Ga naar inhoud

PC opeens traag (3)

thaonlyone
 Delen

Aanbevolen berichten

  • Reacties 28
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

thaonlyone Leerling

thaonlyone

Geplaatst:
  • Auteur
Geplaatst:

hier weer het volgende bericht

Emsisoft Emergency Kit - Versie 1.0

Laatste Update: 20-4-2012 17:01:30

Scaninstellingen:

Scantype: Diepe Scan

Objecten: Geheugen, Sporen, Cookies, C:\

Scan archieven: Aan

Heuristieken: Uit

ADS Scan: Aan

Scan gestart: 20-4-2012 17:01:58

[5072] C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Ontdekt: Packed.Win32.Themida.AMN!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id Ontdekt: Trace.Registry.EZ Game Cheats!A2

Key: HKEY_CLASSES_ROOT\interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} Ontdekt: Trace.Registry.FunWebProducts!A2

Key: HKEY_CURRENT_USER\software\imesh Ontdekt: Trace.Registry.IMesh!A2

Value: HKEY_CURRENT_USER\Software\iMesh --> LastOpenFileDir Ontdekt: Trace.Registry.iMesh!A2

Key: HKEY_CLASSES_ROOT\interface\{07b18eac-a523-4961-b6bb-170de4475cca} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{120927bf-1700-43bc-810f-fab92549b390} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{1f52a5fa-a705-4415-b975-88503b291728} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{3e720453-b472-4954-b7aa-33069eb53906} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{90449521-d834-4703-bb4e-d3aa44042ff8} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{991aac62-b100-47ce-8b75-253965244f69} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} Ontdekt: Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_LOCAL_MACHINE\software\Freeze.com\ Ontdekt: Trace.Registry.Freeze!A2

Key: HKEY_LOCAL_MACHINE\software\Europa Casino Ontdekt: Trace.Registry.EuropaCasino!A2

Key: HKEY_CURRENT_USER\software\Europa Casino Ontdekt: Trace.Registry.EuropaCasino!A2

C:\Documents and Settings\Administrator\Application Data\Sun\Java\Deployment\cache\6.0\60\369681fc-709b1598/iia\iia.class Ontdekt: Exploit.Java.CVE-2012-0507!IK

C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Ontdekt: Packed.Win32.Themida.AMN!A2

C:\Program Files\Windows Live\Messenger\riched20.dll Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054554.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054555.DLL Ontdekt: Adware.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054556.DLL Ontdekt: Adware.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054557.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054558.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054559.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054560.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054561.DLL Ontdekt: Adware.Win32.FunWeb!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054562.SCR Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054563.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054564.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054565.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054566.EXE Ontdekt: Adware.Win32.FunWeb!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054567.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054568.DLL Ontdekt: Riskware.WebToolbar.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054569.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054573.DLL Ontdekt: Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054574.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054577.DLL Ontdekt: Adware.Win32.MyWebSearch!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054579.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054581.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054582.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054583.EXE Ontdekt: Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054584.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054585.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054586.DLL Ontdekt: Adware.Win32.MyWebSearch!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054587.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054589.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054591.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054592.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054620.dll Ontdekt: Trojan.Win32.Agent.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP219\A0055120.exe Ontdekt: Trojan.Crypt!IK

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP226\A0057104.exe Ontdekt: Trojan-Banker.Win32.Banker!IK

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP229\A0062356.exe Ontdekt: Trojan.Crypt!IK

Gescand

Bestanden: 238539

Sporen: 468574

Cookies: 91

Processen: 39

Gevonden

Bestanden: 37

Sporen: 21

Cookies: 0

Processen: 1

Registersleutels: 0

Scan Geëindigd: 20-4-2012 20:47:22

Scantijd: 3:45:24

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP226\A0057104.exe Verwijderd Trojan-Banker.Win32.Banker!IK

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP219\A0055120.exe Verwijderd Trojan.Crypt!IK

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP229\A0062356.exe Verwijderd Trojan.Crypt!IK

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054620.dll Verwijderd Trojan.Win32.Agent.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054577.DLL Verwijderd Adware.Win32.MyWebSearch!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054586.DLL Verwijderd Adware.Win32.MyWebSearch!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054573.DLL Verwijderd Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054583.EXE Verwijderd Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054568.DLL Verwijderd Riskware.WebToolbar.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054561.DLL Verwijderd Adware.Win32.FunWeb!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054566.EXE Verwijderd Adware.Win32.FunWeb!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054555.DLL Verwijderd Adware.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054556.DLL Verwijderd Adware.Win32.FunWeb.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054554.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054557.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054559.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054560.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054563.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054564.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054574.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054584.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054589.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054592.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2

C:\Program Files\Windows Live\Messenger\riched20.dll Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054558.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054562.SCR Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054565.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054567.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054569.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054579.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054581.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054582.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054585.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054587.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054591.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2

C:\Documents and Settings\Administrator\Application Data\Sun\Java\Deployment\cache\6.0\60\369681fc-709b1598/iia\iia.class Verwijderd Exploit.Java.CVE-2012-0507!IK

Key: HKEY_LOCAL_MACHINE\software\Europa Casino Verwijderd Trace.Registry.EuropaCasino!A2

Key: HKEY_CURRENT_USER\software\Europa Casino Verwijderd Trace.Registry.EuropaCasino!A2

Key: HKEY_LOCAL_MACHINE\software\Freeze.com\ Verwijderd Trace.Registry.Freeze!A2

Key: HKEY_CLASSES_ROOT\interface\{07b18eac-a523-4961-b6bb-170de4475cca} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{120927bf-1700-43bc-810f-fab92549b390} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{1f52a5fa-a705-4415-b975-88503b291728} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{3e720453-b472-4954-b7aa-33069eb53906} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{90449521-d834-4703-bb4e-d3aa44042ff8} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{991aac62-b100-47ce-8b75-253965244f69} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CLASSES_ROOT\interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} Verwijderd Trace.Registry.MyWebSearchToobar!A2

Key: HKEY_CURRENT_USER\software\imesh Verwijderd Trace.Registry.IMesh!A2

Value: HKEY_CURRENT_USER\Software\iMesh --> LastOpenFileDir Verwijderd Trace.Registry.IMesh!A2

Key: HKEY_CLASSES_ROOT\interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} Verwijderd Trace.Registry.FunWebProducts!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id Verwijderd Trace.Registry.EZ Game Cheats!A2

[5072] C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Verwijderd Packed.Win32.Themida.AMN!A2

C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Verwijderd Packed.Win32.Themida.AMN!A2

Verwijderd

Bestanden: 37

Sporen: 21

Cookies: 0

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download TDSSKiller en plaats het op je bureaublad.

