anoniem Geplaatst: 31 augustus 2011 Delen Geplaatst: 31 augustus 2011 Mijn computer gaf vorige week ineens problemen (alle mappen weg (onzichtbaar), melding Catalys Control Center werkt niet meer, beveiligingsmeldingen internet). Na een scan met Microsoft Security Essentials werden de volgende virussen gevonden: Trojan:Win32/FakeSysdef ernstig 19-8-2011 17.16 verwijderd Trojan:Win32/Alureon.FE ernstig 19-8-2011 17.16 verwijderd Trojan:Win32/FakeSysdef ernstig 18-8-2011 21.40 verwijderd Trojan:Win32/FakeSysdef ernstig 18-8-2011 20.12 verwijderd Trojan:Win32/FakeSysdef ernstig 18-8-2011 20.01 In quarantaine... Trojan:Win32/FakeSysdef ernstig 18-8-2011 19.49 Daarna nog een paar keer een scan gedaan en ook met Mbam (zie scanlog hieronder) maar er werden geen virussen meer gevonden. Kan ik er nu van uitgaan dat echt alle virussen weg zijn? Ik blijf nog wel de volgende problemen hebben: - melding Catalyst Control Center werkt niet meer (heb ik opgelost door het te verwijderen maar ik weet niet of dit later problemen kan geven) - bij alle mappen heb ik verborgen bestanden weer uitgezet alleen bij de hoofdmappen in Bibliotheken (Afbeeldingen/Video/Documenten/Muziek) kan dit niet, dus die zijn nog onzichtbaar/licht van kleur. - op Internet Explorer blijf ik meldingen krijgen over beveiliging en ook wordt ik soms naar een andere site gezet die ik niet heb aangeklikt (www.liutilities.com??) Als ik mijn beveiliging van Internet Explorer bij internetopties op Standaardniveau zet schiet hij zodra ik de computer opnieuw heb opgestart op Aangepast niveau. Ik zag op deze site dat sommige problemen met Combofix te verhelpen zijn. Is dit een optie, en zo ja, is er dan iemand die aan wil geven hoe dit te doen? Hieronder de MBam scanlog en Hijackthis-log: Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Databaseversie: 7619 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 31-8-2011 13:19:55 mbam-log-2011-08-31 (13-19-55).txt Scantype: Volledige scan (C:\|) Objecten gescand: 307844 Verstreken tijd: 43 minuut/minuten, 44 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:42:54, on 31-8-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\SONY\ISB Utility\ISBMgr.exe C:\Program Files (x86)\SONY\PMB\PMBVolumeWatcher.exe C:\Program Files (x86)\SONY\Marketing Tools\MarketingTools.exe C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe C:\Program Files\Sony\VAIO Care\listener.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nl.msn.com/?ocid=OIE9HP R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door MSN and Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe O4 - HKLM\..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized O4 - Global Startup: Bluetooth.lnk = ? O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E92528A6} - C:\Program Files (x86)\Evernote\Evernote3.5\enbar.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1FEC8B6F-250A-4293-B12C-67A7EF0B758A} (sIKN Speler) - http://www.kerkomroep.nl/ocx/sIKNPlayer.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files (x86)\Canon\CAL\CALMAIN.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: VAIO Care Performance Service (SampleCollector) - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCPerfService.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe O23 - Service: VAIO Entertainment Common Service (SpfService) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe O23 - Service: VCService - Sony Corporation - C:\Program Files\Sony\VAIO Care\VCService.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 13860 bytes Quote Link naar reactie
0 anoniem Geplaatst: 31 augustus 2011 Auteur Delen Geplaatst: 31 augustus 2011 Hieronder de MBAM scan log en Uninstallijst Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Databaseversie: 7622 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 31-8-2011 23:24:22 mbam-log-2011-08-31 (23-24-22).txt Scantype: Snelle scan Objecten gescand: 185354 Verstreken tijd: 4 minuut/minuten, 47 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Uninstall-lijst HijackThis: Aangifte inkomstenbelasting 2010 ABN AMRO e.dentifier2 software Adobe Flash Player 10 Plugin Adobe Photoshop Elements 2.0 Adobe Reader 9.3.4 - Nederlands ArcSoft Magic-i Visual Effects 2 ArcSoft PhotoStudio 5.5 ArcSoft WebCam Companion 3 Canon Camera Access Library Canon Camera Support Core Library Canon Camera Window DC_DV 5 for ZoomBrowser EX Canon Camera Window DC_DV 6 for ZoomBrowser EX Canon Camera Window DSLR 5 for ZoomBrowser EX Canon Camera Window MC 6 for ZoomBrowser EX Canon MovieEdit Task for ZoomBrowser EX Canon PhotoRecord Canon RAW Image Task for ZoomBrowser EX Canon Utilities PhotoStitch 3.1 Canon ZoomBrowser EX (E) CanoScan Toolbox Ver4.9 Definition update for Microsoft Office 2010 (KB982726) Evernote Feedback Tool Google Chrome Google Toolbar for Internet Explorer Google Toolbar for Internet Explorer Google Update Helper HiJackThis Quote Link naar reactie
0 anoniem Geplaatst: 31 augustus 2011 Auteur Delen Geplaatst: 31 augustus 2011 Ik krijg het idee, dat er een behoorlijk stuk is weggevallen van de softwarelijst! Quote Link naar reactie
0 anoniem Geplaatst: 31 augustus 2011 Auteur Delen Geplaatst: 31 augustus 2011 Sorry, inderdaad iets mis gegaan denk ik. Ik heb het nu opnieuw gedaan en dan is ie inderdaad veeeel langer. Aangifte inkomstenbelasting 2010 ABN AMRO e.dentifier2 software Adobe Flash Player 10 Plugin Adobe Photoshop Elements 2.0 Adobe Reader 9.3.4 - Nederlands ArcSoft Magic-i Visual Effects 2 ArcSoft PhotoStudio 5.5 ArcSoft WebCam Companion 3 Canon Camera Access Library Canon Camera Support Core Library Canon Camera Window DC_DV 5 for ZoomBrowser EX Canon Camera Window DC_DV 6 for ZoomBrowser EX Canon Camera Window DSLR 5 for ZoomBrowser EX Canon Camera Window MC 6 for ZoomBrowser EX Canon MovieEdit Task for ZoomBrowser EX Canon PhotoRecord Canon RAW Image Task for ZoomBrowser EX Canon Utilities PhotoStitch 3.1 Canon ZoomBrowser EX (E) CanoScan Toolbox Ver4.9 Definition update for Microsoft Office 2010 (KB982726) Evernote Feedback Tool Google Chrome Google Toolbar for Internet Explorer Google Toolbar for Internet Explorer Google Update Helper HiJackThis Instellingen voor het controleren van inhoud VAIO Intel(R) Control Center Intel(R) Management Engine Components Intel(R) Rapid Storage Technology Intel(R) Turbo Boost Technology Driver Java(TM) 6 Update 21 Junk Mail filter update Malwarebytes' Anti-Malware versie 1.51.1.1800 Manual CanoScan 8400F Media Gallery Microsoft Choice Guard Microsoft Office 2010 Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office 2010 Service Pack 1 (SP1) Microsoft Office Access MUI (Dutch) 2010 Microsoft Office Excel MUI (Dutch) 2010 Microsoft Office Groove MUI (Dutch) 2010 Microsoft Office InfoPath MUI (Dutch) 2010 Microsoft Office OneNote MUI (Dutch) 2010 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2010 Microsoft Office PowerPoint MUI (Dutch) 2010 Microsoft Office Professional Plus 2010 Microsoft Office Professional Plus 2010 Microsoft Office Proof (Dutch) 2010 Microsoft Office Proof (English) 2010 Microsoft Office Proof (French) 2010 Microsoft Office Proof (German) 2010 Microsoft Office Proofing (Dutch) 2010 Microsoft Office Publisher MUI (Dutch) 2010 Microsoft Office Shared MUI (Dutch) 2010 Microsoft Office Word MUI (Dutch) 2010 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server Compact 3.5 SP1 English Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MusicStation OmniPage SE 2.0 Ondersteuning voor VAIO Transfer PMB PMB VAIO Edition Guide PMB VAIO Edition Plug-in Presto! PageManager 6.11 Realtek HDMI Audio Driver for ATI Realtek High Definition Audio Driver Roxio Central Audio Roxio Central Copy Roxio Central Core Roxio Central Data Roxio Central Tools Roxio Easy Media Creator 10 LJ Roxio Easy Media Creator Home Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870) Setting Utility Series Skype Toolbars Skype™ 5.1 SOHLib Merge Module Sony Home Network Library Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft Office 2010 (KB2494150) VAIO - PMB VAIO Edition Guide VAIO - PMB VAIO Edition Plug-in VAIO - Remote-toetsenbord VAIO Care VAIO Control Center VAIO Data Restore Tool VAIO DVD Menu Data VAIO Energiebeheer VAIO Entertainment Platform VAIO Event Service VAIO Gate VAIO Gate Default VAIO Marketing Tools VAIO Media plus VAIO Media plus Opening Movie VAIO Movie Story Template Data VAIO Movie Story Template Data VAIO Oorspronkelijke functie-instellingen VAIO Premium Partners VAIO Quick Web Access VAIO Quick Web Access VAIO screensaver VAIO Smart Network VAIO Update VAIO Wallpaper Contents Verzoek of wijziging voorlopige aanslag 2011 Windows Live - Hulpprogramma voor uploaden Windows Live aanmeldhulp Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sync Windows Live Writer Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Hoi wendyk, we beginnen nu eerst met Java, want die versie in jouw Windows is al van een tijdje terug, dus een veiligheidsrisico. Download daarom eerst naar je bureaublad [url=http://www.softpedia.com/dyn-postdownload.php?p=71050&t=0&i=1][b:f42c2a00da]Java 7 Update 0 (x86) voor Windows 7/XP/Vista/2000/2003/2008 Offline[/b:f42c2a00da][/url] Echter nog niet de nieuwe versie installeren! Je gaat daarna eerst naar Configuratiescherm [list:f42c2a00da][*:f42c2a00da][b:f42c2a00da]Software[/b:f42c2a00da] - Windows 2000/Windows XP [*:f42c2a00da][b:f42c2a00da]Programma's en onderdelen[/b:f42c2a00da] - Windows Vista en Windows 7[/list:u:f42c2a00da] en je verwijdert daar [b:f42c2a00da]Java(TM) 6 Update 21[/b:f42c2a00da] Vervolgens start jij je PC opnieuw op. Dan mag je daarna de nieuwste Java versie installeren. Daarna doe je het volgende: [b:f42c2a00da]Welk programma[/b:f42c2a00da]: ComboFix [b:f42c2a00da]Waarvoor/waarom[/b:f42c2a00da]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en zo mogelijk op te schonen. [b:f42c2a00da]Moeilijkheidsgraad[/b:f42c2a00da]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:f42c2a00da]Downloadlokatie[/b:f42c2a00da]: Dit programma absoluut naar het bureaublad downloaden! [b:f42c2a00da]Download ComboFix via één van deze locaties[/b:f42c2a00da]: [list:f42c2a00da][*:f42c2a00da][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:f42c2a00da]Bleepingcomputer[/b:f42c2a00da][/url] [*:f42c2a00da][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:f42c2a00da]ForoSpyware[/b:f42c2a00da][/url] [*:f42c2a00da][url=http://subs.geekstogo.com/ComboFix.exe][b:f42c2a00da]Geekstogo[/b:f42c2a00da][/url][/list:u:f42c2a00da] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:f42c2a00da]Hier[/b:f42c2a00da][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn! [url=http://www.bleepingcomputer.com/forums/topic114351.html][b:f42c2a00da]Hier[/b:f42c2a00da][/url] en [url=http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html][b:f42c2a00da]hier[/b:f42c2a00da][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:f42c2a00da]Voor alle duidelijkheid nogmaals[/b:f42c2a00da]: ComboFix dient vanaf het bureaublad gestart te worden. [b:f42c2a00da]Opmerkingen[/b:f42c2a00da]: [list:f42c2a00da][*:f42c2a00da] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist). [*:f42c2a00da]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten. [*:f42c2a00da]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:f42c2a00da] [b:f42c2a00da]ComboFix is opgestart[/b:f42c2a00da]: [list:f42c2a00da][*:f42c2a00da]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:f42c2a00da]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen! [*:f42c2a00da]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:f42c2a00da]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:f42c2a00da]Post de inhoud van dit logbestand in je volgende bericht. [*:f42c2a00da]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:f42c2a00da] [b:f42c2a00da]Belangrijke opmerking[/b:f42c2a00da]: [list:f42c2a00da][*:f42c2a00da][b:f42c2a00da][color=Red:f42c2a00da]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:f42c2a00da][/b:f42c2a00da] [*:f42c2a00da][b:f42c2a00da][color=blue:f42c2a00da]Illegal operation attempted on a registery key that has been marked for deletion.[/color:f42c2a00da][/b:f42c2a00da] [*:f42c2a00da][b:f42c2a00da][color=Red:f42c2a00da]Start dan de computer opnieuw op.[/color:f42c2a00da][/b:f42c2a00da][/list:u:f42c2a00da] Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 ComboFix 11-08-31.05 - Ruth 01-09-2011 13:50:05.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3950.2155 [GMT 2:00] Gestart vanuit: c:\users\Ruth\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\newsoft c:\program files (x86)\newsoft\Presto! PageManager 6\_Rtf_Reader.dll c:\program files (x86)\newsoft\Presto! PageManager 6\_Rtf2Pdf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\afrikns.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\albanian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\AminPlay.ini c:\program files (x86)\newsoft\Presto! PageManager 6\Amplayer.ex_ c:\program files (x86)\newsoft\Presto! PageManager 6\Amplayer.exe c:\program files (x86)\newsoft\Presto! PageManager 6\AmProf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Anno.dll c:\program files (x86)\newsoft\Presto! PageManager 6\author.ri c:\program files (x86)\newsoft\Presto! PageManager 6\Avi2Mpeg1.dll c:\program files (x86)\newsoft\Presto! PageManager 6\AviToMpeg2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\basque.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\bcdll32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Bkground.lst c:\program files (x86)\newsoft\Presto! PageManager 6\Bold.pat c:\program files (x86)\newsoft\Presto! PageManager 6\BOOT.EX_ c:\program files (x86)\newsoft\Presto! PageManager 6\brazil.