Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

log combofix en TDSSkiller

Abraham54
45 antwoorden
  • Hallo,


    Ik ben nieuw op dit forum en heb weinig verstand van computers, maar ik hoop dat iemand mij zou kunnen helpen. Ik heb namelijk last van het ZeroAccess virus. Ik heb vervolgens TDSSkiller en Combofix gebruikt, maar ik begrijp dat dat niet slim is.

    Mijn Firewall deed het eerst niet, maar nu gelukkig weer wel. Ik weet alleen niet of het virus nu volledig van mijn computer is. Ik zal in ieder geval hier de log plaatsen in de hoop dat iemand begrijpt of alles weer goed is met de computer. Dank voor de hulp alvast en ik hoop op een reactie.

    Met vriendelijke groet,



    ComboFix 12-08-20.02 - Jesper 20-08-2012 21:15:49.1.2 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4063.1930 [GMT 2:00]
    Gestart vanuit: c:\users\Jesper\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1D316TK0\ComboFix.exe
    AV: AVG Anti-Virus Free *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    SP: AVG Anti-Virus Free *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\programdata\Windows
    c:\programdata\windows\ccdxmmde.dat
    c:\programdata\Windows\drss.dat
    c:\programdata\Windows\xessmsxe.dat
    c:\users\Jesper\AppData\Roaming\.#
    c:\users\Jesper\AppData\Roaming\dvuin.dll
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-07-20 to 2012-08-20 ))))))))))))))))))))))))))))))
    .
    .
    2012-08-20 19:10 . 2012-08-20 19:10 ——– d—–w- C:\Tweaking.com_Windows_Repair_Logs
    2012-08-20 17:26 . 2012-08-20 17:26 770384 —-a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
    2012-08-20 17:26 . 2012-08-20 17:26 421200 —-a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
    2012-08-20 16:43 . 2012-08-20 16:43 477168 —-a-w- c:\windows\SysWow64
    pdeployJava1.dll
    2012-08-19 22:03 . 2012-08-19 22:03 27256 —-a-w- c:\windows\system32\drivers\FixZeroAccess.sys
    2012-08-19 21:53 . 2012-08-19 21:53 328704 —-a-w- c:\windows\system32\services.exe.BA01FB2368239359
    2012-08-19 21:12 . 2012-08-19 21:12 ——– d—–w- C:\TDSSKiller_Quarantine
    2012-08-19 21:00 . 2012-08-19 21:00 ——– d-sh–w- c:\windows\SysWow64\%APPDATA%
    2012-08-17 22:12 . 2012-08-19 20:18 ——– d—–w- c:\program files (x86)\Ubisoft
    2012-08-17 22:11 . 2012-08-17 22:11 ——– d–h–w- c:\users\Jesper\InstallAnywhere
    2012-08-17 20:09 . 2012-08-17 20:09 ——– d—–w- c:\users\Jesper\.swt
    2012-08-15 21:09 . 2004-07-02 12:51 327904 —-a-w- c:\program files (x86)\Mozilla Firefox\plugins
    p32asw.dll
    2012-08-15 21:09 . 2004-07-02 12:51 327904 —-a-w- c:\program files (x86)\Mozilla Firefox\components
    p32asw.dll
    2012-08-15 07:13 . 2012-07-06 20:07 552960 —-a-w- c:\windows\system32\drivers\bthport.sys
    2012-08-14 22:42 . 2012-02-11 06:43 751104 —-a-w- c:\windows\system32\win32spl.dll
    2012-08-14 22:42 . 2012-02-11 06:36 559104 —-a-w- c:\windows\system32\spoolsv.exe
    2012-08-14 22:42 . 2012-02-11 06:36 67072 —-a-w- c:\windows\splwow64.exe
    2012-08-14 22:42 . 2012-02-11 05:43 492032 —-a-w- c:\windows\SysWow64\win32spl.dll
    2012-08-14 21:27 . 2012-05-05 08:36 503808 —-a-w- c:\windows\system32\srcore.dll
    2012-08-14 21:27 . 2012-05-05 07:46 43008 —-a-w- c:\windows\SysWow64\srclient.dll
    2012-08-14 21:27 . 2012-07-04 22:16 73216 —-a-w- c:\windows\system32
    etapi32.dll
    2012-08-14 21:27 . 2012-07-04 22:13 59392 —-a-w- c:\windows\system32\browcli.dll
    2012-08-14 21:27 . 2012-07-04 22:13 136704 —-a-w- c:\windows\system32\browser.dll
    2012-08-14 21:27 . 2012-07-04 21:14 41984 —-a-w- c:\windows\SysWow64\browcli.dll
    2012-08-14 21:27 . 2012-07-18 18:15 3148800 —-a-w- c:\windows\system32\win32k.sys
    2012-08-14 21:27 . 2012-05-14 05:26 956928 —-a-w- c:\windows\system32\localspl.dll
    2012-08-03 07:58 . 2012-08-03 07:58 ——– d—–w- c:\programdata\mquadr.at
    2012-08-03 07:57 . 2012-08-03 08:33 ——– d—–w- c:\program files (x86)\KPN
    2012-08-03 07:56 . 2012-08-03 07:56 ——– d—–w- c:\users\Jesper\AppData\Local\PackageAware
    2012-07-30 21:52 . 2012-07-30 21:52 103904 —-a-w- c:\program files (x86)\Mozilla Firefox\plugins
    ppdf32.dll
    2012-07-30 21:52 . 2012-07-30 21:52 103904 —-a-w- c:\program files (x86)\Internet Explorer\Plugins
    ppdf32.dll
    2012-07-25 18:58 . 2012-07-25 18:58 ——– d—–w- c:\programdata\TomTom
    2012-07-25 18:45 . 2012-07-25 18:45 ——– d—–w- c:\users\Jesper\AppData\Roaming\TomTom
    2012-07-25 18:45 . 2012-07-25 18:45 ——– d—–w- c:\users\Jesper\AppData\Local\TomTom
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-08-20 16:43 . 2010-04-28 21:09 473072 —-a-w- c:\windows\SysWow64\deployJava1.dll
    2012-08-19 21:55 . 2009-07-13 23:19 328704 —-a-w- c:\windows\system32\services.exe
    2012-08-15 07:08 . 2009-10-26 20:24 62134624 —-a-w- c:\windows\system32\MRT.exe
    2012-07-03 17:05 . 2012-04-04 21:25 426184 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-07-03 17:05 . 2011-05-30 20:53 70344 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-06-09 05:43 . 2012-07-12 10:57 14172672 —-a-w- c:\windows\system32\shell32.dll
    2012-06-06 18:59 . 2012-06-06 18:59 1070152 —-a-w- c:\windows\SysWow64\MSCOMCTL.OCX
    2012-06-06 06:06 . 2012-07-12 10:57 2004480 —-a-w- c:\windows\system32\msxml6.dll
    2012-06-06 06:06 . 2012-07-12 10:57 1881600 —-a-w- c:\windows\system32\msxml3.dll
    2012-06-06 06:02 . 2012-07-12 10:56 1133568 —-a-w- c:\windows\system32\cdosys.dll
    2012-06-06 05:05 . 2012-07-12 10:57 1390080 —-a-w- c:\windows\SysWow64\msxml6.dll
    2012-06-06 05:05 . 2012-07-12 10:57 1236992 —-a-w- c:\windows\SysWow64\msxml3.dll
    2012-06-06 05:03 . 2012-07-12 10:56 805376 —-a-w- c:\windows\SysWow64\cdosys.dll
    2012-06-02 22:19 . 2012-06-26 21:24 38424 —-a-w- c:\windows\system32\wups.dll
    2012-06-02 22:19 . 2012-06-26 21:24 2428952 —-a-w- c:\windows\system32\wuaueng.dll
    2012-06-02 22:19 . 2012-06-26 21:24 57880 —-a-w- c:\windows\system32\wuauclt.exe
    2012-06-02 22:19 . 2012-06-26 21:24 44056 —-a-w- c:\windows\system32\wups2.dll
    2012-06-02 22:19 . 2012-06-26 21:24 701976 —-a-w- c:\windows\system32\wuapi.dll
    2012-06-02 22:15 . 2012-06-26 21:24 2622464 —-a-w- c:\windows\system32\wucltux.dll
    2012-06-02 22:15 . 2012-06-26 21:24 99840 —-a-w- c:\windows\system32\wudriver.dll
    2012-06-02 13:19 . 2012-06-26 21:24 186752 —-a-w- c:\windows\system32\wuwebv.dll
    2012-06-02 13:15 . 2012-06-26 21:24 36864 —-a-w- c:\windows\system32\wuapp.exe
    2012-06-02 05:50 . 2012-07-12 10:56 458704 —-a-w- c:\windows\system32\drivers\cng.sys
    2012-06-02 05:48 . 2012-07-12 10:56 95600 —-a-w- c:\windows\system32\drivers\ksecdd.sys
    2012-06-02 05:48 . 2012-07-12 10:56 151920 —-a-w- c:\windows\system32\drivers\ksecpkg.sys
    2012-06-02 05:45 . 2012-07-12 10:56 340992 —-a-w- c:\windows\system32\schannel.dll
    2012-06-02 05:44 . 2012-07-12 10:56 307200 —-a-w- c:\windows\system32
    crypt.dll
    2012-06-02 04:40 . 2012-07-12 10:56 22016 —-a-w- c:\windows\SysWow64\secur32.dll
    2012-06-02 04:40 . 2012-07-12 10:56 225280 —-a-w- c:\windows\SysWow64\schannel.dll
    2012-06-02 04:39 . 2012-07-12 10:56 219136 —-a-w- c:\windows\SysWow64
    crypt.dll
    2012-06-02 04:34 . 2012-07-12 10:56 96768 —-a-w- c:\windows\SysWow64\sspicli.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-11 39408]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "AVG9_TRAY"="c:\progra~2\AVG\AVG9\avgtray.exe" [2012-01-26 2077536]
    "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]
    "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
    "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-03-27 421736]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-1 1079584]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon
    otify\VESWinlogon]
    2009-07-01 09:49 98304 ——w- c:\windows\System32\VESWinlogon.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "mixer3"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 135664]
    R2 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-07-27 427304]
    R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-07-30 35104]
    R3 DCamUSBVM;Lenovo Q350 USB PC Camera;c:\windows\system32\Drivers\usbVM31b.sys [2005-09-19 142336]
    R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672]
    R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 135664]
    R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-20 113120]
    R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
    R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
    R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]
    R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-06-26 357672]
    R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2009-06-17 110888]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-26 1255736]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-05-20 55280]
    S1 AvgLdx64;AVG Free AVI Loader Driver x64;c:\windows\System32\Drivers\avgldx64.sys [2010-07-15 269904]
    S1 AvgMfx64;AVG Free On-access Scanner Minifilter Driver x64;c:\windows\System32\Drivers\avgmfx64.sys [2011-09-29 35664]
    S1 AvgTdiA;AVG Free Network Redirector x64;c:\windows\System32\Drivers\avgtdia.sys [2011-05-06 317520]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-07-27 203264]
    S2 avg9emc;AVG Free E-mail Scanner;c:\program files (x86)\AVG\AVG9\avgemc.exe [2010-07-21 921952]
    S2 avg9wd;AVG Free WatchDog;c:\program files (x86)\AVG\AVG9\avgwdsvc.exe [2010-07-15 308136]
    S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [2009-07-24 189984]
    S2 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-07-27 120104]
    S2 SOHDBSvr;VAIO Media plus Database Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-07-27 70952]
    S2 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-07-27 75048]
    S2 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-07-27 91432]
    S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
    S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-07-16 411496]
    S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-07-22 642920]
    S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2009-08-12 522240]
    S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
    S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS
    etw5v64.sys [2009-06-05 5435904]
    S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2009-06-11 11392]
    S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-06-26 468264]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-07-31 393216]
    .
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 14:44]
    .
    2012-08-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 14:44]
    .
    .
    ——— X64 Entries ———–
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-24 7938080]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x1
    .
    ——- Bijkomende Scan ——-
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.nu.nl/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
    IE: Pagina verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    TCP: DhcpNameServer = 192.168.2.254
    TCP: Interfaces\{FEED30C4-7D45-495C-B2FE-ABDB3E51713E}\052796E63756E6762716368647: NameServer = 192.168.1.254,195.241.77.55
    DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} - hxxp://kitchenplanner.ikea.com/NL/Core/Player/2020PlayerAX_IKEA_Win32.cab
    FF - ProfilePath - c:\users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.kpnvandaag.nl
    FF - prefs.js: network.proxy.gopher -
    FF - prefs.js: network.proxy.gopher_port - 0
    FF - prefs.js: network.proxy.type - 0
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    SafeBoot-48481691.sys
    SafeBoot-mcmscsvc
    SafeBoot-MCODS
    HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
    HKLM-Run-dvuin - c:\users\Jesper\AppData\Roaming\dvuin.dll
    AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
    .
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    c:\program files (x86)\Sony\VAIO Event Service\VESMgr.exe
    c:\windows\SysWOW64\DllHost.exe
    c:\program files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
    c:\program files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    c:\program files (x86)\AVG\AVG9\avgcsrvx.exe
    c:\program files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2012-08-20 21:57:02 - machine werd herstart
    ComboFix-quarantined-files.txt 2012-08-20 19:56
    .
    Pre-Run: 351.448.776.704 bytes beschikbaar
    Post-Run: 352.096.677.888 bytes beschikbaar
    .
    - - End Of File - - 0C2323DEB9CD77D4F12261EEC3600FBD


