megapebbels

Lid

Bekijk profiel Bekijk hun activiteit

Items
65
Registratiedatum
2 maart 2008
Laatst bezocht
11 november 2012

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door megapebbels

Apps installeren lukt niet meer...

megapebbels plaatste een topic in Archief Tablet- en Smartphone

Hallo, sinds gisteren hebben we een iPad 3. Na het downloaden van iOS kunnen wij geen apps installeren. We moeten onze wachtwoord ingeven en dan moeten we normaal drie vragen beantwoordden. Telkens vraagt hij opnieuw mijn wachtwoord ipv die drie vragen. Dus het lukt mij niet om mij apps te downloaden. Weet iemand hoe ik dit moet verhelpen? .
- 11 november 2012
- 1 antwoord
invulstrook toevoegen

megapebbels reageerde op megapebbels's topic in Archief Microsoft Office

als je bij word links bovenaan klikt, kan je in dit tabblad op opties klikken. daar vink je ontwikkelaars aan, je krijgt dan een extra tabblad bij word bovenaan. Daar heb je verschillende mogelijkheden om formulieren te maken, je kan zelfs een kalender invoegen zodat je de datums niet zelf moet intikken. Er zijn veel mogelijkheden, ontdekken zou ik zeggen ;-)
- 6 juni 2012
- 5 antwoorden
- - blijf
  - blijft
  - (en 7 meer)
    Getagd met:
    
    blijf
    
    blijft
    
    gegevens
    
    maken
    
    mogelijk
    
    naam
    
    office
    
    probleem
    
    vullen
invulstrook toevoegen

megapebbels reageerde op megapebbels's topic in Archief Microsoft Office

het is mij gelukt zonder kolommen te maken. tussen de zinnen heb ik een tekstveld ingevoegd alavast bedankt
- 6 juni 2012
- 5 antwoorden
- - blijf
  - blijft
  - (en 7 meer)
    Getagd met:
    
    blijf
    
    blijft
    
    gegevens
    
    maken
    
    mogelijk
    
    naam
    
    office
    
    probleem
    
    vullen
invulstrook toevoegen

megapebbels reageerde op megapebbels's topic in Archief Microsoft Office

Windows 2007 Ik kan niet werken met kolommen omdat er volledige zinnen instaan met ontbrekende woorden die moeten ingvuld worden. Bv: op dd........../......./............werd voor................opgemaakt te.............. OF een lijn met een zin en daaronder moeten er 3 invullijnen staan hopelijk ben ik duidelijk genoeg
- 6 juni 2012
- 5 antwoorden
- - blijf
  - blijft
  - (en 7 meer)
    Getagd met:
    
    blijf
    
    blijft
    
    gegevens
    
    maken
    
    mogelijk
    
    naam
    
    office
    
    probleem
    
    vullen
invulstrook toevoegen

megapebbels plaatste een topic in Archief Microsoft Office

Hallo, Ik wil een formulier maken in Word waar iemand anders de ontbrekende gegevens kan invullen. BV -> naam:....................................................................................................... Graag wens ik dat de stippen of lijn blijft staan als ze dit invullen. Dus dat ze kunnen typen op de lijn zelf. Is dit mogelijk?
- 6 juni 2012
- 5 antwoorden
- - blijf
  - blijft
  - (en 7 meer)
    Getagd met:
    
    blijf
    
    blijft
    
    gegevens
    
    maken
    
    mogelijk
    
    naam
    
    office
    
    probleem
    
    vullen
AVI bestand op USB plaatsen

megapebbels reageerde op megapebbels's topic in Archief Multimedia

Hallo, Mijn dochter heeft het omgezet naar een ander bestand en zo op cd gezet. Alvast bedankt voor de hulp
- 29 mei 2012
- 6 antwoorden
- - bestand
  - dochter
  - (en 7 meer)
    Getagd met:
    
    bestand
    
    dochter
    
    filmpje
    
    geluid
    
    lossen
    
    multimedia
    
    noch
    
    probleem
    
    video
AVI bestand op USB plaatsen

megapebbels reageerde op megapebbels's topic in Archief Multimedia

kan het programma niet downloaden. Krijg telkens een foutmelding
- 23 mei 2012
- 6 antwoorden
- - bestand
  - dochter
  - (en 7 meer)
    Getagd met:
    
    bestand
    
    dochter
    
    filmpje
    
    geluid
    
    lossen
    
    multimedia
    
    noch
    
    probleem
    
    video
AVI bestand op USB plaatsen

megapebbels plaatste een topic in Archief Multimedia

Hallo, Mijn dochter moet voor school een filmpje plaatsen op een USB stick Het bestand is AVI en is te groot voor de stick. De stik is nochtans 16Gb en het filmpje 10Gb. Wie kan mij helpen dit op te lossen? Alvast bedankt
- 23 mei 2012
- 6 antwoorden
- - bestand
  - dochter
  - (en 7 meer)
    Getagd met:
    
    bestand
    
    dochter
    
    filmpje
    
    geluid
    
    lossen
    
    multimedia
    
    noch
    
    probleem
    
    video
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Joepi, het is gelukt, een dikke merci voor je hulp!!
- 15 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Bij alle snelkoppelingen op het bureaublad is er niets aangevinkt, maar zoals je ziet staat er bij start niets buiten de "snelkoppeling" naar "computer".
- 14 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

ik krijg alle mappen op mijn bureablad maar ik begrijp niet goed waar ik rechts moet klikken, is dit op het bureablad zelf?
- 14 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