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\brazil.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\breton.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Build Number.ini c:\program files (x86)\newsoft\Presto! PageManager 6\bulgar.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\bulgar.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\byelorus.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\catalan.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\ccmllnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\chechen.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\ChkVer.dll c:\program files (x86)\newsoft\Presto! PageManager 6\CloseNetGroup.exe c:\program files (x86)\newsoft\Presto! PageManager 6\cmdlnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Codecvt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Combine.hn1 c:\program files (x86)\newsoft\Presto! PageManager 6\Combine.pn1 c:\program files (x86)\newsoft\Presto! PageManager 6\Convert.exe c:\program files (x86)\newsoft\Presto! PageManager 6\crimtat.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\croatian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\czech.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\czech.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\Da.dll c:\program files (x86)\newsoft\Presto! PageManager 6\DANISH.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\DANISH.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\A_RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\ARECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\AUX_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_F.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_M.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLAS_P.FAC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\CLUS_T.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\COS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\COS.VAR c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\DBSINFO.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\FEAT_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\RECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\T4436.ID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCR\WORD_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\BIG5.HID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\BIG5GB.TBX c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\DEF_BIG.DIC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FACTORP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FARG_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FEATURE.SET c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FID_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FRCG_BIG.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\FWD_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\GBBIG5.TBX c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\GROUPP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\INFO_BIG.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\PC120P2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\POST_BIG.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\RCG_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\RCG_BIG.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SIM_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SIM_BIG.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\SING_BIG.LUT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PCCRCOMM\WORD_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\A_RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\ARECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\AUX_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_F.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_M.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLAS_P.FAC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\CLUS_T.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\COS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\COS.VAR c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\DBSINFO.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\E76.ID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\FEAT_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\RECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecr\WORD_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\BIG5.HID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FACTORP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FARG_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FEATURE.SET c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FID_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FRCG_BIG.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\FWD_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\GROUPP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\INFO_BIG.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\PC120P2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\POST_BIG.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\RCG_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\RCG_BIG.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SIM_BIG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SIM_BIG.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\SING_BIG.LUT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\pecrcomm\WORD_BIG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\A_RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\ARECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\AUX_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_F.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_M.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\CLAS_P.FAC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\COS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\COS.VAR c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\DBSINFO.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\FEAT_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\RECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\TRAIN.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCR\WORD_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\def_jis.dic c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\ERR_JIS.LUT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FACTORP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FARG_JIS.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\FEATURE.SET c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\GROUPP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\Info_jis.ini c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\JIS.HID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\KANA.TRI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\PC120P2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\POST_JIS.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\RCG_JIS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\RCG_JIS.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SIM_JIS.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SIM_JIS.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\SING_JIS.LUT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PJCRCOMM\WORD_JIS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\A_RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\ARECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\AUX_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_F.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_M.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLAS_P.FAC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\CLUS_T.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\COS.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\COS.VAR c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\DBSINFO.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\FEAT_ARG.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\RECOG.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\RECOG_P.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\S3834.ID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCR\WORD_P.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\BIG5GB.TBX c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\DEF_GB.DIC c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FACTORP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FARG_GB.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FEATURE.SET c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FRCG_GB.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\FWD_GB.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GB.HID c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GBBIG5.TBX c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\GROUPP2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\INFO_GB.INI c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\PC120P2.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\POST_GB.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\RCG_GB.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\RCG_GB.INF c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SIM_GB.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SIM_GB.TBL c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\SING_GB.LUT c:\program files (x86)\newsoft\Presto! PageManager 6\DBase\PSCRCOMM\WORD_GB.DBS c:\program files (x86)\newsoft\Presto! PageManager 6\DBL40T.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\DibToMpeg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.hn1 c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.pn1 c:\program files (x86)\newsoft\Presto! PageManager 6\Digit.pn2 c:\program files (x86)\newsoft\Presto! PageManager 6\DirSelDll.dll c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P1.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P2.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P3.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\DLG_P4.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\DUTCH.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\DUTCH.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\ENGINE0.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\english.dic c:\program files (x86)\newsoft\Presto! PageManager 6\English.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\English.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\EpExifUtil.dll c:\program files (x86)\newsoft\Presto! PageManager 6\EPPIM2.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\EpTiffUtil.dll c:\program files (x86)\newsoft\Presto! PageManager 6\eston.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\eston.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\ExcelVBA.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ExeBud32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Export.dll c:\program files (x86)\newsoft\Presto! PageManager 6\EXPupk32.EXE c:\program files (x86)\newsoft\Presto! PageManager 6\Expvw.exe c:\program files (x86)\newsoft\Presto! PageManager 6\faxlnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Fengnad.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FID.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\fijian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\FILECOPY.AVI c:\program files (x86)\newsoft\Presto! PageManager 6\Filter.ini c:\program files (x86)\newsoft\Presto! PageManager 6\Fine0.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Fine32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\finedll.ini c:\program files (x86)\newsoft\Presto! PageManager 6\FineOCREngine.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FineSeg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FINNISH.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\FINNISH.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\Fioall.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Fioall.ini c:\program files (x86)\newsoft\Presto! PageManager 6\FIOALL32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOBMP32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOEXT32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOFPX32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\fiogif32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FIOJPG32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCD32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCT32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPCX32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FIOPNG32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Fiopof32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Fiopsd32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FIOTGA32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\FioThumb.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FIOTIF32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Fiowmf32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\flemmish.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\flemmish.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\Fobj410.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FOBJ420.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\foldrlnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\FR.dll c:\program files (x86)\newsoft\Presto! PageManager 6\French.dic c:\program files (x86)\newsoft\Presto! PageManager 6\French.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\French.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\Function.ini c:\program files (x86)\newsoft\Presto! PageManager 6\german.dic c:\program files (x86)\newsoft\Presto! PageManager 6\German.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\German.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\germanns.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\germanns.