_pref("ConduitEngine.usageEnabled", false);

    *************************

    AdwCleaner[S1].txt - [19343 octets] - [03/11/2012 21:20:02]

    ########## EOF - C:\AdwCleaner[S1].txt - [19404 octets] ##########
  • Dat was dus echt nodig.
    Indien jij het wenst, kunnen we jouw Windows nog verder onderzoeken en opschonen.
  • AdwCleaner heeft inderdaad een flink lijstje geproduceerd :)
    Dat is dus daadwerkelijk allemaal gedeleted, begrijp ik en kan je me kort vertellen wat dat allemaal was?

    Doe maar een voorstel voor de volgende fase en dan zal ik kijken wat ik daarmee ga doen.
  • De volgende stap wordt diepe inkijk:

    [b:634d995652]Welk programma[/b:634d995652]: [b:634d995652]ComboFix[/b:634d995652][/color:634d995652]
    [b:634d995652]Waarvoor/waarom[/b:634d995652]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en op te schonen.
    [b:634d995652]Moeilijkheidsgraad[/b:634d995652]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
    [b:634d995652]Downloadlokatie[/b:634d995652]: Dit programma absoluut naar het bureaublad downloaden!
    [b:634d995652]Download ComboFix via één van deze locaties[/b:634d995652]:
    [list:634d995652][*:634d995652][b:634d995652]Bleepingcomputer[/b:634d995652]
    [*:634d995652][b:634d995652]ForoSpyware[/b:634d995652]
    [*:634d995652][b:634d995652]Geekstogo[/b:634d995652][/list:u:634d995652]
    [b:634d995652]Hier[/color:634d995652][/b:634d995652] zie je hoe je ComboFix moet gebruiken.

    Antivirusprogramma en actieve malwarescanners dienen al voor je ComboFix start gedeaktiveert zijn!
    [b:634d995652]Hier[/color:634d995652][/b:634d995652] en [b:634d995652]hier[/color:634d995652][/b:634d995652] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