19:19:21.0762 1220 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05 19:19:22.0202 1220 ============================================================ 19:19:22.0203 1220 Current date / time: 2012/04/12 19:19:22.0202 19:19:22.0203 1220 SystemInfo: 19:19:22.0203 1220 19:19:22.0203 1220 OS Version: 6.1.7601 ServicePack: 1.0 19:19:22.0203 1220 Product type: Workstation 19:19:22.0203 1220 ComputerName: VDB-PC 19:19:22.0204 1220 UserName: vdb 19:19:22.0204 1220 Windows directory: C:\Windows 19:19:22.0204 1220 System windows directory: C:\Windows 19:19:22.0204 1220 Running under WOW64 19:19:22.0204 1220 Processor architecture: Intel x64 19:19:22.0204 1220 Number of processors: 2 19:19:22.0204 1220 Page size: 0x1000 19:19:22.0204 1220 Boot type: Normal boot 19:19:22.0204 1220 ============================================================ 19:19:28.0131 1220 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:19:28.0179 1220 \Device\Harddisk0\DR0: 19:19:28.0209 1220 MBR used 19:19:28.0209 1220 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1964800, BlocksNum 0x32000 19:19:28.0209 1220 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1996800, BlocksNum 0x23A97AB0 19:19:28.0296 1220 Initialize success 19:19:28.0296 1220 ============================================================ 19:19:43.0248 1356 ============================================================ 19:19:43.0248 1356 Scan started 19:19:43.0248 1356 Mode: Manual; 19:19:43.0248 1356 ============================================================ 19:19:59.0920 1356 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 19:19:59.0950 1356 1394ohci - ok 19:20:00.0437 1356 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 19:20:00.0479 1356 ACPI - ok 19:20:00.0844 1356 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 19:20:00.0863 1356 AcpiPmi - ok 19:20:01.0307 1356 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys 19:20:01.0325 1356 adp94xx - ok 19:20:01.0902 1356 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys 19:20:01.0912 1356 adpahci - ok 19:20:02.0371 1356 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys 19:20:02.0379 1356 adpu320 - ok 19:20:02.0804 1356 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll 19:20:04.0164 1356 AeLookupSvc - ok 19:20:04.0707 1356 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 19:20:04.0734 1356 AFD - ok 19:20:05.0175 1356 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 19:20:05.0258 1356 agp440 - ok 19:20:05.0793 1356 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe 19:20:05.0811 1356 ALG - ok 19:20:06.0225 1356 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 19:20:06.0242 1356 aliide - ok 19:20:06.0545 1356 AMD External Events Utility (d865f8abff031563e860d16a38bd5a35) C:\Windows\system32\atiesrxx.exe 19:20:06.0585 1356 AMD External Events Utility - ok 19:20:06.0968 1356 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 19:20:07.0016 1356 amdide - ok 19:20:07.0410 1356 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys 19:20:07.0431 1356 AmdK8 - ok 19:20:09.0049 1356 amdkmdag (83418f6ee5a81dddd8e248fcbfc99af6) C:\Windows\system32\DRIVERS\atipmdag.sys 19:20:09.0294 1356 amdkmdag - ok 19:20:09.0799 1356 amdkmdap (7e58b5e1deaa70bd46997068df06b4e3) C:\Windows\system32\DRIVERS\atikmpag.sys 19:20:09.0802 1356 amdkmdap - ok 19:20:10.0272 1356 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys 19:20:10.0541 1356 AmdPPM - ok 19:20:10.0961 1356 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 19:20:10.0974 1356 amdsata - ok 19:20:11.0615 1356 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys 19:20:11.0653 1356 amdsbs - ok 19:20:12.0222 1356 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 19:20:12.0223 1356 amdxata - ok 19:20:12.0636 1356 AmUStor (391887990cdaa83de5c56c3fde966da1) C:\Windows\system32\drivers\AmUStor.SYS 19:20:12.0653 1356 AmUStor - ok 19:20:13.0055 1356 ApfiltrService (6f9ef180bb9cec92d3e8ec9163748de5) C:\Windows\system32\DRIVERS\Apfiltr.sys 19:20:13.0060 1356 ApfiltrService - ok 19:20:13.0370 1356 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 19:20:13.0382 1356 AppID - ok 19:20:13.0596 1356 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll 19:20:13.0608 1356 AppIDSvc - ok 19:20:14.0048 1356 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll 19:20:14.0114 1356 Appinfo - ok 19:20:14.0470 1356 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 19:20:14.0496 1356 Apple Mobile Device - ok 19:20:15.0035 1356 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys 19:20:15.0040 1356 arc - ok 19:20:15.0405 1356 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys 19:20:15.0429 1356 arcsas - ok 19:20:15.0795 1356 aswFsBlk (ce6d8bcc4787704ea4feeb92b0d0caf8) C:\Windows\system32\drivers\aswFsBlk.sys 19:20:15.0796 1356 aswFsBlk - ok 19:20:16.0226 1356 aswMonFlt (0debeb2e3fbd0bf5343125cce617f105) C:\Windows\system32\drivers\aswMonFlt.sys 19:20:16.0228 1356 aswMonFlt - ok 19:20:16.0524 1356 aswRdr (952edc2e81f85d1781958d4128bf59f8) C:\Windows\system32\drivers\aswRdr.sys 19:20:16.0526 1356 aswRdr - ok 19:20:17.0297 1356 aswSnx (dd383e2ac941c545a85ab72503da6c12) C:\Windows\system32\drivers\aswSnx.sys 19:20:17.0306 1356 aswSnx - ok 19:20:17.0856 1356 aswSP (ef5403fb8b2dcb791ec365fdf6040a4a) C:\Windows\system32\drivers\aswSP.sys 19:20:17.0862 1356 aswSP - ok 19:20:18.0383 1356 aswTdi (34165da5c6b30c0f9d61246bf8a28040) C:\Windows\system32\drivers\aswTdi.sys 19:20:18.0385 1356 aswTdi - ok 19:20:18.0861 1356 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 19:20:18.0886 1356 AsyncMac - ok 19:20:19.0241 1356 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 19:20:19.0242 1356 atapi - ok 19:20:20.0406 1356 athr (70260c7c98cc0101316f5b2650c3bb44) C:\Windows\system32\DRIVERS\athrx.sys 19:20:20.0513 1356 athr - ok 19:20:21.0395 1356 AtiHdmiService (7e2f5a758f63f80f8b03f889b4e6b19f) C:\Windows\system32\drivers\AtiHdmi.sys 19:20:21.0399 1356 AtiHdmiService - ok 19:20:22.0041 1356 AtiPcie (c07a040d6b5a42dd41ee386cf90974c8) C:\Windows\system32\DRIVERS\AtiPcie.sys 19:20:22.0042 1356 AtiPcie - ok 19:20:22.0993 1356 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 19:20:23.0175 1356 AudioEndpointBuilder - ok 19:20:23.0467 1356 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll 19:20:23.0473 1356 AudioSrv - ok 19:20:23.0967 1356 avast! Antivirus (996e6d052438e8d8dfd501f31560b2e0) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 19:20:23.0990 1356 avast! Antivirus - ok 19:20:24.0966 1356 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll 19:20:24.0991 1356 AxInstSV - ok 19:20:25.0877 1356 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys 19:20:25.0893 1356 b06bdrv - ok 19:20:26.0841 1356 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 19:20:26.0872 1356 b57nd60a - ok 19:20:27.0671 1356 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys 19:20:27.0698 1356 BCM43XX - ok 19:20:28.0078 1356 BcmSqlStartupSvc (2e552b658273b90251e0441631de2ca3) C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 19:20:28.0149 1356 BcmSqlStartupSvc - ok 19:20:28.0443 1356 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll 19:20:28.0446 1356 BDESVC - ok 19:20:28.0889 1356 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 19:20:28.0902 1356 Beep - ok 19:20:29.0651 1356 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll 19:20:29.0666 1356 BFE - ok 19:20:30.0542 1356 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll 19:20:30.0613 1356 BITS - ok 19:20:31.0331 1356 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 19:20:31.0360 1356 blbdrive - ok 19:20:31.0744 1356 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe 19:20:31.0830 1356 Bonjour Service - ok 19:20:32.0549 1356 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 19:20:32.0571 1356 bowser - ok 19:20:33.0172 1356 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys 19:20:33.0207 1356 BrFiltLo - ok 19:20:34.0172 1356 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys 19:20:34.0211 1356 BrFiltUp - ok 19:20:34.0919 1356 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys 19:20:34.0944 1356 BridgeMP - ok 19:20:35.0594 1356 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll 19:20:35.0609 1356 Browser - ok 19:20:36.0117 1356 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 19:20:36.0126 1356 Brserid - ok 19:20:36.0537 1356 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 19:20:36.0596 1356 BrSerWdm - ok 19:20:36.0981 1356 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 19:20:37.0012 1356 BrUsbMdm - ok 19:20:37.0304 1356 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 19:20:37.0325 1356 BrUsbSer - ok 19:20:38.0069 1356 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys 19:20:38.0107 1356 BthEnum - ok 19:20:38.0601 1356 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 19:20:38.0665 1356 BTHMODEM - ok 19:20:39.0307 1356 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 19:20:39.0331 1356 BthPan - ok 19:20:40.0697 1356 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys 19:20:40.0757 1356 BTHPORT - ok 19:20:40.0901 1356 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll 19:20:40.0993 1356 bthserv - ok 19:20:41.0334 1356 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys 19:20:41.0386 1356 BTHUSB - ok 19:20:41.0476 1356 catchme - ok 19:20:41.0904 1356 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 19:20:41.0916 1356 cdfs - ok 19:20:42.0403 1356 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys 19:20:42.0416 1356 cdrom - ok 19:20:42.0954 1356 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 19:20:43.0042 1356 CertPropSvc - ok 19:20:43.0458 1356 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys 19:20:43.0475 1356 circlass - ok 19:20:44.0050 1356 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 19:20:44.0066 1356 CLFS - ok 19:20:44.0373 1356 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:20:44.0385 1356 clr_optimization_v2.0.50727_32 - ok 19:20:44.0843 1356 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 19:20:44.0877 1356 clr_optimization_v2.0.50727_64 - ok 19:20:45.0480 1356 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:20:45.0500 1356 clr_optimization_v4.0.30319_32 - ok 19:20:45.0946 1356 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 19:20:45.0970 1356 clr_optimization_v4.0.30319_64 - ok 19:20:46.0358 1356 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys 19:20:46.0375 1356 CmBatt - ok 19:20:46.0902 1356 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 19:20:46.0913 1356 cmdide - ok 19:20:47.0356 1356 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 19:20:47.0368 1356 CNG - ok 19:20:47.0731 1356 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys 19:20:47.0733 1356 Compbatt - ok 19:20:48.0161 1356 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys 19:20:48.0175 1356 CompositeBus - ok 19:20:48.0457 1356 COMSysApp - ok 19:20:48.0874 1356 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys 19:20:48.0907 1356 crcdisk - ok 19:20:49.0360 1356 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll 19:20:49.0375 1356 CryptSvc - ok 19:20:49.0864 1356 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 19:20:49.0893 1356 DcomLaunch - ok 19:20:50.0268 1356 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll 19:20:50.0295 1356 defragsvc - ok 19:20:50.0797 1356 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 19:20:50.0808 1356 DfsC - ok 19:20:51.0193 1356 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll 19:20:51.0213 1356 Dhcp - ok 19:20:51.0647 1356 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 19:20:51.0648 1356 discache - ok 19:20:52.0215 1356 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys 19:20:52.0243 1356 Disk - ok 19:20:52.0796 1356 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll 19:20:52.0806 1356 Dnscache - ok 19:20:53.0212 1356 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll 19:20:53.0216 1356 dot3svc - ok 19:20:53.0568 1356 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys 19:20:53.0570 1356 Dot4 - ok 19:20:53.0849 1356 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys 19:20:53.0855 1356 Dot4Print - ok 19:20:54.0091 1356 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys 19:20:54.0098 1356 dot4usb - ok 19:20:54.0283 1356 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll 19:20:54.0286 1356 DPS - ok 19:20:54.0549 1356 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 19:20:54.0555 1356 drmkaud - ok 19:20:54.0743 1356 DsiWMIService (e2b2853a0210d6edab2261870bd80c1a) C:\Program Files (x86)\Launch Manager\dsiwmis.exe 19:20:54.0758 1356 DsiWMIService - ok 19:20:55.0052 1356 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 19:20:55.0059 1356 DXGKrnl - ok 19:20:55.0250 1356 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll 19:20:55.0263 1356 EapHost - ok 19:20:55.0985 1356 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys 19:20:56.0060 1356 ebdrv - ok 19:20:56.0191 1356 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe 19:20:56.0196 1356 EFS - ok 19:20:56.0321 1356 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe 19:20:56.0329 1356 ehRecvr - ok 19:20:56.0383 1356 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe 19:20:56.0385 1356 ehSched - ok 19:20:56.0494 1356 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys 19:20:56.0500 1356 elxstor - ok 19:20:56.0799 1356 ePowerSvc (09ddc2d4724a4ff844f738b60e63d872) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe 19:20:56.0809 1356 ePowerSvc - ok 19:20:57.0038 1356 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 19:20:57.0060 1356 ErrDev - ok 19:20:57.0359 1356 esgiguard - ok 19:20:57.0644 1356 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll 19:20:57.0649 1356 EventSystem - ok 19:20:57.0882 1356 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 19:20:57.0885 1356 exfat - ok 19:20:58.0005 1356 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 19:20:58.0025 1356 fastfat - ok 19:20:58.0780 1356 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe 19:20:58.0825 1356 Fax - ok 19:20:59.0304 1356 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys 19:20:59.0319 1356 fdc - ok 19:20:59.0636 1356 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll 19:20:59.0653 1356 fdPHost - ok 19:21:00.0204 1356 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll 19:21:00.0240 1356 FDResPub - ok 19:21:00.0434 1356 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 19:21:00.0437 1356 FileInfo - ok 19:21:00.0684 1356 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 19:21:00.0695 1356 Filetrace - ok 19:21:00.0862 1356 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys 19:21:00.0875 1356 flpydisk - ok 19:21:01.0057 1356 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 19:21:01.0070 1356 FltMgr - ok 19:21:01.0332 1356 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll 19:21:01.0375 1356 FontCache - ok 19:21:01.0794 1356 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:21:01.0809 1356 FontCache3.0.0.0 - ok 19:21:02.0062 1356 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 19:21:02.0072 1356 FsDepends - ok 19:21:02.0352 1356 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 19:21:02.0354 1356 Fs_Rec - ok 19:21:02.0670 1356 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 19:21:02.0690 1356 fvevol - ok 19:21:02.0850 1356 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys 19:21:02.0860 1356 gagp30kx - ok 19:21:03.0016 1356 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 19:21:03.0018 1356 GEARAspiWDM - ok 19:21:03.0164 1356 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll 19:21:03.0186 1356 gpsvc - ok 19:21:03.0322 1356 GREGService (0191dee9b9eb7902af2cf4f67301095d) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe 19:21:03.0330 1356 GREGService - ok 19:21:03.0509 1356 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:21:03.0515 1356 gupdate - ok 19:21:03.0632 1356 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:21:03.0635 1356 gupdatem - ok 19:21:03.0799 1356 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 19:21:03.0814 1356 gusvc - ok 19:21:03.0934 1356 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 19:21:03.0950 1356 hcw85cir - ok 19:21:04.0151 1356 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 19:21:04.0162 1356 HdAudAddService - ok 19:21:04.0361 1356 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys 19:21:04.0377 1356 HDAudBus - ok 19:21:04.0802 1356 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys 19:21:04.0813 1356 HidBatt - ok 19:21:04.0973 1356 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys 19:21:04.0977 1356 HidBth - ok 19:21:05.0264 1356 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys 19:21:05.0274 1356 HidIr - ok 19:21:05.0672 1356 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll 19:21:05.0731 1356 hidserv - ok 