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\GetPhotoPath.dll c:\program files (x86)\newsoft\Presto! PageManager 6\GetPhotoPath.ini c:\program files (x86)\newsoft\Presto! PageManager 6\greek.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\greek.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\Grinf05.dll c:\program files (x86)\newsoft\Presto! PageManager 6\grinf07.dll c:\program files (x86)\newsoft\Presto! PageManager 6\GRINF11.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\hawaiian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\HookDll.dll c:\program files (x86)\newsoft\Presto! PageManager 6\hungar.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\iceland.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\iConvert16.dll c:\program files (x86)\newsoft\Presto! PageManager 6\IDoc.ini c:\program files (x86)\newsoft\Presto! PageManager 6\IFolder.ini c:\program files (x86)\newsoft\Presto! PageManager 6\IInbox.ini c:\program files (x86)\newsoft\Presto! PageManager 6\ijl15.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Image.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ImgToAviExe.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ImportOldDB.exe c:\program files (x86)\newsoft\Presto! PageManager 6\indones.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\InitCtrl.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\adinit.dat c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.exp c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.ilk c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ANNOTATE.lib c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\cmmap000.bin c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\debmp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dehex.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\demet.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dess.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\detree.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\dewp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibfpx2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibgp42.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibjpg2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibpcd2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibpsd2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxbm2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxpm2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\ibxwd2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd32.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd42.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd52.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd62.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd72.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcd82.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcdr2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcm52.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcm72.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imcmx2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imdsf2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imfmv2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imgdf2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imgem2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imigs2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\immet2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impif2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imps_2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impsi2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\impsz2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\imrnd2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\iphgw2.flt c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\isgdi32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LTSCSD13.TLB c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LTSCSN10.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LWPAPIN.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\LWPAPIPN.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccca.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccch.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccda.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccdu.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfa.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfi.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccfmt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\scclo.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccole.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccra.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccta.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccut.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\sccvw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsacad.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsacs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsami.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsbdr.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsbmp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vscgm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdbs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdez.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdif.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdrw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsdx.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsemf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsen4.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsens.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsenw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vseshr.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsexe2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfax.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfcd.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfcs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfft.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsflw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsfwk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgdsf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgif.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsgzip.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshgs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshtml.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vshwp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsich.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsich6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsimg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsiwp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsjw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsleg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vslwp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vslzh.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsm11.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmanu.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmcw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmif.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmm4.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmmfn.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmpp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmsg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmsw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwkd.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwks.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwp2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwpf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsmwrk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsow.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspbm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspcl.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspcx.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdfi.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspdx.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspfs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspgl.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspic.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspict.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspng.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspntg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp7.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspp97.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsppl.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vspsp6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqa.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqad.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqp6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsqp9.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsras.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrbs.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrft.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrfx.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsrtf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssam.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssc5.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssdw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsshw3.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssmd.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssms.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssmt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssnap.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssoc.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssoi.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vssow.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsspt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstaz.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstext.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstga.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstif6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vstxt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsvcrd.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsviso.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsvw3.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsw6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsw97.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswbmp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswg2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswk4.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswk6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswks.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswmf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswml.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsword.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswork.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswp5.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswp6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpg.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpg2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpl.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vswpw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsws.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsws2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsxl5.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vsxy.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Inso\vszip.dll c:\program files (x86)\newsoft\Presto! PageManager 6\IPM.ini c:\program files (x86)\newsoft\Presto! PageManager 6\ippocr32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\irish.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Ism.dll c:\program files (x86)\newsoft\Presto! PageManager 6\IsmDraw.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ITALIAN.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\ITALIAN.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\Italic.pat c:\program files (x86)\newsoft\Presto! PageManager 6\Italic.pts c:\program files (x86)\newsoft\Presto! PageManager 6\JPEGLIB.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\kabard.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\keyword.ri c:\program files (x86)\newsoft\Presto! PageManager 6\latin.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\latvian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\lcppn22.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Lcspell.dll c:\program files (x86)\newsoft\Presto! PageManager 6\lithuan.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\LiveUpdate.dll c:\program files (x86)\newsoft\Presto! PageManager 6\LiveUpdateTray.exe c:\program files (x86)\newsoft\Presto! PageManager 6\Lnseg32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\LowAlpha.hn1 c:\program files (x86)\newsoft\Presto! PageManager 6\LowALpha.pn1 c:\program files (x86)\newsoft\Presto! PageManager 6\LowAlpha.pn2 c:\program files (x86)\newsoft\Presto! PageManager 6\Lpm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAY.ini c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAYMSG.ini c:\program files (x86)\newsoft\Presto! PageManager 6\LUTRAYtest.INI c:\program files (x86)\newsoft\Presto! PageManager 6\LZEXPAND.DLX c:\program files (x86)\newsoft\Presto! PageManager 6\macedon.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\maori.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\mapilnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Matrix.pat c:\program files (x86)\newsoft\Presto! PageManager 6\Matrix.pts c:\program files (x86)\newsoft\Presto! PageManager 6\Memio.dll c:\program files (x86)\newsoft\Presto! PageManager 6\MFC42.