pvn

Lid

Bekijk profiel Bekijk hun activiteit

Items
38
Registratiedatum
16 september 2013
Laatst bezocht
3 juli 2014

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door pvn

Preventie

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

hierbij de checkup Results of screen317's Security Check version 0.99.73 Windows XP Service Pack 3 x86 Internet Explorer 8 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Please wait while WMIC is being installed.d i s p l a y N a m e ECHO is off. M i c r o s o f t ECHO is off. S e c u r i t y ECHO is off. E s e n t i a l s ECHO is off. Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` SpywareBlaster 5.0 TuneUp Utilities Language Pack (nl-NL) TuneUp Utilities 2013 CCleaner Adobe Reader XI ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials MSMpEng.exe Microsoft Security Essentials msseces.exe Peter Desktop VIRUS SecurityCheck.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C:: 16% Defragment your hard drive soon! (Do NOT defrag if SSD!) ````````````````````End of Log``````````````````````
- 17 september 2013
- 14 antwoorden
Preventie

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Jion, Hier ben ik weer en hopelijk kunnen we die rotzooi opruimen. Het logje: Zoek.exe Version 4.0.0.4 Updated 14-September-2013 Tool run by Peter on di 17/09/2013 at 13:27:17,90. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\Documents and Settings\Peter\Desktop\VIRUS\ZOEK\zoek.exe [script inserted] ==== System Restore Info ====================== 17/09/2013 13:28:17 Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1960408961-2049760794-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{08C06D61-F1F3-4799-86F8-BE1A89362C85} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-1960408961-2049760794-1177238915-1003\Software\Microsoft\Internet Explorer\URLSearchHooks\{08C06D61-F1F3-4799-86F8-BE1A89362C85} deleted successfully ==== Deleting Services ====================== ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Babylon Client] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "bProtector Start Page"=- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "bProtectorDefaultScope"=- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "bProtectTabs"=- ==== Deleting Files \ Folders ====================== "C:\Program Files\Babylon" not found "C:\WINDOWS\wininit.ini" deleted "C:\Documents and Settings\Peter\Application Data\iolo" deleted "C:\Documents and Settings\Peter\Application Data\Babylon" deleted "C:\Documents and Settings\All Users\Application Data\Babylon" deleted "C:\Documents and Settings\Peter\Application Data\OpenCandy" deleted "C:\Documents and Settings\Peter\Application Data\Babylon" deleted "C:\Documents and Settings\Peter\Application Data\OpenCandy" deleted "C:\Documents and Settings\All Users\Application Data\Babylon" deleted "C:\WINDOWS\System32\searchplugins" deleted "C:\WINDOWS\System32\Extensions" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\DOCUME~1\Peter\LOCALS~1\Temp ==== ====== C:\WINDOWS\system32 ===== 2013-09-16 07:17:23 A2847CEAC26601E308B7BA2BCC1E0A92 320336 ----a-w- C:\WINDOWS\System32\FNTCACHE.DAT ====== C:\WINDOWS\system32\drivers ===== ====== C:\WINDOWS\Tasks ====== 2013-09-16 07:17:46 35D2FAE9D519B44E3A0DF0C2364DE1A1 280 ----a-w- C:\WINDOWS\Tasks\BitGuard.job ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2013-09-17 09:49:52 -------- d-----w- C:\Program Files\trend micro ======= C: ===== ====== C:\Documents and Settings\Peter\Application Data ====== 2013-09-16 07:20:24 DC6AFB1A61387232BB40F85B664DD97A 87032 ----a-w- C:\Documents and Settings\Peter\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2013-09-13 15:34:37 -------- d-----w- C:\Documents and Settings\Peter\Start Menu\Programs\BitGuard ====== C:\Documents and Settings\Peter ====== 2013-09-15 23:55:17 -------- d--h--r- C:\Documents and Settings\Peter\Recent ====== C: exe-files == 2013-09-17 09:49:53 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\trend micro\Peter.exe 2013-09-17 09:49:27 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Documents and Settings\Peter\Desktop\VIRUS\RSIT.exe 2013-09-17 09:49:17 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Documents and Settings\Peter\Local Settings\Temporary Internet Files\Content.IE5\EW0P2WQO\RSIT[1].exe 2013-09-14 00:09:58 78141AD888BA82E3ABC854D229A59F07 231288 -c----w- C:\WINDOWS\ie8updates\KB2870699-IE8\spuninst\spuninst.exe 2013-09-14 00:09:53 6571E4D577A52E7C982FA11D2ABD4DA0 174592 -c----w- C:\WINDOWS\ie8updates\KB2870699-IE8\ie4uinit.exe 2013-09-13 15:34:36 7F8BECFB26F2655E281406C6C341F416 3029472 ----a-w- C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe 2013-09-13 15:34:25 7F8BECFB26F2655E281406C6C341F416 3029472 ----a-w- C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_USERS\S-1-5-21-1960408961-2049760794-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "PC Suite Tray"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" "IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" "EEventManager"="C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe" "IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless" "PMX Daemon"="ICO.EXE" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "zBrowser Launcher"="C:\Program Files\iTouch\iTouch.exe" "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe -atboottime" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "SigmatelSysTrayApp"="%ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "PC Suite Tray"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="" "hkey"="HKLM" "command"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ctfmon.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ctfmon" "hkey"="HKCU" "command"="C:\\WINDOWS\\system32\\ctfmon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Dell QuickSet] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Quickset" "hkey"="HKLM" "command"="C:\\Program Files\\Dell\\QuickSet\\Quickset.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DellSystemDetect] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DellSystemDetect" "hkey"="HKCU" "command"="C:\\Documents and Settings\\Peter\\Start Menu\\Programs\\Dell\\Dell System Detect.appref-ms" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Kernel and Hardware Abstraction Layer] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="KHALMNPR" "hkey"="HKLM" "command"="KHALMNPR.EXE" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msmsgs" "hkey"="HKCU" "command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NokiaSuite.exe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NokiaSuite.exe" "hkey"="HKCU" "command"="C:\\Program Files\\Nokia\\Nokia Suite\\NokiaSuite.exe -tray" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PC Suite Tray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="PCSuite" "hkey"="HKCU" "command"="\"C:\\Program Files\\Nokia\\Nokia PC Suite 7\\PCSuite.exe\" -onlytray" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PHOTOfunSTUDIO 6.0.lnk] "path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\PHOTOfunSTUDIO 6.0.lnk" "backup"="C:\\WINDOWS\\pss\\PHOTOfunSTUDIO 6.0.lnkCommon Startup" "command"="C:\\PROGRA~1\\COMMON~1\\PANASO~1\\PHOTOF~1\\AUTOST~1.EXE -e \"C:\\Program Files\\Panasonic\\PHOTOfunSTUDIO 6.0\\PHOTOfunSTUDIO.exe\"" "item"="PHOTOfunSTUDIO 6.0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^Peter^Start Menu^Programs^Startup^EvernoteClipper.lnk] "path"="C:\\Documents and Settings\\Peter\\Start Menu\\Programs\\Startup\\EvernoteClipper.lnk" "backup"="C:\\WINDOWS\\pss\\EvernoteClipper.lnkStartup" "command"="C:\\PROGRA~1\\Evernote\\Evernote\\EVERNO~2.EXE " "item"="EvernoteClipper" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run-] "NokiaSuite.exe"="C:\\Program Files\\Nokia\\Nokia Suite\\NokiaSuite.exe -tray" "EPSON BX300F Series"="C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATIEJE.EXE /FU \"C:\\WINDOWS\\TEMP\\E_SD6.tmp\" /EF \"HKCU\"" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "RoxWatchTray"="\"C:\\Program Files\\Common Files\\Roxio Shared\\9.0\\SharedCOM\\RoxWatchTray9.exe\"" "ISUSPM Startup"="C:\\PROGRA~1\\COMMON~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe -startup" "ISUSScheduler"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\issch.exe\" -start" "RoxioDragToDisc"="\"C:\\Program Files\\Roxio\\Drag-to-Disc\\DrgToDsc.exe\"" "PCMService"="\"C:\\Program Files\\Dell\\MediaDirect\\PCMService.exe\"" "ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" ==== Startup Folders ====================== 2013-06-17 22:10:33 951 ------w- C:\Documents and Settings\Peter\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [14/09/2013 12:18] C:\WINDOWS\tasks\BitGuard.job --a------ C:\WINDOWS\system32\sc.exe [06/02/2009 12:39] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [26/06/2013 22:59] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [26/06/2013 22:59] C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [20/06/2013 18:05] C:\WINDOWS\tasks\User_Feed_Synchronization-{2072EA55-B9B4-4954-B93F-503F9DE86B6D}.job --ah----- C:\WINDOWS\system32\msfeedssync.exe [08/03/2009 04:31] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{C5CA7529-1469-4217-82E5-8BDF374EED31}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Unknown Url="Not_Found" {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} Unknown Url="Not_Found" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" {C5CA7529-1469-4217-82E5-8BDF374EED31} Google Url="{searchTerms} - Google zoeken?}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1960408961-2049760794-1177238915-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully HKEY_USERS\S-1-5-21-1960408961-2049760794-1177238915-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Peter\Local Settings\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\Peter\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Peter\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\Peter\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted ==== EOF on di 17/09/2013 at 13:44:19,26 ======================
- 17 september 2013
- 14 antwoorden
Preventie

