Vraag & Antwoord

OS Windows

Update problemen in windows 7.

20 antwoorden
  • Goededag Allemaal. Ik weet niet of ik mijn vraag hier goed stel,maar weet niet waar ik die anders moet stellen. Ik heb een computer windows 7 home premium,64 bits. Ik heb een probleem met de updates,als er gezocht word naar updates,krijg ik de code fout 80070002. Nu heb ik alles gevolgd via de probleem oplosser van window 7 maar niks helpt. Nu heb ik microsoft fixit gedownload,en die geeft aan dat alles is opgelost,en alles is gerepareerd,maar ga ik dan kijken bij windows update,en laat die dan zoeken naar updates,geeft hij weer code 80070002 aan. Ik word er niet vrolijk van,de computer is 9 maanden oud,2 maanden geleden kreeg ik dit probleem voor het eerst. Soms als ik de computer start krijg ik ook een blauwe bladzijde,vind dat ook vreemd gebeurd niet iedere keer maar een enkele keer. Graag uw hulp.
  • Deze dus al gedaan? http://windows.microsoft.com/nl-BE/windows7/Windows-Update-error-80070002 Verder zoeken via : http://www.google.nl/#hl=nl&sclient=psy-ab&q=%22windows+7%22++80070002&oq=%22windows+7%22++80070002&gs_l=serp.3...308.308.1.565.1.1.0.0.0.1.662.1054.3-1j0j1.2.0...0.0...1c.1.k1P5kkIRRd8&pbx=1&bav=on.2,or.r_gc.r_pw.r_qf.&fp=bbe11a32b59578c1&biw=1280&bih=885 of http://www.google.nl/#hl=nl&sclient=psy-ab&q=windows+80070002&oq=windows+80070002&gs_l=serp.3...28852.31477.0.32189.5.5.0.0.0.1.1091.2511.2-1j5-2j0j1.4.0...0.0...1c.1.5H3EparYu3U&pbx=1&bav=on.2,or.r_gc.r_pw.r_qf.&fp=bbe11a32b59578c1&biw=1280&bih=885
  • Dank je wel voor het antwoord,deze 3 heb ik allemaal gedaan,heeft me wat tijd gekost,maar niks opgelost. Dit is de 2 de keer dat dit probleem zich voor doet.
  • Ik zal Abraham vragen of die je kan helpen, hij heeft mij er toen ook vanaf geholpen maar ik weet niet meer hoe. Kan even duren voor hij reageerd want hij heeft het druk.
  • Dank je wel,ik wacht geduldig af.
  • Hallo suki, controleer in Services of onderstaande diensten op de juiste wijze zijn ingesteld: - Background Intelligent Transfer Server > Opstarttype=Automatisch - DCOM Process Server Launcher > Opstarttype=Automatisch - Remote Procedure Call (RPC) > Opstarttype=Automatisch - RPC Endpoint Mapper > Opstarttype=Automatisch - Windows Update > Opstarttype=Automatisch Indien je niet weet hoe in Services te geraken: [list:09df7aecd6][*:09df7aecd6] ga daarvoor naar Start - Uitvoeren: [*:09df7aecd6] kopieer en plak hierin het volgende: [b:09df7aecd6]services.msc[/b:09df7aecd6] [*:09df7aecd6] klik daarna op [b:09df7aecd6]OK[/b:09df7aecd6]. [list:09df7aecd6][*:09df7aecd6]Uitvoeren kan ook gestart worden door gelijktijdig de "Windowstoets + R-toets" in te drukken.[/list:u:09df7aecd6][/list:u:09df7aecd6] En doe ook het volgende: [b:09df7aecd6]Welk programma[/b:09df7aecd6]: [color=#008000:09df7aecd6][b:09df7aecd6]TDSSStarter .exe[/b:09df7aecd6][/color:09df7aecd6] [b:09df7aecd6]Waarvoor/waarom[/b:09df7aecd6]: Rootkitscanner [b:09df7aecd6]Moeilijkheidsgraad[/b:09df7aecd6]: geen Download [b:09df7aecd6][url=http://home.kpn.nl/stefsmeenk/tools/TDSSKStarter.exe]TDSSStarter [/url][/b:09df7aecd6] naar het bureaublad. [b:09df7aecd6]"TDSSSStarter.exe" gebruiken[/b:09df7aecd6]: [list:09df7aecd6][*:09df7aecd6] [b:09df7aecd6][color=#0000FF:09df7aecd6]Sluit nu eerst alle nog openstaande programmavensters![/color:09df7aecd6][/b:09df7aecd6] [list:09df7aecd6][*:09df7aecd6][b:09df7aecd6][color=#0000FF:09df7aecd6]Windows 2000[/color:09df7aecd6][/b:09df7aecd6] en [color=#0000FF:09df7aecd6][b:09df7aecd6]Windows XP[/b:09df7aecd6][/color:09df7aecd6]: start "[b:09df7aecd6] TDSSStarter .exe[/b:09df7aecd6]" middels dubbelklikken er op . [*:09df7aecd6][color=#0000FF:09df7aecd6][b:09df7aecd6]Windows Vista[/b:09df7aecd6][/color:09df7aecd6] en [color=#0000FF:09df7aecd6][b:09df7aecd6]Windows 7[/b:09df7aecd6][/color:09df7aecd6]: start "[b:09df7aecd6] TDSSStarter .exe[/b:09df7aecd6]" middels rechtsklik en kies dan voor [b:09df7aecd6]Als Administrator uitvoeren[/b:09df7aecd6].[/list:u:09df7aecd6] [*:09df7aecd6]Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten. [*:09df7aecd6]Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.[/list:u:09df7aecd6]
