Het is nu vr jul 25, 2014 8:47 am

Forumoverzicht » RSIT/DDS/HijackThis logfiles » Opgeloste RSIT/DDS/HijackThis logfiles




Dit onderwerp is gesloten, je kunt geen berichten wijzigen of nieuwe antwoorden plaatsen  [ 26 berichten ]  Ga naar pagina 1, 2  Volgende
Auteur Bericht
BerichtGeplaatst: di dec 04, 2012 4:23 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
De laatste tijd heb ik grote problemen met mijn pc.


De belangrijkste elementen van het systeem:
Windows Vista Home Premium SP2 32 Bit
Intel Core 2 Quad Q9550 @2,83GHz
4GB Werkgeheugen
Geluidskaart: M-Audio Delta 1010LT (professionele studiogeluidskaart
Videokaart: AMD Radeon HD 6570 met hierop aangesloten 2 LG Beeldschermen @ 1680x1050 resolutie
Harddrive: 1TB Samsung HD103UJ ATA verdeelt over 3 partities, te weten:
C: partitie van 150 (windows geeft aan: 146 GB) met de bovenstaand Vista OS
B: partitie van 300 GB (windows geeft aan: 296 GB) met een 64-bits Windows 7 OS installatie (gebruik ZONDER internet aansluiting, uitsluitend voor gebruik van audio en visuele software)
A: partitie voor bestanden en software van 500 GB (windows geeft aan: 488 GB)


Een opsomming van de problemen:

- Net na het opstarten van Vista bevriest het beeld en moet ik handmatig rebooten.
- Blue screens
- Vastlopen van het systeem (scherm weergeeft eerst een wirwar van strepen en kleuren, daarna volgt automatisch rebooten) terwijl deze daarvoor uren prima heeft gewerkt.


Tot nu toe veel onnodige software verwijdert, volledige scan met MalwareBytes (nul bedreigingen gevonden (echt niks (!)),
AVG Virusscan vind niks. Verder gebruik ik een Registry Cleaner Tool (CCleaner).
Voor de rest:
- PC stofvrij gemaakt
- Onnodige software verwijdert
- Schijfopruiming gedaan
- alle andere stappen die op het hijackthis -forum aangegeven staan voordat je wat post...

Ik heb wel een vermoeden dat het probleem hardwarematig is, maar ik weet het niet zeker, vandaar deze post.

Overigens, nadat ik de power-knop ingedrukt heb gehouden bij een handmatige reboot wil het systeem soms helemaal niet meer opstarten
(geen welbekende opstartpiep van het moederboard).



Grt,

Erwin






GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-12-04 14:52:53
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3 SAMSUNG_HD103UJ rev.1AA01118
Running: gmer.exe; Driver: C:\Users\GEBRUI~1\AppData\Local\Temp\fwnyypod.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwNotifyChangeKey [0x921A014A]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwNotifyChangeMultipleKeys [0x921A021A]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwOpenProcess [0x9219FD7C]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwSuspendProcess [0x9219FF6A]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwSuspendThread [0x921A0000]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateProcess [0x9219FE32]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateThread [0x9219FECE]
SSDT \SystemRoot\system32\DRIVERS\avgidsshimx.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwWriteVirtualMemory [0x921A009C]

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!KeSetEvent + 3BD 830FBA80 8 Bytes [4A, 01, 1A, 92, 1A, 02, 1A, ...]
.text ntkrnlpa.exe!KeSetEvent + 3F1 830FBAB4 4 Bytes [7C, FD, 19, 92]
.text ntkrnlpa.exe!KeSetEvent + 611 830FBCD4 8 Bytes [6A, FF, 19, 92, 00, 00, 1A, ...] {PUSH -0x1; SBB [EDX-0x6de60000], EDX}
.text ntkrnlpa.exe!KeSetEvent + 621 830FBCE4 8 Bytes [32, FE, 19, 92, CE, FE, 19, ...] {XOR BH, DH; SBB [EDX-0x6de60132], EDX}
.text ntkrnlpa.exe!KeSetEvent + 681 830FBD44 4 Bytes [9C, 00, 1A, 92] {PUSHF ; ADD [EDX], BL; XCHG EDX, EAX}
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x9160D000, 0x130E98, 0xE8000020]
.text C:\Windows\system32\DRIVERS\atksgt.sys section is writeable [0xA108B300, 0x3ACC8, 0xE8000020]
.text C:\Windows\system32\DRIVERS\lirsgt.sys section is writeable [0xA10D9300, 0x1B7E, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, 08, 76, 00] {SUB [EAX], CL; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, 0B, 76, 00] {SUB [EBX], CL; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, 08, 76, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, 09, 76, 00] {TEST AL, 0x9; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, 0A, 76, 00] {TEST AL, 0xa; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, 09, 76, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, 0A, 76, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, 08, 76, 00] {TEST AL, 0x8; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, 09, 76, 00] {SUB [ECX], CL; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, 0A, 76, 00] {SUB [EDX], CL; JBE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, 0B, 76, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[3508] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, F0, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, F3, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, F0, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, F1, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, F2, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, F1, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, F2, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, F0, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, F1, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, F2, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, F3, AB, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5028] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, 8C, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, 8F, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, 8C, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, 8D, 79, 00] {TEST AL, 0x8d; JNS 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, 8E, 79, 00] {TEST AL, 0x8e; JNS 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, 8D, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, 8E, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, 8C, 79, 00] {TEST AL, 0x8c; JNS 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, 8D, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, 8E, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, 8F, 79, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5116] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, AC, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, AF, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, AC, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, AD, 7D, 00] {TEST AL, 0xad; JGE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, AE, 7D, 00] {TEST AL, 0xae; JGE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, AD, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, AE, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, AC, 7D, 00] {TEST AL, 0xac; JGE 0x4}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, AD, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, AE, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, AF, 7D, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5712] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, 6C, 80, 00] {SUB [EAX+EAX*4+0x0], CH}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, 6F, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, 6C, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, 6D, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, 6E, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, 6D, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, 6E, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, 6C, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, 6D, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, 6E, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, 6F, 80, 00]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5848] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtCreateFile + 6 776B424A 4 Bytes [28, C4, 01, 01] {SUB AH, AL; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtCreateFile + B 776B424F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtMapViewOfSection + 6 776B499A 4 Bytes [28, C7, 01, 01] {SUB BH, AL; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtMapViewOfSection + B 776B499F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenFile + 6 776B4A2A 4 Bytes [68, C4, 01, 01]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenFile + B 776B4A2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenProcess + 6 776B4AAA 4 Bytes [A8, C5, 01, 01] {TEST AL, 0xc5; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenProcess + B 776B4AAF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenProcessToken + B 776B4ABF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenProcessTokenEx + 6 776B4ACA 4 Bytes [A8, C6, 01, 01] {TEST AL, 0xc6; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenProcessTokenEx + B 776B4ACF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenThread + 6 776B4B1A 4 Bytes [68, C5, 01, 01]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenThread + B 776B4B1F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenThreadToken + 6 776B4B2A 4 Bytes [68, C6, 01, 01]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenThreadToken + B 776B4B2F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtOpenThreadTokenEx + B 776B4B3F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtQueryAttributesFile + 6 776B4BCA 4 Bytes [A8, C4, 01, 01] {TEST AL, 0xc4; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtQueryAttributesFile + B 776B4BCF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtQueryFullAttributesFile + B 776B4C7F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtSetInformationFile + 6 776B515A 4 Bytes [28, C5, 01, 01] {SUB CH, AL; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtSetInformationFile + B 776B515F 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtSetInformationThread + 6 776B51AA 4 Bytes [28, C6, 01, 01] {SUB DH, AL; ADD [ECX], EAX}
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtSetInformationThread + B 776B51AF 1 Byte [E2]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtUnmapViewOfSection + 6 776B544A 4 Bytes [68, C7, 01, 01]
.text C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe[5916] ntdll.dll!NtUnmapViewOfSection + B 776B544F 1 Byte [E2]

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\0009dd508bd6 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\0009dd508bd6@ec9b5b423e22 0xFE 0xFA 0x49 0xCA ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@p0 C:\Program Files\Alcohol Soft\Alcohol 120\
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xF3 0xB9 0x44 0xD2 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001@ujdew 0xE3 0xA9 0x9B 0x05 ...
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04\00000001\jdgg40@ujdew 0x93 0xA4 0x56 0x48 ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\0009dd508bd6 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\0009dd508bd6@ec9b5b423e22 0xFE 0xFA 0x49 0xCA ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xC6 0x5C 0x17 0xD4 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB1 0xA8 0xD6 0x7A ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE1 0xFF 0xD6 0x2D ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x9C 0x0C 0x88 0xC9 ...
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12 0xF2 0x8D 0x78 0x81 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0009dd508bd6
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0009dd508bd6@ec9b5b423e22 0xFE 0xFA 0x49 0xCA ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0xC6 0x5C 0x17 0xD4 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0xB1 0xA8 0xD6 0x7A ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xE1 0xFF 0xD6 0x2D ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x9C 0x0C 0x88 0xC9 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq1@hdf12 0xF2 0x8D 0x78 0x81 ...

---- EOF - GMER 1.0.15 ----











DDS LOGS:

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16455 BrowserJavaVersion: 10.9.2
Run by Gebruiker at 15:02:06 on 2012-12-04
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3582.1807 [GMT 1:00]
.
AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ================
.
C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
C:\Program Files\AVG\AVG2013\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG2013\avgidsagent.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG2013\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\Windows\system32\IoctlSvc.exe
C:\Program Files\Splashtop\Splashtop Remote\Server\SRService.exe
C:\Program Files\Splashtop\Splashtop Software Updater\SSUService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\AVG\AVG2013\avgnsx.exe
C:\Program Files\AVG\AVG2013\avgemcx.exe
C:\Windows\System32\DeltaIITray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\notepad.exe
C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
BHO: Adobe PDF Reader Help bij koppelingen: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - <orphaned>
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\nero\lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe
uRun: [iCloudServices] c:\program files\common files\apple\internet services\iCloudServices.exe
uRun: [ApplePhotoStreams] c:\program files\common files\apple\internet services\ApplePhotoStreams.exe
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\daemon.exe" -autorun
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
mRun: [NBKeyScan] "c:\program files\nero\nero8\nero backitup\NBKeyScan.exe"
mRun: [M-Audio Taskbar Icon] c:\windows\system32\DeltaIITray.exe
mRun: [DeltaIITaskbarApp] c:\windows\system32\DeltaIITray.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
mRun: [AdobeCS5ServiceManager] "c:\program files\common files\adobe\cs5servicemanager\CS5ServiceManager.exe" -launchedbylogin
mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\reader 8.0\reader\reader_sl.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adober~2.lnk - c:\program files\adobe\reader 8.0\reader\AdobeCollabSync.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\spyderutility.lnk - c:\program files\datacolor\spyder4pro\utility\SpyderUtility.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{3389664C-C19A-41F4-B4C6-18319AB92DA3} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{62339A42-6FE3-42F6-91BB-CD037EFD3628} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{6940F65A-BF35-4200-8297-2AB57462F74E} : DHCPNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\gebruiker\appdata\roaming\mozilla\firefox\profiles\lpz3svtf.default\
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\users\gebruiker\appdata\local\google\update\1.3.21.123\npGoogleUpdate3.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1167637.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_4_402_287.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-10-15 55776]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-9-21 177376]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-10-5 93536]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-9-14 35552]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-10-22 179936]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-9-21 19936]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-10-2 159712]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-9-21 164832]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-9-28 217600]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2012-11-6 5814392]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2012-10-22 196664]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
R2 SplashtopRemoteService;Splashtop® Remote Service;c:\program files\splashtop\splashtop remote\server\SRService.exe [2012-11-5 548264]
R2 SSUService;Splashtop Software Updater Service;c:\program files\splashtop\splashtop software updater\SSUService.exe [2012-10-17 386920]
R3 AE1000;Linksys AE1000 Driver;c:\windows\system32\drivers\ae1000va.sys [2011-4-25 1128512]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdLH3.sys [2012-2-23 83984]
R3 DELTAII;Service for M-Audio Delta Driver (WDM);c:\windows\system32\drivers\deltaII.sys [2009-9-5 302728]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2009-9-7 9728]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2009-9-7 3072]
S3 Phonic_1394;Phonic_1394;c:\windows\system32\drivers\Phonic_1394.sys [2009-11-4 123664]
S3 Phonic_avs;Phonic_avs;c:\windows\system32\drivers\Phonic_avs.sys [2009-11-4 51472]
S3 Spyder4;Datacolor Spyder4;c:\windows\system32\drivers\dccmtr.sys [2011-7-12 12288]
S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2009-9-5 845184]
.
=============== Created Last 30 ================
.
2012-12-04 13:11:11 -------- d-----w- c:\programdata\Malwarebytes
2012-12-04 13:11:10 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-04 13:11:10 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-01 15:40:44 -------- d-----w- c:\program files\iPod
2012-12-01 15:40:42 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2012-12-01 15:40:42 -------- d-----w- c:\program files\iTunes
2012-11-29 20:19:02 -------- d-----w- c:\programdata\PACE Anti-Piracy
2012-11-28 23:32:55 -------- d-----w- c:\users\gebruiker\appdata\local\Splashtop
2012-11-28 23:31:56 -------- d-----w- c:\programdata\Splashtop
2012-11-28 23:31:42 -------- d-----w- c:\program files\Splashtop
2012-11-28 23:31:33 -------- d-----w- c:\users\gebruiker\appdata\local\{55061FB0-05F6-4AE4-939C-2227AD5B7953}
2012-11-28 12:26:08 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-11-23 12:35:39 -------- d-----w- c:\users\gebruiker\appdata\local\Windows Live
2012-11-23 12:35:15 754688 ----a-w- c:\windows\system32\webservices.dll
2012-11-23 12:26:25 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2012-11-23 12:26:23 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-11-23 12:26:23 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-11-23 12:26:22 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-11-23 12:26:22 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-11-23 12:26:22 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-11-22 15:01:45 -------- d-----w- c:\program files\Windows Portable Devices
2012-11-22 14:44:19 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2012-11-22 14:42:55 714240 ----a-w- c:\windows\system32\timedate.cpl
2012-11-22 14:38:51 6522 ----a-w- c:\users\gebruiker\cc_20121122_153846.reg
2012-11-22 12:56:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-11-22 12:56:11 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-11-22 12:56:11 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-11-22 12:46:29 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2012-11-22 12:43:00 161792 ----a-w- c:\windows\system32\msls31.dll
2012-11-22 12:43:00 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-11-22 12:41:02 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2012-11-22 12:41:02 252928 ----a-w- c:\windows\system32\dxdiag.exe
2012-11-22 12:41:02 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2012-11-22 12:41:01 519680 ----a-w- c:\windows\system32\d3d11.dll
2012-11-22 12:41:00 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2012-11-22 12:41:00 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2012-11-22 12:41:00 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2012-11-22 12:35:04 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-11-22 12:20:48 24064 ----a-w- c:\windows\system32\nshhttp.dll
2012-11-22 12:20:47 411648 ----a-w- c:\windows\system32\drivers\http.sys
2012-11-22 12:20:47 30720 ----a-w- c:\windows\system32\httpapi.dll
2012-11-22 12:16:48 -------- d-----w- c:\program files\MSXML 4.0
2012-11-22 12:15:02 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2012-11-22 12:15:02 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2012-11-22 12:15:02 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2012-11-22 12:15:02 19968 ----a-w- c:\windows\system32\ARP.EXE
2012-11-22 12:15:02 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2012-11-22 12:15:02 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2012-11-22 12:15:02 105984 ----a-w- c:\windows\system32\netiohlp.dll
2012-11-22 12:15:02 10240 ----a-w- c:\windows\system32\finger.exe
2012-11-22 12:14:05 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-11-22 12:14:05 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2012-11-22 12:14:05 200704 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-11-22 12:12:58 79872 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2012-11-22 12:11:58 98304 ----a-w- c:\windows\system32\cabview.dll
2012-11-22 12:10:19 531968 ----a-w- c:\windows\system32\comctl32.dll
2012-11-22 12:00:03 31744 ----a-w- c:\windows\system32\msvidc32.dll
2012-11-22 12:00:02 91136 ----a-w- c:\windows\system32\avifil32.dll
2012-11-22 12:00:02 82944 ----a-w- c:\windows\system32\mciavi32.dll
2012-11-22 12:00:02 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2012-11-22 12:00:02 22528 ----a-w- c:\windows\system32\msyuv.dll
2012-11-22 12:00:02 13312 ----a-w- c:\windows\system32\msrle32.dll
2012-11-22 12:00:02 123904 ----a-w- c:\windows\system32\msvfw32.dll
2012-11-22 12:00:02 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2012-11-22 11:59:59 243712 ----a-w- c:\windows\system32\rastls.dll
2012-11-22 11:46:29 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-11-22 11:46:21 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-11-22 11:46:18 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-11-22 11:46:18 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-11-21 18:14:23 -------- d-----w- c:\program files\common files\Wrye Bash
2012-11-21 16:33:51 -------- d-----w- C:\Games
2012-11-21 16:32:06 -------- d-----w- c:\users\gebruiker\appdata\local\Black_Tree_Gaming
2012-11-21 16:32:01 -------- d-----w- c:\program files\Nexus Mod Manager
2012-11-21 16:30:55 -------- d-----w- c:\programdata\NexusDB3
2012-11-21 16:12:56 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2012-11-21 16:12:54 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-11-18 13:23:12 -------- d-----w- c:\program files\AMD APP
2012-11-14 16:02:02 527848 ----a-w- c:\windows\system32\drivers\NDIS.sys
2012-11-14 14:30:09 -------- d-----w- c:\users\gebruiker\appdata\roaming\AVG2013
2012-11-14 14:28:50 -------- d-----w- c:\users\gebruiker\appdata\roaming\TuneUp Software
2012-11-14 14:28:25 -------- d--h--w- C:\$AVG
2012-11-14 14:28:24 -------- d-----w- c:\programdata\AVG2013
2012-11-14 14:27:52 -------- d-----w- c:\program files\AVG
2012-11-14 14:26:26 -------- d--h--w- c:\programdata\Common Files
2012-11-14 14:26:26 -------- d-----w- c:\users\gebruiker\appdata\local\MFAData
2012-11-14 14:26:26 -------- d-----w- c:\users\gebruiker\appdata\local\Avg2013
2012-11-14 14:26:26 -------- d-----w- c:\programdata\MFAData
2012-11-14 13:57:29 7508 ----a-w- c:\users\gebruiker\cc_20121114_145728.reg
2012-11-14 13:43:53 -------- d-----w- c:\program files\VS Revo Group
2012-11-14 13:42:05 146902 ----a-w- c:\users\gebruiker\cc_20121114_144201.reg
2012-11-14 13:39:13 -------- d-----w- c:\program files\CCleaner
2012-11-05 18:12:31 -------- d-----w- c:\users\gebruiker\appdata\roaming\Efkani
2012-11-05 18:12:27 -------- d-----w- c:\users\gebruiker\appdata\roaming\Ukwi
2012-11-05 18:12:27 -------- d-----w- c:\users\gebruiker\appdata\roaming\Hyavve
.
==================== Find3M ====================
.
2012-11-22 12:41:04 4096 ----a-w- c:\windows\system32\drivers\nl-nl\dxgkrnl.sys.mui
2012-11-21 16:03:55 466008 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-11-21 15:46:20 107888 -c--a-w- c:\windows\system32\CmdLineExt.dll
2012-11-15 10:58:05 1128512 ----a-w- c:\windows\system32\drivers\ae1000va.sys
2012-10-25 02:12:26 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 02:12:26 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-10-22 12:02:46 179936 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2012-10-15 02:48:52 55776 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2012-10-12 14:29:30 2047488 ----a-w- c:\windows\system32\win32k.sys
2012-10-09 13:01:14 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 13:01:14 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-06 12:56:25 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-10-06 12:56:25 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-10-02 02:30:38 159712 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-09-28 14:36:56 180224 ----a-w- c:\windows\system32\clinfo.exe
2012-09-28 14:36:40 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2012-09-28 14:36:34 56320 ----a-w- c:\windows\system32\OVDecode.dll
2012-09-28 14:32:16 27341824 ----a-w- c:\windows\system32\amdocl.dll
2012-09-28 02:22:56 5557928 ----a-w- c:\windows\system32\atiumdag.dll
2012-09-28 02:20:20 9107968 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-09-28 02:05:36 58880 ----a-w- c:\windows\system32\coinst_9.002.dll
2012-09-28 02:03:52 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-09-28 02:02:28 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-09-28 02:02:20 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-09-28 01:57:20 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2012-09-28 01:43:28 935424 ----a-w- c:\windows\system32\aticfx32.dll
2012-09-28 01:41:14 19624960 ----a-w- c:\windows\system32\atioglxx.dll
2012-09-28 01:39:36 6536192 ----a-w- c:\windows\system32\atidxx32.dll
2012-09-28 01:39:14 442368 ----a-w- c:\windows\system32\atidemgy.dll
2012-09-28 01:38:42 473088 ----a-w- c:\windows\system32\atieclxx.exe
2012-09-28 01:38:02 217600 ----a-w- c:\windows\system32\atiesrxx.exe
2012-09-28 01:36:42 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2012-09-28 01:36:34 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-09-28 01:36:26 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-09-28 01:22:30 2691584 ----a-w- c:\windows\system32\atiumdva.dll
2012-09-28 01:13:28 405504 ----a-w- c:\windows\system32\atiadlxx.dll
2012-09-28 01:13:12 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-09-28 01:13:00 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-09-28 01:12:48 56832 ----a-w- c:\windows\system32\atimpc32.dll
2012-09-28 01:12:48 56832 ----a-w- c:\windows\system32\amdpcom32.dll
2012-09-28 01:12:10 370176 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-09-28 01:11:16 109568 ----a-w- c:\windows\system32\atiuxpag.dll
2012-09-28 01:10:58 82944 ----a-w- c:\windows\system32\atiu9pag.dll
2012-09-28 01:10:32 37376 ----a-w- c:\windows\system32\atitmpxx.dll
2012-09-28 01:09:48 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-09-25 16:19:41 75776 ----a-w- c:\windows\system32\synceng.dll
2012-09-21 02:46:06 164832 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2012-09-21 02:46:00 177376 ----a-w- c:\windows\system32\drivers\avglogx.sys
2012-09-21 02:45:54 19936 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys
2012-09-14 02:05:20 35552 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2012-09-13 13:28:08 2048 ----a-w- c:\windows\system32\tzres.dll
.
============= FINISH: 15:02:25,33 ===============


Omhoog
 Profiel  
 
BerichtGeplaatst: di dec 04, 2012 4:45 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,

Hallo, we gaan de volgende tool inzetten. zoek.exe ®by smeenk.


De scan kan een tijdje duren omdat je hele schijf afgezocht wordt naar recent geplaatste bestanden

Download zoek.exe naar het bureaublad.
"zoek.exe" gebruiken:
  • Sluit nu eerst alle nog openstaande programmavensters!
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
    • Windows 2000 en Windows XP: start de tool middels dubbelklik op "zoek.exe".
    • Windows Vista en Windows 7: start de tool middels rechtsklik op "zoek.exe" en dan kiezen voor Als Administrator uitvoeren.
  • Vervolgens zal er na een tijdje een venster geopend worden.
  • Zet een vinkje bij "Create System Restore Point".
  • Met je muis selecteer je nu de volgende keuze "Combined fix"(rechts onderaan)
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:

    Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

    Code:
    skipstartpage-iedefaults;
    emptyclsid;
    {8E5E2654-AD2D-48bf-AC2D-D17F00898D06};c
    c:\users\gebruiker\appdata\roaming\Efkani
    c:\users\gebruiker\appdata\roaming\Ukwi
    c:\users\gebruiker\appdata\roaming\Hyavve
    emptyjava;
    emptyflash;
    emptyFFcache;
    emptyCHRcache;
    emptytemp;
    filesrcm;
    startupall;
    emptyIEcache;
    iedefaults;http://www.google.com

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent(dit kan na een herstart zijn)
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: di dec 04, 2012 5:18 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
Onwijs bedankt voor zo'n snel antwoord!!