    23:11:29.0276 5964 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
    23:11:29.0432 5964 ============================================================
    23:11:29.0432 5964 Current date / time: 2012/08/19 23:11:29.0432
    23:11:29.0432 5964 SystemInfo:
    23:11:29.0432 5964
    23:11:29.0432 5964 OS Version: 6.1.7601 ServicePack: 1.0
    23:11:29.0432 5964 Product type: Workstation
    23:11:29.0432 5964 ComputerName: JENSEN
    23:11:29.0432 5964 UserName: Jesper
    23:11:29.0432 5964 Windows directory: C:\Windows
    23:11:29.0432 5964 System windows directory: C:\Windows
    23:11:29.0432 5964 Running under WOW64
    23:11:29.0432 5964 Processor architecture: Intel x64
    23:11:29.0432 5964 Number of processors: 2
    23:11:29.0432 5964 Page size: 0x1000
    23:11:29.0432 5964 Boot type: Normal boot
    23:11:29.0432 5964 ============================================================
    23:11:30.0789 5964 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    23:11:30.0789 5964 ============================================================
    23:11:30.0789 5964 \Device\Harddisk0\DR0:
    23:11:30.0789 5964 MBR partitions:
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x12EF000, BlocksNum 0x32000
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1321000, BlocksNum 0x39064830
    23:11:30.0789 5964 ============================================================
    23:11:30.0820 5964 C: <-> \Device\Harddisk0\DR0\Partition2
    23:11:30.0820 5964 ============================================================
    23:11:30.0820 5964 Initialize success
    23:11:30.0820 5964 ============================================================
    23:11:32.0489 5104 ============================================================
    23:11:32.0489 5104 Scan started
    23:11:32.0489 5104 Mode: Manual;
    23:11:32.0489 5104 ============================================================
    23:11:34.0252 5104 ================ Scan services =============================
    23:11:35.0750 5104 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    23:11:35.0750 5104 1394ohci - ok
    23:11:35.0844 5104 [ adc420616c501b45d26c0fd3ef1e54e4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    23:11:35.0844 5104 ACDaemon - ok
    23:11:35.0890 5104 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    23:11:35.0922 5104 ACPI - ok
    23:11:35.0968 5104 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    23:11:35.0968 5104 AcpiPmi - ok
    23:11:36.0093 5104 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    23:11:36.0156 5104 adp94xx - ok
    23:11:36.0234 5104 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    23:11:36.0234 5104 adpahci - ok
    23:11:36.0296 5104 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    23:11:36.0296 5104 adpu320 - ok
    23:11:36.0327 5104 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    23:11:36.0327 5104 AeLookupSvc - ok
    23:11:36.0421 5104 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
    23:11:36.0436 5104 AFD - ok
    23:11:36.0499 5104 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    23:11:36.0499 5104 agp440 - ok
    23:11:36.0561 5104 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
    23:11:36.0561 5104 ALG - ok
    23:11:36.0608 5104 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
    23:11:36.0608 5104 aliide - ok
    23:11:36.0655 5104 [ 322a2c5d390109a4e50679ab58dea870 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    23:11:36.0655 5104 AMD External Events Utility - ok
    23:11:36.0702 5104 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
    23:11:36.0702 5104 amdide - ok
    23:11:36.0795 5104 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    23:11:36.0795 5104 AmdK8 - ok
    23:11:36.0826 5104 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    23:11:36.0826 5104 AmdPPM - ok
    23:11:36.0920 5104 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    23:11:36.0936 5104 amdsata - ok
    23:11:36.0998 5104 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    23:11:36.0998 5104 amdsbs - ok
    23:11:37.0045 5104 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    23:11:37.0045 5104 amdxata - ok
    23:11:37.0138 5104 [ 56bd886820c4aedf493cfcdf1ccfb004 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    23:11:37.0154 5104 ApfiltrService - ok
    23:11:37.0263 5104 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
    23:11:37.0263 5104 AppID - ok
    23:11:37.0294 5104 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    23:11:37.0294 5104 AppIDSvc - ok
    23:11:37.0372 5104 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    23:11:37.0372 5104 Appinfo - ok
    23:11:37.0622 5104 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    23:11:37.0622 5104 Apple Mobile Device - ok
    23:11:37.0684 5104 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
    23:11:37.0684 5104 arc - ok
    23:11:37.0700 5104 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    23:11:37.0716 5104 arcsas - ok
    23:11:37.0778 5104 [ c130bc4a51b1382b2be8e44579ec4c0a ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
    23:11:37.0778 5104 ArcSoftKsUFilter - ok
    23:11:37.0825 5104 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    23:11:37.0840 5104 AsyncMac - ok
    23:11:37.0903 5104 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
    23:11:37.0903 5104 atapi - ok
    23:11:38.0106 5104 [ 5d4529ac4156e16bedb01441ae0cf984 ] athr C:\Windows\system32\DRIVERS\athrx.sys
    23:11:38.0152 5104 athr - ok
    23:11:38.0698 5104 [ de0ede41bc530f1759c6fffcb8c7a0cf ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    23:11:38.0839 5104 atikmdag - ok
    23:11:38.0964 5104 [ fc0e8778c000291caf60eb88c011e931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
    23:11:38.0979 5104 atksgt - ok
    23:11:39.0166 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    23:11:39.0182 5104 AudioEndpointBuilder - ok
    23:11:39.0198 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    23:11:39.0198 5104 AudioSrv - ok
    23:11:39.0432 5104 [ aa054cd537357f03d5ba6aba7562b35f ] avg9emc C:\Program Files (x86)\AVG\AVG9\avgemc.exe
    23:11:39.0510 5104 avg9emc - ok
    23:11:39.0572 5104 [ c4d15594db5be042d3346ea58df87d89 ] avg9wd C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
    23:11:39.0588 5104 avg9wd - ok
    23:11:39.0619 5104 [ b447db072bf939db9e07bef2adf4ecbd ] AvgLdx64 C:\Windows\System32\Drivers\avgldx64.sys
    23:11:39.0619 5104 AvgLdx64 - ok
    23:11:39.0634 5104 [ 0db5a749acd8e66091736f88c40207bd ] AvgMfx64 C:\Windows\System32\Drivers\avgmfx64.sys
    23:11:39.0650 5104 AvgMfx64 - ok
    23:11:39.0744 5104 [ 8aa68c0ba2b84fd7eb3e1f10bbfc825b ] AvgTdiA C:\Windows\System32\Drivers\avgtdia.sys
    23:11:39.0822 5104 AvgTdiA - ok
    23:11:39.0900 5104 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
    23:11:39.0900 5104 AxInstSV - ok
    23:11:39.0978 5104 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    23:11:39.0993 5104 b06bdrv - ok
    23:11:40.0071 5104 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    23:11:40.0087 5104 b57nd60a - ok
    23:11:40.0134 5104 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
    23:11:40.0134 5104 BDESVC - ok
    23:11:40.0149 5104 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    23:11:40.0149 5104 Beep - ok
    23:11:40.0227 5104 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    23:11:40.0227 5104 blbdrive - ok
    23:11:40.0414 5104 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    23:11:40.0414 5104 Bonjour Service - ok
    23:11:40.0524 5104 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    23:11:40.0539 5104 bowser - ok
    23:11:40.0586 5104 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    23:11:40.0586 5104 BrFiltLo - ok
    23:11:40.0617 5104 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    23:11:40.0617 5104 BrFiltUp - ok
    23:11:40.0680 5104 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
    23:11:40.0695 5104 Browser - ok
    23:11:40.0758 5104 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    23:11:40.0758 5104 Brserid - ok
    23:11:40.0820 5104 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    23:11:40.0820 5104 BrSerWdm - ok
    23:11:40.0882 5104 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    23:11:40.0882 5104 BrUsbMdm - ok
    23:11:40.0898 5104 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    23:11:40.0898 5104 BrUsbSer - ok
    23:11:40.0992 5104 [ cf98190a94f62e405c8cb255018b2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    23:11:41.0007 5104 BthEnum - ok
    23:11:41.0054 5104 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    23:11:41.0054 5104 BTHMODEM - ok
    23:11:41.0116 5104 [ 02dd601b708dd0667e1331fa8518e9ff ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    23:11:41.0132 5104 BthPan - ok
    23:11:41.0272 5104 [ 738d0e9272f59eb7a1449c3ec118e6c4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    23:11:41.0304 5104 BTHPORT - ok
    23:11:41.0319 5104 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
    23:11:41.0335 5104 bthserv - ok
    23:11:41.0413 5104 [ f188b7394d81010767b6df3178519a37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    23:11:41.0413 5104 BTHUSB - ok
    23:11:41.0475 5104 [ 6bcfdc2b5b7f66d484486d4bd4b39a6b ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
    23:11:41.0491 5104 btwaudio - ok
    23:11:41.0538 5104 [ 82dc8b7c626e526681c1bebed2bc3ff9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
    23:11:41.0538 5104 btwavdt - ok
    23:11:41.0756 5104 [ d65aa164acd0f6706dbcfbbcc9731584 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    23:11:41.0818 5104 btwdins - ok
    23:11:41.0865 5104 [ 6149301dc3f81d6f9667a3fbac410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
    23:11:41.0881 5104 btwl2cap - ok
    23:11:41.0912 5104 [ 28e105ad3b79f440bf94780f507bf66a ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
    23:11:41.0912 5104 btwrchid - ok
    23:11:41.0943 5104 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    23:11:41.0943 5104 cdfs - ok
    23:11:42.0037 5104 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    23:11:42.0037 5104 cdrom - ok
    23:11:42.0099 5104 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
    23:11:42.0115 5104 CertPropSvc - ok
    23:11:42.0177 5104 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    23:11:42.0177 5104 circlass - ok
    23:11:42.0255 5104 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
    23:11:42.0271 5104 CLFS - ok
    23:11:42.0427 5104 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    23:11:42.0427 5104 clr_optimization_v2.0.50727_32 - ok
    23:11:42.0520 5104 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    23:11:42.0536 5104 clr_optimization_v2.0.50727_64 - ok
    23:11:42.0723 5104 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    23:11:42.0739 5104 clr_optimization_v4.0.30319_32 - ok
    23:11:42.0817 5104 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    23:11:42.0817 5104 clr_optimization_v4.0.30319_64 - ok
    23:11:42.0879 5104 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    23:11:42.0879 5104 CmBatt - ok
    23:11:42.0926 5104 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
    23:11:42.0926 5104 cmdide - ok
    23:11:43.0051 5104 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
    23:11:43.0066 5104 CNG - ok
    23:11:43.0113 5104 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    23:11:43.0113 5104 Compbatt - ok
    23:11:43.0176 5104 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    23:11:43.0176 5104 CompositeBus - ok
    23:11:43.0191 5104 COMSysApp - ok
    23:11:43.0238 5104 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    23:11:43.0238 5104 crcdisk - ok
    23:11:43.0300 5104 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
    23:11:43.0316 5104 CryptSvc - ok
    23:11:43.0425 5104 [ d00a4fe22216265783a08a05d268b902 ] DCamUSBVM C:\Windows\system32\Drivers\usbVM31b.sys
    23:11:43.0425 5104 DCamUSBVM - ok
    23:11:43.0550 5104 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    23:11:43.0597 5104 DcomLaunch - ok
    23:11:43.0628 5104 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
    23:11:43.0628 5104 defragsvc - ok
    23:11:43.0706 5104 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    23:11:43.0706 5104 DfsC - ok
    23:11:43.0815 5104 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
    23:11:43.0815 5104 Dhcp - ok
    23:11:43.0878 5104 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
    23:11:43.0893 5104 discache - ok
    23:11:43.0924 5104 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
    23:11:43.0924 5104 Disk - ok
    23:11:44.0018 5104 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    23:11:44.0034 5104 Dnscache - ok
    23:11:44.0080 5104 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
    23:11:44.0080 5104 dot3svc - ok
    23:11:44.0143 5104 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
    23:11:44.0143 5104 DPS - ok
    23:11:44.0190 5104 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    23:11:44.0190 5104 drmkaud - ok
    23:11:44.0346 5104 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    23:11:44.0377 5104 DXGKrnl - ok
    23:11:44.0470 5104 [ a0d5450b3d4689dce4cbbc8268141c37 ] e.dentifier2 C:\Windows\system32\DRIVERS\aabed2.sys
    23:11:44.0470 5104 e.dentifier2 - ok
    23:11:44.0502 5104 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
    23:11:44.0517 5104 EapHost - ok
    23:11:44.0736 5104 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    23:11:44.0798 5104 ebdrv - ok
    23:11:44.0845 5104 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
    23:11:44.0860 5104 EFS - ok
    23:11:45.0016 5104 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    23:11:45.0063 5104 ehRecvr - ok
    23:11:45.0094 5104 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
    23:11:45.0110 5104 ehSched - ok
    23:11:45.0141 5104 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    23:11:45.0141 5104 elxstor - ok
    23:11:45.0188 5104 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
    23:11:45.0188 5104 ErrDev - ok
    23:11:45.0235 5104 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
    23:11:45.0235 5104 EventSystem - ok
    23:11:45.0313 5104 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
    23:11:45.0313 5104 exfat - ok
    23:11:45.0344 5104 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
    23:11:45.0360 5104 fastfat - ok
    23:11:45.0500 5104 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
    23:11:45.0516 5104 Fax - ok
    23:11:45.0562 5104 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    23:11:45.0562 5104 fdc - ok
    23:11:45.0609 5104 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
    23:11:45.0625 5104 fdPHost - ok
    23:11:45.0656 5104 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    23:11:45.0656 5104 FDResPub - ok
    23:11:45.0687 5104 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    23:11:45.0687 5104 FileInfo - ok
    23:11:45.0703 5104 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    23:11:45.0718 5104 Filetrace - ok
    23:11:45.0750 5104 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    23:11:45.0750 5104 flpydisk - ok
    23:11:45.0796 5104 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    23:11:45.0812 5104 FltMgr - ok
    23:11:45.0937 5104 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
    23:11:46.0015 5104 FontCache - ok
    23:11:46.0124 5104 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    23:11:46.0124 5104 FontCache3.0.0.0 - ok
    23:11:46.0140 5104 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    23:11:46.0155 5104 FsDepends - ok
    23:11:46.0186 5104 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    23:11:46.0186 5104 Fs_Rec - ok
    23:11:46.0280 5104 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    23:11:46.0296 5104 fvevol - ok
    23:11:46.0342 5104 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    23:11:46.0342 5104 gagp30kx - ok
    23:11:46.0436 5104 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    23:11:46.0452 5104 GEARAspiWDM - ok
    23:11:46.0608 5104 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
    23:11:46.0623 5104 gpsvc - ok
    23:11:46.0842 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0857 5104 gupdate - ok
    23:11:46.0888 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0888 5104 gupdatem - ok
    23:11:46.0935 5104 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    23:11:46.0935 5104 gusvc - ok
    23:11:46.0966 5104 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    23:11:46.0966 5104 hcw85cir - ok
    23:11:47.0044 5104 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    23:11:47.0060 5104 HdAudAddService - ok
    23:11:47.0076 5104 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    23:11:47.0076 5104 HDAudBus - ok
    23:11:47.0091 5104 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    23:11:47.0091 5104 HidBatt - ok
    23:11:47.0122 5104 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    23:11:47.0122 5104 HidBth - ok
    23:11:47.0169 5104 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    23:11:47.0169 5104 HidIr - ok
    23:11:47.0200 5104 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
    23:11:47.0216 5104 hidserv - ok
    23:11:47.0294 5104 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    23:11:47.0294 5104 HidUsb - ok