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\mitscn32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Model0.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Model1.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Model2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Model3.dll c:\program files (x86)\newsoft\Presto! PageManager 6\moldav.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Mpg1 c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCP60.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\msvcrt.dll c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCRT20.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\MSVCRT40.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\MyUninst.exe c:\program files (x86)\newsoft\Presto! PageManager 6\NetDll.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NetGroup.exe c:\program files (x86)\newsoft\Presto! PageManager 6\nextpwd.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm0.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm1.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Ngrm3.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmbul.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmcsy.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMDAN.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmden.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMDUT.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMENG.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmeti.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMFIN.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMFRA.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMGER.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmgre.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMITA.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmnlb.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMNON.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMNOR.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmplk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmptb.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMPTG.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmrus.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMSPN.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NGRMSWE.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmtrk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ngrmukr.dll c:\program files (x86)\newsoft\Presto! PageManager 6\nnxprt32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Normal.pat c:\program files (x86)\newsoft\Presto! PageManager 6\Normal.pts c:\program files (x86)\newsoft\Presto! PageManager 6\NORWBOK.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\NORWBOK.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\NORWNYN.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\NORWNYN.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\Noteslnk.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\nsfip.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NSFPX.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NSMEM.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NsPdf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NsScan.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NSWia.dll c:\program files (x86)\newsoft\Presto! PageManager 6\NTSTHK16.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\NTSTHK32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Ocrutil.dll c:\program files (x86)\newsoft\Presto! PageManager 6\opccli32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\OSmScan.exe c:\program files (x86)\newsoft\Presto! PageManager 6\ossetic.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\pack.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\back.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\close_dw.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\close_fy.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\NSVIDEO.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\play_dw.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\play_fy.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_dw.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_fy.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\stop_up.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\VCARD.INI c:\program files (x86)\newsoft\Presto! PageManager 6\PACKEXE\VMPLAYER.exe c:\program files (x86)\newsoft\Presto! PageManager 6\PALETTE.MAP c:\program files (x86)\newsoft\Presto! PageManager 6\Paper.lst c:\program files (x86)\newsoft\Presto! PageManager 6\PART.PAT c:\program files (x86)\newsoft\Presto! PageManager 6\PART.PTS c:\program files (x86)\newsoft\Presto! PageManager 6\pccrsdk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PCDLIB32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\pdflib.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PDFWDLL.dll c:\program files (x86)\newsoft\Presto! PageManager 6\photonet.ini c:\program files (x86)\newsoft\Presto! PageManager 6\pm20.ini c:\program files (x86)\newsoft\Presto! PageManager 6\Pm60DB.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmapps.ini c:\program files (x86)\newsoft\Presto! PageManager 6\Pmappu.ini c:\program files (x86)\newsoft\Presto! PageManager 6\pmdata.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb.dll c:\program files (x86)\newsoft\Presto! PageManager 6\pmdb23.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb2x.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb4x.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmdb50J.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PmDibRes.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMExeBud.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMIEVW.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMINSO.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMMAIL.EXE c:\program files (x86)\newsoft\Presto! PageManager 6\PMMKView.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMNotes.exe c:\program files (x86)\newsoft\Presto! PageManager 6\pmNotes.str c:\program files (x86)\newsoft\Presto! PageManager 6\Pmocr.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMPoll32.exe c:\program files (x86)\newsoft\Presto! PageManager 6\pmres.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Pmsb.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMScan.dll c:\program files (x86)\newsoft\Presto! PageManager 6\pmscan32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\pmsetap.ini c:\program files (x86)\newsoft\Presto! PageManager 6\PMSetup.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PMToApp.dll c:\program files (x86)\newsoft\Presto! PageManager 6\pmtwain.dll c:\program files (x86)\newsoft\Presto! PageManager 6\pmview.ex_ c:\program files (x86)\newsoft\Presto! PageManager 6\PMVLink.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PNGcore.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\polish.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\polish.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\PORTUG.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\PORTUG.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\Post.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PPMPCX.DL_ c:\program files (x86)\newsoft\Presto! PageManager 6\PPMTIF.DL_ c:\program files (x86)\newsoft\Presto! PageManager 6\prestopm.cnt c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.dbk c:\program files (x86)\newsoft\Presto! PageManager 6\prestopm.exe c:\program files (x86)\newsoft\Presto! PageManager 6\Prestopm.hlp c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.ibk c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.idx c:\program files (x86)\newsoft\Presto! PageManager 6\PrestoPM.ndb c:\program files (x86)\newsoft\Presto! PageManager 6\Prestopm.pdf c:\program files (x86)\newsoft\Presto! PageManager 6\PrintFun.exe c:\program files (x86)\newsoft\Presto! PageManager 6\PrintFun.lst c:\program files (x86)\newsoft\Presto! PageManager 6\printlnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Psapi.dll c:\program files (x86)\newsoft\Presto! PageManager 6\PSaver.lst c:\program files (x86)\newsoft\Presto! PageManager 6\PSaver.scr c:\program files (x86)\newsoft\Presto! PageManager 6\PShow.exe c:\program files (x86)\newsoft\Presto! PageManager 6\PShow.lst c:\program files (x86)\newsoft\Presto! PageManager 6\PTLIB.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Qem.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Readme.txt c:\program files (x86)\newsoft\Presto! PageManager 6\ReadOCRData.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Recogn.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Recpage.dll c:\program files (x86)\newsoft\Presto! PageManager 6\regapp.exe c:\program files (x86)\newsoft\Presto! PageManager 6\Register.exe c:\program files (x86)\newsoft\Presto! PageManager 6\Register.ini c:\program files (x86)\newsoft\Presto! PageManager 6\RegSession.dll c:\program files (x86)\newsoft\Presto! PageManager 6\RemoveIcons.ico c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p1.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p1.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p2.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p2.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p3.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p3.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\resource\dlg_p4.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\Dlg_p4.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\bottom.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-dn.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-gray.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-hi.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-Thumb.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\HScroll-up.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsDn.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsHi.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\NsUp.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskDn.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskHi.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\TaskUp.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\tree-bg.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-dn.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-gray.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-hi.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-Thumb.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\resource\FOLDERSEL\VScroll-up.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\rhaetian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\roman.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\RPR371.JRT c:\program files (x86)\newsoft\Presto! PageManager 6\RTDSK40.EXE c:\program files (x86)\newsoft\Presto! PageManager 6\Russian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Russian.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\samoan.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\AutumnView.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\BCR 4.ppt c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\boat.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\cat.JPG c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\History.JPG c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Lake.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\License.pdf c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\OCR Pro 4.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\PageManager 6.ppt c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Play Ground.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Press.doc c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\readme.txt c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Score Card.xls c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Shop.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Splash.JPG c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\Tower.jpg c:\program files (x86)\newsoft\Presto! PageManager 6\Samples\VideoWorks 6.ppt c:\program files (x86)\newsoft\Presto! PageManager 6\SCAN0.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\scan1.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan13.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan15.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan2.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan20.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan23.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan3.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan5.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan6.dll c:\program files (x86)\newsoft\Presto! PageManager 6\scan7.dll c:\program files (x86)\newsoft\Presto! PageManager 6\SCANFIXN.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\scanman.drv c:\program files (x86)\newsoft\Presto! PageManager 6\SCANNERS.DAT c:\program files (x86)\newsoft\Presto! PageManager 6\scanport.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\card_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Doc_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Letter_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\magazine_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Other_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Photo.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\Scantype\Photo_c.BMP c:\program files (x86)\newsoft\Presto! PageManager 6\SCNTHK16.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ScrBase.