19:21:06.0097 1356 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys 19:21:06.0108 1356 HidUsb - ok 19:21:06.0361 1356 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll 19:21:06.0378 1356 hkmsvc - ok 19:21:06.0539 1356 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll 19:21:06.0552 1356 HomeGroupListener - ok 19:21:06.0743 1356 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll 19:21:06.0755 1356 HomeGroupProvider - ok 19:21:07.0024 1356 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 19:21:07.0038 1356 hpqcxs08 - ok 19:21:07.0314 1356 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 19:21:07.0318 1356 hpqddsvc - ok 19:21:07.0534 1356 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 19:21:07.0547 1356 HpSAMD - ok 19:21:07.0829 1356 HPSLPSVC (7f57926169c1b8aba9274ea7d4b70f18) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL 19:21:07.0842 1356 HPSLPSVC - ok 19:21:08.0235 1356 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 19:21:08.0270 1356 HTTP - ok 19:21:08.0473 1356 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 19:21:08.0475 1356 hwpolicy - ok 19:21:08.0747 1356 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys 19:21:08.0767 1356 i8042prt - ok 19:21:08.0986 1356 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 19:21:08.0998 1356 iaStorV - ok 19:21:09.0236 1356 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 19:21:09.0266 1356 idsvc - ok 19:21:10.0003 1356 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys 19:21:10.0162 1356 igfx - ok 19:21:10.0404 1356 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys 19:21:10.0446 1356 iirsp - ok 19:21:10.0790 1356 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll 19:21:10.0824 1356 IKEEXT - ok 19:21:11.0483 1356 IntcAzAudAddService (3edd3ce185da3e6aaec22adcfd7b1d54) C:\Windows\system32\drivers\RTKVHD64.sys 19:21:11.0503 1356 IntcAzAudAddService - ok 19:21:11.0727 1356 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 19:21:11.0746 1356 intelide - ok 19:21:11.0963 1356 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 19:21:11.0972 1356 intelppm - ok 19:21:12.0233 1356 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll 19:21:12.0244 1356 IPBusEnum - ok 19:21:12.0477 1356 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:21:12.0489 1356 IpFilterDriver - ok 19:21:12.0757 1356 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll 19:21:12.0776 1356 iphlpsvc - ok 19:21:13.0002 1356 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 19:21:13.0006 1356 IPMIDRV - ok 19:21:13.0223 1356 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 19:21:13.0227 1356 IPNAT - ok 19:21:13.0405 1356 iPod Service (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe 19:21:13.0427 1356 iPod Service - ok 19:21:13.0719 1356 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 19:21:13.0721 1356 IRENUM - ok 19:21:13.0935 1356 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 19:21:13.0946 1356 isapnp - ok 19:21:14.0116 1356 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 19:21:14.0129 1356 iScsiPrt - ok 19:21:14.0446 1356 k57nd60a (9d7ea8c7215d8d4ae7be110eee61085d) C:\Windows\system32\DRIVERS\k57nd60a.sys 19:21:14.0451 1356 k57nd60a - ok 19:21:14.0836 1356 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys 19:21:14.0838 1356 kbdclass - ok 19:21:15.0021 1356 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys 19:21:15.0045 1356 kbdhid - ok 19:21:15.0214 1356 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 19:21:15.0221 1356 KeyIso - ok 19:21:15.0458 1356 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 19:21:15.0477 1356 KSecDD - ok 19:21:15.0825 1356 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 19:21:15.0840 1356 KSecPkg - ok 19:21:16.0005 1356 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 19:21:16.0008 1356 ksthunk - ok 19:21:16.0226 1356 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll 19:21:16.0241 1356 KtmRm - ok 19:21:16.0695 1356 L1E (2ac603c3188c704cfce353659aa7ad71) C:\Windows\system32\DRIVERS\L1E62x64.sys 19:21:16.0715 1356 L1E - ok 19:21:17.0059 1356 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll 19:21:17.0078 1356 LanmanServer - ok 19:21:17.0314 1356 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll 19:21:17.0332 1356 LanmanWorkstation - ok 19:21:17.0612 1356 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 19:21:17.0625 1356 lltdio - ok 19:21:17.0785 1356 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll 19:21:17.0821 1356 lltdsvc - ok 19:21:18.0062 1356 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll 19:21:18.0076 1356 lmhosts - ok 19:21:18.0278 1356 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys 19:21:18.0283 1356 LSI_FC - ok 19:21:18.0681 1356 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys 19:21:18.0796 1356 LSI_SAS - ok 19:21:19.0148 1356 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys 19:21:19.0152 1356 LSI_SAS2 - ok 19:21:19.0451 1356 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys 19:21:19.0458 1356 LSI_SCSI - ok 19:21:19.0755 1356 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 19:21:19.0768 1356 luafv - ok 19:21:20.0005 1356 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 19:21:20.0007 1356 MBAMProtector - ok 19:21:20.0346 1356 MBAMService (fa083726e6ca3fc67fac69c1118f1f03) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 19:21:20.0370 1356 MBAMService - ok 19:21:20.0510 1356 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll 19:21:20.0536 1356 Mcx2Svc - ok 19:21:20.0710 1356 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys 19:21:20.0714 1356 megasas - ok 19:21:20.0931 1356 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys 19:21:20.0943 1356 MegaSR - ok 19:21:21.0051 1356 Microsoft SharePoint Workspace Audit Service - ok 19:21:21.0235 1356 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 19:21:21.0245 1356 MMCSS - ok 19:21:21.0514 1356 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 19:21:21.0645 1356 Modem - ok 19:21:21.0910 1356 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 19:21:21.0912 1356 monitor - ok 19:21:22.0186 1356 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys 19:21:22.0189 1356 mouclass - ok 19:21:22.0399 1356 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 19:21:22.0405 1356 mouhid - ok 19:21:22.0625 1356 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 19:21:22.0645 1356 mountmgr - ok 19:21:22.0841 1356 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 19:21:22.0847 1356 mpio - ok 19:21:23.0054 1356 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 19:21:23.0072 1356 mpsdrv - ok 19:21:23.0351 1356 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll 19:21:23.0374 1356 MpsSvc - ok 19:21:23.0597 1356 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 19:21:23.0618 1356 MRxDAV - ok 19:21:23.0832 1356 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 19:21:23.0848 1356 mrxsmb - ok 19:21:24.0136 1356 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:21:24.0157 1356 mrxsmb10 - ok 19:21:24.0274 1356 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:21:24.0279 1356 mrxsmb20 - ok 19:21:24.0489 1356 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 19:21:24.0491 1356 msahci - ok 19:21:24.0776 1356 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 19:21:24.0786 1356 msdsm - ok 19:21:24.0992 1356 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe 19:21:25.0005 1356 MSDTC - ok 19:21:25.0234 1356 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 19:21:25.0253 1356 Msfs - ok 19:21:25.0457 1356 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 19:21:25.0469 1356 mshidkmdf - ok 19:21:25.0782 1356 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 19:21:25.0783 1356 msisadrv - ok 19:21:26.0042 1356 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll 19:21:26.0051 1356 MSiSCSI - ok 19:21:26.0181 1356 msiserver - ok 19:21:26.0319 1356 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 19:21:26.0322 1356 MSKSSRV - ok 19:21:26.0513 1356 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 19:21:26.0607 1356 MSPCLOCK - ok 19:21:26.0816 1356 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 19:21:26.0826 1356 MSPQM - ok 19:21:27.0047 1356 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 19:21:27.0065 1356 MsRPC - ok 19:21:27.0249 1356 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys 19:21:27.0251 1356 mssmbios - ok 19:21:27.0414 1356 MSSQL$MSSMLBIZ - ok 19:21:27.0572 1356 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) C:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE 19:21:27.0629 1356 MSSQLServerADHelper100 - ok 19:21:27.0851 1356 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 19:21:27.0855 1356 MSTEE - ok 19:21:28.0028 1356 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys 19:21:28.0035 1356 MTConfig - ok 19:21:28.0227 1356 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 19:21:28.0230 1356 Mup - ok 19:21:28.0483 1356 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys 19:21:28.0485 1356 mwlPSDFilter - ok 19:21:28.0895 1356 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys 19:21:28.0897 1356 mwlPSDNServ - ok 19:21:29.0180 1356 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys 19:21:29.0183 1356 mwlPSDVDisk - ok 19:21:29.0441 1356 MWLService (22a4905c958beb68d78385b633c1351b) C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe 19:21:29.0460 1356 MWLService - ok 19:21:29.0702 1356 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll 19:21:29.0872 1356 napagent - ok 19:21:30.0267 1356 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 19:21:30.0275 1356 NativeWifiP - ok 19:21:31.0244 1356 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 19:21:31.0289 1356 NDIS - ok 19:21:31.0509 1356 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 19:21:31.0521 1356 NdisCap - ok 19:21:31.0772 1356 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 19:21:31.0787 1356 NdisTapi - ok 19:21:32.0007 1356 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 19:21:32.0019 1356 Ndisuio - ok 19:21:32.0362 1356 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 19:21:32.0385 1356 NdisWan - ok 19:21:32.0670 1356 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 19:21:32.0682 1356 NDProxy - ok 19:21:32.0947 1356 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll 19:21:32.0962 1356 Net Driver HPZ12 - ok 19:21:33.0297 1356 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 19:21:33.0310 1356 NetBIOS - ok 19:21:33.0629 1356 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 19:21:33.0646 1356 NetBT - ok 19:21:33.0815 1356 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 19:21:33.0821 1356 Netlogon - ok 19:21:34.0046 1356 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll 19:21:34.0060 1356 Netman - ok 19:21:34.0353 1356 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll 19:21:34.0371 1356 netprofm - ok 19:21:34.0632 1356 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 19:21:34.0653 1356 NetTcpPortSharing - ok 19:21:34.0856 1356 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys 19:21:34.0872 1356 nfrd960 - ok 19:21:35.0156 1356 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll 19:21:35.0169 1356 NlaSvc - ok 19:21:35.0347 1356 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 19:21:35.0358 1356 Npfs - ok 19:21:35.0606 1356 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll 19:21:35.0620 1356 nsi - ok 19:21:35.0871 1356 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 19:21:35.0873 1356 nsiproxy - ok 19:21:36.0432 1356 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 19:21:36.0529 1356 Ntfs - ok 19:21:36.0843 1356 NTI IScheduleSvc (5b3ce960c62dbe864be9a0bd043a3e30) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe 19:21:36.0859 1356 NTI IScheduleSvc - ok 19:21:37.0182 1356 NTIBackupSvc (15221dd637d9d0ffc60848ebbf1df538) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe 19:21:37.0261 1356 NTIBackupSvc - ok 19:21:37.0427 1356 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys 19:21:37.0429 1356 NTIDrvr - ok 19:21:37.0635 1356 NTISchedulerSvc (b5071e15d4c3f5ef5018aff7e85a85e5) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe 19:21:38.0055 1356 NTISchedulerSvc - ok 19:21:38.0282 1356 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 19:21:38.0291 1356 Null - ok 19:21:38.0668 1356 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 19:21:38.0689 1356 nvraid - ok 19:21:38.0997 1356 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 19:21:39.0017 1356 nvstor - ok 19:21:39.0270 1356 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 19:21:39.0288 1356 nv_agp - ok 19:21:39.0640 1356 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 19:21:39.0651 1356 ohci1394 - ok 19:21:39.0895 1356 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:21:39.0910 1356 ose - ok 19:21:40.0791 1356 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 19:21:40.0987 1356 osppsvc - ok 19:21:41.0260 1356 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 19:21:41.0279 1356 p2pimsvc - ok 19:21:41.0523 1356 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll 19:21:41.0545 1356 p2psvc - ok 19:21:41.0821 1356 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys 19:21:41.0833 1356 Parport - ok 19:21:42.0054 1356 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 19:21:42.0069 1356 partmgr - ok 19:21:42.0421 1356 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll 19:21:42.0434 1356 PcaSvc - ok 19:21:42.0755 1356 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 19:21:42.0777 1356 pci - ok 19:21:42.0979 1356 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 19:21:42.0981 1356 pciide - ok 19:21:43.0280 1356 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys 19:21:43.0292 1356 pcmcia - ok 19:21:43.0639 1356 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 19:21:43.0641 1356 pcw - ok 19:21:43.0939 1356 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 19:21:43.0961 1356 PEAUTH - ok 19:21:44.0166 1356 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe 19:21:44.0174 1356 PerfHost - ok 19:21:44.0615 1356 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll 19:21:44.0684 1356 pla - ok 19:21:44.0950 1356 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll 19:21:44.0973 1356 PlugPlay - ok 19:21:45.0249 1356 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll 19:21:45.0261 1356 Pml Driver HPZ12 - ok 19:21:45.0604 1356 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll 19:21:45.0670 1356 PNRPAutoReg - ok 19:21:45.0911 1356 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll 19:21:45.0923 1356 PNRPsvc - ok 19:21:46.0277 1356 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll 19:21:46.0292 1356 PolicyAgent - ok 19:21:46.0506 1356 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll 19:21:46.0520 1356 Power - ok 19:21:46.0771 1356 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 19:21:46.0789 1356 PptpMiniport - ok 19:21:47.0007 1356 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys 19:21:47.0021 1356 Processor - ok 19:21:47.0264 1356 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll 19:21:47.0285 1356 ProfSvc - ok 19:21:47.0471 1356 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 19:21:47.0478 1356 ProtectedStorage - ok 19:21:47.0853 1356 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 19:21:47.0857 1356 Psched - ok 19:21:48.0318 1356 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys 19:21:48.0376 1356 ql2300 - ok 19:21:48.0648 1356 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys 19:21:48.0661 1356 ql40xx - ok 19:21:48.0880 1356 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll 19:21:48.0899 1356 QWAVE - ok 19:21:49.0169 1356 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 19:21:49.0183 1356 QWAVEdrv - ok 19:21:49.0447 1356 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 19:21:49.0465 1356 RasAcd - ok 19:21:49.0810 1356 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 19:21:49.0827 1356 RasAgileVpn - ok 19:21:50.0037 1356 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll 19:21:50.0055 1356 RasAuto - ok 19:21:50.0406 1356 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 19:21:50.0419 1356 Rasl2tp - ok 19:21:50.0905 1356 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll 19:21:50.0927 1356 RasMan - ok 19:21:51.0189 1356 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 19:21:51.0205 1356 RasPppoe - ok 19:21:51.0494 1356 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 19:21:51.0513 1356 RasSstp - ok 19:21:51.0870 1356 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 19:21:51.0884 1356 rdbss - ok 19:21:52.0153 1356 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 19:21:52.0159 1356 rdpbus - ok 19:21:52.0368 1356 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 