Zoek.exe Version 3.0.0.4 Updated 03-December-2012
Tool run by Gebruiker on di 04-12-2012 at 16:04:55,88.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected

==== System Restore Info ======================

4-12-2012 16:05:57 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1710946290-1271144848-205264977-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_USERS\S-1-5-21-1710946290-1271144848-205264977-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} deleted successfully

==== Deleting Files \ Folders ======================

"C:\ProgramData\Trymedia" deleted
"C:\ProgramData\Trymedia" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2012-11-25 20:27:21 C1CF082449E5896A3BD237E35573C5F6 330685811 ----a-w- C:\Windows\MEMORY.DMP
====== C:\Users\GEBRUI~1\AppData\Local\Temp ====
2012-11-21 18:10:51 CEF2D1BA0FB5F00CF35887B1276A8CA1 6144 ----a-w- C:\Users\GEBRUI~1\AppData\Local\Temp\xd67qtfs.dll
2012-11-21 16:02:35 BEB43F12E33B63594C924DB62CFE7C3C 14682176 ----a-w- C:\Users\GEBRUI~1\AppData\Local\Temp\DTLite4461-0327.exe
2012-11-21 15:46:20 6FC051B2D50915679732C01C06ADC8B4 212992 ----a-w- C:\Users\GEBRUI~1\AppData\Local\Temp\drm_dyndata_7330014.dll
====== C:\Windows\system32 =====
2012-11-28 12:26:08 69E5F6102D8016CA487D35D565AA61F2 93672 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll
2012-11-23 12:35:15 E4783742790B2084EFCBF6AE8968A73D 754688 ----a-w- C:\Windows\System32\webservices.dll
2012-11-23 12:26:25 9F3A1B7FB81A41C7C7AC82B3D07A1091 876032 ----a-w- C:\Windows\System32\XpsPrint.dll
2012-11-23 12:26:23 CABD1B34BD05C986B4DBC18BC0E947EE 1069056 ----a-w- C:\Windows\System32\DWrite.dll
2012-11-23 12:26:23 A441F5B43EAF4BD4E3ACFBE38841B46B 219648 ----a-w- C:\Windows\System32\d3d10_1core.dll
2012-11-23 12:26:22 E9B39C81C87E5B790FCE121DA9E02701 683008 ----a-w- C:\Windows\System32\d2d1.dll
2012-11-23 12:26:22 5256383D1D266A9EEFCDB270340C0E5C 160768 ----a-w- C:\Windows\System32\d3d10_1.dll
2012-11-23 12:26:22 4A4C71376ECA305D6DEA021F1A44816D 1172480 ----a-w- C:\Windows\System32\d3d10warp.dll
2012-11-22 14:56:26 D6BACADF83661F08F9E1515AAE74B03E 92672 ----a-w- C:\Windows\System32\UIAnimation.dll
2012-11-22 14:56:25 8C459CFAC2FB3DFB693BCFEC32F25407 3023360 ----a-w- C:\Windows\System32\UIRibbon.dll
2012-11-22 14:56:25 22C2646DD3ED24004F994D0DA9755955 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
2012-11-22 14:56:03 9B9108D3019C18BD6D38B860813E6E52 31232 ----a-w- C:\Windows\System32\BthMtpContextHandler.dll
2012-11-22 14:56:03 801FBDB89D472B3C467EB112A0FC9246 81920 ----a-w- C:\Windows\System32\wpdbusenum.dll
2012-11-22 14:56:03 1D7D7E32A80109D5C3167309265EAC83 30208 ----a-w- C:\Windows\System32\WPDShextAutoplay.exe
2012-11-22 14:56:02 B53BD9E63867CD9FD853F666CA172713 60928 ----a-w- C:\Windows\System32\PortableDeviceConnectApi.dll
2012-11-22 14:56:01 E92143D1B2E32FAF6CC56FD97B908F6A 2537472 ----a-w- C:\Windows\System32\wpdshext.dll
2012-11-22 14:56:01 C220FC95DA7AD00AB03C184AFDDC5314 196608 ----a-w- C:\Windows\System32\PortableDeviceWMDRM.dll
2012-11-22 14:56:01 B2B117BD8D1EA80536CDD91797EF4A0A 100864 ----a-w- C:\Windows\System32\PortableDeviceClassExtension.dll
2012-11-22 14:56:01 A8FB1B20C5ABD1817B7F96251293BFF9 226816 ----a-w- C:\Windows\System32\WpdMtp.dll
2012-11-22 14:56:01 883D02AB5D350BC45E0F60E8CFA97FDC 160256 ----a-w- C:\Windows\System32\PortableDeviceTypes.dll
2012-11-22 14:56:01 81072240917688254A55C1C568B2377B 546816 ----a-w- C:\Windows\System32\wpd_ci.dll
2012-11-22 14:56:01 6B5C53E0932C510606D700B7A896EF73 87552 ----a-w- C:\Windows\System32\WPDShServiceObj.dll
2012-11-22 14:56:01 58E42DDB9F734E8DBDA17E806EF3F64A 33280 ----a-w- C:\Windows\System32\WpdConns.dll
2012-11-22 14:56:01 49456BFE373D90B895795C5A1A13A7C8 350208 ----a-w- C:\Windows\System32\WPDSp.dll
2012-11-22 14:56:01 3501443C148C780E8CE6B5108CE6D95E 61952 ----a-w- C:\Windows\System32\WpdMtpUS.dll
2012-11-22 14:56:01 2205A220A264E8C8B86492BF3D112907 334848 ----a-w- C:\Windows\System32\PortableDeviceApi.dll
2012-11-22 14:44:19 3FA837E3C30334BA8CA5EEB2B375D50C 2048 ----a-w- C:\Windows\System32\winrsmgr.dll
2012-11-22 14:44:15 F7D20026623E7136730FC42E25CBD2E6 56320 ----a-w- C:\Windows\System32\wecapi.dll
2012-11-22 14:44:15 D80AAE1CDAFAC1E0ADEDC7D312EF61D0 10240 ----a-w- C:\Windows\System32\wsmplpxy.dll
2012-11-22 14:44:15 D595A88D377366F93AFAEA20B8764A50 81408 ----a-w- C:\Windows\System32\wevtfwd.dll
2012-11-22 14:44:15 B48DB26FF92EA10802DDA092E4B44872 79872 ----a-w- C:\Windows\System32\wecutil.exe
2012-11-22 14:44:15 9A626BF1143410771075503B2AB3F564 12800 ----a-w- C:\Windows\System32\wsmprovhost.exe
2012-11-22 14:44:15 2662DBEAD02082F1AB671E550B56E920 20480 ----a-w- C:\Windows\System32\winrshost.exe
2012-11-22 14:44:15 19CFA2BAEE7FA471786897A0113B52D9 10240 ----a-w- C:\Windows\System32\winrssrv.dll
2012-11-22 14:44:15 12C7EAF8A0EF6DE0066AAB801DCA021F 40448 ----a-w- C:\Windows\System32\winrs.exe
2012-11-22 14:44:14 AE3736E7E8892241C23E4EBBB7453B60 146944 ----a-w- C:\Windows\System32\wecsvc.dll
2012-11-22 14:44:14 9E07A84FF9532B3DE8886A84F28EEB99 41472 ----a-w- C:\Windows\System32\pwrshplugin.dll
2012-11-22 14:44:14 1311171CF8F6D2954441EF2A42693035 54272 ----a-w- C:\Windows\System32\WsmRes.dll
2012-11-22 14:44:13 F6D48AE1F578493D2E19DD644B153976 201184 ----a-w- C:\Windows\System32\winrm.vbs
2012-11-22 14:44:13 B2EDF82825D979928AE07CBE9C7A2160 2426 ----a-w- C:\Windows\System32\WsmTxt.xsl
2012-11-22 14:44:13 3C436603213561E2E7DD3D4459DBB7D4 4675 ----a-w- C:\Windows\System32\wsmanconfig_schema.xml
2012-11-22 14:44:12 DE21E8012F3946A647C9B38A636EE9EC 145408 ----a-w- C:\Windows\System32\WsmAuto.dll
2012-11-22 14:44:12 D1C18ACA47C53DA18FAD42C8FB9D6BE3 241152 ----a-w- C:\Windows\System32\winrscmd.dll
2012-11-22 14:44:12 7CFE68BDC065E55AA5E8421607037511 1181696 ----a-w- C:\Windows\System32\WsmSvc.dll
2012-11-22 14:44:12 6D106AB92DDE6B605A74E13147039CA6 246272 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2012-11-22 14:44:12 6B57C7A878B176E6D95200CEF19DDEEC 252416 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2012-11-22 14:44:12 148DB2E11E0A44FEB053250303BA02DD 214016 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2012-11-22 14:42:55 4B19A9A4191353007E9819A832B81186 714240 ----a-w- C:\Windows\System32\timedate.cpl
2012-11-22 14:42:45 57CF7F07E92195E84AB41B2F96FF627F 310784 ----a-w- C:\Windows\System32\unregmp2.exe
2012-11-22 14:42:30 F4BFD5330DA0899771EB24A0DDEF87AF 471552 ----a-w- C:\Windows\System32\secproc_isv.dll
2012-11-22 14:42:29 C7EF2D81B9AC543DA9205701C45F62BD 471552 ----a-w- C:\Windows\System32\secproc.dll
2012-11-22 14:42:28 D1194E75C78C451698D7DFFDAB22C5DA 347136 ----a-w- C:\Windows\System32\RMActivate_ssp.exe
2012-11-22 14:42:28 B385C4E499591941E362E324969BB6FB 152064 ----a-w- C:\Windows\System32\secproc_ssp.dll
2012-11-22 14:42:28 A64C3712DF40DF6BD489A98E280130E7 346624 ----a-w- C:\Windows\System32\RMActivate_ssp_isv.exe
2012-11-22 14:42:28 8FB90F7CFBCCF50DF2E3080A2BC6F23B 518144 ----a-w- C:\Windows\System32\RMActivate.exe
2012-11-22 14:42:28 7857CFD06825D710E18793D5306C7724 152576 ----a-w- C:\Windows\System32\secproc_ssp_isv.dll
2012-11-22 14:42:28 447D3599FA65A9A8BCF7F9048BDB7035 526336 ----a-w- C:\Windows\System32\RMActivate_isv.exe
2012-11-22 14:42:28 2D74D853886BDD0CDE60BE5FDF22AD9A 332288 ----a-w- C:\Windows\System32\msdrm.dll
2012-11-22 14:42:25 8CE364388C8ECA59B14B539179276D44 797696 ----a-w- C:\Windows\System32\FntCache.dll
2012-11-22 14:42:25 1217AEB3DBED42C54ADD826EDDC21660 288768 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2012-11-22 14:42:19 9A75518600FBA10980EE94267CA98489 1696256 ----a-w- C:\Windows\System32\gameux.dll
2012-11-22 14:42:18 F99DDD5E4F807B43E8B85DCD5F4B59EA 4240384 ----a-w- C:\Windows\System32\GameUXLegacyGDFs.dll
2012-11-22 14:42:18 61FB963F6EFDB10CCBB2819A8A7555A5 28672 ----a-w- C:\Windows\System32\Apphlpdm.dll
2012-11-22 14:42:14 574B473FACAA0E91702B86578440B525 892416 ----a-w- C:\Windows\System32\kernel32.dll
2012-11-22 14:42:04 1908CC7673F72601AFFDCA022689CEDF 182784 ----a-w- C:\Windows\System32\xmllite.dll
2012-11-22 12:56:11 EB49FAA5EBBC06356FB12476438781B9 157696 ----a-w- C:\Windows\System32\imagehlp.dll
2012-11-22 12:56:11 87CDFFCBD09C1CA03A068343D5D93250 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-11-22 12:43:00 9CB0D2A9A77D91D9614355EE9FF00519 1129472 ----a-w- C:\Windows\System32\wininet.dll
2012-11-22 12:43:00 35AAE2E841AA1A949775168E119482C9 161792 ----a-w- C:\Windows\System32\msls31.dll
2012-11-22 12:42:59 50D09C6DBD5D5E447B284116D1A26F62 65024 ----a-w- C:\Windows\System32\jsproxy.dll
2012-11-22 12:42:59 3178C47DB9F1615E5334029607BD3459 1793024 ----a-w- C:\Windows\System32\iertutil.dll
2012-11-22 12:42:58 FC4EE980C3BD87D35816EC55007E00B5 1103872 ----a-w- C:\Windows\System32\urlmon.dll
2012-11-22 12:42:58 EE0AFCEE88098F754212F9069E80A766 86528 ----a-w- C:\Windows\System32\iesysprep.dll
2012-11-22 12:42:58 76E987D8CF0683337CF165363B6FDFD9 48640 ----a-w- C:\Windows\System32\mshtmler.dll
2012-11-22 12:42:58 736D1B28224F9DF8008BE8B0DEDFC9EF 76800 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe
2012-11-22 12:42:58 6B036492120E65C0C367DC31D01088A1 74752 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2012-11-22 12:42:58 3503F9D68A11DAF4B3AC0270F85726CD 176640 ----a-w- C:\Windows\System32\ieui.dll
2012-11-22 12:42:58 0B8FE658BD033EC8B1F6FBC305CC65E7 162304 ----a-w- C:\Windows\System32\msrating.dll
2012-11-22 12:42:57 CA493A92DA9880B6F1A89C3DBD54BA5B 223232 ----a-w- C:\Windows\System32\dxtrans.dll
2012-11-22 12:42:57 A6B73FCB9496DB101F3066CAF5A7DA4B 9738240 ----a-w- C:\Windows\System32\ieframe.dll
2012-11-22 12:42:57 76EB0222590D5DCD050CF862237F414A 63488 ----a-w- C:\Windows\System32\tdc.ocx
2012-11-22 12:42:57 09C9E7F477FB225FDB3B6DE8FED0AA9B 367104 ----a-w- C:\Windows\System32\html.iec
2012-11-22 12:42:56 F83865A3007357A5E498EB9E3BED273D 31744 ----a-w- C:\Windows\System32\iernonce.dll
2012-11-22 12:42:56 F0FEFB0B5D25A75D478A4317139D937E 353584 ----a-w- C:\Windows\System32\iedkcs32.dll
2012-11-22 12:42:56 EE9D715AF1B928982F417238B9914484 434176 ----a-w- C:\Windows\System32\ieapfltr.dll
2012-11-22 12:42:56 C0B8B96D018849FD8CCF15FED84E8782 74240 ----a-w- C:\Windows\System32\ie4uinit.exe
2012-11-22 12:42:56 83F5D4B41BB12CE146786E97F6AAD75E 3695416 ----a-w- C:\Windows\System32\ieapfltr.dat
2012-11-22 12:42:56 802B0229D904E28C1EA9A5274AB457FC 74752 ----a-w- C:\Windows\System32\iesetup.dll
2012-11-22 12:42:56 7AC9B18F1BE210702DA5E586224B1571 66048 ----a-w- C:\Windows\System32\icardie.dll
2012-11-22 12:42:56 70D02070AC871E388654C4622215D589 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-11-22 12:42:56 51E6B19ACFACDBB372003EE016287E82 231936 ----a-w- C:\Windows\System32\url.dll
2012-11-22 12:42:56 4B333D3CC96AE66BD754329FD2989EE2 72822 ----a-w- C:\Windows\System32\ieuinit.inf
2012-11-22 12:42:56 4312DEBDACBE338F0B90E7F08E7672BE 353792 ----a-w- C:\Windows\System32\dxtmsft.dll
2012-11-22 12:42:55 E4966988D2BF90B7A5866401B830FA74 420864 ----a-w- C:\Windows\System32\vbscript.dll
2012-11-22 12:42:55 708B31095F51A8170AA9D4DAF32A1A89 607744 ----a-w- C:\Windows\System32\msfeeds.dll
2012-11-22 12:42:55 6B4701D3D9724812E8C3801E7BF87157 23552 ----a-w- C:\Windows\System32\licmgr10.dll
2012-11-22 12:42:55 67BC2BA6F94D2D0C51213691FBFEEBB1 152064 ----a-w- C:\Windows\System32\wextract.exe
2012-11-22 12:42:55 60B4F624BB87A3B21D3EC68F38DA6B61 78848 ----a-w- C:\Windows\System32\inseng.dll
2012-11-22 12:42:55 51AF0A12CD86E22E1A027C38CC021AC6 150528 ----a-w- C:\Windows\System32\iexpress.exe
2012-11-22 12:42:55 5193DE33F3284C447E0D31DAFBF92570 203776 ----a-w- C:\Windows\System32\webcheck.dll
2012-11-22 12:42:55 2AF2FDFAFEC52085F569AC1C88A4C1FA 73216 ----a-w- C:\Windows\System32\mshtmled.dll
2012-11-22 12:42:54 DB754FF5F6ADBA2A25EC1B6672D1C91E 163840 ----a-w- C:\Windows\System32\ieakui.dll
2012-11-22 12:42:54 962C8A3AF8CA4ABF553E367368565335 1800704 ----a-w- C:\Windows\System32\jscript9.dll
2012-11-22 12:42:54 8D1BB1E5A033E8817EF94A9047630165 12320768 ----a-w- C:\Windows\System32\mshtml.dll
2012-11-22 12:42:54 5B37190F79F5D63C1033ED88C006080C 123392 ----a-w- C:\Windows\System32\occache.dll
2012-11-22 12:42:54 49729570B7FD369BBDEC16D7683324A0 227840 ----a-w- C:\Windows\System32\ieaksie.dll
2012-11-22 12:42:54 3F7A8BCF37433A69CEEDE1E6AEE79784 101888 ----a-w- C:\Windows\System32\admparse.dll
2012-11-22 12:42:54 081F82EDB9B37A0FC60700C0DD96347D 142848 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-11-22 12:42:54 061CBB1058A10C0875D18CAFF835AE97 11776 ----a-w- C:\Windows\System32\mshta.exe
2012-11-22 12:42:54 04A8B2F67825380BC0C7C46D56776133 54272 ----a-w- C:\Windows\System32\pngfilt.dll
2012-11-22 12:42:54 00721F540637A42E694C42DDD7A2F002 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-11-22 12:42:53 ED6F6FBBCDEC95483B7351E23F4FCDF6 110592 ----a-w- C:\Windows\System32\IEAdvpack.dll
2012-11-22 12:42:53 90A57CA422923286838AAC7DE2D41B92 118784 ----a-w- C:\Windows\System32\iepeers.dll
2012-11-22 12:42:53 68563AC389F92EE79F1C714288BA1DCE 35840 ----a-w- C:\Windows\System32\imgutil.dll
2012-11-22 12:42:53 58F9A2103EC5DF0F2D77851958AB0124 717824 ----a-w- C:\Windows\System32\jscript.dll
2012-11-22 12:42:53 4B80D1F847C0658977E1E8051A4DE002 41472 ----a-w- C:\Windows\System32\msfeedsbs.dll
2012-11-22 12:42:53 1E7094AFAD0C369DD6D400C7047E4AB2 130560 ----a-w- C:\Windows\System32\ieakeng.dll
2012-11-22 12:42:53 1D3EE28BA231CBB9600F5D102EAF4EA7 10752 ----a-w- C:\Windows\System32\msfeedssync.exe
2012-11-22 12:42:53 031DA76A5A7DC13F015DD3491394865E 114176 ----a-w- C:\Windows\System32\advpack.dll
2012-11-22 12:42:11 BC5E45CB2304AFB4D2EF2FD9C41299AF 979456 ----a-w- C:\Windows\System32\MFH264Dec.dll
2012-11-22 12:42:11 B9103A56ACABDED3E87C2A8777B6456C 98816 ----a-w- C:\Windows\System32\mfps.dll
2012-11-22 12:42:11 7BE8835CA7E2975F2E865CEEE8821EB6 261632 ----a-w- C:\Windows\System32\mfreadwrite.dll
2012-11-22 12:42:11 743B1957729DE905DC44782A957FD284 302592 ----a-w- C:\Windows\System32\mfmp4src.dll
2012-11-22 12:42:11 67D16247C56C26A4F0D79D1A7F272B8F 2873344 ----a-w- C:\Windows\System32\mf.dll
2012-11-22 12:42:11 44CEE5264282105A89B650FDB07E40FF 357376 ----a-w- C:\Windows\System32\MFHEAACdec.dll
2012-11-22 12:42:09 BF142D4F8C61ED3629A9CDD7BA867900 209920 ----a-w- C:\Windows\System32\mfplat.dll
2012-11-22 12:42:09 B5950DF243837D8217F4E597919B224A 586240 ----a-w- C:\Windows\System32\stobject.dll
2012-11-22 12:42:09 167AC31450C0C53A01FA1491E94D7678 1075712 ----a-w- C:\Windows\System32\shdocvw.dll
2012-11-22 12:42:08 3439DFAD865BF24C3E3DE3BCB2F9C39F 135680 ----a-w- C:\Windows\System32\XpsRasterService.dll
2012-11-22 12:42:07 04802864F51046E93471083A24469ACE 486400 ----a-w- C:\Windows\System32\d3d10level9.dll
2012-11-22 12:42:06 CF9F5BBC2740C41DD471278C41B91F5F 37376 ----a-w- C:\Windows\System32\cdd.dll
2012-11-22 12:42:06 AAAE543C535ED596ECAD2AB8761C2C6F 478720 ----a-w- C:\Windows\System32\dxgi.dll
2012-11-22 12:42:06 9C7094F537782A82B6A29B4A7172E180 189952 ----a-w- C:\Windows\System32\d3d10core.dll
2012-11-22 12:42:06 8B02D2ECC7EF6E1F6AF08459E3F741F6 1029120 ----a-w- C:\Windows\System32\d3d10.dll
2012-11-22 12:42:06 5EC8FB83F31AA2D6F421F02C3F4F4475 258048 ----a-w- C:\Windows\System32\winspool.drv
2012-11-22 12:42:05 E821547F853BF67CABE187B6FAA5D212 26112 ----a-w- C:\Windows\System32\printfilterpipelineprxy.dll
2012-11-22 12:42:05 E607F9C6A2386647B572580CB147C7B3 1554432 ----a-w- C:\Windows\System32\xpsservices.dll
2012-11-22 12:42:05 DFD714F1A410B32DA258423CF592A96E 667648 ----a-w- C:\Windows\System32\printfilterpipelinesvc.exe
2012-11-22 12:42:05 A15ED03919107C2A6A3395EE02C7DD47 847360 ----a-w- C:\Windows\System32\OpcServices.dll
2012-11-22 12:41:02 D1C47F951EA35073C97EF2E928CF9D6F 195584 ----a-w- C:\Windows\System32\dxdiagn.dll
2012-11-22 12:41:02 8375E2BD58BFB375695135A511EBEE00 369664 ----a-w- C:\Windows\System32\WMPhoto.dll
2012-11-22 12:41:02 60BBAF3F5A38D0274B0C46710A218051 252928 ----a-w- C:\Windows\System32\dxdiag.exe
2012-11-22 12:41:01 6E895BDCB3158E3860A49662332736BA 519680 ----a-w- C:\Windows\System32\d3d11.dll
2012-11-22 12:41:00 6836D001FC733F205ACB80A7986CB6C9 974848 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2012-11-22 12:41:00 247609D2CD28A57BC1FE37FDA48AC0DB 321024 ----a-w- C:\Windows\System32\PhotoMetadataHandler.dll
2012-11-22 12:41:00 012A965F34414458075EF4F0EDC11536 189440 ----a-w- C:\Windows\System32\WindowsCodecsExt.dll
2012-11-22 12:35:04 DA1919D896DBD5895E138932AE9E398B 293376 ----a-w- C:\Windows\System32\browserchoice.exe
2012-11-22 12:20:48 478ABCCF01166AC6D6AD0FA188051418 24064 ----a-w- C:\Windows\System32\nshhttp.dll
2012-11-22 12:20:47 F86293D93760C70ADF4F19E66E3FA5E8 30720 ----a-w- C:\Windows\System32\httpapi.dll
2012-11-22 12:15:02 E6EDFE3DB66028E4455DF14C25D1B3D4 10240 ----a-w- C:\Windows\System32\finger.exe
2012-11-22 12:15:02 E54FA72D9BB028CADA7EB973F06442A9 27136 ----a-w- C:\Windows\System32\NETSTAT.EXE
2012-11-22 12:15:02 B1B3391B59BA5D2B6D0795E4EC1D0EB6 105984 ----a-w- C:\Windows\System32\netiohlp.dll
2012-11-22 12:15:02 A275FBB7C99458C12E088DFF3E58EB4D 9728 ----a-w- C:\Windows\System32\TCPSVCS.EXE
2012-11-22 12:15:02 7015022E8158E382A6AC73912B456ECA 19968 ----a-w- C:\Windows\System32\ARP.EXE
2012-11-22 12:15:02 60840945586A62FCFFD6C3597F8035E5 8704 ----a-w- C:\Windows\System32\HOSTNAME.EXE