    23:11:47.0341 5104 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    23:11:47.0341 5104 hkmsvc - ok
    23:11:47.0403 5104 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    23:11:47.0403 5104 HomeGroupListener - ok
    23:11:47.0450 5104 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    23:11:47.0466 5104 HomeGroupProvider - ok
    23:11:47.0528 5104 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    23:11:47.0528 5104 HpSAMD - ok
    23:11:47.0590 5104 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    23:11:47.0637 5104 HTTP - ok
    23:11:47.0684 5104 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    23:11:47.0684 5104 hwpolicy - ok
    23:11:47.0746 5104 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    23:11:47.0746 5104 i8042prt - ok
    23:11:47.0918 5104 [ 7548066df68a8a1a56b043359f915f37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    23:11:47.0934 5104 IAANTMON - ok
    23:11:47.0980 5104 [ 1d004cb1da6323b1f55caef7f94b61d9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    23:11:47.0980 5104 iaStor - ok
    23:11:47.0996 5104 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    23:11:48.0012 5104 iaStorV - ok
    23:11:48.0214 5104 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    23:11:48.0261 5104 idsvc - ok
    23:11:48.0792 5104 [ a87261ef1546325b559374f5689cf5bc ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    23:11:48.0948 5104 igfx - ok
    23:11:48.0979 5104 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    23:11:48.0979 5104 iirsp - ok
    23:11:49.0182 5104 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
    23:11:49.0244 5104 IKEEXT - ok
    23:11:49.0462 5104 [ b16fc828ce7a76a8f1ce682e6ead2627 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    23:11:49.0525 5104 IntcAzAudAddService - ok
    23:11:49.0525 5104 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
    23:11:49.0525 5104 intelide - ok
    23:11:49.0556 5104 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    23:11:49.0572 5104 intelppm - ok
    23:11:49.0618 5104 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    23:11:49.0634 5104 IPBusEnum - ok
    23:11:49.0681 5104 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    23:11:49.0681 5104 IpFilterDriver - ok
    23:11:49.0712 5104 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    23:11:49.0728 5104 IPMIDRV - ok
    23:11:49.0821 5104 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    23:11:49.0821 5104 IPNAT - ok
    23:11:50.0008 5104 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    23:11:50.0071 5104 iPod Service - ok
    23:11:50.0118 5104 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    23:11:50.0118 5104 IRENUM - ok
    23:11:50.0180 5104 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    23:11:50.0180 5104 isapnp - ok
    23:11:50.0258 5104 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    23:11:50.0258 5104 iScsiPrt - ok
    23:11:50.0305 5104 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    23:11:50.0336 5104 kbdclass - ok
    23:11:50.0367 5104 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    23:11:50.0367 5104 kbdhid - ok
    23:11:50.0383 5104 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
    23:11:50.0383 5104 KeyIso - ok
    23:11:50.0430 5104 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    23:11:50.0430 5104 KSecDD - ok
    23:11:50.0461 5104 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    23:11:50.0476 5104 KSecPkg - ok
    23:11:50.0508 5104 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    23:11:50.0508 5104 ksthunk - ok
    23:11:50.0601 5104 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
    23:11:50.0617 5104 KtmRm - ok
    23:11:50.0679 5104 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    23:11:50.0679 5104 LanmanServer - ok
    23:11:50.0710 5104 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    23:11:50.0726 5104 LanmanWorkstation - ok
    23:11:50.0788 5104 [ 156ab2e56dc3ca0b582e3362e07cded7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
    23:11:50.0788 5104 lirsgt - ok
    23:11:50.0804 5104 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    23:11:50.0820 5104 lltdio - ok
    23:11:50.0882 5104 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
    23:11:50.0898 5104 lltdsvc - ok
    23:11:50.0913 5104 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    23:11:50.0929 5104 lmhosts - ok
    23:11:51.0022 5104 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    23:11:51.0022 5104 LSI_FC - ok
    23:11:51.0038 5104 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    23:11:51.0038 5104 LSI_SAS - ok
    23:11:51.0069 5104 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    23:11:51.0069 5104 LSI_SAS2 - ok
    23:11:51.0085 5104 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    23:11:51.0085 5104 LSI_SCSI - ok
    23:11:51.0100 5104 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
    23:11:51.0116 5104 luafv - ok
    23:11:51.0147 5104 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    23:11:51.0147 5104 Mcx2Svc - ok
    23:11:51.0210 5104 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    23:11:51.0225 5104 megasas - ok
    23:11:51.0241 5104 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    23:11:51.0256 5104 MegaSR - ok
    23:11:51.0412 5104 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
    23:11:51.0412 5104 Microsoft Office Groove Audit Service - ok
    23:11:51.0475 5104 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
    23:11:51.0490 5104 MMCSS - ok
    23:11:51.0506 5104 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
    23:11:51.0522 5104 Modem - ok
    23:11:51.0537 5104 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    23:11:51.0537 5104 monitor - ok
    23:11:51.0553 5104 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    23:11:51.0568 5104 mouclass - ok
    23:11:51.0600 5104 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    23:11:51.0600 5104 mouhid - ok
    23:11:51.0631 5104 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    23:11:51.0646 5104 mountmgr - ok
    23:11:51.0756 5104 [ 96aa8ba23142cc8e2b30f3cae0c80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    23:11:51.0756 5104 MozillaMaintenance - ok
    23:11:51.0802 5104 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
    23:11:51.0802 5104 mpio - ok
    23:11:52.0270 5104 [ 0ebb390b7aeec45ec061d9870a34fd42 ] MpKsl28985dda C:\Windows\Temp\MpKsl28985dda.sys
    23:11:52.0270 5104 MpKsl28985dda - ok
    23:11:52.0317 5104 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    23:11:52.0317 5104 mpsdrv - ok
    23:11:52.0364 5104 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    23:11:52.0364 5104 MRxDAV - ok
    23:11:52.0395 5104 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    23:11:52.0411 5104 mrxsmb - ok
    23:11:52.0473 5104 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    23:11:52.0489 5104 mrxsmb10 - ok
    23:11:52.0504 5104 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    23:11:52.0520 5104 mrxsmb20 - ok
    23:11:52.0567 5104 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    23:11:52.0567 5104 msahci - ok
    23:11:52.0582 5104 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    23:11:52.0598 5104 msdsm - ok
    23:11:52.0614 5104 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
    23:11:52.0614 5104 MSDTC - ok
    23:11:52.0645 5104 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    23:11:52.0660 5104 Msfs - ok
    23:11:52.0707 5104 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    23:11:52.0723 5104 mshidkmdf - ok
    23:11:52.0754 5104 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    23:11:52.0770 5104 msisadrv - ok
    23:11:52.0816 5104 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    23:11:52.0832 5104 MSiSCSI - ok
    23:11:52.0832 5104 msiserver - ok
    23:11:52.0863 5104 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    23:11:52.0863 5104 MSKSSRV - ok
    23:11:52.0879 5104 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    23:11:52.0894 5104 MSPCLOCK - ok
    23:11:52.0910 5104 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    23:11:52.0910 5104 MSPQM - ok
    23:11:52.0957 5104 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    23:11:52.0957 5104 MsRPC - ok
    23:11:53.0004 5104 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    23:11:53.0004 5104 mssmbios - ok
    23:11:53.0019 5104 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    23:11:53.0019 5104 MSTEE - ok
    23:11:53.0066 5104 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    23:11:53.0066 5104 MTConfig - ok
    23:11:53.0113 5104 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
    23:11:53.0113 5104 Mup - ok
    23:11:53.0160 5104 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
    23:11:53.0175 5104 napagent - ok
    23:11:53.0300 5104 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    23:11:53.0300 5104 NativeWifiP - ok
    23:11:53.0440 5104 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers
    dis.sys
    23:11:53.0487 5104 NDIS - ok
    23:11:53.0550 5104 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    23:11:53.0565 5104 NdisCap - ok
    23:11:53.0612 5104 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    23:11:53.0612 5104 NdisTapi - ok
    23:11:53.0674 5104 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    23:11:53.0674 5104 Ndisuio - ok
    23:11:53.0721 5104 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    23:11:53.0721 5104 NdisWan - ok
    23:11:53.0799 5104 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    23:11:53.0799 5104 NDProxy - ok
    23:11:53.0846 5104 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    23:11:53.0862 5104 NetBIOS - ok
    23:11:53.0924 5104 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    23:11:53.0924 5104 NetBT - ok
    23:11:53.0971 5104 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
    23:11:53.0971 5104 Netlogon - ok
    23:11:54.0080 5104 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32
    etman.dll
    23:11:54.0096 5104 Netman - ok
    23:11:54.0142 5104 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32
    etprofm.dll
    23:11:54.0174 5104 netprofm - ok
    23:11:54.0205 5104 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    23:11:54.0205 5104 NetTcpPortSharing - ok
    23:11:54.0766 5104 [ 705283c02177809ca9fa7cc58a4f1e77 ] netw5v64 C:\Windows\system32\DRIVERS
    etw5v64.sys
    23:11:54.0876 5104 netw5v64 - ok
    23:11:54.0907 5104 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    23:11:54.0907 5104 nfrd960 - ok
    23:11:54.0969 5104 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32
    lasvc.dll
    23:11:54.0969 5104 NlaSvc - ok
    23:11:55.0000 5104 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    23:11:55.0000 5104 Npfs - ok
    23:11:55.0032 5104 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32
    sisvc.dll
    23:11:55.0032 5104 nsi - ok
    23:11:55.0047 5104 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    23:11:55.0063 5104 nsiproxy - ok
    23:11:55.0203 5104 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    23:11:55.0250 5104 Ntfs - ok
    23:11:55.0281 5104 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
    23:11:55.0281 5104 Null - ok
    23:11:55.0359 5104 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers
    vraid.sys
    23:11:55.0375 5104 nvraid - ok
    23:11:55.0390 5104 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers
    vstor.sys
    23:11:55.0406 5104 nvstor - ok
    23:11:55.0437 5104 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    23:11:55.0437 5104 nv_agp - ok
    23:11:55.0780 5104 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    23:11:55.0796 5104 odserv - ok
    23:11:55.0827 5104 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    23:11:55.0843 5104 ohci1394 - ok
    23:11:55.0968 5104 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    23:11:55.0968 5104 ose - ok
    23:11:56.0077 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    23:11:56.0092 5104 p2pimsvc - ok
    23:11:56.0139 5104 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
    23:11:56.0139 5104 p2psvc - ok
    23:11:56.0170 5104 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    23:11:56.0186 5104 Parport - ok
    23:11:56.0217 5104 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
    23:11:56.0233 5104 partmgr - ok
    23:11:56.0264 5104 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    23:11:56.0264 5104 PcaSvc - ok
    23:11:56.0311 5104 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
    23:11:56.0326 5104 pci - ok
    23:11:56.0342 5104 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
    23:11:56.0342 5104 pciide - ok
    23:11:56.0373 5104 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    23:11:56.0389 5104 pcmcia - ok
    23:11:56.0404 5104 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
    23:11:56.0404 5104 pcw - ok
    23:11:56.0451 5104 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    23:11:56.0482 5104 PEAUTH - ok
    23:11:57.0231 5104 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
    23:11:57.0231 5104 PerfHost - ok
    23:11:57.0356 5104 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
    23:11:57.0403 5104 pla - ok
    23:11:57.0512 5104 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    23:11:57.0543 5104 PlugPlay - ok
    23:11:57.0559 5104 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    23:11:57.0559 5104 PNRPAutoReg - ok
    23:11:57.0574 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    23:11:57.0574 5104 PNRPsvc - ok
    23:11:57.0668 5104 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    23:11:57.0699 5104 PolicyAgent - ok
    23:11:57.0746 5104 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
    23:11:57.0746 5104 Power - ok
    23:11:57.0808 5104 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    23:11:57.0808 5104 PptpMiniport - ok
    23:11:57.0824 5104 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
    23:11:57.0840 5104 Processor - ok
    23:11:57.0871 5104 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
    23:11:57.0886 5104 ProfSvc - ok
    23:11:57.0902 5104 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    23:11:57.0902 5104 ProtectedStorage - ok
    23:11:57.0996 5104 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    23:11:58.0011 5104 Psched - ok
    23:11:58.0058 5104 [ aed797cca02783296c68aa10d0cff8a9 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    23:11:58.0058 5104 PxHlpa64 - ok
    23:11:58.0198 5104 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    23:11:58.0292 5104 ql2300 - ok
    23:11:58.0308 5104 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    23:11:58.0323 5104 ql40xx - ok
    23:11:58.0417 5104 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
    23:11:58.0417 5104 QWAVE - ok
    23:11:58.0464 5104 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    23:11:58.0464 5104 QWAVEdrv - ok
    23:11:58.0495 5104 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    23:11:58.0495 5104 RasAcd - ok
    23:11:58.0588 5104 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    23:11:58.0588 5104 RasAgileVpn - ok
    23:11:58.0635 5104 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
    23:11:58.0651 5104 RasAuto - ok
    23:11:58.0713 5104 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    23:11:58.0713 5104 Rasl2tp - ok
    23:11:58.0807 5104 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
    23:11:58.0822 5104 RasMan - ok
    23:11:58.0885 5104 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    23:11:58.0885 5104 RasPppoe - ok
    23:11:58.0932 5104 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    23:11:58.0932 5104 RasSstp - ok
    23:11:59.0056 5104 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    23:11:59.0103 5104 rdbss - ok
    23:11:59.0119 5104 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    23:11:59.0119 5104 rdpbus - ok
    23:11:59.0150 5104 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    23:11:59.0150 5104 RDPCDD - ok
    23:11:59.0181 5104 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    23:11:59.0181 5104 RDPENCDD - ok
    23:11:59.0197 5104 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    23:11:59.0197 5104 RDPREFMP - ok
    23:11:59.0228 5104 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    23:11:59.0244 5104 RDPWD - ok
    23:11:59.0306 5104 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    23:11:59.0322 5104 rdyboost - ok
    23:11:59.0384 5104 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    23:11:59.0384 5104 RemoteAccess - ok
    23:11:59.0446 5104 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    23:11:59.0478 5104 RemoteRegistry - ok
    23:11:59.0509 5104 [ 3dd798846e2c28102b922c56e71b7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    23:11:59.0509 5104 RFCOMM - ok
    23:11:59.0524 5104 [ 258aadb43e3f3468b5cf8cb0f84872c2 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
    23:11:59.0540 5104 rimsptsk - ok
    23:11:59.0571 5104 RimUsb - ok
    23:11:59.0618 5104 [ 71e182a0de1cecb3f912960716345405 ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
    23:11:59.0618 5104 risdptsk - ok
    23:11:59.0649 5104 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\Sys



