  • Dank je wel Abraham voor je hulp. Ik heb het dit nagekeken: Background Intelligent Transfer Server > Opstarttype=Automatisch - DCOM Process Server Launcher > Opstarttype=Automatisch - Remote Procedure Call (RPC) > Opstarttype=Automatisch - RPC Endpoint Mapper > Opstarttype=Automatisch - Windows Update > Opstarttype=Automatisch Alles klopte,behalve Remote Procedure Call ( RPC) daar stond handmatig,maar dat heb ik veranderd in automatisch. Moet ik nu TDSSStarter downloaden,en laten scannen? Maar dit begrijp ik niet zo goed,Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten. Post nu de inhoud van het geopende kladblokbestand in het volgende bericht. Kunt U me uitleggen wat daar mee bedoeld word ? Ik bedoel post nu de inhoud van het geopende kladblokbestand in het volgende bericht,maar welk bericht is dat dan,en waar te posten? Vriendelijke groet Suki.
  • Dat programma doet een scan, dat gebeurd tijdens dat cmd venster. Rustig wacchten. Als het programma klaar is zal er een kladblokbestand ( of 2) openen... De inhoud van dat tekstveld kopieer je in je volgende bericht En dat bericht kan hier, maar als je iets sneller wilt post het dan in Beveiliging en privacy, daar is hij heeeeeeeeeeeel vaak
  • Dank je wel voor je antwoord,Anjo. Maar ik krijg het programma niet rechtstreeks naar mijn bureaublad gedownload,word opgeslagen bij downloads. Van daaruit kan ik wel een snelkoppeling maken,maar dat is niet de bedoeling als ik het zo lees. Wie weet raad? ik heb even nog gekeken bij Systeem en beveiliging,en problemen met windows update oplossen,en dat geeft aan dat het probleem is opgelost,maar als ik dan weer probeer te updaten,geeft hij weer die fout aan. :roll: :roll:
  • Je verplaatst dat bestand naar het bureaublad door rechts te klikken erop en Knippen te kiezen. Op je bureaublad gebruik je dan de toetscombinatie CTRL + V.
  • Ik heb dit via downloads,door er rechts op te klikken,op knippen geklikt en dan gebeurd er niks,het komt niet op het bereaublad te staan,met kopieeren kan dat wel,maar als ik het dan open doet het niks,ook al laat ik het als administrator openen. Ik weet het even niet meer. :roll: :roll:
  • Indien knippen en vervolgens plakken ook niet werken is er behoorlijk wat mis in jouw Windows. Doe daarom het volgende: ga naar [b:aec96b664d]Start[/b:aec96b664d] en typ in de zoekregel [b:aec96b664d][color=#0000FF:aec96b664d]cmd[/color:aec96b664d][/b:aec96b664d] - bovenaan in het startmenu zie je nu de betreffende snelkoppeling. Klik deze snelkoppeling met rechts aan en kies voor [b:aec96b664d][color=#0000FF:aec96b664d]Als administrator uitvoeren[/color:aec96b664d][/b:aec96b664d]. In het zwarte venster typ je nu [b:aec96b664d][color=#0000FF:aec96b664d]sfc /scannow[/color:aec96b664d][/b:aec96b664d] gevolgd door indrukken van de Entertoets. Denk wel aan de spatie na 'sfc'. In het zwarte venster zie je vervolgens de voortgang van de scan. Is de scan klaar, typ je [b:aec96b664d][color=#0000FF:aec96b664d]Exit[/color:aec96b664d][/b:aec96b664d] gevolgd door indrukken van de Entertoets. Laat ook weten wat het resultaat van de scan is. SFC (SystemFileChecker) houdt in dat systeembestanden gecontroleerd worden op juist funktioneren, zo nodig volgt reparatie. Let goed op de laatste meldingen in het venster: indien aangegeven wordt, dat herstel afhankelijk is van opnieuw opstarten, doe dit dan.