19:21:52.0370 1356 RDPCDD - ok 19:21:52.0851 1356 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 19:21:52.0853 1356 RDPENCDD - ok 19:21:53.0059 1356 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 19:21:53.0062 1356 RDPREFMP - ok 19:21:53.0390 1356 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys 19:21:53.0406 1356 RDPWD - ok 19:21:53.0734 1356 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 19:21:53.0744 1356 rdyboost - ok 19:21:53.0955 1356 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll 19:21:53.0964 1356 RemoteAccess - ok 19:21:54.0195 1356 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll 19:21:54.0208 1356 RemoteRegistry - ok 19:21:54.0461 1356 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 19:21:54.0471 1356 RFCOMM - ok 19:21:54.0680 1356 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll 19:21:54.0699 1356 RpcEptMapper - ok 19:21:54.0872 1356 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe 19:21:54.0882 1356 RpcLocator - ok 19:21:55.0222 1356 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll 19:21:55.0239 1356 RpcSs - ok 19:21:55.0450 1356 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 19:21:55.0466 1356 rspndr - ok 19:21:55.0661 1356 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 19:21:55.0667 1356 SamSs - ok 19:21:55.0811 1356 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 19:21:55.0824 1356 sbp2port - ok 19:21:56.0048 1356 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll 19:21:56.0067 1356 SCardSvr - ok 19:21:56.0359 1356 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 19:21:56.0371 1356 scfilter - ok 19:21:56.0853 1356 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll 19:21:56.0923 1356 Schedule - ok 19:21:57.0180 1356 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll 19:21:57.0186 1356 SCPolicySvc - ok 19:21:57.0388 1356 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll 19:21:57.0409 1356 SDRSVC - ok 19:21:57.0609 1356 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 19:21:57.0617 1356 secdrv - ok 19:21:57.0828 1356 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll 19:21:57.0842 1356 seclogon - ok 19:21:58.0039 1356 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll 19:21:58.0054 1356 SENS - ok 19:21:58.0317 1356 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll 19:21:58.0332 1356 SensrSvc - ok 19:21:58.0630 1356 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 19:21:58.0644 1356 Serenum - ok 19:21:58.0888 1356 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 19:21:58.0896 1356 Serial - ok 19:21:59.0045 1356 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys 19:21:59.0059 1356 sermouse - ok 19:21:59.0288 1356 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll 19:21:59.0306 1356 SessionEnv - ok 19:21:59.0507 1356 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 19:21:59.0524 1356 sffdisk - ok 19:21:59.0948 1356 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 19:21:59.0959 1356 sffp_mmc - ok 19:22:00.0224 1356 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 19:22:00.0229 1356 sffp_sd - ok 19:22:00.0422 1356 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys 19:22:00.0434 1356 sfloppy - ok 19:22:00.0668 1356 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll 19:22:00.0682 1356 SharedAccess - ok 19:22:00.0928 1356 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll 19:22:00.0953 1356 ShellHWDetection - ok 19:22:01.0224 1356 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys 19:22:01.0233 1356 SiSRaid2 - ok 19:22:01.0448 1356 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys 19:22:01.0455 1356 SiSRaid4 - ok 19:22:01.0786 1356 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe 19:22:01.0809 1356 SkypeUpdate - ok 19:22:01.0984 1356 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 19:22:01.0995 1356 Smb - ok 19:22:02.0217 1356 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe 19:22:02.0228 1356 SNMPTRAP - ok 19:22:02.0414 1356 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 19:22:02.0416 1356 spldr - ok 19:22:02.0681 1356 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe 19:22:02.0711 1356 Spooler - ok 19:22:03.0045 1356 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe 19:22:03.0159 1356 sppsvc - ok 19:22:03.0343 1356 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll 19:22:03.0355 1356 sppuinotify - ok 19:22:03.0539 1356 SQLAgent$MSSMLBIZ (a687b5b326afcfcf182c4931d1ff9771) C:\Program Files (x86)\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\SQLAGENT.EXE 19:22:03.0566 1356 SQLAgent$MSSMLBIZ - ok 19:22:03.0746 1356 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe 19:22:03.0761 1356 SQLBrowser - ok 19:22:03.0935 1356 SQLWriter (6d65985945b03ca59b67d0b73702fc7b) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 19:22:03.0951 1356 SQLWriter - ok 19:22:04.0249 1356 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 19:22:04.0265 1356 srv - ok 19:22:04.0820 1356 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 19:22:04.0838 1356 srv2 - ok 19:22:05.0024 1356 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 19:22:05.0037 1356 srvnet - ok 19:22:05.0289 1356 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll 19:22:05.0305 1356 SSDPSRV - ok 19:22:05.0453 1356 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll 19:22:05.0463 1356 SstpSvc - ok 19:22:05.0685 1356 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys 19:22:05.0691 1356 stexstor - ok 19:22:05.0989 1356 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll 19:22:06.0018 1356 stisvc - ok 19:22:06.0183 1356 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys 19:22:06.0185 1356 swenum - ok 19:22:06.0399 1356 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll 19:22:06.0425 1356 swprv - ok 19:22:07.0177 1356 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll 19:22:07.0270 1356 SysMain - ok 19:22:07.0503 1356 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll 19:22:07.0523 1356 TabletInputService - ok 19:22:07.0892 1356 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll 19:22:07.0918 1356 TapiSrv - ok 19:22:08.0198 1356 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll 19:22:08.0210 1356 TBS - ok 19:22:08.0879 1356 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 19:22:08.0936 1356 Tcpip - ok 19:22:09.0516 1356 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 19:22:09.0546 1356 TCPIP6 - ok 19:22:09.0725 1356 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 19:22:09.0744 1356 tcpipreg - ok 19:22:10.0055 1356 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 19:22:10.0068 1356 TDPIPE - ok 19:22:10.0233 1356 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 19:22:10.0256 1356 TDTCP - ok 19:22:10.0421 1356 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 19:22:10.0439 1356 tdx - ok 19:22:10.0635 1356 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys 19:22:10.0638 1356 TermDD - ok 19:22:10.0923 1356 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll 19:22:10.0957 1356 TermService - ok 19:22:11.0113 1356 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll 19:22:11.0124 1356 Themes - ok 19:22:11.0270 1356 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll 19:22:11.0277 1356 THREADORDER - ok 19:22:11.0402 1356 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll 19:22:11.0415 1356 TrkWks - ok 19:22:11.0604 1356 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe 19:22:11.0619 1356 TrustedInstaller - ok 19:22:11.0789 1356 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 19:22:11.0800 1356 tssecsrv - ok 19:22:12.0125 1356 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 19:22:12.0145 1356 TsUsbFlt - ok 19:22:12.0379 1356 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 19:22:12.0392 1356 tunnel - ok 19:22:12.0680 1356 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys 19:22:12.0688 1356 uagp35 - ok 19:22:12.0874 1356 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys 19:22:12.0876 1356 UBHelper - ok 19:22:13.0170 1356 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 19:22:13.0193 1356 udfs - ok 19:22:13.0296 1356 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe 19:22:13.0312 1356 UI0Detect - ok 19:22:13.0491 1356 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 19:22:13.0502 1356 uliagpkx - ok 19:22:13.0764 1356 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys 19:22:13.0775 1356 umbus - ok 19:22:13.0966 1356 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys 19:22:13.0974 1356 UmPass - ok 19:22:14.0139 1356 Updater Service (f9ec9acd504d823d9b9ca98a4f8d3ca2) C:\Program Files\Acer\Acer Updater\UpdaterService.exe 19:22:14.0151 1356 Updater Service - ok 19:22:14.0308 1356 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll 19:22:14.0325 1356 upnphost - ok 19:22:14.0507 1356 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys 19:22:14.0655 1356 USBAAPL64 - ok 19:22:14.0843 1356 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 19:22:14.0857 1356 usbccgp - ok 19:22:15.0157 1356 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 19:22:15.0209 1356 usbcir - ok 19:22:15.0496 1356 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys 19:22:15.0509 1356 usbehci - ok 19:22:15.0717 1356 usbfilter (2c780746dc44a28fe67004dc58173f05) C:\Windows\system32\DRIVERS\usbfilter.sys 19:22:15.0719 1356 usbfilter - ok 19:22:15.0899 1356 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 19:22:15.0914 1356 usbhub - ok 19:22:16.0079 1356 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys 19:22:16.0104 1356 usbohci - ok 19:22:16.0284 1356 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 19:22:16.0294 1356 usbprint - ok 19:22:16.0514 1356 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 19:22:16.0583 1356 usbscan - ok 19:22:16.0761 1356 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS 19:22:16.0781 1356 USBSTOR - ok 19:22:16.0942 1356 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 19:22:16.0945 1356 usbuhci - ok 19:22:17.0207 1356 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys 19:22:17.0234 1356 usbvideo - ok 19:22:17.0383 1356 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll 19:22:17.0402 1356 UxSms - ok 19:22:17.0517 1356 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe 19:22:17.0524 1356 VaultSvc - ok 19:22:17.0773 1356 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 19:22:17.0776 1356 vdrvroot - ok 19:22:18.0058 1356 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe 19:22:18.0095 1356 vds - ok 19:22:18.0305 1356 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 19:22:18.0319 1356 vga - ok 19:22:18.0477 1356 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 19:22:18.0487 1356 VgaSave - ok 19:22:18.0889 1356 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 19:22:18.0901 1356 vhdmp - ok 19:22:19.0076 1356 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 19:22:19.0090 1356 viaide - ok 19:22:19.0258 1356 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 19:22:19.0268 1356 volmgr - ok 19:22:19.0491 1356 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 19:22:19.0503 1356 volmgrx - ok 19:22:19.0768 1356 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 19:22:19.0785 1356 volsnap - ok 19:22:19.0932 1356 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys 19:22:19.0939 1356 vsmraid - ok 19:22:20.0208 1356 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe 19:22:20.0241 1356 VSS - ok 19:22:20.0432 1356 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys 19:22:20.0445 1356 vwifibus - ok 19:22:20.0929 1356 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys 19:22:20.0941 1356 vwififlt - ok 19:22:21.0184 1356 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys 19:22:21.0194 1356 vwifimp - ok 19:22:21.0404 1356 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll 19:22:21.0426 1356 W32Time - ok 19:22:21.0537 1356 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys 19:22:21.0551 1356 WacomPen - ok 19:22:21.0845 1356 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 19:22:21.0862 1356 WANARP - ok 19:22:21.0910 1356 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 19:22:21.0913 1356 Wanarpv6 - ok 19:22:22.0262 1356 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe 19:22:22.0293 1356 WatAdminSvc - ok 19:22:22.0600 1356 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe 19:22:22.0637 1356 wbengine - ok 19:22:22.0792 1356 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll 19:22:22.0807 1356 WbioSrvc - ok 19:22:22.0969 1356 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll 19:22:23.0023 1356 wcncsvc - ok 19:22:23.0153 1356 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll 19:22:23.0174 1356 WcsPlugInService - ok 19:22:23.0387 1356 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys 19:22:23.0395 1356 Wd - ok 19:22:23.0653 1356 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 19:22:23.0672 1356 Wdf01000 - ok 19:22:23.0740 1356 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 19:22:23.0753 1356 WdiServiceHost - ok 19:22:23.0779 1356 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll 19:22:23.0785 1356 WdiSystemHost - ok 19:22:23.0998 1356 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll 19:22:24.0016 1356 WebClient - ok 19:22:24.0163 1356 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll 19:22:24.0181 1356 Wecsvc - ok 19:22:24.0338 1356 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll 19:22:24.0358 1356 wercplsupport - ok 19:22:24.0601 1356 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll 19:22:24.0615 1356 WerSvc - ok 19:22:24.0847 1356 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 19:22:24.0858 1356 WfpLwf - ok 19:22:25.0072 1356 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 19:22:25.0095 1356 WIMMount - ok 19:22:25.0152 1356 WinDefend - ok 19:22:25.0169 1356 WinHttpAutoProxySvc - ok 19:22:25.0419 1356 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll 19:22:25.0435 1356 Winmgmt - ok 19:22:26.0103 1356 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll 19:22:26.0172 1356 WinRM - ok 19:22:26.0448 1356 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\drivers\WinUSB.sys 19:22:26.0459 1356 WinUsb - ok 19:22:26.0726 1356 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll 19:22:26.0766 1356 Wlansvc - ok 19:22:27.0000 1356 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys 19:22:27.0002 1356 WmiAcpi - ok 19:22:27.0339 1356 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe 19:22:27.0354 1356 wmiApSrv - ok 19:22:27.0477 1356 WMPNetworkSvc - ok 19:22:27.0703 1356 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll 19:22:27.0744 1356 WPCSvc - ok 19:22:27.0920 1356 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll 19:22:27.0935 1356 WPDBusEnum - ok 19:22:28.0172 1356 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 19:22:28.0174 1356 ws2ifsl - ok 19:22:28.0418 1356 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll 19:22:28.0443 1356 wscsvc - ok 19:22:28.0650 1356 WSearch - ok 19:22:29.0190 1356 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll 19:22:29.0297 1356 wuauserv - ok 19:22:29.0522 1356 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 19:22:29.0632 1356 WudfPf - ok 19:22:29.0960 1356 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\drivers\WUDFRd.sys 19:22:29.0971 1356 WUDFRd - ok 19:22:30.0198 1356 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll 19:22:30.0217 1356 wudfsvc - ok 19:22:30.0452 1356 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll 19:22:30.0479 1356 WwanSvc - ok 19:22:30.0562 1356 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0 19:22:30.0671 1356 \Device\Harddisk0\DR0 - ok 19:22:30.0678 1356 Boot (0x1200) (8f6ee4975cfc535fc147f85388c48f85) \Device\Harddisk0\DR0\Partition0 19:22:30.0696 1356 \Device\Harddisk0\DR0\Partition0 - ok 19:22:30.0729 1356 Boot (0x1200) (2afdd0e7c8ae275a5205d7e60d26605d) \Device\Harddisk0\DR0\Partition1 19:22:30.0760 1356 \Device\Harddisk0\DR0\Partition1 - ok 19:22:30.0761 1356 ============================================================ 19:22:30.0761 1356 Scan finished 19:22:30.0761 1356 ============================================================ 19:22:30.0786 1588 Detected object count: 0 19:22:30.0786 1588 Actual detected object count: 0
- 12 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Ik heb het bestand uitgepakt in downloads (map TDSSKiller) en het kladblokbestand daar in opgeslaan. Als ik dan dubbelklik op sart.bat krijg ik een error.
- 11 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Ik krijg deze melding maar na het opnieuw opstarten is alles terug weg.
- 10 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Bij deze gedaan. Enkel bij het startmenu is "compute"r terug te vinden maar de rest niet.
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