Pak de bestanden in tdsskiller.zip uit.

Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.

Windows 7 en Windows Vista gebruikers:

Rechtsklik op TDSSKiller.exe -> Uitvoeren als Administrator om de tool te starten.

Als TDSSKiller bericht geeft van een beschikbare update, dan voer je deze eerst uit.

Klik op de knop "Start Scan" en volg de instructies.

Wanneer de scan klaar is klik je op de knop "Report".

Er opent een kladblokbestand. Post de inhoud van dit bestand.

Herstart de pc als TDSSKiller die optie geeft. (Reboot now)

Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt

Link naar reactie
Delen op andere sites
thaonlyone Leerling

thaonlyone

Geplaatst:
  • Auteur
Geplaatst:

okeey

23:26:21.0593 3812 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47

23:26:21.0656 3812 ============================================================

23:26:21.0656 3812 Current date / time: 2012/04/20 23:26:21.0656

23:26:21.0656 3812 SystemInfo:

23:26:21.0656 3812

23:26:21.0656 3812 OS Version: 5.1.2600 ServicePack: 3.0

23:26:21.0656 3812 Product type: Workstation

23:26:21.0656 3812 ComputerName: JOHAN-COMPUTER

23:26:21.0656 3812 UserName: Administrator

23:26:21.0656 3812 Windows directory: C:\WINDOWS

23:26:21.0656 3812 System windows directory: C:\WINDOWS

23:26:21.0656 3812 Processor architecture: Intel x86

23:26:21.0656 3812 Number of processors: 2

23:26:21.0656 3812 Page size: 0x1000

23:26:21.0656 3812 Boot type: Normal boot

23:26:21.0656 3812 ============================================================

23:26:24.0500 3812 Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x531A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054

23:26:24.0500 3812 \Device\Harddisk0\DR0:

23:26:24.0500 3812 MBR partitions:

23:26:24.0500 3812 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xFFF9D41

23:26:24.0531 3812 C: <-> \Device\Harddisk0\DR0\Partition0

23:26:24.0531 3812 Initialize success

23:26:24.0531 3812 ============================================================

23:26:26.0312 6084 ============================================================

23:26:26.0312 6084 Scan started

23:26:26.0312 6084 Mode: Manual;

23:26:26.0312 6084 ============================================================

23:26:27.0062 6084 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys

23:26:27.0062 6084 Aavmker4 - ok

23:26:27.0078 6084 Abiosdsk - ok

23:26:27.0093 6084 abp480n5 - ok

23:26:27.0125 6084 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys

23:26:27.0140 6084 ACPI - ok

23:26:27.0203 6084 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys

23:26:27.0250 6084 ACPIEC - ok

23:26:27.0265 6084 adpu160m - ok

23:26:27.0296 6084 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

23:26:27.0312 6084 aec - ok

23:26:27.0406 6084 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys

23:26:27.0406 6084 AFD - ok

23:26:27.0421 6084 Aha154x - ok

23:26:27.0437 6084 aic78u2 - ok

23:26:27.0437 6084 aic78xx - ok

23:26:27.0484 6084 Alerter (8bed67d13dcb55b3e9ff6dac4c6d3b49) C:\WINDOWS\system32\alrsvc.dll

23:26:27.0484 6084 Alerter - ok

23:26:27.0500 6084 ALG (dab2a89fde5cf791161200d90c1bcb12) C:\WINDOWS\System32\alg.exe

23:26:27.0500 6084 ALG - ok

23:26:27.0515 6084 AliIde - ok

23:26:27.0531 6084 amsint - ok

23:26:27.0640 6084 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

23:26:27.0640 6084 Apple Mobile Device - ok

23:26:27.0718 6084 AppMgmt (434a70fa278eb3c42140e3755c2fa4f8) C:\WINDOWS\System32\appmgmts.dll

23:26:27.0734 6084 AppMgmt - ok

23:26:27.0734 6084 asc - ok

23:26:27.0750 6084 asc3350p - ok

23:26:27.0765 6084 asc3550 - ok

23:26:27.0828 6084 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

23:26:27.0843 6084 aspnet_state - ok

23:26:27.0875 6084 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys

23:26:27.0875 6084 aswFsBlk - ok

23:26:27.0906 6084 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys

23:26:27.0906 6084 aswMon2 - ok

23:26:27.0921 6084 AswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\AswRdr.sys

23:26:27.0921 6084 AswRdr - ok

23:26:28.0031 6084 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys

23:26:28.0046 6084 aswSnx - ok

23:26:28.0062 6084 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys

23:26:28.0078 6084 aswSP - ok

23:26:28.0390 6084 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys

23:26:28.0421 6084 aswTdi - ok

23:26:28.0515 6084 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

23:26:28.0515 6084 AsyncMac - ok

23:26:28.0593 6084 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

23:26:28.0593 6084 atapi - ok

23:26:28.0609 6084 Atdisk - ok

23:26:28.0671 6084 Ati HotKey Poller (1bd87fec00508dcfc23af4727ba14333) C:\WINDOWS\system32\Ati2evxx.exe