  • Dit is het resultaat. 16:23:56.0922 2896 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24 16:23:56.0922 2896 ============================================================ 16:23:56.0922 2896 Current date / time: 2012/09/28 16:23:56.0922 16:23:56.0922 2896 SystemInfo: 16:23:56.0922 2896 16:23:56.0922 2896 OS Version: 6.1.7601 ServicePack: 1.0 16:23:56.0922 2896 Product type: Workstation 16:23:56.0922 2896 ComputerName: VLINDER 16:23:56.0922 2896 UserName: KARIN 16:23:56.0922 2896 Windows directory: C:\Windows 16:23:56.0922 2896 System windows directory: C:\Windows 16:23:56.0922 2896 Running under WOW64 16:23:56.0922 2896 Processor architecture: Intel x64 16:23:56.0922 2896 Number of processors: 2 16:23:56.0922 2896 Page size: 0x1000 16:23:56.0922 2896 Boot type: Normal boot 16:23:56.0922 2896 ============================================================ 16:23:59.0512 2896 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 16:23:59.0528 2896 ============================================================ 16:23:59.0528 2896 \Device\Harddisk0\DR0: 16:23:59.0606 2896 MBR partitions: 16:23:59.0606 2896 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2710800, BlocksNum 0x32000 16:23:59.0606 2896 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2742800, BlocksNum 0x1BE21000 16:23:59.0606 2896 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E563800, BlocksNum 0x1BE22030 16:23:59.0606 2896 ============================================================ 16:23:59.0730 2896 C: <-> \Device\Harddisk0\DR0\Partition2 16:23:59.0762 2896 D: <-> \Device\Harddisk0\DR0\Partition3 16:23:59.0762 2896 ============================================================ 16:23:59.0762 2896 Initialize success 16:23:59.0762 2896 ============================================================ 16:23:59.0824 1964 ============================================================ 16:23:59.0824 1964 Scan started 16:23:59.0824 1964 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent; 16:23:59.0824 1964 ============================================================ 16:24:01.0166 1964 ================ Scan system memory ======================== 16:24:01.0166 1964 ================ Scan services ============================= 16:24:01.0259 1964 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 16:24:01.0368 1964 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 16:24:01.0384 1964 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 16:24:01.0524 1964 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe 16:24:01.0634 1964 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 16:24:01.0696 1964 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 16:24:01.0743 1964 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 16:24:01.0774 1964 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 16:24:01.0821 1964 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 16:24:01.0992 1964 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 16:24:02.0180 1964 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 16:24:02.0211 1964 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 16:24:02.0289 1964 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 16:24:02.0304 1964 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 16:24:02.0336 1964 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 16:24:02.0398 1964 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 16:24:02.0460 1964 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 16:24:02.0492 1964 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 16:24:02.0538 1964 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 16:24:02.0554 1964 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 16:24:02.0726 1964 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 16:24:02.0772 1964 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 16:24:02.0835 1964 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 16:24:02.0850 1964 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 16:24:02.0866 1964 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 16:24:02.0928 1964 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 16:24:02.0960 1964 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 16:24:03.0022 1964 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 16:24:03.0100 1964 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 16:24:03.0209 1964 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 16:24:03.0287 1964 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 16:24:03.0381 1964 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 16:24:03.0428 1964 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 16:24:03.0537 1964 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 16:24:03.0771 1964 [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20120919.001\BHDrvx64.sys 16:24:03.0880 1964 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 16:24:03.0989 1964 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 16:24:04.0036 1964 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 16:24:04.0114 1964 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 16:24:04.0145 1964 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 16:24:04.0192 1964 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll 16:24:04.0270 1964 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 16:24:04.0301 1964 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 16:24:04.0317 1964 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 16:24:04.0348 1964 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 16:24:04.0379 1964 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 16:24:04.0410 1964 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 16:24:04.0457 1964 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 16:24:04.0504 1964 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys 16:24:04.0551 1964 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 16:24:04.0613 1964 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys 16:24:04.0644 1964 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 16:24:04.0707 1964 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 16:24:04.0738 1964 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 16:24:04.0816 1964 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 16:24:04.0863 1964 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 16:24:04.0910 1964 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys 16:24:04.0956 1964 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 16:24:04.0988 1964 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 16:24:05.0050 1964 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 16:24:05.0112 1964 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 16:24:05.0144 1964 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 16:24:05.0237 1964 [ F08C6020E57F5E5BF2FD034DB10BEDFB ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe 16:24:05.0253 1964 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 16:24:05.0315 1964 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll 16:24:05.0393 1964 [ 2D368A9D6E333999B5473369E9AB31A6 ] CtrlPanel C:\Windows\SysWOW64\CtrlPanel.exe 16:24:05.0409 1964 CtrlPanel ( UnsignedFile.Multi.Generic ) - [b:de3d16a8fa][color=red:de3d16a8fa]warning[/color:de3d16a8fa][/b:de3d16a8fa] 16:24:05.0409 1964 CtrlPanel - detected UnsignedFile.Multi.Generic (1) 16:24:05.0565 1964 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 16:24:05.0705 1964 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 16:24:05.0783 1964 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 16:24:05.0830 1964 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 16:24:05.0877 1964 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 16:24:05.0924 1964 