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ScrSaverEraser.exe c:\program files (x86)\newsoft\Presto! PageManager 6\search.avi c:\program files (x86)\newsoft\Presto! PageManager 6\Segment.dll c:\program files (x86)\newsoft\Presto! PageManager 6\serbian.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\slovak.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\sloven.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Sm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\SmtLaunch6.exe c:\program files (x86)\newsoft\Presto! PageManager 6\sosalnk.dll c:\program files (x86)\newsoft\Presto! PageManager 6\SPANISH.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\SPANISH.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\stamp.___ c:\program files (x86)\newsoft\Presto! PageManager 6\Stath1.ftr c:\program files (x86)\newsoft\Presto! PageManager 6\Statm1.ftr c:\program files (x86)\newsoft\Presto! PageManager 6\Statm2.ftr c:\program files (x86)\newsoft\Presto! PageManager 6\swahili.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\SWEDISH.LCD c:\program files (x86)\newsoft\Presto! PageManager 6\SWEDISH.LMD c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB4 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB5 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1CB6 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH4 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH5 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\1TH6 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB4 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB5 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2CB6 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH4 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH5 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\2TH6 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ABSTHR_2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_0 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_1 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_2 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_3 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ALLOC_4 c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\DEWINDOW c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\encode.log c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\ENWINDOW c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\HUFFCODE c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\HUFFDEC c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\out.dat c:\program files (x86)\newsoft\Presto! PageManager 6\TABLES\PSY_DATA c:\program files (x86)\newsoft\Presto! PageManager 6\tagalog.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p1.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p2.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p3.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\Task_p4.bmp c:\program files (x86)\newsoft\Presto! PageManager 6\Tcm.dll c:\program files (x86)\newsoft\Presto! PageManager 6\ThumbnailDll.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Tiff.dll c:\program files (x86)\newsoft\Presto! PageManager 6\tm_bmp32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\tm_pcx32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TIF32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TMT16.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TWN16.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TWN32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TM_TXT32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\tu32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\tuhand32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\TuMach32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Tuover.dbs c:\program files (x86)\newsoft\Presto! PageManager 6\turkish.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\turkish.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\Typewrit.pat c:\program files (x86)\newsoft\Presto! PageManager 6\Typewrit.pts c:\program files (x86)\newsoft\Presto! PageManager 6\uao.dll c:\program files (x86)\newsoft\Presto! PageManager 6\UCICCITT.DL_ c:\program files (x86)\newsoft\Presto! PageManager 6\UCIG3432.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\UCIJPEG.DL_ c:\program files (x86)\newsoft\Presto! PageManager 6\UCIJPG32.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\UFioDll.dll c:\program files (x86)\newsoft\Presto! PageManager 6\UFSE.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\ukrain.lcd c:\program files (x86)\newsoft\Presto! PageManager 6\ukrain.lmd c:\program files (x86)\newsoft\Presto! PageManager 6\UMXADDIN.INI c:\program files (x86)\newsoft\Presto! PageManager 6\umxnts32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Underlin.pat c:\program files (x86)\newsoft\Presto! PageManager 6\UNPACK.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\unregapp.exe c:\program files (x86)\newsoft\Presto! PageManager 6\UpAlpha.hn1 c:\program files (x86)\newsoft\Presto! PageManager 6\UpALpha.pn1 c:\program files (x86)\newsoft\Presto! PageManager 6\UpAlpha.pn2 c:\program files (x86)\newsoft\Presto! PageManager 6\UXFSE.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\Vcd_NTSC c:\program files (x86)\newsoft\Presto! PageManager 6\Vcd_PAL c:\program files (x86)\newsoft\Presto! PageManager 6\VideoData.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Wait.exe c:\program files (x86)\newsoft\Presto! PageManager 6\WL40ENT.DLL c:\program files (x86)\newsoft\Presto! PageManager 6\work\stamp.___ c:\program files (x86)\newsoft\Presto! PageManager 6\WriteOcr2Pdf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\WriteOcrFileList2Pdf.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Wtim32.cfg c:\program files (x86)\newsoft\Presto! PageManager 6\wtim32.dll c:\program files (x86)\newsoft\Presto! PageManager 6\Ynd32.DLL c:\windows\IsUn0413.exe c:\windows\SysWow64\mfc100deu.dll . . (((((((((((((((((((( Bestanden Gemaakt van 2011-08-01 to 2011-09-01 )))))))))))))))))))))))))))))) . . 2011-09-01 13:58 . 2011-09-01 13:58 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-09-01 11:32 . 2011-09-01 11:32 -------- d-----w- c:\program files (x86)\Java 2011-08-31 20:36 . 2011-08-31 20:36 388096 ----a-r- c:\users\Ruth\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-08-31 20:26 . 2011-08-12 04:10 8862544 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1954F191-99B0-4CDB-B485-7805CF5BA241}\mpengine.dll 2011-08-31 19:35 . 2011-08-31 20:00 -------- d-----w- C:\Lop SD 2011-08-31 14:41 . 2011-08-31 20:36 -------- d-----w- c:\program files (x86)\Trend Micro 2011-08-31 10:24 . 2011-07-06 17:52 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys 2011-08-31 10:24 . 2011-08-31 10:24 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2011-08-30 12:13 . 2011-08-30 12:13 -------- d-----w- c:\program files\ATI 2011-08-30 11:28 . 2011-08-30 11:28 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys 2011-08-30 11:24 . 2011-08-30 11:54 -------- d-----w- c:\programdata\Lavasoft 2011-08-30 11:24 . 2011-08-30 11:24 -------- d-----w- c:\program files (x86)\Lavasoft 2011-08-29 17:20 . 2011-08-29 17:20 -------- d-----w- c:\program files\CCleaner 2011-08-29 16:48 . 2011-08-29 16:48 -------- d-----w- C:\ATI 2011-08-29 15:50 . 2011-08-29 15:50 -------- d-----w- c:\windows\system32\Macromed 2011-08-29 15:32 . 2011-08-29 15:32 -------- d-----w- C:\AMD 2011-08-29 14:46 . 2011-08-29 14:46 21200 ----a-w- c:\windows\system32\drivers\TVicHW64.sys 2011-08-29 14:02 . 2011-08-29 14:02 -------- d-----w- C:\SPLASH.SYS 2011-08-29 13:38 . 2011-08-29 13:38 -------- d-----w- c:\users\Ruth\AppData\Roaming\Malwarebytes 2011-08-29 13:38 . 2011-08-29 13:38 -------- d-----w- c:\programdata\Malwarebytes 2011-08-29 13:19 . 2011-08-30 12:44 -------- d-----w- C:\Update 2011-08-23 18:12 . 2011-07-09 05:26 2048 ----a-w- c:\windows\system32\tzres.dll 2011-08-23 18:12 . 2011-07-09 04:29 2048 ----a-w- c:\windows\SysWow64\tzres.dll 2011-08-19 21:13 . 2011-08-19 21:13 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help 2011-08-19 16:16 . 2011-08-19 16:16 -------- d-----w- c:\windows\system32\SPReview 2011-08-19 16:15 . 2011-08-19 16:15 -------- d-----w- c:\windows\system32\EventProviders 2011-08-11 20:10 . 2011-01-27 19:39 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7BE812D4-2ADF-4404-9217-CA29797390A0}\gapaengine.dll 2011-08-10 15:06 . 2011-06-23 05:43 5561216 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-08-10 15:06 . 2011-06-23 04:33 3967872 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-01 11:32 . 2010-09-13 13:56 544656 ----a-w- c:\windows\SysWow64\deployJava1.dll 2011-08-29 15:50 . 2011-05-13 11:01 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-08-19 16:25 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll 2011-08-19 16:25 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll 2011-08-12 04:10 . 2010-09-14 17:20 8862544 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2011-07-28 15:49 . 2011-07-28 15:49 60416 ----a-w- c:\windows\system32\OVDecode64.dll 2011-07-28 15:49 . 2011-07-28 15:49 53760 ----a-w- c:\windows\SysWow64\OVDecode.dll 2011-07-28 15:48 . 2011-07-28 15:48 51200 ----a-w- c:\windows\system32\OpenCL.dll 2011-07-28 15:48 . 2011-07-28 15:48 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll 2011-07-28 15:48 . 2011-07-28 15:48 16552960 ----a-w- c:\windows\system32\amdocl64.dll 2011-07-28 15:48 . 2011-07-28 15:48 13555712 ----a-w- c:\windows\SysWow64\amdocl.dll 2011-07-16 04:26 . 2011-08-10 15:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2011-07-13 04:53 . 2011-07-29 01:02 8578896 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll 2011-06-16 01:34 . 2011-06-16 01:34 79872 ----a-w- c:\windows\SysWow64\SlotMaximizerAg.dll 2011-06-16 01:34 . 2011-06-16 01:34 2971648 ----a-w- c:\windows\system32\SlotMaximizerBe.dll 2011-06-16 01:34 . 2011-06-16 01:34 2117632 ----a-w- c:\windows\SysWow64\SlotMaximizerBe.dll 2011-06-16 01:34 . 2011-06-16 01:34 105984 ----a-w- c:\windows\system32\SlotMaximizerAg.dll 2011-06-15 19:27 . 2011-06-15 19:27 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2011-06-15 19:27 . 2011-06-15 19:27 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2011-06-15 19:27 . 2011-06-15 19:27 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll 2011-06-15 19:27 . 2011-06-15 19:27 85504 ----a-w- c:\windows\system32\iesetup.dll 2011-06-15 19:27 . 2011-06-15 19:27 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2011-06-15 19:27 . 2011-06-15 19:27 76800 ----a-w- c:\windows\system32\tdc.ocx 2011-06-15 19:27 . 2011-06-15 19:27 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe 2011-06-15 19:27 . 2011-06-15 19:27 74752 ----a-w- c:\windows\SysWow64\iesetup.dll 2011-06-15 19:27 . 2011-06-15 19:27 63488 ----a-w- c:\windows\SysWow64\tdc.ocx 2011-06-15 19:27 . 2011-06-15 19:27 603648 ----a-w- c:\windows\system32\vbscript.dll 2011-06-15 19:27 . 2011-06-15 19:27 49664 ----a-w- c:\windows\system32\imgutil.dll 2011-06-15 19:27 . 2011-06-15 19:27 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2011-06-15 19:27 . 2011-06-15 19:27 48640 ----a-w- c:\windows\system32\mshtmler.dll 2011-06-15 19:27 . 2011-06-15 19:27 448512 ----a-w- c:\windows\system32\html.iec 2011-06-15 19:27 . 2011-06-15 19:27 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2011-06-15 19:27 . 2011-06-15 19:27 367104 ----a-w- c:\windows\SysWow64\html.iec 2011-06-15 19:27 . 2011-06-15 19:27 35840 ----a-w- c:\windows\SysWow64\imgutil.dll 2011-06-15 19:27 . 2011-06-15 19:27 30720 ----a-w- c:\windows\system32\licmgr10.dll 2011-06-15 19:27 . 2011-06-15 19:27 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll 2011-06-15 19:27 . 2011-06-15 19:27 222208 ----a-w- c:\windows\system32\msls31.dll 2011-06-15 19:27 . 2011-06-15 19:27 173056 ----a-w- c:\windows\system32\ieUnatt.exe 2011-06-15 19:27 . 2011-06-15 19:27 165888 ----a-w- c:\windows\system32\iexpress.exe 2011-06-15 19:27 . 2011-06-15 19:27 161792 ----a-w- c:\windows\SysWow64\msls31.dll 2011-06-15 19:27 . 2011-06-15 19:27 160256 ----a-w- c:\windows\system32\wextract.exe 2011-06-15 19:27 . 2011-06-15 1 Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 ... en hier nog de rest, want volgens mij staat deze helft van de log nog niet in mijn vorige mail. 2011-06-15 19:27 . 2011-06-15 19:27 152064 ----a-w- c:\windows\SysWow64\wextract.exe 2011-06-15 19:27 . 2011-06-15 19:27 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2011-06-15 19:27 . 2011-06-15 19:27 1492992 ----a-w- c:\windows\system32\inetcpl.cpl 2011-06-15 19:27 . 2011-06-15 19:27 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2011-06-15 19:27 . 2011-06-15 19:27 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2011-06-15 19:27 . 2011-06-15 19:27 135168 ----a-w- c:\windows\system32\IEAdvpack.dll 2011-06-15 19:27 . 2011-06-15 19:27 12288 ----a-w- c:\windows\system32\mshta.exe 2011-06-15 19:27 . 2011-06-15 19:27 11776 ----a-w- c:\windows\SysWow64\mshta.exe 2011-06-15 19:27 . 2011-06-15 19:27 114176 ----a-w- c:\windows\system32\admparse.dll 2011-06-15 19:27 . 2011-06-15 19:27 111616 ----a-w- c:\windows\system32\iesysprep.dll 2011-06-15 19:27 . 2011-06-15 19:27 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2011-06-15 19:27 . 2011-06-15 19:27 101888 ----a-w- c:\windows\SysWow64\admparse.dll 2011-06-11 03:07 . 2011-07-13 18:03 3137536 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-05-21 39408] "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-01-26 15026056] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-11-20 284696] "ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-08-26 320880] "PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2009-10-24 597792] "MarketingTools"="c:\program files (x86)\Sony\Marketing Tools\MarketingTools.exe" [2010-05-21 26624] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-9-4 1081632] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2009-12-01 20:03 98304 ----a-w- c:\windows\System32\VESWinlogon.