ComboFix 12-04-08.02 - vdb 09/04/2012 12:23:52.2.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.2814.1090 [GMT 2:00] Gestart vanuit: c:\users\Magali\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Magali\Desktop\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\programdata\FXoIuAOxAoT.exe" "c:\windows\5B210B8AB66E4702B44D0D6F388D29EB.TMP" "c:\windows\is-EDN79.exe" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\Ask.com c:\program files (x86)\Ask.com\btn_search.png c:\program files (x86)\Ask.com\limewire_logo.png C:\sh4ldr c:\sh4ldr\shldr.mbr . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-09 to 2012-04-09 )))))))))))))))))))))))))))))) . . 2012-04-09 10:33 . 2012-04-09 10:33 -------- d-----w- c:\users\vdb\AppData\Local\temp 2012-04-09 10:33 . 2012-04-09 10:33 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-04-09 07:15 . 2012-04-09 07:15 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC7F3C99-5C49-4890-ACB2-D4CB3934476C}\offreg.dll 2012-04-09 06:51 . 2012-04-09 06:51 388096 ----a-r- c:\users\Magali\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-04-09 06:51 . 2012-04-09 06:51 -------- d-----w- c:\program files (x86)\Trend Micro 2012-04-08 10:57 . 2012-01-25 06:38 77312 ----a-w- c:\windows\system32\rdpwsx.dll 2012-04-08 10:57 . 2012-01-25 06:38 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-04-08 10:36 . 2012-04-08 10:36 -------- d-----w- c:\windows\system32\SPReview 2012-04-08 10:03 . 2010-11-20 03:35 2560 ----a-w- c:\windows\system32\drivers\nl-NL\rdpwd.sys.mui 2012-04-08 10:02 . 2010-11-20 03:33 3584 ----a-w- c:\windows\system32\drivers\nl-NL\tsusbflt.sys.mui 2012-04-08 10:02 . 2010-11-20 03:27 3072 ----a-w- c:\windows\system32\drivers\nl-NL\Dot4usb.sys.mui 2012-04-08 09:49 . 2010-11-20 03:27 4400640 ----a-w- c:\program files\DVD Maker\OmdProject.dll 2012-04-08 09:48 . 2010-11-20 03:25 2058240 ----a-w- c:\windows\system32\wbem\cimwin32.dll 2012-04-08 09:47 . 2010-11-20 03:25 372736 ----a-w- c:\windows\system32\wbem\WmiPrvSE.exe 2012-04-08 09:46 . 2010-11-20 02:16 679424 ----a-w- c:\windows\SysWow64\autoconv.exe 2012-04-08 09:38 . 2012-04-08 09:38 -------- d-----w- c:\windows\system32\EventProviders 2012-04-06 18:23 . 2012-04-06 18:23 -------- d-----w- c:\users\Magali\AppData\Roaming\Malwarebytes 2012-04-06 16:59 . 2012-04-06 20:33 -------- d-----w- c:\program files (x86)\GridinSoft Trojan Killer 2012-04-06 16:20 . 2012-04-06 16:20 -------- d-----w- c:\program files\Enigma Software Group 2012-04-06 16:20 . 2012-04-06 20:32 -------- d-----w- c:\windows\5B210B8AB66E4702B44D0D6F388D29EB.TMP 2012-04-06 16:20 . 2012-04-06 16:20 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard 2012-04-06 15:57 . 2012-03-14 03:27 8669240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC7F3C99-5C49-4890-ACB2-D4CB3934476C}\mpengine.dll 2012-03-23 18:11 . 2012-04-06 15:51 -------- d-----w- c:\program files (x86)\Common Files\Skype 2012-03-23 18:11 . 2012-04-06 15:51 -------- d-----r- c:\program files (x86)\Skype 2012-03-15 20:29 . 2011-11-19 15:20 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-03-15 20:29 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2012-03-15 20:29 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2012-03-15 10:08 . 2012-02-03 04:34 3145728 ----a-w- c:\windows\system32\win32k.sys 2012-03-15 10:07 . 2012-01-25 06:33 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-03-15 10:07 . 2012-02-10 06:36 1544192 ----a-w- c:\windows\system32\DWrite.dll 2012-03-15 10:07 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll 2012-03-15 10:06 . 2012-02-17 04:58 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-03-15 10:06 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll 2012-03-15 10:06 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll 2012-03-15 10:06 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-04-08 10:24 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2012-04-08 10:24 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2012-02-29 06:01 . 2012-02-29 06:01 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll 2012-02-29 06:01 . 2012-02-29 06:01 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2012-02-29 06:01 . 2012-02-29 06:01 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2012-02-29 06:01 . 2012-02-29 06:01 74752 ----a-w- c:\windows\SysWow64\iesetup.dll 2012-02-29 06:01 . 2012-02-29 06:01 63488 ----a-w- c:\windows\SysWow64\tdc.ocx 2012-02-29 06:01 . 2012-02-29 06:01 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2012-02-29 06:01 . 2012-02-29 06:01 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2012-02-29 06:01 . 2012-02-29 06:01 367104 ----a-w- c:\windows\SysWow64\html.iec 2012-02-29 06:01 . 2012-02-29 06:01 35840 ----a-w- c:\windows\SysWow64\imgutil.dll 2012-02-29 06:01 . 2012-02-29 06:01 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb 2012-02-29 06:01 . 2012-02-29 06:01 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll 2012-02-29 06:01 . 2012-02-29 06:01 1798656 ----a-w- c:\windows\SysWow64\jscript9.dll 2012-02-29 06:01 . 2012-02-29 06:01 161792 ----a-w- c:\windows\SysWow64\msls31.dll 2012-02-29 06:01 . 2012-02-29 06:01 152064 ----a-w- c:\windows\SysWow64\wextract.exe 2012-02-29 06:01 . 2012-02-29 06:01 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2012-02-29 06:01 . 2012-02-29 06:01 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2012-02-29 06:01 . 2012-02-29 06:01 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2012-02-29 06:01 . 2012-02-29 06:01 11776 ----a-w- c:\windows\SysWow64\mshta.exe 2012-02-29 06:01 . 2012-02-29 06:01 1127424 ----a-w- c:\windows\SysWow64\wininet.dll 2012-02-29 06:01 . 2012-02-29 06:01 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2012-02-29 06:01 . 2012-02-29 06:01 101888 ----a-w- c:\windows\SysWow64\admparse.dll 2012-02-29 06:01 . 2012-02-29 06:01 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-02-29 06:01 . 2012-02-29 06:01 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-02-29 06:01 . 2012-02-29 06:01 85504 ----a-w- c:\windows\system32\iesetup.dll 2012-02-29 06:01 . 2012-02-29 06:01 76800 ----a-w- c:\windows\system32\tdc.ocx 2012-02-29 06:01 . 2012-02-29 06:01 603648 ----a-w- c:\windows\system32\vbscript.dll 2012-02-29 06:01 . 2012-02-29 06:01 49664 ----a-w- c:\windows\system32\imgutil.dll 2012-02-29 06:01 . 2012-02-29 06:01 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-02-29 06:01 . 2012-02-29 06:01 448512 ----a-w- c:\windows\system32\html.iec 2012-02-29 06:01 . 2012-02-29 06:01 30720 ----a-w- c:\windows\system32\licmgr10.dll 2012-02-29 06:01 . 2012-02-29 06:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-02-29 06:01 . 2012-02-29 06:01 2308096 ----a-w- c:\windows\system32\jscript9.dll 2012-02-29 06:01 . 2012-02-29 06:01 222208 ----a-w- c:\windows\system32\msls31.dll 2012-02-29 06:01 . 2012-02-29 06:01 173056 ----a-w- c:\windows\system32\ieUnatt.exe 2012-02-29 06:01 . 2012-02-29 06:01 165888 ----a-w- c:\windows\system32\iexpress.exe 2012-02-29 06:01 . 2012-02-29 06:01 160256 ----a-w- c:\windows\system32\wextract.exe 2012-02-29 06:01 . 2012-02-29 06:01 1493504 ----a-w- c:\windows\system32\inetcpl.cpl 2012-02-29 06:01 . 2012-02-29 06:01 1390080 ----a-w- c:\windows\system32\wininet.dll 2012-02-29 06:01 . 2012-02-29 06:01 135168 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-02-29 06:01 . 2012-02-29 06:01 12288 ----a-w- c:\windows\system32\mshta.exe 2012-02-29 06:01 . 2012-02-29 06:01 114176 ----a-w- c:\windows\system32\admparse.dll 2012-02-29 06:01 . 2012-02-29 06:01 111616 ----a-w- c:\windows\system32\iesysprep.dll 2012-02-23 08:18 . 2010-11-20 15:53 279656 ------w- c:\windows\system32\MpSigStub.exe 2012-02-16 11:05 . 2011-06-15 17:21 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2007-03-12 17:59 . 2007-03-12 17:59 299008 ----a-w- c:\program files (x86)\navigram_register.exe . . ((((((((((((((((((((((((((((( SnapShot@2012-04-09_08.15.03 ))))))))))))))))))))))))))))))))))))))))) . - 2010-09-09 00:04 . 2012-04-08 15:08 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-09 00:04 . 2012-04-09 08:19 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2010-09-09 00:04 . 2012-04-09 08:19 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2010-09-09 00:04 . 2012-04-08 15:08 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2012-04-09 08:19 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2012-04-08 15:08 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2010-02-01 18:03 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-07 39408] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "ares"="c:\program files (x86)\Ares\Ares.exe" [2009-01-03 893952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760] "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-03-08 260608] "NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648] "SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-02-01 337264] "EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 201512] "EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 401192] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-29 98304] "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-04-08 908368] "Communicator"="c:\program files (x86)\Microsoft Office Communicator\communicator.exe" [2012-01-11 5153056] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040] "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704] "beid"="c:\program files (x86)\Belgium Identity Card\beid35gui.exe" [2011-02-03 2068480] "avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-11-28 3744552] "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "Philips Device Listener"="c:\program files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe" [2011-03-03 380416] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-08 421736] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-31 460872] . c:\users\Magali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Lanceur Pointsoft.lnk - c:\pointsoft\lanceur.exe [2001-2-6 71952] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 135664] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856] R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x] R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 135664] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880] R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-02-01 305520] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-03-31 47128] R4 SQLAgent$MSSMLBIZ;SQL Server Agent (MSSMLBIZ);c:\program files (x86)\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x] S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400] S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360] S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-31 652360] S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 250368] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640] S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 13:48] . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 13:48] . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1629817003-2723464578-2475028105-1001Core.job - c:\users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-27 06:53] . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1629817003-2723464578-2475028105-1001UA.job - c:\users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-27 06:53] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-11-28 18:01 134384 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2010-02-01 18:06 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-22 323584] "mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-02-01 349552] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-01-20 9996320] "PLFSetI"="c:\windows\PLFSetI.exe" [2010-01-13 206208] "Apoint"="c:\program files\Apoint2K\Apoint.exe" [2010-03-27 345648] "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-04-23 861216] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.hln.be/ uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_7551&r=273609105516l0428z1j5t46k1k34q mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\users\vdb\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: DhcpNameServer = 195.130.131.133 195.130.130.5 DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab FF - ProfilePath - . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" "Key"="ActionsPane3" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-04-09 12:37:40 ComboFix-quarantined-files.txt 2012-04-09 10:37 ComboFix2.txt 2012-04-09 08:19 . Pre-Run: 206.224.871.424 bytes beschikbaar Post-Run: 206.165.069.824 bytes beschikbaar . - - End Of File - - 0F2E6C2C7C3CB68BE10386CDDF1BBC1E
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