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 16:24:06.0002 1964 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 16:24:06.0017 1964 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 16:24:06.0095 1964 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 16:24:06.0158 1964 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 16:24:06.0236 1964 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 16:24:06.0314 1964 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 16:24:06.0345 1964 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 16:24:06.0485 1964 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 16:24:06.0641 1964 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 16:24:06.0688 1964 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 16:24:06.0766 1964 [ 03E6888DA1A85ACF14AC2A3C328A9E62 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe 16:24:06.0844 1964 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 16:24:06.0938 1964 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 16:24:07.0000 1964 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 16:24:07.0094 1964 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 16:24:07.0109 1964 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 16:24:07.0172 1964 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 16:24:07.0265 1964 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 16:24:07.0328 1964 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 16:24:07.0421 1964 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 16:24:07.0499 1964 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 16:24:07.0530 1964 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 16:24:07.0577 1964 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 16:24:07.0640 1964 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 16:24:07.0655 1964 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 16:24:07.0733 1964 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 16:24:07.0764 1964 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 16:24:07.0811 1964 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 16:24:07.0920 1964 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 16:24:07.0936 1964 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 16:24:07.0967 1964 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 16:24:08.0014 1964 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 16:24:08.0045 1964 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 16:24:08.0108 1964 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 16:24:08.0154 1964 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 16:24:08.0264 1964 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe 16:24:08.0373 1964 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 16:24:08.0388 1964 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 16:24:08.0435 1964 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 16:24:08.0466 1964 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 16:24:08.0544 1964 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 16:24:08.0622 1964 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 16:24:08.0654 1964 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 16:24:08.0685 1964 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 16:24:08.0732 1964 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys 16:24:08.0778 1964 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 16:24:08.0841 1964 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys 16:24:08.0888 1964 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 16:24:08.0966 1964 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 16:24:09.0012 1964 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 16:24:09.0075 1964 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 16:24:09.0122 1964 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 16:24:09.0200 1964 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 16:24:09.0231 1964 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 16:24:09.0293 1964 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 16:24:09.0356 1964 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 16:24:09.0621 1964 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120927.001\IDSvia64.sys 16:24:09.0917 1964 [ 371D7F91C0D2314EB984A4A6CBEABC92 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 16:24:10.0276 1964 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 16:24:10.0323 1964 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 16:24:10.0448 1964 [ 0B21B66574E5478FA10CCA2D36694C2D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 16:24:10.0494 1964 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 16:24:10.0541 1964 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 16:24:10.0588 1964 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 16:24:10.0650 1964 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 16:24:10.0760 1964 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 16:24:10.0838 1964 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 16:24:10.0884 1964 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 16:24:10.0931 1964 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 16:24:10.0962 1964 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 16:24:11.0009 1964 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 16:24:11.0040 1964 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 16:24:11.0056 1964 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 16:24:11.0087 1964 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 16:24:11.0118 1964 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 16:24:11.0165 1964 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 16:24:11.0212 1964 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 16:24:11.0306 1964 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 16:24:11.0399 1964 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 16:24:11.0477 1964 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 16:24:11.0571 1964 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe 16:24:11.0602 1964 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 16:24:11.0696 1964 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 16:24:11.0774 1964 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 16:24:11.0898 1964 [ E7859BA062DB5E23C6DD34AD66B09F50 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 16:24:11.0930 1964 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 16:24:11.0961 1964 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 16:24:12.0008 1964 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 16:24:12.0023 1964 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 16:24:12.0054 1964 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 16:24:12.0117 1964 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 16:24:12.0148 1964 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 16:24:12.0210 1964 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 16:24:12.0242 1964 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 16:24:12.0288 1964 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 16:24:12.0335 1964 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 16:24:12.0398 1964 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 16:24:12.0429 1964 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 16:24:12.0460 1964 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys 16:24:12.0522 1964 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 16:24:12.0538 1964 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 16:24:12.0554 1964 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 16:24:12.0647 1964 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 16:24:12.0725 1964 