    [b:634d995652]Opmerkingen[/b:634d995652]:
    [list:634d995652][*:634d995652]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.
    [*:634d995652]Indien ComboFix een melding geeft over Zero-acces, meld dat vervolgens erbij in je nieuwe bericht.[/list:u:634d995652]
    [b:634d995652]ComboFix opstarten[/b:634d995652]:
    [list:634d995652][*:634d995652][b:634d995652]Windows 2000[/color:634d995652][/b:634d995652] en [b:634d995652]Windows XP[/b:634d995652][/color:634d995652]: dubbelklik op ComboFix.exe.
    [*:634d995652][b:634d995652]Windows Vista[/b:634d995652][/color:634d995652] en [b:634d995652]Windows 7[/b:634d995652][/color:634d995652]: via rechtsklik op ComboFix.exe en kies voor "Als Administrator uitvoeren".[/list:u:634d995652]
    [b:634d995652]ComboFix is opgestart[/b:634d995652]:
    [list:634d995652][*:634d995652]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
    [*:634d995652]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen!
    [*:634d995652]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
    [*:634d995652]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
    [*:634d995652]Post de inhoud van dit logbestand in je volgende bericht.
    [*:634d995652]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:634d995652]
    [b:634d995652]Belangrijke opmerking[/b:634d995652]:
    [list:634d995652][*:634d995652][b:634d995652]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:634d995652][/b:634d995652]
    [*:634d995652][b:634d995652]Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.[/color:634d995652][/b:634d995652]
    [*:634d995652][b:634d995652]Start dan de computer opnieuw op.[/color:634d995652][/b:634d995652][/list:u:634d995652]
  • ComboFix 12-11-04.01 - ikke 04-11-2012 21:22:01.1.2 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.2047.1274 [GMT 1:00]
    Gestart vanuit: c:\users\ikke\Desktop\ComboFix.exe
    AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Nieuw herstelpunt werd aangemaakt
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    Besmet exemplaar van c:\windows\system32\Services.exe werd aangetroffen en gedesinfecteerd
    Hersteld exemplaar van - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-10-04 to 2012-11-04 ))))))))))))))))))))))))))))))
    .
    .
    2012-11-04 16:14 . 2012-11-04 16:14 ——– d—–w- c:\program files (x86)\Mozilla Thunderbird
    2012-11-03 11:16 . 2012-11-03 11:16 ——– d—–w- c:\users\ikke\AppData\Roaming\Malwarebytes
    2012-11-03 11:15 . 2012-11-03 11:15 ——– d—–w- c:\programdata\Malwarebytes
    2012-11-03 11:15 . 2012-11-03 12:12 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
    2012-11-03 11:15 . 2012-09-29 18:54 25928 —-a-w- c:\windows\system32\drivers\mbam.sys
    2012-10-26 12:44 . 2012-09-24 21:16 95208 —-a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
    2012-10-15 08:26 . 2012-06-02 05:41 184320 —-a-w- c:\windows\system32\cryptsvc.dll
    2012-10-15 08:26 . 2012-06-02 05:41 140288 —-a-w- c:\windows\system32\cryptnet.dll
    2012-10-15 08:26 . 2012-06-02 05:41 1464320 —-a-w- c:\windows\system32\crypt32.dll
    2012-10-15 08:26 . 2012-06-02 04:36 140288 —-a-w- c:\windows\SysWow64\cryptsvc.dll
    2012-10-15 08:26 . 2012-06-02 04:36 1159680 —-a-w- c:\windows\SysWow64\crypt32.dll
    2012-10-15 08:26 . 2012-06-02 04:36 103936 —-a-w- c:\windows\SysWow64\cryptnet.dll
    2012-10-13 15:05 . 2012-10-21 19:29 ——– d—–w- C:\Wasmachines
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-10-15 08:30 . 2010-11-18 13:47 65309168 —-a-w- c:\windows\system32\MRT.exe
    2012-10-15 08:21 . 2012-04-26 18:47 696760 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-10-15 08:21 . 2011-06-05 13:25 73656 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-09-29 20:24 . 2012-09-29 20:24 16896 —-a-w- c:\program files (x86)\wmdmhelper.dll
    2012-09-29 20:24 . 2012-09-29 20:24 9728 —-a-w- c:\program files (x86)\fixrjb.exe
    2012-09-29 20:24 . 2012-09-29 20:24 656896 —-a-w- c:\program files (x86)\rjbres.dll
    2012-09-29 20:24 . 2012-09-29 20:24 45056 —-a-w- c:\program files (x86)\ierjplug.dll
    2012-09-29 20:24 . 2012-09-29 20:24 361984 —-a-w- c:\program files (x86)\rjdlg.dll
    2012-09-29 20:24 . 2012-09-29 20:24 34304 —-a-w- c:\program files (x86)\rjprog.dll
    2012-09-29 20:24 . 2012-09-29 20:24 139264 —-a-w- c:\program files (x86)\dunzip32.dll
    2012-09-29 20:24 . 2012-09-29 20:24 943344 —-a-w- c:\program files (x86)\cddblink.dll
    2012-09-29 20:24 . 2012-09-29 20:24 1115376 —-a-w- c:\program files (x86)\cddbmusicid.dll
    2012-09-29 20:24 . 2012-09-29 20:24 74240 —-a-w- c:\program files (x86)\tsasdk.dll
    2012-09-29 20:24 . 2012-09-29 20:24 48640 —-a-w- c:\program files (x86)\tpasdk.dll
    2012-09-29 20:24 . 2012-09-29 20:24 45056 —-a-w- c:\program files (x86)\mmcdda32.dll
    2012-09-29 20:24 . 2012-09-29 20:24 23552 —-a-w- c:\program files (x86)\tnetdtct.dll
    2012-09-29 20:24 . 2012-09-29 20:24 2041072 —-a-w- c:\program files (x86)\cddbcontrol.dll
    2012-09-29 20:24 . 2012-09-29 20:24 67584 —-a-w- c:\program files (x86)\rpwa3260.dll
    2012-09-29 20:24 . 2012-09-29 20:24 16296 —-a-w- c:\program files (x86)\realtfon.fon
    2012-09-29 20:23 . 2012-09-29 20:23 375448 —-a-w- c:\program files (x86)\realconverter.exe
    2012-09-29 20:23 . 2012-09-29 20:23 349336 —-a-w- c:\program files (x86)\convert.exe
    2012-09-29 20:23 . 2012-09-29 20:23 390384 —-a-w- c:\program files (x86)\mc_enc_mp4v.dll
    2012-09-29 20:23 . 2012-09-29 20:23 381080 —-a-w- c:\program files (x86)\realtrimmer.exe
    2012-09-29 20:23 . 2012-09-29 20:23 129680 —-a-w- c:\program files (x86)\realshare.exe
    2012-09-29 20:23 . 2012-09-29 20:23 72192 —-a-w- c:\program files (x86)\rjwmapln.dll
    2012-09-29 20:23 . 2012-09-29 20:23 719360 —-a-w- c:\program files (x86)\dbghelp.dll
    2012-09-29 20:23 . 2012-09-29 20:23 46592 —-a-w- c:\program files (x86)\rpau3260.dll
    2012-09-29 20:23 . 2012-09-29 20:23 29856 —-a-w- c:\program files (x86)\rndevicedbbuilder.exe
    2012-09-29 20:23 . 2012-09-29 20:23 88064 —-a-w- c:\program files (x86)\hxaudiodevicehook.dll
    2012-09-29 20:23 . 2012-09-29 20:23 86528 —-a-w- c:\program files (x86)\rpplugprot.dll
    2012-09-29 20:23 . 2012-09-29 20:23 64696 —-a-w- c:\program files (x86)\rpshell.dll
    2012-09-29 20:23 . 2012-09-29 20:23 116920 —-a-w- c:\program files (x86)\rdsf3260.dll
    2012-09-29 20:23 . 2012-09-29 20:23 499352 —-a-w- c:\program files (x86)\realplay.exe
    2012-09-29 20:23 . 2012-09-29 20:23 18104 —-a-w- c:\program files (x86)\rphelperapp.exe
    2012-09-29 20:23 . 2012-09-29 20:23 10240 —-a-w- c:\program files (x86)\realjbox.exe
    2012-09-29 20:23 . 2012-09-29 20:23 439504 —-a-w- c:\program files (x86)\recordingmanager.exe
    2012-09-29 20:23 . 2010-11-09 12:15 499712 —-a-w- c:\windows\SysWow64\msvcp71.dll
    2012-09-29 20:23 . 2010-11-09 12:15 348160 —-a-w- c:\windows\SysWow64\msvcr71.dll
    2012-08-31 21:18 . 2012-05-03 08:11 821736 —-a-w- c:\windows\SysWow64
    pdeployJava1.dll
    2012-08-31 21:18 . 2011-03-23 17:43 746984 —-a-w- c:\windows\SysWow64\deployJava1.dll
    2012-08-24 11:15 . 2012-10-01 19:45 17810944 —-a-w- c:\windows\system32\mshtml.dll
    2012-08-24 10:39 . 2012-10-01 19:45 10925568 —-a-w- c:\windows\system32\ieframe.dll
    2012-08-24 10:31 . 2012-10-01 19:45 2312704 —-a-w- c:\windows\system32\jscript9.dll
    2012-08-24 10:22 . 2012-10-01 19:45 1346048 —-a-w- c:\windows\system32\urlmon.dll
    2012-08-24 10:21 . 2012-10-01 19:45 1392128 —-a-w- c:\windows\system32\wininet.dll
    2012-08-24 10:20 . 2012-10-01 19:45 1494528 —-a-w- c:\windows\system32\inetcpl.cpl
    2012-08-24 10:18 . 2012-10-01 19:45 237056 —-a-w- c:\windows\system32\url.dll
    2012-08-24 10:17 . 2012-10-01 19:45 85504 —-a-w- c:\windows\system32\jsproxy.dll
    2012-08-24 10:14 . 2012-10-01 19:45 173056 —-a-w- c:\windows\system32\ieUnatt.exe
    2012-08-24 10:14 . 2012-10-01 19:45 816640 —-a-w- c:\windows\system32\jscript.dll
    2012-08-24 10:13 . 2012-10-01 19:45 599040 —-a-w- c:\windows\system32\vbscript.dll
    2012-08-24 10:12 . 2012-10-01 19:45 2144768 —-a-w- c:\windows\system32\iertutil.dll
    2012-08-24 10:11 . 2012-10-01 19:45 729088 —-a-w- c:\windows\system32\msfeeds.dll
    2012-08-24 10:10 . 2012-10-01 19:45 96768 —-a-w- c:\windows\system32\mshtmled.dll
    2012-08-24 10:09 . 2012-10-01 19:45 2382848 —-a-w- c:\windows\system32\mshtml.tlb
    2012-08-24 10:04 . 2012-10-01 19:45 248320 —-a-w- c:\windows\system32\ieui.dll
    2012-08-24 06:59 . 2012-10-01 19:45 1800704 —-a-w- c:\windows\SysWow64\jscript9.dll
    2012-08-24 06:51 . 2012-10-01 19:45 1129472 —-a-w- c:\windows\SysWow64\wininet.dll
    2012-08-24 06:51 . 2012-10-01 19:45 1427968 —-a-w- c:\windows\SysWow64\inetcpl.cpl
    2012-08-24 06:47 . 2012-10-01 19:45 142848 —-a-w- c:\windows\SysWow64\ieUnatt.exe
    2012-08-24 06:47 . 2012-10-01 19:45 420864 —-a-w- c:\windows\SysWow64\vbscript.dll
    2012-08-24 06:43 . 2012-10-01 19:45 2382848 —-a-w- c:\windows\SysWow64\mshtml.tlb
    2012-08-22 18:12 . 2012-09-13 11:30 1913200 —-a-w- c:\windows\system32\drivers\tcpip.sys
    2012-08-22 18:12 . 2012-09-13 11:30 950128 —-a-w- c:\windows\system32\drivers
    dis.sys
    2012-08-22 18:12 . 2012-09-13 11:30 376688 —-a-w- c:\windows\system32\drivers
    etio.sys
    2012-08-22 18:12 . 2012-09-13 11:30 288624 —-a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
    2012-08-21 21:01 . 2012-10-01 19:45 245760 —-a-w- c:\windows\system32\OxpsConverter.exe
    2012-08-20 17:38 . 2012-10-15 08:28 44032 —-a-w- c:\windows\apppatch\acwow64.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "AVG_TRAY"="c:\program files (x86)\AVG\AVG10\avgtray.exe" [2012-08-01 2345592]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "HideSCABattery"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG10\avgchsva.exe /sync\0c:\progra~2\AVG\AVG10\avgrsa.exe /sync
    estart
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
    R3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\Drivers\VMUVC.sys [2010-04-29 202112]
    R3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys [2008-07-01 303616]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-18 1255736]
    S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 26704]
    S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2011-03-16 37456]
    S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2011-01-07 304720]
    S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-03-01 41552]
    S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2011-04-04 377936]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-09-29 203264]
    S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2012-01-31 7391072]
    S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
    S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
    S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-05-27 118864]
    S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 29264]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
    .
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
    .
    .
    ——— X64 Entries ———–
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = about:blank
    uLocal Page = c:\windows\system32\blank.htm
    mLocal Page = c:\windows\SysWOW64\blank.htm
    TCP: DhcpNameServer = 212.54.40.25 212.54.35.25
    FF - ProfilePath - c:\users\ikke\AppData\Roaming\Mozilla\Firefox\Profiles\13tol7rs.default\
    FF - prefs.js: browser.search.selectedEngine - Yahoo
    FF - prefs.js: browser.startup.homepage -
    FF - prefs.js: keyword.URL - hxxp://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
    FF - prefs.js: network.proxy.type - 0
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    WebBrowser-{7ADF87FB-C108-4A73-8135-1CCA9779FB5B} - (no file)
    .
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\software\BlueStacks]
    "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
    c:\program files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2012-11-04 21:31:22 - machine werd herstart
    ComboFix-quarantined-files.txt 2012-11-04 20:31
    .
    Pre-Run: 474.343.059.456 bytes beschikbaar
    Post-Run: 474.165.170.176 bytes beschikbaar
    .
    - - End Of File - - 180F7B7082A4EF514527E5DE77B3D464
  • AANVULLING:

    De e-mailscanner in AVG heeft ie uitgeschakeld en ik krijg 'm niet meer actief :evil:
  • je gebruikt een verouderde versie van AVG Free.
    Jij 2011, ik 2013.