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 133104] R2 Roxio Upnp Server 10;Roxio Upnp Server 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-08-30 362992] R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 133104] R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [x] R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-12-27 31124344] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x] R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;c:\program files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-08-30 313840] R3 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2010-09-10 108400] R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2010-10-12 423280] R3 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2010-09-10 67952] R3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-01-20 286936] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 TVICHW64;TVICHW64;c:\windows\system32\DRIVERS\TVICHW64.SYS [x] R3 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2011-01-20 887000] R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2011-05-19 549616] R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-10-25 387896] R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2011-02-18 99104] R3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [2011-04-20 1021840] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-11-20 13336] S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2009-10-24 360224] S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [x] S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [x] S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2011-01-29 259192] S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960] S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-14 2320920] S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2010-08-11 845312] S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x] S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x] S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x] S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x] S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x] S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x] S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x] S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [x] S3 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-11-30 571248] S3 VCService;VCService;c:\program files\Sony\VAIO Care\VCService.exe [2011-02-14 44736] S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [x] . . Inhoud van de 'Gedeelde Taken' map . 2011-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 03:50] . 2011-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-21 03:50] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-16 9636896] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.nl/ mLocal Page = c:\windows\SysWOW64\blank.htm IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm TCP: DhcpNameServer = 192.168.2.1 DPF: {1FEC8B6F-250A-4293-B12C-67A7EF0B758A} - hxxp://www.kerkomroep.nl/ocx/sIKNPlayer.cab . - - - - ORPHANS VERWIJDERD - - - - . SafeBoot-mcmscsvc SafeBoot-MCODS HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe AddRemove-Adobe Photoshop Elements 2.0 - c:\windows\ISUN0413.EXE AddRemove-Intel® Integrated Performance Primitives 1.1 - c:\windows\system32\UninstIPP.isu . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SampleCollector] "ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=c:\programdata\Sony Corporation\VAIO Care\inteldata\"" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11a_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11a_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11a.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-09-01 16:20:07 ComboFix-quarantined-files.txt 2011-09-01 14:20 . Pre-Run: 381.796.913.152 bytes beschikbaar Post-Run: 387.958.018.048 bytes beschikbaar . - - End Of File - - 75DCA5C1C1B7F9B897973FB8F6874CD2 Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Download nu TDSSKiller opnieuw start het tool op de juiste manier op. Post wederom d inhoud van log. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 2011/09/01 17:21:18.0467 0900 TDSS rootkit removing tool 2.5.17.0 Aug 22 2011 15:46:57 2011/09/01 17:21:18.0560 0900 ================================================================================ 2011/09/01 17:21:18.0560 0900 SystemInfo: 2011/09/01 17:21:18.0560 0900 2011/09/01 17:21:18.0560 0900 OS Version: 6.1.7601 ServicePack: 1.0 2011/09/01 17:21:18.0560 0900 Product type: Workstation 2011/09/01 17:21:18.0560 0900 ComputerName: RUTH-VAIO 2011/09/01 17:21:18.0560 0900 UserName: Ruth 2011/09/01 17:21:18.0560 0900 Windows directory: C:\Windows 2011/09/01 17:21:18.0560 0900 System windows directory: C:\Windows 2011/09/01 17:21:18.0560 0900 Running under WOW64 2011/09/01 17:21:18.0560 0900 Processor architecture: Intel x64 2011/09/01 17:21:18.0560 0900 Number of processors: 4 2011/09/01 17:21:18.0560 0900 Page size: 0x1000 2011/09/01 17:21:18.0560 0900 Boot type: Normal boot 2011/09/01 17:21:18.0560 0900 ================================================================================ 2011/09/01 17:21:19.0169 0900 Initialize success 2011/09/01 17:21:24.0707 5240 ================================================================================ 2011/09/01 17:21:24.0707 5240 Scan started 2011/09/01 17:21:24.0707 5240 Mode: Manual; 2011/09/01 17:21:24.0707 5240 ================================================================================ 2011/09/01 17:21:24.0956 5240 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 2011/09/01 17:21:25.0066 5240 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 2011/09/01 17:21:25.0190 5240 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 2011/09/01 17:21:25.0300 5240 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 2011/09/01 17:21:25.0409 5240 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 2011/09/01 17:21:25.0502 5240 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 2011/09/01 17:21:25.0658 5240 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys 2011/09/01 17:21:25.0768 5240 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 2011/09/01 17:21:25.0892 5240 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 2011/09/01 17:21:26.0002 5240 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 2011/09/01 17:21:26.0111 5240 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 2011/09/01 17:21:26.0360 5240 amdkmdag (ea244a8b88de8b5986bf3b7903b063af) C:\Windows\system32\DRIVERS\atikmdag.sys 2011/09/01 17:21:26.0735 5240 amdkmdap (dca6e341a4a7c31ea8a14c6166c9b249) C:\Windows\system32\DRIVERS\atikmpag.sys 2011/09/01 17:21:26.0828 5240 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 2011/09/01 17:21:26.0875 5240 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 2011/09/01 17:21:26.0969 5240 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 2011/09/01 17:21:27.0031 5240 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 2011/09/01 17:21:27.0172 5240 ApfiltrService (1661f9c9e4b0049fa0a5e30264375a87) C:\Windows\system32\drivers\Apfiltr.sys 2011/09/01 17:21:27.0281 5240 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 2011/09/01 17:21:27.0421 5240 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 2011/09/01 17:21:27.0515 5240 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 2011/09/01 17:21:27.0593 5240 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys 2011/09/01 17:21:27.0686 5240 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/09/01 17:21:27.0780 5240 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 2011/09/01 17:21:27.0920 5240 athr (0acc06fcf46f64ed4f11e57ee461c1f4) C:\Windows\system32\DRIVERS\athrx.sys 2011/09/01 17:21:28.0217 5240 atikmdag (ea244a8b88de8b5986bf3b7903b063af) C:\Windows\system32\DRIVERS\atikmdag.sys 2011/09/01 17:21:28.0404 5240 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 2011/09/01 17:21:28.0544 5240 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 2011/09/01 17:21:28.0622 5240 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 2011/09/01 17:21:28.0763 5240 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys 2011/09/01 17:21:28.0825 5240 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 2011/09/01 17:21:28.0919 5240 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 2011/09/01 17:21:28.0950 5240 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 2011/09/01 17:21:29.0059 5240 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 2011/09/01 17:21:29.0106 5240 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/09/01 17:21:29.0200 5240 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/09/01 17:21:29.0246 5240 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/09/01 17:21:29.0356 5240 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys 2011/09/01 17:21:29.0402 5240 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys 2011/09/01 17:21:29.0512 5240 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 2011/09/01 17:21:29.0621 5240 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys 2011/09/01 17:21:29.0730 5240 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys 2011/09/01 17:21:29.0808 5240 btusbflt (6e04458e98daf28826482e41a7a62df5) C:\Windows\system32\drivers\btusbflt.sys 2011/09/01 17:21:29.0933 5240 btwaudio (4bdbdb86abba924e029fb2683be7c505) C:\Windows\system32\drivers\btwaudio.sys 2011/09/01 17:21:30.0026 5240 btwavdt (5c849bd7c78791c5cee9f4651d7fe38d) C:\Windows\system32\drivers\btwavdt.sys 2011/09/01 17:21:30.0182 5240 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys 2011/09/01 17:21:30.0245 5240 btwrchid (3e1991afa851a36dc978b0a1b0535c8b) C:\Windows\system32\DRIVERS\btwrchid.sys 2011/09/01 17:21:30.0463 5240 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 2011/09/01 17:21:30.0572 5240 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys 2011/09/01 17:21:30.0713 5240 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 2011/09/01 17:21:30.0806 5240 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 2011/09/01 17:21:30.0947 5240 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 2011/09/01 17:21:30.0994 5240 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 2011/09/01 17:21:31.0103 5240 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys 2011/09/01 17:21:31.0150 5240 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 2011/09/01 17:21:31.0274 5240 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys 2011/09/01 17:21:31.0399 5240 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 2011/09/01 17:21:31.0540 5240 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 2011/09/01 17:21:31.0586 5240 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 2011/09/01 17:21:31.0711 5240 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 2011/09/01 17:21:31.0852 5240 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 2011/09/01 17:21:31.0914 5240 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 2011/09/01 17:21:32.0070 5240 e.dentifier2 (a0d5450b3d4689dce4cbbc8268141c37) C:\Windows\system32\DRIVERS\aabed2.sys 2011/09/01 17:21:32.0179 5240 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 2011/09/01 17:21:32.0398 5240 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 2011/09/01 17:21:32.0460 5240 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 2011/09/01 17:21:32.0600 5240 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 2011/09/01 17:21:32.0632 5240 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 2011/09/01 17:21:32.0725 5240 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 2011/09/01 17:21:32.0834 5240 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 2011/09/01 17:21:32.0866 5240 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 2011/09/01 17:21:32.0897 5240 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 2011/09/01 17:21:32.0944 5240 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 2011/09/01 17:21:33.0037 5240 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 2011/09/01 17:21:33.0084 5240 fssfltr (53dab1791917a72738539ad25c4eed7f) C:\Windows\system32\DRIVERS\fssfltr.sys 2011/09/01 17:21:33.0178 5240 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 2011/09/01 17:21:33.0302 5240 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 2011/09/01 17:21:33.0349 5240 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 2011/09/01 17:21:33.0474 5240 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 2011/09/01 17:21:33.0583 5240 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 2011/09/01 17:21:33.0692 5240 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys 2011/09/01 17:21:33.0802 5240 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys 2011/09/01 17:21:33.0864 5240 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 2011/09/01 17:21:33.0926 5240 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 2011/09/01 17:21:34.0036 5240 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 2011/09/01 17:21:34.0176 5240 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys 2011/09/01 17:21:34.0254 5240 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 2011/09/01 17:21:34.0379 5240 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 2011/09/01 17:21:34.0441 5240 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 2011/09/01 17:21:34.0535 5240 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys 2011/09/01 17:21:34.0613 5240 iaStor (073a606333b6f7bbf20aa856df7f0997) C:\Windows\system32\drivers\iaStor.sys 2011/09/01 17:21:34.0675 5240 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 2011/09/01 17:21:34.0956 5240 igfx (31d1aff484d8a0906cf8d44251ec390f) C:\Windows\system32\DRIVERS\igdkmd64.sys 2011/09/01 17:21:35.0346 5240 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 2011/09/01 17:21:35.0471 5240 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\drivers\Impcd.sys 2011/09/01 17:21:35.0642 5240 IntcAzAudAddService (0f144e5f46cb9043004b5e84aa4bca6a) C:\Windows\system32\drivers\RTKVHD64.sys 2011/09/01 17:21:35.0798 5240 IntcDAud (408b401cd7cdb075c7470b0ff7ba8d0b) C:\Windows\system32\DRIVERS\IntcDAud.sys 2011/09/01 17:21:35.0845 5240 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 2011/09/01 17:21:35.0892 5240 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys 2011/09/01 17:21:36.0017 5240 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/09/01 17:21:36.0064 5240 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 2011/09/01 17:21:36.0188 5240 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 2011/09/01 17:21:36.0235 5240 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 2011/09/01 17:21:36.0329 5240 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 2011/09/01 17:21:36.0376 5240 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 2011/09/01 17:21:36.0438 5240 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys 2011/09/01 17:21:36.0532 5240 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys 2011/09/01 17:21:36.0594 5240 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys 2011/09/01 17:21:36.0688 5240 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys 2011/09/01 17:21:36.0734 5240 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 2011/09/01 17:21:36.0875 5240 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 2011/09/01 17:21:37.0015 5240 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 2011/09/01 17:21:37.0046 5240 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 2011/09/01 17:21:37.0093 5240 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 2011/09/01 17:21:37.0202 5240 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 2011/09/01 17:21:37.0249 5240 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 2011/09/01 17:21:37.0296 5240 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 2011/09/01 17:21:37.0343 5240 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 2011/09/01 17:21:37.0468 5240 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 2011/09/01 17:21:37.0499 5240 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 2011/09/01 17:21:37.0624 5240 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys 2011/09/01 17:21:37.0733 5240 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 2011/09/01 17:21:37.0811 5240 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 2011/09/01 17:21:37.0889 5240 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys 2011/09/01 17:21:37.0936 5240 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 2011/09/01 17:21:38.0060 5240 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys 2011/09/01 17:21:38.0107 5240 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 2011/09/01 17:21:38.0185 5240 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 2011/09/01 17:21:38.0232 5240 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/09/01 17:21:38.0341 5240 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/09/01 17:21:38.0404 5240 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/09/01 17:21:38.0450 5240 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 2011/09/01 17:21:38.0544 5240 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 2011/09/01 17:21:38.0606 5240 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 2011/09/01 17:21:38.0700 5240 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 2011/09/01 17:21:38.0731 5240 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 2011/09/01 17:21:38.0856 5240 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 2011/09/01 17:21:38.0965 5240 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/09/01 17:21:38.0981 5240 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 2011/09/01 17:21:39.0059 5240 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 2011/09/01 17:21:39.0106 5240 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys 2011/09/01 17:21:39.0199 5240 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 2011/09/01 17:21:39.0246 5240 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 2011/09/01 17:21:39.0277 5240 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 2011/09/01 17:21:39.0371 5240 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 2011/09/01 17:21:39.0464 5240 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 2011/09/01 17:21:39.0574 5240 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/09/01 17:21:39.0636 5240 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/09/01 17:21:39.0683 5240 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/09/01 17:21:39.0745 5240 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/09/01 17:21:39.0823 5240 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 2011/09/01 17:21:39.0917 5240 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 2011/09/01 17:21:39.0979 5240 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 2011/09/01 17:21:40.0104 5240 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 2011/09/01 17:21:40.0213 5240 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys 2011/09/01 17:21:40.0338 5240 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 2011/09/01 17:21:40.0369 5240 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 2011/09/01 17:21:40.0447 5240 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 2011/09/01 17:21:40.0588 5240 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 2011/09/01 17:21:40.0650 5240 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 2011/09/01 17:21:40.0759 5240 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 2011/09/01 17:21:40.0868 5240 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 2011/09/01 17:21:40.0915 5240 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 2011/09/01 17:21:41.0040 5240 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 2011/09/01 17:21:41.0071 5240 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 2011/09/01 17:21:41.0118 5240 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 2011/09/01 17:21:41.0134 5240 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 2011/09/01 17:21:41.0180 5240 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 2011/09/01 17:21:41.0274 5240 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 2011/09/01 17:21:41.0321 5240 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 2011/09/01 17:21:41.0492 5240 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 2011/09/01 17:21:41.0539 5240 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 2011/09/01 17:21:41.0617 5240 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 2011/09/01 17:21:41.0711 5240 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys 2011/09/01 17:21:41.0789 5240 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 2011/09/01 17:21:41.0914 5240 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 2011/09/01 17:21:42.0007 5240 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 2011/09/01 17:21:42.0038 5240 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 2011/09/01 17:21:42.0148 5240 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/09/01 17:21:42.0210 5240 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/09/01 17:21:42.0257 5240 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/09/01 17:21:42.0366 5240 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 2011/09/01 17:21:42.0413 5240 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 2011/09/01 17:21:42.0444 5240 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys 2011/09/01 17:21:42.0491 5240 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/09/01 17:21:42.0584 5240 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 2011/09/01 17:21:42.0616 5240 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 2011/09/01 17:21:42.0678 5240 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys 2011/09/01 17:21:42.0740 5240 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 2011/09/01 17:21:42.0865 5240 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 2011/09/01 17:21:42.0896 5240 rimspci (5ca4abd888b602551b59baa26941c167) C:\Windows\system32\drivers\rimssne64.sys 2011/09/01 17:21:42.0959 5240 risdsnpe (bb6e138aeb351728959da5e2731d8140) C:\Windows\system32\drivers\risdsne64.sys 2011/09/01 17:21:43.0099 5240 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 2011/09/01 17:21:43.0162 5240 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys 2011/09/01 17:21:43.0286 5240 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 2011/09/01 17:21:43.0333 5240 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 2011/09/01 17:21:43.0458 5240 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys 2011/09/01 17:21:43.0567 5240 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 2011/09/01 17:21:43.0630 5240 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys 2011/09/01 17:21:43.0739 5240 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys 2011/09/01 17:21:43.0801 5240 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 2011/09/01 17:21:43.0910 5240 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\drivers\SFEP.sys 2011/09/01 17:21:44.0004 5240 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 2011/09/01 17:21:44.0035 5240 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 2011/09/01 17:21:44.0113 5240 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 2011/09/01 17:21:44.0160 5240 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 2011/09/01 17:21:44.0285 5240 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 2011/09/01 17:21:44.0332 5240 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 2011/09/01 17:21:44.0441 5240 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 2011/09/01 17:21:44.0612 5240 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 2011/09/01 17:21:44.0675 5240 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 2011/09/01 17:21:44.0706 5240 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 2011/09/01 17:21:44.0737 5240 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 2011/09/01 17:21:44.0784 5240 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 2011/09/01 17:21:44.0878 5240 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys 2011/09/01 17:21:45.0002 5240 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\drivers\tcpip.sys 2011/09/01 17:21:45.0190 5240 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\DRIVERS\tcpip.sys 2011/09/01 17:21:45.0252 5240 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 2011/09/01 17:21:45.0299 5240 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 2011/09/01 17:21:45.0330 5240 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 2011/09/01 17:21:45.0361 5240 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 2011/09/01 17:21:45.0408 5240 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys 2011/09/01 17:21:45.0502 5240 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/09/01 17:21:45.0564 5240 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 2011/09/01 17:21:45.0689 5240 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 2011/09/01 17:21:45.0845 5240 TVICHW64 (1a006963644c7fde5be60036f3a43e68) C:\Windows\system32\DRIVERS\TVICHW64.SYS 2011/09/01 17:21:45.0938 5240 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 2011/09/01 17:21:46.0001 5240 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 2011/09/01 17:21:46.0141 5240 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 2011/09/01 17:21:46.0250 5240 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys 2011/09/01 17:21:46.0297 5240 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 2011/09/01 17:21:46.0360 5240 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 2011/09/01 17:21:46.0406 5240 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 2011/09/01 17:21:46.0438 5240 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 2011/09/01 17:21:46.0547 5240 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 2011/09/01 17:21:46.0594 5240 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 2011/09/01 17:21:46.0640 5240 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 2011/09/01 17:21:46.0687 5240 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 2011/09/01 17:21:46.0750 5240 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS 2011/09/01 17:21:46.0796 5240 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 2011/09/01 17:21:46.0906 5240 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys 2011/09/01 17:21:47.0046 5240 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 2011/09/01 17:21:47.0093 5240 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/09/01 17:21:47.0171 5240 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 2011/09/01 17:21:47.0218 5240 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 2011/09/01 17:21:47.0264 5240 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 2011/09/01 17:21:47.0311 5240 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 2011/09/01 17:21:47.0358 5240 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 2011/09/01 17:21:47.0420 5240 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 2011/09/01 17:21:47.0467 5240 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 2011/09/01 17:21:47.0608 5240 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys 2011/09/01 17:21:47.0623 5240 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/09/01 17:21:47.0686 5240 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 2011/09/01 17:21:47.0795 5240 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 2011/09/01 17:21:47.0810 5240 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 2011/09/01 17:21:47.0951 5240 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 2011/09/01 17:21:48.0029 5240 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 2011/09/01 17:21:48.0154 5240 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/09/01 17:21:48.0200 5240 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 2011/09/01 17:21:48.0341 5240 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 2011/09/01 17:21:48.0450 5240 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys 2011/09/01 17:21:48.0544 5240 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 2011/09/01 17:21:48.0606 5240 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 2011/09/01 17:21:48.0637 5240 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/09/01 17:21:48.0700 5240 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys 2011/09/01 17:21:48.0762 5240 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 2011/09/01 17:21:48.0778 5240 Boot (0x1200) (11df49247e523bd1a6467a837ba1c29c) \Device\Harddisk0\DR0\Partition0 2011/09/01 17:21:48.0793 5240 Boot (0x1200) (5c779cb2c8735712f1aaa3f0527e399a) \Device\Harddisk0\DR0\Partition1 2011/09/01 17:21:48.0793 5240 ================================================================================ 2011/09/01 17:21:48.0793 5240 Scan finished 2011/09/01 17:21:48.0793 5240 ================================================================================ 2011/09/01 17:21:48.0809 2440 Detected object count: 0 2011/09/01 17:21:48.0809 2440 Actual detected object count: 0 Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Vraag: heb jij al recovery-DVD's gemaakt? Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Volgens mij wel, maar voor de zekerheid ga ik hier even zoeken of ik ze kan vinden. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Mooi, want laat weten of je ze gevonden hebt. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Ja, de drie hersteldisks heb ik. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Oke dan gaan we toch de MBR repareren. Start aswMBR opnieuw op en post eerst het nieuwe log daarvan. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 ok. Hieronder de log (die van gisteren zit er volgens mij ook nog bij). aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-08-31 17:58:50 ----------------------------- 17:58:50.279 OS Version: Windows x64 6.1.7601 Service Pack 1 17:58:50.279 Number of processors: 4 586 0x2502 17:58:50.279 ComputerName: RUTH-VAIO UserName: Ruth 17:58:51.579 Initialize success 18:01:02.754 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 18:01:02.764 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3 18:01:02.764 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062 18:01:02.764 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:01:02.764 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063 18:01:02.774 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:01:02.774 Disk 0 MBR read successfully 18:01:02.774 Disk 0 MBR scan 18:01:02.784 Disk 0 TDL4@MBR code has been found 18:01:02.784 Disk 0 Windows 7 default MBR code found via API 18:01:02.784 Disk 0 MBR hidden 18:01:02.794 Disk 0 MBR [TDL4] **ROOTKIT** 18:01:02.794 Disk 0 trace - called modules: 18:01:02.804 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063af254]<< 18:01:02.804 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006397060] 18:01:02.814 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa800433c6e0] 18:01:02.814 5 ACPI.sys[fffff88000f397a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004341050] 18:01:02.824 \Driver\iaStor[0xfffffa8004319060] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063af254 18:01:02.824 Scan finished successfully 18:01:57.891 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat" 18:01:57.911 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt" aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-09-01 18:33:19 ----------------------------- 18:33:19.976 OS Version: Windows x64 6.1.7601 Service Pack 1 18:33:19.977 Number of processors: 4 586 0x2502 18:33:19.978 ComputerName: RUTH-VAIO UserName: Ruth 18:33:23.136 Initialize success 18:33:58.721 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 18:33:58.724 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3 18:33:58.727 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000064 18:33:58.729 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:33:58.731 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000065 18:33:58.733 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:33:58.739 Disk 0 MBR read successfully 18:33:58.743 Disk 0 MBR scan 18:33:58.746 Disk 0 TDL4@MBR code has been found 18:33:58.750 Disk 0 Windows 7 default MBR code found via API 18:33:58.754 Disk 0 MBR hidden 18:33:58.758 Disk 0 MBR [TDL4] **ROOTKIT** 18:33:58.762 Disk 0 trace - called modules: 18:33:58.766 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cf254]<< 18:33:58.771 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b7060] 18:33:58.776 3 CLASSPNP.SYS[fffff88001bcb43f] -> nt!IofCallDriver -> [0xfffffa8004344430] 18:33:58.780 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004347050] 18:33:58.784 \Driver\iaStor[0xfffffa800356b7d0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cf254 18:33:58.789 Scan finished successfully 18:35:01.428 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat" 18:35:01.458 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt" Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Oké, start aswMBR opnieuw op en klik vervolgens op FIX MBR. Daarna je PC je absoluut opnieuw opstarten! Is Windows weer opgestart start dan wederom aswMBR opnieuw op voor een nieuwe scan met log! Post dan wederom de inhoud van het log. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Als hij als laatste regel geeft: Disk 0 windows 601 MBR fixed successfully. Is hij dan al klaar en kan ik afsluiten en opnieuw opstarten, of moet hij eerst nog meer dingen gaan doen voordat ik opnieuw kan opstarten? Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Het programmaatje was zo snel klaar dat ik het vorige berichtje heb gepost. Maar hij deed daarna niks meer, dus ik ben er maar vanuit gegaan dat ik de computer opnieuw kon opstarten. Hier is de log. aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-08-31 17:58:50 ----------------------------- 17:58:50.279 OS Version: Windows x64 6.1.7601 Service Pack 1 17:58:50.279 Number of processors: 4 586 0x2502 17:58:50.279 ComputerName: RUTH-VAIO UserName: Ruth 17:58:51.579 Initialize success 18:01:02.754 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 18:01:02.764 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3 18:01:02.764 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062 18:01:02.764 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:01:02.764 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063 18:01:02.774 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:01:02.774 Disk 0 MBR read successfully 18:01:02.774 Disk 0 MBR scan 18:01:02.784 Disk 0 TDL4@MBR code has been found 18:01:02.784 Disk 0 Windows 7 default MBR code found via API 18:01:02.784 Disk 0 MBR hidden 18:01:02.794 Disk 0 MBR [TDL4] **ROOTKIT** 18:01:02.794 Disk 0 trace - called modules: 18:01:02.804 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063af254]<< 18:01:02.804 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006397060] 18:01:02.814 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> [0xfffffa800433c6e0] 18:01:02.814 5 ACPI.sys[fffff88000f397a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004341050] 18:01:02.824 \Driver\iaStor[0xfffffa8004319060] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063af254 18:01:02.824 Scan finished successfully 18:01:57.891 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat" 18:01:57.911 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt" aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-09-01 18:33:19 ----------------------------- 18:33:19.976 OS Version: Windows x64 6.1.7601 Service Pack 1 18:33:19.977 Number of processors: 4 586 0x2502 18:33:19.978 ComputerName: RUTH-VAIO UserName: Ruth 18:33:23.136 Initialize success 18:33:58.721 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 18:33:58.724 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3 18:33:58.727 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000064 18:33:58.729 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:33:58.731 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000065 18:33:58.733 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0 18:33:58.739 Disk 0 MBR read successfully 18:33:58.743 Disk 0 MBR scan 18:33:58.746 Disk 0 TDL4@MBR code has been found 18:33:58.750 Disk 0 Windows 7 default MBR code found via API 18:33:58.754 Disk 0 MBR hidden 18:33:58.758 Disk 0 MBR [TDL4] **ROOTKIT** 18:33:58.762 Disk 0 trace - called modules: 18:33:58.766 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cf254]<< 18:33:58.771 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b7060] 18:33:58.776 3 CLASSPNP.SYS[fffff88001bcb43f] -> nt!IofCallDriver -> [0xfffffa8004344430] 18:33:58.780 5 ACPI.sys[fffff88000f3a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004347050] 18:33:58.784 \Driver\iaStor[0xfffffa800356b7d0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cf254 18:33:58.789 Scan finished successfully 18:35:01.428 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat" 18:35:01.458 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt" aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software Run date: 2011-09-01 19:07:34 ----------------------------- 19:07:34.550 OS Version: Windows x64 6.1.7601 Service Pack 1 19:07:34.550 Number of processors: 4 586 0x2502 19:07:34.550 ComputerName: RUTH-VAIO UserName: Ruth 19:07:35.908 Initialize success 19:07:42.560 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 19:07:42.560 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3 19:07:42.565 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000062 19:07:42.567 Disk 1 Vendor: RICOH 02 Size: 476940MB BusType: 0 19:07:42.570 Disk 2 \Device\Harddisk2\DR2 -> \Device\00000063 19:07:42.572 Disk 2 Vendor: RICOH 02 Size: 476940MB BusType: 0 19:07:42.600 Disk 0 MBR read successfully 19:07:42.605 Disk 0 MBR scan 19:07:42.607 Disk 0 TDL4@MBR code has been found 19:07:42.610 Disk 0 Windows 7 default MBR code found via API 19:07:42.612 Disk 0 MBR hidden 19:07:42.615 Disk 0 MBR [TDL4] **ROOTKIT** 19:07:42.620 Disk 0 trace - called modules: 19:07:42.625 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80063cd254]<< 19:07:42.960 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063b5060] 19:07:42.962 3 CLASSPNP.SYS[fffff88001b7243f] -> nt!IofCallDriver -> [0xfffffa8004340c30] 19:07:42.967 5 ACPI.sys[fffff88000fb07a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004343050] 19:07:42.977 \Driver\iaStor[0xfffffa8004323cb0] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> 0xfffffa80063cd254 19:07:42.982 Scan finished successfully 19:07:57.177 Disk 0 MBR has been saved successfully to "C:\Users\Ruth\Desktop\MBR.dat" 19:07:57.227 The log file has been saved successfully to "C:\Users\Ruth\Desktop\aswMBR.txt" Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 19:07:42.615 Disk 0 MBR [TDL4] **ROOTKIT** Dus ik weet niet wat je nu gedaan hebt. Je moet wel op de meldingen in het schermpje letten. Op het moment dat de melding komt dat je zondermeer nu de PC opnieuw moet opstarten, doe je dat. Ik ga ervan uit dat de knop FIX MBR aktief was? Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Hij heeft verder geen meldingen gegeven in het schermpje. hij gaf alleen als laatste regel: Disk 0 windows 601 MBR fixed successfully. Daarna heb ik Exit gedaan en opnieuw opgestart. Quote Link naar reactie
0 anoniem Geplaatst: 1 september 2011 Auteur Delen Geplaatst: 1 september 2011 Oké - we gaan iets anders proberen. [b:58b8abe539]Welk programma[/b:58b8abe539]: MBRCheck.exe [b:58b8abe539]Waarvoor/waarom[/b:58b8abe539]: speciale scan op mbr-rootkits [b:58b8abe539]Moeilijkheidsgraad[/b:58b8abe539]: geen. [b:58b8abe539]Download [url=http://ad13.geekstogo.com/MBRCheck.exe]MBRCheck.exe[/url][/b:58b8abe539] [b:58b8abe539]MBRCheck.exe opstarten[/b:58b8abe539]: Windows 2000 en Windows XP: start "MBRCheck.exe" middels dubbelklik op "MBRCheck.exe". Windows Vista en Windows 7: start "MBRCheck.exe" middels rechtsklik op "MBRCheck.exe" en dan kiezen voor "Als Administrator uitvoeren". [img:58b8abe539]http://i677.photobucket.com/albums/vv132/RPMcMurphy_album_photos/mbrcheck.png[/img:58b8abe539] [list:58b8abe539][*:58b8abe539]een zwart scherm toont zich met enkele data erin. [*:58b8abe539]Indien je (zoals hierboven in de afbeelding) een melding krijgt, druk dan op de N-toets en druk op Enter. [*:58b8abe539]Druk nogmaals op Enter. [*:58b8abe539]Op je bureaublad zal een logbestand met de naam "MBRCheck_mm.dd.yy_hh.mm.ss" verschijnen. [*:58b8abe539]Kopieer nu de inhoud van dat log in je volgende post.[/list:u:58b8abe539] Quote Link naar reactie
Vraag
anoniem
Link naar reactie
Beste reacties voor deze vraag
102
Populaire dagen
1 sep
32
31 aug
24
2 sep
15
3 sep
10
Beste reacties voor deze vraag
anoniem 102 berichten
Populaire dagen
1 sep 2011
32 berichten
31 aug 2011
24 berichten
2 sep 2011
15 berichten
3 sep 2011
10 berichten
101 antwoorden op deze vraag
Aanbevolen berichten
Om een reactie te plaatsen, moet je eerst inloggen