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 16:24:12.0803 1964 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 16:24:12.0850 1964 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 16:24:12.0897 1964 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 16:24:12.0959 1964 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 16:24:12.0990 1964 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 16:24:13.0022 1964 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 16:24:13.0053 1964 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 16:24:13.0131 1964 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 16:24:13.0193 1964 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 16:24:13.0240 1964 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 16:24:13.0302 1964 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 16:24:13.0349 1964 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 16:24:13.0412 1964 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 16:24:13.0474 1964 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 16:24:13.0490 1964 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 16:24:13.0536 1964 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 16:24:13.0583 1964 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 16:24:13.0614 1964 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 16:24:13.0630 1964 [ 9B1EAC6FAF6F37305E822F5588DC8056 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys 16:24:13.0646 1964 [ AD55C1524B296280ED9C6E0D730D35DA ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys 16:24:13.0661 1964 [ 2B599E6EC8843637BDD62E7F8F3BA201 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys 16:24:13.0708 1964 [ E78A365CC3E0FBFC018A33DCE01909F8 ] N360 C:\Program Files (x86)\Norton 360\Engine\5.2.2.3\ccSvcHst.exe 16:24:13.0755 1964 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 16:24:13.0848 1964 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 16:24:13.0911 1964 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe 16:24:13.0989 1964 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120927.034\ENG64.SYS 16:24:14.0082 1964 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120927.034\EX64.SYS 16:24:14.0160 1964 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys 16:24:14.0207 1964 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 16:24:14.0254 1964 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 16:24:14.0316 1964 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 16:24:14.0363 1964 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 16:24:14.0410 1964 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 16:24:14.0441 1964 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 16:24:14.0488 1964 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 16:24:14.0535 1964 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 16:24:14.0566 1964 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 16:24:14.0613 1964 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 16:24:14.0706 1964 [ AF5F224A600F50B7D2B77F4AE59C1ABE ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys 16:24:14.0738 1964 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 16:24:14.0769 1964 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 16:24:14.0816 1964 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll 16:24:14.0940 1964 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe 16:24:15.0050 1964 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 16:24:15.0081 1964 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 16:24:15.0174 1964 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 16:24:15.0268 1964 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 16:24:15.0362 1964 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 16:24:15.0424 1964 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 16:24:15.0471 1964 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 16:24:15.0518 1964 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 16:24:15.0533 1964 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 16:24:15.0580 1964 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 16:24:15.0689 1964 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 16:24:15.0876 1964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 16:24:15.0939 1964 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 16:24:15.0986 1964 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 16:24:16.0017 1964 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 16:24:16.0048 1964 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 16:24:16.0095 1964 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 16:24:16.0110 1964 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 16:24:16.0126 1964 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 16:24:16.0142 1964 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 16:24:16.0173 1964 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 16:24:16.0282 1964 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 16:24:16.0360 1964 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 16:24:16.0454 1964 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 16:24:16.0500 1964 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 16:24:16.0532 1964 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 16:24:16.0594 1964 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 16:24:16.0688 1964 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 16:24:16.0750 1964 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 16:24:16.0828 1964 [ 3191D910590F6210089498F536CFC25F ] PQAWRwa C:\Windows\SysWOW64\PQAWDrv.sys 16:24:16.0828 1964 PQAWRwa ( UnsignedFile.Multi.Generic ) - [b:de3d16a8fa][color=red:de3d16a8fa]warning[/color:de3d16a8fa][/b:de3d16a8fa] 16:24:16.0828 1964 PQAWRwa - detected UnsignedFile.Multi.Generic (1) 16:24:16.0844 1964 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 16:24:16.0890 1964 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 16:24:16.0953 1964 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 16:24:17.0015 1964 [ F115AF58ABE5605D7D709CBFBD83F418 ] ProtexisLicensing C:\Windows\SysWOW64\PSIService.exe 16:24:17.0062 1964 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 16:24:17.0156 1964 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe 16:24:17.0187 1964 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 16:24:17.0265 1964 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 16:24:17.0327 1964 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 16:24:17.0390 1964 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 16:24:17.0421 1964 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 16:24:17.0452 1964 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 16:24:17.0514 1964 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 16:24:17.0592 1964 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 16:24:17.0655 1964 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 16:24:17.0702 1964 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 16:24:17.0748 1964 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 16:24:17.0795 1964 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 16:24:17.0873 1964 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 16:24:17.0936 1964 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys 16:24:17.0982 1964 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 16:24:18.0045 1964 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 16:24:18.0107 1964 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 16:24:18.0185 1964 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 16:24:18.0263 1964 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 16:24:18.0294 1964 