    Ik raad je aan die oudere versie te deïnstalleren en daarna het AVG verwijdertool te gebruiken.

    Download 64-bit removaltool: http://www.avg.com/nl-nl/36

    Download AVG 2013 Free: http://www.softpedia.com/get/Antivirus/AVG-Free-Edition.shtml

    Dit betreft een webinstaller.

    Laat na installatie en upgraden AVG een volledige systeemscan doen.
  • Tis wel ff wennen, dat nieuwe uiterlijk van AVG.
    Vond geen bedreigingen :D
  • Dat nieuwe menu is dus in Windows 8 stijl.
    Maar het is veel overzichtelijker dan de oude menu's.

    Ik vertrouw het nog niet vanwege het feit dat ComboFix een Windows bestand heeft gerepareerd.
    Lees onderstaande dan ook heel goed!

    Download [b:5cbbf8d1dd]TDSSKiller[/color:5cbbf8d1dd][/b:5cbbf8d1dd] en plaats het op je bureaublad.
    [list:5cbbf8d1dd]
    [*:5cbbf8d1dd] Voordat je TDSSKiller uitvoert is het raadzaam om de onderstaande handleiding van TDSSKiller te raadplegen.
    [list:5cbbf8d1dd]
    [*:5cbbf8d1dd] [b:5cbbf8d1dd]Klik hier voor de handleiding van Kaspersky TDSSKiller[/color:5cbbf8d1dd][/b:5cbbf8d1dd][/list:u:5cbbf8d1dd]
    [*:5cbbf8d1dd] Dubbelklik op [b:5cbbf8d1dd]TDSSKiller.exe[/b:5cbbf8d1dd] om de tool te starten. ([i:5cbbf8d1dd]Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken[/i:5cbbf8d1dd]).
    [*:5cbbf8d1dd] [i:5cbbf8d1dd]Als er door TDSSkiller een update wordt gevonden klikt u op de knop "[b:5cbbf8d1dd]Load update[/b:5cbbf8d1dd]"[/i:5cbbf8d1dd]
    [img:5cbbf8d1dd]http://www.imgdumper.nl/uploads6/506422ecca8b3/506422ecc81a0-TDSSkiller%28update%29.jpg[/img:5cbbf8d1dd]
    [*:5cbbf8d1dd] [i:5cbbf8d1dd]Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.[/i:5cbbf8d1dd]
    [*:5cbbf8d1dd] [i:5cbbf8d1dd]Start nu TDSSkiller opnieuw.[/i:5cbbf8d1dd]
    [*:5cbbf8d1dd] Klik op "[b:5cbbf8d1dd]Change parameters[/b:5cbbf8d1dd]" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    [img:5cbbf8d1dd]http://www.imgdumper.nl/uploads6/5064230056569/506423005368c-TDSSkiller%28opties%29.jpg[/img:5cbbf8d1dd]
    [*:5cbbf8d1dd] Klik op de knop "[b:5cbbf8d1dd]Start Scan[/b:5cbbf8d1dd]" en volg de instructies.
    [list:5cbbf8d1dd]
    [*:5cbbf8d1dd] Gebruik nooit[/color:5cbbf8d1dd] de "[b:5cbbf8d1dd]Delete[/b:5cbbf8d1dd]" optie bij een "[b:5cbbf8d1dd]Fail signature[/b:5cbbf8d1dd]" melding.[/list:u:5cbbf8d1dd]
    [*:5cbbf8d1dd] Wanneer de scan klaar is klik je op de knop "[b:5cbbf8d1dd]Report[/b:5cbbf8d1dd]".
    [*:5cbbf8d1dd] Selecteer de inhoud (log) en plaats deze in uw volgende bericht.
    [*:5cbbf8d1dd] Na de herstart van de computer zal u in de meeste gevallen een leeg bureaublad met een commandprompt-venster en een beveiligingswaarschuwing te zien krijgen met de vraag om een bestand uit te voeren zoals u kunt zien op de onderstaande afbeelding.
    Sta dit altijd toe door het bestand van Kaspersky te laten uitvoeren, [b:5cbbf8d1dd]annuleer dit nooit[/color:5cbbf8d1dd][/b:5cbbf8d1dd] aangezien TDSSKiller dan niet volledig zijn werk kan doen.
    [img:5cbbf8d1dd]http://www.imgdumper.nl/uploads6/506423d393b7c/506423d38e588-TDSSkiller%28reboot%29.jpg[/img:5cbbf8d1dd][/list:u:5cbbf8d1dd]
    [list:5cbbf8d1dd]
    [*:5cbbf8d1dd] Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt[/list:u:5cbbf8d1dd]