  • Hallo Jesper, die tools die jezelf hebt ingezet zijn verschrikkelijk krachtig.
    Dat betekent dat indien je iets verkeerds ermee had gedaan, had jij jouw Windows kapot gemaakt.

    Overigens: het geposte log van TDSSKiller is niet compleet, het laatste gedeelte met o.a. de conclusie van de scan mist.

    Dus post het complete log nogmaals.

    En doe ook het volgende:

    [b:321b8d805f]Welk programma[/b:321b8d805f]:
  • Beste moderator,


    Bedankt voor de snelle reactie en heldere uitleg. Bijgevoegd is het volledige logbestand van TDSSkiller en HitmanPro. Ik hoop dat ik alles zo goed heb gepost. Verder zie ik op mijn C schijf een map Qoobox met quarantainebestanden van Combofix. Is het nodig om dat te verwijderen?

    Nogmaals dank voor reactie


    23:11:29.0276 5964 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
    23:11:29.0432 5964 ============================================================
    23:11:29.0432 5964 Current date / time: 2012/08/19 23:11:29.0432
    23:11:29.0432 5964 SystemInfo:
    23:11:29.0432 5964
    23:11:29.0432 5964 OS Version: 6.1.7601 ServicePack: 1.0
    23:11:29.0432 5964 Product type: Workstation
    23:11:29.0432 5964 ComputerName: JENSEN
    23:11:29.0432 5964 UserName: Jesper
    23:11:29.0432 5964 Windows directory: C:\Windows
    23:11:29.0432 5964 System windows directory: C:\Windows
    23:11:29.0432 5964 Running under WOW64
    23:11:29.0432 5964 Processor architecture: Intel x64
    23:11:29.0432 5964 Number of processors: 2
    23:11:29.0432 5964 Page size: 0x1000
    23:11:29.0432 5964 Boot type: Normal boot
    23:11:29.0432 5964 ============================================================
    23:11:30.0789 5964 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    23:11:30.0789 5964 ============================================================
    23:11:30.0789 5964 \Device\Harddisk0\DR0:
    23:11:30.0789 5964 MBR partitions:
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x12EF000, BlocksNum 0x32000
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1321000, BlocksNum 0x39064830
    23:11:30.0789 5964 ============================================================
    23:11:30.0820 5964 C: <-> \Device\Harddisk0\DR0\Partition2
    23:11:30.0820 5964 ============================================================
    23:11:30.0820 5964 Initialize success
    23:11:30.0820 5964 ============================================================
    23:11:32.0489 5104 ============================================================
    23:11:32.0489 5104 Scan started
    23:11:32.0489 5104 Mode: Manual;
    23:11:32.0489 5104 ============================================================
    23:11:34.0252 5104 ================ Scan services =============================
    23:11:35.0750 5104 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    23:11:35.0750 5104 1394ohci - ok
    23:11:35.0844 5104 [ adc420616c501b45d26c0fd3ef1e54e4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    23:11:35.0844 5104 ACDaemon - ok
    23:11:35.0890 5104 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    23:11:35.0922 5104 ACPI - ok
    23:11:35.0968 5104 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    23:11:35.0968 5104 AcpiPmi - ok
    23:11:36.0093 5104 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    23:11:36.0156 5104 adp94xx - ok
    23:11:36.0234 5104 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    23:11:36.0234 5104 adpahci - ok
    23:11:36.0296 5104 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    23:11:36.0296 5104 adpu320 - ok
    23:11:36.0327 5104 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    23:11:36.0327 5104 AeLookupSvc - ok
    23:11:36.0421 5104 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
    23:11:36.0436 5104 AFD - ok
    23:11:36.0499 5104 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    23:11:36.0499 5104 agp440 - ok
    23:11:36.0561 5104 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
    23:11:36.0561 5104 ALG - ok
    23:11:36.0608 5104 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
    23:11:36.0608 5104 aliide - ok
    23:11:36.0655 5104 [ 322a2c5d390109a4e50679ab58dea870 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    23:11:36.0655 5104 AMD External Events Utility - ok
    23:11:36.0702 5104 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
    23:11:36.0702 5104 amdide - ok
    23:11:36.0795 5104 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    23:11:36.0795 5104 AmdK8 - ok
    23:11:36.0826 5104 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    23:11:36.0826 5104 AmdPPM - ok
    23:11:36.0920 5104 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    23:11:36.0936 5104 amdsata - ok
    23:11:36.0998 5104 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    23:11:36.0998 5104 amdsbs - ok
    23:11:37.0045 5104 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    23:11:37.0045 5104 amdxata - ok
    23:11:37.0138 5104 [ 56bd886820c4aedf493cfcdf1ccfb004 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    23:11:37.0154 5104 ApfiltrService - ok
    23:11:37.0263 5104 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
    23:11:37.0263 5104 AppID - ok
    23:11:37.0294 5104 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    23:11:37.0294 5104 AppIDSvc - ok
    23:11:37.0372 5104 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    23:11:37.0372 5104 Appinfo - ok
    23:11:37.0622 5104 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    23:11:37.0622 5104 Apple Mobile Device - ok
    23:11:37.0684 5104 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
    23:11:37.0684 5104 arc - ok
    23:11:37.0700 5104 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    23:11:37.0716 5104 arcsas - ok
    23:11:37.0778 5104 [ c130bc4a51b1382b2be8e44579ec4c0a ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
    23:11:37.0778 5104 ArcSoftKsUFilter - ok
    23:11:37.0825 5104 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    23:11:37.0840 5104 AsyncMac - ok
    23:11:37.0903 5104 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
    23:11:37.0903 5104 atapi - ok
    23:11:38.0106 5104 [ 5d4529ac4156e16bedb01441ae0cf984 ] athr C:\Windows\system32\DRIVERS\athrx.sys
    23:11:38.0152 5104 athr - ok
    23:11:38.0698 5104 [ de0ede41bc530f1759c6fffcb8c7a0cf ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    23:11:38.0839 5104 atikmdag - ok
    23:11:38.0964 5104 [ fc0e8778c000291caf60eb88c011e931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
    23:11:38.0979 5104 atksgt - ok
    23:11:39.0166 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    23:11:39.0182 5104 AudioEndpointBuilder - ok
    23:11:39.0198 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    23:11:39.0198 5104 AudioSrv - ok
    23:11:39.0432 5104 [ aa054cd537357f03d5ba6aba7562b35f ] avg9emc C:\Program Files (x86)\AVG\AVG9\avgemc.exe
    23:11:39.0510 5104 avg9emc - ok
    23:11:39.0572 5104 [ c4d15594db5be042d3346ea58df87d89 ] avg9wd C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
    23:11:39.0588 5104 avg9wd - ok
    23:11:39.0619 5104 [ b447db072bf939db9e07bef2adf4ecbd ] AvgLdx64 C:\Windows\System32\Drivers\avgldx64.sys
    23:11:39.0619 5104 AvgLdx64 - ok
    23:11:39.0634 5104 [ 0db5a749acd8e66091736f88c40207bd ] AvgMfx64 C:\Windows\System32\Drivers\avgmfx64.sys
    23:11:39.0650 5104 AvgMfx64 - ok
    23:11:39.0744 5104 [ 8aa68c0ba2b84fd7eb3e1f10bbfc825b ] AvgTdiA C:\Windows\System32\Drivers\avgtdia.sys
    23:11:39.0822 5104 AvgTdiA - ok
    23:11:39.0900 5104 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
    23:11:39.0900 5104 AxInstSV - ok
    23:11:39.0978 5104 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    23:11:39.0993 5104 b06bdrv - ok
    23:11:40.0071 5104 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    23:11:40.0087 5104 b57nd60a - ok
    23:11:40.0134 5104 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
    23:11:40.0134 5104 BDESVC - ok
    23:11:40.0149 5104 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    23:11:40.0149 5104 Beep - ok
    23:11:40.0227 5104 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    23:11:40.0227 5104 blbdrive - ok
    23:11:40.0414 5104 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    23:11:40.0414 5104 Bonjour Service - ok
    23:11:40.0524 5104 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    23:11:40.0539 5104 bowser - ok
    23:11:40.0586 5104 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    23:11:40.0586 5104 BrFiltLo - ok
    23:11:40.0617 5104 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    23:11:40.0617 5104 BrFiltUp - ok
    23:11:40.0680 5104 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
    23:11:40.0695 5104 Browser - ok
    23:11:40.0758 5104 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    23:11:40.0758 5104 Brserid - ok
    23:11:40.0820 5104 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    23:11:40.0820 5104 BrSerWdm - ok
    23:11:40.0882 5104 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    23:11:40.0882 5104 BrUsbMdm - ok
    23:11:40.0898 5104 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    23:11:40.0898 5104 BrUsbSer - ok
    23:11:40.0992 5104 [ cf98190a94f62e405c8cb255018b2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    23:11:41.0007 5104 BthEnum - ok
    23:11:41.0054 5104 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    23:11:41.0054 5104 BTHMODEM - ok
    23:11:41.0116 5104 [ 02dd601b708dd0667e1331fa8518e9ff ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    23:11:41.0132 5104 BthPan - ok
    23:11:41.0272 5104 [ 738d0e9272f59eb7a1449c3ec118e6c4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    23:11:41.0304 5104 BTHPORT - ok
    23:11:41.0319 5104 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
    23:11:41.0335 5104 bthserv - ok
    23:11:41.0413 5104 [ f188b7394d81010767b6df3178519a37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    23:11:41.0413 5104 BTHUSB - ok
    23:11:41.0475 5104 [ 6bcfdc2b5b7f66d484486d4bd4b39a6b ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
    23:11:41.0491 5104 btwaudio - ok
    23:11:41.0538 5104 [ 82dc8b7c626e526681c1bebed2bc3ff9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
    23:11:41.0538 5104 btwavdt - ok
    23:11:41.0756 5104 [ d65aa164acd0f6706dbcfbbcc9731584 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    23:11:41.0818 5104 btwdins - ok
    23:11:41.0865 5104 [ 6149301dc3f81d6f9667a3fbac410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
    23:11:41.0881 5104 btwl2cap - ok
    23:11:41.0912 5104 [ 28e105ad3b79f440bf94780f507bf66a ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
    23:11:41.0912 5104 btwrchid - ok
    23:11:41.0943 5104 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    23:11:41.0943 5104 cdfs - ok
    23:11:42.0037 5104 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    23:11:42.0037 5104 cdrom - ok
    23:11:42.0099 5104 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
    23:11:42.0115 5104 CertPropSvc - ok
    23:11:42.0177 5104 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    23:11:42.0177 5104 circlass - ok
    23:11:42.0255 5104 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
    23:11:42.0271 5104 CLFS - ok
    23:11:42.0427 5104 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    23:11:42.0427 5104 clr_optimization_v2.0.50727_32 - ok
    23:11:42.0520 5104 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    23:11:42.0536 5104 clr_optimization_v2.0.50727_64 - ok
    23:11:42.0723 5104 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    23:11:42.0739 5104 clr_optimization_v4.0.30319_32 - ok
    23:11:42.0817 5104 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    23:11:42.0817 5104 clr_optimization_v4.0.30319_64 - ok
    23:11:42.0879 5104 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    23:11:42.0879 5104 CmBatt - ok
    23:11:42.0926 5104 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
    23:11:42.0926 5104 cmdide - ok
    23:11:43.0051 5104 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
    23:11:43.0066 5104 CNG - ok
    23:11:43.0113 5104 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    23:11:43.0113 5104 Compbatt - ok
    23:11:43.0176 5104 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    23:11:43.0176 5104 CompositeBus - ok
    23:11:43.0191 5104 COMSysApp - ok
    23:11:43.0238 5104 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    23:11:43.0238 5104 crcdisk - ok
    23:11:43.0300 5104 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
    23:11:43.0316 5104 CryptSvc - ok
    23:11:43.0425 5104 [ d00a4fe22216265783a08a05d268b902 ] DCamUSBVM C:\Windows\system32\Drivers\usbVM31b.sys
    23:11:43.0425 5104 DCamUSBVM - ok
    23:11:43.0550 5104 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    23:11:43.0597 5104 DcomLaunch - ok
    23:11:43.0628 5104 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
    23:11:43.0628 5104 defragsvc - ok
    23:11:43.0706 5104 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    23:11:43.0706 5104 DfsC - ok
    23:11:43.0815 5104 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
    23:11:43.0815 5104 Dhcp - ok
    23:11:43.0878 5104 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
    23:11:43.0893 5104 discache - ok
    23:11:43.0924 5104 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
    23:11:43.0924 5104 Disk - ok
    23:11:44.0018 5104 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    23:11:44.0034 5104 Dnscache - ok
    23:11:44.0080 5104 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
    23:11:44.0080 5104 dot3svc - ok
    23:11:44.0143 5104 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
    23:11:44.0143 5104 DPS - ok
    23:11:44.0190 5104 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    23:11:44.0190 5104 drmkaud - ok
    23:11:44.0346 5104 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    23:11:44.0377 5104 DXGKrnl - ok
    23:11:44.0470 5104 [ a0d5450b3d4689dce4cbbc8268141c37 ] e.dentifier2 C:\Windows\system32\DRIVERS\aabed2.sys
    23:11:44.0470 5104 e.dentifier2 - ok
    23:11:44.0502 5104 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
    23:11:44.0517 5104 EapHost - ok
    23:11:44.0736 5104 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    23:11:44.0798 5104 ebdrv - ok
    23:11:44.0845 5104 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
    23:11:44.0860 5104 EFS - ok
    23:11:45.0016 5104 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    23:11:45.0063 5104 ehRecvr - ok
    23:11:45.0094 5104 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
    23:11:45.0110 5104 ehSched - ok
    23:11:45.0141 5104 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    23:11:45.0141 5104 elxstor - ok
    23:11:45.0188 5104 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
    23:11:45.0188 5104 ErrDev - ok
    23:11:45.0235 5104 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
    23:11:45.0235 5104 EventSystem - ok
    23:11:45.0313 5104 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
    23:11:45.0313 5104 exfat - ok
    23:11:45.0344 5104 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
    23:11:45.0360 5104 fastfat - ok
    23:11:45.0500 5104 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
    23:11:45.0516 5104 Fax - ok
    23:11:45.0562 5104 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    23:11:45.0562 5104 fdc - ok
    23:11:45.0609 5104 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
    23:11:45.0625 5104 fdPHost - ok
    23:11:45.0656 5104 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    23:11:45.0656 5104 FDResPub - ok
    23:11:45.0687 5104 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    23:11:45.0687 5104 FileInfo - ok
    23:11:45.0703 5104 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    23:11:45.0718 5104 Filetrace - ok
    23:11:45.0750 5104 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    23:11:45.0750 5104 flpydisk - ok
    23:11:45.0796 5104 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    23:11:45.0812 5104 FltMgr - ok
    23:11:45.0937 5104 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
    23:11:46.0015 5104 FontCache - ok
    23:11:46.0124 5104 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    23:11:46.0124 5104 FontCache3.0.0.0 - ok
    23:11:46.0140 5104 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    23:11:46.0155 5104 FsDepends - ok
    23:11:46.0186 5104 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    23:11:46.0186 5104 Fs_Rec - ok
    23:11:46.0280 5104 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    23:11:46.0296 5104 fvevol - ok
    23:11:46.0342 5104 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    23:11:46.0342 5104 gagp30kx - ok
    23:11:46.0436 5104 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    23:11:46.0452 5104 GEARAspiWDM - ok
    23:11:46.0608 5104 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
    23:11:46.0623 5104 gpsvc - ok
    23:11:46.0842 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0857 5104 gupdate - ok
    23:11:46.0888 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0888 5104 gupdatem - ok
    23:11:46.0935 5104 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    23:11:46.0935 5104 gusvc - ok