2012-11-22 12:15:02 2EDF2D42EF46DF131ABC14D9592881B1 17920 ----a-w- C:\Windows\System32\ROUTE.EXE
2012-11-22 12:15:02 0BD4C230A75675CFD4865A759FE60B96 11264 ----a-w- C:\Windows\System32\MRINFO.EXE
2012-11-22 12:14:05 1998BD97F950680BB55F55A7244679C2 200704 ----a-w- C:\Windows\System32\iphlpsvc.dll
2012-11-22 12:13:59 50ABE7CDA2DAE898216121D14092C182 2386944 ----a-w- C:\Windows\System32\WMVCORE.DLL
2012-11-22 12:13:46 C7230FBEE14437716701C15BE02C27B8 247808 ----a-w- C:\Windows\System32\shsvcs.dll
2012-11-22 12:13:42 C08178DB25AA6BDD033A7BCEE51926C2 127488 ----a-w- C:\Windows\System32\L2SecHC.dll
2012-11-22 12:13:42 C008405E4FEEB069E30DA1D823910234 513536 ----a-w- C:\Windows\System32\wlansvc.dll
2012-11-22 12:13:42 4662AF853DFAD5648CE3814E7D9EF3D6 302592 ----a-w- C:\Windows\System32\wlansec.dll
2012-11-22 12:13:42 3727F8B85E24BBDD325BFF75F029DDE3 293376 ----a-w- C:\Windows\System32\wlanmsm.dll
2012-11-22 12:13:42 18B2C06EF8DC3FAF83C074089024391E 2501921 ----a-w- C:\Windows\System32\wlan.tmf
2012-11-22 12:13:42 17C0E094BEE5BC03CF491972F71AA6EF 65024 ----a-w- C:\Windows\System32\wlanapi.dll
2012-11-22 12:13:40 862363973DCBCC31DD161EF41A69153C 413696 ----a-w- C:\Windows\System32\odbc32.dll
2012-11-22 12:13:32 DC15AB7168C0309D8F04FD95B6240422 238080 ----a-w- C:\Windows\System32\oleacc.dll
2012-11-22 12:13:32 CCE5E7C0F8AA13207E777C43F4DA80A3 555520 ----a-w- C:\Windows\System32\UIAutomationCore.dll
2012-11-22 12:13:32 B218342214D9BBA0F54EA12BA2E9278C 563712 ----a-w- C:\Windows\System32\oleaut32.dll
2012-11-22 12:13:32 7E38DA8C11833B99766A97CEE3F80F07 4096 ----a-w- C:\Windows\System32\oleaccrc.dll
2012-11-22 12:13:26 F1E8C34892336D33EDDCDFE44E474F64 133120 ----a-w- C:\Windows\System32\cryptsvc.dll
2012-11-22 12:13:26 B0F9073BE86C6D4EDD4EBA674251E699 985088 ----a-w- C:\Windows\System32\crypt32.dll
2012-11-22 12:13:26 09469B8EDD2755143FDA06867AAD7E73 98304 ----a-w- C:\Windows\System32\cryptnet.dll
2012-11-22 12:13:19 015E99A7634B93E8BB0380C70F3D2CC3 10628096 ----a-w- C:\Windows\System32\wmp.dll
2012-11-22 12:13:18 9441A231C0AA0712F7CF3B10D9CFCF76 8147456 ----a-w- C:\Windows\System32\wmploc.DLL
2012-11-22 12:13:11 1A58069DB21D05EB2AB58EE5753EBE8D 601600 ----a-w- C:\Windows\System32\schedsvc.dll
2012-11-22 12:13:10 52E129522C1775DBB8CC252E7A0655C7 352768 ----a-w- C:\Windows\System32\taskschd.dll
2012-11-22 12:13:10 3D50C4B10352367D5CB20ED1F50F8DA2 171520 ----a-w- C:\Windows\System32\taskeng.exe
2012-11-22 12:13:10 2A6A2C09ECC2CB495628E45F1379ECE8 270336 ----a-w- C:\Windows\System32\taskcomp.dll
2012-11-22 12:13:10 220DD3DF04EDE0BCA371F6C44171CFB7 345600 ----a-w- C:\Windows\System32\wmicmiplugin.dll
2012-11-22 12:13:03 5CAA8398B6A769B24880C18DA4185BEC 177664 ----a-w- C:\Windows\System32\mpg2splt.ax
2012-11-22 12:13:03 421613767407C639E9E115B092A0EE3B 153088 ----a-w- C:\Windows\System32\sbeio.dll
2012-11-22 12:13:03 14E9E1A4472C7D0BB7A2A7A26D60CB35 322560 ----a-w- C:\Windows\System32\sbe.dll
2012-11-22 12:13:02 FE5372B0B1A34728106845F5B5AF131D 72704 ----a-w- C:\Windows\System32\fontsub.dll
2012-11-22 12:13:02 B44A7AC9E801C38F54F7340351313E85 292864 ----a-w- C:\Windows\System32\atmfd.dll
2012-11-22 12:13:02 54F73529D65E5EB41FFC28C4EDDF069F 34304 ----a-w- C:\Windows\System32\atmlib.dll
2012-11-22 12:12:56 E1E52D56D266C2741058BA6611970D0C 497152 ----a-w- C:\Windows\System32\qdvd.dll
2012-11-22 12:12:56 5F6359756DBCC901276BC2B62460FA64 1314816 ----a-w- C:\Windows\System32\quartz.dll
2012-11-22 12:12:55 AAF101900A23D75AE1AE00840FA6F3B8 11586048 ----a-w- C:\Windows\System32\shell32.dll
2012-11-22 12:12:53 1F774CEDD6E96893CEE86AFEF1CCF57F 17920 ----a-w- C:\Windows\System32\netevent.dll
2012-11-22 12:12:53 1BF5EEBFD518DD7298434D8C862F825D 125952 ----a-w- C:\Windows\System32\srvsvc.dll
2012-11-22 12:12:48 82D5C25C2757EE8093EB29A316EC09B3 954752 ----a-w- C:\Windows\System32\mfc40.dll
2012-11-22 12:12:47 2A64FE405579BB073FBABD68AF1468E7 954288 ----a-w- C:\Windows\System32\mfc40u.dll
2012-11-22 12:12:45 9176285122B7B849FEC2AA1B72A8F7A8 353280 ----a-w- C:\Windows\System32\shlwapi.dll
2012-11-22 12:12:43 DBD02E3E6F061EBBBF9B99A9D7CBA30B 377344 ----a-w- C:\Windows\System32\winhttp.dll
2012-11-22 12:12:41 63396CBB1365769D520E0FD89C2419F2 623616 ----a-w- C:\Windows\System32\localspl.dll
2012-11-22 12:12:38 9586E7CB2255A8B097A7E4538202585E 1316864 ----a-w- C:\Windows\System32\ole32.dll
2012-11-22 12:12:36 EF24642D5FB52A1EEF56DE9E47CBB993 1136640 ----a-w- C:\Windows\System32\mfc42.dll
2012-11-22 12:12:36 1B593FBB763150BD225DF266C69A9329 1162240 ----a-w- C:\Windows\System32\mfc42u.dll
2012-11-22 12:12:29 6ABD253226770EAE1292B4C945ED4B4B 1248768 ----a-w- C:\Windows\System32\msxml3.dll
2012-11-22 12:12:29 024528E25BBE8768536861EA09BE1672 1401856 ----a-w- C:\Windows\System32\msxml6.dll
2012-11-22 12:12:28 85E861D0B88DB2B54ACB0839654C09F7 168448 ----a-w- C:\Windows\System32\dnsapi.dll
2012-11-22 12:12:28 57D762F6F5974AF0DA2BE88A3349BAAA 86528 ----a-w- C:\Windows\System32\dnsrslvr.dll
2012-11-22 12:12:28 1D99767E82C4C2CB1C9AD8F094ACCC2A 25088 ----a-w- C:\Windows\System32\dnscacheugc.exe
2012-11-22 12:12:21 21F3375B9EBC457AE0053755D21FA547 2048 ----a-w- C:\Windows\System32\tzres.dll
2012-11-22 12:12:17 8554097E5136C3BF9F69FE578A1B35F4 128000 ----a-w- C:\Windows\System32\spoolsv.exe
2012-11-22 12:12:16 17AF64D727545F2804F6E6D998327E3F 680448 ----a-w- C:\Windows\System32\msvcrt.dll
2012-11-22 12:12:14 D1AE4D2D559C23CE9DE4B3B10A90B901 57856 ----a-w- C:\Windows\System32\MSDvbNP.ax
2012-11-22 12:12:14 959A4BC486951267EE6343A431A92B12 293376 ----a-w- C:\Windows\System32\psisdecd.dll
2012-11-22 12:12:14 3A78D48221D32BC99C4B11B112D6EADA 217088 ----a-w- C:\Windows\System32\psisrndr.ax
2012-11-22 12:12:14 1B45ED071775A5E8BF51682EC5B61231 69632 ----a-w- C:\Windows\System32\Mpeg2Data.ax
2012-11-22 12:12:12 DE98C769DA2B5F121846C9F3B9493C5A 613376 ----a-w- C:\Windows\System32\rdpencom.dll
2012-11-22 12:12:11 B2E569EF26DAC9D6994A2AFF4F601B7A 172544 ----a-w- C:\Windows\System32\wintrust.dll
2012-11-22 12:12:09 E44C7D6F8D665DA2D9385E5E15EDEEF7 81920 ----a-w- C:\Windows\System32\consent.exe
2012-11-22 12:12:08 A623666C8A8EC9A57DCA07915A3F1EC6 1169408 ----a-w- C:\Windows\System32\sdclt.exe
2012-11-22 12:12:07 3F337DD54339BEAF26917D3A0A32C1DE 81920 ----a-w- C:\Windows\System32\iccvid.dll
2012-11-22 12:12:06 DDA770BBD7C2ED024D6F50E279D90E5B 1205064 ----a-w- C:\Windows\System32\ntdll.dll
2012-11-22 12:12:03 8FFDEB99EAC611D617016F2174D48FC6 739328 ----a-w- C:\Windows\System32\inetcomm.dll
2012-11-22 12:12:02 FF8FCDF1913016813AFB966A0F41B299 23552 ----a-w- C:\Windows\System32\mciseq.dll
2012-11-22 12:12:02 14FF750EFE13B0C21E5A06507C3A97B1 189952 ----a-w- C:\Windows\System32\winmm.dll
2012-11-22 12:12:00 648AB74D9C104FB500B6C4EEDC6A8772 867328 ----a-w- C:\Windows\System32\wmpmde.dll
2012-11-22 12:11:58 FE6EC12E560E3D290A109F7E656FB839 98304 ----a-w- C:\Windows\System32\cabview.dll
2012-11-22 12:11:57 D0F138624B9B49F349C5D3D2341199A1 429056 ----a-w- C:\Windows\System32\EncDec.dll
2012-11-22 12:11:56 D2293B069E4B63DC17B2F08D45E71124 376320 ----a-w- C:\Windows\System32\winsrv.dll
2012-11-22 12:11:55 A520C77CFFABC96E32818451B60905C7 66560 ----a-w- C:\Windows\System32\packager.dll
2012-11-22 12:11:53 8A64A3F68F0E24917759852C842DCD74 62464 ----a-w- C:\Windows\System32\l3codeca.acm
2012-11-22 12:11:52 0857BDD856888D78E6E991CDDA49A4B8 220672 ----a-w- C:\Windows\System32\l3codecp.acm
2012-11-22 12:11:51 950343D413EEDC3A24472BB2046CFB59 75776 ----a-w- C:\Windows\System32\synceng.dll
2012-11-22 12:11:47 BFA034AAC103D8A6F591AC9364688339 157184 ----a-w- C:\Windows\System32\t2embed.dll
2012-11-22 12:11:46 187076DD5D8D4D5D23079D0741195EAD 49152 ----a-w- C:\Windows\System32\csrsrv.dll
2012-11-22 12:11:43 A6950BA89334D51EC281904781B89BD2 67072 ----a-w- C:\Windows\System32\asycfilt.dll
2012-11-22 12:11:38 A4941E30143F6FD4EC670C5F897BF2E8 317952 ----a-w- C:\Windows\System32\MP4SDECD.DLL
2012-11-22 12:11:34 3D418A22A56471295AEB1CEB9027C3DA 36864 ----a-w- C:\Windows\System32\rtutils.dll
2012-11-22 12:11:33 80FFF14F1757B9AF8BE9D314FC1AE88B 502272 ----a-w- C:\Windows\System32\usp10.dll
2012-11-22 12:11:32 98B656EAF128CD06F625B09C84D959E1 467968 ----a-w- C:\Windows\System32\netapi32.dll
2012-11-22 12:11:28 F0202BFEDFE64F4FF7898CCA2A92CAAA 2067968 ----a-w- C:\Windows\System32\mstscax.dll
2012-11-22 12:11:27 16FEE292E95EDC274385103E6B498019 677888 ----a-w- C:\Windows\System32\mstsc.exe
2012-11-22 12:11:24 EE2FF9A3FC4404234BE3B7C6AA383AF8 60928 ----a-w- C:\Windows\System32\msasn1.dll
2012-11-22 12:10:19 DC8891A9203810FC994E7FCCF76E94C8 531968 ----a-w- C:\Windows\System32\comctl32.dll
2012-11-22 12:00:03 27281831FF4D6F5738A2F70E75E3DD40 31744 ----a-w- C:\Windows\System32\msvidc32.dll
2012-11-22 12:00:02 EACACA0F2FF4CC54A909E3C5721FCDE8 123904 ----a-w- C:\Windows\System32\msvfw32.dll
2012-11-22 12:00:02 BC35B4551D705D1B931A3362B2B93CCD 12288 ----a-w- C:\Windows\System32\tsbyuv.dll
2012-11-22 12:00:02 A613A29FB640FB2E45DA418C396D186C 50176 ----a-w- C:\Windows\System32\iyuv_32.dll
2012-11-22 12:00:02 9EFDF7F0153C066BE619450E3D5D59DD 91136 ----a-w- C:\Windows\System32\avifil32.dll
2012-11-22 12:00:02 7E1BC7AA112F5ED12AB6E08E41CA6726 22528 ----a-w- C:\Windows\System32\msyuv.dll
2012-11-22 12:00:02 73AD972616D10FDF40E668FEA983BC78 13312 ----a-w- C:\Windows\System32\msrle32.dll
2012-11-22 12:00:02 49481223D2451181266FD6BA51ACACAC 82944 ----a-w- C:\Windows\System32\mciavi32.dll
2012-11-22 11:59:59 3B0489DE8CC3058B48471660C60A7B75 243712 ----a-w- C:\Windows\System32\rastls.dll
2012-11-22 11:58:59 50E3E76B0901BB4FC029BB88BFA5CE79 278528 ----a-w- C:\Windows\System32\schannel.dll
2012-11-22 11:58:58 D602FEDBD9155FC2DED6863FB60C950F 72704 ----a-w- C:\Windows\System32\secur32.dll
2012-11-22 11:58:58 4ABCE74D012971305249E45E095E9EA6 218624 ----a-w- C:\Windows\System32\msv1_0.dll
2012-11-22 11:58:58 188CC19108B0EBD6332D6628D4EDE469 204288 ----a-w- C:\Windows\System32\ncrypt.dll
2012-11-22 11:58:58 178FAC2B7C66E9A4400CE7AC37623E3F 1259008 ----a-w- C:\Windows\System32\lsasrv.dll
2012-11-22 11:58:57 A3E186B4B935905B829219502557314E 9728 ----a-w- C:\Windows\System32\lsass.exe
2012-11-22 11:58:56 8A9E46EB3A8C3AB5450B0661437BFA27 2047488 ----a-w- C:\Windows\System32\win32k.sys
2012-11-22 11:58:52 244C631BE2F7F36EAD9DDAEED95AA298 3602816 ----a-w- C:\Windows\System32\ntkrnlpa.exe
2012-11-22 11:58:51 0895557E35AE46729FFEFCB3906EBC69 3550080 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-11-22 11:58:48 62748E921160C680C13AD8953C2CB015 604672 ----a-w- C:\Windows\System32\WMSPDMOD.DLL
2012-11-22 11:58:45 AD48183027CAFCEBC322CB9CAC60F9B8 355328 ----a-w- C:\Windows\System32\WSDApi.dll
2012-11-22 11:58:40 FF41E1AC301F51E16F61AD7C0F45467C 231424 ----a-w- C:\Windows\System32\msshsq.dll
2012-11-22 11:46:29 FC3EC24FCE372C89423E015A2AC1A31E 1933848 ----a-w- C:\Windows\System32\wuaueng.dll
2012-11-22 11:46:29 BDC0C99E472176C8C2C853A68ADC5073 45080 ----a-w- C:\Windows\System32\wups2.dll
2012-11-22 11:46:29 2E0B0A051FFAA86E358465BB0880D453 53784 ----a-w- C:\Windows\System32\wuauclt.exe
2012-11-22 11:46:29 285C594C4913FA9DC7BB6BA3AD6F101A 2422272 ----a-w- C:\Windows\System32\wucltux.dll
2012-11-22 11:46:21 C480F0E968ECA0D80D0299D7F204E33B 88576 ----a-w- C:\Windows\System32\wudriver.dll
2012-11-22 11:46:21 3458EDA96E30FBD0477A2800D3FB1909 35864 ----a-w- C:\Windows\System32\wups.dll
2012-11-22 11:46:21 1A617835452EEE5060976C9B9F5FE635 577048 ----a-w- C:\Windows\System32\wuapi.dll
2012-11-22 11:46:18 98F94089E9C549E223AB05BE54BAB2ED 171904 ----a-w- C:\Windows\System32\wuwebv.dll
2012-11-22 11:46:18 069385484EA57B663D688894C88975C5 33792 ----a-w- C:\Windows\System32\wuapp.exe
====== C:\Windows\system32\drivers =====
2012-12-04 13:11:10 500D089CE760D83DA2B6CBA681AA9949 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-11-22 15:01:22 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
2012-11-22 15:01:00 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
2012-11-22 14:56:01 DE9D36F91A4DF3D911626643DEBF11EA 40448 ----a-w- C:\Windows\System32\drivers\WpdUsb.sys
2012-11-22 12:56:11 B972A66758577E0BFD1DE0F91AAA27B5 12800 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-11-22 12:42:06 C68AC676B0EF30CFBB1080ADCE49EB1F 638336 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2012-11-22 12:20:47 F870AA3E254628EBEAFE754108D664DE 411648 ----a-w- C:\Windows\System32\drivers\http.sys
2012-11-22 12:14:05 608C345A255D82A6289C2D468EB41FD7 30720 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2012-11-22 12:14:05 300DB877AC094FEAB0BE7688C3454A9C 25088 ----a-w- C:\Windows\System32\drivers\tunnel.sys
2012-11-22 12:13:07 27D470DABC77BC60D0A3B0E4DEB6CB91 905600 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-11-22 12:12:58 C3CB1B40AD4A0124D617A1199B0B9D7C 79872 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2012-11-22 12:12:58 4FCCB34D793B116423209C0F8B7A3B03 214016 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2012-11-22 12:12:58 1E94971C4B446AB2290DEB71D01CF0C2 106496 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2012-11-22 12:12:34 35F376253F687BDE63976CCB3F2108CA 69632 ----a-w- C:\Windows\System32\drivers\bowser.sys
2012-11-22 12:12:18 D330803EAB2A15CAEC7F011F1D4CB30E 30208 ----a-w- C:\Windows\System32\drivers\BTHUSB.SYS
2012-11-22 12:12:18 611FF3F2F095C8D4A6D4CFD9DCC09793 508416 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-11-22 12:12:01 FF33AFF99564B1AA534F58868CBE41EF 146432 ----a-w- C:\Windows\System32\drivers\srv2.sys
2012-11-22 12:12:01 7605C0E1D01A08F3ECD743F38B834A44 102400 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2012-11-22 12:11:49 3911B972B55FEA0478476B2E777B29FA 273408 ----a-w- C:\Windows\System32\drivers\afd.sys
2012-11-22 12:11:48 41987F9FC0E61ADF54F581E15029AD91 305152 ----a-w- C:\Windows\System32\drivers\srv.sys
2012-11-22 12:11:45 622C41A07CA7E6DD91770F50D532CB6C 75264 ----a-w- C:\Windows\System32\drivers\dfsc.sys
2012-11-22 12:11:36 B9C2B89F08670E159F7181891E449CD9 53120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2012-11-22 12:11:22 C127EBD5AFAB31524662C48DFCEB773A 180736 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2012-11-22 11:58:58 4A1445EFA932A3BAF5BDB02D7131EE20 440704 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-11-14 16:02:02 1357274D1883F68300AEADD15D7BBB42 527848 ----a-w- C:\Windows\System32\drivers\NDIS.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2012-12-04 14:39:22 -------- d-----w- C:\Program Files\Speccy
2012-12-01 15:40:44 -------- d-----w- C:\Program Files\iPod
2012-12-01 15:40:42 -------- d-----w- C:\Program Files\iTunes
2012-11-28 23:31:42 -------- d-----w- C:\Program Files\Splashtop
2012-11-22 15:01:45 -------- d-----w- C:\Program Files\Windows Portable Devices
2012-11-22 12:46:29 -------- d-----w- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2012-11-22 12:16:48 -------- d-----w- C:\Program Files\MSXML 4.0
2012-11-21 18:14:23 -------- d-----w- C:\Program Files\Common Files\Wrye Bash
2012-11-21 16:32:01 -------- d-----w- C:\Program Files\Nexus Mod Manager
2012-11-21 16:12:56 -------- d-----w- C:\Program Files\DAEMON Tools Toolbar
2012-11-21 16:12:54 -------- d-----w- C:\Program Files\DAEMON Tools Lite
2012-11-18 13:23:12 -------- d-----w- C:\Program Files\AMD APP
2012-11-14 14:27:52 -------- d-----w- C:\Program Files\AVG
2012-11-14 13:43:53 -------- d-----w- C:\Program Files\VS Revo Group
======= C: =====
====== C:\Users\Gebruiker\AppData\Roaming ======
2012-11-28 23:32:55 -------- d-----w- C:\users\Gebruiker\AppData\Local\Splashtop
2012-11-28 23:31:33 -------- d-----w- C:\users\Gebruiker\AppData\Local\{55061FB0-05F6-4AE4-939C-2227AD5B7953}
2012-11-23 12:35:39 -------- d-----w- C:\users\Gebruiker\AppData\Local\Windows Live
2012-11-22 12:24:08 -------- d-----w- C:\users\Default\AppData\Local\Microsoft Help
2012-11-22 12:24:08 -------- d-----w- C:\users\Default User\AppData\Local\Microsoft Help
2012-11-21 16:32:06 -------- d-----w- C:\users\Gebruiker\AppData\Local\Black_Tree_Gaming
2012-11-14 14:30:09 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\AVG2013
2012-11-14 14:28:50 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\TuneUp Software
2012-11-14 14:26:26 -------- d-----w- C:\users\Gebruiker\AppData\Local\MFAData
2012-11-14 14:26:26 -------- d-----w- C:\users\Gebruiker\AppData\Local\Avg2013
2012-11-05 18:12:31 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Efkani
2012-11-05 18:12:27 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Ukwi
2012-11-05 18:12:27 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Hyavve
====== C:\Users\Gebruiker ======
2012-12-01 15:40:42 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2012-11-29 20:19:02 -------- d-----w- C:\ProgramData\PACE Anti-Piracy
2012-11-22 14:38:51 471913B09BBD8498CE3E06CA74FF3D44 6522 ----a-w- C:\Users\Gebruiker\cc_20121122_153846.reg
2012-11-21 16:30:55 -------- d-----w- C:\ProgramData\NexusDB3
2012-11-18 13:23:46 -------- d-----w- C:\ProgramData\ATI
2012-11-14 14:28:24 -------- d-----w- C:\ProgramData\AVG2013
2012-11-14 14:26:26 -------- d--h--w- C:\ProgramData\Common Files
2012-11-14 14:26:26 -------- d-----w- C:\ProgramData\MFAData
2012-11-14 13:57:29 A3D9841CB35D8CBE875F76046D1C6E10 7508 ----a-w- C:\Users\Gebruiker\cc_20121114_145728.reg
2012-11-14 13:42:05 11758D4C1B7EADD577CBA3B6B3DDB8F5 146902 ----a-w- C:\Users\Gebruiker\cc_20121114_144201.reg