ComboFix 12-04-08.02 - vdb 09/04/2012 10:01:56.1.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.2814.1507 [GMT 2:00] Gestart vanuit: c:\users\Magali\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\~LCAhPdMRhVbE7I c:\programdata\~LCAhPdMRhVbE7Ir c:\programdata\Dv6RWK1SLMA093 c:\programdata\FullRemove.exe c:\programdata\LCAhPdMRhVbE7I c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{04FC5C2C-547C-4780-89E4-107AA721030E}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{4250FBE1-352D-424C-98A4-EF968775EFF2}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{6E2ABB8D-17FD-4A6A-9EE8-95540F6BD948}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{6EDD2193-1661-4548-8032-7960FBBDF7E5}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{9619A214-E4A4-4CDD-A19C-CF637177A0CD}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{A0059E50-D4A0-43D3-B986-CBC5203B7E66}.xps c:\users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\{CA04B40D-BCFE-469D-9FC9-A7E53486B172}.xps c:\users\Magali\AppData\Roaming\install c:\users\Magali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Check c:\users\Magali\Desktop\Setup.exe c:\users\Magali\videos\spinwheel.exe c:\windows\Temp\log.txt . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-09 to 2012-04-09 )))))))))))))))))))))))))))))) . . 2012-04-09 08:14 . 2012-04-09 08:14 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-04-09 08:14 . 2012-04-09 08:14 -------- d-----w- c:\users\vdb\AppData\Local\temp 2012-04-09 07:15 . 2012-04-09 07:15 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC7F3C99-5C49-4890-ACB2-D4CB3934476C}\offreg.dll 2012-04-09 06:51 . 2012-04-09 06:51 388096 ----a-r- c:\users\Magali\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-04-09 06:51 . 2012-04-09 06:51 -------- d-----w- c:\program files (x86)\Trend Micro 2012-04-08 10:57 . 2012-01-25 06:38 77312 ----a-w- c:\windows\system32\rdpwsx.dll 2012-04-08 10:57 . 2012-01-25 06:38 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-04-08 10:36 . 2012-04-08 10:36 -------- d-----w- c:\windows\system32\SPReview 2012-04-08 10:03 . 2010-11-20 03:35 2560 ----a-w- c:\windows\system32\drivers\nl-NL\rdpwd.sys.mui 2012-04-08 10:02 . 2010-11-20 03:33 3584 ----a-w- c:\windows\system32\drivers\nl-NL\tsusbflt.sys.mui 2012-04-08 10:02 . 2010-11-20 03:27 3072 ----a-w- c:\windows\system32\drivers\nl-NL\Dot4usb.sys.mui 2012-04-08 09:49 . 2010-11-20 03:27 4400640 ----a-w- c:\program files\DVD Maker\OmdProject.dll 2012-04-08 09:48 . 2010-11-20 03:25 2058240 ----a-w- c:\windows\system32\wbem\cimwin32.dll 2012-04-08 09:47 . 2010-11-20 03:25 372736 ----a-w- c:\windows\system32\wbem\WmiPrvSE.exe 2012-04-08 09:46 . 2010-11-20 02:16 679424 ----a-w- c:\windows\SysWow64\autoconv.exe 2012-04-08 09:38 . 2012-04-08 09:38 -------- d-----w- c:\windows\system32\EventProviders 2012-04-06 18:23 . 2012-04-06 18:23 -------- d-----w- c:\users\Magali\AppData\Roaming\Malwarebytes 2012-04-06 16:59 . 2012-04-06 20:33 -------- d-----w- c:\program files (x86)\GridinSoft Trojan Killer 2012-04-06 16:20 . 2012-04-06 20:32 -------- d-----w- C:\sh4ldr 2012-04-06 16:20 . 2012-04-06 16:20 -------- d-----w- c:\program files\Enigma Software Group 2012-04-06 16:20 . 2012-04-06 20:32 -------- d-----w- c:\windows\5B210B8AB66E4702B44D0D6F388D29EB.TMP 2012-04-06 16:20 . 2012-04-06 16:20 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard 2012-04-06 15:57 . 2012-03-14 03:27 8669240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EC7F3C99-5C49-4890-ACB2-D4CB3934476C}\mpengine.dll 2012-03-23 18:11 . 2012-04-06 15:51 -------- d-----w- c:\program files (x86)\Common Files\Skype 2012-03-23 18:11 . 2012-04-06 15:51 -------- d-----r- c:\program files (x86)\Skype 2012-03-15 20:29 . 2011-11-19 15:20 5559152 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-03-15 20:29 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2012-03-15 20:29 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2012-03-15 10:08 . 2012-02-03 04:34 3145728 ----a-w- c:\windows\system32\win32k.sys 2012-03-15 10:07 . 2012-01-25 06:33 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-03-15 10:07 . 2012-02-10 06:36 1544192 ----a-w- c:\windows\system32\DWrite.dll 2012-03-15 10:07 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\SysWow64\DWrite.dll 2012-03-15 10:06 . 2012-02-17 04:58 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-03-15 10:06 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll 2012-03-15 10:06 . 2012-02-17 05:34 826880 ----a-w- c:\windows\SysWow64\rdpcore.dll 2012-03-15 10:06 . 2012-02-17 04:57 23552 ----a-w- c:\windows\system32\drivers\tdtcp.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-04-08 10:24 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2012-04-08 10:24 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2012-02-29 06:01 . 2012-02-29 06:01 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll 2012-02-29 06:01 . 2012-02-29 06:01 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2012-02-29 06:01 . 2012-02-29 06:01 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2012-02-29 06:01 . 2012-02-29 06:01 74752 ----a-w- c:\windows\SysWow64\iesetup.dll 2012-02-29 06:01 . 2012-02-29 06:01 63488 ----a-w- c:\windows\SysWow64\tdc.ocx 2012-02-29 06:01 . 2012-02-29 06:01 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2012-02-29 06:01 . 2012-02-29 06:01 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2012-02-29 06:01 . 2012-02-29 06:01 367104 ----a-w- c:\windows\SysWow64\html.iec 2012-02-29 06:01 . 2012-02-29 06:01 35840 ----a-w- c:\windows\SysWow64\imgutil.dll 2012-02-29 06:01 . 2012-02-29 06:01 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb 2012-02-29 06:01 . 2012-02-29 06:01 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll 2012-02-29 06:01 . 2012-02-29 06:01 1798656 ----a-w- c:\windows\SysWow64\jscript9.dll 2012-02-29 06:01 . 2012-02-29 06:01 161792 ----a-w- c:\windows\SysWow64\msls31.dll 2012-02-29 06:01 . 2012-02-29 06:01 152064 ----a-w- c:\windows\SysWow64\wextract.exe 2012-02-29 06:01 . 2012-02-29 06:01 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2012-02-29 06:01 . 2012-02-29 06:01 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2012-02-29 06:01 . 2012-02-29 06:01 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2012-02-29 06:01 . 2012-02-29 06:01 11776 ----a-w- c:\windows\SysWow64\mshta.exe 2012-02-29 06:01 . 2012-02-29 06:01 1127424 ----a-w- c:\windows\SysWow64\wininet.dll 2012-02-29 06:01 . 2012-02-29 06:01 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2012-02-29 06:01 . 2012-02-29 06:01 101888 ----a-w- c:\windows\SysWow64\admparse.dll 2012-02-29 06:01 . 2012-02-29 06:01 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-02-29 06:01 . 2012-02-29 06:01 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-02-29 06:01 . 2012-02-29 06:01 85504 ----a-w- c:\windows\system32\iesetup.dll 2012-02-29 06:01 . 2012-02-29 06:01 76800 ----a-w- c:\windows\system32\tdc.ocx 2012-02-29 06:01 . 2012-02-29 06:01 603648 ----a-w- c:\windows\system32\vbscript.dll 2012-02-29 06:01 . 2012-02-29 06:01 49664 ----a-w- c:\windows\system32\imgutil.dll 2012-02-29 06:01 . 2012-02-29 06:01 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-02-29 06:01 . 2012-02-29 06:01 448512 ----a-w- c:\windows\system32\html.iec 2012-02-29 06:01 . 2012-02-29 06:01 30720 ----a-w- c:\windows\system32\licmgr10.dll 2012-02-29 06:01 . 2012-02-29 06:01 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-02-29 06:01 . 2012-02-29 06:01 2308096 ----a-w- c:\windows\system32\jscript9.dll 2012-02-29 06:01 . 2012-02-29 06:01 222208 ----a-w- c:\windows\system32\msls31.dll 2012-02-29 06:01 . 2012-02-29 06:01 173056 ----a-w- c:\windows\system32\ieUnatt.exe 2012-02-29 06:01 . 2012-02-29 06:01 165888 ----a-w- c:\windows\system32\iexpress.exe 2012-02-29 06:01 . 2012-02-29 06:01 160256 ----a-w- c:\windows\system32\wextract.exe 2012-02-29 06:01 . 2012-02-29 06:01 1493504 ----a-w- c:\windows\system32\inetcpl.cpl 2012-02-29 06:01 . 2012-02-29 06:01 1390080 ----a-w- c:\windows\system32\wininet.dll 2012-02-29 06:01 . 2012-02-29 06:01 135168 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-02-29 06:01 . 2012-02-29 06:01 12288 ----a-w- c:\windows\system32\mshta.exe 2012-02-29 06:01 . 2012-02-29 06:01 114176 ----a-w- c:\windows\system32\admparse.dll 2012-02-29 06:01 . 2012-02-29 06:01 111616 ----a-w- c:\windows\system32\iesysprep.dll 2012-02-23 08:18 . 2010-11-20 15:53 279656 ------w- c:\windows\system32\MpSigStub.exe 2012-02-16 11:05 . 2011-06-15 17:21 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2007-03-12 17:59 . 2007-03-12 17:59 299008 ----a-w- c:\program files (x86)\navigram_register.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2010-02-01 18:03 120176 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x86\PSDProtect.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-07 39408] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "ares"="c:\program files (x86)\Ares\Ares.exe" [2009-01-03 893952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760] "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-03-08 260608] "NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648] "SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-02-01 337264] "EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2009-12-25 201512] "EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2009-12-25 401192] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-29 98304] "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-04-08 908368] "Communicator"="c:\program files (x86)\Microsoft Office Communicator\communicator.exe" [2012-01-11 5153056] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040] "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704] "beid"="c:\program files (x86)\Belgium Identity Card\beid35gui.exe" [2011-02-03 2068480] "avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-11-28 3744552] "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "Philips Device Listener"="c:\program files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe" [2011-03-03 380416] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-08 421736] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-31 460872] . c:\users\Magali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Lanceur Pointsoft.lnk - c:\pointsoft\lanceur.exe [2001-2-6 71952] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 135664] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856] R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x] R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 135664] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880] R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-02-01 305520] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-06 50432] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-03-31 47128] R4 SQLAgent$MSSMLBIZ;SQL Server Agent (MSSMLBIZ);c:\program files (x86)\Microsoft SQL Server\MSSQL10.MSSMLBIZ\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936] S1 aswSnx;aswSnx; [x] S1 aswSP;aswSP; [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x] S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-04-08 312400] S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-04-23 867360] S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-31 652360] S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 250368] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-06 144640] S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 13:48] . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-13 13:48] . 2012-04-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1629817003-2723464578-2475028105-1001Core.job - c:\users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-27 06:53] . 2012-04-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1629817003-2723464578-2475028105-1001UA.job - c:\users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-27 06:53] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-11-28 18:01 134384 ----a-w- c:\program files\Alwil Software\Avast5\ashShA64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2010-02-01 18:06 137584 ----a-w- c:\program files (x86)\EgisTec MyWinLocker\x64\PSDProtect.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-22 323584] "mwlDaemon"="c:\program files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe" [2010-02-01 349552] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-01-20 9996320] "PLFSetI"="c:\windows\PLFSetI.exe" [2010-01-13 206208] "Apoint"="c:\program files\Apoint2K\Apoint.exe" [2010-03-27 345648] "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-04-23 861216] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.hln.be/ uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=aspire_7551&r=273609105516l0428z1j5t46k1k34q mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\users\vdb\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm TCP: DhcpNameServer = 195.130.131.133 195.130.130.5 DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab FF - ProfilePath - . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-DriverFinder - c:\program files (x86)\DriverFinder\DriverFinder.exe Toolbar-Locked - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11f_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11f.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79, 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" "Key"="ActionsPane3" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-04-09 10:19:53 ComboFix-quarantined-files.txt 2012-04-09 08:19 . Pre-Run: 197.428.449.280 bytes beschikbaar Post-Run: 206.544.322.560 bytes beschikbaar . - - End Of File - - 0E5C86A76C46F20A2498DEFFA3DD3798
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Deze 2 lijnen heb ik kunnen aanvinken, de rest stond er niet meer tussen R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:15:39, on 9/04/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe C:\Windows\PLFSetI.exe C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Ares\Ares.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\pointsoft\lanceur.exe C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Launch Manager\LMworker.exe C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Users\Magali\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (file missing) O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [Communicator] "C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe" /fromrunkey O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h O4 - HKCU\..\Run: [DriverFinder] C:\Program Files (x86)\DriverFinder\DriverFinder.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1629817003-2723464578-2475028105-1001\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'Magali') O4 - HKUS\S-1-5-21-1629817003-2723464578-2475028105-1001\..\Run: [FXoIuAOxAoT.exe] C:\ProgramData\FXoIuAOxAoT.exe (User 'Magali') O4 - S-1-5-21-1629817003-2723464578-2475028105-1001 Startup: Lanceur Pointsoft.lnk = C:\pointsoft\lanceur.exe (User 'Magali') O4 - S-1-5-21-1629817003-2723464578-2475028105-1001 User Startup: Lanceur Pointsoft.lnk = C:\pointsoft\lanceur.exe (User 'Magali') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\vdb\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/m3/photouploadcontrol/VistaMSNPUpldnl-be.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 16540 bytes
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Dit komt tevoorschijn als ik Hijackthis wil starten. Logje Malware lukte wel Malwarebytes Anti-Malware (Trial) 1.60.1.1000 www.malwarebytes.org Database version: v2012.04.09.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Magali :: VDB-PC [limited] Protection: Enabled 9/04/2012 8:30:41 mbam-log-2012-04-09 (08-30-41).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 171418 Time elapsed: 8 minute(s), 1 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Dit komt tevoorschijn als ik hijackthis wil starten
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Nu kan ik hijackthis niet terugvinden. Als ik het programmatje wil downloaden krijg ik de melding "kan de uitgever van dit programma niet verifiëren"
- 9 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