    [list:5cbbf8d1dd][*:5cbbf8d1dd][b:5cbbf8d1dd]Notabene: de [/color:5cbbf8d1dd]unsigned files[/color:5cbbf8d1dd] skip je, dat zijn bestanden die door TDSSKiller opgevoerd worden omdat deze geen digitale handtekening bevatten![/color:5cbbf8d1dd][/b:5cbbf8d1dd][/list:u:5cbbf8d1dd]
  • 12:04:49.0782 1544 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    12:04:50.0032 1544 ============================================================
    12:04:50.0032 1544 Current date / time: 2012/11/05 12:04:50.0032
    12:04:50.0032 1544 SystemInfo:
    12:04:50.0032 1544
    12:04:50.0032 1544 OS Version: 6.1.7601 ServicePack: 1.0
    12:04:50.0032 1544 Product type: Workstation
    12:04:50.0032 1544 ComputerName: MIJN_PC
    12:04:50.0032 1544 UserName: ikke
    12:04:50.0032 1544 Windows directory: C:\Windows
    12:04:50.0032 1544 System windows directory: C:\Windows
    12:04:50.0032 1544 Running under WOW64
    12:04:50.0032 1544 Processor architecture: Intel x64
    12:04:50.0032 1544 Number of processors: 2
    12:04:50.0032 1544 Page size: 0x1000
    12:04:50.0032 1544 Boot type: Normal boot
    12:04:50.0032 1544 ============================================================
    12:04:50.0829 1544 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    12:04:50.0845 1544 ============================================================
    12:04:50.0845 1544 \Device\Harddisk0\DR0:
    12:04:50.0845 1544 MBR partitions:
    12:04:50.0845 1544 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
    12:04:50.0845 1544 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
    12:04:50.0845 1544 ============================================================
    12:04:50.0876 1544 C: <-> \Device\Harddisk0\DR0\Partition2
    12:04:50.0876 1544 ============================================================
    12:04:50.0876 1544 Initialize success
    12:04:50.0876 1544 ============================================================
    12:05:41.0751 3836 ============================================================
    12:05:41.0751 3836 Scan started
    12:05:41.0751 3836 Mode: Manual; SigCheck; TDLFS;
    12:05:41.0751 3836 ============================================================
    12:05:42.0407 3836 ================ Scan system memory ========================
    12:05:42.0407 3836 System memory - ok
    12:05:42.0407 3836 ================ Scan services =============================
    12:05:42.0532 3836 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    12:05:42.0595 3836 1394ohci - ok
    12:05:42.0626 3836 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    12:05:42.0642 3836 ACPI - ok
    12:05:42.0657 3836 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    12:05:42.0704 3836 AcpiPmi - ok
    12:05:42.0735 3836 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    12:05:42.0767 3836 adp94xx - ok
    12:05:42.0782 3836 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    12:05:42.0798 3836 adpahci - ok
    12:05:42.0798 3836 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    12:05:42.0813 3836 adpu320 - ok
    12:05:42.0845 3836 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    12:05:42.0938 3836 AeLookupSvc - ok
    12:05:42.0970 3836 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    12:05:43.0017 3836 AFD - ok
    12:05:43.0063 3836 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    12:05:43.0079 3836 agp440 - ok
    12:05:43.0095 3836 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    12:05:43.0110 3836 ALG - ok
    12:05:43.0126 3836 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    12:05:43.0142 3836 aliide - ok
    12:05:43.0157 3836 [ 3DC106C903C1BD42E2ACC3D5DEFF9367 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    12:05:43.0204 3836 AMD External Events Utility - ok
    12:05:43.0220 3836 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    12:05:43.0220 3836 amdide - ok
    12:05:43.0251 3836 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    12:05:43.0282 3836 AmdK8 - ok
    12:05:43.0407 3836 [ BBAB5B28253FE0FC7255D8775BA05C1D ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    12:05:43.0563 3836 amdkmdag - ok
    12:05:43.0579 3836 [ CBA35FF4092B91E105D93ED11A0250B6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
    12:05:43.0610 3836 amdkmdap - ok
    12:05:43.0626 3836 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    12:05:43.0657 3836 AmdPPM - ok
    12:05:43.0673 3836 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    12:05:43.0688 3836 amdsata - ok
    12:05:43.0720 3836 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    12:05:43.0735 3836 amdsbs - ok
    12:05:43.0751 3836 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    12:05:43.0767 3836 amdxata - ok
    12:05:43.0798 3836 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    12:05:43.0892 3836 AppID - ok
    12:05:43.0907 3836 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    12:05:43.0938 3836 AppIDSvc - ok
    12:05:43.0985 3836 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    12:05:44.0017 3836 Appinfo - ok
    12:05:44.0048 3836 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    12:05:44.0063 3836 arc - ok
    12:05:44.0079 3836 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    12:05:44.0095 3836 arcsas - ok
    12:05:44.0110 3836 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    12:05:44.0157 3836 AsyncMac - ok
    12:05:44.0188 3836 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    12:05:44.0204 3836 atapi - ok
    12:05:44.0251 3836 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    12:05:44.0298 3836 AudioEndpointBuilder - ok
    12:05:44.0313 3836 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    12:05:44.0345 3836 AudioSrv - ok
    12:05:44.0563 3836 [ B41F0E54105801538D56623271A0AE49 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
    12:05:44.0657 3836 AVGIDSAgent - ok
    12:05:44.0704 3836 [ F1A99DA71E6549D7D944596E15142866 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
    12:05:44.0720 3836 AVGIDSDriver - ok
    12:05:44.0751 3836 [ E6CB84918C1ABE84AAAF749D2EA4E764 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
    12:05:44.0767 3836 AVGIDSHA - ok
    12:05:44.0798 3836 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
    12:05:44.0813 3836 Avgldx64 - ok
    12:05:44.0845 3836 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
    12:05:44.0860 3836 Avgloga - ok
    12:05:44.0860 3836 [ EAFF19168F26FA225EB679547B718051 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
    12:05:44.0876 3836 Avgmfx64 - ok
    12:05:44.0892 3836 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
    12:05:44.0892 3836 Avgrkx64 - ok
    12:05:44.0923 3836 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
    12:05:44.0938 3836 Avgtdia - ok
    12:05:44.0970 3836 [ 0D2EB149AFF89A307E5D82D0A2B78439 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
    12:05:44.0985 3836 avgwd - ok
    12:05:45.0017 3836 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    12:05:45.0032 3836 AxInstSV - ok
    12:05:45.0079 3836 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    12:05:45.0095 3836 b06bdrv - ok
    12:05:45.0126 3836 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    12:05:45.0142 3836 b57nd60a - ok
    12:05:45.0173 3836 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    12:05:45.0204 3836 BDESVC - ok
    12:05:45.0220 3836 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    12:05:45.0267 3836 Beep - ok
    12:05:45.0313 3836 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    12:05:45.0376 3836 BFE - ok
    12:05:45.0392 3836 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
    12:05:45.0454 3836 BITS - ok
    12:05:45.0454 3836 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    12:05:45.0485 3836 blbdrive - ok
    12:05:45.0501 3836 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    12:05:45.0532 3836 bowser - ok
    12:05:45.0548 3836 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    12:05:45.0563 3836 BrFiltLo - ok
    12:05:45.0579 3836 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    12:05:45.0610 3836 BrFiltUp - ok
    12:05:45.0626 3836 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
    12:05:45.0673 3836 BridgeMP - ok
    12:05:45.0720 3836 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    12:05:45.0735 3836 Browser - ok
    12:05:45.0751 3836 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    12:05:45.0782 3836 Brserid - ok
    12:05:45.0782 3836 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    12:05:45.0813 3836 BrSerWdm - ok
    12:05:45.0829 3836 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    12:05:45.0860 3836 BrUsbMdm - ok
    12:05:45.0860 3836 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    12:05:45.0892 3836 BrUsbSer - ok
    12:05:45.0938 3836 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    12:05:45.0954 3836 BthEnum - ok
    12:05:45.0970 3836 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    12:05:45.0985 3836 BTHMODEM - ok
    12:05:46.0001 3836 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    12:05:46.0032 3836 BthPan - ok
    12:05:46.0079 3836 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    12:05:46.0110 3836 BTHPORT - ok
    12:05:46.0126 3836 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    12:05:46.0173 3836 bthserv - ok
    12:05:46.0188 3836 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    12:05:46.0204 3836 BTHUSB - ok
    12:05:46.0220 3836 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    12:05:46.0267 3836 cdfs - ok
    12:05:46.0298 3836 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    12:05:46.0313 3836 cdrom - ok
    12:05:46.0360 3836 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    12:05:46.0392 3836 CertPropSvc - ok
    12:05:46.0407 3836 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    12:05:46.0423 3836 circlass - ok
    12:05:46.0454 3836 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    12:05:46.0470 3836 CLFS - ok
    12:05:46.0517 3836 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    12:05:46.0532 3836 clr_optimization_v2.0.50727_32 - ok
    12:05:46.0579 3836 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    12:05:46.0595 3836 clr_optimization_v2.0.50727_64 - ok