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 16:24:18.0357 1964 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 16:24:18.0419 1964 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 16:24:18.0497 1964 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 16:24:18.0513 1964 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 16:24:18.0591 1964 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 16:24:18.0669 1964 [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 16:24:18.0700 1964 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 16:24:18.0716 1964 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 16:24:18.0747 1964 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 16:24:18.0778 1964 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 16:24:18.0840 1964 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 16:24:18.0903 1964 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 16:24:18.0934 1964 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 16:24:18.0996 1964 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 16:24:19.0059 1964 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 16:24:19.0106 1964 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 16:24:19.0137 1964 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 16:24:19.0199 1964 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 16:24:19.0246 1964 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 16:24:19.0277 1964 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 16:24:19.0308 1964 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 16:24:19.0340 1964 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 16:24:19.0371 1964 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 16:24:19.0386 1964 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 16:24:19.0418 1964 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 16:24:19.0464 1964 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 16:24:19.0558 1964 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 16:24:19.0620 1964 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 16:24:19.0652 1964 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 16:24:19.0683 1964 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 16:24:19.0714 1964 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 16:24:19.0745 1964 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 16:24:19.0808 1964 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 16:24:19.0870 1964 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 16:24:19.0901 1964 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 16:24:19.0932 1964 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 16:24:19.0995 1964 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 16:24:20.0042 1964 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 16:24:20.0073 1964 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe 16:24:20.0213 1964 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 16:24:20.0338 1964 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 16:24:20.0463 1964 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\N360x64\0502020.003\SRTSP64.SYS 16:24:20.0525 1964 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\N360x64\0502020.003\SRTSPX64.SYS 16:24:20.0572 1964 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 16:24:20.0697 1964 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 16:24:20.0744 1964 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 16:24:20.0806 1964 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 16:24:20.0853 1964 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 16:24:20.0915 1964 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 16:24:20.0946 1964 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 16:24:20.0978 1964 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 16:24:20.0993 1964 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 16:24:21.0118 1964 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\N360x64\0502020.003\SYMDS64.SYS 16:24:21.0180 1964 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\N360x64\0502020.003\SYMEFA64.SYS 16:24:21.0243 1964 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 16:24:21.0274 1964 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\N360x64\0502020.003\Ironx64.SYS 16:24:21.0305 1964 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\N360x64\0502020.003\SYMNETS.SYS 16:24:21.0368 1964 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 16:24:21.0461 1964 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 16:24:21.0524 1964 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 16:24:21.0570 1964 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 16:24:21.0680 1964 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 16:24:21.0867 1964 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 16:24:21.0929 1964 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 16:24:22.0007 1964 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 16:24:22.0070 1964 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 16:24:22.0116 1964 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 16:24:22.0179 1964 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 16:24:22.0210 1964 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 16:24:22.0272 1964 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 16:24:22.0304 1964 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 16:24:22.0382 1964 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 16:24:22.0491 1964 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 16:24:22.0553 1964 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 16:24:22.0616 1964 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 16:24:22.0678 1964 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 16:24:22.0740 1964 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 16:24:22.0803 1964 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 16:24:22.0834 1964 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 16:24:22.0912 1964 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 16:24:22.0959 1964 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 16:24:22.0990 1964 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 16:24:23.0052 1964 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 16:24:23.0162 1964 [ E91F8AFBD7FB96C94B266579D6BFA77A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 16:24:23.0302 1964 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 16:24:23.0380 1964 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 16:24:23.0442 1964 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 16:24:23.0474 1964 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 16:24:23.0536 1964 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 16:24:23.0614 1964 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 16:24:23.0630 1964 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys 16:24:23.0676 1964 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 16:24:23.0754 1964 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 16:24:23.0817 1964 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 16:24:23.0864 1964 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 16:24:23.0942 1964 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 16:24:23.0973 1964 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 16:24:24.0020 1964 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 16:24:24.0098 1964 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 16:24:24.0285 1964 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 16:24:24.0488 1964 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 16:24:24.0503 1964 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 16:24:24.0519 1964 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 