pvn plaatste een topic in Archief Bestrijding malware & virussen

Dag allen, Ik heb een Dell Inspiron laptop 6400 die ik een paar maanden geleden met veel moeite (eerste keer) heb geformatteerd. Kan je preventief bekijken of alles up-to-date is en goed geïnstalleerd is en of er niets geïnfecteerd is of kan ik beter wachten tot er eventuele problemen opduiken? Mvg, Peter RSIT LOG Logfile of random's system information tool 1.09 (written by random/random) Run by Peter at 2013-09-17 11:49:51 Microsoft Windows XP Professional Service Pack 3 System drive C: has 30 GB (27%) free of 114 GB Total RAM: 2046 MB (59% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:50:02, on 17/09/2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\iTouch\iTouch.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclBCBTSrv.exe C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Peter\Desktop\VIRUS\RSIT.exe C:\Program Files\trend micro\Peter.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe O4 - HKLM\..\Run: [intelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" O4 - HKLM\..\Run: [EEventManager] C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe O4 - HKLM\..\Run: [intelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [PMX Daemon] ICO.EXE O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\iTouch\iTouch.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKCU\..\Run: [DellSystemDetect] C:\Documents and Settings\Peter\Start Menu\Programs\Dell\Dell System Detect.appref-ms O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: Afbeelding knippen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Kopieer selectie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 O8 - Extra context menu item: Kopieer URL - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 O8 - Extra context menu item: Nieuwe notitie - C:\Program Files\Evernote\Evernote\\EvernoteIERes\NewNote.html O8 - Extra context menu item: Pagina opemen - C:\Program Files\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html O9 - Extra 'Tools' menuitem: @C:\Program Files\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files\Evernote\Evernote\\EvernoteIERes\AddNote.html O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: *.dell.com O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\MP3 Skype Recorder\Skype4COM.dll O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll O20 - AppInit_DLLs: c:\docume~1\alluse~1\applic~1\bitguard\261673~1.238\{c16c1~1\bitguard.dll O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: BitGuard - Unknown owner - C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\WINDOWS\system32\DRIVERS\xaudio.exe -- End of file - 12010 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job C:\WINDOWS\tasks\BitGuard.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job C:\WINDOWS\tasks\User_Feed_Synchronization-{2072EA55-B9B4-4954-B93F-503F9DE86B6D}.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{92EF2EAD-A7CE-4424-B0DB-499CF856608E}] Evernote extension - C:\Program Files\Evernote\Evernote\EvernoteIE.dll [2013-05-22 587104] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}] Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C920E44A-7F78-4E64-BDD7-A57026E7FEB7}] WOT Helper - C:\Program Files\WOT\WOT.dll [2012-08-02 1335872] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E99421FB-68DD-40F0-B4AC-B7027CAE2F1A}] EpsonToolBandKicker Class - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - EPSON Web-To-Page - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll [2005-02-21 368640] {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240] {71576546-354D-41c9-AAE8-31F2EC22BF0D} - WOT - C:\Program Files\WOT\WOT.dll [2012-08-02 1335872] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-08 761947] "Logitech Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824] "SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe [2007-05-10 405504] "IntelZeroConfig"=C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [2007-10-08 995328] "EEventManager"=C:\Program Files\EPSON\Creativity Suite\Event Manager\EEventManager.exe [2006-10-12 102400] "IntelWireless"=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2007-10-08 1101824] "PMX Daemon"=C:\WINDOWS\system32\ICO.EXE [2006-11-08 49152] "MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2013-06-20 995176] "zBrowser Launcher"=C:\Program Files\iTouch\iTouch.exe [2004-03-18 892928] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2013-05-01 421888] "APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DellSystemDetect"=C:\Documents and Settings\Peter\Start Menu\Programs\Dell\Dell System Detect.appref-ms [2013-06-13 370] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] "PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dell QuickSet] C:\Program Files\Dell\QuickSet\Quickset.exe [2007-05-14 1191936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSystemDetect] C:\Documents and Settings\Peter\Start Menu\Programs\Dell\Dell System Detect.appref-ms [2013-06-13 370] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.EXE [2009-06-17 55824] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [2013-04-19 1090912] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PHOTOfunSTUDIO 6.0.lnk] C:\PROGRA~1\COMMON~1\PANASO~1\PHOTOF~1\AUTOST~1.EXE [2010-11-19 174064] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Peter^Start Menu^Programs^Startup^EvernoteClipper.lnk] C:\PROGRA~1\Evernote\Evernote\EVERNO~2.EXE [2013-05-22 1089888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "WajamUpdater"=2 "Skype C2C Service"=2 C:\Documents and Settings\All Users\Start Menu\Programs\Startup Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Documents and Settings\Peter\Start Menu\Programs\Startup OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="c:\docume~1\alluse~1\applic~1\bitguard\261673~1.238\{c16c1~1\bitguard.dll " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2006-05-23 61440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-14 239616] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe"="C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe:*:Enabled:WebKit" "C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Files and Settings Transfer Wizard" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype " "C:\Documents and Settings\Peter\Application Data\Spotify\spotify.exe"="C:\Documents and Settings\Peter\Application Data\Spotify\spotify.exe:*:Enabled:Spotify" "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook" "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.trspch"=tssoft32.acm "vidc.cvid"=iccvid.dll "vidc.I420"=msh263.drv "vidc.iv31"=ir32_32.dll "vidc.iv32"=ir32_32.dll "vidc.iv41"=ir41_32.ax "vidc.iyuv"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvu9"=tsbyuv.dll "vidc.yvyu"=msyuv.dll "wavemapper"=msacm32.drv "msacm.msg723"=msg723.acm "vidc.M263"=msh263.drv "vidc.M261"=msh261.drv "msacm.msaudio1"=msaud32.acm "msacm.sl_anet"=sl_anet.acm "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax "vidc.iv50"=ir50_32.dll "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv ======List of files/folders created in the last 3 months====== 2013-09-17 11:49:52 ----D---- C:\Program Files\trend micro 2013-09-17 11:49:51 ----D---- C:\rsit 2013-09-16 09:17:23 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT 2013-09-14 02:08:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2876315$ 2013-09-14 02:08:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2876217$ 2013-09-14 02:08:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2864063$ 2013-09-13 17:33:54 ----D---- C:\Documents and Settings\All Users\Application Data\BitGuard 2013-09-01 14:02:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904-v2_WM11$ 2013-09-01 13:47:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2850869$ 2013-09-01 13:47:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2859537$ 2013-09-01 13:47:26 ----HDC---- C:\WINDOWS\$NtUninstallKB2863058$ 2013-09-01 13:47:13 ----HDC---- C:\WINDOWS\$NtUninstallKB2849470$ 2013-07-25 03:13:44 ----A---- C:\WINDOWS\system32\drivers\usbser.sys 2013-07-25 03:13:20 ----N---- C:\WINDOWS\system32\spmsgXP_2k3.dll 2013-07-25 03:13:08 ----HDC---- C:\WINDOWS\$NtUninstallWdf01009$ 2013-07-21 23:18:01 ----D---- C:\Documents and Settings\Peter\Application Data\GemistDownloader 2013-07-21 23:04:09 ----D---- C:\Program Files\GemistDownloader 2013-07-21 16:54:46 ----D---- C:\Documents and Settings\Peter\Application Data\Spotify 2013-07-19 01:50:21 ----D---- C:\Program Files\WOT 2013-07-19 01:06:10 ----D---- C:\Documents and Settings\Peter\Application Data\LavasoftStatistics 2013-07-19 01:04:34 ----A---- C:\WINDOWS\system32\sbbd.exe 2013-07-19 01:04:34 ----A---- C:\WINDOWS\system32\drivers\gfibto.sys 2013-07-19 01:04:31 ----D---- C:\Documents and Settings\Peter\Application Data\Ad-Aware Antivirus 2013-07-18 23:33:57 ----D---- C:\Documents and Settings\All Users\Application Data\Licenses 2013-07-18 23:33:54 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2013-07-18 23:33:46 ----D---- C:\Program Files\SpywareBlaster 2013-07-14 15:00:32 ----D---- C:\WINDOWS\system32\MRT 2013-07-13 23:56:05 ----D---- C:\Program Files\Microsoft Silverlight 2013-07-12 17:05:35 ----D---- C:\Documents and Settings\Peter\Application Data\Malwarebytes 2013-07-12 17:04:51 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2013-07-12 17:04:48 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2013-07-12 17:04:47 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2013-07-12 02:50:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2834904_WM11$ 2013-07-12 02:49:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2834886$ 2013-07-12 02:48:51 ----HDC---- C:\WINDOWS\$NtUninstallKB2850851$ 2013-07-12 02:47:58 ----HDC---- C:\WINDOWS\$NtUninstallKB2845187$ 2013-07-11 14:35:41 ----D---- C:\WINDOWS\system32\Extensions 2013-07-11 14:35:40 ----D---- C:\WINDOWS\system32\searchplugins 2013-07-11 14:34:00 ----D---- C:\Program Files\Mozilla Firefox 2013-07-11 14:30:38 ----D---- C:\Documents and Settings\Peter\Application Data\Babylon 2013-07-11 14:30:38 ----D---- C:\Documents and Settings\All Users\Application Data\Babylon 2013-07-11 14:30:21 ----D---- C:\Program Files\MediaHuman 2013-07-11 14:30:21 ----D---- C:\Documents and Settings\Peter\Application Data\OpenCandy 2013-07-02 17:04:38 ----D---- C:\Program Files\NL SPELLING VOOR OFFICE 2K 2013-07-02 17:04:35 ----D---- C:\Program Files\VERTAAL NL ENG SPA FRA 2013-07-02 16:20:24 ----D---- C:\VDWB 2013-07-02 16:20:24 ----A---- C:\WINDOWS\xref.ini 2013-07-02 16:20:24 ----A---- C:\WINDOWS\wtapi.ini 2013-07-02 16:20:24 ----A---- C:\WINDOWS\vdsywin.ini 2013-07-02 16:20:24 ----A---- C:\WINDOWS\vdhnwin.ini 2013-07-02 16:20:24 ----A---- C:\WINDOWS\UNINSTAL.EXE 2013-07-02 16:10:27 ----D---- C:\Program Files\Euroglot 2013-06-28 17:41:35 ----D---- C:\Documents and Settings\All Users\Application Data\Panasonic 2013-06-28 11:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$ 2013-06-28 11:35:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$ 2013-06-28 02:48:40 ----D---- C:\Program Files\Common Files\Panasonic 2013-06-28 02:48:24 ----D---- C:\Program Files\Panasonic 2013-06-28 02:48:11 ----D---- C:\Program Files\Microsoft Synchronization Services 2013-06-28 02:48:10 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition 2013-06-28 01:24:27 ----N---- C:\WINDOWS\system32\spmsg.dll 2013-06-28 01:24:26 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$ 2013-06-28 01:24:10 ----D---- C:\Program Files\Windows Media Connect 2 2013-06-28 01:23:54 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$ 2013-06-26 23:01:21 ----D---- C:\Documents and Settings\Peter\Application Data\Google 2013-06-26 22:59:06 ----D---- C:\Program Files\Google 2013-06-23 12:23:28 ----A---- C:\WINDOWS\ModemLog_PC Connectivity Bluetooth Modem.txt 2013-06-22 01:55:55 ----D---- C:\Program Files\Common Files\PCSuite 2013-06-22 01:53:42 ----D---- C:\Documents and Settings\All Users\Application Data\Installations 