    12:05:46.0642 3836 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    12:05:46.0642 3836 clr_optimization_v4.0.30319_32 - ok
    12:05:46.0673 3836 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    12:05:46.0688 3836 clr_optimization_v4.0.30319_64 - ok
    12:05:46.0688 3836 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    12:05:46.0720 3836 CmBatt - ok
    12:05:46.0751 3836 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    12:05:46.0767 3836 cmdide - ok
    12:05:46.0798 3836 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
    12:05:46.0845 3836 CNG - ok
    12:05:46.0860 3836 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    12:05:46.0876 3836 Compbatt - ok
    12:05:46.0907 3836 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    12:05:46.0938 3836 CompositeBus - ok
    12:05:46.0938 3836 COMSysApp - ok
    12:05:46.0954 3836 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    12:05:46.0954 3836 crcdisk - ok
    12:05:47.0001 3836 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    12:05:47.0017 3836 CryptSvc - ok
    12:05:47.0079 3836 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    12:05:47.0110 3836 DcomLaunch - ok
    12:05:47.0142 3836 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    12:05:47.0188 3836 defragsvc - ok
    12:05:47.0220 3836 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    12:05:47.0267 3836 DfsC - ok
    12:05:47.0282 3836 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    12:05:47.0345 3836 Dhcp - ok
    12:05:47.0360 3836 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    12:05:47.0392 3836 discache - ok
    12:05:47.0423 3836 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    12:05:47.0423 3836 Disk - ok
    12:05:47.0454 3836 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    12:05:47.0485 3836 Dnscache - ok
    12:05:47.0532 3836 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    12:05:47.0563 3836 dot3svc - ok
    12:05:47.0595 3836 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
    12:05:47.0610 3836 Dot4 - ok
    12:05:47.0657 3836 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
    12:05:47.0673 3836 Dot4Print - ok
    12:05:47.0688 3836 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
    12:05:47.0704 3836 dot4usb - ok
    12:05:47.0751 3836 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    12:05:47.0798 3836 DPS - ok
    12:05:47.0813 3836 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    12:05:47.0845 3836 drmkaud - ok
    12:05:47.0892 3836 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    12:05:47.0923 3836 DXGKrnl - ok
    12:05:47.0938 3836 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    12:05:47.0985 3836 EapHost - ok
    12:05:48.0063 3836 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    12:05:48.0126 3836 ebdrv - ok
    12:05:48.0157 3836 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    12:05:48.0173 3836 EFS - ok
    12:05:48.0204 3836 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    12:05:48.0251 3836 ehRecvr - ok
    12:05:48.0267 3836 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    12:05:48.0298 3836 ehSched - ok
    12:05:48.0313 3836 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    12:05:48.0345 3836 elxstor - ok
    12:05:48.0376 3836 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    12:05:48.0392 3836 ErrDev - ok
    12:05:48.0423 3836 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    12:05:48.0470 3836 EventSystem - ok
    12:05:48.0485 3836 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    12:05:48.0517 3836 exfat - ok
    12:05:48.0532 3836 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    12:05:48.0579 3836 fastfat - ok
    12:05:48.0626 3836 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    12:05:48.0673 3836 Fax - ok
    12:05:48.0673 3836 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    12:05:48.0704 3836 fdc - ok
    12:05:48.0720 3836 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    12:05:48.0751 3836 fdPHost - ok
    12:05:48.0767 3836 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    12:05:48.0813 3836 FDResPub - ok
    12:05:48.0813 3836 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    12:05:48.0829 3836 FileInfo - ok
    12:05:48.0845 3836 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    12:05:48.0892 3836 Filetrace - ok
    12:05:48.0907 3836 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    12:05:48.0923 3836 flpydisk - ok
    12:05:48.0938 3836 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    12:05:48.0954 3836 FltMgr - ok
    12:05:48.0985 3836 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    12:05:49.0032 3836 FontCache - ok
    12:05:49.0079 3836 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    12:05:49.0095 3836 FontCache3.0.0.0 - ok
    12:05:49.0110 3836 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    12:05:49.0110 3836 FsDepends - ok
    12:05:49.0142 3836 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    12:05:49.0157 3836 Fs_Rec - ok
    12:05:49.0188 3836 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    12:05:49.0204 3836 fvevol - ok
    12:05:49.0220 3836 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    12:05:49.0235 3836 gagp30kx - ok
    12:05:49.0282 3836 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    12:05:49.0329 3836 gpsvc - ok
    12:05:49.0345 3836 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    12:05:49.0376 3836 hcw85cir - ok
    12:05:49.0423 3836 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    12:05:49.0454 3836 HdAudAddService - ok
    12:05:49.0454 3836 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    12:05:49.0485 3836 HDAudBus - ok
    12:05:49.0485 3836 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    12:05:49.0501 3836 HidBatt - ok
    12:05:49.0517 3836 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    12:05:49.0532 3836 HidBth - ok
    12:05:49.0548 3836 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    12:05:49.0563 3836 HidIr - ok
    12:05:49.0610 3836 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
    12:05:49.0673 3836 hidserv - ok
    12:05:49.0688 3836 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    12:05:49.0704 3836 HidUsb - ok
    12:05:49.0735 3836 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    12:05:49.0767 3836 hkmsvc - ok
    12:05:49.0798 3836 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    12:05:49.0829 3836 HomeGroupListener - ok
    12:05:49.0876 3836 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    12:05:49.0892 3836 HomeGroupProvider - ok
    12:05:49.0954 3836 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    12:05:49.0954 3836 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
    12:05:49.0954 3836 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
    12:05:49.0970 3836 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
    12:05:49.0985 3836 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
    12:05:49.0985 3836 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
    12:05:50.0017 3836 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    12:05:50.0032 3836 HpSAMD - ok
    12:05:50.0079 3836 [ 7F57926169C1B8ABA9274EA7D4B70F18 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
    12:05:50.0095 3836 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
    12:05:50.0095 3836 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
    12:05:50.0142 3836 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    12:05:50.0188 3836 HTTP - ok
    12:05:50.0220 3836 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    12:05:50.0235 3836 hwpolicy - ok
    12:05:50.0251 3836 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    12:05:50.0267 3836 i8042prt - ok
    12:05:50.0282 3836 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    12:05:50.0313 3836 iaStorV - ok
    12:05:50.0345 3836 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    12:05:50.0376 3836 idsvc - ok
    12:05:50.0392 3836 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    12:05:50.0407 3836 iirsp - ok
    12:05:50.0423 3836 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    12:05:50.0470 3836 IKEEXT - ok
    12:05:50.0485 3836 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    12:05:50.0501 3836 intelide - ok
    12:05:50.0501 3836 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    12:05:50.0532 3836 intelppm - ok
    12:05:50.0548 3836 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    12:05:50.0595 3836 IPBusEnum - ok
    12:05:50.0626 3836 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    12:05:50.0673 3836 IpFilterDriver - ok
    12:05:50.0704 3836 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    12:05:50.0751 3836 iphlpsvc - ok
    12:05:50.0798 3836 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    12:05:50.0798 3836 IPMIDRV - ok
    12:05:50.0813 3836 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    12:05:50.0860 3836 IPNAT - ok
    12:05:50.0876 3836 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    12:05:50.0892 3836 IRENUM - ok
    12:05:50.0907 3836 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    12:05:50.0923 3836 isapnp - ok
    12:05:50.0954 3836 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    12:05:50.0970 3836 iScsiPrt - ok
    12:05:50.0985 3836 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    12:05:51.0001 3836 kbdclass - ok
    12:05:51.0017 3836 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    12:05:51.0048 3836 kbdhid - ok
    12:05:51.0063 3836 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    12:05:51.0079 3836 KeyIso - ok
    12:05:51.0110 3836 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    12:05:51.0126 3836 KSecDD - ok
    12:05:51.0173 3836 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    12:05:51.0173 3836 KSecPkg - ok
    12:05:51.0188 3836 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    12:05:51.0235 3836 ksthunk - ok
    12:05:51.0251 3836 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    12:05:51.0298 3836 KtmRm - ok
    12:05:51.0345 3836 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
    12:05:51.0392 3836 LanmanServer - ok
    12:05:51.0407 3836 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    12:05:51.0438 3836 LanmanWorkstation - ok