23:26:28.0671 6084 Ati HotKey Poller - ok

23:26:28.0875 6084 ati2mtag (caadf7aa3abc6afcb3d02b129de9863a) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys

23:26:29.0015 6084 ati2mtag - ok

23:26:29.0125 6084 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

23:26:29.0156 6084 Atmarpc - ok

23:26:29.0234 6084 AudioSrv (f10745ed3195360e69aa4a6e7768c0e0) C:\WINDOWS\System32\audiosrv.dll

23:26:29.0234 6084 AudioSrv - ok

23:26:29.0281 6084 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

23:26:29.0281 6084 audstub - ok

23:26:29.0437 6084 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

23:26:29.0437 6084 avast! Antivirus - ok

23:26:29.0546 6084 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

23:26:29.0546 6084 Beep - ok

23:26:29.0593 6084 BITS (5c0073a51c4873430fa8b262e92183ff) C:\WINDOWS\system32\qmgr.dll

23:26:29.0609 6084 BITS - ok

23:26:29.0703 6084 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe

23:26:29.0718 6084 Bonjour Service - ok

23:26:29.0750 6084 Browser (69eaa7501f53a40e8c04c69f2391224f) C:\WINDOWS\System32\browser.dll

23:26:29.0750 6084 Browser - ok

23:26:29.0781 6084 CachemanService (d86ccdb5759bdc61a49e96df425573ed) C:\Program Files\Cacheman\CachemanServ.exe

23:26:29.0781 6084 CachemanService - ok

23:26:29.0796 6084 catchme - ok

23:26:29.0906 6084 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

23:26:29.0937 6084 cbidf2k - ok

23:26:30.0015 6084 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

23:26:30.0046 6084 CCDECODE - ok

23:26:30.0046 6084 cd20xrnt - ok

23:26:30.0078 6084 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

23:26:30.0078 6084 Cdaudio - ok

23:26:30.0093 6084 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

23:26:30.0093 6084 Cdfs - ok

23:26:30.0171 6084 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

23:26:30.0218 6084 Cdrom - ok

23:26:30.0218 6084 Changer - ok

23:26:30.0250 6084 cisvc (bd85400700b80fbe3d4a3412bce74861) C:\WINDOWS\system32\cisvc.exe

23:26:30.0250 6084 cisvc - ok

23:26:30.0265 6084 ClipSrv (4fb6108130829666c8fe96b442fead94) C:\WINDOWS\system32\clipsrv.exe

23:26:30.0265 6084 ClipSrv - ok

23:26:30.0500 6084 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

23:26:30.0546 6084 clr_optimization_v2.0.50727_32 - ok

23:26:30.0625 6084 CmdIde - ok

23:26:30.0625 6084 COMSysApp - ok

23:26:30.0640 6084 Cpqarray - ok

23:26:30.0671 6084 CryptSvc (0a9cf5d3cf63a8699f28c814ef821c7e) C:\WINDOWS\System32\cryptsvc.dll

23:26:30.0687 6084 CryptSvc - ok

23:26:30.0687 6084 dac2w2k - ok

23:26:30.0703 6084 dac960nt - ok

23:26:30.0750 6084 DcomLaunch (d9883335cc1c17afc3a09c8ac3e4dbe4) C:\WINDOWS\system32\rpcss.dll

23:26:30.0750 6084 DcomLaunch - ok

23:26:30.0843 6084 Dhcp (146ab038f5dbb366122d28444999ab2c) C:\WINDOWS\System32\dhcpcsvc.dll

23:26:30.0843 6084 Dhcp - ok

23:26:30.0875 6084 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

23:26:30.0890 6084 Disk - ok

23:26:30.0921 6084 dmadmin - ok

23:26:30.0968 6084 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys

23:26:30.0984 6084 dmboot - ok

23:26:31.0000 6084 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\DRIVERS\dmio.sys

23:26:31.0000 6084 dmio - ok

23:26:31.0015 6084 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

23:26:31.0015 6084 dmload - ok

23:26:31.0046 6084 dmserver (127db74184e2d3d31655da525a5efde1) C:\WINDOWS\System32\dmserver.dll

23:26:31.0046 6084 dmserver - ok

23:26:31.0140 6084 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

23:26:31.0140 6084 DMusic - ok

23:26:31.0203 6084 Dnscache (de6cdb6cbc5c27b9085cfa6dfe8e5025) C:\WINDOWS\System32\dnsrslvr.dll

23:26:31.0218 6084 Dnscache - ok

23:26:31.0265 6084 Dot3svc (90ee765e1a598b578852901f74f914f1) C:\WINDOWS\System32\dot3svc.dll

23:26:31.0265 6084 Dot3svc - ok

23:26:31.0312 6084 dpti2o - ok

23:26:31.0328 6084 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

23:26:31.0328 6084 drmkaud - ok

23:26:31.0343 6084 EagleXNt - ok

23:26:31.0375 6084 EapHost (e6bbdebf7081899d161c773e8d84d015) C:\WINDOWS\System32\eapsvc.dll

23:26:31.0375 6084 EapHost - ok

23:26:31.0421 6084 ERSvc (2f5c7f650b7af178988946ee4b0d9c01) C:\WINDOWS\System32\ersvc.dll

23:26:31.0421 6084 ERSvc - ok

23:26:31.0468 6084 Eventlog (657b69389b893f440b07590c9e963f23) C:\WINDOWS\system32\services.exe

23:26:31.0468 6084 Eventlog - ok

23:26:31.0562 6084 EventSystem (97912dc0679d2da60cce589bbc196d72) C:\WINDOWS\system32\es.dll

23:26:31.0562 6084 EventSystem - ok

23:26:31.0625 6084 Fabs - ok

23:26:31.0671 6084 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

23:26:31.0687 6084 Fastfat - ok

23:26:31.0750 6084 FastUserSwitchingCompatibility (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll

23:26:31.0750 6084 FastUserSwitchingCompatibility - ok

23:26:31.0796 6084 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys

23:26:31.0796 6084 Fdc - ok

23:26:31.0843 6084 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys

23:26:31.0843 6084 Fips - ok

23:26:31.0937 6084 FirebirdServerMAGIXInstance (fff1130f7c9fa01d093a1edfc5cce8fc) C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe

23:26:32.0046 6084 FirebirdServerMAGIXInstance - ok

23:26:32.0156 6084 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys

23:26:32.0156 6084 Flpydisk - ok

23:26:32.0250 6084 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys

23:26:32.0250 6084 FltMgr - ok

23:26:32.0375 6084 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

23:26:32.0375 6084 FontCache3.0.0.0 - ok

23:26:32.0406 6084 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys

23:26:32.0406 6084 fssfltr - ok

23:26:32.0500 6084 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files\Windows Live\Family Safety\fsssvc.exe

23:26:32.0562 6084 fsssvc - ok

23:26:32.0656 6084 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

23:26:32.0656 6084 Fs_Rec - ok

23:26:32.0687 6084 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

23:26:32.0687 6084 Ftdisk - ok

23:26:32.0718 6084 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

23:26:32.0718 6084 GEARAspiWDM - ok

23:26:32.0734 6084 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

23:26:32.0734 6084 Gpc - ok

23:26:32.0828 6084 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe

23:26:32.0828 6084 gupdate - ok

23:26:32.0828 6084 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe

23:26:32.0843 6084 gupdatem - ok

23:26:32.0953 6084 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

23:26:32.0953 6084 HDAudBus - ok

23:26:33.0062 6084 helpsvc (5327bad9b35c33d2a64b64e4cf282ecd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

23:26:33.0062 6084 helpsvc - ok

23:26:33.0093 6084 HidServ (10003105aab8d5a7db51a9cb3d9f55a3) C:\WINDOWS\System32\hidserv.dll

23:26:33.0109 6084 HidServ - ok

23:26:33.0140 6084 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

23:26:33.0156 6084 HidUsb - ok

23:26:33.0265 6084 hkmsvc (1ff903ffa2da1704e5a5443d37d8e49e) C:\WINDOWS\System32\kmsvc.dll

23:26:33.0281 6084 hkmsvc - ok

23:26:33.0343 6084 hpn - ok

23:26:33.0484 6084 hpt3xx - ok

23:26:33.0656 6084 htcnprot (04e3b3554076b8192a668efe88a682a1) C:\WINDOWS\system32\DRIVERS\htcnprot.sys

23:26:33.0671 6084 htcnprot - ok

23:26:34.0031 6084 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

23:26:34.0062 6084 HTTP - ok

23:26:34.0234 6084 HTTPFilter (2529c7ba05242beed0027f554d0513bb) C:\WINDOWS\System32\w3ssl.dll

23:26:34.0234 6084 HTTPFilter - ok

23:26:34.0281 6084 i2omgmt - ok

23:26:34.0281 6084 i2omp - ok

23:26:34.0328 6084 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

23:26:34.0375 6084 i8042prt - ok

23:26:34.0484 6084 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

23:26:34.0484 6084 IDriverT - ok

23:26:34.0734 6084 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

23:26:34.0765 6084 idsvc - ok

23:26:34.0859 6084 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

23:26:34.0890 6084 Imapi - ok

23:26:34.0953 6084 ImapiService (a117772f94c854de5d1bbc1f1962b192) C:\WINDOWS\system32\imapi.exe

23:26:34.0953 6084 ImapiService - ok

23:26:34.0984 6084 ini910u - ok

23:26:35.0140 6084 IntcAzAudAddService (98b7fab86755a42fe8eb04538a4cd6c8) C:\WINDOWS\system32\drivers\RtkHDAud.sys

23:26:35.0203 6084 IntcAzAudAddService - ok

23:26:35.0328 6084 IntelIde - ok

23:26:35.0421 6084 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys

23:26:35.0421 6084 intelppm - ok

23:26:35.0437 6084 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys

23:26:35.0437 6084 Ip6Fw - ok

23:26:35.0453 6084 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

23:26:35.0453 6084 IpFilterDriver - ok

23:26:35.0468 6084 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

23:26:35.0468 6084 IpInIp - ok

23:26:35.0500 6084 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

23:26:35.0515 6084 IpNat - ok

23:26:35.0578 6084 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe

23:26:35.0593 6084 iPod Service - ok

23:26:35.0703 6084 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

23:26:35.0703 6084 IPSec - ok

23:26:35.0781 6084 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

23:26:35.0796 6084 IRENUM - ok

23:26:35.0828 6084 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys

23:26:35.0859 6084 isapnp - ok

23:26:36.0125 6084 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe

23:26:36.0125 6084 JavaQuickStarterService - ok

23:26:36.0359 6084 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

23:26:36.0359 6084 Kbdclass - ok

23:26:36.0406 6084 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

23:26:36.0421 6084 kmixer - ok

23:26:36.0468 6084 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

23:26:36.0468 6084 KSecDD - ok

23:26:36.0546 6084 LanmanWorkstation (a936a575eaf6dce8dc08bc0c53972add) C:\WINDOWS\System32\wkssvc.dll

23:26:36.0546 6084 LanmanWorkstation - ok

23:26:36.0593 6084 lbrtfdc - ok

23:26:36.0640 6084 LmHosts (91ae20c5c2776c511994aa1308c05283) C:\WINDOWS\System32\lmhsvc.dll

23:26:36.0640 6084 LmHosts - ok

23:26:36.0671 6084 mcdbus - ok

23:26:36.0687 6084 Messenger (c56a45a03dca11712de9fdf98224230b) C:\WINDOWS\System32\msgsvc.dll