2012/04/08 07:20:32 +0200 VDB-PC vdb MESSAGE Starting protection 2012/04/08 07:20:38 +0200 VDB-PC vdb MESSAGE Protection started successfully 2012/04/08 07:20:41 +0200 VDB-PC vdb MESSAGE Starting IP protection 2012/04/08 07:20:45 +0200 VDB-PC vdb MESSAGE IP Protection started successfully 2012/04/08 07:32:01 +0200 VDB-PC vdb MESSAGE Executing scheduled update: Daily 2012/04/08 07:32:12 +0200 VDB-PC vdb MESSAGE Scheduled update executed successfully: database updated from version v2012.04.07.02 to version v2012.04.08.01 2012/04/08 07:32:12 +0200 VDB-PC vdb MESSAGE Starting database refresh 2012/04/08 07:32:12 +0200 VDB-PC vdb MESSAGE Stopping IP protection 2012/04/08 07:35:44 +0200 VDB-PC vdb MESSAGE IP Protection stopped 2012/04/08 07:35:48 +0200 VDB-PC vdb MESSAGE Database refreshed successfully 2012/04/08 07:35:48 +0200 VDB-PC vdb MESSAGE Starting IP protection 2012/04/08 07:35:52 +0200 VDB-PC vdb MESSAGE IP Protection started successfully 2012/04/08 11:03:16 +0200 VDB-PC Magali MESSAGE Starting protection 2012/04/08 11:03:20 +0200 VDB-PC Magali MESSAGE Protection started successfully 2012/04/08 11:03:23 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 11:03:27 +0200 VDB-PC Magali MESSAGE IP Protection started successfully 2012/04/08 13:25:38 +0200 VDB-PC Magali MESSAGE Starting protection 2012/04/08 13:25:44 +0200 VDB-PC Magali MESSAGE Protection started successfully 2012/04/08 13:25:47 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 13:25:53 +0200 VDB-PC Magali MESSAGE IP Protection started successfully 2012/04/08 15:44:54 +0200 VDB-PC Magali MESSAGE Starting protection 2012/04/08 15:44:59 +0200 VDB-PC Magali MESSAGE Protection started successfully 2012/04/08 15:45:02 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 15:45:06 +0200 VDB-PC Magali MESSAGE IP Protection started successfully 2012/04/08 16:12:52 +0200 VDB-PC Magali MESSAGE Starting protection 2012/04/08 16:12:55 +0200 VDB-PC Magali MESSAGE Protection started successfully 2012/04/08 16:12:58 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 16:13:02 +0200 VDB-PC Magali MESSAGE IP Protection started successfully 2012/04/08 16:30:37 +0200 VDB-PC Magali MESSAGE Starting database refresh 2012/04/08 16:30:37 +0200 VDB-PC Magali MESSAGE Stopping IP protection 2012/04/08 16:34:14 +0200 VDB-PC Magali MESSAGE IP Protection stopped 2012/04/08 16:34:31 +0200 VDB-PC Magali MESSAGE Database refreshed successfully 2012/04/08 16:34:31 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 16:34:35 +0200 VDB-PC Magali MESSAGE IP Protection started successfully 2012/04/08 16:47:41 +0200 VDB-PC Magali MESSAGE Starting protection 2012/04/08 16:47:44 +0200 VDB-PC Magali MESSAGE Protection started successfully 2012/04/08 16:47:47 +0200 VDB-PC Magali MESSAGE Starting IP protection 2012/04/08 16:47:51 +0200 VDB-PC Magali MESSAGE IP Protection started successfully Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:54:36, on 8/04/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe C:\Windows\PLFSetI.exe C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Ares\Ares.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\pointsoft\lanceur.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11f_ActiveX.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Magali\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4PJFZFQZ\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [Communicator] "C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe" /fromrunkey O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKLM\..\RunOnce: [innoSetupRegFile.0000000001] "C:\Windows\is-EDN79.exe" /REG /REGSVRMODE O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h O4 - HKCU\..\Run: [Google Update] "C:\Users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [FXoIuAOxAoT.exe] C:\ProgramData\FXoIuAOxAoT.exe O4 - Startup: Lanceur Pointsoft.lnk = C:\pointsoft\lanceur.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: Plantyn Online O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/m3/photouploadcontrol/VistaMSNPUpldnl-be.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 15780 bytes
- 8 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Het programma ASK.COM kan ik bij mij niet verwijderen. Via andere gebruiker ging dit wel. Ik kan niet in mijn cofiguratiescherm/ documumenten/ apparaten.....ik kan het ook nergens terugvinden "Unhide.exe" kan ik niet opslaan op mijn bureaublad omdat die ook weg is. Wat nu?
- 8 april 2012
- 33 antwoorden
Smart hdd