    23:11:46.0966 5104 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    23:11:46.0966 5104 hcw85cir - ok
    23:11:47.0044 5104 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    23:11:47.0060 5104 HdAudAddService - ok
    23:11:47.0076 5104 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    23:11:47.0076 5104 HDAudBus - ok
    23:11:47.0091 5104 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    23:11:47.0091 5104 HidBatt - ok
    23:11:47.0122 5104 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    23:11:47.0122 5104 HidBth - ok
    23:11:47.0169 5104 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    23:11:47.0169 5104 HidIr - ok
    23:11:47.0200 5104 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
    23:11:47.0216 5104 hidserv - ok
    23:11:47.0294 5104 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    23:11:47.0294 5104 HidUsb - ok
    23:11:47.0341 5104 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    23:11:47.0341 5104 hkmsvc - ok
    23:11:47.0403 5104 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    23:11:47.0403 5104 HomeGroupListener - ok
    23:11:47.0450 5104 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    23:11:47.0466 5104 HomeGroupProvider - ok
    23:11:47.0528 5104 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    23:11:47.0528 5104 HpSAMD - ok
    23:11:47.0590 5104 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    23:11:47.0637 5104 HTTP - ok
    23:11:47.0684 5104 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    23:11:47.0684 5104 hwpolicy - ok
    23:11:47.0746 5104 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    23:11:47.0746 5104 i8042prt - ok
    23:11:47.0918 5104 [ 7548066df68a8a1a56b043359f915f37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    23:11:47.0934 5104 IAANTMON - ok
    23:11:47.0980 5104 [ 1d004cb1da6323b1f55caef7f94b61d9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    23:11:47.0980 5104 iaStor - ok
    23:11:47.0996 5104 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    23:11:48.0012 5104 iaStorV - ok
    23:11:48.0214 5104 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    23:11:48.0261 5104 idsvc - ok
    23:11:48.0792 5104 [ a87261ef1546325b559374f5689cf5bc ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    23:11:48.0948 5104 igfx - ok
    23:11:48.0979 5104 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    23:11:48.0979 5104 iirsp - ok
    23:11:49.0182 5104 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
    23:11:49.0244 5104 IKEEXT - ok
    23:11:49.0462 5104 [ b16fc828ce7a76a8f1ce682e6ead2627 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    23:11:49.0525 5104 IntcAzAudAddService - ok
    23:11:49.0525 5104 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
    23:11:49.0525 5104 intelide - ok
    23:11:49.0556 5104 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    23:11:49.0572 5104 intelppm - ok
    23:11:49.0618 5104 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    23:11:49.0634 5104 IPBusEnum - ok
    23:11:49.0681 5104 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    23:11:49.0681 5104 IpFilterDriver - ok
    23:11:49.0712 5104 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    23:11:49.0728 5104 IPMIDRV - ok
    23:11:49.0821 5104 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    23:11:49.0821 5104 IPNAT - ok
    23:11:50.0008 5104 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    23:11:50.0071 5104 iPod Service - ok
    23:11:50.0118 5104 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    23:11:50.0118 5104 IRENUM - ok
    23:11:50.0180 5104 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    23:11:50.0180 5104 isapnp - ok
    23:11:50.0258 5104 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    23:11:50.0258 5104 iScsiPrt - ok
    23:11:50.0305 5104 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    23:11:50.0336 5104 kbdclass - ok
    23:11:50.0367 5104 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    23:11:50.0367 5104 kbdhid - ok
    23:11:50.0383 5104 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
    23:11:50.0383 5104 KeyIso - ok
    23:11:50.0430 5104 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    23:11:50.0430 5104 KSecDD - ok
    23:11:50.0461 5104 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    23:11:50.0476 5104 KSecPkg - ok
    23:11:50.0508 5104 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    23:11:50.0508 5104 ksthunk - ok
    23:11:50.0601 5104 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
    23:11:50.0617 5104 KtmRm - ok
    23:11:50.0679 5104 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    23:11:50.0679 5104 LanmanServer - ok
    23:11:50.0710 5104 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    23:11:50.0726 5104 LanmanWorkstation - ok
    23:11:50.0788 5104 [ 156ab2e56dc3ca0b582e3362e07cded7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
    23:11:50.0788 5104 lirsgt - ok
    23:11:50.0804 5104 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    23:11:50.0820 5104 lltdio - ok
    23:11:50.0882 5104 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
    23:11:50.0898 5104 lltdsvc - ok
    23:11:50.0913 5104 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    23:11:50.0929 5104 lmhosts - ok
    23:11:51.0022 5104 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    23:11:51.0022 5104 LSI_FC - ok
    23:11:51.0038 5104 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    23:11:51.0038 5104 LSI_SAS - ok
    23:11:51.0069 5104 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    23:11:51.0069 5104 LSI_SAS2 - ok
    23:11:51.0085 5104 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    23:11:51.0085 5104 LSI_SCSI - ok
    23:11:51.0100 5104 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
    23:11:51.0116 5104 luafv - ok
    23:11:51.0147 5104 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    23:11:51.0147 5104 Mcx2Svc - ok
    23:11:51.0210 5104 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    23:11:51.0225 5104 megasas - ok
    23:11:51.0241 5104 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    23:11:51.0256 5104 MegaSR - ok
    23:11:51.0412 5104 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
    23:11:51.0412 5104 Microsoft Office Groove Audit Service - ok
    23:11:51.0475 5104 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
    23:11:51.0490 5104 MMCSS - ok
    23:11:51.0506 5104 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
    23:11:51.0522 5104 Modem - ok
    23:11:51.0537 5104 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    23:11:51.0537 5104 monitor - ok
    23:11:51.0553 5104 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    23:11:51.0568 5104 mouclass - ok
    23:11:51.0600 5104 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    23:11:51.0600 5104 mouhid - ok
    23:11:51.0631 5104 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    23:11:51.0646 5104 mountmgr - ok
    23:11:51.0756 5104 [ 96aa8ba23142cc8e2b30f3cae0c80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    23:11:51.0756 5104 MozillaMaintenance - ok
    23:11:51.0802 5104 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
    23:11:51.0802 5104 mpio - ok
    23:11:52.0270 5104 [ 0ebb390b7aeec45ec061d9870a34fd42 ] MpKsl28985dda C:\Windows\Temp\MpKsl28985dda.sys
    23:11:52.0270 5104 MpKsl28985dda - ok
    23:11:52.0317 5104 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    23:11:52.0317 5104 mpsdrv - ok
    23:11:52.0364 5104 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    23:11:52.0364 5104 MRxDAV - ok
    23:11:52.0395 5104 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    23:11:52.0411 5104 mrxsmb - ok
    23:11:52.0473 5104 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    23:11:52.0489 5104 mrxsmb10 - ok
    23:11:52.0504 5104 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    23:11:52.0520 5104 mrxsmb20 - ok
    23:11:52.0567 5104 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    23:11:52.0567 5104 msahci - ok
    23:11:52.0582 5104 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    23:11:52.0598 5104 msdsm - ok
    23:11:52.0614 5104 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
    23:11:52.0614 5104 MSDTC - ok
    23:11:52.0645 5104 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    23:11:52.0660 5104 Msfs - ok
    23:11:52.0707 5104 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    23:11:52.0723 5104 mshidkmdf - ok
    23:11:52.0754 5104 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    23:11:52.0770 5104 msisadrv - ok
    23:11:52.0816 5104 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    23:11:52.0832 5104 MSiSCSI - ok
    23:11:52.0832 5104 msiserver - ok
    23:11:52.0863 5104 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    23:11:52.0863 5104 MSKSSRV - ok
    23:11:52.0879 5104 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    23:11:52.0894 5104 MSPCLOCK - ok
    23:11:52.0910 5104 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    23:11:52.0910 5104 MSPQM - ok
    23:11:52.0957 5104 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    23:11:52.0957 5104 MsRPC - ok
    23:11:53.0004 5104 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    23:11:53.0004 5104 mssmbios - ok
    23:11:53.0019 5104 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    23:11:53.0019 5104 MSTEE - ok
    23:11:53.0066 5104 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    23:11:53.0066 5104 MTConfig - ok
    23:11:53.0113 5104 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
    23:11:53.0113 5104 Mup - ok
    23:11:53.0160 5104 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
    23:11:53.0175 5104 napagent - ok
    23:11:53.0300 5104 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    23:11:53.0300 5104 NativeWifiP - ok
    23:11:53.0440 5104 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers
    dis.sys
    23:11:53.0487 5104 NDIS - ok
    23:11:53.0550 5104 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    23:11:53.0565 5104 NdisCap - ok
    23:11:53.0612 5104 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    23:11:53.0612 5104 NdisTapi - ok
    23:11:53.0674 5104 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    23:11:53.0674 5104 Ndisuio - ok
    23:11:53.0721 5104 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    23:11:53.0721 5104 NdisWan - ok
    23:11:53.0799 5104 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    23:11:53.0799 5104 NDProxy - ok
    23:11:53.0846 5104 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    23:11:53.0862 5104 NetBIOS - ok
    23:11:53.0924 5104 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    23:11:53.0924 5104 NetBT - ok
    23:11:53.0971 5104 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
    23:11:53.0971 5104 Netlogon - ok
    23:11:54.0080 5104 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32
    etman.dll
    23:11:54.0096 5104 Netman - ok
    23:11:54.0142 5104 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32
    etprofm.dll
    23:11:54.0174 5104 netprofm - ok
    23:11:54.0205 5104 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    23:11:54.0205 5104 NetTcpPortSharing - ok
    23:11:54.0766 5104 [ 705283c02177809ca9fa7cc58a4f1e77 ] netw5v64 C:\Windows\system32\DRIVERS
    etw5v64.sys
    23:11:54.0876 5104 netw5v64 - ok
    23:11:54.0907 5104 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    23:11:54.0907 5104 nfrd960 - ok
    23:11:54.0969 5104 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32
    lasvc.dll
    23:11:54.0969 5104 NlaSvc - ok
    23:11:55.0000 5104 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    23:11:55.0000 5104 Npfs - ok
    23:11:55.0032 5104 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32
    sisvc.dll
    23:11:55.0032 5104 nsi - ok
    23:11:55.0047 5104 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    23:11:55.0063 5104 nsiproxy - ok
    23:11:55.0203 5104 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    23:11:55.0250 5104 Ntfs - ok
    23:11:55.0281 5104 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
    23:11:55.0281 5104 Null - ok
    23:11:55.0359 5104 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers
    vraid.sys
    23:11:55.0375 5104 nvraid - ok
    23:11:55.0390 5104 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers
    vstor.sys
    23:11:55.0406 5104 nvstor - ok
    23:11:55.0437 5104 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    23:11:55.0437 5104 nv_agp - ok
    23:11:55.0780 5104 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    23:11:55.0796 5104 odserv - ok
    23:11:55.0827 5104 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    23:11:55.0843 5104 ohci1394 - ok
    23:11:55.0968 5104 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    23:11:55.0968 5104 ose - ok
    23:11:56.0077 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    23:11:56.0092 5104 p2pimsvc - ok
    23:11:56.0139 5104 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
    23:11:56.0139 5104 p2psvc - ok
    23:11:56.0170 5104 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    23:11:56.0186 5104 Parport - ok
    23:11:56.0217 5104 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
    23:11:56.0233 5104 partmgr - ok
    23:11:56.0264 5104 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    23:11:56.0264 5104 PcaSvc - ok
    23:11:56.0311 5104 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
    23:11:56.0326 5104 pci - ok
    23:11:56.0342 5104 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
    23:11:56.0342 5104 pciide - ok
    23:11:56.0373 5104 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    23:11:56.0389 5104 pcmcia - ok
    23:11:56.0404 5104 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
    23:11:56.0404 5104 pcw - ok
    23:11:56.0451 5104 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    23:11:56.0482 5104 PEAUTH - ok
    23:11:57.0231 5104 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
    23:11:57.0231 5104 PerfHost - ok
    23:11:57.0356 5104 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
    23:11:57.0403 5104 pla - ok
    23:11:57.0512 5104 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    23:11:57.0543 5104 PlugPlay - ok
    23:11:57.0559 5104 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    23:11:57.0559 5104 PNRPAutoReg - ok
    23:11:57.0574 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    23:11:57.0574 5104 PNRPsvc - ok
    23:11:57.0668 5104 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    23:11:57.0699 5104 PolicyAgent - ok
    23:11:57.0746 5104 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
    23:11:57.0746 5104 Power - ok
    23:11:57.0808 5104 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    23:11:57.0808 5104 PptpMiniport - ok
    23:11:57.0824 5104 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
    23:11:57.0840 5104 Processor - ok
    23:11:57.0871 5104 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
    23:11:57.0886 5104 ProfSvc - ok
    23:11:57.0902 5104 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    23:11:57.0902 5104 ProtectedStorage - ok
    23:11:57.0996 5104 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    23:11:58.0011 5104 Psched - ok
    23:11:58.0058 5104 [ aed797cca02783296c68aa10d0cff8a9 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    23:11:58.0058 5104 PxHlpa64 - ok
    23:11:58.0198 5104 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    23:11:58.0292 5104 ql2300 - ok
    23:11:58.0308 5104 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    23:11:58.0323 5104 ql40xx - ok
    23:11:58.0417 5104 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
    23:11:58.0417 5104 QWAVE - ok
    23:11:58.0464 5104 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    23:11:58.0464 5104 QWAVEdrv - ok
    23:11:58.0495 5104 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    23:11:58.0495 5104 RasAcd - ok
    23:11:58.0588 5104 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    23:11:58.0588 5104 RasAgileVpn - ok
    23:11:58.0635 5104 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
    23:11:58.0651 5104 RasAuto - ok
    23:11:58.0713 5104 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    23:11:58.0713 5104 Rasl2tp - ok
    23:11:58.0807 5104 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
    23:11:58.0822 5104 RasMan - ok
    23:11:58.0885 5104 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    23:11:58.0885 5104 RasPppoe - ok
    23:11:58.0932 5104 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    23:11:58.0932 5104 RasSstp - ok
    23:11:59.0056 5104 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    23:11:59.0103 5104 rdbss - ok
    23:11:59.0119 5104 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    23:11:59.0119 5104 rdpbus - ok
    23:11:59.0150 5104 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    23:11:59.0150 5104 RDPCDD - ok
    23:11:59.0181 5104 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    23:11:59.0181 5104 RDPENCDD - ok
    23:11:59.0197 5104 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    23:11:59.0197 5104 RDPREFMP - ok