16:24:24.0534 1964 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 16:24:24.0550 1964 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 16:24:24.0612 1964 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 16:24:24.0675 1964 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 16:24:24.0768 1964 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 16:24:24.0815 1964 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 16:24:24.0846 1964 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 16:24:24.0924 1964 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 16:24:24.0956 1964 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 16:24:25.0018 1964 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 16:24:25.0112 1964 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 16:24:25.0377 1964 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 16:24:25.0455 1964 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 16:24:25.0517 1964 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 16:24:25.0533 1964 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 16:24:25.0611 1964 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 16:24:25.0658 1964 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 16:24:25.0689 1964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 16:24:25.0782 1964 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 16:24:25.0829 1964 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 16:24:25.0876 1964 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 16:24:25.0923 1964 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 16:24:26.0001 1964 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 16:24:26.0048 1964 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 16:24:26.0094 1964 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 16:24:26.0157 1964 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 16:24:26.0250 1964 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 16:24:26.0375 1964 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 16:24:26.0438 1964 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 16:24:26.0516 1964 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 16:24:26.0625 1964 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 16:24:26.0750 1964 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 16:24:26.0796 1964 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 16:24:26.0859 1964 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 16:24:26.0890 1964 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 16:24:26.0921 1964 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 16:24:26.0968 1964 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 16:24:27.0077 1964 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 16:24:27.0186 1964 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 16:24:27.0249 1964 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 16:24:27.0311 1964 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 16:24:27.0358 1964 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 16:24:27.0405 1964 ================ Scan global =============================== 16:24:27.0420 1964 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 16:24:27.0436 1964 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 16:24:27.0452 1964 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll 16:24:27.0467 1964 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 16:24:27.0483 1964 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 16:24:27.0483 1964 ================ Scan MBR ================================== 16:24:27.0498 1964 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 16:24:30.0104 1964 ================ Scan VBR ================================== 16:24:30.0135 1964 [ B7CAEC7C8BC77644351F08C502C2CB2A ] \Device\Harddisk0\DR0\Partition1 16:24:30.0150 1964 [ AAFB26EC7B9A3333FAD331BDCCA0436F ] \Device\Harddisk0\DR0\Partition2 16:24:30.0182 1964 [ 8367E73948F859DD1B29E51A5D5F9FED ] \Device\Harddisk0\DR0\Partition3 16:24:30.0182 1964 ================ Scan UEFI extensions ====================== 16:24:30.0182 1964 ================ Scan active images ======================== 16:24:30.0182 1964 ============================================================ 16:24:30.0182 1964 Scan finished 16:24:30.0182 1964 ============================================================ 16:24:31.0071 1960 Deinitialize success . ============================================== System Restore Point Check: . TDSSKiller Starter Restore Point Created Succesfully ============================================== . ============================================== C:\TDSSStarter\Report.log C:\TDSSStarter\Report_27-09-2012_1222_.log C:\TDSSStarter\Report_27-09-2012_1223_.log C:\TDSSStarter\Report_27-09-2012_1247_.log ============================================== Registry Export . 16:15:57.0260 5016 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24 16:15:57.0275 5016 ============================================================ 16:15:57.0275 5016 Current date / time: 2012/09/28 16:15:57.0275 16:15:57.0275 5016 SystemInfo: 16:15:57.0275 5016 16:15:57.0275 5016 OS Version: 6.1.7601 ServicePack: 1.0 16:15:57.0275 5016 Product type: Workstation 16:15:57.0275 5016 ComputerName: VLINDER 16:15:57.0275 5016 UserName: KARIN 16:15:57.0275 5016 Windows directory: C:\Windows 16:15:57.0275 5016 System windows directory: C:\Windows 16:15:57.0275 5016 Running under WOW64 16:15:57.0275 5016 Processor architecture: Intel x64 16:15:57.0275 5016 Number of processors: 2 16:15:57.0275 5016 Page size: 0x1000 16:15:57.0275 5016 Boot type: Normal boot 16:15:57.0275 5016 ============================================================ 16:16:00.0316 5016 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 16:16:00.0332 5016 ============================================================ 16:16:00.0332 5016 \Device\Harddisk0\DR0: 16:16:00.0332 5016 MBR partitions: 16:16:00.0332 5016 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2710800, BlocksNum 0x32000 16:16:00.0332 5016 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2742800, BlocksNum 0x1BE21000 16:16:00.0332 5016 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E563800, BlocksNum 0x1BE22030 16:16:00.0332 5016 ============================================================ 16:16:00.0348 5016 C: <-> \Device\Harddisk0\DR0\Partition2 16:16:00.0363 5016 D: <-> \Device\Harddisk0\DR0\Partition3 16:16:00.0379 5016 ============================================================ 16:16:00.0379 5016 Initialize success 16:16:00.0379 5016 ============================================================ 16:16:00.0410 1360 ============================================================ 16:16:00.0410 1360 Scan started 16:16:00.0410 1360 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent; 16:16:00.0410 1360 ============================================================ 16:16:01.0830 1360 ================ Scan system memory ======================== 16:16:01.0830 1360 ================ Scan services ============================= 16:16:01.0923 1360 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys ???????????????????????????????????????????????????????????????????????????????????????????????? ============================================== EOF
  • Alles in orde wat betreft die verlaat gedane scan. Ik wil nu graag dat jij de opdracht uitvoert welke in mijn vorige bericht staat vermeld en post dan de melding die Windows na de scan zal geven.
  • De scan heb ik uitgevoerd maar dan krijg ik te zien. De aangevraagde bewerking kan niet worden uitgevoerd. C:/windows systeem 32 Ik weet niet of het iets mee te maken heeft maar de computer is een 64 bits. Graag verder advies wat ik nu kan doen.