====== C: exe-files ==
2012-12-04 14:44:12 CE3F0287AC46D9499C18AC022C1FC3F1 3178400 ----a-w- C:\Users\Gebruiker\Desktop\MCPR6.exe
2012-12-04 14:38:57 0D0336CCE85D41189F629B18DDDA5E4F 4778720 ----a-w- C:\Users\Gebruiker\Desktop\spsetup119.exe
2012-12-04 13:10:35 1EE6BF9C38EDA7A7F688D28C2BA2DBD8 10669952 ----a-w- C:\Users\Gebruiker\Downloads\mbam-setup-1.65.1.1000.exe
2012-12-01 15:41:29 28E5C78ADC06AF2A4DB3AB8093C2F6C1 76688 ----a-w- C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03DH8O3L\SetupAdmin[1].exe
2012-12-01 15:41:29 28E5C78ADC06AF2A4DB3AB8093C2F6C1 76688 ----a-w- C:\ProgramData\Apple\Installer Cache\iCloud Control Panel 2.1.0.39\SetupAdmin.exe
2012-12-01 15:36:58 3D02DB592224DD641C062D6C171CF209 76696 ----a-w- C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V23AN3C6\SetupAdmin[1].exe
2012-12-01 15:36:58 3D02DB592224DD641C062D6C171CF209 76696 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 11.0.0.163\SetupAdmin.exe
2012-12-01 15:35:26 C272EF16B9C75C8AF07823223A1CBEB8 79776 ----a-w- C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\03DH8O3L\QuickTimeInstallerAdmin[1].exe
2012-11-30 20:22:29 BC86BBB57CCDCF919F311C9E8EBF0DB3 670712 ----a-w- C:\Users\Gebruiker\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\23.0.1271.95\23.0.1271.95_23.0.1271.91_chrome_updater.exe
2012-11-29 18:58:49 FD5DC25F2E884C3510117A533E554E0F 1713000 ----a-w- C:\Windows\temp\{F076B989-1E7B-4e0a-9A9E-2170C97799E0}\data\SSUPatchUpdater.exe
2012-11-29 18:58:49 D86989A9880DD6CE3937C44064B34A0E 6526888 ----a-w- C:\Program Files\Splashtop\Splashtop Software Updater\Temp\SRFeature.exe
2012-11-28 23:49:26 D7936ED15F4AEF0FC33F329D0F21ED46 151952 ----a-w- C:\Program Files\iTunes\iTunesHelper.exe
2012-11-28 23:49:20 69EFF50A41B0E1FD5D3087FFC04505A7 9788816 ----a-w- C:\Program Files\iTunes\iTunes.exe
2012-11-28 23:49:00 EF1C51222117B37AFBFF8F4642EA8C62 552848 ----a-w- C:\Program Files\iPod\bin\iPodService.exe
2012-11-28 23:30:43 0EC0F792A0ABD5C2DCC683DAB719920D 17069560 ----a-w- C:\Users\Gebruiker\Downloads\Splashtop_Streamer_WIN_v2.1.5.2.EXE
2012-11-28 15:39:08 7C93824D4ADC0B0758305BB649A6F0F0 2981264 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleOutlookDAVConfig.exe
2012-11-28 15:37:26 EBACE0B24B2FF493C7BF57A3072E328C 30608 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\PhotoStream.exe
2012-11-28 15:37:22 2DB2458382058044FBB6F5686882AFCB 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
2012-11-28 15:37:22 2669F4649655EE3947C8F626B698F7E5 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
2012-11-28 15:37:16 F01214D2113086F5E71C73821670DF14 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe
2012-11-28 15:26:58 D2B6CE5D9C68B513B2F9251E63BAF226 145296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe
2012-11-28 15:26:58 43F95CA51643DBF309E84B69DEBE8235 145296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe
2012-11-28 15:23:06 EF6807C50ED8C9C5E0330B73DE908EED 14736 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudWeb.exe
2012-11-28 15:23:06 8F322278791F1E25ABAE9E660FD02B40 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
2012-11-28 13:13:42 4428E5A3F19F1BD7430CF8DC40F21C6E 14224 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
2012-11-28 13:13:24 5DBDC85A9AB1C338E82DB4F118C04D6E 13712 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
2012-11-28 13:13:16 C26B09276755E0698B31CF0BAE0BF182 59280 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe


(te veel tekens, vervolg van de log file hieronder)


Omhoog
 Profiel  
 
BerichtGeplaatst: di dec 04, 2012 5:19 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
=== C: other files ==
2012-12-04 13:36:25 9457338F2AE54783A8FB65FA18AF9A59 294216 ----a-w- C:\Users\Gebruiker\Desktop\gmer.zip
2012-12-04 13:11:10 500D089CE760D83DA2B6CBA681AA9949 22856 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-12-01 15:36:36 C4EB1B18B39BD2F76A64F75D01DEAB61 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin3.dll
2012-12-01 15:36:36 B14417814FCA3A5D4AB170E1823D5484 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin5.dll
2012-12-01 15:36:36 AF87C7A3D391F5F5534167546D7DDE30 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin7.dll
2012-12-01 15:36:36 9FCA15CC38F2E2C6F5E722ED0E1A9E7A 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin.dll
2012-12-01 15:36:36 45CC6EFE643FCB97D986BBE2D21E2491 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin2.dll
2012-12-01 15:36:36 3EFF190EC0E333DFBD2F5499858044B6 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin4.dll
2012-12-01 15:36:36 2034E977759F4EB2226914BFC58F2758 159744 ----a-w- C:\Program Files\Internet Explorer\Plugins\npqtplugin6.dll
2012-12-01 15:36:35 B14417814FCA3A5D4AB170E1823D5484 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin5.dll
2012-12-01 15:36:35 AF87C7A3D391F5F5534167546D7DDE30 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin7.dll
2012-12-01 15:36:35 2034E977759F4EB2226914BFC58F2758 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin6.dll
2012-12-01 15:36:34 C4EB1B18B39BD2F76A64F75D01DEAB61 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin3.dll
2012-12-01 15:36:34 9FCA15CC38F2E2C6F5E722ED0E1A9E7A 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin.dll
2012-12-01 15:36:34 45CC6EFE643FCB97D986BBE2D21E2491 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin2.dll
2012-12-01 15:36:34 3EFF190EC0E333DFBD2F5499858044B6 159744 ----a-w- C:\Program Files\QuickTime\Plugins\npqtplugin4.dll
2012-11-29 00:23:00 F61213234C4D2799A18868BC5F6EAD82 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en_GB.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 F48906A00D0B34832F0119D966D32091 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\pl.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 F47FD0AFF1FE105BDC864D3CE312A304 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\uk.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 F45FCA5D2F779D79A307A821AF0C3FBB 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\de.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 F35870E5CBB2468181B8145E185B9B80 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\th.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 F05F4435EA9EFACB15976EEF7C8AE388 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ko.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 E8E70F1E677AB4131B41F0C9A7226EB7 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\cs.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 DB6162CD074EC09B2D6518B30FE6FECC 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\ja.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 D4A7E6C947D2D832FBB1FC79E2832534 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\zh_TW.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 D168E28176C1F0C6C810623D8C4EC894 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\pl.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 D13B2DFC008C0F428713B6D15533CB0B 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\sk.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 CF0E53056044875F6ACED73E1A68189B 82320 ----a-w- C:\Program Files\iTunes\iTunes.Resources\zh_TW.lproj\iTunesLocalized.dll
2012-11-29 00:23:00 CCF59D89112265BFCC58476645AA7AF6 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\zh_TW.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 CBC25C87554A4C636DF0A0834EBE70B7 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\pt.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 C9EB8AB4B73E2A3E797FB2569B6A428C 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\ru.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 C03B79275D2188B800AC2F6E00C8972A 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 BCAA594DE6C54EB77F1D7BA33A726E4A 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\da.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 BA8FD0FCCDFAD7AB361C197D68A6954A 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ja.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 B9FCE81D5147BB044D124883539D6C29 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\zh_CN.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 B7A75D45AC5BD039B53CE70FCE33E380 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\de.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 B759ABF7C46E43D3DAFD9A9F4A321F87 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ca.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 AD239C950414876235A2E01658BF4D33 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\ca.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 A9572D99E3DA5D877D02569373053D8E 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\sv.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 A1D730E8B51F02087E26102F273D0CB2 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\uk.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 A08B62FFECDD3E955C193CEE6E5667DF 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\nl.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 8E0299DA814EAD54C5D832F449446B19 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\cs.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 8D7BB12FAF4EDFED092B758CA8EFC9F5 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\en_GB.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 87C4E781FFB4E38DF8299F56DFBCD06D 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\tr.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 81835CF4D85439B1776879832859EAE8 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\el.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 7E7BACE5C1C98DA2D3B53C273D10792B 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\ro.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 77D9C2EB160FE1E857464E1CAE95CCB7 82320 ----a-w- C:\Program Files\iTunes\iTunes.Resources\zh_CN.lproj\iTunesLocalized.dll
2012-11-29 00:23:00 72B9C6F014DCDFBCCB0BBCDA42F0BB62 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\pt_PT.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 60611713E2B35152DED5B3D3A87FFBA8 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\es.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 5D63AF6091D2BD5FD6440DAFB5619DF2 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\hu.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 59F3CF52253D41A522FB97C0A4E201C4 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\tr.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 563A01E20AAC3CA4E2E7701F56867A67 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\sk.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 545E8956D192FB1634151A80C6F55848 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fi.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 50503EF1899A51075AF552A75BEF97D6 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\es.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 4DA2A811974D482BB960D929B2FEB597 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\el.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 49FD9717CF54C23395BBAB67EB7A21D5 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\it.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 487BBA040755C85F6B22AAF9EC7CC1BB 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\da.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 478B5632854611692B1811B3A07301CB 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\hr.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 45BC5811C39C9FFCA5D760730AE9DF78 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\nl.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 44DD1931E9E813EA8F2F28E5C175433D 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ro.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 44425A10E1C2531EFD693FFE74EC7A1D 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\it.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 205D3EEB1084387153D2B2EAF89BA4EB 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\pt_PT.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 1FC93AD1C285C1F80839AF7BE1389CC4 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\hu.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 1EECE2CAE84FEA5F70474301B05F6290 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\zh_CN.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 1E5F46533F0172DDCCB59ACC0EC8616A 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\nb.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 17B171433A10182FBDAA408F45E698B6 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\sv.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 15E47EF61382BD6AFC5D6B310015CEEB 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\fi.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 142CDB2F238206CE161307BF076A2A31 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\pt.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 0EB495816E87F407960508E90EB96647 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fr.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 0D0E1AAE8F4D51F3B2DEAA79C5447B5D 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\nb.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 05663BD3E8D527E691EA7EEF1BF0E825 40848 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\ru.lproj\iTunesMiniPlayerLocalized.dll
2012-11-29 00:23:00 05312304ACD19C64B39105297BEE2342 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\hr.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 036075515875A938CEE0E89C09AFDB22 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\th.lproj\iTunesHelperLocalized.dll
2012-11-29 00:23:00 012C8525E7C49D2810744C1C822CDD5D 40848 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\ko.lproj\iTunesHelperLocalized.dll
2012-11-29 00:22:58 F04807FC67121B686F987445F7880110 93072 ----a-w- C:\Program Files\iTunes\iTunes.Resources\sv.lproj\iTunesLocalized.dll
2012-11-29 00:22:58 86CC268DAD51393814A7C1CE732D7D0B 92048 ----a-w- C:\Program Files\iTunes\iTunes.Resources\th.lproj\iTunesLocalized.dll
2012-11-29 00:22:58 779F4CCC3D750932A5D60652D3A49497 95632 ----a-w- C:\Program Files\iTunes\iTunes.Resources\uk.lproj\iTunesLocalized.dll
2012-11-29 00:22:58 76875984191674B409B0A836C8AB0552 94608 ----a-w- C:\Program Files\iTunes\iTunes.Resources\tr.lproj\iTunesLocalized.dll
2012-11-29 00:22:56 EB02E04E27ED881512C63753FB6C9FE9 96656 ----a-w- C:\Program Files\iTunes\iTunes.Resources\pt_PT.lproj\iTunesLocalized.dll
2012-11-29 00:22:56 8348998DE4551CA4F6A6D594D6EDFE30 96144 ----a-w- C:\Program Files\iTunes\iTunes.Resources\ro.lproj\iTunesLocalized.dll
2012-11-29 00:22:56 486D9B3112CACDFE95A56B9966DAB501 93584 ----a-w- C:\Program Files\iTunes\iTunes.Resources\sk.lproj\iTunesLocalized.dll
2012-11-29 00:22:56 24582E29361647C153A73FE8F3AC69F1 94608 ----a-w- C:\Program Files\iTunes\iTunes.Resources\ru.lproj\iTunesLocalized.dll
2012-11-29 00:22:54 3B173B986B8E84D9DE612AAB58182F1F 96656 ----a-w- C:\Program Files\iTunes\iTunes.Resources\pt.lproj\iTunesLocalized.dll
2012-11-29 00:22:52 D26E7AA0723C9A104383F6294BA1ACB7 94608 ----a-w- C:\Program Files\iTunes\iTunes.Resources\pl.lproj\iTunesLocalized.dll
2012-11-29 00:22:50 551AC9C2F108991FEA722DC67E337985 95632 ----a-w- C:\Program Files\iTunes\iTunes.Resources\nl.lproj\iTunesLocalized.dll
2012-11-29 00:22:48 EA4C14AA6D2AF1BD96801A572FFAE153 86928 ----a-w- C:\Program Files\iTunes\iTunes.Resources\ja.lproj\iTunesLocalized.dll
2012-11-29 00:22:48 D5D9819DD2B03450AFB70B605493DEF1 93584 ----a-w- C:\Program Files\iTunes\iTunes.Resources\nb.lproj\iTunesLocalized.dll
2012-11-29 00:22:48 9AA2C9351C7604C3D8D03F42A7D83A7E 84880 ----a-w- C:\Program Files\iTunes\iTunes.Resources\ko.lproj\iTunesLocalized.dll
2012-11-29 00:22:46 C11B6CF7E9231087E70CB0EB11F02B85 95632 ----a-w- C:\Program Files\iTunes\iTunes.Resources\hr.lproj\iTunesLocalized.dll
2012-11-29 00:22:46 803C300D421B518ED237051927A71C73 151440 ----a-w- C:\Program Files\iTunes\iTunes.Resources\iTunesRegistry.dll
2012-11-29 00:22:46 288057732528D60EB75DFE9C44CDF378 95632 ----a-w- C:\Program Files\iTunes\iTunes.Resources\it.lproj\iTunesLocalized.dll
2012-11-29 00:22:46 029C92CA8E4526C71B31123165A3D3E4 96656 ----a-w- C:\Program Files\iTunes\iTunes.Resources\hu.lproj\iTunesLocalized.dll
2012-11-29 00:22:44 9BA21DA77324F301DB69A901902856E7 97168 ----a-w- C:\Program Files\iTunes\iTunes.Resources\es.lproj\iTunesLocalized.dll
2012-11-29 00:22:44 922281D5C40CF0E8A6E9C8B0D471CF89 97680 ----a-w- C:\Program Files\iTunes\iTunes.Resources\fr.lproj\iTunesLocalized.dll
2012-11-29 00:22:44 3A788DA0F07F50A8B51250DE8A68EC2E 93584 ----a-w- C:\Program Files\iTunes\iTunes.Resources\fi.lproj\iTunesLocalized.dll
2012-11-29 00:22:42 A65C4634CB34200A2E2EB247AE02B628 92048 ----a-w- C:\Program Files\iTunes\iTunes.Resources\en_GB.lproj\iTunesLocalized.dll
2012-11-29 00:22:40 DCA6C2D5C516C11FEDB4EEB9F2D6A94B 97680 ----a-w- C:\Program Files\iTunes\iTunes.Resources\el.lproj\iTunesLocalized.dll
2012-11-29 00:22:40 B3902C3A36FBBCA3979C119E27EA108E 96144 ----a-w- C:\Program Files\iTunes\iTunes.Resources\de.lproj\iTunesLocalized.dll
2012-11-29 00:22:40 61DC3E16A38C0C26B8D328F78513487A 93072 ----a-w- C:\Program Files\iTunes\iTunes.Resources\cs.lproj\iTunesLocalized.dll
2012-11-29 00:22:40 51429DF9403EF3AEECDE800D79968EEF 93584 ----a-w- C:\Program Files\iTunes\iTunes.Resources\da.lproj\iTunesLocalized.dll
2012-11-29 00:22:38 FFA017B9A021BEEB95367F435F611A58 41360 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\ca.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 F660390DB279A4704FF306DDF51B1040 41360 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\de.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 D64FD27EC00A54C838897BAB9B114FA3 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\ro.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 D4C20A1D58AF858203773F48BD08AC81 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\cs.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 D320C7581FB33DEF313DEC582B3DC77E 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\ru.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 CD54A7F14856F05642B188D5232E89B7 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\nl.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 C08A59C5DB78A580EF047AF6BD2C6B57 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\uk.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 BC67AAC45CAE904BD6E0DBA8755BFDA9 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\pt.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 A4B31B7169CBDB130752ECD65CFFCE6E 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\pt_PT.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 A129A7FBD72D2E9B98718C9348CB9B4E 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\sv.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 972E345684A5CF705D7181B0DB6A0C46 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\hr.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 94992E3ED87BD845B2A127D209DEAC9C 41360 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\hu.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 8AE97E769E8F745344A169FF5F30E0D6 40336 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\zh_TW.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 8214FF294D738759042DA4EBEFA06971 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\da.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 7D305F3AED2006F750C8C9ABE507F9F9 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\th.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 707A01FC1F47721077091E4E21CCB8D3 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\it.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 68F90719613DF88829E1D040532D63A9 98704 ----a-w- C:\Program Files\iTunes\iTunes.Resources\ca.lproj\iTunesLocalized.dll
2012-11-29 00:22:38 63D9D977AEBB9F90AD3DC66E782ADC63 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\fi.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 566F343F18319C1C35A2496DC2645670 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\pl.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 513F6E73868BE7F4DE9B163682CE992D 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\ko.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 4AE391622BE285DF0F3845F2A754BF8F 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\tr.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 48C6D6A9CB5046A1B479EBB4D864D5CF 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\es.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 4881130AE1891499736FADE6EF38504B 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\nb.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 416715E8A8055D8559A2C1E6C9B8B17C 41360 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\el.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 4089F5B69EEECDD47D942F6D4B87F17E 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\sk.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 2D170E1AA9E64AC6038D42A17A42C7EB 40336 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\zh_CN.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 181BB211518635B738C2F584EE8D581B 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\ja.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 17E205D82D2758AE57BA3D96AEE1B117 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\en_GB.lproj\iPodServiceLocalized.dll
2012-11-29 00:22:38 0364816E1AC8458F14FA9387514D90B1 41360 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\fr.lproj\iPodServiceLocalized.dll
2012-11-28 23:49:32 FF7948EEE2142817277FCE784CC50A0A 292752 ----a-w- C:\Program Files\iTunes\iTunesOutlookAddIn.dll
2012-11-28 23:49:26 E375386B937B7FF3A10F71D1A09AD360 148368 ----a-w- C:\Program Files\iTunes\iTunesHelper.dll
2012-11-28 23:49:26 B7C89F6B84D1267241BE0801AF0BFECC 117136 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.dll
2012-11-28 23:49:26 91062AC5D12F74DBFCCAEEAD86372CBD 39824 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
2012-11-28 23:49:26 8B70A55FDB9C0518DB9F8C5FF0774313 41360 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
2012-11-28 23:49:26 48FB524B6453A6E751633E7FF8AC40FE 40336 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll
2012-11-28 23:49:26 01918808AE8A2C82E1C40E5A00B3A9D0 136592 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
2012-11-28 23:49:24 C4A46EA8A1263515E07B6E987AB91FD1 404880 ----a-w- C:\Program Files\iTunes\iTunesAdmin.dll
2012-11-28 23:49:24 ABCF929FB23BE28EF160C55CFB33D197 11365776 ----a-w- C:\Program Files\iTunes\iTunes.Resources\iTunes.dll
2012-11-28 23:49:22 F827CD0AC6D5088D5876959EAF67C9A7 92048 ----a-w- C:\Program Files\iTunes\iTunes.Resources\en.lproj\iTunesLocalized.dll
2012-11-28 23:49:04 360AB6388930C69B2D8ECE7D1D074358 22682512 ----a-w- C:\Program Files\iTunes\iTunes.dll
2012-11-28 23:49:00 EEAD2D2FAEC389EB717C1B9562F835FE 39824 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
2012-11-28 23:49:00 E3052D7C10FE83E3EFA00F5E67621DA2 40848 ----a-w- C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
2012-11-28 23:49:00 E2F8990394104D28301015403777C7B3 782248 ----a-w- C:\Program Files\iTunes\gnsdk_sdkmanager.dll
2012-11-28 23:49:00 D9C3741E76D5ECE227A8C38EB09B565C 268712 ----a-w- C:\Program Files\iTunes\gnsdk_submit.dll
2012-11-28 23:49:00 A7379D0DC7B1346E401013B2086E5568 649616 ----a-w- C:\Program Files\iTunes\iPodUpdaterExt.dll
2012-11-28 23:49:00 5D42284A27305B2A98DC3FF421F92E59 3014568 ----a-w- C:\Program Files\iTunes\gnsdk_dsp.dll
2012-11-28 23:49:00 369D9BBC1D9E78D89CFE4F4B659499D5 225704 ----a-w- C:\Program Files\iTunes\gnsdk_musicid.dll
2012-11-28 15:39:16 FBA1D03DBF44C14E920DD7E909D5F1F8 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ro.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 FB7AA64385D9F7D2B703474EC894F285 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pt_PT.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 E9327B3AD05E4B3FDB3567456168A281 82832 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\fr.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 E73D57321A6AD147C917AD97D93309F8 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\cs.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 E6020D2D0E4353F586DDE870DD2C0DD2 77200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\uk.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 DB11BDFBB9FC4635BAC4C04363A75B5B 82832 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ca.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 CDFBB74A4BD85767239B2833AE918597 75664 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\tr.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 CCA8A47E5F234E51E3E0D06DBD59C859 81296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\hu.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 C67549C980F8CD3373ECC76CBAA03764 83856 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\de.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 C3D69059ED4E0D3BAE8CAD055359010B 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\hr.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 B283C6629086AE4B331A1866B02BD53C 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\nl.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 A78B06C9EFEB419BFB63AE4C7E2F26CE 80272 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pt.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 A1357B1D1B3E794C121BF099A0CF5E41 86416 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\el.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 8902E1946FA54205CC48139AB00F0CC1 74640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\da.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 8629346AB49C61AAE16D4CCA71605B0C 78224 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ru.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 7D5D0C3EC61F8ED577B9251B6BBA790E 55696 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ja.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 71E87DA4D6845BD1204F6AA18B70E48B 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\es.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 6AB57A11BE88F35B27F81823B39791EF 46992 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\zh_CN.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 5D78AD2D755957D6EE4DE9DB1599BE52 54160 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ko.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 570BDC01BD6388C0953A0632AA0F1D8B 81296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pl.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 55F0F1BD89AF16B6DFF7BFD28EAE9260 46992 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\zh_TW.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 395710D507FB4F87B295900777B6B498 67472 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\he.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 37F5F0E9DF8F6FC5F04E57DABDD913A4 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\sv.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 2FC368802BED2F9DDC208F8181EAC0AA 79760 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\it.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 2A8A9656833EF9AA212A7E7309794738 76688 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\fi.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 21EF6831B7CB707188D17024EA355775 77200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\sk.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 1648A26B4345AF4FEF87AFB449B14CB2 72592 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\th.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 0E61DBFBD5A3BEEDBEB916B3968E9098 70032 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ar.lproj\APLZODLocalized.dll
2012-11-28 15:39:16 00267F7C803016C5CD508CB9CE700661 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\nb.lproj\APLZODLocalized.dll
2012-11-28 15:39:12 B2C608DA322715D2EF7CB15CAF655B48 72080 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\en.lproj\APLZODLocalized.dll
2012-11-28 15:39:08 146D24F17B700FC41C5244BE5CD742BE 3661200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD32.dll
2012-11-28 15:37:34 E5266697A1FD528BE61D7646930E33E5 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pt.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 CD31C650226FA166DDACBEA5900B8AE6 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ca.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 CB36DBC44DE78C25E8EAAD2EC4378524 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\th.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 CACCA6FCECF89314E0132D5BACBA5F33 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\tr.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 C258B96D123BCB136F902F2B3941F977 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\hr.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 BB2D9A1480E0DB6A2442F4EDA3FE25BC 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\cs.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 B363FAC9E7EA9A51896639A68B081B3A 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\nb.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 A670A862E00ED261C07DA030A2888D99 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\da.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 A47AA44F26ED46F95A75CA4B4670F70A 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\zh_CN.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 A039FB07EE1A14FBFDE3B79A90895660 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\es.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 9D6C0F9A116383E622044ED2350A32F3 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\el.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 98E935847D4C5189F983864E3B91E8C0 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\uk.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 8783607E86810C4C1B0D643A146FCD6E 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\zh_TW.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 81B30C39C94CEA891567A4A2D1B448EE 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\hu.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 804DDE67BA976EB7D3AFC40CF0864D13 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\de.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 7597D1AB3D4AD71DA7212C49C7E56FE3 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ro.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 6F971176C3C3997C48AAA936E41F6FF8 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ar.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 6EFEB14BBB8B16A229B14082BF178E6B 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\sk.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 69D2146F05503D5E9229C460AB4DB9F9 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\he.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 695D4A838C8DE351C8246A7A28597BAF 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ko.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 690994C94F7C90B0C3FEFF4244835A4E 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\fi.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 658A2C8745D2D5E2DC691D3667AB7CC4 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ru.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 589ECF8ADC41BACD9D4DE5D437F2A7C2 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pt_PT.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 53A17F698DDA97063FECED330D53D974 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pl.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 50DC61BB2247559D83186FF21D580B5B 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\it.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 4C596718CA7F54987E12CBBFC039E874 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\fr.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 47BDBE965185DDB3225842C72D92A254 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\nl.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 3ED39F1656038F10D63CCAB693DAB18C 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\sv.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:34 2589C1984014C6C5224A7F3DB29037C3 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ja.lproj\iCloudServicesLocalized.dll
2012-11-28 15:37:30 BC732E27FED6ED522F933FE247384C71 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\uk.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:30 ABAF4F6D309AEEC09B10F77090029328 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\tr.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:30 55F3D50AFD67C4A672EDA3397B93E3B4 706448 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\zh_TW.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:30 4846246ACC8ED1ADF471FC091A619366 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\GenerationalStorage.dll
2012-11-28 15:37:30 0E1414FBAD61A61F2757F48ACAED1AB8 706448 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\zh_CN.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 F5DFB982E9F7E1A4786172604C8241CE 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\hu.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 F4A95626382653CFCB236B8B2FD40957 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pt.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 EF0AC8EBA0FF4C5635D4A2D7F0AAC247 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ro.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 E39F4DA610AFDB4413E3EA4B6229C4EF 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ko.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 C4E1E6F0D4C83E841BF439772E78DC08 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\fi.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 C14598328359D15BBB3200ED816E4617 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ja.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 B75507C338B4F07588677C6AC9755DF4 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ru.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 9E93B70089E914685187FB8EF9D033E5 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ar.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 96BE90F4018FDE3D4CE515C0E368319C 1488784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\de.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 8C252573CFB4577B29C4199BC3DB7FB1 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\sk.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 86C60F1DD6B273335FD5C578AB1606CF 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\es.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 849BC1A24EC3F7D691715FD02A0B6A68 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\cs.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 7F51F847A49D7F80CF379BD48BBEC7DD 1488784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pl.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 75812584DA8DAA3F822FE27174DD87D5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\it.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 6D3FAF69A0A3DAC3412D6A3A5407CED5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ca.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 647FE77017E4F4A8D0C08B183536F484 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\nl.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 5416221E4F451AE4406AA6FA841397B1 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pt_PT.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 464C43BE83E3C628078E11117E225CD5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\hr.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 3C0E5AA446CA305CEF8E9DB9362BA208 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\he.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 3174054FD1C6B458B839509E4F22B39D 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\el.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 2C480CE47D02857E47A879B57A69A67B 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\nb.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 141EAC62286A187FD19E14639EB9F231 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\fr.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 12104678B807617AA51C2B4A4065E3A5 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\da.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 10E6925E959683BAD28F149EF6762400 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\sv.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:28 01B111C122444CA4A7C793F41895A00F 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\th.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:26 11CE269567F25E2048926CC3AAB35679 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\en.lproj\ShellStreamsLocalized.dll
2012-11-28 15:37:22 FC630B6804CE57491B1F7E7F425AA805 657296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll
2012-11-28 15:37:22 C120C1A7CC099F9E15E6961A87DCD96D 21392 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsPS.dll
2012-11-28 15:37:22 BE6B2854E457F38C7E5DABA5BF50992E 919440 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
2012-11-28 15:37:22 2771A37219466E574942946A364C22E8 1447824 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll
2012-11-28 15:37:20 F15A367DE60346A7240BD06D69903461 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\zh_TW.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 EDA7040CF54DEEDD982082EF4A3B8CB3 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\hu.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 EDA14411EBE8C59F5E145DDF49744375 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\sk.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 A4FB5276715D8FACF917A256730289E5 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\uk.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 7F6E0608FE1FC6EFB800C09011CA93B2 415632 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\zh_CN.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 78240BD8BF409EC8054716F8C78419D4 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\sv.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 72CEA80A5F14FB201D47BC9124C26237 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\nl.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 68631D232782ABA18C8C4728B1D9C625 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\nb.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 5C66BCE7A041A4B1064C8599216AB200 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ko.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 52B2B2BA92242B2B7EABD5AC9039B7CD 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pl.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 30C49F79CEEEE6EA0134F658A1175F1D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\th.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 2829E7C8712DBEDA16E067A0C66488DF 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pt.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 254600FEFB8F31EEDF2B747D911D2B6D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pt_PT.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 250BEB10C71B1AAEC72817F626B52B89 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ja.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 1477FA257C54DE9F791C7384F86485AE 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ru.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 0A2715848AC0514C99DF2B758B65F90E 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\it.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 083B535A302DFF89A2D0A47C5F826A81 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\tr.lproj\iCloudLocalized.dll
2012-11-28 15:37:20 033A201AE413E039D1AFCE268DF8849A 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ro.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 FE7D73C83C19B1994D89301C0544D38D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ar.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 F8493B2048F8D53095E605AC84147C7E 423824 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ca.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 C888A7CDE00F1492D8CA9334175A06B7 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\fr.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 C5FEE40D79F5AAFE26D242AC2EF7D47D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\he.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 AB92FDF7965D5F1268E4949CDD5FB245 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\cs.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 A05AD986C44A539AB9F815219AB399BE 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\hr.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 8E6A050C399E36F36DEC6CBC1028B1A2 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\el.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 7697AEF298EBD5D84647994EBF0888DA 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\es.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 6C90B6B0BCE8AB1BC682A64EAEBC29FA 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\da.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 5CF747C506423C6535D95B6287B3F754 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\fi.lproj\iCloudLocalized.dll
2012-11-28 15:37:18 2189CE9CEDFBDD6F43E27B06652CABED 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\de.lproj\iCloudLocalized.dll
2012-11-28 15:37:16 FC72FB645CD3A06D4CFD67DA9663D2C1 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleSafariBookmarkMMProvider.dll
2012-11-28 15:37:16 F880FA8E1ECDF46FA652AA9A22E82849 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\InternetExplorerBookmarkDAV.dll
2012-11-28 15:37:16 1FD1D143474D70D68FB5A0D8D435F251 255888 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client_main.dll
2012-11-28 15:37:16 0B3C266387FE2DCA55862DFE9ABE24D7 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleIEBookmarkMMProvider.dll
2012-11-28 15:27:02 E6F3DC88C16C96F1C89D757A52833286 202640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\LibRainfall.dll
2012-11-28 15:27:00 B96941814AC50F0D68D91C5497FA1633 518032 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\CoreDAV.dll
2012-11-28 15:26:58 E1D017950B5EB2F49B610F069CB64E2A 468880 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud_main.dll
2012-11-28 15:26:58 CCF7A1FD7376E28156B52F809CC73E2B 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\en.lproj\iCloudLocalized.dll
2012-11-28 15:26:58 4B91F892F851B0DBC99D44990AB14BCA 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\EReporter_main.dll
2012-11-28 15:23:08 2B690E516651483F8B2DB04EF297A763 268176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\mmcs.dll
2012-11-28 15:23:06 D3B712EF75F6E054C33B2F6772CF63F8 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\en.lproj\iCloudServicesLocalized.dll
2012-11-28 15:23:06 C33127902A9B110D37D6DF4E03E35677 178064 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices_main.dll
2012-11-28 15:22:02 34DAF6F827192A55B2D98524DF206CB8 141200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AOSKit.dll
2012-11-28 15:14:24 DAC1C8457B507A789B0505B062849FBC 137104 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ChunkingLibrary.dll
2012-11-28 13:13:52 D6B466289A85F1C0A9641CEE3441E6F3 16784 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\YSUtilities.dll
2012-11-28 13:13:52 64894527838C86454E2F378FF39FA336 38800 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
2012-11-28 13:13:52 42005C56D4BC5511B5C5D2103FE1151A 863632 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKitQuartzCoreAdditions.dll
2012-11-28 13:13:34 2A4D5764DCA987F255669EEC5E4B8B13 9996176 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit.dll
2012-11-28 13:13:32 22C359D22AF4400D5CF064726D7303E1 2369424 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\VideoToolbox.dll
2012-11-28 13:13:30 87FF5B81BC831D2A8B8487D2FC1A9A46 4974480 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\MediaToolbox.dll
2012-11-28 13:13:30 78865ABC5F5D13190F8B35BD9044714A 124816 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
2012-11-28 13:13:30 45BB1649BB64B755D52C051509741277 60816 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\QTMovieWin.dll
2012-11-28 13:13:30 3687E37869B69040657E0CE3F5DB58AA 329616 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\libtidy.dll
2012-11-28 13:13:28 FF9831030678C7B6D70BAC00F68F8976 43408 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
2012-11-28 13:13:24 55E78456E49AAAB5E973D1FCAF4A8207 1292176 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreVideo.dll
2012-11-28 13:13:22 EB94C96B8964BBF9C9CF3C8F49645727 354192 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreMedia.dll
2012-11-28 13:13:22 0596623E58BF98B4E5ED79B730CCFEAF 563088 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreText.dll
2012-11-28 13:13:20 EF8CD3C64EE9C08980D6D06CCCE46C68 1079184 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
2012-11-28 13:13:18 D420904DDF2619DA2A96371B0D4670C9 4986768 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreAudioToolbox.dll
2012-11-28 13:13:16 F6FD367C9EAAEDF90CD7A7952AE0B336 75664 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
2012-11-28 13:13:16 AC3C81118A310B2697ABFCE51AE7222B 39824 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\ApplePushService.dll
2012-11-28 13:13:16 5112FBD9885D79A9FC73BDE9B1EF9334 677776 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
2012-11-28 12:26:08 69E5F6102D8016CA487D35D565AA61F2 93672 ----a-w- C:\Windows\System32\WindowsAccessBridge.dll
2012-11-27 15:43:20 C1D9F31B5ECBB518ED08AFF361E7CE12 24627088 ----a-w- C:\Program Files\Common Files\Apple\CoreFP\CoreFP.dll