2013-06-22 01:27:39 ----D---- C:\Documents and Settings\Peter\Application Data\Nokia Suite 2013-06-22 01:27:35 ----D---- C:\Documents and Settings\Peter\Application Data\Nokia 2013-06-21 23:55:34 ----HDC---- C:\WINDOWS\$NtUninstallWudf01009$ 2013-06-21 23:05:26 ----A---- C:\itouch_config_crash_info.txt 2013-06-21 22:01:03 ----D---- C:\Documents and Settings\Peter\Application Data\Apple Computer 2013-06-21 22:00:48 ----A---- C:\WINDOWS\iTouch.ini 2013-06-21 20:12:36 ----D---- C:\Program Files\Evernote 2013-06-21 19:28:09 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2013-06-21 19:27:25 ----D---- C:\Program Files\Common Files\Apple 2013-06-21 19:27:09 ----D---- C:\Program Files\Apple Software Update 2013-06-21 19:27:08 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2013-06-21 19:23:59 ----D---- C:\Program Files\QuickTime 2013-06-21 19:00:44 ----D---- C:\Program Files\Logitech 2013-06-21 18:57:56 ----A---- C:\WINDOWS\system32\drivers\LHidUsb.sys 2013-06-21 18:57:56 ----A---- C:\WINDOWS\system32\drivers\LCcfltr.sys 2013-06-21 18:57:55 ----A---- C:\WINDOWS\system32\drivers\itchfltr.sys 2013-06-21 18:57:54 ----A---- C:\itouch_crash_info.txt 2013-06-21 18:57:53 ----D---- C:\Program Files\iTouch 2013-06-21 18:57:53 ----A---- C:\WINDOWS\system32\MSVCI70.DLL 2013-06-21 12:33:57 ----N---- C:\WINDOWS\system32\MpSigStub.exe 2013-06-21 12:28:52 ----D---- C:\Program Files\Microsoft Security Client 2013-06-21 11:35:21 ----D---- C:\Documents and Settings\Peter\Application Data\AVG2013 2013-06-21 11:33:08 ----D---- C:\WINDOWS\Minidump 2013-06-20 17:20:56 ----D---- C:\Documents and Settings\All Users\Application Data\AVG2013 2013-06-20 17:15:16 ----D---- C:\Documents and Settings\All Users\Application Data\MFAData 2013-06-20 15:46:10 ----D---- C:\Documents and Settings\All Users\Application Data\ODIR 2013-06-20 15:26:56 ----A---- C:\WINDOWS\system32\VB6STKIT.DLL 2013-06-20 15:26:55 ----D---- C:\Program Files\ODIR 2013-06-20 15:25:16 ----D---- C:\Documents and Settings\Peter\Application Data\MP3SkypeRecorder 2013-06-20 15:25:01 ----D---- C:\Program Files\MP3 Skype Recorder 2013-06-20 14:41:34 ----D---- C:\Documents and Settings\All Users\Application Data\UDL 2013-06-20 14:40:51 ----D---- C:\Program Files\Epson Software 2013-06-20 14:39:39 ----D---- C:\Program Files\ABBYY FineReader 6.0 Sprint 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\PICSDK2.dll 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\PICSDK.ini 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\PICSDK.dll 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\PICEntry.dll 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EpPicPrt.dll 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPrinterDB.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_PT.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_IT.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_GE.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_FR.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_ES.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_EN.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_DU.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_CF.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPresetData_BP.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern6.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern5.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern4.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern3.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern2.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern131.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern121.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPICPattern1.dat 2013-06-20 14:31:48 ----A---- C:\WINDOWS\system32\EPPicMgr.dll 2013-06-20 14:30:55 ----A---- C:\WINDOWS\CDEBX300DEFGIPS.ini 2013-06-20 14:17:41 ----A---- C:\WINDOWS\system32\escwiad.dll 2013-06-20 14:01:40 ----D---- C:\Documents and Settings\Peter\Application Data\FastStone 2013-06-19 14:56:58 ----D---- C:\Program Files\Common Files\Adobe 2013-06-19 14:56:58 ----D---- C:\Program Files\Adobe 2013-06-19 14:56:41 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe 2013-06-19 14:33:16 ----A---- C:\WINDOWS\DEBUGSM.INI 2013-06-19 10:40:51 ----A---- C:\WINDOWS\system32\drivers\HWiNFO32.SYS 2013-06-19 10:40:42 ----D---- C:\Program Files\HWiNFO32 2013-06-19 10:21:01 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$ 2013-06-18 23:02:48 ----D---- C:\Documents and Settings\Peter\Application Data\Windows Search 2013-06-18 22:51:58 ----D---- C:\Documents and Settings\Peter\Application Data\EPSON 2013-06-18 19:46:12 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$ 2013-06-18 19:37:35 ----HDC---- C:\WINDOWS\$NtUninstallKB953155$ 2013-06-18 19:36:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2290570$ 2013-06-18 19:36:19 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$ 2013-06-18 19:18:34 ----D---- C:\Program Files\Windows Desktop Search 2013-06-18 19:18:33 ----D---- C:\WINDOWS\system32\GroupPolicy 2013-06-18 19:18:00 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$ 2013-06-18 19:14:10 ----D---- C:\Program Files\Kernel Outlook PST Viewer 2013-06-18 18:31:21 ----A---- C:\WINDOWS\system32\E_DCINST.DLL 2013-06-18 18:31:17 ----A---- C:\WINDOWS\system32\E_FLBEJE.DLL 2013-06-18 18:31:17 ----A---- C:\WINDOWS\system32\E_FD4BEJE.DLL 2013-06-18 18:23:23 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2013-06-18 17:52:21 ----D---- C:\Documents and Settings\All Users\Application Data\EPSON 2013-06-18 17:39:36 ----A---- C:\WINDOWS\system32\eswiaml.dll 2013-06-18 17:39:36 ----A---- C:\WINDOWS\system32\eswia66.dll 2013-06-18 17:39:36 ----A---- C:\WINDOWS\system32\esint66.dll 2013-06-18 17:39:36 ----A---- C:\WINDOWS\system32\esdevapp.exe 2013-06-18 17:39:36 ----A---- C:\WINDOWS\system32\escdev.dll 2013-06-18 17:39:33 ----D---- C:\Program Files\epson 2013-06-18 17:34:06 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2013-06-18 17:08:21 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2013-06-18 03:25:32 ----D---- C:\WINDOWS\system32\XPSViewer 2013-06-18 03:25:26 ----D---- C:\Program Files\MSBuild 2013-06-18 03:25:10 ----D---- C:\Program Files\Reference Assemblies 2013-06-18 03:24:35 ----N---- C:\WINDOWS\system32\prntvpt.dll 2013-06-18 03:24:34 ----N---- C:\WINDOWS\system32\xpsshhdr.dll 2013-06-18 03:24:33 ----N---- C:\WINDOWS\system32\xpssvcs.dll 2013-06-18 03:24:33 ----D---- C:\f1a583aff4bdca1f8825 2013-06-18 01:32:41 ----D---- C:\Documents and Settings\Peter\Application Data\ATI 2013-06-18 01:29:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2124261$ 2013-06-18 01:29:16 ----HDC---- C:\WINDOWS\$NtUninstallKB976323$ 2013-06-18 01:29:10 ----D---- C:\WINDOWS\ServicePackFiles 2013-06-18 01:29:08 ----HDC---- C:\WINDOWS\$NtUninstallKB2491683$ 2013-06-18 01:28:59 ----HDC---- C:\WINDOWS\$NtUninstallKB970483$ 2013-06-18 01:13:35 ----D---- C:\Documents and Settings\Peter\Application Data\aignes 2013-06-18 00:55:04 ----D---- C:\Program Files\FastStone Image Viewer 2013-06-18 00:28:57 ----D---- C:\Program Files\AM-DeadLink 2013-06-18 00:14:18 ----D---- C:\Documents and Settings\Peter\Application Data\PC Suite 2013-06-18 00:14:15 ----D---- C:\Documents and Settings\All Users\Application Data\PC Suite 2013-06-18 00:13:08 ----D---- C:\Program Files\Common Files\Nokia 2013-06-18 00:13:08 ----D---- C:\Documents and Settings\All Users\Application Data\Nokia 2013-06-18 00:12:31 ----A---- C:\WINDOWS\system32\drivers\pccsmcfd.sys 2013-06-18 00:12:18 ----D---- C:\Program Files\PC Connectivity Solution 2013-06-18 00:11:59 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys 2013-06-18 00:11:58 ----A---- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys 2013-06-18 00:11:57 ----A---- C:\WINDOWS\system32\drivers\ccdcmbo.sys 2013-06-18 00:11:55 ----A---- C:\WINDOWS\system32\wdfcoinstaller01009.dll 2013-06-18 00:11:55 ----A---- C:\WINDOWS\system32\nmwcdcocls.dll 2013-06-18 00:11:55 ----A---- C:\WINDOWS\system32\drivers\ccdcmb.sys 2013-06-18 00:11:55 ----A---- C:\WINDOWS\system32\ccdcmbwu.dll 2013-06-18 00:11:39 ----A---- C:\WINDOWS\system32\nmwcdcls.dll 2013-06-18 00:10:10 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$ 2013-06-18 00:09:31 ----D---- C:\WINDOWS\system32\drivers\UMDF 2013-06-18 00:09:22 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$ 2013-06-18 00:08:05 ----D---- C:\Program Files\Nokia 2013-06-18 00:08:05 ----D---- C:\Documents and Settings\All Users\Application Data\NokiaInstallerCache ======List of files/folders modified in the last 3 months====== 2013-09-17 11:49:52 ----RD---- C:\Program Files 2013-09-17 11:49:52 ----D---- C:\WINDOWS\Prefetch 2013-09-17 11:44:54 ----D---- C:\WINDOWS\Temp 2013-09-17 11:27:12 ----D---- C:\WINDOWS\system32\inetsrv 2013-09-17 11:11:15 ----D---- C:\WINDOWS\system32 2013-09-16 13:39:00 ----A---- C:\WINDOWS\SchedLgU.Txt 2013-09-16 11:24:11 ----HD---- C:\WINDOWS\inf 2013-09-16 09:27:36 ----SD---- C:\WINDOWS\Tasks 2013-09-16 09:20:59 ----D---- C:\WINDOWS 2013-09-16 09:18:06 ----D---- C:\WINDOWS\system32\CatRoot2 2013-09-16 09:18:01 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 2013-09-16 01:55:17 ----D---- C:\WINDOWS\Debug 2013-09-15 16:53:18 ----SHD---- C:\WINDOWS\Installer 2013-09-15 16:53:18 ----SHD---- C:\Config.Msi 2013-09-15 16:53:17 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help 2013-09-14 12:18:14 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe 2013-09-14 02:10:08 ----RSHDC---- C:\WINDOWS\system32\dllcache 2013-09-14 02:10:05 ----D---- C:\Program Files\Internet Explorer 2013-09-14 01:54:41 ----A---- C:\WINDOWS\system32\MRT.exe 2013-09-10 01:40:52 ----D---- C:\WINDOWS\system32\FxsTmp 2013-09-09 13:16:22 ----D---- C:\WINDOWS\system32\NtmsData 2013-09-04 02:07:15 ----D---- C:\WINDOWS\CCleaner Back Up 2013-09-01 16:07:38 ----RSD---- C:\WINDOWS\assembly 2013-09-01 16:07:38 ----D---- C:\WINDOWS\Microsoft.NET 2013-09-01 14:15:00 ----D---- C:\WINDOWS\ie8updates 2013-09-01 13:52:31 ----D---- C:\WINDOWS\WinSxS 2013-09-01 13:51:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2013-08-28 11:48:41 ----D---- C:\WINDOWS\system32\ReinstallBackups 2013-08-28 11:48:41 ----D---- C:\WINDOWS\system32\drivers 2013-08-09 03:56:45 ----A---- C:\WINDOWS\system32\themeui.dll 2013-08-08 08:05:59 ----N---- C:\WINDOWS\system32\occache.dll 2013-08-08 08:05:59 ----N---- C:\WINDOWS\system32\mstime.dll 2013-08-08 08:05:59 ----N---- C:\WINDOWS\system32\licmgr10.dll 2013-08-08 08:05:59 ----N---- C:\WINDOWS\system32\jsproxy.dll 2013-08-08 08:05:59 ----N---- C:\WINDOWS\system32\iedkcs32.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\wininet.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\urlmon.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\url.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\mshtmled.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\mshtml.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\msfeeds.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\iertutil.