megapebbels reageerde op megapebbels's topic in Archief Bestrijding malware & virussen

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:20:51, on 6/04/2012 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe C:\Windows\PLFSetI.exe C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Program Files (x86)\Ares\Ares.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Program Files (x86)\Ask.com\Updater\Updater.exe C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11f_ActiveX.exe C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Magali\Downloads\HijackThis.exe C:\Windows\SysWOW64\NOTEPAD.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: 74.208.10.249 gs.apple.com O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: FrostWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe" O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [Communicator] "C:\Program Files (x86)\Microsoft Office Communicator\communicator.exe" /fromrunkey O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [beid] "C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [Philips Device Listener] "C:\Program Files (x86)\Philips\Philips Songbird Resources\Autolauncher\PhilipsDeviceListener.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ares] "C:\Program Files (x86)\Ares\Ares.exe" -h O4 - HKCU\..\Run: [Google Update] "C:\Users\Magali\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [FXoIuAOxAoT.exe] C:\ProgramData\FXoIuAOxAoT.exe O4 - Startup: Lanceur Pointsoft.lnk = C:\pointsoft\lanceur.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: McAfee Security Scan Plus.lnk = ? O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: Plantyn Online O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://ips.poi.de/ips-opdata/layout/fnac/objects/jordan.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/m3/photouploadcontrol/VistaMSNPUpldnl-be.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 16590 bytes
- 6 april 2012
- 33 antwoorden
Smart hdd

megapebbels plaatste een topic in Archief Bestrijding malware & virussen

Hallo, Als ik mijn laptop opstarte kreeg ik enorm veel popups en SMART HDD starte daarbij op. Via Malware heb ik dit kunnen verwijderen maar nu ben ik al mijn documenten en foto's kwijt. Bij start zijn mijn programma's ook niet meer zichtbaar. Enkel computer staat er nog bij. Weet iemand wat te doen? Mvg, Megapebbels
- 6 april 2012
- 33 antwoorden

Inloggen

Profielen

Forums

Store

Alles dat geplaatst werd door megapebbels

OVER ONS

SITEMAP

Belangrijke informatie