    23:11:59.0228 5104 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    23:11:59.0244 5104 RDPWD - ok
    23:11:59.0306 5104 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    23:11:59.0322 5104 rdyboost - ok
    23:11:59.0384 5104 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    23:11:59.0384 5104 RemoteAccess - ok
    23:11:59.0446 5104 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    23:11:59.0478 5104 RemoteRegistry - ok
    23:11:59.0509 5104 [ 3dd798846e2c28102b922c56e71b7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    23:11:59.0509 5104 RFCOMM - ok
    23:11:59.0524 5104 [ 258aadb43e3f3468b5cf8cb0f84872c2 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
    23:11:59.0540 5104 rimsptsk - ok
    23:11:59.0571 5104 RimUsb - ok
    23:11:59.0618 5104 [ 71e182a0de1cecb3f912960716345405 ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
    23:11:59.0618 5104 risdptsk - ok
    23:11:59.0649 5104 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    23:11:59.0649 5104 RpcEptMapper - ok
    23:11:59.0665 5104 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
    23:11:59.0680 5104 RpcLocator - ok
    23:11:59.0743 5104 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
    23:11:59.0758 5104 RpcSs - ok
    23:11:59.0805 5104 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    23:11:59.0805 5104 rspndr - ok
    23:11:59.0852 5104 [ 34f05c417f038ffa3bef69b798d7d7dd ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
    23:11:59.0868 5104 RTHDMIAzAudService - ok
    23:12:00.0008 5104 [ 01e6a1e53e39a0b1e2b6ae62bf52e8ec ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    23:12:00.0024 5104 RtkAudioService - ok
    23:12:00.0024 5104 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
    23:12:00.0024 5104 SamSs - ok
    23:12:00.0102 5104 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    23:12:00.0102 5104 sbp2port - ok
    23:12:00.0148 5104 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
    23:12:00.0148 5104 SCardSvr - ok
    23:12:00.0180 5104 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    23:12:00.0195 5104 scfilter - ok
    23:12:00.0336 5104 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
    23:12:00.0367 5104 Schedule - ok
    23:12:00.0429 5104 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
    23:12:00.0429 5104 SCPolicySvc - ok
    23:12:00.0492 5104 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
    23:12:00.0492 5104 sdbus - ok
    23:12:00.0523 5104 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    23:12:00.0523 5104 SDRSVC - ok
    23:12:00.0554 5104 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    23:12:00.0554 5104 secdrv - ok
    23:12:00.0570 5104 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
    23:12:00.0570 5104 seclogon - ok
    23:12:00.0601 5104 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
    23:12:00.0616 5104 SENS - ok
    23:12:00.0632 5104 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    23:12:00.0648 5104 SensrSvc - ok
    23:12:00.0679 5104 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    23:12:00.0694 5104 Serenum - ok
    23:12:00.0741 5104 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    23:12:00.0741 5104 Serial - ok
    23:12:00.0757 5104 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    23:12:00.0757 5104 sermouse - ok
    23:12:00.0819 5104 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    23:12:00.0819 5104 SessionEnv - ok
    23:12:00.0850 5104 [ 70f9c476b62de4f2823e918a6c181ade ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
    23:12:00.0850 5104 SFEP - ok
    23:12:00.0882 5104 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    23:12:00.0882 5104 sffdisk - ok
    23:12:00.0897 5104 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    23:12:00.0897 5104 sffp_mmc - ok
    23:12:00.0913 5104 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    23:12:00.0913 5104 sffp_sd - ok
    23:12:00.0960 5104 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    23:12:00.0975 5104 sfloppy - ok
    23:12:01.0084 5104 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    23:12:01.0084 5104 ShellHWDetection - ok
    23:12:01.0131 5104 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    23:12:01.0131 5104 SiSRaid2 - ok
    23:12:01.0162 5104 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    23:12:01.0178 5104 SiSRaid4 - ok
    23:12:01.0225 5104 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    23:12:01.0225 5104 Smb - ok
    23:12:01.0287 5104 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    23:12:01.0287 5104 SNMPTRAP - ok
    23:12:01.0381 5104 [ 98886c88a1cb13d61672ae2c638b7e1c ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
    23:12:01.0396 5104 SOHCImp - ok
    23:12:01.0443 5104 [ 442a13f395546f4564c377296d43b564 ] SOHDBSvr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
    23:12:01.0443 5104 SOHDBSvr - ok
    23:12:01.0506 5104 [ 556681be668d71dc162391a45422b52c ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
    23:12:01.0506 5104 SOHDms - ok
    23:12:01.0537 5104 [ 72b46103e4111439109acf5882627c24 ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
    23:12:01.0537 5104 SOHDs - ok
    23:12:01.0568 5104 [ 725b6e9cd1959271ac993dc035e1606d ] SOHPlMgr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
    23:12:01.0568 5104 SOHPlMgr - ok
    23:12:01.0568 5104 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
    23:12:01.0568 5104 spldr - ok
    23:12:01.0630 5104 [ 85daa09a98c9286d4ea2ba8d0e644377 ] Spooler C:\Windows\System32\spoolsv.exe
    23:12:01.0662 5104 Spooler - ok
    23:12:01.0896 5104 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
    23:12:01.0974 5104 sppsvc - ok
    23:12:02.0005 5104 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    23:12:02.0005 5104 sppuinotify - ok
    23:12:02.0083 5104 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
    23:12:02.0114 5104 srv - ok
    23:12:02.0145 5104 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    23:12:02.0161 5104 srv2 - ok
    23:12:02.0192 5104 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
    23:12:02.0208 5104 SrvHsfHDA - ok
    23:12:02.0286 5104 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
    23:12:02.0348 5104 SrvHsfV92 - ok
    23:12:02.0442 5104 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
    23:12:02.0474 5104 SrvHsfWinac - ok
    23:12:02.0552 5104 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    23:12:02.0552 5104 srvnet - ok
    23:12:02.0599 5104 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    23:12:02.0599 5104 SSDPSRV - ok
    23:12:02.0630 5104 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
    23:12:02.0630 5104 SstpSvc - ok
    23:12:02.0661 5104 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    23:12:02.0661 5104 stexstor - ok
    23:12:02.0723 5104 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
    23:12:02.0739 5104 stisvc - ok
    23:12:02.0786 5104 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
    23:12:02.0786 5104 swenum - ok
    23:12:02.0848 5104 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
    23:12:02.0879 5104 swprv - ok
    23:12:03.0051 5104 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
    23:12:03.0098 5104 SysMain - ok
    23:12:03.0160 5104 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    23:12:03.0160 5104 TabletInputService - ok
    23:12:03.0223 5104 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    23:12:03.0238 5104 TapiSrv - ok
    23:12:03.0269 5104 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
    23:12:03.0269 5104 TBS - ok
    23:12:03.0394 5104 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    23:12:03.0441 5104 Tcpip - ok
    23:12:03.0581 5104 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    23:12:03.0597 5104 TCPIP6 - ok
    23:12:03.0644 5104 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    23:12:03.0644 5104 tcpipreg - ok
    23:12:03.0722 5104 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    23:12:03.0722 5104 TDPIPE - ok
    23:12:03.0753 5104 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    23:12:03.0769 5104 TDTCP - ok
    23:12:03.0815 5104 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    23:12:03.0815 5104 tdx - ok
    23:12:03.0878 5104 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    23:12:03.0893 5104 TermDD - ok
    23:12:03.0956 5104 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
    23:12:04.0003 5104 TermService - ok
    23:12:04.0034 5104 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
    23:12:04.0034 5104 Themes - ok
    23:12:04.0065 5104 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
    23:12:04.0081 5104 THREADORDER - ok
    23:12:04.0112 5104 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
    23:12:04.0112 5104 TrkWks - ok
    23:12:04.0237 5104 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    23:12:04.0252 5104 TrustedInstaller - ok
    23:12:04.0299 5104 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    23:12:04.0315 5104 tssecsrv - ok
    23:12:04.0408 5104 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    23:12:04.0408 5104 TsUsbFlt - ok
    23:12:04.0486 5104 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    23:12:04.0502 5104 tunnel - ok
    23:12:04.0533 5104 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    23:12:04.0533 5104 uagp35 - ok
    23:12:04.0611 5104 [ 63f6d08c54d5b3c1b12a6172032055c7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
    23:12:04.0611 5104 uCamMonitor - ok
    23:12:04.0658 5104 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    23:12:04.0673 5104 udfs - ok
    23:12:04.0767 5104 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    23:12:04.0783 5104 UI0Detect - ok
    23:12:04.0814 5104 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    23:12:04.0814 5104 uliagpkx - ok
    23:12:04.0861 5104 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    23:12:04.0876 5104 umbus - ok
    23:12:04.0892 5104 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    23:12:04.0892 5104 UmPass - ok
    23:12:04.0954 5104 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
    23:12:04.0970 5104 upnphost - ok
    23:12:05.0001 5104 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
    23:12:05.0001 5104 USBAAPL64 - ok
    23:12:05.0032 5104 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    23:12:05.0048 5104 usbccgp - ok
    23:12:05.0126 5104 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    23:12:05.0141 5104 usbcir - ok
    23:12:05.0157 5104 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    23:12:05.0157 5104 usbehci - ok
    23:12:05.0219 5104 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    23:12:05.0219 5104 usbhub - ok
    23:12:05.0251 5104 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    23:12:05.0251 5104 usbohci - ok
    23:12:05.0297 5104 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    23:12:05.0297 5104 usbprint - ok
    23:12:05.0329 5104 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    23:12:05.0329 5104 USBSTOR - ok
    23:12:05.0375 5104 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    23:12:05.0375 5104 usbuhci - ok
    23:12:05.0500 5104 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    23:12:05.0500 5104 usbvideo - ok
    23:12:05.0563 5104 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
    23:12:05.0563 5104 UxSms - ok
    23:12:05.0719 5104 [ 4e7135d6d0127067e4cfee12259f895d ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
    23:12:05.0719 5104 VAIO Entertainment TV Device Arbitration Service - ok
    23:12:05.0890 5104 [ d4197cf0c8567046fd4af28ff47af528 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
    23:12:05.0890 5104 VAIO Event Service - ok
    23:12:06.0031 5104 [ 2d6605c1f0bbd0f71a4cb3a5b1e07240 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
    23:12:06.0046 5104 VAIO Power Management - ok
    23:12:06.0077 5104 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
    23:12:06.0077 5104 VaultSvc - ok
    23:12:06.0218 5104 [ 06fe5beddadb158d84e6de33cbe19f3e ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
    23:12:06.0249 5104 VCFw - ok
    23:12:06.0374 5104 [ 34063c0b842e73662067f9b03947c55c ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
    23:12:06.0374 5104 VcmIAlzMgr - ok
    23:12:06.0483 5104 [ a8f5d1651a324abc6c308891a1252ee3 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
    23:12:06.0483 5104 VcmINSMgr - ok
    23:12:06.0608 5104 [ db544b487f360128dc1c383e0a6fcc2f ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
    23:12:06.0623 5104 VcmXmlIfHelper - ok
    23:12:06.0623 5104 Vcsw - ok
    23:12:06.0655 5104 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    23:12:06.0655 5104 vdrvroot - ok
    23:12:06.0733 5104 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
    23:12:06.0779 5104 vds - ok
    23:12:06.0826 5104 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    23:12:06.0826 5104 vga - ok
    23:12:06.0842 5104 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
    23:12:06.0857 5104 VgaSave - ok
    23:12:06.0889 5104 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    23:12:06.0889 5104 vhdmp - ok
    23:12:06.0904 5104 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
    23:12:06.0904 5104 viaide - ok
    23:12:06.0935 5104 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    23:12:06.0935 5104 volmgr - ok
    23:12:06.0982 5104 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    23:12:06.0998 5104 volmgrx - ok
    23:12:07.0013 5104 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    23:12:07.0029 5104 volsnap - ok
    23:12:07.0060 5104 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    23:12:07.0076 5104 vsmraid - ok
    23:12:07.0279 5104 [ e9638e51373d527e22438b80126b64f9 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
    23:12:07.0310 5104 VSNService - ok
    23:12:07.0466 5104 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
    23:12:07.0497 5104 VSS - ok
    23:12:07.0528 5104 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    23:12:07.0528 5104 vwifibus - ok
    23:12:07.0559 5104 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    23:12:07.0559 5104 vwififlt - ok
    23:12:07.0591 5104 [ d8bef4ac1eac809dbdbd441d6cff6c4c ] VzCdbSvc C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    23:12:07.0606 5104 VzCdbSvc - ok
    23:12:07.0669 5104 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
    23:12:07.0684 5104 W32Time - ok
    23:12:07.0747 5104 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    23:12:07.0747 5104 WacomPen - ok
    23:12:07.0840 5104 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    23:12:07.0856 5104 WANARP - ok
    23:12:07.0856 5104 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    23:12:07.0856 5104 Wanarpv6 - ok
    23:12:08.0043 5104 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    23:12:08.0090 5104 WatAdminSvc - ok
    23:12:08.0230 5104 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
    23:12:08.0261 5104 wbengine - ok
    23:12:08.0293 5104 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    23:12:08.0308 5104 WbioSrvc - ok
    23:12:08.0371 5104 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
    23:12:08.0402 5104 wcncsvc - ok
    23:12:08.0417 5104 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    23:12:08.0417 5104 WcsPlugInService - ok
    23:12:08.0449 5104 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
    23:12:08.0449 5104 Wd - ok
    23:12:08.0527 5104 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    23:12:08.0542 5104 Wdf01000 - ok
    23:12:08.0558 5104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    23:12:08.0558 5104 WdiServiceHost - ok
    23:12:08.0573 5104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    23:12:08.0573 5104 WdiSystemHost - ok
    23:12:08.0636 5104 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
    23:12:08.0651 5104 WebClient - ok
    23:12:08.0698 5104 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    23:12:08.0698 5104 Wecsvc - ok
    23:12:08.0714 5104 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    23:12:08.0729 5104 wercplsupport - ok
    23:12:08.0776 5104 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
    23:12:08.0792 5104 WerSvc - ok
    23:12:08.0823 5104 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    23:12:08.0839 5104 WfpLwf - ok
    23:12:08.0854 5104 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    23:12:08.0854 5104 WIMMount - ok
    23:12:08.0854 5104 WinHttpAutoProxySvc - ok
    23:12:08.0963 5104 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    23:12:08.0963 5104 Winmgmt - ok
    23:12:09.0151 5104 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
    23:12:09.0197 5104 WinRM - ok
    23:12:09.0291 5104 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    23:12:09.0291 5104 WinUsb - ok
    23:12:09.0385 5104 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
    23:12:09.0400 5104 Wlansvc - ok
    23:12:09.0697 5104 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    23:12:09.0743 5104 wlidsvc - ok
    23:12:09.0790 5104 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    23:12:09.0790 5104 WmiAcpi - ok
    23:12:09.0821 5104 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    23:12:09.0837 510

