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\iepeers.dll 2013-08-08 08:05:59 ----A---- C:\WINDOWS\system32\ieframe.dll 2013-08-08 08:05:58 ----A---- C:\WINDOWS\system32\corpol.dll 2013-08-08 05:32:54 ----A---- C:\WINDOWS\system32\ie4uinit.exe 2013-08-07 19:41:35 ----D---- C:\MDT 2013-08-05 15:30:32 ----A---- C:\WINDOWS\system32\ole32.dll 2013-08-03 14:18:38 ----N---- C:\WINDOWS\system32\wmvdecod.dll 2013-07-23 12:25:04 ----SD---- C:\Documents and Settings\Peter\Application Data\Microsoft 2013-07-23 12:18:53 ----D---- C:\WINDOWS\SHELLNEW 2013-07-18 23:28:40 ----D---- C:\Program Files\Common Files 2013-07-17 02:46:31 ----A---- C:\WINDOWS\system32\tzchange.exe 2013-07-16 03:49:17 ----D---- C:\Documents and Settings\Peter\Application Data\Skype 2013-07-13 23:56:22 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2013-07-10 12:37:53 ----A---- C:\WINDOWS\system32\usp10.dll 2013-07-04 05:03:25 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2013-07-04 04:08:30 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe 2013-07-04 02:06:57 ----D---- C:\WINDOWS\security 2013-07-03 12:44:17 ----SH---- C:\boot.ini 2013-07-03 12:44:17 ----A---- C:\WINDOWS\win.ini 2013-07-03 12:44:17 ----A---- C:\WINDOWS\system.ini 2013-07-02 17:52:21 ----D---- C:\Program Files\Unknown Device Identifier 2013-07-02 17:23:13 ----D---- C:\WINDOWS\system 2013-07-02 17:16:17 ----RSD---- C:\WINDOWS\Fonts 2013-07-01 00:35:28 ----D---- C:\WINDOWS\pss 2013-06-28 03:02:16 ----D---- C:\WINDOWS\system32\CatRoot 2013-06-28 02:53:55 ----D---- C:\Program Files\Windows Media Player 2013-06-28 02:48:14 ----HD---- C:\Program Files\InstallShield Installation Information 2013-06-28 01:24:03 ----D---- C:\WINDOWS\Help 2013-06-23 17:29:27 ----D---- C:\WINDOWS\repair 2013-06-23 17:29:21 ----D---- C:\WINDOWS\Registration 2013-06-23 17:25:32 ----D---- C:\Documents and Settings\Peter\Application Data\Roxio 2013-06-23 16:37:02 ----D---- C:\Program Files\CCleaner 2013-06-22 01:56:25 ----D---- C:\Program Files\DIFX 2013-06-22 01:56:21 ----DC---- C:\WINDOWS\system32\DRVSTORE 2013-06-21 19:24:01 ----SD---- C:\WINDOWS\Downloaded Program Files 2013-06-21 18:57:54 ----D---- C:\Program Files\Common Files\Logitech 2013-06-21 13:16:35 ----D---- C:\WINDOWS\Network Diagnostic 2013-06-21 11:32:55 ----D---- C:\Documents and Settings\All Users\Application Data\AVAST Software 2013-06-20 13:39:03 ----D---- C:\WINDOWS\system32\en-US 2013-06-19 15:26:08 ----D---- C:\WINDOWS\system32\wbem 2013-06-19 15:00:08 ----D---- C:\Documents and Settings\Peter\Application Data\Adobe 2013-06-19 09:27:24 ----D---- C:\WINDOWS\system32\Logfiles 2013-06-18 18:52:32 ----D---- C:\Documents and Settings\Peter\Application Data\PDF Architect 2013-06-18 17:39:33 ----D---- C:\WINDOWS\twain_32 2013-06-18 03:24:52 ----D---- C:\WINDOWS\system32\spool 2013-06-18 01:33:09 ----D---- C:\WINDOWS\system32\config 2013-06-18 01:29:14 ----HD---- C:\WINDOWS\$hf_mig$ ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 Avglogx;AVG Logging Driver; C:\WINDOWS\system32\DRIVERS\avglogx.sys [2013-02-08 245048] R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\WINDOWS\system32\DRIVERS\avgrkx86.sys [2013-02-08 39224] R0 DRVMCDB;DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [2006-07-21 99176] R0 gfibto;gfibto; C:\WINDOWS\system32\drivers\gfibto.sys [2013-07-19 13560] R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2013-06-18 211560] R0 ohci1394;OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2006-07-24 36528] R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2005-08-12 16128] R1 BANTExt;Belarc SMBios Access; C:\WINDOWS\System32\Drivers\BANTExt.sys [2011-08-09 3840] R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-11 12920] R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-11 28184] R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [] R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352] R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592] R1 Tcpip6;Microsoft IPv6 Protocol Driver; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2010-02-11 226880] R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2013-06-12 21361] R2 BTSERIAL;Bluetooth Serial Driver; \??\C:\WINDOWS\system32\drivers\btserial.sys [] R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-18 35096] R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-18 32472] R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-18 9400] R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-18 104472] R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-18 26008] R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-18 14520] R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-18 97848] R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-18 94648] R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-11 51768] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-04 12544] R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2006-11-15 32256] R2 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2006-11-14 43520] R2 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376] R2 s24trans;WLAN-transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-08-27 12288] R2 XAudio;XAudio; C:\WINDOWS\system32\DRIVERS\xaudio.sys [2006-08-04 8192] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-05-23 1578496] R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-11-21 45568] R3 btaudio;Bluetooth-audioapparaat; C:\WINDOWS\system32\drivers\btaudio.sys [2006-05-24 328237] R3 BTDriver;Bluetooth virtuele-communicatiestuurprogramma; C:\WINDOWS\system32\DRIVERS\btport.sys [2006-05-24 30427] R3 BTKRNL;Bluetooth bus-enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-05-24 851434] R3 BTWDNDIS;Bluetooth LAN Access Server; C:\WINDOWS\system32\DRIVERS\btwdndis.sys [2006-05-24 148900] R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-05-24 66488] R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752] R3 CTUSFSYN;Creative SoundFont Synthesizer; C:\WINDOWS\system32\drivers\ctusfsyn.sys [2005-05-25 158464] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384] R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2005-12-01 936960] R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2005-12-01 192512] R3 itchfltr;iTouch Keyboard Filter; C:\WINDOWS\system32\DRIVERS\itchfltr.sys [2004-03-10 12953] R3 LCcfltr;Logitech USB Filter Driver; C:\WINDOWS\System32\Drivers\LCcFltr.Sys [2004-03-03 14095] R3 LHidUsb;Logitech USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsb.Sys [2004-03-03 37887] R3 monfilt;monfilt; C:\WINDOWS\system32\drivers\monfilt.sys [2006-01-04 1389056] R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160] R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496] R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888] R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-05-10 1222840] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-08 191872] R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2008-04-14 12288] R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128] R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856] R3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104] R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys [2005-12-01 669696] R3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-07-13 91904] S0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\WINDOWS\system32\DRIVERS\avgmfx86.sys [2013-02-08 96568] S0 cerc6;cerc6; C:\WINDOWS\system32\drivers\cerc6.sys [] S1 Avgldx86;AVG AVI Loader Driver; C:\WINDOWS\system32\DRIVERS\avgldx86.sys [2013-02-08 170808] S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800] S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2009-06-17 35472] S3 LHidKe;Logitech SetPoint HID Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidKE.Sys [2005-12-20 27008] S3 LHidUsbK;Logitech SetPoint USB Receiver device driver; C:\WINDOWS\System32\Drivers\LHidUsbK.Sys [2005-12-20 36736] S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2009-06-17 37392] S3 LMouKE;Logitech SetPoint Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouKE.Sys [2005-12-20 69376] S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2009-06-17 28560] S3 NETw4x32;Stuurprogramma voor Intel® Wireless WiFi Link Adapter onder Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-09-26 2236032] S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824] S3 nmwcd;Nokia USB Phone Parent Driver; C:\WINDOWS\system32\drivers\ccdcmb.sys [2013-01-23 18560] S3 nmwcdc;Nokia USB Communication Driver; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2013-01-23 23168] S3 NWADI;NWADI Bus Enumerator; C:\WINDOWS\system32\DRIVERS\NWADIenum.sys [2006-03-27 74752] S3 PCAMPR5;PCAMPR5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCAMPR5.SYS [] S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS [] S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2012-10-17 19072] S3 sffdisk;SFF Storage Class Driver; C:\WINDOWS\system32\DRIVERS\sffdisk.sys [2008-04-14 11904] S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\WINDOWS\system32\DRIVERS\sffp_sd.sys [2008-04-14 11008] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2013-01-23 8192] S3 usbser;USB Modem Driver; C:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-14 26112] S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2013-01-23 8192] S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2009-07-14 444136] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-07-13 132224] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 6to4;IPv6 Helper Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-05-23 409600] R2 BitGuard;BitGuard; C:\Documents and Settings\All Users\Application Data\BitGuard\2.6.1673.238\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [2013-09-13 3029472] R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-05-24 266295] R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-10-08 794624] R2 IISADMIN;IIS Admin; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] R2 Iprip;RIP Listener; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336] R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-06-20 22208] R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-10-08 483328] R2 S24EventMonitor;Intel® PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-10-08 1183744] R2 SimpTcp;Simple TCP/IP Services; C:\WINDOWS\system32\tcpsvcs.exe [2008-04-14 19456] R2 SMTPSVC;Simple Mail Transfer Protocol (SMTP); C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] R2 SNMP;SNMP Service; C:\WINDOWS\System32\snmp.exe [2008-04-14 33280] R2 W3SVC;World Wide Web Publishing; C:\WINDOWS\system32\inetsrv\inetinfo.exe [2008-04-14 15360] R2 WLANKEEPER;Intel® PROSet/Wireless SSO Service; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [2007-10-08 356352] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] R3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 267776] S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-26 116648] S2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2006-11-05 159744] S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-06-03 162408] S2 XAudioService;XAudioService; C:\WINDOWS\system32\DRIVERS\xaudio.exe [2006-08-04 386560] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-14 257416] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-26 116648] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696] S3 p2pgasvc;Peer Networking Group Authentication; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 p2pimsvc;Peer Networking Identity Manager; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 p2psvc;Peer Networking; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 PNRPSvc;Peer Name Resolution Protocol; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336] S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2006-11-05 880640] S3 SNMPTRAP;SNMP Trap Service; C:\WINDOWS\System32\snmptrap.exe [2008-04-14 8704] S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728] S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-04-18 754856] S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S4 Skype C2C Service;Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-05-14 3289208] -----------------EOF-----------------
- 17 september 2013
- 14 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Jion, OK alles is nu gefixed voor deze computer denk ik. Ik heb ook nog een Dell Inspiron laptop die ik een paar maanden geleden met veel moeite (eerste keer) heb geformatteerd. Kan je preventief bekijken of alles up-to-date is en goed geïnstalleerd is en of er niets geïnfecteerd is of kan ik beter wachten tot er eventuele problemen opduiken? Welk logje kan ik zenden? Mvg, Peter
- 17 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Dag Jion, De nieuwe Java staat erop en alls werkt nu weer naar behoren. Zit ik goed met Firewall Comodo Internet Security en Avast antivirus? Alvast bedankt voor uw toegewijde hulp. Mvg, Peter
- 17 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