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-1710946290-1271144848-205264977-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe"
"iCloudServices"="C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe -autorun"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
"M-Audio Taskbar Icon"="C:\Windows\System32\DeltaIITray.exe"
"DeltaIITaskbarApp"="C:\Windows\system32\DeltaIITray.exe"
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"SwitchBoard"="C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"
"AdobeCS5ServiceManager"="C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin"
"amd_dc_opt"="C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"AVG_UI"="C:\Program Files\AVG\AVG2013\avgui.exe /TRAYONLY"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"="C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe ASO-616B5711-6DAE-4795-A05F-39A1E5104020"
"ehTray.exe"="C:\Windows\ehome\ehTray.exe"
"MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe"
"iCloudServices"="C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe"
"ApplePhotoStreams"="C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe -autorun"
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDAudDeck]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HDAudDeck"
"hkey"="HKLM"
"command"="C:\\Program Files\\VIA\\VIAudioi\\HDADeck\\HDeck.exe 1"


==== Startup Folders ======================

2010-01-17 12:14:59 1910 -c--a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Snelle start.lnk
2010-01-17 12:14:59 1952 -c--a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
2012-02-01 12:47:30 1119 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [09-10-2012 14:01]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [24-01-2012 13:18]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [24-01-2012 13:18]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1710946290-1271144848-205264977-1000Core.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [24-01-2012 12:57]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1710946290-1271144848-205264977-1000UA.job --a------ C:\Users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [24-01-2012 12:57]

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKCU\*\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Gebruiker\AppData\Local\temp\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Gebruiker\AppData\Local\temp\Temporary Internet Files\Content.IE5\index.dat" not found


Omhoog
 Profiel  
 
BerichtGeplaatst: di dec 04, 2012 5:58 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,

"zoek.exe" gebruiken:
  • Sluit nu eerst alle nog openstaande programmavensters!
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
    • Windows 2000 en Windows XP: start de tool middels dubbelklik op "zoek.exe".
    • Windows Vista en Windows 7: start de tool middels rechtsklik op "zoek.exe" en dan kiezen voor Als Administrator uitvoeren.
  • Vervolgens zal er na een tijdje een venster geopend worden.
  • Met je muis selecteer je nu de volgende keuze "Combined fix"(rechts onderaan)
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:

    Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.

    Code:
    emptyclsid;
    c:\users\gebruiker\appdata\roaming\Efkani;f
    c:\users\gebruiker\appdata\roaming\Ukwi;f
    c:\users\gebruiker\appdata\roaming\Hyavve;f
    emptytemp;
  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent(dit kan na een herstart zijn)
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Plaats hierbij ook en nieuw DDS.txt logje en vertel hoe het gaat.

Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 12:25 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
Zoek Log:

Zoek.exe Version 3.0.0.4 Updated 03-December-2012
Tool run by Gebruiker on wo 05-12-2012 at 11:05:47,36.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86
Running in: Normal Mode Internet Access Detected

==== Deleting Files \ Folders ======================

"c:\users\gebruiker\appdata\roaming\Efkani\ovva.uxe" deleted
"c:\users\gebruiker\appdata\roaming\Ukwi\etse.buu" deleted
"c:\users\gebruiker\appdata\roaming\Efkani" deleted
"c:\users\gebruiker\appdata\roaming\Ukwi" deleted
"c:\users\gebruiker\appdata\roaming\Hyavve" deleted

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied



-> Hierna tevergeefs tot twee keer toe geprobeerd een DDS logje te maken, maar de eerste keer sloot sprong het beeld op zwart en gaf de pc onafgebroken korte piepjes af.
De tweede keer sprong het beeld weer op zwart, maar nu gaf de computer ook geen piepjes meer af.

In beide gevallen moest ik handmatig de computer opnieuw uit- en aanzetten.

Toch vermoedelijke een hardwarematig probleem??


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 12:35 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,

Het kan een samenloop zijn, want je had wel een infectie te pakken.

Draait je pc nu nog wel?
Ik raad je alvast wel aan om een back-up te maken van je belangrijke foto’s, bestanden enz.

Probeer het volgende:

Download ComboFix van >>Hier<<, tevens kunt u daar lezen hoe u Combofix dient te gebruiken.

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.

*. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.
Hier is een handleiding over hoe je ze kan uitschakelen: hier of hier

*. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
*. Dubbelklik op "Combofix.exe" om de tool te starten.
*. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

*. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.


Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 2:09 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
ComboFix 12-12-04.01 - Gebruiker 05-12-2012 12:51:19.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3582.2364 [GMT 1:00]
Gestart vanuit: c:\users\Gebruiker\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Gebruiker\AppData\Roaming\Idiwis
c:\users\Gebruiker\AppData\Roaming\Idiwis\idor.ubk
c:\users\Gebruiker\AppData\Roaming\Ynerk
c:\users\Gebruiker\AppData\Roaming\Ynerk\egac.off
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-11-05 to 2012-12-05 ))))))))))))))))))))))))))))))
.
.
2012-12-05 11:57 . 2012-12-05 11:57 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-12-05 11:57 . 2012-12-05 11:57 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-05 10:07 . 2012-12-05 11:58 -------- d-----w- c:\users\Gebruiker\AppData\Local\Temp
2012-12-05 10:07 . 2012-11-01 21:55 24064 ----a-w- c:\windows\zoek-delete.exe
2012-12-04 14:39 . 2012-12-04 14:39 -------- d-----w- c:\program files\Speccy
2012-12-04 13:11 . 2012-12-04 13:11 -------- d-----w- c:\programdata\Malwarebytes
2012-12-04 13:11 . 2012-12-04 13:11 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-04 13:11 . 2012-09-29 18:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-01 15:40 . 2012-12-01 15:40 -------- d-----w- c:\program files\iPod
2012-12-01 15:40 . 2012-12-01 15:40 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1
2012-12-01 15:40 . 2012-12-01 15:40 -------- d-----w- c:\program files\iTunes
2012-11-29 20:19 . 2012-11-29 20:19 -------- d-----w- c:\programdata\PACE Anti-Piracy
2012-11-28 23:32 . 2012-11-28 23:32 -------- d-----w- c:\users\Gebruiker\AppData\Local\Splashtop
2012-11-28 23:31 . 2012-12-04 14:26 -------- d-----w- c:\program files\Splashtop
2012-11-28 23:31 . 2012-11-28 23:31 -------- d-----w- c:\users\Gebruiker\AppData\Local\{55061FB0-05F6-4AE4-939C-2227AD5B7953}
2012-11-28 12:26 . 2012-09-24 22:16 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-11-23 12:35 . 2012-11-23 12:35 -------- d-----w- c:\users\Gebruiker\AppData\Local\Windows Live
2012-11-23 12:35 . 2009-08-04 08:02 754688 ----a-w- c:\windows\system32\webservices.dll
2012-11-23 12:26 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2012-11-23 12:26 . 2012-03-01 14:46 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-11-23 12:26 . 2012-02-29 13:41 1069056 ----a-w- c:\windows\system32\DWrite.dll
2012-11-23 12:26 . 2012-03-01 14:46 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-11-23 12:26 . 2012-02-29 14:08 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-11-23 12:26 . 2012-02-29 13:44 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-11-22 15:01 . 2012-11-22 15:01 -------- d-----w- c:\program files\Windows Portable Devices
2012-11-22 14:44 . 2009-10-09 21:56 2048 ----a-w- c:\windows\system32\winrsmgr.dll
2012-11-22 14:42 . 2009-10-23 17:10 714240 ----a-w- c:\windows\system32\timedate.cpl
2012-11-22 14:38 . 2012-11-22 14:38 6522 ----a-w- c:\users\Gebruiker\cc_20121122_153846.reg
2012-11-22 12:56 . 2012-02-29 15:11 5120 ----a-w- c:\windows\system32\wmi.dll
2012-11-22 12:56 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-11-22 12:56 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-11-22 12:46 . 2012-11-22 12:46 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2012-11-22 12:43 . 2012-11-22 12:43 161792 ----a-w- c:\windows\system32\msls31.dll
2012-11-22 12:43 . 2012-11-22 12:43 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-11-22 12:41 . 2012-11-22 12:41 369664 ----a-w- c:\windows\system32\WMPhoto.dll
2012-11-22 12:41 . 2012-11-22 12:41 252928 ----a-w- c:\windows\system32\dxdiag.exe
2012-11-22 12:41 . 2012-11-22 12:41 195584 ----a-w- c:\windows\system32\dxdiagn.dll
2012-11-22 12:41 . 2012-11-22 12:41 519680 ----a-w- c:\windows\system32\d3d11.dll
2012-11-22 12:41 . 2012-11-22 12:41 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll
2012-11-22 12:41 . 2012-11-22 12:41 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll
2012-11-22 12:41 . 2012-11-22 12:41 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2012-11-22 12:35 . 2010-02-12 10:32 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-11-22 12:24 . 2012-11-22 12:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-11-22 12:20 . 2010-02-20 23:06 24064 ----a-w- c:\windows\system32\nshhttp.dll
2012-11-22 12:20 . 2010-02-20 23:05 30720 ----a-w- c:\windows\system32\httpapi.dll
2012-11-22 12:20 . 2010-02-20 20:53 411648 ----a-w- c:\windows\system32\drivers\http.sys
2012-11-22 12:16 . 2012-11-22 12:16 -------- d-----w- c:\program files\MSXML 4.0
2012-11-22 12:15 . 2009-08-14 13:49 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2012-11-22 12:15 . 2009-08-14 13:49 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2012-11-22 12:15 . 2009-08-14 13:49 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2012-11-22 12:15 . 2009-08-14 13:49 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2012-11-22 12:15 . 2009-08-14 13:49 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2012-11-22 12:15 . 2009-08-14 13:49 19968 ----a-w- c:\windows\system32\ARP.EXE
2012-11-22 12:15 . 2009-08-14 13:49 10240 ----a-w- c:\windows\system32\finger.exe
2012-11-22 12:15 . 2009-08-14 13:48 105984 ----a-w- c:\windows\system32\netiohlp.dll
2012-11-22 12:14 . 2010-02-18 13:30 200704 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-11-22 12:14 . 2010-02-18 11:28 25088 ----a-w- c:\windows\system32\drivers\tunnel.sys
2012-11-22 12:14 . 2009-12-08 17:26 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-11-22 12:12 . 2011-07-06 15:31 214016 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2012-11-22 12:11 . 2010-01-13 17:34 98304 ----a-w- c:\windows\system32\cabview.dll
2012-11-22 12:10 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll
2012-11-22 12:00 . 2009-12-04 18:28 31744 ----a-w- c:\windows\system32\msvidc32.dll
2012-11-22 12:00 . 2009-12-04 18:30 12288 ----a-w- c:\windows\system32\tsbyuv.dll
2012-11-22 12:00 . 2009-12-04 18:28 22528 ----a-w- c:\windows\system32\msyuv.dll
2012-11-22 12:00 . 2009-12-04 18:28 123904 ----a-w- c:\windows\system32\msvfw32.dll
2012-11-22 12:00 . 2009-12-04 18:28 13312 ----a-w- c:\windows\system32\msrle32.dll
2012-11-22 12:00 . 2009-12-04 18:28 82944 ----a-w- c:\windows\system32\mciavi32.dll
2012-11-22 12:00 . 2009-12-04 18:28 50176 ----a-w- c:\windows\system32\iyuv_32.dll
2012-11-22 12:00 . 2009-12-04 18:27 91136 ----a-w- c:\windows\system32\avifil32.dll
2012-11-22 11:59 . 2009-10-07 11:36 243712 ----a-w- c:\windows\system32\rastls.dll
2012-11-22 11:46 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-11-22 11:46 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-11-22 11:46 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-11-22 11:46 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-11-22 11:46 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-11-22 11:46 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-11-22 11:46 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-11-22 11:46 . 2012-06-02 14:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-11-22 11:46 . 2012-06-02 14:12 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-11-21 18:14 . 2012-11-21 18:14 -------- d-----w- c:\program files\Common Files\Wrye Bash
2012-11-21 16:33 . 2012-11-21 16:33 -------- d-----w- C:\Games
2012-11-21 16:32 . 2012-11-21 16:32 -------- d-----w- c:\users\Gebruiker\AppData\Local\Black_Tree_Gaming
2012-11-21 16:32 . 2012-11-21 16:32 -------- d-----w- c:\program files\Nexus Mod Manager
2012-11-21 16:30 . 2012-11-21 16:30 -------- d-----w- c:\programdata\NexusDB3
2012-11-21 16:12 . 2012-11-21 16:12 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2012-11-21 16:12 . 2012-11-21 16:13 -------- d-----w- c:\program files\DAEMON Tools Lite
2012-11-18 13:23 . 2012-11-18 13:23 -------- d-----w- c:\programdata\ATI
2012-11-18 13:23 . 2012-11-18 13:23 -------- d-----w- c:\program files\AMD APP
2012-11-14 16:02 . 2012-11-14 16:02 527848 ----a-w- c:\windows\system32\drivers\NDIS.sys
2012-11-14 14:30 . 2012-11-14 14:30 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\AVG2013
2012-11-14 14:28 . 2012-11-14 14:28 -------- d-----w- c:\users\Gebruiker\AppData\Roaming\TuneUp Software
2012-11-14 14:28 . 2012-11-14 14:28 -------- d-----w- C:\$AVG
2012-11-14 14:28 . 2012-11-14 16:01 -------- d-----w- c:\programdata\AVG2013
2012-11-14 14:27 . 2012-11-14 14:27 -------- d-----w- c:\program files\AVG
2012-11-14 14:26 . 2012-12-05 10:27 -------- d-----w- c:\programdata\MFAData
2012-11-14 14:26 . 2012-11-14 14:37 -------- d-----w- c:\users\Gebruiker\AppData\Local\Avg2013
2012-11-14 14:26 . 2012-11-14 14:26 -------- d--h--w- c:\programdata\Common Files
2012-11-14 14:26 . 2012-11-14 14:26 -------- d-----w- c:\users\Gebruiker\AppData\Local\MFAData
2012-11-14 13:57 . 2012-11-14 13:57 7508 ----a-w- c:\users\Gebruiker\cc_20121114_145728.reg
2012-11-14 13:43 . 2012-11-14 13:43 -------- d-----w- c:\program files\VS Revo Group
2012-11-14 13:42 . 2012-11-14 13:42 146902 ----a-w- c:\users\Gebruiker\cc_20121114_144201.reg
2012-11-14 13:39 . 2012-11-14 13:39 -------- d-----w- c:\program files\CCleaner
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-22 12:41 . 2012-11-22 12:41 4096 ----a-w- c:\windows\system32\drivers\nl-NL\dxgkrnl.sys.mui
2012-11-21 16:03 . 2011-06-30 20:04 466008 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-11-21 15:46 . 2010-04-04 10:21 107888 -c--a-w- c:\windows\system32\CmdLineExt.dll
2012-11-15 10:58 . 2011-04-25 09:41 1128512 ----a-w- c:\windows\system32\drivers\ae1000va.sys
2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\system32\QuickTime.qts
2012-10-22 12:02 . 2012-10-22 12:02 179936 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2012-10-15 02:48 . 2012-10-15 02:48 55776 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2012-10-09 13:01 . 2012-09-28 11:52 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 13:01 . 2012-09-28 11:52 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-06 12:56 . 2012-10-06 12:56 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-10-06 12:56 . 2012-10-06 12:56 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-10-05 02:32 . 2012-10-05 02:32 93536 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2012-10-04 18:56 . 2009-08-18 09:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2012-10-04 18:56 . 2009-08-18 09:24 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-10-02 02:30 . 2012-10-02 02:30 159712 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2012-09-28 14:36 . 2012-09-28 14:36 180224 ----a-w- c:\windows\system32\clinfo.exe
2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- c:\windows\system32\OpenVideo.dll
2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- c:\windows\system32\OVDecode.dll
2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- c:\windows\system32\amdocl.dll
2012-09-28 02:22 . 2012-09-28 02:22 5557928 ----a-w- c:\windows\system32\atiumdag.dll
2012-09-28 02:20 . 2012-09-28 02:20 9107968 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-09-28 02:05 . 2012-09-28 02:05 58880 ----a-w- c:\windows\system32\coinst_9.002.dll
2012-09-28 02:03 . 2012-09-28 02:03 163840 ----a-w- c:\windows\system32\atiapfxx.exe
2012-09-28 02:02 . 2012-09-28 02:02 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-09-28 02:02 . 2012-09-28 02:02 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-09-28 01:57 . 2012-09-28 01:57 13703168 ----a-w- c:\windows\system32\aticaldd.dll
2012-09-28 01:43 . 2012-09-28 01:43 935424 ----a-w- c:\windows\system32\aticfx32.dll
2012-09-28 01:41 . 2012-09-28 01:41 19624960 ----a-w- c:\windows\system32\atioglxx.dll
2012-09-28 01:39 . 2012-09-28 01:39 6536192 ----a-w- c:\windows\system32\atidxx32.dll
2012-09-28 01:39 . 2012-09-28 01:39 442368 ----a-w- c:\windows\system32\atidemgy.dll
2012-09-28 01:38 . 2012-09-28 01:38 473088 ----a-w- c:\windows\system32\atieclxx.exe
2012-09-28 01:38 . 2012-09-28 01:38 217600 ----a-w- c:\windows\system32\atiesrxx.exe
2012-09-28 01:36 . 2012-09-28 01:36 163840 ----a-w- c:\windows\system32\atitmmxx.dll
2012-09-28 01:36 . 2012-09-28 01:36 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-09-28 01:36 . 2012-09-28 01:36 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-09-28 01:22 . 2012-09-28 01:22 2691584 ----a-w- c:\windows\system32\atiumdva.dll
2012-09-28 01:13 . 2012-09-28 01:13 405504 ----a-w- c:\windows\system32\atiadlxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 14848 ----a-w- c:\windows\system32\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\system32\atimpc32.dll
2012-09-28 01:12 . 2012-09-28 01:12 56832 ----a-w- c:\windows\system32\amdpcom32.dll
2012-09-28 01:12 . 2012-09-28 01:12 370176 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-09-28 01:11 . 2012-09-28 01:11 109568 ----a-w- c:\windows\system32\atiuxpag.dll
2012-09-28 01:10 . 2011-07-28 20:53 82944 ----a-w- c:\windows\system32\atiu9pag.dll
2012-09-28 01:10 . 2011-07-28 20:52 37376 ----a-w- c:\windows\system32\atitmpxx.dll
2012-09-28 01:09 . 2012-09-28 01:09 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-09-21 02:46 . 2012-09-21 02:46 164832 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2012-09-21 02:46 . 2012-09-21 02:46 177376 ----a-w- c:\windows\system32\drivers\avglogx.sys
2012-09-21 02:45 . 2012-09-21 02:45 19936 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys
2012-09-14 02:05 . 2012-09-14 02:05 35552 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2012-10-21 22:02 . 2012-10-21 22:02 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-06-24 1840424]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"iCloudServices"="c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-11-28 59280]
"ApplePhotoStreams"="c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-11-28 59280]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 2221352]
"M-Audio Taskbar Icon"="c:\windows\System32\DeltaIITray.exe" [2008-03-03 236040]
"DeltaIITaskbarApp"="c:\windows\system32\DeltaIITray.exe" [2008-03-03 236040]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2012-11-06 3143800]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-09-28 642728]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-11-28 151952]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Snelle start.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872]
SpyderUtility.lnk - c:\program files\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe [2012-2-8 8241767]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /p \??\E:\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1710946290-1271144848-205264977-1000]
"EnableNotificationsRef"=dword:00000001
.
S3 AE1000;Linksys AE1000 Driver;c:\windows\system32\DRIVERS\ae1000va.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Inhoud van de 'Gedeelde Taken' map
.
2012-12-05 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-28 13:01]
.
2012-12-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-01-24 12:18]
.
2012-12-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-01-24 12:18]
.
2012-12-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1710946290-1271144848-205264977-1000Core.job
- c:\users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-24 11:57]
.
2012-12-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1710946290-1271144848-205264977-1000UA.job
- c:\users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-24 11:57]
.
.
------- Bijkomende Scan -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Gebruiker\AppData\Roaming\Mozilla\Firefox\Profiles\lpz3svtf.default\
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - ORPHANS VERWIJDERD - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
HKCU-Run-MobileDocuments - c:\program files\Common Files\Apple\Internet Services\ubd.exe
MSConfigStartUp-HDAudDeck - c:\program files\VIA\VIAudioi\HDADeck\HDeck.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-12-05 12:58
Windows 6.0.6002 Service Pack 2 NTFS
.
scannen van verborgen processen ...
.
scannen van verborgen autostart items ...
.
scannen van verborgen bestanden ...
.
.
c:\users\GEBRUI~1\AppData\Local\Temp\catchme.dll 53248 bytes executable
.
Scan succesvol afgerond
verborgen bestanden: 1
.
**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-1710946290-1271144848-205264977-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:6a,a0,1a,64,88,72,15,0b,58,a0,51,a5,55,78,16,b8,c2,fa,d1,b8,e9,7a,91,
27,99,22,2c,c1,40,28,7e,e9,d8,82,2f,c2,de,e2,86,7f,a8,0f,f7,78,96,c0,3d,2e,\
"??"=hex:69,6f,5c,46,6a,89,f9,ee,2d,48,e0,10,87,42,1e,12
.
[HKEY_USERS\S-1-5-21-1710946290-1271144848-205264977-1000\Software\SecuROM\License information*]
"datasecu"=hex:7e,59,da,2c,87,7f,bb,e6,b6,a9,35,4d,a1,ff,dd,52,9a,a3,3c,f2,39,
8c,e1,3c,f1,9e,b4,0a,1a,b1,1d,6f,7c,82,46,1a,57,d5,d5,44,64,eb,68,0c,4b,26,\
"rkeysecu"=hex:51,0a,e3,c2,95,b8,a6,4a,ca,f7,96,b2,22,7b,a3,01
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\AIC1720\5&23399f0b&0&UID268435457\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\AIC1720\5&23399f0b&0&UID268435457\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566A\5&23399f0b&0&UID268435457\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566A\5&23399f0b&0&UID268435457\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&1bab3007&0&UID770\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&1bab3007&0&UID770\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&201df84&0&12345678&01&00\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&201df84&0&12345678&01&00\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&201df84&0&UID16777488\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&201df84&0&UID16777488\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&23399f0b&0&UID268435459\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM566B\5&23399f0b&0&UID268435459\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM5678\5&1bab3007&0&UID769\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM5678\5&1bab3007&0&UID769\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM5678\5&201df84&0&UID16777489\Properties\{83da6326-97a6-4088-9453-a1923f573b29}]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\DISPLAY\GSM5678\5&201df84&0&UID16777489\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}]
@DACL=(02 0000)
.
Voltooingstijd: 2012-12-05 12:59:28
ComboFix-quarantined-files.txt 2012-12-05 11:59
ComboFix2.txt 2012-10-10 22:34
.
Pre-Run: 28.085.088.256 bytes beschikbaar
Post-Run: 27.925.520.384 bytes beschikbaar
.
- - End Of File - - 0F7F3AAADA2973CD94945B4D49D05BC1