23:26:36.0687 6084 Messenger - ok

23:26:36.0703 6084 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

23:26:36.0703 6084 mnmdd - ok

23:26:36.0734 6084 mnmsrvc (9468f9f10da27aad64108182ab5c2f29) C:\WINDOWS\System32\mnmsrvc.exe

23:26:36.0734 6084 mnmsrvc - ok

23:26:36.0765 6084 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys

23:26:36.0781 6084 Modem - ok

23:26:36.0890 6084 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys

23:26:36.0890 6084 Mouclass - ok

23:26:36.0937 6084 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys

23:26:36.0937 6084 mouhid - ok

23:26:36.0984 6084 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

23:26:36.0984 6084 MountMgr - ok

23:26:36.0984 6084 mraid35x - ok

23:26:37.0031 6084 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

23:26:37.0046 6084 MRxDAV - ok

23:26:37.0093 6084 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

23:26:37.0109 6084 MRxSmb - ok

23:26:37.0187 6084 MSDTC (21ea21984d7d1ad50db2e627020ab14c) C:\WINDOWS\System32\msdtc.exe

23:26:37.0187 6084 MSDTC - ok

23:26:37.0265 6084 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

23:26:37.0265 6084 Msfs - ok

23:26:37.0281 6084 MSIServer - ok

23:26:37.0312 6084 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

23:26:37.0312 6084 MSKSSRV - ok

23:26:37.0343 6084 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

23:26:37.0343 6084 MSPCLOCK - ok

23:26:37.0375 6084 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

23:26:37.0375 6084 MSPQM - ok

23:26:37.0593 6084 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

23:26:37.0593 6084 mssmbios - ok

23:26:37.0750 6084 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys

23:26:37.0765 6084 MSTEE - ok

23:26:38.0000 6084 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

23:26:38.0015 6084 Mup - ok

23:26:38.0234 6084 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

23:26:38.0250 6084 NABTSFEC - ok

23:26:38.0375 6084 napagent (87e394c810794d3c70cf22e8316cb23e) C:\WINDOWS\System32\qagentrt.dll

23:26:38.0406 6084 napagent - ok

23:26:38.0453 6084 NAUpdate - ok

23:26:38.0671 6084 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

23:26:38.0671 6084 NDIS - ok

23:26:38.0703 6084 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys

23:26:38.0703 6084 NdisIP - ok

23:26:38.0734 6084 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

23:26:38.0734 6084 NdisTapi - ok

23:26:38.0781 6084 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

23:26:38.0781 6084 Ndisuio - ok

23:26:38.0812 6084 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

23:26:38.0812 6084 NdisWan - ok

23:26:38.0906 6084 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

23:26:38.0906 6084 NDProxy - ok

23:26:39.0093 6084 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

23:26:39.0093 6084 NetBIOS - ok

23:26:39.0171 6084 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

23:26:39.0171 6084 NetBT - ok

23:26:39.0218 6084 NetDDE (dc6bae085e9b3c2f3a963ed46791feab) C:\WINDOWS\system32\netdde.exe

23:26:39.0218 6084 NetDDE - ok

23:26:39.0234 6084 NetDDEdsdm (dc6bae085e9b3c2f3a963ed46791feab) C:\WINDOWS\system32\netdde.exe

23:26:39.0234 6084 NetDDEdsdm - ok

23:26:39.0296 6084 Netlogon (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe

23:26:39.0296 6084 Netlogon - ok

23:26:39.0359 6084 Netman (5431fb616ecae0d587c5b97d0b86cbd8) C:\WINDOWS\System32\netman.dll

23:26:39.0359 6084 Netman - ok

23:26:39.0453 6084 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

23:26:39.0453 6084 NetTcpPortSharing - ok

23:26:39.0531 6084 Nla (4522cbe00a9e9eee36aa82ed4b319148) C:\WINDOWS\System32\mswsock.dll

23:26:39.0531 6084 Nla - ok

23:26:39.0578 6084 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

23:26:39.0578 6084 Npfs - ok

23:26:39.0609 6084 npggsvc - ok

23:26:39.0640 6084 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

23:26:39.0640 6084 Ntfs - ok

23:26:39.0671 6084 NtLmSsp (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe

23:26:39.0671 6084 NtLmSsp - ok

23:26:39.0734 6084 NtmsSvc (ac1a78237b53044735693633f8235468) C:\WINDOWS\system32\ntmssvc.dll

23:26:39.0734 6084 NtmsSvc - ok

23:26:39.0765 6084 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

23:26:39.0765 6084 Null - ok

23:26:39.0812 6084 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

23:26:39.0828 6084 NwlnkFlt - ok

23:26:39.0875 6084 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

23:26:39.0875 6084 NwlnkFwd - ok

23:26:40.0140 6084 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

23:26:40.0156 6084 odserv - ok

23:26:40.0203 6084 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

23:26:40.0203 6084 ose - ok

23:26:40.0468 6084 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\DRIVERS\parport.sys

23:26:40.0500 6084 Parport - ok

23:26:40.0578 6084 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

23:26:40.0578 6084 PartMgr - ok

23:26:40.0640 6084 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys

23:26:40.0640 6084 ParVdm - ok

23:26:40.0765 6084 PassThru Service (68139940b5ac84affb7eb1b713be66e7) C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

23:26:40.0906 6084 PassThru Service - ok

23:26:41.0125 6084 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys

23:26:41.0171 6084 PCI - ok

23:26:41.0203 6084 PCIDump - ok

23:26:41.0234 6084 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys

23:26:41.0234 6084 PCIIde - ok

23:26:41.0265 6084 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys

23:26:41.0265 6084 Pcmcia - ok

23:26:41.0437 6084 PCToolsSSDMonitorSvc (e6e503845208a148a9e3e7faa63b97a4) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe

23:26:41.0453 6084 PCToolsSSDMonitorSvc - ok

23:26:41.0515 6084 PDCOMP - ok

23:26:41.0515 6084 PDFRAME - ok

23:26:41.0531 6084 PDRELI - ok

23:26:41.0546 6084 PDRFRAME - ok

23:26:41.0546 6084 perc2 - ok

23:26:41.0562 6084 perc2hib - ok

23:26:41.0578 6084 pktpra1.sys - ok

23:26:41.0625 6084 PlugPlay (657b69389b893f440b07590c9e963f23) C:\WINDOWS\system32\services.exe

23:26:41.0625 6084 PlugPlay - ok

23:26:41.0625 6084 PolicyAgent (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe

23:26:41.0640 6084 PolicyAgent - ok

23:26:41.0656 6084 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

23:26:41.0656 6084 PptpMiniport - ok

23:26:41.0703 6084 Processor (82a17eca34d801590a67c0a2244965ed) C:\WINDOWS\system32\DRIVERS\processr.sys

23:26:41.0703 6084 Processor - ok

23:26:41.0703 6084 ProtectedStorage (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe

23:26:41.0703 6084 ProtectedStorage - ok

23:26:41.0734 6084 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

23:26:41.0734 6084 PSched - ok

23:26:41.0765 6084 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys

23:26:41.0765 6084 PSI - ok

23:26:41.0921 6084 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

23:26:41.0921 6084 Ptilink - ok

23:26:41.0937 6084 ql1080 - ok

23:26:41.0953 6084 Ql10wnt - ok

23:26:41.0953 6084 ql12160 - ok

23:26:41.0968 6084 ql1240 - ok

23:26:41.0984 6084 ql1280 - ok

23:26:42.0015 6084 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

23:26:42.0015 6084 RasAcd - ok

23:26:42.0046 6084 RasAuto (0575d034b1292ca3a9bb9f67a8ee289c) C:\WINDOWS\System32\rasauto.dll

23:26:42.0046 6084 RasAuto - ok

23:26:42.0078 6084 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

23:26:42.0078 6084 Rasl2tp - ok

23:26:42.0109 6084 RasMan (9e7e2df6971a5f00102be3f901cc3bdc) C:\WINDOWS\System32\rasmans.dll

23:26:42.0109 6084 RasMan - ok

23:26:42.0140 6084 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

23:26:42.0140 6084 RasPppoe - ok

23:26:42.0187 6084 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

23:26:42.0203 6084 Raspti - ok

23:26:42.0265 6084 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

23:26:42.0265 6084 Rdbss - ok

23:26:42.0281 6084 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

23:26:42.0281 6084 RDPCDD - ok

23:26:42.0328 6084 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

23:26:42.0343 6084 rdpdr - ok

23:26:42.0406 6084 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys

23:26:42.0406 6084 RDPWD - ok

23:26:42.0453 6084 RDSessMgr (ea9fdf71d696b532bdc44c8bff03a737) C:\WINDOWS\system32\sessmgr.exe

23:26:42.0468 6084 RDSessMgr - ok

23:26:42.0484 6084 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys

23:26:42.0500 6084 redbook - ok

23:26:42.0515 6084 RemoteAccess (4007abf5d9bf0e55451d775443d1f985) C:\WINDOWS\System32\mprdim.dll

23:26:42.0531 6084 RemoteAccess - ok

23:26:42.0593 6084 RemoteRegistry (2fd5b89bf9289c774c5c730dea96cd91) C:\WINDOWS\system32\regsvc.dll

23:26:42.0593 6084 RemoteRegistry - ok

23:26:42.0640 6084 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys

23:26:42.0640 6084 RimUsb - ok

23:26:42.0703 6084 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys

23:26:42.0703 6084 RimVSerPort - ok

23:26:42.0734 6084 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys

23:26:42.0734 6084 ROOTMODEM - ok

23:26:42.0765 6084 RpcLocator (be078f8f7ec2491efdd79a53353a060f) C:\WINDOWS\system32\locator.exe

23:26:42.0765 6084 RpcLocator - ok

23:26:42.0843 6084 RpcSs (d9883335cc1c17afc3a09c8ac3e4dbe4) C:\WINDOWS\System32\rpcss.dll

23:26:42.0859 6084 RpcSs - ok

23:26:42.0953 6084 RSVP (ad1b5f1b99fff08c99f443d784711a81) C:\WINDOWS\system32\rsvp.exe

23:26:42.0953 6084 RSVP - ok

23:26:43.0000 6084 SamSs (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe

23:26:43.0015 6084 SamSs - ok

23:26:43.0046 6084 SCardDrv (392fab18bdb3532d349063c62f514270) C:\WINDOWS\System32\SCardSvr.exe

23:26:43.0046 6084 SCardDrv - ok

23:26:43.0062 6084 SCardSvr (392fab18bdb3532d349063c62f514270) C:\WINDOWS\System32\SCardSvr.exe

23:26:43.0062 6084 SCardSvr - ok

23:26:43.0140 6084 Schedule (7c288ae0f75cb18cff1df6179a67ad8f) C:\WINDOWS\system32\schedsvc.dll

23:26:43.0156 6084 Schedule - ok

23:26:43.0218 6084 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

23:26:43.0218 6084 Secdrv - ok

23:26:43.0296 6084 seclogon (6983665bea867125b1da5757cd8b2f9d) C:\WINDOWS\System32\seclogon.dll

23:26:43.0343 6084 seclogon - ok

23:26:43.0500 6084 Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files\Secunia\PSI\PSIA.exe

23:26:43.0515 6084 Secunia PSI Agent - ok

23:26:43.0625 6084 SENS (f6ec8f1e50e40237bddee1cb7fe20b42) C:\WINDOWS\system32\sens.dll