  • Heb je het zwarte scherm zonder- of met administratorrechten opgestart?
  • [quote:b063c2dbb3="Abraham54"]Heb je het zwarte scherm zonder- of met administratorrechten opgestart?[/quote:b063c2dbb3] Ja ik heb de met administrator opgestart,dat stond ook in je bericht boven het scan resultaat. ga naar Start en typ in de zoekregel cmd - bovenaan in het startmenu zie je nu de betreffende snelkoppeling. Klik deze snelkoppeling met rechts aan en kies voor Als administrator uitvoeren. Zo heb ik het dus gedaan,als beschreven. Hoe nu verder??
  • Probeer het nogmaals.
  • Weer hetzelfde resultaat. De scan heb ik uitgevoerd maar dan krijg ik te zien. De aangevraagde bewerking kan niet worden uitgevoerd. C:/windows systeem 32 Hoe nu verder??
  • Dit forumonderdeel is voor de volgende handeling welliswaar niet het juiste, maar we moeten door: [b:ca8de08033]Welk programma[/b:ca8de08033]: [color=#008000:ca8de08033][b:ca8de08033]ComboFix[/b:ca8de08033][/color:ca8de08033] [b:ca8de08033]Waarvoor/waarom[/b:ca8de08033]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en op te schonen. [b:ca8de08033]Moeilijkheidsgraad[/b:ca8de08033]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:ca8de08033]Downloadlokatie[/b:ca8de08033]: Dit programma absoluut naar het bureaublad downloaden! [b:ca8de08033]Download ComboFix via één van deze locaties[/b:ca8de08033]: [list:ca8de08033][*:ca8de08033][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:ca8de08033]Bleepingcomputer[/b:ca8de08033][/url] [*:ca8de08033][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:ca8de08033]ForoSpyware[/b:ca8de08033][/url] [*:ca8de08033][url=http://subs.geekstogo.com/ComboFix.exe][b:ca8de08033]Geekstogo[/b:ca8de08033][/url][/list:u:ca8de08033] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:ca8de08033][color=#0000FF:ca8de08033]Hier[/color:ca8de08033][/b:ca8de08033][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor je ComboFix start gedeaktiveert zijn! [url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32608][b:ca8de08033][color=#0000FF:ca8de08033]Hier[/color:ca8de08033][/b:ca8de08033][/url] en [url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32607][b:ca8de08033][color=#0000FF:ca8de08033]hier[/color:ca8de08033][/b:ca8de08033][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:ca8de08033]Opmerkingen[/b:ca8de08033]: [list:ca8de08033][*:ca8de08033] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist). [*:ca8de08033]Alle openstaande programma's en webpagina's dienen afgesloten te zijn. [*:ca8de08033]Indien ComboFix een melding geeft over Zero-acces, meld dat vervolgens erbij in je nieuwe bericht.[/list:u:ca8de08033] [b:ca8de08033]ComboFix opstarten[/b:ca8de08033]: [list:ca8de08033][*:ca8de08033][b:ca8de08033][color=#0000FF:ca8de08033]Windows 2000[/color:ca8de08033][/b:ca8de08033] en [color=#0000FF:ca8de08033][b:ca8de08033]Windows XP[/b:ca8de08033][/color:ca8de08033]: dubbelklik op ComboFix.exe. [*:ca8de08033][color=#0000FF:ca8de08033][b:ca8de08033]Windows Vista[/b:ca8de08033][/color:ca8de08033] en [color=#0000FF:ca8de08033][b:ca8de08033]Windows 7[/b:ca8de08033][/color:ca8de08033]: via rechtsklik op ComboFix.exe en kies voor "Als Administrator uitvoeren".[/list:u:ca8de08033] [b:ca8de08033]ComboFix is opgestart[/b:ca8de08033]: [list:ca8de08033][*:ca8de08033]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:ca8de08033]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen! [*:ca8de08033]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:ca8de08033]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:ca8de08033]Post de inhoud van dit logbestand in je volgende bericht. [*:ca8de08033]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:ca8de08033] [b:ca8de08033]Belangrijke opmerking[/b:ca8de08033]: [list:ca8de08033][*:ca8de08033][b:ca8de08033][color=#0000FF:ca8de08033]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:ca8de08033][/b:ca8de08033] [*:ca8de08033][b:ca8de08033][color=#FF0000:ca8de08033]Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.[/color:ca8de08033][/b:ca8de08033] [*:ca8de08033][b:ca8de08033][color=#008000:ca8de08033]Start dan de computer opnieuw op.[/color:ca8de08033][/b:ca8de08033][/list:u:ca8de08033]

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.