    12:05:51.0517 3836 [ 559C9B7800FAC92FC515CD0003D7C631 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    12:05:51.0532 3836 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
    12:05:51.0532 3836 LightScribeService - detected UnsignedFile.Multi.Generic (1)
    12:05:51.0548 3836 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    12:05:51.0595 3836 lltdio - ok
    12:05:51.0610 3836 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    12:05:51.0657 3836 lltdsvc - ok
    12:05:51.0673 3836 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    12:05:51.0704 3836 lmhosts - ok
    12:05:51.0720 3836 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    12:05:51.0735 3836 LSI_FC - ok
    12:05:51.0751 3836 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    12:05:51.0767 3836 LSI_SAS - ok
    12:05:51.0767 3836 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    12:05:51.0782 3836 LSI_SAS2 - ok
    12:05:51.0798 3836 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    12:05:51.0813 3836 LSI_SCSI - ok
    12:05:51.0829 3836 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    12:05:51.0876 3836 luafv - ok
    12:05:51.0907 3836 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    12:05:51.0923 3836 Mcx2Svc - ok
    12:05:51.0938 3836 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    12:05:51.0938 3836 megasas - ok
    12:05:51.0970 3836 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    12:05:51.0985 3836 MegaSR - ok
    12:05:52.0001 3836 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    12:05:52.0032 3836 MMCSS - ok
    12:05:52.0048 3836 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    12:05:52.0095 3836 Modem - ok
    12:05:52.0110 3836 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    12:05:52.0126 3836 monitor - ok
    12:05:52.0142 3836 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    12:05:52.0157 3836 mouclass - ok
    12:05:52.0173 3836 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    12:05:52.0188 3836 mouhid - ok
    12:05:52.0235 3836 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    12:05:52.0235 3836 mountmgr - ok
    12:05:52.0313 3836 [ DAE3C509F33059BC4D48A8925F476FB4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    12:05:52.0313 3836 MozillaMaintenance - ok
    12:05:52.0345 3836 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    12:05:52.0345 3836 mpio - ok
    12:05:52.0360 3836 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    12:05:52.0407 3836 mpsdrv - ok
    12:05:52.0470 3836 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    12:05:52.0517 3836 MpsSvc - ok
    12:05:52.0563 3836 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    12:05:52.0579 3836 MRxDAV - ok
    12:05:52.0595 3836 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    12:05:52.0642 3836 mrxsmb - ok
    12:05:52.0657 3836 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    12:05:52.0688 3836 mrxsmb10 - ok
    12:05:52.0704 3836 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    12:05:52.0735 3836 mrxsmb20 - ok
    12:05:52.0751 3836 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    12:05:52.0751 3836 msahci - ok
    12:05:52.0798 3836 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    12:05:52.0813 3836 msdsm - ok
    12:05:52.0829 3836 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    12:05:52.0845 3836 MSDTC - ok
    12:05:52.0860 3836 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    12:05:52.0892 3836 Msfs - ok
    12:05:52.0907 3836 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    12:05:52.0938 3836 mshidkmdf - ok
    12:05:52.0985 3836 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    12:05:53.0001 3836 msisadrv - ok
    12:05:53.0017 3836 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    12:05:53.0048 3836 MSiSCSI - ok
    12:05:53.0063 3836 msiserver - ok
    12:05:53.0079 3836 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    12:05:53.0126 3836 MSKSSRV - ok
    12:05:53.0142 3836 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    12:05:53.0173 3836 MSPCLOCK - ok
    12:05:53.0188 3836 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    12:05:53.0235 3836 MSPQM - ok
    12:05:53.0282 3836 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    12:05:53.0298 3836 MsRPC - ok
    12:05:53.0313 3836 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    12:05:53.0329 3836 mssmbios - ok
    12:05:53.0345 3836 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    12:05:53.0392 3836 MSTEE - ok
    12:05:53.0407 3836 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    12:05:53.0407 3836 MTConfig - ok
    12:05:53.0423 3836 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    12:05:53.0438 3836 Mup - ok
    12:05:53.0485 3836 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    12:05:53.0532 3836 napagent - ok
    12:05:53.0563 3836 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    12:05:53.0579 3836 NativeWifiP - ok
    12:05:53.0626 3836 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers
    dis.sys
    12:05:53.0657 3836 NDIS - ok
    12:05:53.0673 3836 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    12:05:53.0720 3836 NdisCap - ok
    12:05:53.0720 3836 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    12:05:53.0767 3836 NdisTapi - ok
    12:05:53.0798 3836 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    12:05:53.0829 3836 Ndisuio - ok
    12:05:53.0860 3836 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    12:05:53.0907 3836 NdisWan - ok
    12:05:53.0954 3836 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    12:05:53.0985 3836 NDProxy - ok
    12:05:54.0017 3836 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    12:05:54.0017 3836 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    12:05:54.0017 3836 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    12:05:54.0032 3836 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    12:05:54.0063 3836 NetBIOS - ok
    12:05:54.0095 3836 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    12:05:54.0142 3836 NetBT - ok
    12:05:54.0157 3836 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    12:05:54.0173 3836 Netlogon - ok
    12:05:54.0188 3836 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32
    etman.dll
    12:05:54.0235 3836 Netman - ok
    12:05:54.0267 3836 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32
    etprofm.dll
    12:05:54.0313 3836 netprofm - ok
    12:05:54.0345 3836 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    12:05:54.0345 3836 NetTcpPortSharing - ok
    12:05:54.0360 3836 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    12:05:54.0376 3836 nfrd960 - ok
    12:05:54.0392 3836 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32
    lasvc.dll
    12:05:54.0438 3836 NlaSvc - ok
    12:05:54.0501 3836 [ C4EBBBD7165BE535F0BFD06B80601D91 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
    12:05:54.0517 3836 NMIndexingService ( UnsignedFile.Multi.Generic ) - warning
    12:05:54.0517 3836 NMIndexingService - detected UnsignedFile.Multi.Generic (1)
    12:05:54.0532 3836 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    12:05:54.0579 3836 Npfs - ok
    12:05:54.0595 3836 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32
    sisvc.dll
    12:05:54.0642 3836 nsi - ok
    12:05:54.0642 3836 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    12:05:54.0673 3836 nsiproxy - ok
    12:05:54.0751 3836 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    12:05:54.0782 3836 Ntfs - ok
    12:05:54.0798 3836 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    12:05:54.0845 3836 Null - ok
    12:05:54.0860 3836 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers
    vraid.sys
    12:05:54.0876 3836 nvraid - ok
    12:05:54.0876 3836 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers
    vstor.sys
    12:05:54.0892 3836 nvstor - ok
    12:05:54.0938 3836 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    12:05:54.0954 3836 nv_agp - ok
    12:05:54.0970 3836 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    12:05:54.0985 3836 ohci1394 - ok
    12:05:55.0017 3836 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    12:05:55.0017 3836 ose - ok
    12:05:55.0048 3836 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    12:05:55.0079 3836 p2pimsvc - ok
    12:05:55.0095 3836 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    12:05:55.0110 3836 p2psvc - ok
    12:05:55.0142 3836 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    12:05:55.0157 3836 Parport - ok
    12:05:55.0204 3836 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    12:05:55.0220 3836 partmgr - ok
    12:05:55.0220 3836 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    12:05:55.0251 3836 PcaSvc - ok
    12:05:55.0267 3836 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    12:05:55.0282 3836 pci - ok
    12:05:55.0298 3836 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    12:05:55.0313 3836 pciide - ok
    12:05:55.0345 3836 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    12:05:55.0360 3836 pcmcia - ok
    12:05:55.0376 3836 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    12:05:55.0392 3836 pcw - ok
    12:05:55.0407 3836 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    12:05:55.0470 3836 PEAUTH - ok
    12:05:55.0532 3836 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    12:05:55.0548 3836 PerfHost - ok
    12:05:55.0610 3836 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    12:05:55.0673 3836 pla - ok
    12:05:55.0704 3836 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    12:05:55.0720 3836 PlugPlay - ok
    12:05:55.0735 3836 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    12:05:55.0735 3836 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    12:05:55.0735 3836 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    12:05:55.0751 3836 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    12:05:55.0782 3836 PNRPAutoReg - ok
    12:05:55.0798 3836 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    12:05:55.0813 3836 PNRPsvc - ok
    12:05:55.0829 3836 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    12:05:55.0876 3836 PolicyAgent - ok
    12:05:55.0907 3836 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    12:05:55.0954 3836 Power - ok