23:26:43.0625 6084 SENS - ok

23:26:43.0687 6084 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys

23:26:43.0687 6084 serenum - ok

23:26:43.0687 6084 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\DRIVERS\serial.sys

23:26:43.0687 6084 Serial - ok

23:26:43.0734 6084 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

23:26:43.0734 6084 Sfloppy - ok

23:26:43.0781 6084 SharedAccess (7579c4be909d47f10f3d8d801cb13ed9) C:\WINDOWS\System32\ipnathlp.dll

23:26:43.0796 6084 SharedAccess - ok

23:26:43.0843 6084 ShellHWDetection (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll

23:26:43.0859 6084 ShellHWDetection - ok

23:26:43.0859 6084 Simbad - ok

23:26:43.0890 6084 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys

23:26:43.0890 6084 SLIP - ok

23:26:43.0968 6084 SmartDefragDriver (14bb60a4f1c5291217a05d5728c403e6) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys

23:26:44.0015 6084 SmartDefragDriver - ok

23:26:44.0093 6084 Sparrow - ok

23:26:44.0140 6084 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

23:26:44.0156 6084 splitter - ok

23:26:44.0187 6084 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe

23:26:44.0187 6084 Spooler - ok

23:26:44.0250 6084 sptd (8ea0fd60a5b047e0c734d51aace531c9) C:\WINDOWS\System32\Drivers\sptd.sys

23:26:44.0250 6084 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 8ea0fd60a5b047e0c734d51aace531c9

23:26:44.0250 6084 sptd ( LockedFile.Multi.Generic ) - warning

23:26:44.0250 6084 sptd - detected LockedFile.Multi.Generic (1)

23:26:44.0281 6084 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys

23:26:44.0281 6084 sr - ok

23:26:44.0421 6084 srservice (81cbf363c414620caa61bd6843d8fdb9) C:\WINDOWS\system32\srsvc.dll

23:26:44.0437 6084 srservice - ok

23:26:44.0484 6084 SSDPSRV (5b9d0de64be96a806819516440fd211c) C:\WINDOWS\System32\ssdpsrv.dll

23:26:44.0484 6084 SSDPSRV - ok

23:26:44.0546 6084 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

23:26:44.0546 6084 StarWindServiceAE - ok

23:26:44.0593 6084 stisvc (5ae996186d2dc694fef88f14a3fc9242) C:\WINDOWS\system32\wiaservc.dll

23:26:44.0609 6084 stisvc - ok

23:26:44.0703 6084 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys

23:26:44.0703 6084 streamip - ok

23:26:44.0734 6084 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

23:26:44.0750 6084 swenum - ok

23:26:44.0781 6084 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

23:26:44.0781 6084 swmidi - ok

23:26:44.0796 6084 SwPrv - ok

23:26:44.0796 6084 symc810 - ok

23:26:44.0968 6084 symc8xx - ok

23:26:45.0062 6084 sym_hi - ok

23:26:45.0156 6084 sym_u3 - ok

23:26:45.0187 6084 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

23:26:45.0187 6084 sysaudio - ok

23:26:45.0234 6084 SysmonLog (251eae7c56c6ab9490311a3c9757e18d) C:\WINDOWS\system32\smlogsvc.exe

23:26:45.0234 6084 SysmonLog - ok

23:26:45.0296 6084 TapiSrv (2bc9fb448f0c2394ff53c83a7bb04731) C:\WINDOWS\System32\tapisrv.dll

23:26:45.0343 6084 TapiSrv - ok

23:26:45.0546 6084 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

23:26:45.0546 6084 Tcpip - ok

23:26:45.0578 6084 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

23:26:45.0578 6084 TDPIPE - ok

23:26:45.0609 6084 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

23:26:45.0609 6084 TDTCP - ok

23:26:45.0656 6084 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

23:26:45.0656 6084 TermDD - ok

23:26:45.0703 6084 TermService (e0aef86a594c9990d6321c5ca239c5b7) C:\WINDOWS\System32\termsrv.dll

23:26:45.0718 6084 TermService - ok

23:26:45.0796 6084 Themes (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll

23:26:45.0812 6084 Themes - ok

23:26:45.0984 6084 TlntSvr (2d357c84f399dc78fca9f03d5db85d24) C:\WINDOWS\System32\tlntsvr.exe

23:26:45.0984 6084 TlntSvr - ok

23:26:46.0046 6084 TosIde - ok

23:26:46.0078 6084 TrkWks (20655e8ca1c78bc7088b18e93806d21b) C:\WINDOWS\system32\trkwks.dll

23:26:46.0093 6084 TrkWks - ok

23:26:46.0156 6084 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

23:26:46.0156 6084 Udfs - ok

23:26:46.0171 6084 ultra - ok

23:26:46.0296 6084 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

23:26:46.0312 6084 Update - ok

23:26:46.0343 6084 upnphost (01653d6c9604f1fb31a76ec94e08954f) C:\WINDOWS\System32\upnphost.dll

23:26:46.0359 6084 upnphost - ok

23:26:46.0390 6084 UPS (a89796dd0de24cf03b3a39407e1f46a3) C:\WINDOWS\System32\ups.exe

23:26:46.0390 6084 UPS - ok

23:26:46.0453 6084 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\WINDOWS\system32\Drivers\usbaapl.sys

23:26:46.0453 6084 USBAAPL - ok

23:26:46.0484 6084 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys

23:26:46.0515 6084 usbaudio - ok

23:26:46.0578 6084 usbbus (9419faac6552a51542dbba02971c841c) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys

23:26:46.0578 6084 usbbus - ok

23:26:46.0625 6084 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

23:26:46.0625 6084 usbccgp - ok

23:26:46.0671 6084 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys

23:26:46.0671 6084 UsbDiag - ok

23:26:46.0703 6084 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

23:26:46.0703 6084 usbehci - ok

23:26:46.0718 6084 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

23:26:46.0734 6084 usbhub - ok

23:26:47.0031 6084 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys

23:26:47.0046 6084 USBModem - ok

23:26:47.0203 6084 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

23:26:47.0234 6084 usbscan - ok

23:26:47.0468 6084 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

23:26:47.0515 6084 USBSTOR - ok

23:26:47.0906 6084 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

23:26:47.0906 6084 usbuhci - ok

23:26:47.0937 6084 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys

23:26:47.0937 6084 usbvideo - ok

23:26:47.0984 6084 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys

23:26:48.0015 6084 usb_rndisx - ok

23:26:48.0078 6084 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

23:26:48.0078 6084 VgaSave - ok

23:26:48.0125 6084 ViaIde - ok

23:26:48.0171 6084 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys

23:26:48.0171 6084 VolSnap - ok

23:26:48.0218 6084 VSS (a585edd6965b301de8a45c6768c7c215) C:\WINDOWS\System32\vssvc.exe

23:26:48.0234 6084 VSS - ok

23:26:48.0296 6084 W32Time (390d8e65f362327ad510b08971478301) C:\WINDOWS\system32\w32time.dll

23:26:48.0296 6084 W32Time - ok

23:26:48.0343 6084 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

23:26:48.0343 6084 Wanarp - ok

23:26:48.0390 6084 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys

23:26:48.0390 6084 wceusbsh - ok

23:26:48.0437 6084 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys

23:26:48.0437 6084 Wdf01000 - ok

23:26:48.0484 6084 WDICA - ok

23:26:48.0515 6084 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

23:26:48.0515 6084 wdmaud - ok

23:26:48.0578 6084 WebClient (33d8e2812054d97a0aec9b8f04277927) C:\WINDOWS\System32\webclnt.dll

23:26:48.0578 6084 WebClient - ok

23:26:48.0609 6084 winmgmt (f9e105f369c18e4001e0c05aaf600d73) C:\WINDOWS\system32\wbem\WMIsvc.dll

23:26:48.0625 6084 winmgmt - ok

23:26:48.0687 6084 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll

23:26:48.0734 6084 WmdmPmSN - ok

23:26:48.0843 6084 Wmi (93f8eb8c7cd4e325ec92edbfc545103d) C:\WINDOWS\System32\advapi32.dll

23:26:48.0859 6084 Wmi - ok

23:26:48.0953 6084 WmiApSrv (87f11d161207c7063edabac0aadc33c3) C:\WINDOWS\system32\wbem\wmiapsrv.exe

23:26:48.0953 6084 WmiApSrv - ok

23:26:49.0109 6084 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe

23:26:49.0281 6084 WMPNetworkSvc - ok

23:26:49.0375 6084 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys

23:26:49.0375 6084 WS2IFSL - ok

23:26:49.0406 6084 wscsvc (843f7fa8ea38e6a4262976dcc994c81a) C:\WINDOWS\system32\wscsvc.dll

23:26:49.0421 6084 wscsvc - ok

23:26:49.0453 6084 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

23:26:49.0453 6084 WSTCODEC - ok

23:26:49.0468 6084 wuauserv (1e8fdddef3fe260badab06dae10d753a) C:\WINDOWS\system32\wuauserv.dll

23:26:49.0484 6084 wuauserv - ok

23:26:49.0515 6084 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

23:26:49.0515 6084 WudfPf - ok

23:26:49.0531 6084 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

23:26:49.0546 6084 WudfRd - ok

23:26:49.0578 6084 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll

23:26:49.0578 6084 WudfSvc - ok

23:26:49.0703 6084 WZCSVC (e99782dbb8ffa2aee72b31dac8d8d887) C:\WINDOWS\System32\wzcsvc.dll

23:26:49.0718 6084 WZCSVC - ok

23:26:49.0812 6084 xmlprov (fd3c38635808920f8235bf2fed642f54) C:\WINDOWS\System32\xmlprov.dll

23:26:49.0828 6084 xmlprov - ok

23:26:49.0875 6084 xpsec - ok

23:26:49.0968 6084 yukonwxp (ae9573e9563771c7f2f333e728fe7e76) C:\WINDOWS\system32\DRIVERS\yk51x86.sys

23:26:49.0984 6084 yukonwxp - ok

23:26:50.0015 6084 MBR (0x1B8) (3051207086651214e435112e51817dc5) \Device\Harddisk0\DR0

23:26:50.0031 6084 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected

23:26:50.0031 6084 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)

23:26:50.0031 6084 Boot (0x1200) (45d8a0654722d0cc56dce1606d83e2c6) \Device\Harddisk0\DR0\Partition0

23:26:50.0031 6084 \Device\Harddisk0\DR0\Partition0 - ok

23:26:50.0031 6084 ============================================================

23:26:50.0031 6084 Scan finished

23:26:50.0031 6084 ============================================================

23:26:50.0046 1240 Detected object count: 2

23:26:50.0046 1240 Actual detected object count: 2

23:27:59.0859 1240 C:\WINDOWS\System32\Drivers\sptd.sys - copied to quarantine

23:28:00.0546 1240 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot

23:28:00.0546 1240 HKLM\SYSTEM\ControlSet003\services\sptd - will be deleted on reboot

23:28:00.0562 1240 C:\WINDOWS\System32\Drivers\sptd.sys - will be deleted on reboot

23:28:00.0562 1240 sptd ( LockedFile.Multi.Generic ) - User select action: Delete

23:28:02.0625 1240 \Device\Harddisk0\DR0\# - copied to quarantine

23:28:02.0625 1240 \Device\Harddisk0\DR0 - copied to quarantine

23:28:02.0687 1240 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot

23:28:02.0750 1240 \Device\Harddisk0\DR0 - ok

23:28:02.0750 1240 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.