ADWCLEANER Log MVG # AdwCleaner v3.004 - Report created 17/09/2013 at 00:13:45 # Updated 15/09/2013 by Xplode # Operating System : Microsoft Windows XP Service Pack 3 (32 bits) # Username : JULIE - GX620-PC # Running from : C:\Documents and Settings\JULIE\Desktop\VIRUS\adw.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\Documents and Settings\All Users\Application Data\apn Folder Deleted : C:\Documents and Settings\All Users\Application Data\Babylon Folder Deleted : C:\Documents and Settings\All Users\Application Data\Premium Folder Deleted : C:\Documents and Settings\All Users\Application Data\StarApp Folder Deleted : C:\Documents and Settings\All Users\Application Data\Bcool Folder Deleted : C:\Documents and Settings\All Users\Application Data\safe save Folder Deleted : C:\Documents and Settings\All Users\Application Data\Search-NewuTaba Folder Deleted : C:\Documents and Settings\All Users\Application Data\Searych-NiewTayB Folder Deleted : C:\Documents and Settings\All Users\Application Data\ssafe yssaveu Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\DefaultTab Folder Deleted : C:\Program Files\Nosibay Folder Deleted : C:\Program Files\TornTV.com Folder Deleted : C:\Program Files\WebSearch Folder Deleted : C:\WINDOWS\system32\ARFC Folder Deleted : C:\WINDOWS\system32\jmdp Folder Deleted : C:\WINDOWS\system32\WNLT Folder Deleted : C:\Documents and Settings\GX620\Local Settings\Application Data\Babylon Folder Deleted : C:\Documents and Settings\GX620\Local Settings\Application Data\PackageAware Folder Deleted : C:\Documents and Settings\GX620\Application Data\Nosibay Folder Deleted : C:\Documents and Settings\GX620\Application Data\Systweak Folder Deleted : C:\Documents and Settings\GX620\Application Data\Toolbar4 Folder Deleted : C:\Documents and Settings\JULIE\Local Settings\Application Data\Conduit Folder Deleted : C:\Documents and Settings\JULIE\Local Settings\Application Data\lollipop Folder Deleted : C:\Documents and Settings\JULIE\Application Data\eIntaller Folder Deleted : C:\Documents and Settings\JULIE\Application Data\Nosibay Folder Deleted : C:\Documents and Settings\JULIE\Application Data\SwvUpdater Folder Deleted : C:\Documents and Settings\JULIE\Application Data\Systweak Folder Deleted : C:\Program Files\Software File Deleted : C:\END File Deleted : C:\WINDOWS\system32\ImhxxpComm.dll ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08C06D61-F1F3-4799-86F8-BE1A89362C85} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6E4C89CF-3061-4EE4-B22A-B7A8AAEA5CB3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{23AF19F7-1D5B-442C-B14C-3D1081953C94} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6492E171-2427-4932-B414-33574A089F5E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35D-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BAB844C8-B2CC-02AF-8CD1-8CEA95D1328D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{23AF19F7-1D5B-442C-B14C-3D1081953C94} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6492E171-2427-4932-B414-33574A089F5E} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BAB844C8-B2CC-02AF-8CD1-8CEA95D1328D} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}] Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command Key Deleted : HKCU\Software\BI Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\ConduitSearchScopes Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\ImInstaller Key Deleted : HKCU\Software\lollipop Key Deleted : HKCU\Software\Nosibay Key Deleted : HKCU\Software\PriceGong Key Deleted : HKCU\Software\SmartBar Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\Web Assistant Key Deleted : HKCU\Software\WNLT Key Deleted : HKLM\Software\Babylon Key Deleted : HKLM\Software\Conduit Key Deleted : HKLM\Software\Desksvc Key Deleted : HKLM\Software\Iminent Key Deleted : HKLM\Software\InstallIQ Key Deleted : HKLM\Software\SProtector Key Deleted : HKLM\Software\systweak Key Deleted : HKLM\Software\Tarma Installer Key Deleted : HKLM\Software\Uniblue\DriverScanner Key Deleted : HKLM\Software\Web Assistant Key Deleted : HKLM\Software\WNLT Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{20E7BC40-33F6-4A81-9D52-B58349326206} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4183178B-4D4E-48A7-9257-454BA90A760E} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WNLT ***** [ Browsers ] ***** -\\ Internet Explorer v8.0.6001.18702 -\\ Mozilla Firefox v [ File : C:\Documents and Settings\JULIE\Application Data\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]phd10\prefs.js ] ************************* AdwCleaner[R0].txt - [12638 octets] - [16/09/2013 23:25:22] AdwCleaner[R1].txt - [12692 octets] - [17/09/2013 00:11:58] AdwCleaner[s0].txt - [12395 octets] - [17/09/2013 00:13:45] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [12456 octets] ##########
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Hierbij het log: Mvg, Peter 21:51:43.0609 2628 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 21:51:43.0921 2628 ============================================================ 21:51:43.0921 2628 Current date / time: 2013/09/16 21:51:43.0921 21:51:43.0921 2628 SystemInfo: 21:51:43.0921 2628 21:51:43.0921 2628 OS Version: 5.1.2600 ServicePack: 3.0 21:51:43.0921 2628 Product type: Workstation 21:51:43.0921 2628 ComputerName: GX620-PC 21:51:43.0921 2628 UserName: JULIE 21:51:43.0921 2628 Windows directory: C:\WINDOWS 21:51:43.0921 2628 System windows directory: C:\WINDOWS 21:51:43.0921 2628 Processor architecture: Intel x86 21:51:43.0921 2628 Number of processors: 2 21:51:43.0921 2628 Page size: 0x1000 21:51:43.0921 2628 Boot type: Normal boot 21:51:43.0921 2628 ============================================================ 21:51:45.0109 2628 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 21:51:45.0109 2628 ============================================================ 21:51:45.0109 2628 \Device\Harddisk0\DR0: 21:51:45.0109 2628 MBR partitions: 21:51:45.0109 2628 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x94FE97E 21:51:45.0109 2628 ============================================================ 21:51:45.0125 2628 C: <-> \Device\Harddisk0\DR0\Partition1 21:51:45.0125 2628 ============================================================ 21:51:45.0125 2628 Initialize success 21:51:45.0125 2628 ============================================================ 21:51:51.0234 4024 ============================================================ 21:51:51.0234 4024 Scan started 21:51:51.0234 4024 Mode: Manual; SigCheck; TDLFS; 21:51:51.0234 4024 ============================================================ 21:51:51.0765 4024 ================ Scan system memory ======================== 21:51:51.0781 4024 System memory - ok 21:51:51.0781 4024 ================ Scan services ============================= 21:51:51.0843 4024 Abiosdsk - ok 21:51:51.0859 4024 abp480n5 - ok 21:51:51.0921 4024 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys 21:51:52.0296 4024 ACPI - ok 21:51:52.0312 4024 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys 21:51:52.0468 4024 ACPIEC - ok 21:51:52.0515 4024 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe 21:51:52.0515 4024 Suspicious file (NoAccess): C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe. md5: B2B64AF436FACCFA854DD397027C5360 21:51:52.0515 4024 AdobeFlashPlayerUpdateSvc ( LockedFile.Multi.Generic ) - warning 21:51:52.0515 4024 AdobeFlashPlayerUpdateSvc - detected LockedFile.Multi.Generic (1) 21:51:52.0531 4024 adpu160m - ok 21:51:52.0562 4024 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys 21:51:52.0718 4024 aec - ok 21:51:52.0750 4024 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys 21:51:52.0765 4024 AFD - ok 21:51:52.0781 4024 Aha154x - ok 21:51:52.0781 4024 aic78u2 - ok 21:51:52.0796 4024 aic78xx - ok 21:51:52.0828 4024 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll 21:51:52.0984 4024 Alerter - ok 21:51:53.0000 4024 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe 21:51:53.0062 4024 ALG - ok 21:51:53.0078 4024 AliIde - ok 21:51:53.0078 4024 amsint - ok 21:51:53.0109 4024 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll 21:51:53.0203 4024 AppMgmt - ok 21:51:53.0203 4024 asc - ok 21:51:53.0203 4024 asc3350p - ok 21:51:53.0218 4024 asc3550 - ok 21:51:53.0296 4024 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 21:51:53.0328 4024 aspnet_state - ok 21:51:53.0359 4024 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 21:51:53.0500 4024 AsyncMac - ok 21:51:53.0531 4024 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys 21:51:53.0671 4024 atapi - ok 21:51:53.0687 4024 Atdisk - ok 21:51:53.0703 4024 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys 21:51:53.0843 4024 Atmarpc - ok 21:51:53.0890 4024 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll 21:51:54.0046 4024 AudioSrv - ok 21:51:54.0078 4024 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys 21:51:54.0218 4024 audstub - ok 21:51:54.0468 4024 [ 4DB93F4DB7077801D2D82013506AC1D0 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe 21:51:54.0687 4024 AVGIDSAgent - ok 21:51:54.0703 4024 [ 4D7E34E36E586EA26F171A258341BD80 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys 21:51:54.0765 4024 AVGIDSDriver - ok 21:51:54.0781 4024 [ 7C8E88549BCDAAC965B1B724C175F7A9 ] AVGIDSHX C:\WINDOWS\system32\DRIVERS\avgidshx.sys 21:51:54.0812 4024 AVGIDSHX - ok 21:51:54.0812 4024 [ 2717EBC35166B8793DBFFB4390B8F2E7 ] AVGIDSShim C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys 21:51:54.0843 4024 AVGIDSShim - ok 21:51:54.0859 4024 [ 2018C4E9A40B122408763A5635CF14D9 ] Avgldx86 C:\WINDOWS\system32\DRIVERS\avgldx86.sys 21:51:54.0890 4024 Avgldx86 - ok 21:51:54.0906 4024 [ E2B9CF2CF787C6978E7CC898E9684E48 ] Avglogx C:\WINDOWS\system32\DRIVERS\avglogx.sys 21:51:54.0937 4024 Avglogx - ok 21:51:54.0937 4024 [ 3F59750A3AA55C46663801E7C2FD1E2B ] Avgmfx86 C:\WINDOWS\system32\DRIVERS\avgmfx86.sys 21:51:54.0968 4024 Avgmfx86 - ok 21:51:54.0968 4024 [ CBCE8ED318DB8EA431F9D25AC9B7FF41 ] Avgrkx86 C:\WINDOWS\system32\DRIVERS\avgrkx86.sys 21:51:55.0000 4024 Avgrkx86 - ok 21:51:55.0015 4024 [ 14370FB29526F593C04FA48B5D69F7F0 ] Avgtdix C:\WINDOWS\system32\DRIVERS\avgtdix.sys 21:51:55.0046 4024 Avgtdix - ok 21:51:55.0078 4024 [ 48939D9F350AEF9370F03A1E49A49BE2 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe 21:51:55.0109 4024 avgwd - ok 21:51:55.0125 4024 [ 241474D01380E9ED41D4C07F4F5FD401 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys 21:51:55.0156 4024 b57w2k - ok 21:51:55.0171 4024 [ 5D7BE7B19E827125E016325334E58FF1 ] BANTExt C:\WINDOWS\System32\Drivers\BANTExt.sys 21:51:55.0203 4024 BANTExt ( UnsignedFile.Multi.Generic ) - warning 21:51:55.0203 4024 BANTExt - detected UnsignedFile.Multi.Generic (1) 21:51:55.0203 4024 bdfdll - ok 21:51:55.0203 4024 BDFsDrv - ok 21:51:55.0218 4024 BDRsDrv - ok 21:51:55.0250 4024 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys 21:51:55.0390 4024 Beep - ok 21:51:55.0421 4024 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll 21:51:55.0468 4024 Browser - ok 21:51:55.0500 4024 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys 21:51:55.0656 4024 cbidf2k - ok 21:51:55.0671 4024 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 21:51:55.0843 4024 CCDECODE - ok 21:51:55.0843 4024 cd20xrnt - ok 21:51:55.0859 4024 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys 21:51:56.0015 4024 Cdaudio - ok 21:51:56.0031 4024 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys 21:51:56.0203 4024 Cdfs - ok 21:51:56.0234 4024 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys 21:51:56.0390 4024 Cdrom - ok 21:51:56.0390 4024 cerc6 - ok 21:51:56.0406 4024 Changer - ok 21:51:56.0421 4024 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe 21:51:56.0578 4024 CiSvc - ok 21:51:56.0609 4024 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe 21:51:56.0750 4024 ClipSrv - ok 21:51:56.0781 4024 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 21:51:56.0796 4024 clr_optimization_v2.0.50727_32 - ok 21:51:56.0968 4024 [ E2D9B64BC78B01E599539C1C1193CE9B ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe 21:51:57.0171 4024 cmdAgent - ok 21:51:57.0203 4024 [ 5A3B2770EB1CF642986D7886C1C037EC ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys 21:51:57.0234 4024 cmderd - ok 21:51:57.0265 4024 [ 3369A1E3A80C7A991AF0DD36251F5C34 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys 21:51:57.0328 4024 cmdGuard - ok 21:51:57.0343 4024 [ 00930989984DA7C8DA2799D0C49BCD4D ] cmdHlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys 21:51:57.0375 4024 cmdHlp - ok 21:51:57.0375 4024 CmdIde - ok 21:51:57.0406 4024 [ 5FABA52953E40BDE1F2DBC35E549B63E ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe 21:51:57.0437 4024 cmdvirth - ok 21:51:57.0437 4024 CnxEtP - ok 21:51:57.0453 4024 CnxEtU - ok 21:51:57.0453 4024 CnxTgNW - ok 21:51:57.0468 4024 COMSysApp - ok 21:51:57.0484 4024 Cpqarray - ok 21:51:57.0515 4024 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll 21:51:57.0656 4024 CryptSvc - ok 21:51:57.0656 4024 dac2w2k - ok 21:51:57.0671 4024 dac960nt - ok 21:51:57.0703 4024 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 21:51:57.0765 4024 DcomLaunch - ok 21:51:57.0765 4024 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll 21:51:57.0921 4024 Dhcp - ok 21:51:57.0953 4024 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys 21:51:58.0109 4024 Disk - ok 21:51:58.0109 4024 dmadmin - ok 21:51:58.0156 4024 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys 21:51:58.0312 4024 dmboot - ok 21:51:58.0328 4024 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys 21:51:58.0468 4024 dmio - ok 21:51:58.0500 4024 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys 21:51:58.0640 4024 dmload - ok 21:51:58.0656 4024 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll 21:51:58.0812 4024 dmserver - ok 21:51:58.0859 4024 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys 21:51:59.0015 4024 DMusic - ok 21:51:59.0031 4024 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 21:51:59.0062 4024 Dnscache - ok 21:51:59.0093 4024 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll 21:51:59.0234 4024 Dot3svc - ok 21:51:59.0234 4024 dpti2o - ok 21:51:59.0265 4024 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 21:51:59.0390 4024 drmkaud - ok 21:51:59.0421 4024 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll 21:51:59.0562 4024 EapHost - ok 21:51:59.0578 4024 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll 21:51:59.0734 4024 ERSvc - ok 21:51:59.0765 4024 esgiguard - ok 21:51:59.0796 4024 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe 21:51:59.0828 4024 Eventlog - ok 21:51:59.0859 4024 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll 21:51:59.0906 4024 EventSystem - ok 21:51:59.0937 4024 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys 21:52:00.0078 4024 Fastfat - ok 21:52:00.0093 4024 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll 21:52:00.0125 4024 FastUserSwitchingCompatibility - ok 21:52:00.0140 4024 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys 21:52:00.0296 4024 Fdc - ok 21:52:00.0328 4024 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys 21:52:00.0484 4024 Fips - ok 21:52:00.0515 4024 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys 21:52:00.0671 4024 Flpydisk - ok 21:52:00.0718 4024 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 21:52:00.0875 4024 FltMgr - ok 21:52:00.0937 4024 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 21:52:00.0953 4024 FontCache3.0.0.0 - ok 21:52:00.0968 4024 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 21:52:01.0125 4024 Fs_Rec - ok 21:52:01.0156 4024 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys 21:52:01.0312 4024 Ftdisk - ok 21:52:01.0375 4024 [ B0C9FFF54F16DF2012F53A34736A0975 ] FTRTSVC C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe 21:52:01.0390 4024 FTRTSVC ( UnsignedFile.Multi.Generic ) - warning 21:52:01.0390 4024 FTRTSVC - detected UnsignedFile.Multi.Generic (1) 21:52:01.0421 4024 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll 21:52:01.0453 4024 getPlusHelper - ok 21:52:01.0484 4024 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys 21:52:01.0640 4024 Gpc - ok 21:52:01.0703 4024 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 21:52:01.0734 4024 gupdate - ok 21:52:01.0734 4024 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 21:52:01.0765 4024 gupdatem - ok 21:52:01.0812 4024 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 21:52:01.0968 4024 helpsvc - ok 21:52:02.0000 4024 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll 21:52:02.0156 4024 HidServ - ok 21:52:02.0187 4024 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys 21:52:02.0343 4024 hidusb - ok 21:52:02.0375 4024 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll 21:52:02.0546 4024 hkmsvc - ok 21:52:02.0562 4024 hpn - ok 21:52:02.0609 4024 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys 21:52:02.0671 4024 HTTP - ok 21:52:02.0703 4024 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll 21:52:02.0859 4024 HTTPFilter - ok 21:52:02.0875 4024 i2omgmt - ok 21:52:02.0875 4024 i2omp - ok 21:52:02.0906 4024 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\drivers\i8042prt.sys 21:52:03.0062 4024 i8042prt - ok 21:52:03.0234 4024 [ 48846B31BE5A4FA662CCFDE7A1BA86B9 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 21:52:03.0437 4024 ialm - ok 21:52:03.0515 4024 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 21:52:03.0578 4024 idsvc - ok 21:52:03.0593 4024 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys 21:52:03.0734 4024 Imapi - ok 21:52:03.0765 4024 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe 21:52:03.0921 4024 ImapiService - ok 21:52:03.0937 4024 ini910u - ok 21:52:03.0968 4024 [ 8A00CB1EE39916205378EE13B797A1AF ] Inspect C:\WINDOWS\system32\DRIVERS\inspect.sys 21:52:04.0000 4024 Inspect - ok 21:52:04.0000 4024 IntelIde - ok 21:52:04.0031 4024 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys 21:52:04.0171 4024 intelppm - ok 21:52:04.0187 4024 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys 21:52:04.0343 4024 Ip6Fw - ok 21:52:04.0359 4024 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 21:52:04.0515 4024 IpFilterDriver - ok 21:52:04.0546 4024 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys 21:52:04.0703 4024 IpInIp - ok 21:52:04.0734 4024 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys 21:52:04.0890 4024 IpNat - ok 21:52:04.0921 4024 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys 21:52:05.0078 4024 IPSec - ok 21:52:05.0109 4024 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys 21:52:05.0187 4024 IRENUM - ok 21:52:05.0218 4024 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys 21:52:05.0375 4024 isapnp - ok 21:52:05.0437 4024 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe 21:52:05.0468 4024 JavaQuickStarterService - ok 21:52:05.0484 4024 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys 21:52:05.0640 4024 Kbdclass - ok 21:52:05.0656 4024 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys 21:52:05.0796 4024 kbdhid - ok 21:52:05.0812 4024 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys 21:52:05.0968 4024 kmixer - ok 21:52:05.0984 4024 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys 21:52:06.0000 4024 KSecDD - ok 21:52:06.0031 4024 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll 21:52:06.0078 4024 LanmanServer - ok 21:52:06.0125 4024 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll 21:52:06.0156 4024 lanmanworkstation - ok 21:52:06.0171 4024 lbrtfdc - ok 21:52:06.0218 4024 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll 21:52:06.0390 4024 LmHosts - ok 21:52:06.0390 4024 maqabrqg - ok 21:52:06.0421 4024 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll 21:52:06.0578 4024 Messenger - ok 21:52:06.0609 4024 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys 21:52:06.0734 4024 mnmdd - ok 21:52:06.0765 4024 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe 21:52:06.0906 4024 mnmsrvc - ok 21:52:06.0937 4024 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys 21:52:07.0078 4024 Modem - ok 21:52:07.0093 4024 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys 21:52:07.0250 4024 Mouclass - ok 21:52:07.0250 4024 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys 21:52:07.0390 4024 mouhid - ok 21:52:07.0421 4024 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys 21:52:07.0562 4024 MountMgr - ok 21:52:07.0562 4024 mraid35x - ok 21:52:07.0593 4024 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys 21:52:07.0984 4024 MRxDAV - ok 21:52:08.0031 4024 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 21:52:08.0093 4024 MRxSmb - ok 21:52:08.0125 4024 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe 21:52:08.0296 4024 MSDTC - ok 21:52:08.0312 4024 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 21:52:08.0453 4024 Msfs - ok 21:52:08.0453 4024 MSIServer - ok 21:52:08.0468 4024 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 21:52:08.0609 4024 MSKSSRV - ok 21:52:08.0640 4024 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 21:52:08.0765 4024 MSPCLOCK - ok 21:52:08.0781 4024 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 21:52:08.0921 4024 MSPQM - ok 21:52:08.0953 4024 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys 21:52:09.0078 4024 mssmbios - ok 21:52:09.0125 4024 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 21:52:09.0265 4024 MSTEE - ok 21:52:09.0281 4024 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys 21:52:09.0328 4024 Mup - ok 21:52:09.0343 4024 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 21:52:09.0484 4024 NABTSFEC - ok 21:52:09.0531 4024 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll 21:52:09.0671 4024 napagent - ok 21:52:09.0687 4024 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys 21:52:09.0843 4024 NDIS - ok 21:52:09.0875 4024 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys 21:52:10.0015 4024 NdisIP - ok 21:52:10.0046 4024 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 21:52:10.0093 4024 NdisTapi - ok 21:52:10.0125 4024 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 21:52:10.0281 4024 Ndisuio - ok 21:52:10.0296 4024 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 21:52:10.0437 4024 NdisWan - ok 21:52:10.0453 4024 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 21:52:10.0500 4024 NDProxy - ok 21:52:10.0500 4024 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 21:52:10.0656 4024 NetBIOS - ok 21:52:10.0687 4024 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 21:52:10.0828 4024 NetBT - ok 21:52:10.0859 4024 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe 21:52:11.0000 4024 NetDDE - ok 21:52:11.0015 4024 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe 21:52:11.0156 4024 NetDDEdsdm - ok 21:52:11.0171 4024 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe 21:52:11.0343 4024 Netlogon - ok 21:52:11.0390 4024 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll 21:52:11.0546 4024 Netman - ok 21:52:11.0578 4024 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 21:52:11.0609 4024 NetTcpPortSharing - ok 21:52:11.0625 4024 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll 21:52:11.0656 4024 Nla - ok 21:52:11.0687 4024 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 21:52:11.0812 4024 Npfs - ok 21:52:11.0843 4024 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 21:52:12.0000 4024 Ntfs - ok 21:52:12.0000 4024 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe 21:52:12.0140 4024 NtLmSsp - ok 21:52:12.0171 4024 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll 21:52:12.0343 4024 NtmsSvc - ok 21:52:12.0359 4024 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys 21:52:12.0500 4024 Null - ok 21:52:12.0515 4024 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 21:52:12.0671 4024 NwlnkFlt - ok 21:52:12.0687 4024 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 21:52:12.0828 4024 NwlnkFwd - ok 21:52:12.0906 4024 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 21:52:12.0937 4024 odserv - ok 21:52:12.0953 4024 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 21:52:12.0984 4024 ose - ok 21:52:13.0046 4024 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys 21:52:13.0203 4024 Parport - ok 21:52:13.0203 4024 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys 21:52:13.0359 4024 PartMgr - ok 21:52:13.0390 4024 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys 21:52:13.0531 4024 ParVdm - ok 21:52:13.0531 4024 pbfilter - ok 21:52:13.0562 4024 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 21:52:13.0609 4024 pccsmcfd - ok 21:52:13.0640 4024 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys 21:52:13.0796 4024 PCI - ok 21:52:13.0812 4024 PCIDump - ok 21:52:13.0828 4024 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys 21:52:13.0968 4024 PCIIde - ok 21:52:14.0000 4024 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys 21:52:14.0156 4024 Pcmcia - ok 21:52:14.0171 4024 PDCOMP - ok 21:52:14.0171 4024 PDFRAME - ok 21:52:14.0187 4024 PDRELI - ok 21:52:14.0187 4024 PDRFRAME - ok 21:52:14.0203 4024 perc2 - ok 21:52:14.0203 4024 perc2hib - ok 21:52:14.0234 4024 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe 21:52:14.0265 4024 PlugPlay - ok 21:52:14.0281 4024 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe 21:52:14.0421 4024 PolicyAgent - ok 21:52:14.0437 4024 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 21:52:14.0593 4024 PptpMiniport - ok 21:52:14.0609 4024 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe 21:52:14.0750 4024 ProtectedStorage - ok 21:52:14.0781 4024 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys 21:52:14.0921 4024 PSched - ok 21:52:14.0953 4024 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys 21:52:15.0109 4024 Ptilink - ok 21:52:15.0140 4024 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys 21:52:15.0171 4024 PxHelp20 - ok 21:52:15.0171 4024 ql1080 - ok 21:52:15.0187 4024 Ql10wnt - ok 21:52:15.0187 4024 ql12160 - ok 21:52:15.0203 4024 ql1240 - ok 21:52:15.0203 4024 ql1280 - ok 21:52:15.0218 4024 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 21:52:15.0343 4024 RasAcd - ok 21:52:15.0359 4024 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll 21:52:15.0531 4024 RasAuto - ok 21:52:15.0531 4024 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 21:52:15.0687 4024 Rasl2tp - ok 21:52:15.0718 4024 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll 21:52:15.0843 4024 RasMan - ok 21:52:15.0859 4024 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 21:52:16.0015 4024 RasPppoe - ok 21:52:16.0031 4024 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys 21:52:16.0156 4024 Raspti - ok 21:52:16.0171 4024 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 21:52:16.0312 4024 Rdbss - ok 21:52:16.0328 4024 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 21:52:16.0453 4024 RDPCDD - ok 21:52:16.0500 4024 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys 21:52:16.0640 4024 rdpdr - ok 21:52:16.0687 4024 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys 21:52:16.0734 4024 RDPWD - ok 21:52:16.0781 4024 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe 21:52:16.0921 4024 RDSessMgr - ok 21:52:16.0953 4024 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys 21:52:17.0109 4024 redbook - ok 21:52:17.0156 4024 [ C310203D2ED0CFD0AD68DB638C8DBB25 ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe 21:52:17.0187 4024 ReflectService.exe - ok 21:52:17.0234 4024 