    12:05:55.0954 3836 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    12:05:56.0001 3836 PptpMiniport - ok
    12:05:56.0017 3836 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    12:05:56.0032 3836 Processor - ok
    12:05:56.0063 3836 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    12:05:56.0095 3836 ProfSvc - ok
    12:05:56.0110 3836 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    12:05:56.0126 3836 ProtectedStorage - ok
    12:05:56.0157 3836 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    12:05:56.0204 3836 Psched - ok
    12:05:56.0235 3836 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    12:05:56.0282 3836 ql2300 - ok
    12:05:56.0313 3836 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    12:05:56.0329 3836 ql40xx - ok
    12:05:56.0345 3836 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    12:05:56.0360 3836 QWAVE - ok
    12:05:56.0376 3836 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    12:05:56.0392 3836 QWAVEdrv - ok
    12:05:56.0407 3836 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    12:05:56.0438 3836 RasAcd - ok
    12:05:56.0470 3836 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    12:05:56.0501 3836 RasAgileVpn - ok
    12:05:56.0517 3836 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    12:05:56.0563 3836 RasAuto - ok
    12:05:56.0610 3836 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    12:05:56.0657 3836 Rasl2tp - ok
    12:05:56.0688 3836 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    12:05:56.0720 3836 RasMan - ok
    12:05:56.0735 3836 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    12:05:56.0782 3836 RasPppoe - ok
    12:05:56.0798 3836 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    12:05:56.0845 3836 RasSstp - ok
    12:05:56.0876 3836 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    12:05:56.0923 3836 rdbss - ok
    12:05:56.0938 3836 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    12:05:56.0954 3836 rdpbus - ok
    12:05:56.0970 3836 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    12:05:57.0001 3836 RDPCDD - ok
    12:05:57.0017 3836 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    12:05:57.0063 3836 RDPENCDD - ok
    12:05:57.0079 3836 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    12:05:57.0110 3836 RDPREFMP - ok
    12:05:57.0173 3836 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    12:05:57.0188 3836 RdpVideoMiniport - ok
    12:05:57.0220 3836 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    12:05:57.0251 3836 RDPWD - ok
    12:05:57.0282 3836 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    12:05:57.0298 3836 rdyboost - ok
    12:05:57.0329 3836 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    12:05:57.0360 3836 RemoteAccess - ok
    12:05:57.0376 3836 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    12:05:57.0423 3836 RemoteRegistry - ok
    12:05:57.0454 3836 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    12:05:57.0485 3836 RFCOMM - ok
    12:05:57.0501 3836 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    12:05:57.0532 3836 RpcEptMapper - ok
    12:05:57.0548 3836 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    12:05:57.0563 3836 RpcLocator - ok
    12:05:57.0610 3836 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
    12:05:57.0657 3836 RpcSs - ok
    12:05:57.0673 3836 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    12:05:57.0720 3836 rspndr - ok
    12:05:57.0735 3836 [ ABCB5A38A0D85BDF69B7877E1AD1EED5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
    12:05:57.0767 3836 RTL8167 - ok
    12:05:57.0782 3836 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    12:05:57.0798 3836 SamSs - ok
    12:05:57.0829 3836 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    12:05:57.0845 3836 sbp2port - ok
    12:05:57.0892 3836 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
    12:05:57.0923 3836 SBSDWSCService - ok
    12:05:57.0954 3836 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    12:05:58.0001 3836 SCardSvr - ok
    12:05:58.0048 3836 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    12:05:58.0079 3836 scfilter - ok
    12:05:58.0142 3836 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    12:05:58.0188 3836 Schedule - ok
    12:05:58.0220 3836 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    12:05:58.0267 3836 SCPolicySvc - ok
    12:05:58.0313 3836 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    12:05:58.0329 3836 SDRSVC - ok
    12:05:58.0345 3836 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    12:05:58.0392 3836 secdrv - ok
    12:05:58.0423 3836 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    12:05:58.0470 3836 seclogon - ok
    12:05:58.0485 3836 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
    12:05:58.0517 3836 SENS - ok
    12:05:58.0532 3836 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    12:05:58.0548 3836 SensrSvc - ok
    12:05:58.0563 3836 Ser2pl - ok
    12:05:58.0579 3836 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    12:05:58.0595 3836 Serenum - ok
    12:05:58.0595 3836 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    12:05:58.0626 3836 Serial - ok
    12:05:58.0657 3836 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    12:05:58.0688 3836 sermouse - ok
    12:05:58.0735 3836 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    12:05:58.0767 3836 SessionEnv - ok
    12:05:58.0782 3836 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    12:05:58.0813 3836 sffdisk - ok
    12:05:58.0829 3836 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    12:05:58.0845 3836 sffp_mmc - ok
    12:05:58.0845 3836 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    12:05:58.0876 3836 sffp_sd - ok
    12:05:58.0892 3836 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    12:05:58.0907 3836 sfloppy - ok
    12:05:58.0938 3836 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    12:05:58.0985 3836 SharedAccess - ok
    12:05:59.0032 3836 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    12:05:59.0063 3836 ShellHWDetection - ok
    12:05:59.0079 3836 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    12:05:59.0095 3836 SiSRaid2 - ok
    12:05:59.0095 3836 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    12:05:59.0110 3836 SiSRaid4 - ok
    12:05:59.0126 3836 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    12:05:59.0157 3836 Smb - ok
    12:05:59.0188 3836 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    12:05:59.0204 3836 SNMPTRAP - ok
    12:05:59.0220 3836 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    12:05:59.0235 3836 spldr - ok
    12:05:59.0267 3836 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    12:05:59.0298 3836 Spooler - ok
    12:05:59.0376 3836 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    12:05:59.0470 3836 sppsvc - ok
    12:05:59.0485 3836 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    12:05:59.0532 3836 sppuinotify - ok
    12:05:59.0563 3836 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    12:05:59.0595 3836 srv - ok
    12:05:59.0626 3836 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    12:05:59.0642 3836 srv2 - ok
    12:05:59.0657 3836 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    12:05:59.0688 3836 srvnet - ok
    12:05:59.0704 3836 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    12:05:59.0751 3836 SSDPSRV - ok
    12:05:59.0767 3836 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    12:05:59.0798 3836 SstpSvc - ok
    12:05:59.0829 3836 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    12:05:59.0845 3836 stexstor - ok
    12:05:59.0876 3836 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    12:05:59.0923 3836 stisvc - ok
    12:05:59.0954 3836 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    12:05:59.0970 3836 swenum - ok
    12:06:00.0001 3836 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    12:06:00.0063 3836 swprv - ok
    12:06:00.0204 3836 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    12:06:00.0298 3836 SysMain - ok
    12:06:00.0329 3836 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    12:06:00.0360 3836 TabletInputService - ok
    12:06:00.0392 3836 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    12:06:00.0438 3836 TapiSrv - ok
    12:06:00.0454 3836 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    12:06:00.0485 3836 TBS - ok
    12:06:00.0563 3836 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    12:06:00.0595 3836 Tcpip - ok
    12:06:00.0626 3836 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    12:06:00.0657 3836 TCPIP6 - ok
    12:06:00.0720 3836 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    12:06:00.0751 3836 tcpipreg - ok
    12:06:00.0782 3836 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    12:06:00.0813 3836 TDPIPE - ok
    12:06:00.0829 3836 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    12:06:00.0845 3836 TDTCP - ok
    12:06:00.0892 3836 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    12:06:00.0923 3836 tdx - ok
    12:06:00.0954 3836 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    12:06:00.0970 3836 TermDD - ok
    12:06:01.0017 3836 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    12:06:01.0063 3836 TermService - ok
    12:06:01.0079 3836 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    12:06:01.0110 3836 Themes - ok
    12:06:01.0126 3836 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    12:06:01.0157 3836 THREADORDER - ok
    12:06:01.0173 3836 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    12:06:01.0204 3836 TrkWks - ok
    12:06:01.0267 3836 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    12:06:01.0298 3836 TrustedInstaller - ok
    12:06:01.0345 3836 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    12:06:01.0376 3836 tssecsrv - ok
    12:06:01.0407 3836 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    12:06:01.0423 3836 TsUsbFlt - ok
    12:06:01.0470 3836 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    12:06:01.0501 3836 tunnel - ok
    12:06:01.0532 3836 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    12:06:01.0548 3836 uagp35 - ok
    12:06:01.0595 3836 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    12:06:01.0626 3836 udfs - ok