  • Ik weet het even niet.

    Het TDSSKillerlog is nog steeds inccompleet.

    En geen beloofd log van HitmanPro!
  • Hallo,

    Ik snap het ook niet. Als ik de tekst in het bericht plak en op voorbeeld druk staat alles er goed in, maar bij bevestigen gaat er iets mis. Ik zal eerst de Hitman log bijvoegen en in een volgend bericht nogmaals de TDSSkiller log plaatsen.


    [code:1:ded515586e]
    HitmanPro 3.6.1.164
    www.hitmanpro.com

    Computer name . . . . : JENSEN
    Windows . . . . . . . : 6.1.1.7601.X64/2
    User name . . . . . . : Jensen\Jesper
    UAC . . . . . . . . . : Disabled
    License . . . . . . . : Free

    Scan date . . . . . . : 2012-08-22 18:14:38
    Scan mode . . . . . . : Normal
    Scan duration . . . . : 4m 23s
    Disk access mode . . : Direct disk access (SRB)
    Cloud . . . . . . . . : Internet
    Reboot . . . . . . . : No

    Threats . . . . . . . : 0
    Traces . . . . . . . : 154

    Objects scanned . . . : 1.602.596
    Files scanned . . . . : 54.339
    Remnants scanned . . : 416.664 files / 1.131.593 keys

    Cookies _____________________________________________________________________

    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\002W5G9L.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\01ZJJ3S3.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\03Z2CLO4.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\04JAMG34.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\053LS2PB.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\094E6WSX.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\0A8M4V1I.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\0CNA8S1P.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\12ZY1VU8.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\16KOH2LE.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\19T7SNB0.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\1A9J2L8W.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\1GNRM60L.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\1HUV3GVY.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\1IBYZ681.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\1KL14XAA.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\26Q9OM4Y.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\2ELQRVSR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\2ITG4IWZ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\2IX6BIGT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\2RDCBIJZ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\37WXGJ64.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\3DKNBED2.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\3MRBKG9M.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\3UR7C5UZ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\4144OAAS.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\45M8K1C6.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\45QWGQSV.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\48FRFVD1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\4VPVD4MS.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\5HTD7SNV.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\5XWCFYRT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6840LQ05.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6A284Y2P.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6FQUAIVO.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6GWIR11G.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6KVS670V.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6R473Z0V.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\6TE88QY5.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\75FQSHXR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\79NAAM08.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\7FVCFJV2.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\7L92PB7F.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\7RKE1CMR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\7RLG7X1H.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\7Y3AUKUC.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\85TR0LP5.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\8HLVJPMH.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\94MPQIAS.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\9CZ3O3GB.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\9GZKK2VP.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\9O2IDPAT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\A32M21JW.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\A4EAQUJ1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\AQ2K5RI0.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\AZ3I6M1Z.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\AZXI0MX1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\B0XDU0I9.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\B2X6URFD.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\BAVVKHIP.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\C0DG9JD1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\C2E753NW.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\C2EM92MM.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\C4XV70ZE.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\CAWGYR78.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\DFCR80IE.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\DIWCF5ZN.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\DNNTO9ZK.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\DOX54SFA.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\DW4NWK6A.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\E48KZJAO.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\ECB53KVF.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\ENC8PXUF.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\F06R3JG1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\FA4691JM.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\FGB9FDSI.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\GF2CBRRK.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\GSHP1LF3.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\HI2FEUGQ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\HLJ1KETY.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\HMSEA8ZA.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\IAEESU0N.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\IB2LNA6B.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\IJ7PRNT7.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\J3K8JH55.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\JI834IHR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\JXNF6G5H.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\JXZOOMDY.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\KUHRI8S7.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\KVWBXYS3.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\KYZLBAHO.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\L3K2UND0.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\L67KHR2N.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\LKB9CI5E.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\LOIG528H.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\M07RNFOU.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\M47HDLMG.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\MDD7VL1J.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\MM5BWXYR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\N5WTHTQB.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\N75Q4WGQ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\NWNKFZ0A.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\NZUGI7D9.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\O6DOKKXZ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\OJ034SYB.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\OSCO1DQV.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\OWCH05XY.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\P1GRFX68.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\P7SJ864K.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\PAZQNMRC.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\PELUZCM4.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\PNNCWKNT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\QNQJ8JVK.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\QOB3C3FT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\RAH6BN1B.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\RDTYKBIS.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\RH3NK34J.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\RK0AKQJ5.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\RVK1S0FT.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\S7LBU3U7.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\SKZYL2B8.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\SRPTIKJ1.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\T4AZVGMQ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\TEPMREVS.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\TSYYQA0S.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\TT8X8PCQ.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\U2TBDFKH.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\U3XBT8A6.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\U592ZCQR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\USXZ92E8.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\V327LGPR.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\VCBF6S9N.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\VE1005BD.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\VG3BHIWY.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\VM6YEI77.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\WF84TEY4.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\WHA5S3EX.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\WLRL9CC8.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\WNFGU9BB.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\WQJUVU1K.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\X4YSG9OV.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\XUHURABM.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\XVZQ5UZW.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\Y9T14H07.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\YK3FFO06.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\Z2LRG1U5.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\ZAY8IVWI.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\ZF1HBJS2.txt
    C:\Users\Jesper\AppData\Roaming\Microsoft\Windows\Cookies\ZXVNL8RX.txt
    C:\Users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\cookies.sqlite:ad.360yield.com
    C:\Users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\cookies.sqlite:doubleclick.net
    C:\Users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\cookies.sqlite:kpn.solution.weborama.fr
    C:\Users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\cookies.sqlite:volkswagenbm.solution.weborama.fr
    C:\Users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\cookies.sqlite:weborama.fr