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 21:52:17.0375 4024 RemoteRegistry - ok 21:52:17.0390 4024 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe 21:52:17.0546 4024 RpcLocator - ok 21:52:17.0562 4024 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll 21:52:17.0593 4024 RpcSs - ok 21:52:17.0609 4024 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe 21:52:17.0750 4024 RSVP - ok 21:52:17.0796 4024 [ B9B17ACA28D3E60CAABD92402DE413D5 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys 21:52:17.0843 4024 rt2870 - ok 21:52:17.0859 4024 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe 21:52:18.0000 4024 SamSs - ok 21:52:18.0031 4024 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe 21:52:18.0187 4024 SCardSvr - ok 21:52:18.0218 4024 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll 21:52:18.0359 4024 Schedule - ok 21:52:18.0390 4024 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys 21:52:18.0468 4024 Secdrv - ok 21:52:18.0484 4024 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll 21:52:18.0640 4024 seclogon - ok 21:52:18.0687 4024 [ B9C7617C1E8AB6FDFF75D3C8DAFCB4C8 ] senfilt C:\WINDOWS\system32\drivers\senfilt.sys 21:52:18.0734 4024 senfilt - ok 21:52:18.0734 4024 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll 21:52:18.0875 4024 SENS - ok 21:52:18.0890 4024 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys 21:52:19.0062 4024 serenum - ok 21:52:19.0078 4024 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys 21:52:19.0234 4024 Serial - ok 21:52:19.0296 4024 [ 8C1F87F5FDD92229D1754B98F073913F ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe 21:52:19.0343 4024 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning 21:52:19.0343 4024 ServiceLayer - detected UnsignedFile.Multi.Generic (1) 21:52:19.0375 4024 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys 21:52:19.0546 4024 Sfloppy - ok 21:52:19.0578 4024 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 21:52:19.0593 4024 ShellHWDetection - ok 21:52:19.0609 4024 Simbad - ok 21:52:19.0781 4024 [ D0776778A9FC5E37F2E9EB21FC8A9709 ] Skype C2C Service C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe 21:52:19.0921 4024 Skype C2C Service - ok 21:52:19.0968 4024 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 21:52:20.0000 4024 SkypeUpdate - ok 21:52:20.0015 4024 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys 21:52:20.0156 4024 SLIP - ok 21:52:20.0187 4024 [ C6D9959E493682F872A639B6EC1B4A08 ] smwdm C:\WINDOWS\system32\drivers\smwdm.sys 21:52:20.0218 4024 smwdm - ok 21:52:20.0218 4024 Sparrow - ok 21:52:20.0234 4024 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys 21:52:20.0390 4024 splitter - ok 21:52:20.0421 4024 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe 21:52:20.0437 4024 Spooler - ok 21:52:20.0468 4024 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys 21:52:20.0562 4024 sr - ok 21:52:20.0562 4024 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll 21:52:20.0640 4024 srservice - ok 21:52:20.0671 4024 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys 21:52:20.0703 4024 Srv - ok 21:52:20.0734 4024 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 21:52:20.0812 4024 SSDPSRV - ok 21:52:20.0828 4024 [ E57B778208C783D8DEBAB320C16A1B82 ] StarOpen C:\WINDOWS\system32\drivers\StarOpen.sys 21:52:20.0859 4024 StarOpen ( UnsignedFile.Multi.Generic ) - warning 21:52:20.0859 4024 StarOpen - detected UnsignedFile.Multi.Generic (1) 21:52:20.0906 4024 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll 21:52:21.0062 4024 stisvc - ok 21:52:21.0093 4024 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys 21:52:21.0234 4024 streamip - ok 21:52:21.0250 4024 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys 21:52:21.0406 4024 swenum - ok 21:52:21.0437 4024 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys 21:52:21.0562 4024 swmidi - ok 21:52:21.0578 4024 SwPrv - ok 21:52:21.0578 4024 symc810 - ok 21:52:21.0593 4024 symc8xx - ok 21:52:21.0593 4024 sym_hi - ok 21:52:21.0609 4024 sym_u3 - ok 21:52:21.0625 4024 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys 21:52:21.0765 4024 sysaudio - ok 21:52:21.0812 4024 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe 21:52:21.0937 4024 SysmonLog - ok 21:52:21.0984 4024 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 21:52:22.0125 4024 TapiSrv - ok 21:52:22.0140 4024 [ FBF5F4FAEAC6DB79C3881E1CDDA9BFAD ] tccp C:\WINDOWS\system32\DRIVERS\tccp.sys 21:52:22.0171 4024 tccp - ok 21:52:22.0203 4024 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys 21:52:22.0250 4024 Tcpip - ok 21:52:22.0281 4024 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys 21:52:22.0437 4024 TDPIPE - ok 21:52:22.0468 4024 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys 21:52:22.0625 4024 TDTCP - ok 21:52:22.0656 4024 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys 21:52:22.0781 4024 TermDD - ok 21:52:22.0812 4024 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll 21:52:22.0968 4024 TermService - ok 21:52:22.0984 4024 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll 21:52:23.0015 4024 Themes - ok 21:52:23.0046 4024 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe 21:52:23.0125 4024 TlntSvr - ok 21:52:23.0125 4024 TosIde - ok 21:52:23.0171 4024 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll 21:52:23.0312 4024 TrkWks - ok 21:52:23.0343 4024 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys 21:52:23.0484 4024 Udfs - ok 21:52:23.0500 4024 ultra - ok 21:52:23.0531 4024 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys 21:52:23.0703 4024 Update - ok 21:52:23.0718 4024 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll 21:52:23.0796 4024 upnphost - ok 21:52:23.0812 4024 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe 21:52:23.0968 4024 UPS - ok 21:52:24.0000 4024 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys 21:52:24.0140 4024 usbaudio - ok 21:52:24.0187 4024 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys 21:52:24.0359 4024 usbccgp - ok 21:52:24.0390 4024 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys 21:52:24.0531 4024 usbehci - ok 21:52:24.0578 4024 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys 21:52:24.0718 4024 usbhub - ok 21:52:24.0750 4024 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys 21:52:24.0906 4024 usbprint - ok 21:52:24.0921 4024 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 21:52:25.0046 4024 usbscan - ok 21:52:25.0078 4024 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\drivers\usbser.sys 21:52:25.0218 4024 usbser - ok 21:52:25.0234 4024 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 21:52:25.0375 4024 USBSTOR - ok 21:52:25.0406 4024 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys 21:52:25.0546 4024 usbuhci - ok 21:52:25.0578 4024 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys 21:52:25.0718 4024 usbvideo - ok 21:52:25.0750 4024 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys 21:52:25.0890 4024 VgaSave - ok 21:52:25.0890 4024 ViaIde - ok 21:52:25.0921 4024 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys 21:52:26.0046 4024 VolSnap - ok 21:52:26.0093 4024 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe 21:52:26.0171 4024 VSS - ok 21:52:26.0218 4024 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll 21:52:26.0375 4024 W32Time - ok 21:52:26.0390 4024 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 21:52:26.0546 4024 Wanarp - ok 21:52:26.0578 4024 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys 21:52:26.0625 4024 Wdf01000 - ok 21:52:26.0625 4024 WDICA - ok 21:52:26.0640 4024 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys 21:52:26.0781 4024 wdmaud - ok 21:52:26.0796 4024 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll 21:52:26.0937 4024 WebClient - ok 21:52:26.0984 4024 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 21:52:27.0125 4024 winmgmt - ok 21:52:27.0156 4024 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll 21:52:27.0187 4024 WmdmPmSN - ok 21:52:27.0218 4024 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll 21:52:27.0296 4024 Wmi - ok 21:52:27.0328 4024 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe 21:52:27.0484 4024 WmiApSrv - ok 21:52:27.0546 4024 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe 21:52:27.0625 4024 WMPNetworkSvc - ok 21:52:27.0671 4024 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys 21:52:27.0828 4024 WS2IFSL - ok 21:52:27.0843 4024 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll 21:52:27.0984 4024 wscsvc - ok 21:52:28.0015 4024 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 21:52:28.0140 4024 WSTCODEC - ok 21:52:28.0156 4024 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys 21:52:28.0171 4024 WudfPf - ok 21:52:28.0203 4024 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys 21:52:28.0234 4024 WudfRd - ok 21:52:28.0265 4024 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll 21:52:28.0312 4024 WudfSvc - ok 21:52:28.0359 4024 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll 21:52:28.0515 4024 WZCSVC - ok 21:52:28.0546 4024 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll 21:52:28.0718 4024 xmlprov - ok 21:52:28.0750 4024 *etadpug - ok 21:52:28.0750 4024 ================ Scan global =============================== 21:52:28.0781 4024 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll 21:52:28.0796 4024 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll 21:52:28.0828 4024 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll 21:52:28.0828 4024 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe 21:52:28.0843 4024 [Global] - ok 21:52:28.0843 4024 ================ Scan MBR ================================== 21:52:28.0859 4024 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0 21:52:29.0078 4024 \Device\Harddisk0\DR0 - ok 21:52:29.0078 4024 ================ Scan VBR ================================== 21:52:29.0078 4024 [ D3E063DA861FFD7FF6AA975BCE2AB005 ] \Device\Harddisk0\DR0\Partition1 21:52:29.0078 4024 \Device\Harddisk0\DR0\Partition1 - ok 21:52:29.0078 4024 ============================================================ 21:52:29.0078 4024 Scan finished 21:52:29.0078 4024 ============================================================ 21:52:29.0187 4028 Detected object count: 5 21:52:29.0187 4028 Actual detected object count: 5 21:53:54.0234 4028 AdobeFlashPlayerUpdateSvc ( LockedFile.Multi.Generic ) - skipped by user 21:53:54.0234 4028 AdobeFlashPlayerUpdateSvc ( LockedFile.Multi.Generic ) - User select action: Skip 21:53:54.0234 4028 BANTExt ( UnsignedFile.Multi.Generic ) - skipped by user 21:53:54.0234 4028 BANTExt ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:53:54.0234 4028 FTRTSVC ( UnsignedFile.Multi.Generic ) - skipped by user 21:53:54.0234 4028 FTRTSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:53:54.0234 4028 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user 21:53:54.0234 4028 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:53:54.0234 4028 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user 21:53:54.0234 4028 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip 21:54:01.0156 2560 Deinitialize success
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Jion, alles is uitgevoerd, malwarbytes gaf geen fouten meer aan en bij TDSSKILLER was dit het laatste scherm:
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Jion, Hierbij de log file. Ervoor heb ik wel de nieuwe Avast antivirus en Comodo Internet Security geinstalleerd daar de Windows Firewall niet meer werkte. Met vriendelijke groeten, Peter Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free anti-malware download Databaseversie: v2013.09.16.06 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 JULIE :: GX620-PC [administrator] 16/09/2013 18:56:14 MBAM-log-2013-09-16 (19-30-21).txt Scan type: Snelle scan Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 290995 Verstreken tijd: 33 minuut/minuten, 6 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 15 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} (PUP.WebCake) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517} (PUP.WebCake) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} (PUP.Optional.DefaultTab) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Geen actie ondernomen. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Geen actie ondernomen. HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Geen actie ondernomen. HKCU\Software\AppDataLow\SProtector (PUP.Optional.SProtector.A) -> Geen actie ondernomen. HKCU\SOFTWARE\CROSSRIDER (PUP.Optional.CrossRider.A) -> Geen actie ondernomen. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Geen actie ondernomen. HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Geen actie ondernomen. Registerwaarden gedetecteerd: 4 HKCU\Software\Crossrider|Verifier (PUP.Optional.CrossRider.A) -> Data: 17fb2975c1c1dfa025759e6324b87377 -> Geen actie ondernomen. HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0C2Z1Q1C0C1LtGtCtH1I0C1R1K1G2ZtHtI1N -> Geen actie ondernomen. HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {B33816EB-38BA-11E2-83BA-0022F71928B7} -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|59017 (Trojan.Agent) -> Data: C:\Documents and Settings\All Users\Local Settings\Temp\mslika.exe -> Geen actie ondernomen. Registerdata gedetecteerd: 2 HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Default_page_url (Hijack.StartPage) -> Slecht: (QVO6) Goed: (Google) -> Geen actie ondernomen. HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Slecht: (1) Goed: (0) -> Geen actie ondernomen. Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 1 C:\WINDOWS\assembly\GAC\Desktop.ini (Rootkit.0access) -> Geen actie ondernomen. (einde)
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