    12:06:01.0642 3836 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    12:06:01.0657 3836 UI0Detect - ok
    12:06:01.0673 3836 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    12:06:01.0688 3836 uliagpkx - ok
    12:06:01.0704 3836 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    12:06:01.0720 3836 umbus - ok
    12:06:01.0735 3836 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    12:06:01.0767 3836 UmPass - ok
    12:06:01.0798 3836 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    12:06:01.0845 3836 upnphost - ok
    12:06:01.0892 3836 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
    12:06:01.0923 3836 usbaudio - ok
    12:06:01.0938 3836 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    12:06:01.0954 3836 usbccgp - ok
    12:06:01.0985 3836 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    12:06:02.0001 3836 usbcir - ok
    12:06:02.0017 3836 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    12:06:02.0032 3836 usbehci - ok
    12:06:02.0048 3836 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    12:06:02.0079 3836 usbhub - ok
    12:06:02.0095 3836 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
    12:06:02.0110 3836 usbohci - ok
    12:06:02.0126 3836 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    12:06:02.0142 3836 usbprint - ok
    12:06:02.0173 3836 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    12:06:02.0204 3836 usbscan - ok
    12:06:02.0220 3836 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    12:06:02.0235 3836 USBSTOR - ok
    12:06:02.0267 3836 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    12:06:02.0298 3836 usbuhci - ok
    12:06:02.0313 3836 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
    12:06:02.0345 3836 usbvideo - ok
    12:06:02.0392 3836 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
    12:06:02.0392 3836 usb_rndisx - ok
    12:06:02.0423 3836 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    12:06:02.0454 3836 UxSms - ok
    12:06:02.0470 3836 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    12:06:02.0485 3836 VaultSvc - ok
    12:06:02.0501 3836 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    12:06:02.0517 3836 vdrvroot - ok
    12:06:02.0548 3836 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    12:06:02.0595 3836 vds - ok
    12:06:02.0610 3836 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    12:06:02.0626 3836 vga - ok
    12:06:02.0642 3836 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    12:06:02.0673 3836 VgaSave - ok
    12:06:02.0704 3836 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    12:06:02.0720 3836 vhdmp - ok
    12:06:02.0751 3836 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    12:06:02.0751 3836 viaide - ok
    12:06:02.0782 3836 [ D022DC434EA8B4D0D93321F4C4921233 ] VMUVC C:\Windows\system32\Drivers\VMUVC.sys
    12:06:02.0813 3836 VMUVC ( UnsignedFile.Multi.Generic ) - warning
    12:06:02.0813 3836 VMUVC - detected UnsignedFile.Multi.Generic (1)
    12:06:02.0829 3836 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    12:06:02.0845 3836 volmgr - ok
    12:06:02.0892 3836 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    12:06:02.0907 3836 volmgrx - ok
    12:06:02.0923 3836 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    12:06:02.0938 3836 volsnap - ok
    12:06:02.0954 3836 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    12:06:02.0970 3836 vsmraid - ok
    12:06:03.0017 3836 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    12:06:03.0079 3836 VSS - ok
    12:06:03.0110 3836 [ 9D9FE9E24F03AD87324245F516BEDAE5 ] vvftUVC C:\Windows\system32\drivers\vvftUVC.sys
    12:06:03.0142 3836 vvftUVC ( UnsignedFile.Multi.Generic ) - warning
    12:06:03.0142 3836 vvftUVC - detected UnsignedFile.Multi.Generic (1)
    12:06:03.0142 3836 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
    12:06:03.0173 3836 vwifibus - ok
    12:06:03.0204 3836 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    12:06:03.0251 3836 W32Time - ok
    12:06:03.0251 3836 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    12:06:03.0282 3836 WacomPen - ok
    12:06:03.0313 3836 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    12:06:03.0360 3836 WANARP - ok
    12:06:03.0360 3836 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    12:06:03.0392 3836 Wanarpv6 - ok
    12:06:03.0438 3836 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    12:06:03.0470 3836 WatAdminSvc - ok
    12:06:03.0532 3836 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    12:06:03.0563 3836 wbengine - ok
    12:06:03.0595 3836 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    12:06:03.0610 3836 WbioSrvc - ok
    12:06:03.0642 3836 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    12:06:03.0673 3836 wcncsvc - ok
    12:06:03.0688 3836 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    12:06:03.0720 3836 WcsPlugInService - ok
    12:06:03.0735 3836 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    12:06:03.0735 3836 Wd - ok
    12:06:03.0767 3836 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    12:06:03.0782 3836 Wdf01000 - ok
    12:06:03.0798 3836 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    12:06:03.0845 3836 WdiServiceHost - ok
    12:06:03.0860 3836 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    12:06:03.0876 3836 WdiSystemHost - ok
    12:06:03.0907 3836 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    12:06:03.0938 3836 WebClient - ok
    12:06:03.0954 3836 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    12:06:03.0985 3836 Wecsvc - ok
    12:06:04.0001 3836 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    12:06:04.0048 3836 wercplsupport - ok
    12:06:04.0048 3836 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    12:06:04.0095 3836 WerSvc - ok
    12:06:04.0110 3836 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    12:06:04.0142 3836 WfpLwf - ok
    12:06:04.0157 3836 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    12:06:04.0173 3836 WIMMount - ok
    12:06:04.0188 3836 WinDefend - ok
    12:06:04.0204 3836 WinHttpAutoProxySvc - ok
    12:06:04.0267 3836 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    12:06:04.0298 3836 Winmgmt - ok
    12:06:04.0376 3836 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
    12:06:04.0438 3836 WinRM - ok
    12:06:04.0485 3836 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    12:06:04.0501 3836 WinUsb - ok
    12:06:04.0548 3836 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    12:06:04.0579 3836 Wlansvc - ok
    12:06:04.0610 3836 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    12:06:04.0626 3836 WmiAcpi - ok
    12:06:04.0642 3836 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    12:06:04.0657 3836 wmiApSrv - ok
    12:06:04.0673 3836 WMPNetworkSvc - ok
    12:06:04.0688 3836 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    12:06:04.0704 3836 WPCSvc - ok
    12:06:04.0751 3836 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    12:06:04.0767 3836 WPDBusEnum - ok
    12:06:04.0782 3836 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    12:06:04.0829 3836 ws2ifsl - ok
    12:06:04.0829 3836 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
    12:06:04.0860 3836 wscsvc - ok
    12:06:04.0860 3836 WSearch - ok
    12:06:04.0923 3836 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    12:06:04.0985 3836 wuauserv - ok
    12:06:05.0017 3836 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    12:06:05.0063 3836 WudfPf - ok
    12:06:05.0079 3836 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    12:06:05.0126 3836 WUDFRd - ok
    12:06:05.0173 3836 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    12:06:05.0204 3836 wudfsvc - ok
    12:06:05.0235 3836 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    12:06:05.0251 3836 WwanSvc - ok
    12:06:05.0267 3836 ================ Scan global ===============================
    12:06:05.0298 3836 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    12:06:05.0345 3836 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
    12:06:05.0360 3836 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
    12:06:05.0392 3836 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    12:06:05.0407 3836 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    12:06:05.0407 3836 [Global] - ok
    12:06:05.0407 3836 ================ Scan MBR ==================================
    12:06:05.0407 3836 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    12:06:05.0610 3836 \Device\Harddisk0\DR0 - ok
    12:06:05.0610 3836 ================ Scan VBR ==================================
    12:06:05.0610 3836 [ E2D416878856E74333FF9CF422D2D197 ] \Device\Harddisk0\DR0\Partition1
    12:06:05.0610 3836 \Device\Harddisk0\DR0\Partition1 - ok
    12:06:05.0642 3836 [ CE149E841BDB6CE4EE2F51B49B057B7E ] \Device\Harddisk0\DR0\Partition2
    12:06:05.0642 3836 \Device\Harddisk0\DR0\Partition2 - ok
    12:06:05.0642 3836 ============================================================
    12:06:05.0642 3836 Scan finished
    12:06:05.0642 3836 ============================================================
    12:06:05.0657 2816 Detected object count: 9
    12:06:05.0657 2816 Actual detected object count: 9
    12:06:24.0938 2816 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0938 2816 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0938 2816 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0938 2816 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0938 2816 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0938 2816 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0954 2816 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0954 2816 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0954 2816 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0954 2816 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0954 2816 NMIndexingService ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0954 2816 NMIndexingService ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0954 2816 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0954 2816 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    12:06:24.0954 2816 VMUVC ( UnsignedFile.Multi.Generic ) - skipped by user
    12:06:24.0954 281

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.