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 4:05 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,

Ik zie dat je Combofix al meer heb gebruikt:
ComboFix2.txt 2012-10-10 22:34
Heeft hij toen wat verwijderd, en wat waren toen de problemen?

Download TDSSKStarter naar het bureaublad.

"TDSSKStarter.exe" gebruiken:
  • Sluit nu eerst alle nog openstaande programmavensters!
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met TDSSKStarter.exe
    (hier of hier) kan je lezen hoe je dat doet.
    • Windows 2000 en Windows XP: start de tool middels dubbelklik op "TDSSKStarter.exe".
    • Windows Vista en Windows 7: start de tool middels rechtsklik op "TDSSKStarter.exe" en dan kiezen voor Als Administrator uitvoeren.
  • Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten.
  • Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.


Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 4:27 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
Ik weet eerlijk gezegd niet of ik eerder Combofix gebruikt heb... Niet geheel bewust in ieder geval.
De problemen met mijn computer zijn in ieder geval al een tijdje zoals ik ze aan het begin van deze post beschreven heb.
Alleen ben ik sinds vorige week pas serieus bezig het probleem aan te pakken.


15:26:32.0155 2120 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:26:32.0155 2120 ============================================================
15:26:32.0155 2120 Current date / time: 2012/12/05 15:26:32.0155
15:26:32.0155 2120 SystemInfo:
15:26:32.0155 2120
15:26:32.0155 2120 OS Version: 6.0.6002 ServicePack: 2.0
15:26:32.0155 2120 Product type: Workstation
15:26:32.0155 2120 ComputerName: PC_VAN_GEBRUIKE
15:26:32.0155 2120 UserName: Gebruiker
15:26:32.0155 2120 Windows directory: C:\Windows
15:26:32.0155 2120 System windows directory: C:\Windows
15:26:32.0155 2120 Processor architecture: Intel x86
15:26:32.0155 2120 Number of processors: 4
15:26:32.0155 2120 Page size: 0x1000
15:26:32.0155 2120 Boot type: Normal boot
15:26:32.0155 2120 ============================================================
15:26:34.0609 2120 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:26:34.0609 2120 ============================================================
15:26:34.0609 2120 \Device\Harddisk0\DR0:
15:26:34.0609 2120 MBR partitions:
15:26:34.0609 2120 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3D134828
15:26:34.0609 2120 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D138728, BlocksNum 0x124FAAF3
15:26:34.0609 2120 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4F63321B, BlocksNum 0x250D27A6
15:26:34.0609 2120 ============================================================
15:26:34.0625 2120 C: <-> \Device\Harddisk0\DR0\Partition2
15:26:34.0656 2120 A: <-> \Device\Harddisk0\DR0\Partition1
15:26:34.0703 2120 B: <-> \Device\Harddisk0\DR0\Partition3
15:26:34.0703 2120 ============================================================
15:26:34.0703 2120 Initialize success
15:26:34.0703 2120 ============================================================
15:26:34.0766 5760 ============================================================
15:26:34.0766 5760 Scan started
15:26:34.0766 5760 Mode: Auto (DCExact ); SigCheck; TDLFS; Silent;
15:26:34.0766 5760 ============================================================
15:26:36.0672 5760 ================ Scan system memory ========================
15:26:36.0672 5760 ================ Scan services =============================
15:26:36.0953 5760 [ 585E64BB6DFBC0A2F1F0B554DED012DF ] 61883 C:\Windows\system32\DRIVERS\61883.sys
15:26:37.0172 5760 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:26:37.0344 5760 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:26:37.0500 5760 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:26:37.0547 5760 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:26:37.0594 5760 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:26:37.0734 5760 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:26:37.0922 5760 [ 884CC5F9E55760A966FF49E4755FE0AF ] AE1000 C:\Windows\system32\DRIVERS\ae1000va.sys
15:26:38.0000 5760 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:26:38.0187 5760 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
15:26:38.0250 5760 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:26:38.0297 5760 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:26:38.0328 5760 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
15:26:38.0391 5760 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
15:26:38.0469 5760 [ E608D708EFE1F8AE7160DB7C0DE4D8E6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:26:38.0516 5760 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:26:38.0547 5760 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
15:26:38.0578 5760 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:26:38.0609 5760 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:26:39.0125 5760 [ F611C341A8B0926D6C2D6417464BD11E ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:26:39.0453 5760 [ C08F6E9987D2AACFF9653ADB30C4DA3D ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:26:39.0641 5760 [ AD8FA28D8ED0D0A689A0559085CE0F18 ] AmdLLD C:\Windows\system32\DRIVERS\AmdLLD.sys
15:26:39.0719 5760 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
15:26:39.0922 5760 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:26:40.0031 5760 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
15:26:40.0094 5760 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:26:40.0219 5760 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:26:40.0266 5760 [ 94442E3029FF6C9F08140FE6718AF4FB ] ASUSVRC C:\Windows\system32\DRIVERS\AsusVRC.sys
15:26:40.0297 5760 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:26:40.0344 5760 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
15:26:40.0391 5760 [ 35290682DBDB9CEDE934B73369F3CEDE ] AtiHDAudioService C:\Windows\system32\drivers\AtihdLH3.sys
15:26:40.0812 5760 [ F611C341A8B0926D6C2D6417464BD11E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:26:41.0078 5760 [ 72BC628AF75C4C3250F2A3BAC260265A ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
15:26:41.0125 5760 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:26:41.0172 5760 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:26:41.0203 5760 [ F4B56425A00BEB32F5FA6603FF7B0EA2 ] Avc C:\Windows\system32\DRIVERS\avc.sys
15:26:41.0422 5760 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
15:26:41.0687 5760 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
15:26:41.0750 5760 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
15:26:41.0766 5760 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
15:26:41.0797 5760 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
15:26:41.0859 5760 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
15:26:41.0906 5760 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
15:26:41.0953 5760 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
15:26:41.0984 5760 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
15:26:42.0016 5760 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
15:26:42.0047 5760 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
15:26:42.0094 5760 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
15:26:42.0234 5760 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
15:26:42.0281 5760 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:26:42.0406 5760 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:26:42.0484 5760 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:26:42.0547 5760 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:26:42.0594 5760 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:26:42.0641 5760 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
15:26:42.0703 5760 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:26:42.0844 5760 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:26:42.0906 5760 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:26:42.0984 5760 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:26:43.0078 5760 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
15:26:43.0109 5760 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:26:43.0187 5760 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:26:43.0266 5760 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
15:26:43.0359 5760 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
15:26:43.0406 5760 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
15:26:43.0547 5760 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:26:43.0641 5760 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:26:43.0688 5760 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
15:26:43.0751 5760 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
15:26:43.0798 5760 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
15:26:43.0845 5760 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:26:43.0876 5760 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:26:43.0907 5760 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:26:43.0923 5760 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:26:43.0954 5760 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:26:43.0985 5760 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:26:44.0079 5760 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:26:44.0110 5760 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:26:44.0188 5760 [ 20A04D8077CCCBA1711070EB01F02AFB ] DELTAII C:\Windows\system32\DRIVERS\deltaII.sys
15:26:44.0220 5760 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:26:44.0313 5760 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
15:26:44.0454 5760 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:26:44.0501 5760 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
15:26:44.0548 5760 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:26:44.0595 5760 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:26:44.0658 5760 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
15:26:44.0721 5760 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:26:44.0814 5760 [ D61A836C36D55CF7AD633DAF1D9065F7 ] DTSRVC C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
15:26:44.0830 5760 DTSRVC ( UnsignedFile.Multi.Generic ) - warning
15:26:44.0830 5760 DTSRVC - detected UnsignedFile.Multi.Generic (1)
15:26:44.0877 5760 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:26:44.0924 5760 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:26:44.0971 5760 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
15:26:45.0017 5760 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
15:26:45.0096 5760 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:26:45.0142 5760 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
15:26:45.0221 5760 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
15:26:45.0283 5760 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:26:45.0330 5760 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:26:45.0424 5760 [ B4556F3D468C8DCB0B259D9D866CD4C4 ] enodpl C:\Windows\system32\drivers\enodpl.sys
15:26:45.0439 5760 enodpl ( UnsignedFile.Multi.Generic ) - warning
15:26:45.0439 5760 enodpl - detected UnsignedFile.Multi.Generic (1)
15:26:45.0455 5760 [ 6ECEB0CE18D352AF410DD50EE13EAA9A ] epmntdrv C:\Windows\system32\epmntdrv.sys
15:26:45.0471 5760 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
15:26:45.0471 5760 epmntdrv - detected UnsignedFile.Multi.Generic (1)
15:26:45.0486 5760 [ A81AB23EDDB4693612014D87367D014C ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:26:45.0517 5760 [ 5F779F5EDAB787F2D090C71A9051F365 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
15:26:45.0533 5760 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
15:26:45.0533 5760 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
15:26:45.0564 5760 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
15:26:45.0611 5760 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
15:26:45.0690 5760 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:26:45.0753 5760 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:26:45.0800 5760 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
15:26:45.0831 5760 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
15:26:45.0909 5760 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:26:45.0925 5760 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:26:45.0972 5760 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:26:46.0034 5760 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:26:46.0300 5760 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
15:26:46.0518 5760 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:26:46.0597 5760 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:26:46.0629 5760 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:26:46.0676 5760 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
15:26:46.0723 5760 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
15:26:46.0801 5760 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:26:46.0816 5760 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:26:46.0863 5760 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:26:46.0957 5760 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:26:47.0004 5760 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:26:47.0098 5760 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
15:26:47.0176 5760 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
15:26:47.0238 5760 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:26:47.0285 5760 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:26:47.0316 5760 [ 7EBEC5EB56B90ED65A8BBD91464E5CFB ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:26:47.0394 5760 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:26:47.0504 5760 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:26:47.0535 5760 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:26:47.0598 5760 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:26:47.0677 5760 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:26:47.0692 5760 IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:26:47.0692 5760 IDriverT - detected UnsignedFile.Multi.Generic (1)
15:26:47.0739 5760 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:26:47.0802 5760 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:26:47.0942 5760 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
15:26:48.0020 5760 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
15:26:48.0052 5760 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:26:48.0099 5760 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:26:48.0161 5760 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:26:48.0255 5760 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:26:48.0333 5760 [ 4B9C0F4D4A3ACC535F9771039ECD6365 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:26:48.0380 5760 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:26:48.0489 5760 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:26:48.0536 5760 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:26:48.0567 5760 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:26:48.0645 5760 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:26:48.0661 5760 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:26:48.0702 5760 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:26:48.0733 5760 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:26:48.0796 5760 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:26:48.0827 5760 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
15:26:48.0983 5760 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:26:49.0061 5760 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:26:49.0140 5760 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
15:26:49.0186 5760 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:26:49.0249 5760 [ 4127E8B6DDB4090E815C1F8852C277D3 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
15:26:49.0265 5760 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:26:49.0358 5760 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:26:49.0390 5760 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:26:49.0483 5760 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:26:49.0499 5760 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:26:49.0530 5760 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:26:49.0546 5760 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
15:26:49.0624 5760 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:26:49.0655 5760 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
15:26:49.0686 5760 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
15:26:49.0828 5760 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:26:49.0890 5760 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
15:26:49.0937 5760 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
15:26:50.0140 5760 [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] monfilt C:\Windows\system32\drivers\monfilt.sys
15:26:50.0250 5760 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:26:50.0297 5760 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:26:50.0328 5760 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:26:50.0359 5760 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:26:50.0390 5760 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:26:50.0422 5760 [ 5DA347912FD3AF24D7BFB3DE519D4BD0 ] mpio C:\Windows\system32\drivers\mpio.sys
15:26:50.0453 5760 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:26:50.0531 5760 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
15:26:50.0562 5760 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:26:50.0578 5760 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:26:50.0735 5760 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:26:50.0829 5760 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:26:50.0860 5760 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:26:50.0891 5760 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
15:26:50.0923 5760 [ 2C563AEF15B8D0014C36C5F27742AC7B ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:26:50.0938 5760 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
15:26:51.0001 5760 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:26:51.0048 5760 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:26:51.0095 5760 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:26:51.0157 5760 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:26:51.0220 5760 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:26:51.0251 5760 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:26:51.0298 5760 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:26:51.0329 5760 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:26:51.0360 5760 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:26:51.0407 5760 [ DCDAAB8697A47894A554050CE18D0B56 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
15:26:51.0454 5760 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
15:26:51.0501 5760 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
15:26:51.0532 5760 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:26:51.0595 5760 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:26:51.0673 5760 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:26:51.0720 5760 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:26:51.0783 5760 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:26:51.0814 5760 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:26:51.0924 5760 [ 2AAE889742376EDC5C3203DFB74F28FD ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
15:26:51.0986 5760 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:26:52.0064 5760 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:26:52.0096 5760 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
15:26:52.0142 5760 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
15:26:52.0205 5760 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:26:52.0236 5760 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:26:52.0252 5760 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
15:26:52.0283 5760 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:26:52.0299 5760 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:26:52.0330 5760 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:26:52.0346 5760 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:26:52.0439 5760 [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
15:26:52.0471 5760 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:26:52.0533 5760 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
15:26:52.0596 5760 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:26:52.0674 5760 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:26:52.0736 5760 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:26:52.0800 5760 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
15:26:52.0878 5760 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:26:52.0909 5760 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:26:52.0940 5760 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:26:53.0143 5760 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:26:53.0190 5760 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:26:53.0268 5760 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:26:53.0331 5760 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:26:53.0393 5760 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
15:26:53.0503 5760 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:26:53.0581 5760 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:26:53.0612 5760 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
15:26:53.0675 5760 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
15:26:53.0690 5760 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
15:26:53.0722 5760 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
15:26:53.0753 5760 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:26:53.0832 5760 [ 18ED1D71FEF6F71D38C24263500BBD01 ] PdiPorts C:\Windows\system32\Drivers\PdiPorts.sys
15:26:53.0910 5760 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:26:54.0051 5760 [ 004D29838DE00E3F8883996B61778A9F ] Phonic_1394 C:\Windows\system32\Drivers\Phonic_1394.sys
15:26:54.0082 5760 [ 77567E563C4282C7BE478B752FB49932 ] Phonic_avs C:\Windows\system32\Drivers\Phonic_avs.sys
15:26:54.0191 5760 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
15:26:54.0379 5760 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
15:26:54.0394 5760 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - warning
15:26:54.0394 5760 PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic (1)
15:26:54.0426 5760 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:26:54.0457 5760 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:26:54.0504 5760 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:26:54.0613 5760 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:26:54.0738 5760 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:26:54.0817 5760 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
15:26:54.0864 5760 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
15:26:54.0895 5760 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
15:26:54.0927 5760 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:26:54.0989 5760 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:26:55.0020 5760 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:26:55.0114 5760 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:26:55.0192 5760 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
15:26:55.0224 5760 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:26:55.0239 5760 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:26:55.0302 5760 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
15:26:55.0349 5760 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:26:55.0427 5760 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
15:26:55.0474 5760 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:26:55.0505 5760 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:26:55.0536 5760 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:26:55.0567 5760 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:26:55.0677 5760 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:26:55.0724 5760 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:26:55.0787 5760 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:26:55.0865 5760 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:26:55.0912 5760 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:26:55.0943 5760 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:26:56.0006 5760 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
15:26:56.0068 5760 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
15:26:56.0099 5760 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:26:56.0146 5760 [ 8CCA591019216E9523E3CB385CE643E6 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:26:56.0209 5760 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
15:26:56.0240 5760 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:26:56.0287 5760 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:26:56.0365 5760 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
15:26:56.0412 5760 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:26:56.0459 5760 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:26:56.0521 5760 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:26:56.0631 5760 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
15:26:56.0693 5760 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
15:26:56.0756 5760 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:26:56.0818 5760 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:26:56.0881 5760 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:26:56.0943 5760 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
15:26:56.0990 5760 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:26:57.0021 5760 [ E5EAFE85815BD89095FEF3144A09AB68 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:26:57.0053 5760 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:26:57.0099 5760 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:26:57.0178 5760 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:26:57.0271 5760 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:26:57.0303 5760 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:26:57.0334 5760 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:26:57.0365 5760 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:26:57.0474 5760 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
15:26:57.0678 5760 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:26:57.0724 5760 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:26:57.0771 5760 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:26:57.0787 5760 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
15:26:57.0834 5760 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
15:26:57.0943 5760 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys
15:26:58.0006 5760 [ 86F8CE773624E2058F12B70CF344E083 ] Spyder4 C:\Windows\system32\DRIVERS\dccmtr.sys
15:26:58.0068 5760 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:26:58.0146 5760 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:26:58.0193 5760 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:26:58.0224 5760 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:26:58.0287 5760 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:26:58.0412 5760 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
15:26:58.0474 5760 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:26:58.0646 5760 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:26:58.0678 5760 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
15:26:58.0678 5760 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
15:26:58.0724 5760 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
15:26:58.0771 5760 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:26:58.0803 5760 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:26:58.0834 5760 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:26:58.0928 5760 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
15:26:58.0990 5760 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:26:59.0006 5760 [ 126D7B3B4C7B724491C604060E1F4E14 ] tandpl C:\Windows\system32\drivers\tandpl.sys
15:26:59.0006 5760 tandpl ( UnsignedFile.Multi.Generic ) - warning
15:26:59.0006 5760 tandpl - detected UnsignedFile.Multi.Generic (1)
15:26:59.0021 5760 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:26:59.0084 5760 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
15:26:59.0224 5760 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:26:59.0303 5760 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:26:59.0365 5760 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:26:59.0428 5760 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:26:59.0459 5760 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:26:59.0521 5760 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:26:59.0568 5760 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:26:59.0615 5760 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
15:26:59.0678 5760 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
15:26:59.0709 5760 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
15:26:59.0756 5760 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
15:26:59.0849 5760 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:26:59.0881 5760 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:26:59.0912 5760 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:26:59.0959 5760 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:27:00.0006 5760 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:27:00.0068 5760 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:27:00.0115 5760 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:27:00.0178 5760 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:27:00.0209 5760 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:27:00.0240 5760 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:27:00.0303 5760 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:27:00.0334 5760 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:27:00.0412 5760 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
15:27:00.0490 5760 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
15:27:00.0490 5760 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
15:27:00.0490 5760 USBAAPL - detected UnsignedFile.Multi.Generic (1)
15:27:00.0521 5760 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:27:00.0553 5760 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:27:00.0631 5760 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:27:00.0709 5760 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:27:00.0756 5760 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:27:00.0803 5760 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:27:00.0896 5760 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:27:00.0974 5760 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:27:01.0021 5760 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:27:01.0068 5760 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:27:01.0131 5760 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
15:27:01.0178 5760 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
15:27:01.0224 5760 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:27:01.0271 5760 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
15:27:01.0349 5760 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:27:01.0381 5760 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:27:01.0443 5760 [ 51B24990850076F659D1D1DAEFBED6F1 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
15:27:01.0490 5760 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
15:27:01.0568 5760 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:27:01.0584 5760 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:27:01.0615 5760 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:27:01.0646 5760 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:27:01.0693 5760 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
15:27:01.0756 5760 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
15:27:01.0787 5760 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:27:01.0849 5760 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:27:01.0865 5760 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:27:01.0912 5760 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:27:01.0959 5760 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:27:02.0006 5760 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
15:27:02.0021 5760 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:27:02.0053 5760 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:27:02.0084 5760 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:27:02.0131 5760 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
15:27:02.0193 5760 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:27:02.0209 5760 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:27:02.0256 5760 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
15:27:02.0365 5760 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:27:02.0443 5760 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:27:02.0678 5760 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
15:27:02.0818 5760 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:27:02.0959 5760 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:27:03.0053 5760 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:27:03.0084 5760 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:27:03.0209 5760 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:27:03.0303 5760 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:27:03.0396 5760 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:27:03.0443 5760 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:27:03.0599 5760 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:27:03.0662 5760 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:27:03.0724 5760 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
15:27:03.0896 5760 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
15:27:03.0974 5760 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:27:04.0037 5760 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:27:04.0115 5760 ================ Scan global ===============================
15:27:04.0178 5760 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
15:27:04.0209 5760 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:27:04.0224 5760 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
15:27:04.0256 5760 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
15:27:04.0256 5760 ================ Scan MBR ==================================
15:27:04.0271 5760 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:27:04.0490 5760 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:27:04.0490 5760 \Device\Harddisk0\DR0 - detected TDSS File System: Not Cured, must be Deleted (1)
15:27:04.0490 5760 ================ Scan VBR ==================================
15:27:04.0521 5760 [ 0E8DA674FE8B6C9D7AF60337374952D8 ] \Device\Harddisk0\DR0\Partition1
15:27:04.0521 5760 [ 8DD9B30D739CAEE62C1FCF88CB9EFD35 ] \Device\Harddisk0\DR0\Partition2
15:27:04.0537 5760 [ 15EAB86796F8A6B1ED20F58FF348676A ] \Device\Harddisk0\DR0\Partition3
15:27:04.0537 5760 ================ Scan UEFI extensions ======================
15:27:04.0537 5760 ================ Scan active images ========================
15:27:04.0537 5760 ============================================================
15:27:04.0537 5760 Scan finished
15:27:04.0537 5760 ============================================================
15:27:05.0459 2832 Deinitialize success
.
==============================================
System Restore Point Check:
.
TDSSKiller Starter Restore Point Created Succesfully
==============================================
Registry Export
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile\GloballyOpenPorts\List]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
==============================================
EOF


Omhoog
 Profiel  
 
BerichtGeplaatst: wo dec 05, 2012 4:49 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,


Lees onderstaande eerst goed door.