OK het komt eraan
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Bedankt Ion alles werkt weer behalve de firewall van Windows. Ik probeer er nu een andere op te plaatsen. Groeten
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn reageerde op pvn's topic in Archief Bestrijding malware & virussen

Hierbij alvast de logfile Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 12:16:32 PM, on 9/16/2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Safe mode with network support Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Opera\Opera.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\FreeCommander\FreeCommander.exe E:\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = QVO6 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = QVO6 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = QVO6 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = QVO6 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - Default URLSearchHook is missing O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Policies\Explorer\Run: [59017] C:\Documents and Settings\All Users\Local Settings\Temp\mslika.exe O4 - HKUS\S-1-5-18\..\RunOnce: [panda2_0dn] reg.exe delete "HKCU\Software\AppDataLow\Software\panda2_0dn" /f (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [panda2_0dn_XP] reg.exe delete "HKCU\Software\panda2_0dn" /f (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [panda2_0dn] reg.exe delete "HKCU\Software\AppDataLow\Software\panda2_0dn" /f (User 'Default user') O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1370689376734 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1348396233515 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Unknown owner - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: France Telecom Routing Table Service (FTRTSVC) - Unknown owner - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: Macrium Reflect Image Mounting Service (ReflectService.exe) - Unknown owner - C:\Program Files\Macrium\Reflect\ReflectService.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 7024 bytes
- 16 september 2013
- 29 antwoorden
Help w32/blaster.com

pvn plaatste een topic in Archief Bestrijding malware & virussen

Dag allen kan iemand helpen bij oplossen van de allombekende problemen die de virus W32/BLASTER.COM veroorzaakt. Ik kan geen enkel programma meer openen. Ik werk nu in safemode. Schrijven gaat ook langzaam gezien toetsenbord lay out niet meer klopt. Met dank Peter
- 16 september 2013
- 29 antwoorden

Inloggen

pvn

Items

Registratiedatum

Laatst bezocht

Inhoudstype

Profielen

Forums

Store

Alles dat geplaatst werd door pvn

Preventie

Preventie

Preventie

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

Help w32/blaster.com

OVER ONS

SITEMAP

Home

Info

Handleidingen & Tips

Activiteit

Belangrijke informatie