Download TDSSKiller en plaats het op je bureaublad.
  • Voordat je TDSSKiller uitvoert is het raadzaam om de onderstaande handleiding van TDSSKiller te raadplegen.
  • Dubbelklik op TDSSKiller.exe om de tool te starten. (Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken).
  • Als er door TDSSkiller een update wordt gevonden klikt u op de knop "Load update"
  • Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.
  • Start nu TDSSkiller opnieuw.
  • Klik op "Change parameters" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    Afbeelding
  • Klik op de knop "Start Scan" en volg de instructies.
    • Gebruik nooit de "Delete" of "Quarantaine" optie bij een "Fail signature" melding.
    • Device\Harddisk0\DR0 ( TDSS File System ) kies hier "Delete"
    • Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt
    • Plaats dit log-bestand in het volgende bericht.


Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: do dec 06, 2012 1:12 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
12:08:41.0411 2056 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:08:41.0755 2056 ============================================================
12:08:41.0755 2056 Current date / time: 2012/12/06 12:08:41.0755
12:08:41.0755 2056 SystemInfo:
12:08:41.0755 2056
12:08:41.0755 2056 OS Version: 6.0.6002 ServicePack: 2.0
12:08:41.0755 2056 Product type: Workstation
12:08:41.0755 2056 ComputerName: PC_VAN_GEBRUIKE
12:08:41.0755 2056 UserName: Gebruiker
12:08:41.0755 2056 Windows directory: C:\Windows
12:08:41.0755 2056 System windows directory: C:\Windows
12:08:41.0755 2056 Processor architecture: Intel x86
12:08:41.0755 2056 Number of processors: 4
12:08:41.0755 2056 Page size: 0x1000
12:08:41.0755 2056 Boot type: Normal boot
12:08:41.0755 2056 ============================================================
12:08:43.0351 2056 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:08:43.0366 2056 Drive \Device\Harddisk1\DR1 - Size: 0xE8DED00000 (931.48 Gb), SectorSize: 0x200, Cylinders: 0x1DAFD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:08:43.0663 2056 ============================================================
12:08:43.0663 2056 \Device\Harddisk0\DR0:
12:08:43.0679 2056 MBR partitions:
12:08:43.0694 2056 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3D134828
12:08:43.0694 2056 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D138728, BlocksNum 0x124FAAF3
12:08:43.0694 2056 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4F63321B, BlocksNum 0x250D27A6
12:08:43.0694 2056 \Device\Harddisk1\DR1:
12:08:43.0694 2056 MBR partitions:
12:08:43.0694 2056 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x746F6000
12:08:43.0694 2056 ============================================================
12:08:43.0772 2056 C: <-> \Device\Harddisk0\DR0\Partition2
12:08:44.0007 2056 A: <-> \Device\Harddisk0\DR0\Partition1
12:08:44.0147 2056 B: <-> \Device\Harddisk0\DR0\Partition3
12:08:44.0210 2056 J: <-> \Device\Harddisk1\DR1\Partition1
12:08:44.0210 2056 ============================================================
12:08:44.0210 2056 Initialize success
12:08:44.0210 2056 ============================================================
12:09:22.0776 4672 ============================================================
12:09:22.0776 4672 Scan started
12:09:22.0776 4672 Mode: Manual; SigCheck; TDLFS;
12:09:22.0776 4672 ============================================================
12:09:23.0700 4672 ================ Scan system memory ========================
12:09:23.0700 4672 System memory - ok
12:09:23.0700 4672 ================ Scan services =============================
12:09:23.0810 4672 [ 585E64BB6DFBC0A2F1F0B554DED012DF ] 61883 C:\Windows\system32\DRIVERS\61883.sys
12:09:24.0028 4672 61883 - ok
12:09:24.0075 4672 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
12:09:24.0091 4672 ACPI - ok
12:09:24.0091 4672 adfs - ok
12:09:24.0153 4672 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:09:24.0169 4672 AdobeFlashPlayerUpdateSvc - ok
12:09:24.0200 4672 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
12:09:24.0231 4672 adp94xx - ok
12:09:24.0247 4672 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
12:09:24.0263 4672 adpahci - ok
12:09:24.0278 4672 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
12:09:24.0294 4672 adpu160m - ok
12:09:24.0310 4672 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
12:09:24.0325 4672 adpu320 - ok
12:09:24.0421 4672 [ 884CC5F9E55760A966FF49E4755FE0AF ] AE1000 C:\Windows\system32\DRIVERS\ae1000va.sys
12:09:24.0452 4672 AE1000 - ok
12:09:24.0499 4672 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:09:24.0593 4672 AeLookupSvc - ok
12:09:24.0624 4672 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
12:09:24.0655 4672 AFD - ok
12:09:24.0671 4672 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:09:24.0687 4672 agp440 - ok
12:09:24.0718 4672 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
12:09:24.0733 4672 aic78xx - ok
12:09:24.0749 4672 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
12:09:24.0796 4672 ALG - ok
12:09:24.0812 4672 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
12:09:24.0827 4672 aliide - ok
12:09:24.0874 4672 [ E608D708EFE1F8AE7160DB7C0DE4D8E6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:09:24.0921 4672 AMD External Events Utility - ok
12:09:24.0937 4672 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
12:09:24.0952 4672 amdagp - ok
12:09:24.0968 4672 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
12:09:24.0983 4672 amdide - ok
12:09:24.0999 4672 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
12:09:25.0015 4672 AmdK7 - ok
12:09:25.0030 4672 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
12:09:25.0077 4672 AmdK8 - ok
12:09:25.0343 4672 [ F611C341A8B0926D6C2D6417464BD11E ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:09:25.0657 4672 amdkmdag - ok
12:09:25.0688 4672 [ C08F6E9987D2AACFF9653ADB30C4DA3D ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:09:25.0720 4672 amdkmdap - ok
12:09:25.0782 4672 [ AD8FA28D8ED0D0A689A0559085CE0F18 ] AmdLLD C:\Windows\system32\DRIVERS\AmdLLD.sys
12:09:25.0813 4672 AmdLLD - ok
12:09:25.0860 4672 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
12:09:25.0907 4672 Appinfo - ok
12:09:25.0985 4672 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:09:26.0001 4672 Apple Mobile Device - ok
12:09:26.0017 4672 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
12:09:26.0032 4672 arc - ok
12:09:26.0048 4672 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
12:09:26.0063 4672 arcsas - ok
12:09:26.0126 4672 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:09:26.0142 4672 aspnet_state - ok
12:09:26.0157 4672 asusgsb - ok
12:09:26.0188 4672 [ 94442E3029FF6C9F08140FE6718AF4FB ] ASUSVRC C:\Windows\system32\DRIVERS\AsusVRC.sys
12:09:26.0220 4672 ASUSVRC - ok
12:09:26.0235 4672 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:09:26.0282 4672 AsyncMac - ok
12:09:26.0298 4672 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
12:09:26.0313 4672 atapi - ok
12:09:26.0345 4672 [ 35290682DBDB9CEDE934B73369F3CEDE ] AtiHDAudioService C:\Windows\system32\drivers\AtihdLH3.sys
12:09:26.0360 4672 AtiHDAudioService - ok
12:09:26.0581 4672 [ F611C341A8B0926D6C2D6417464BD11E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:09:26.0753 4672 atikmdag - ok
12:09:26.0753 4672 atkdisplf - ok
12:09:26.0847 4672 [ 72BC628AF75C4C3250F2A3BAC260265A ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
12:09:26.0862 4672 atksgt - ok
12:09:26.0894 4672 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:09:26.0925 4672 AudioEndpointBuilder - ok
12:09:26.0940 4672 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
12:09:26.0956 4672 Audiosrv - ok
12:09:26.0987 4672 [ F4B56425A00BEB32F5FA6603FF7B0EA2 ] Avc C:\Windows\system32\DRIVERS\avc.sys
12:09:27.0034 4672 Avc - ok
12:09:27.0206 4672 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files\AVG\AVG2013\avgidsagent.exe
12:09:27.0347 4672 AVGIDSAgent - ok
12:09:27.0409 4672 [ 7BB2C605094DBCA536D127B434214862 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:09:27.0425 4672 AVGIDSDriver - ok
12:09:27.0473 4672 [ 8F50F98686C9A397A19FCBAE284DB1C5 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
12:09:27.0488 4672 AVGIDSHX - ok
12:09:27.0520 4672 [ A8DE230CC8536790CA07D37FBCD87A74 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:09:27.0535 4672 AVGIDSShim - ok
12:09:27.0551 4672 [ D53D35031365A0ECCB1DC1BC1B15B18E ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
12:09:27.0566 4672 Avgldx86 - ok
12:09:27.0613 4672 [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
12:09:27.0613 4672 Avglogx - ok
12:09:27.0645 4672 [ 6C7C00B8DD22B4343B47FED148387057 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
12:09:27.0660 4672 Avgmfx86 - ok
12:09:27.0707 4672 [ F3D57358DE0B8B3491013C615754A7C7 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
12:09:27.0723 4672 Avgrkx86 - ok
12:09:27.0738 4672 [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
12:09:27.0754 4672 Avgtdix - ok
12:09:27.0770 4672 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files\AVG\AVG2013\avgwdsvc.exe
12:09:27.0785 4672 avgwd - ok
12:09:27.0816 4672 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
12:09:27.0863 4672 Beep - ok
12:09:27.0895 4672 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
12:09:27.0926 4672 BFE - ok
12:09:27.0957 4672 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
12:09:28.0004 4672 BITS - ok
12:09:28.0035 4672 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
12:09:28.0066 4672 blbdrive - ok
12:09:28.0129 4672 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:09:28.0176 4672 Bonjour Service - ok
12:09:28.0238 4672 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:09:28.0301 4672 bowser - ok
12:09:28.0301 4672 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
12:09:28.0348 4672 BrFiltLo - ok
12:09:28.0395 4672 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
12:09:28.0441 4672 BrFiltUp - ok
12:09:28.0457 4672 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
12:09:28.0521 4672 Browser - ok
12:09:28.0552 4672 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
12:09:28.0677 4672 Brserid - ok
12:09:28.0692 4672 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
12:09:28.0739 4672 BrSerWdm - ok
12:09:28.0771 4672 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
12:09:28.0817 4672 BrUsbMdm - ok
12:09:28.0849 4672 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
12:09:28.0880 4672 BrUsbSer - ok
12:09:28.0911 4672 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
12:09:28.0958 4672 BthEnum - ok
12:09:28.0974 4672 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
12:09:29.0021 4672 BTHMODEM - ok
12:09:29.0052 4672 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:09:29.0114 4672 BthPan - ok
12:09:29.0146 4672 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
12:09:29.0224 4672 BTHPORT - ok
12:09:29.0255 4672 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
12:09:29.0286 4672 BthServ - ok
12:09:29.0302 4672 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
12:09:29.0317 4672 BTHUSB - ok
12:09:29.0411 4672 catchme - ok
12:09:29.0442 4672 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:09:29.0474 4672 cdfs - ok
12:09:29.0506 4672 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:09:29.0522 4672 cdrom - ok
12:09:29.0568 4672 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
12:09:29.0615 4672 CertPropSvc - ok
12:09:29.0631 4672 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
12:09:29.0662 4672 circlass - ok
12:09:29.0678 4672 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
12:09:29.0693 4672 CLFS - ok
12:09:29.0725 4672 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:09:29.0740 4672 clr_optimization_v2.0.50727_32 - ok
12:09:29.0756 4672 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:09:29.0772 4672 clr_optimization_v4.0.30319_32 - ok
12:09:29.0787 4672 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:09:29.0803 4672 cmdide - ok
12:09:29.0834 4672 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\drivers\compbatt.sys
12:09:29.0850 4672 Compbatt - ok
12:09:29.0850 4672 COMSysApp - ok
12:09:29.0850 4672 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
12:09:29.0865 4672 crcdisk - ok
12:09:29.0881 4672 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
12:09:29.0912 4672 Crusoe - ok
12:09:29.0943 4672 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:09:29.0990 4672 CryptSvc - ok
12:09:30.0037 4672 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:09:30.0084 4672 DcomLaunch - ok
12:09:30.0100 4672 [ 20A04D8077CCCBA1711070EB01F02AFB ] DELTAII C:\Windows\system32\DRIVERS\deltaII.sys
12:09:30.0115 4672 DELTAII - ok
12:09:30.0147 4672 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:09:30.0178 4672 DfsC - ok
12:09:30.0256 4672 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
12:09:30.0350 4672 DFSR - ok
12:09:30.0381 4672 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
12:09:30.0412 4672 Dhcp - ok
12:09:30.0428 4672 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
12:09:30.0443 4672 disk - ok
12:09:30.0475 4672 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:09:30.0528 4672 Dnscache - ok
12:09:30.0544 4672 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:09:30.0560 4672 dot3svc - ok
12:09:30.0591 4672 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
12:09:30.0622 4672 DPS - ok
12:09:30.0669 4672 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:09:30.0700 4672 drmkaud - ok
12:09:30.0747 4672 [ D61A836C36D55CF7AD633DAF1D9065F7 ] DTSRVC C:\Program Files\Common Files\Portrait Displays\Shared\DTSRVC.exe
12:09:30.0763 4672 DTSRVC ( UnsignedFile.Multi.Generic ) - warning
12:09:30.0763 4672 DTSRVC - detected UnsignedFile.Multi.Generic (1)
12:09:30.0810 4672 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:09:30.0825 4672 DXGKrnl - ok
12:09:30.0856 4672 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
12:09:30.0888 4672 E1G60 - ok
12:09:30.0903 4672 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
12:09:30.0935 4672 EapHost - ok
12:09:30.0935 4672 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
12:09:30.0950 4672 Ecache - ok
12:09:30.0997 4672 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:09:31.0028 4672 ehRecvr - ok
12:09:31.0075 4672 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
12:09:31.0106 4672 ehSched - ok
12:09:31.0122 4672 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
12:09:31.0122 4672 ehstart - ok
12:09:31.0153 4672 EIO - ok
12:09:31.0169 4672 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
12:09:31.0200 4672 elxstor - ok
12:09:31.0216 4672 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
12:09:31.0278 4672 EMDMgmt - ok
12:09:31.0310 4672 [ B4556F3D468C8DCB0B259D9D866CD4C4 ] enodpl C:\Windows\system32\drivers\enodpl.sys
12:09:31.0341 4672 enodpl ( UnsignedFile.Multi.Generic ) - warning
12:09:31.0341 4672 enodpl - detected UnsignedFile.Multi.Generic (1)
12:09:31.0356 4672 [ 6ECEB0CE18D352AF410DD50EE13EAA9A ] epmntdrv C:\Windows\system32\epmntdrv.sys
12:09:31.0372 4672 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
12:09:31.0372 4672 epmntdrv - detected UnsignedFile.Multi.Generic (1)
12:09:31.0403 4672 [ A81AB23EDDB4693612014D87367D014C ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:09:31.0435 4672 ErrDev - ok
12:09:31.0481 4672 [ 5F779F5EDAB787F2D090C71A9051F365 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
12:09:31.0481 4672 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
12:09:31.0481 4672 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
12:09:31.0528 4672 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
12:09:31.0544 4672 EventSystem - ok
12:09:31.0575 4672 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
12:09:31.0622 4672 exfat - ok
12:09:31.0638 4672 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:09:31.0669 4672 fastfat - ok
12:09:31.0685 4672 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:09:31.0731 4672 fdc - ok
12:09:31.0747 4672 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
12:09:31.0778 4672 fdPHost - ok
12:09:31.0778 4672 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
12:09:31.0841 4672 FDResPub - ok
12:09:31.0872 4672 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:09:31.0872 4672 FileInfo - ok
12:09:31.0888 4672 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:09:31.0935 4672 Filetrace - ok
12:09:31.0950 4672 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:09:31.0997 4672 flpydisk - ok
12:09:32.0013 4672 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:09:32.0028 4672 FltMgr - ok
12:09:32.0091 4672 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
12:09:32.0153 4672 FontCache - ok
12:09:32.0216 4672 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:09:32.0216 4672 FontCache3.0.0.0 - ok
12:09:32.0278 4672 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:09:32.0310 4672 Fs_Rec - ok
12:09:32.0341 4672 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
12:09:32.0356 4672 gagp30kx - ok
12:09:32.0372 4672 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\Drivers\GEARAspiWDM.sys
12:09:32.0388 4672 GEARAspiWDM - ok
12:09:32.0419 4672 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
12:09:32.0450 4672 gpsvc - ok
12:09:32.0513 4672 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
12:09:32.0528 4672 gupdate - ok
12:09:32.0528 4672 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:09:32.0528 4672 gupdatem - ok
12:09:32.0575 4672 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:09:32.0622 4672 HdAudAddService - ok
12:09:32.0653 4672 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
12:09:32.0685 4672 HDAudBus - ok
12:09:32.0700 4672 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
12:09:32.0763 4672 HidBth - ok
12:09:32.0778 4672 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
12:09:32.0825 4672 HidIr - ok
12:09:32.0872 4672 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
12:09:32.0935 4672 hidserv - ok
12:09:32.0950 4672 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:09:33.0028 4672 HidUsb - ok
12:09:33.0153 4672 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:09:33.0216 4672 hkmsvc - ok
12:09:33.0231 4672 [ 7EBEC5EB56B90ED65A8BBD91464E5CFB ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
12:09:33.0247 4672 HpCISSs - ok
12:09:33.0294 4672 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:09:33.0341 4672 HTTP - ok
12:09:33.0356 4672 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
12:09:33.0372 4672 i2omp - ok
12:09:33.0388 4672 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
12:09:33.0419 4672 i8042prt - ok
12:09:33.0450 4672 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
12:09:33.0466 4672 iaStorV - ok
12:09:33.0513 4672 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:09:33.0513 4672 IDriverT ( UnsignedFile.Multi.Generic ) - warning
12:09:33.0513 4672 IDriverT - detected UnsignedFile.Multi.Generic (1)
12:09:33.0575 4672 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:09:33.0606 4672 idsvc - ok
12:09:33.0638 4672 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
12:09:33.0653 4672 iirsp - ok
12:09:33.0685 4672 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
12:09:33.0731 4672 IKEEXT - ok
12:09:33.0747 4672 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
12:09:33.0763 4672 intelide - ok
12:09:33.0794 4672 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:09:33.0825 4672 intelppm - ok
12:09:33.0856 4672 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:09:33.0888 4672 IPBusEnum - ok
12:09:33.0919 4672 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:09:33.0935 4672 IpFilterDriver - ok
12:09:33.0981 4672 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:09:34.0028 4672 iphlpsvc - ok
12:09:34.0028 4672 IpInIp - ok
12:09:34.0044 4672 [ 4B9C0F4D4A3ACC535F9771039ECD6365 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
12:09:34.0075 4672 IPMIDRV - ok
12:09:34.0091 4672 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
12:09:34.0122 4672 IPNAT - ok
12:09:34.0200 4672 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:09:34.0231 4672 iPod Service - ok
12:09:34.0247 4672 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:09:34.0278 4672 IRENUM - ok
12:09:34.0294 4672 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:09:34.0310 4672 isapnp - ok
12:09:34.0325 4672 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
12:09:34.0341 4672 iScsiPrt - ok
12:09:34.0356 4672 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
12:09:34.0372 4672 iteatapi - ok
12:09:34.0388 4672 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
12:09:34.0388 4672 iteraid - ok
12:09:34.0403 4672 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:09:34.0419 4672 kbdclass - ok
12:09:34.0466 4672 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:09:34.0481 4672 kbdhid - ok
12:09:34.0497 4672 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
12:09:34.0528 4672 KeyIso - ok
12:09:34.0560 4672 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:09:34.0591 4672 KSecDD - ok
12:09:34.0638 4672 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
12:09:34.0700 4672 KtmRm - ok
12:09:34.0763 4672 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
12:09:34.0810 4672 LanmanServer - ok
12:09:34.0856 4672 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:09:34.0903 4672 LanmanWorkstation - ok
12:09:34.0919 4672 [ 4127E8B6DDB4090E815C1F8852C277D3 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
12:09:34.0935 4672 lirsgt - ok
12:09:34.0935 4672 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:09:34.0966 4672 lltdio - ok
12:09:34.0997 4672 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:09:35.0028 4672 lltdsvc - ok
12:09:35.0044 4672 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:09:35.0091 4672 lmhosts - ok
12:09:35.0091 4672 lmimirr - ok
12:09:35.0122 4672 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
12:09:35.0138 4672 LSI_FC - ok
12:09:35.0153 4672 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
12:09:35.0169 4672 LSI_SAS - ok
12:09:35.0185 4672 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
12:09:35.0200 4672 LSI_SCSI - ok
12:09:35.0216 4672 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
12:09:35.0263 4672 luafv - ok
12:09:35.0294 4672 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:09:35.0310 4672 Mcx2Svc - ok
12:09:35.0325 4672 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
12:09:35.0341 4672 megasas - ok
12:09:35.0356 4672 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
12:09:35.0403 4672 MegaSR - ok
12:09:35.0497 4672 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
12:09:35.0513 4672 Microsoft Office Groove Audit Service - ok
12:09:35.0528 4672 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
12:09:35.0560 4672 MMCSS - ok
12:09:35.0575 4672 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
12:09:35.0622 4672 Modem - ok
12:09:35.0669 4672 [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] monfilt C:\Windows\system32\drivers\monfilt.sys
12:09:35.0763 4672 monfilt - ok
12:09:35.0794 4672 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:09:35.0841 4672 monitor - ok
12:09:35.0856 4672 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:09:35.0872 4672 mouclass - ok
12:09:35.0872 4672 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:09:35.0903 4672 mouhid - ok
12:09:35.0903 4672 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
12:09:35.0919 4672 MountMgr - ok
12:09:35.0935 4672 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:09:35.0950 4672 MozillaMaintenance - ok
12:09:35.0966 4672 [ 5DA347912FD3AF24D7BFB3DE519D4BD0 ] mpio C:\Windows\system32\drivers\mpio.sys
12:09:35.0981 4672 mpio - ok
12:09:35.0981 4672 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:09:36.0028 4672 mpsdrv - ok
12:09:36.0044 4672 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
12:09:36.0106 4672 MpsSvc - ok
12:09:36.0122 4672 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
12:09:36.0138 4672 Mraid35x - ok
12:09:36.0138 4672 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:09:36.0153 4672 MRxDAV - ok
12:09:36.0185 4672 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:09:36.0231 4672 mrxsmb - ok
12:09:36.0278 4672 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:09:36.0294 4672 mrxsmb10 - ok
12:09:36.0310 4672 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:09:36.0341 4672 mrxsmb20 - ok
12:09:36.0356 4672 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\drivers\msahci.sys
12:09:36.0372 4672 msahci - ok
12:09:36.0388 4672 [ 2C563AEF15B8D0014C36C5F27742AC7B ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:09:36.0403 4672 msdsm - ok
12:09:36.0419 4672 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
12:09:36.0450 4672 MSDTC - ok
12:09:36.0481 4672 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:09:36.0513 4672 Msfs - ok
12:09:36.0513 4672 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:09:36.0528 4672 msisadrv - ok
12:09:36.0560 4672 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:09:36.0606 4672 MSiSCSI - ok
12:09:36.0606 4672 msiserver - ok
12:09:36.0638 4672 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:09:36.0685 4672 MSKSSRV - ok
12:09:36.0716 4672 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:09:36.0731 4672 MSPCLOCK - ok
12:09:36.0747 4672 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:09:36.0763 4672 MSPQM - ok
12:09:36.0794 4672 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:09:36.0810 4672 MsRPC - ok
12:09:36.0825 4672 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
12:09:36.0825 4672 mssmbios - ok
12:09:36.0841 4672 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:09:36.0888 4672 MSTEE - ok
12:09:36.0903 4672 [ DCDAAB8697A47894A554050CE18D0B56 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
12:09:36.0919 4672 MTsensor - ok
12:09:36.0935 4672 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
12:09:36.0950 4672 Mup - ok
12:09:36.0966 4672 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
12:09:37.0013 4672 napagent - ok
12:09:37.0028 4672 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:09:37.0044 4672 NativeWifiP - ok
12:09:37.0075 4672 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:09:37.0106 4672 NDIS - ok
12:09:37.0122 4672 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:09:37.0169 4672 NdisTapi - ok
12:09:37.0185 4672 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:09:37.0216 4672 Ndisuio - ok
12:09:37.0247 4672 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:09:37.0278 4672 NdisWan - ok
12:09:37.0294 4672 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:09:37.0325 4672 NDProxy - ok
12:09:37.0372 4672 [ 2AAE889742376EDC5C3203DFB74F28FD ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
12:09:37.0403 4672 Nero BackItUp Scheduler 3 - ok
12:09:37.0435 4672 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:09:37.0466 4672 NetBIOS - ok
12:09:37.0481 4672 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
12:09:37.0497 4672 netbt - ok
12:09:37.0528 4672 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
12:09:37.0528 4672 Netlogon - ok
12:09:37.0576 4672 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
12:09:37.0623 4672 Netman - ok
12:09:37.0654 4672 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:09:37.0670 4672 NetMsmqActivator - ok
12:09:37.0670 4672 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:09:37.0686 4672 NetPipeActivator - ok
12:09:37.0701 4672 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
12:09:37.0748 4672 netprofm - ok
12:09:37.0748 4672 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:09:37.0764 4672 NetTcpActivator - ok
12:09:37.0764 4672 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:09:37.0779 4672 NetTcpPortSharing - ok
12:09:37.0795 4672 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
12:09:37.0811 4672 nfrd960 - ok
12:09:37.0826 4672 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:09:37.0842 4672 NlaSvc - ok
12:09:37.0889 4672 [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
12:09:37.0936 4672 NMIndexingService - ok
12:09:37.0951 4672 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:09:37.0982 4672 Npfs - ok
12:09:38.0014 4672 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
12:09:38.0045 4672 nsi - ok
12:09:38.0061 4672 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:09:38.0092 4672 nsiproxy - ok
12:09:38.0123 4672 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:09:38.0170 4672 Ntfs - ok
12:09:38.0201 4672 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
12:09:38.0248 4672 ntrigdigi - ok
12:09:38.0264 4672 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
12:09:38.0311 4672 Null - ok
12:09:38.0342 4672 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:09:38.0420 4672 nvraid - ok
12:09:38.0451 4672 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:09:38.0467 4672 nvstor - ok
12:09:38.0482 4672 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:09:38.0498 4672 nv_agp - ok
12:09:38.0498 4672 NwlnkFlt - ok
12:09:38.0498 4672 NwlnkFwd - ok
12:09:38.0561 4672 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:09:38.0626 4672 odserv - ok
12:09:38.0673 4672 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
12:09:38.0704 4672 ohci1394 - ok
12:09:38.0735 4672 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:09:38.0735 4672 ose - ok
12:09:38.0782 4672 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
12:09:38.0892 4672 p2pimsvc - ok
12:09:38.0892 4672 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
12:09:38.0923 4672 p2psvc - ok
12:09:38.0954 4672 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:09:38.0985 4672 Parport - ok
12:09:39.0017 4672 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:09:39.0032 4672 partmgr - ok
12:09:39.0048 4672 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
12:09:39.0079 4672 Parvdm - ok
12:09:39.0095 4672 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
12:09:39.0126 4672 PcaSvc - ok
12:09:39.0126 4672 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
12:09:39.0142 4672 pci - ok
12:09:39.0157 4672 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
12:09:39.0173 4672 pciide - ok
12:09:39.0188 4672 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
12:09:39.0204 4672 pcmcia - ok
12:09:39.0220 4672 [ 18ED1D71FEF6F71D38C24263500BBD01 ] PdiPorts C:\Windows\system32\Drivers\PdiPorts.sys
12:09:39.0235 4672 PdiPorts - ok
12:09:39.0267 4672 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:09:39.0313 4672 PEAUTH - ok
12:09:39.0345 4672 [ 004D29838DE00E3F8883996B61778A9F ] Phonic_1394 C:\Windows\system32\Drivers\Phonic_1394.sys
12:09:39.0360 4672 Phonic_1394 - ok
12:09:39.0376 4672 [ 77567E563C4282C7BE478B752FB49932 ] Phonic_avs C:\Windows\system32\Drivers\Phonic_avs.sys
12:09:39.0392 4672 Phonic_avs - ok
12:09:39.0438 4672 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
12:09:39.0532 4672 pla - ok
12:09:39.0548 4672 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
12:09:39.0563 4672 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - warning
12:09:39.0563 4672 PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic (1)
12:09:39.0627 4672 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:09:39.0658 4672 PlugPlay - ok
12:09:39.0674 4672 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
12:09:39.0721 4672 PNRPAutoReg - ok
12:09:39.0721 4672 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
12:09:39.0752 4672 PNRPsvc - ok
12:09:39.0814 4672 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:09:39.0877 4672 PolicyAgent - ok
12:09:39.0893 4672 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:09:39.0924 4672 PptpMiniport - ok
12:09:39.0971 4672 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
12:09:40.0002 4672 Processor - ok
12:09:40.0018 4672 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
12:09:40.0033 4672 ProfSvc - ok
12:09:40.0049 4672 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
12:09:40.0064 4672 ProtectedStorage - ok
12:09:40.0080 4672 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
12:09:40.0111 4672 PSched - ok
12:09:40.0127 4672 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
12:09:40.0143 4672 PxHelp20 - ok
12:09:40.0174 4672 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
12:09:40.0221 4672 ql2300 - ok
12:09:40.0252 4672 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
12:09:40.0268 4672 ql40xx - ok
12:09:40.0314 4672 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
12:09:40.0346 4672 QWAVE - ok
12:09:40.0361 4672 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:09:40.0377 4672 QWAVEdrv - ok
12:09:40.0393 4672 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:09:40.0424 4672 RasAcd - ok
12:09:40.0455 4672 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
12:09:40.0486 4672 RasAuto - ok
12:09:40.0486 4672 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:09:40.0518 4672 Rasl2tp - ok
12:09:40.0533 4672 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
12:09:40.0564 4672 RasMan - ok
12:09:40.0580 4672 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:09:40.0611 4672 RasPppoe - ok
12:09:40.0662 4672 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:09:40.0678 4672 RasSstp - ok
12:09:40.0693 4672 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:09:40.0709 4672 rdbss - ok
12:09:40.0725 4672 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:09:40.0756 4672 RDPCDD - ok
12:09:40.0772 4672 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
12:09:40.0803 4672 rdpdr - ok
12:09:40.0818 4672 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:09:40.0850 4672 RDPENCDD - ok
12:09:40.0881 4672 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:09:40.0912 4672 RDPWD - ok
12:09:40.0943 4672 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:09:40.0959 4672 RemoteAccess - ok
12:09:40.0990 4672 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:09:41.0006 4672 RemoteRegistry - ok
12:09:41.0100 4672 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
12:09:41.0147 4672 RFCOMM - ok
12:09:41.0162 4672 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
12:09:41.0209 4672 RpcLocator - ok
12:09:41.0225 4672 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
12:09:41.0256 4672 RpcSs - ok
12:09:41.0272 4672 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:09:41.0287 4672 rspndr - ok
12:09:41.0365 4672 [ 8CCA591019216E9523E3CB385CE643E6 ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
12:09:41.0443 4672 RTL8169 - ok
12:09:41.0459 4672 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
12:09:41.0475 4672 SamSs - ok
12:09:41.0490 4672 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:09:41.0506 4672 sbp2port - ok
12:09:41.0522 4672 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:09:41.0537 4672 SCardSvr - ok
12:09:41.0584 4672 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
12:09:41.0631 4672 Schedule - ok
12:09:41.0647 4672 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:09:41.0662 4672 SCPolicySvc - ok
12:09:41.0678 4672 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:09:41.0709 4672 SDRSVC - ok
12:09:41.0709 4672 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:09:41.0756 4672 secdrv - ok
12:09:41.0772 4672 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
12:09:41.0803 4672 seclogon - ok
12:09:41.0834 4672 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
12:09:41.0850 4672 SENS - ok
12:09:41.0881 4672 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:09:41.0912 4672 Serenum - ok
12:09:41.0943 4672 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:09:41.0975 4672 Serial - ok
12:09:41.0990 4672 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
12:09:42.0006 4672 sermouse - ok
12:09:42.0053 4672 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
12:09:42.0068 4672 SessionEnv - ok
12:09:42.0084 4672 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:09:42.0115 4672 sffdisk - ok
12:09:42.0115 4672 [ E5EAFE85815BD89095FEF3144A09AB68 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:09:42.0147 4672 sffp_mmc - ok
12:09:42.0162 4672 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:09:42.0178 4672 sffp_sd - ok
12:09:42.0193 4672 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
12:09:42.0256 4672 sfloppy - ok
12:09:42.0287 4672 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:09:42.0318 4672 SharedAccess - ok
12:09:42.0365 4672 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:09:42.0412 4672 ShellHWDetection - ok
12:09:42.0428 4672 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
12:09:42.0443 4672 sisagp - ok
12:09:42.0459 4672 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
12:09:42.0475 4672 SiSRaid2 - ok
12:09:42.0506 4672 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
12:09:42.0522 4672 SiSRaid4 - ok
12:09:42.0600 4672 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
12:09:42.0725 4672 slsvc - ok
12:09:42.0756 4672 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
12:09:42.0787 4672 SLUINotify - ok
12:09:42.0818 4672 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:09:42.0834 4672 Smb - ok
12:09:42.0850 4672 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:09:42.0865 4672 SNMPTRAP - ok
12:09:42.0881 4672 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
12:09:42.0897 4672 spldr - ok
12:09:42.0943 4672 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
12:09:42.0975 4672 Spooler - ok
12:09:43.0037 4672 [ 68103A2B441BBF3908EBB587F0704D6C ] sptd C:\Windows\System32\Drivers\sptd.sys
12:09:43.0053 4672 sptd - ok
12:09:43.0115 4672 [ 86F8CE773624E2058F12B70CF344E083 ] Spyder4 C:\Windows\system32\DRIVERS\dccmtr.sys
12:09:43.0162 4672 Spyder4 - ok
12:09:43.0193 4672 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:09:43.0225 4672 srv - ok
12:09:43.0256 4672 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:09:43.0287 4672 srv2 - ok
12:09:43.0303 4672 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:09:43.0318 4672 srvnet - ok
12:09:43.0350 4672 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:09:43.0365 4672 SSDPSRV - ok
12:09:43.0412 4672 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:09:43.0428 4672 SstpSvc - ok
12:09:43.0459 4672 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
12:09:43.0553 4672 stisvc - ok
12:09:43.0584 4672 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
12:09:43.0600 4672 swenum - ok
12:09:43.0662 4672 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
12:09:43.0693 4672 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
12:09:43.0693 4672 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
12:09:43.0725 4672 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
12:09:43.0756 4672 swprv - ok
12:09:43.0787 4672 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
12:09:43.0803 4672 Symc8xx - ok
12:09:43.0818 4672 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
12:09:43.0834 4672 Sym_hi - ok
12:09:43.0850 4672 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
12:09:43.0865 4672 Sym_u3 - ok
12:09:43.0881 4672 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
12:09:43.0912 4672 SysMain - ok
12:09:43.0959 4672 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:09:43.0975 4672 TabletInputService - ok
12:09:43.0990 4672 [ 126D7B3B4C7B724491C604060E1F4E14 ] tandpl C:\Windows\system32\drivers\tandpl.sys
12:09:43.0990 4672 tandpl ( UnsignedFile.Multi.Generic ) - warning
12:09:43.0990 4672 tandpl - detected UnsignedFile.Multi.Generic (1)
12:09:44.0006 4672 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:09:44.0037 4672 TapiSrv - ok
12:09:44.0053 4672 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
12:09:44.0084 4672 TBS - ok
12:09:44.0131 4672 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:09:44.0178 4672 Tcpip - ok
12:09:44.0209 4672 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
12:09:44.0240 4672 Tcpip6 - ok
12:09:44.0272 4672 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:09:44.0303 4672 tcpipreg - ok
12:09:44.0318 4672 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:09:44.0350 4672 TDPIPE - ok
12:09:44.0365 4672 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:09:44.0397 4672 TDTCP - ok
12:09:44.0428 4672 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:09:44.0459 4672 tdx - ok
12:09:44.0490 4672 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
12:09:44.0506 4672 TermDD - ok
12:09:44.0522 4672 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
12:09:44.0584 4672 TermService - ok
12:09:44.0615 4672 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
12:09:44.0631 4672 Themes - ok
12:09:44.0662 4672 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
12:09:44.0694 4672 THREADORDER - ok
12:09:44.0710 4672 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
12:09:44.0726 4672 TrkWks - ok
12:09:44.0772 4672 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:09:44.0788 4672 TrustedInstaller - ok
12:09:44.0804 4672 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:09:44.0819 4672 tssecsrv - ok
12:09:44.0835 4672 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
12:09:44.0851 4672 tunmp - ok
12:09:44.0882 4672 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:09:44.0913 4672 tunnel - ok
12:09:44.0929 4672 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
12:09:44.0944 4672 uagp35 - ok
12:09:44.0960 4672 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:09:44.0976 4672 udfs - ok
12:09:45.0007 4672 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:09:45.0054 4672 UI0Detect - ok
12:09:45.0069 4672 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:09:45.0085 4672 uliagpkx - ok
12:09:45.0101 4672 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
12:09:45.0116 4672 uliahci - ok
12:09:45.0132 4672 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
12:09:45.0147 4672 UlSata - ok
12:09:45.0163 4672 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
12:09:45.0179 4672 ulsata2 - ok
12:09:45.0194 4672 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:09:45.0241 4672 umbus - ok
12:09:45.0272 4672 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
12:09:45.0304 4672 upnphost - ok
12:09:45.0351 4672 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
12:09:45.0351 4672 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
12:09:45.0351 4672 USBAAPL - detected UnsignedFile.Multi.Generic (1)
12:09:45.0382 4672 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:09:45.0397 4672 usbaudio - ok
12:09:45.0429 4672 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:09:45.0460 4672 usbccgp - ok
12:09:45.0491 4672 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:09:45.0538 4672 usbcir - ok
12:09:45.0538 4672 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:09:45.0585 4672 usbehci - ok
12:09:45.0601 4672 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:09:45.0616 4672 usbhub - ok
12:09:45.0647 4672 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:09:45.0679 4672 usbohci - ok
12:09:45.0694 4672 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
12:09:45.0741 4672 usbprint - ok
12:09:45.0757 4672 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:09:45.0788 4672 USBSTOR - ok
12:09:45.0819 4672 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:09:45.0835 4672 usbuhci - ok
12:09:45.0882 4672 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
12:09:45.0929 4672 usbvideo - ok
12:09:45.0944 4672 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
12:09:45.0960 4672 UxSms - ok
12:09:45.0976 4672 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
12:09:46.0022 4672 vds - ok
12:09:46.0069 4672 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:09:46.0101 4672 vga - ok
12:09:46.0132 4672 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
12:09:46.0163 4672 VgaSave - ok
12:09:46.0179 4672 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
12:09:46.0179 4672 viaagp - ok
12:09:46.0194 4672 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
12:09:46.0226 4672 ViaC7 - ok
12:09:46.0272 4672 [ 51B24990850076F659D1D1DAEFBED6F1 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
12:09:46.0304 4672 VIAHdAudAddService - ok
12:09:46.0319 4672 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
12:09:46.0335 4672 viaide - ok
12:09:46.0351 4672 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:09:46.0366 4672 volmgr - ok
12:09:46.0366 4672 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:09:46.0397 4672 volmgrx - ok
12:09:46.0397 4672 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:09:46.0413 4672 volsnap - ok
12:09:46.0429 4672 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
12:09:46.0444 4672 vsmraid - ok
12:09:46.0476 4672 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
12:09:46.0522 4672 VSS - ok
12:09:46.0569 4672 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
12:09:46.0601 4672 W32Time - ok
12:09:46.0632 4672 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
12:09:46.0679 4672 WacomPen - ok
12:09:46.0694 4672 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
12:09:46.0726 4672 Wanarp - ok
12:09:46.0726 4672 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:09:46.0741 4672 Wanarpv6 - ok
12:09:46.0772 4672 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:09:46.0788 4672 wcncsvc - ok
12:09:46.0804 4672 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:09:46.0835 4672 WcsPlugInService - ok
12:09:46.0835 4672 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
12:09:46.0866 4672 Wd - ok
12:09:46.0882 4672 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:09:46.0913 4672 Wdf01000 - ok
12:09:46.0929 4672 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:09:46.0976 4672 WdiServiceHost - ok
12:09:46.0976 4672 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:09:47.0007 4672 WdiSystemHost - ok
12:09:47.0038 4672 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
12:09:47.0069 4672 WebClient - ok
12:09:47.0132 4672 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:09:47.0163 4672 Wecsvc - ok
12:09:47.0179 4672 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:09:47.0194 4672 wercplsupport - ok
12:09:47.0210 4672 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
12:09:47.0241 4672 WerSvc - ok
12:09:47.0304 4672 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
12:09:47.0319 4672 WinDefend - ok
12:09:47.0335 4672 WinHttpAutoProxySvc - ok
12:09:47.0382 4672 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:09:47.0397 4672 Winmgmt - ok
12:09:47.0460 4672 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
12:09:47.0507 4672 WinRM - ok
12:09:47.0632 4672 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:09:47.0694 4672 Wlansvc - ok
12:09:47.0819 4672 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:09:47.0866 4672 wlidsvc - ok
12:09:47.0897 4672 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:09:47.0913 4672 WmiAcpi - ok
12:09:47.0944 4672 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:09:47.0960 4672 wmiApSrv - ok
12:09:48.0038 4672 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
12:09:48.0069 4672 WMPNetworkSvc - ok
12:09:48.0116 4672 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:09:48.0163 4672 WPCSvc - ok
12:09:48.0210 4672 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:09:48.0226 4672 WPDBusEnum - ok
12:09:48.0272 4672 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
12:09:48.0288 4672 WpdUsb - ok
12:09:48.0351 4672 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:09:48.0382 4672 WPFFontCache_v0400 - ok
12:09:48.0397 4672 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:09:48.0444 4672 ws2ifsl - ok
12:09:48.0491 4672 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
12:09:48.0522 4672 wscsvc - ok
12:09:48.0522 4672 WSearch - ok
12:09:48.0727 4672 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
12:09:48.0898 4672 wuauserv - ok
12:09:48.0961 4672 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:48.0992 4672 WUDFRd - ok
12:09:49.0008 4672 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:09:49.0055 4672 wudfsvc - ok
12:09:49.0102 4672 ================ Scan global ===============================
12:09:49.0164 4672 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
12:09:49.0195 4672 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
12:09:49.0242 4672 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
12:09:49.0305 4672 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
12:09:49.0305 4672 [Global] - ok
12:09:49.0305 4672 ============================================================
12:09:49.0305 4672 Scan finished
12:09:49.0305 4672 ============================================================
12:09:49.0320 4772 Detected object count: 9
12:09:49.0320 4772 Actual detected object count: 9
12:11:37.0903 4772 DTSRVC ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 DTSRVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0903 4772 enodpl ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 enodpl ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0903 4772 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0903 4772 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0903 4772 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0903 4772 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0903 4772 PLFlash DeviceIoControl Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0919 4772 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0919 4772 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0919 4772 tandpl ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0919 4772 tandpl ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:11:37.0919 4772 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:37.0919 4772 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip


Omhoog
 Profiel  
 
BerichtGeplaatst: do dec 06, 2012 2:53 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,

Doe het volgende;

Download TDSSQlook.exe naar het bureaublad.
  • Dubbelklik op "TDSSQlook.exe" om de tool te starten.
  • Let op!!! Windows Vista & 7 gebruikers dienen TDSSQlook.exe als administrator uit te voeren "Rechtermuisknop uitvoeren als",
  • Typ A gevolgd door Enter om de "Scan" te starten.
  • Wacht tot het CMD-venster sluit en een kladblokvenster met het logje opent.
  • Selecteer de volledige inhoud van het log en kopieer dit in je volgende bericht.


Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
BerichtGeplaatst: do dec 06, 2012 2:58 pm 
Offline
Lid

Geregistreerd: di dec 04, 2012 2:59 pm
Berichten: 13
Besturingssysteem: WindowsVista 32b/Windows 7 64b
Bescherming: AVG Anti-Virus
TDSSKiller Quarantine Information log
TDSS Qlook Version 1.0.0.5 - Gebruiker - do 06-12-2012 - 13:57:38,20.
Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2
***** START SCAN do 06-12-2012 13:57:38,68 *****

---------- TDSSKiller logs ----------

TDSSKiller.2.8.15.0_06.12.2012_12.08.41_log.txt

---------- TDSSStarter logs ----------

Report_05-12-2012_1527_.txt

---------- DIR LIST ----------


---------- INI FILES ----------

***** END SCAN do 06-12-2012 13:58:37,41 *****


Omhoog
 Profiel  
 
BerichtGeplaatst: do dec 06, 2012 3:05 pm 
Offline
Moderator
Avatar gebruiker

Geregistreerd: di jan 18, 2011 7:27 pm
Berichten: 5845
Besturingssysteem: windows 7 64-bit
Bescherming: Emsisoft Anti-Malware
Hallo,


Scan nogmaals met:

"TDSSKStarter.exe" gebruiken:
  • Sluit nu eerst alle nog openstaande programmavensters!
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met TDSSKStarter.exe
    (hier of hier) kan je lezen hoe je dat doet.
    • Windows 2000 en Windows XP: start de tool middels dubbelklik op "TDSSKStarter.exe".
    • Windows Vista en Windows 7: start de tool middels rechtsklik op "TDSSKStarter.exe" en dan kiezen voor Als Administrator uitvoeren.
  • Vervolgens zal een CMD-venster gestart worden en wanneer de scan gereed is weer automatisch sluiten.
  • Post nu de inhoud van het geopende kladblokbestand in het volgende bericht.


Groeten abbs.

_________________
Groeten abbs
Afbeelding
Afbeelding Teacher of UNITE (Unified Network of Instructors and Trained Eliminators)
Goed geholpen hier overweeg een donatie: of plaats hier een bedankje.


Omhoog
 Profiel  
 
Geef de vorige berichten weer:  Sorteer op  
Dit onderwerp is gesloten, je kunt geen berichten wijzigen of nieuwe antwoorden plaatsen  [ 26 berichten ]  Ga naar pagina 1, 2  Volgende

Forumoverzicht » RSIT/DDS/HijackThis logfiles » Opgeloste RSIT/DDS/HijackThis logfiles


Wie is er online

Gebruikers op dit forum: Bing [Bot], Google [Bot] en 6 gasten


Je mag geen nieuwe onderwerpen in dit forum plaatsen
Je mag niet antwoorden op een onderwerp in dit forum
Je mag je berichten in dit forum niet wijzigen
Je mag je berichten niet uit dit forum verwijderen
Je mag geen bijlagen toevoegen in dit forum

Ga naar:  
Powered by phpBB® Forum Software © phpBB Group
phpBB.nl Vertaling