    [/code:1:ded515586e]
  • 23:11:29.0276 5964 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
    23:11:29.0432 5964 ============================================================
    23:11:29.0432 5964 Current date / time: 2012/08/19 23:11:29.0432
    23:11:29.0432 5964 SystemInfo:
    23:11:29.0432 5964
    23:11:29.0432 5964 OS Version: 6.1.7601 ServicePack: 1.0
    23:11:29.0432 5964 Product type: Workstation
    23:11:29.0432 5964 ComputerName: JENSEN
    23:11:29.0432 5964 UserName: Jesper
    23:11:29.0432 5964 Windows directory: C:\Windows
    23:11:29.0432 5964 System windows directory: C:\Windows
    23:11:29.0432 5964 Running under WOW64
    23:11:29.0432 5964 Processor architecture: Intel x64
    23:11:29.0432 5964 Number of processors: 2
    23:11:29.0432 5964 Page size: 0x1000
    23:11:29.0432 5964 Boot type: Normal boot
    23:11:29.0432 5964 ============================================================
    23:11:30.0789 5964 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    23:11:30.0789 5964 ============================================================
    23:11:30.0789 5964 \Device\Harddisk0\DR0:
    23:11:30.0789 5964 MBR partitions:
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x12EF000, BlocksNum 0x32000
    23:11:30.0789 5964 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1321000, BlocksNum 0x39064830
    23:11:30.0789 5964 ============================================================
    23:11:30.0820 5964 C: <-> \Device\Harddisk0\DR0\Partition2
    23:11:30.0820 5964 ============================================================
    23:11:30.0820 5964 Initialize success
    23:11:30.0820 5964 ============================================================
    23:11:32.0489 5104 ============================================================
    23:11:32.0489 5104 Scan started
    23:11:32.0489 5104 Mode: Manual;
    23:11:32.0489 5104 ============================================================
    23:11:34.0252 5104 ================ Scan services =============================
    23:11:35.0750 5104 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    23:11:35.0750 5104 1394ohci - ok
    23:11:35.0844 5104 [ adc420616c501b45d26c0fd3ef1e54e4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
    23:11:35.0844 5104 ACDaemon - ok
    23:11:35.0890 5104 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    23:11:35.0922 5104 ACPI - ok
    23:11:35.0968 5104 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    23:11:35.0968 5104 AcpiPmi - ok
    23:11:36.0093 5104 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    23:11:36.0156 5104 adp94xx - ok
    23:11:36.0234 5104 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    23:11:36.0234 5104 adpahci - ok
    23:11:36.0296 5104 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    23:11:36.0296 5104 adpu320 - ok
    23:11:36.0327 5104 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    23:11:36.0327 5104 AeLookupSvc - ok
    23:11:36.0421 5104 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\Windows\system32\drivers\afd.sys
    23:11:36.0436 5104 AFD - ok
    23:11:36.0499 5104 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    23:11:36.0499 5104 agp440 - ok
    23:11:36.0561 5104 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\Windows\System32\alg.exe
    23:11:36.0561 5104 ALG - ok
    23:11:36.0608 5104 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\Windows\system32\drivers\aliide.sys
    23:11:36.0608 5104 aliide - ok
    23:11:36.0655 5104 [ 322a2c5d390109a4e50679ab58dea870 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    23:11:36.0655 5104 AMD External Events Utility - ok
    23:11:36.0702 5104 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\Windows\system32\drivers\amdide.sys
    23:11:36.0702 5104 amdide - ok
    23:11:36.0795 5104 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    23:11:36.0795 5104 AmdK8 - ok
    23:11:36.0826 5104 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    23:11:36.0826 5104 AmdPPM - ok
    23:11:36.0920 5104 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    23:11:36.0936 5104 amdsata - ok
    23:11:36.0998 5104 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    23:11:36.0998 5104 amdsbs - ok
    23:11:37.0045 5104 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    23:11:37.0045 5104 amdxata - ok
    23:11:37.0138 5104 [ 56bd886820c4aedf493cfcdf1ccfb004 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    23:11:37.0154 5104 ApfiltrService - ok
    23:11:37.0263 5104 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\Windows\system32\drivers\appid.sys
    23:11:37.0263 5104 AppID - ok
    23:11:37.0294 5104 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    23:11:37.0294 5104 AppIDSvc - ok
    23:11:37.0372 5104 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    23:11:37.0372 5104 Appinfo - ok
    23:11:37.0622 5104 [ 7ef47644b74ebe721cc32211d3c35e76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    23:11:37.0622 5104 Apple Mobile Device - ok
    23:11:37.0684 5104 [ c484f8ceb1717c540242531db7845c4e ] arc C:\Windows\system32\DRIVERS\arc.sys
    23:11:37.0684 5104 arc - ok
    23:11:37.0700 5104 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    23:11:37.0716 5104 arcsas - ok
    23:11:37.0778 5104 [ c130bc4a51b1382b2be8e44579ec4c0a ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
    23:11:37.0778 5104 ArcSoftKsUFilter - ok
    23:11:37.0825 5104 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    23:11:37.0840 5104 AsyncMac - ok
    23:11:37.0903 5104 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\Windows\system32\drivers\atapi.sys
    23:11:37.0903 5104 atapi - ok
    23:11:38.0106 5104 [ 5d4529ac4156e16bedb01441ae0cf984 ] athr C:\Windows\system32\DRIVERS\athrx.sys
    23:11:38.0152 5104 athr - ok
    23:11:38.0698 5104 [ de0ede41bc530f1759c6fffcb8c7a0cf ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    23:11:38.0839 5104 atikmdag - ok
    23:11:38.0964 5104 [ fc0e8778c000291caf60eb88c011e931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
    23:11:38.0979 5104 atksgt - ok
    23:11:39.0166 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    23:11:39.0182 5104 AudioEndpointBuilder - ok
    23:11:39.0198 5104 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    23:11:39.0198 5104 AudioSrv - ok
    23:11:39.0432 5104 [ aa054cd537357f03d5ba6aba7562b35f ] avg9emc C:\Program Files (x86)\AVG\AVG9\avgemc.exe
    23:11:39.0510 5104 avg9emc - ok
    23:11:39.0572 5104 [ c4d15594db5be042d3346ea58df87d89 ] avg9wd C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
    23:11:39.0588 5104 avg9wd - ok
    23:11:39.0619 5104 [ b447db072bf939db9e07bef2adf4ecbd ] AvgLdx64 C:\Windows\System32\Drivers\avgldx64.sys
    23:11:39.0619 5104 AvgLdx64 - ok
    23:11:39.0634 5104 [ 0db5a749acd8e66091736f88c40207bd ] AvgMfx64 C:\Windows\System32\Drivers\avgmfx64.sys
    23:11:39.0650 5104 AvgMfx64 - ok
    23:11:39.0744 5104 [ 8aa68c0ba2b84fd7eb3e1f10bbfc825b ] AvgTdiA C:\Windows\System32\Drivers\avgtdia.sys
    23:11:39.0822 5104 AvgTdiA - ok
    23:11:39.0900 5104 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\Windows\System32\AxInstSV.dll
    23:11:39.0900 5104 AxInstSV - ok
    23:11:39.0978 5104 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    23:11:39.0993 5104 b06bdrv - ok
    23:11:40.0071 5104 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    23:11:40.0087 5104 b57nd60a - ok
    23:11:40.0134 5104 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\Windows\System32\bdesvc.dll
    23:11:40.0134 5104 BDESVC - ok
    23:11:40.0149 5104 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    23:11:40.0149 5104 Beep - ok
    23:11:40.0227 5104 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    23:11:40.0227 5104 blbdrive - ok
    23:11:40.0414 5104 [ ebbcd5dfbb1de70e8f4af8fa59e401fd ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    23:11:40.0414 5104 Bonjour Service - ok
    23:11:40.0524 5104 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    23:11:40.0539 5104 bowser - ok
    23:11:40.0586 5104 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    23:11:40.0586 5104 BrFiltLo - ok
    23:11:40.0617 5104 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    23:11:40.0617 5104 BrFiltUp - ok
    23:11:40.0680 5104 [ 05f5a0d14a2ee1d8255c2aa0e9e8e694 ] Browser C:\Windows\System32\browser.dll
    23:11:40.0695 5104 Browser - ok
    23:11:40.0758 5104 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    23:11:40.0758 5104 Brserid - ok
    23:11:40.0820 5104 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    23:11:40.0820 5104 BrSerWdm - ok
    23:11:40.0882 5104 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    23:11:40.0882 5104 BrUsbMdm - ok
    23:11:40.0898 5104 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    23:11:40.0898 5104 BrUsbSer - ok
    23:11:40.0992 5104 [ cf98190a94f62e405c8cb255018b2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    23:11:41.0007 5104 BthEnum - ok
    23:11:41.0054 5104 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    23:11:41.0054 5104 BTHMODEM - ok
    23:11:41.0116 5104 [ 02dd601b708dd0667e1331fa8518e9ff ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    23:11:41.0132 5104 BthPan - ok
    23:11:41.0272 5104 [ 738d0e9272f59eb7a1449c3ec118e6c4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    23:11:41.0304 5104 BTHPORT - ok
    23:11:41.0319 5104 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\Windows\system32\bthserv.dll
    23:11:41.0335 5104 bthserv - ok
    23:11:41.0413 5104 [ f188b7394d81010767b6df3178519a37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    23:11:41.0413 5104 BTHUSB - ok
    23:11:41.0475 5104 [ 6bcfdc2b5b7f66d484486d4bd4b39a6b ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
    23:11:41.0491 5104 btwaudio - ok
    23:11:41.0538 5104 [ 82dc8b7c626e526681c1bebed2bc3ff9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
    23:11:41.0538 5104 btwavdt - ok
    23:11:41.0756 5104 [ d65aa164acd0f6706dbcfbbcc9731584 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    23:11:41.0818 5104 btwdins - ok
    23:11:41.0865 5104 [ 6149301dc3f81d6f9667a3fbac410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
    23:11:41.0881 5104 btwl2cap - ok
    23:11:41.0912 5104 [ 28e105ad3b79f440bf94780f507bf66a ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
    23:11:41.0912 5104 btwrchid - ok
    23:11:41.0943 5104 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    23:11:41.0943 5104 cdfs - ok
    23:11:42.0037 5104 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    23:11:42.0037 5104 cdrom - ok
    23:11:42.0099 5104 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\Windows\System32\certprop.dll
    23:11:42.0115 5104 CertPropSvc - ok
    23:11:42.0177 5104 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    23:11:42.0177 5104 circlass - ok
    23:11:42.0255 5104 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\Windows\system32\CLFS.sys
    23:11:42.0271 5104 CLFS - ok
    23:11:42.0427 5104 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    23:11:42.0427 5104 clr_optimization_v2.0.50727_32 - ok
    23:11:42.0520 5104 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    23:11:42.0536 5104 clr_optimization_v2.0.50727_64 - ok
    23:11:42.0723 5104 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    23:11:42.0739 5104 clr_optimization_v4.0.30319_32 - ok
    23:11:42.0817 5104 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    23:11:42.0817 5104 clr_optimization_v4.0.30319_64 - ok
    23:11:42.0879 5104 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    23:11:42.0879 5104 CmBatt - ok
    23:11:42.0926 5104 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\Windows\system32\drivers\cmdide.sys
    23:11:42.0926 5104 cmdide - ok
    23:11:43.0051 5104 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\Windows\system32\Drivers\cng.sys
    23:11:43.0066 5104 CNG - ok
    23:11:43.0113 5104 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    23:11:43.0113 5104 Compbatt - ok
    23:11:43.0176 5104 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    23:11:43.0176 5104 CompositeBus - ok
    23:11:43.0191 5104 COMSysApp - ok
    23:11:43.0238 5104 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    23:11:43.0238 5104 crcdisk - ok
    23:11:43.0300 5104 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
    23:11:43.0316 5104 CryptSvc - ok
    23:11:43.0425 5104 [ d00a4fe22216265783a08a05d268b902 ] DCamUSBVM C:\Windows\system32\Drivers\usbVM31b.sys
    23:11:43.0425 5104 DCamUSBVM - ok
    23:11:43.0550 5104 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    23:11:43.0597 5104 DcomLaunch - ok
    23:11:43.0628 5104 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\Windows\System32\defragsvc.dll
    23:11:43.0628 5104 defragsvc - ok
    23:11:43.0706 5104 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    23:11:43.0706 5104 DfsC - ok
    23:11:43.0815 5104 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\Windows\system32\dhcpcore.dll
    23:11:43.0815 5104 Dhcp - ok
    23:11:43.0878 5104 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\Windows\system32\drivers\discache.sys
    23:11:43.0893 5104 discache - ok
    23:11:43.0924 5104 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\Windows\system32\DRIVERS\disk.sys
    23:11:43.0924 5104 Disk - ok
    23:11:44.0018 5104 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    23:11:44.0034 5104 Dnscache - ok
    23:11:44.0080 5104 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\Windows\System32\dot3svc.dll
    23:11:44.0080 5104 dot3svc - ok
    23:11:44.0143 5104 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\Windows\system32\dps.dll
    23:11:44.0143 5104 DPS - ok
    23:11:44.0190 5104 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    23:11:44.0190 5104 drmkaud - ok
    23:11:44.0346 5104 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    23:11:44.0377 5104 DXGKrnl - ok
    23:11:44.0470 5104 [ a0d5450b3d4689dce4cbbc8268141c37 ] e.dentifier2 C:\Windows\system32\DRIVERS\aabed2.sys
    23:11:44.0470 5104 e.dentifier2 - ok
    23:11:44.0502 5104 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\Windows\System32\eapsvc.dll
    23:11:44.0517 5104 EapHost - ok
    23:11:44.0736 5104 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    23:11:44.0798 5104 ebdrv - ok
    23:11:44.0845 5104 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\Windows\System32\lsass.exe
    23:11:44.0860 5104 EFS - ok
    23:11:45.0016 5104 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    23:11:45.0063 5104 ehRecvr - ok
    23:11:45.0094 5104 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\Windows\ehome\ehsched.exe
    23:11:45.0110 5104 ehSched - ok
    23:11:45.0141 5104 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    23:11:45.0141 5104 elxstor - ok
    23:11:45.0188 5104 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\Windows\system32\drivers\errdev.sys
    23:11:45.0188 5104 ErrDev - ok
    23:11:45.0235 5104 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\Windows\system32\es.dll
    23:11:45.0235 5104 EventSystem - ok
    23:11:45.0313 5104 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\Windows\system32\drivers\exfat.sys
    23:11:45.0313 5104 exfat - ok
    23:11:45.0344 5104 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\Windows\system32\drivers\fastfat.sys
    23:11:45.0360 5104 fastfat - ok
    23:11:45.0500 5104 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\Windows\system32\fxssvc.exe
    23:11:45.0516 5104 Fax - ok
    23:11:45.0562 5104 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    23:11:45.0562 5104 fdc - ok
    23:11:45.0609 5104 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\Windows\system32\fdPHost.dll
    23:11:45.0625 5104 fdPHost - ok
    23:11:45.0656 5104 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    23:11:45.0656 5104 FDResPub - ok
    23:11:45.0687 5104 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    23:11:45.0687 5104 FileInfo - ok
    23:11:45.0703 5104 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    23:11:45.0718 5104 Filetrace - ok
    23:11:45.0750 5104 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    23:11:45.0750 5104 flpydisk - ok
    23:11:45.0796 5104 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    23:11:45.0812 5104 FltMgr - ok
    23:11:45.0937 5104 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\Windows\system32\FntCache.dll
    23:11:46.0015 5104 FontCache - ok
    23:11:46.0124 5104 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    23:11:46.0124 5104 FontCache3.0.0.0 - ok
    23:11:46.0140 5104 [ d43703496149971890703b4b1b723eac ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    23:11:46.0155 5104 FsDepends - ok
    23:11:46.0186 5104 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    23:11:46.0186 5104 Fs_Rec - ok
    23:11:46.0280 5104 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    23:11:46.0296 5104 fvevol - ok
    23:11:46.0342 5104 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    23:11:46.0342 5104 gagp30kx - ok
    23:11:46.0436 5104 [ e403aacf8c7bb11375122d2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    23:11:46.0452 5104 GEARAspiWDM - ok
    23:11:46.0608 5104 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\Windows\System32\gpsvc.dll
    23:11:46.0623 5104 gpsvc - ok
    23:11:46.0842 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0857 5104 gupdate - ok
    23:11:46.0888 5104 [ 8f0de4fef8201e306f9938b0905ac96a ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    23:11:46.0888 5104 gupdatem - ok
    23:11:46.0935 5104 [ cc839e8d766cc31a7710c9f38cf3e375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    23:11:46.0935 5104 gusvc - ok
    23:11:46.0966 5104 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    23:11:46.0966 5104 hcw85cir - ok
    23:11:47.0044 5104 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    23:11:47.0060 5104 HdAudAddService - ok
    23:11:47.0076 5104 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    23:11:47.0076 5104 HDAudBus - ok
    23:11:47.0091 5104 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    23:11:47.0091 5104 HidBatt - ok
    23:11:47.0122 5104 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    23:11:47.0122 5104 HidBth - ok
    23:11:47.0169 5104 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    23:11:47.0169 5104 HidIr - ok
    23:11:47.0200 5104 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\Windows\system32\hidserv.dll
    23:11:47.0216 5104 hidserv - ok
    23:11:47.0294 5104 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    23:11:47.0294 5104 HidUsb - ok
    23:11:47.0341 5104 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    23:11:47.0341 5104 hkmsvc - ok
    23:11:47.0403 5104 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    23:11:47.0403 5104 HomeGroupListener - ok
    23:11:47.0450 5104 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    23:11:47.0466 5104 HomeGroupProvider - ok
    23:11:47.0528 5104 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    23:11:47.0528 5104 HpSAMD - ok
    23:11:47.0590 5104 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    23:11:47.0637 5104 HTTP - ok
    23:11:47.0684 5104 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    23:11:47.0684 5104 hwpolicy - ok
    23:11:47.0746 5104 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    23:11:47.0746 5104 i8042prt - ok
    23:11:47.0918 5104 [ 7548066df68a8a1a56b043359f915f37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    23:11:47.0934 5104 IAANTMON - ok
    23:11:47.0980 5104 [ 1d004cb1da6323b1f55caef7f94b61d9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    23:11:47.0980 5104 iaStor - ok
    23:11:47.0996 5104 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    23:11:48.0012 5104 iaStorV - ok
    23:11:48.0214 5104 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    23:11:48.0261 5104 idsvc - ok
    23:11:48.0792 5104 [ a87261ef1546325b559374f5689cf5bc ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    23:11:48.0948 5104 igfx - ok
    23:11:48.0979 5104 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    23:11:48.0979 5104 iirsp - ok
    23:11:49.0182 5104 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\Windows\System32\ikeext.dll
    23:11:49.0244 5104 IKEEXT - ok
    23:11:49.0462 5104 [ b16fc828ce7a76a8f1ce682e6ead2627 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    23:11:49.0525 5104 IntcAzAudAddService - ok
    23:11:49.0525 5104 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\Windows\system32\drivers\intelide.sys
    23:11:49.0525 5104 intelide - ok
    23:11:49.0556 5104 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    23:11:49.0572 5104 intelppm - ok
    23:11:49.0618 5104 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    23:11:49.0634 5104 IPBusEnum - ok
    23:11:49.0681 5104 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    23:11:49.0681 5104 IpFilterDriver - ok
    23:11:49.0712 5104 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    23:11:49.0728 5104 IPMIDRV - ok
    23:11:49.0821 5104 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    23:11:49.0821 5104 IPNAT - ok
    23:11:50.0008 5104 [ 50d6ccc6ff5561f9f56946b3e6164fb8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    23:11:50.0071 5104 iPod Service - ok
    23:11:50.0118 5104 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    23:11:50.0118 5104 IRENUM - ok
    23:11:50.0180 5104 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    23:11:50.0180 5104 isapnp - ok
    23:11:50.0258 5104 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    23:11:50.0258 5104 iScsiPrt - ok
    23:11:50.0305 5104 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    23:11:50.0336 5104 kbdclass - ok
    23:11:50.0367 5104 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    23:11:50.0367 5104 kbdhid - ok
    23:11:50.0383 5104 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\Windows\system32\lsass.exe
    23:11:50.0383 5104 KeyIso - ok
    23:11:50.0430 5104 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    23:11:50.0430 5104 KSecDD - ok
    23:11:50.0461 5104 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    23:11:50.0476 5104 KSecPkg - ok
    23:11:50.0508 5104 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    23:11:50.0508 5104 ksthunk - ok
    23:11:50.0601 5104 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\Windows\system32\msdtckrm.dll
    23:11:50.0617 5104 KtmRm - ok
    23:11:50.0679 5104 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    23:11:50.0679 5104 LanmanServer - ok
    23:11:50.0710 5104 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    23:11:50.0726 5104 LanmanWorkstation - ok
    23:11:50.0788 5104 [ 156ab2e56dc3ca0b582e3362e07cded7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
    23:11:50.0788 5104 lirsgt - ok
    23:11:50.0804 5104 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    23:11:50.0820 5104 lltdio - ok
    23:11:50.0882 5104 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\Windows\System32\lltdsvc.dll
    23:11:50.0898 5104 lltdsvc - ok
    23:11:50.0913 5104 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    23:11:50.0929 5104 lmhosts - ok
    23:11:51.0022 5104 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    23:11:51.0022 5104 LSI_FC - ok
    23:11:51.0038 5104 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    23:11:51.0038 5104 LSI_SAS - ok
    23:11:51.0069 5104 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    23:11:51.0069 5104 LSI_SAS2 - ok
    23:11:51.0085 5104 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    23:11:51.0085 5104 LSI_SCSI - ok
    23:11:51.0100 5104 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\Windows\system32\drivers\luafv.sys
    23:11:51.0116 5104 luafv - ok
    23:11:51.0147 5104 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    23:11:51.0147 5104 Mcx2Svc - ok
    23:11:51.0210 5104 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    23:11:51.0225 5104 megasas - ok
    23:11:51.0241 5104 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    23:11:51.0256 5104 MegaSR - ok
    23:11:51.0412 5104 [ 123271bd5237ab991dc5c21fdf8835eb ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
    23:11:51.0412 5104 Microsoft Office Groove Audit Service - ok
    23:11:51.0475 5104 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\Windows\system32\mmcss.dll
    23:11:51.0490 5104 MMCSS - ok
    23:11:51.0506 5104 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\Windows\system32\drivers\modem.sys
    23:11:51.0522 5104 Modem - ok
    23:11:51.0537 5104 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    23:11:51.0537 5104 monitor - ok
    23:11:51.0553 5104 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    23:11:51.0568 5104 mouclass - ok
    23:11:51.0600 5104 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    23:11:51.0600 5104 mouhid - ok
    23:11:51.0631 5104 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    23:11:51.0646 5104 mountmgr - ok
    23:11:51.0756 5104 [ 96aa8ba23142cc8e2b30f3cae0c80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    23:11:51.0756 5104 MozillaMaintenance - ok
    23:11:51.0802 5104 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\Windows\system32\drivers\mpio.sys
    23:11:51.0802 5104 mpio - ok
    23:11:52.0270 5104 [ 0ebb390b7aeec45ec061d9870a34fd42 ] MpKsl28985dda C:\Windows\Temp\MpKsl28985dda.sys
    23:11:52.0270 5104 MpKsl28985dda - ok
    23:11:52.0317 5104 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    23:11:52.0317 5104 mpsdrv - ok
    23:11:52.0364 5104 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    23:11:52.0364 5104 MRxDAV - ok
    23:11:52.0395 5104 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    23:11:52.0411 5104 mrxsmb - ok
    23:11:52.0473 5104 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    23:11:52.0489 5104 mrxsmb10 - ok
    23:11:52.0504 5104 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    23:11:52.0520 5104 mrxsmb20 - ok
    23:11:52.0567 5104 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    23:11:52.0567 5104 msahci - ok
    23:11:52.0582 5104 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    23:11:52.0598 5104 msdsm - ok
    23:11:52.0614 5104 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\Windows\System32\msdtc.exe
    23:11:52.0614 5104 MSDTC - ok
    23:11:52.0645 5104 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    23:11:52.0660 5104 Msfs - ok
    23:11:52.0707 5104 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    23:11:52.0723 5104 mshidkmdf - ok
    23:11:52.0754 5104 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    23:11:52.0770 5104 msisadrv - ok
    23:11:52.0816 5104 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    23:11:52.0832 5104 MSiSCSI - ok
    23:11:52.0832 5104 msiserver - ok
    23:11:52.0863 5104 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    23:11:52.0863 5104 MSKSSRV - ok
    23:11:52.0879 5104 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    23:11:52.0894 5104 MSPCLOCK - ok
    23:11:52.0910 5104 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    23:11:52.0910 5104 MSPQM - ok
    23:11:52.0957 5104 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    23:11:52.0957 5104 MsRPC - ok
    23:11:53.0004 5104 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    23:11:53.0004 5104 mssmbios - ok
    23:11:53.0019 5104 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    23:11:53.0019 5104 MSTEE - ok
    23:11:53.0066 5104 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    23:11:53.0066 5104 MTConfig - ok
    23:11:53.0113 5104 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\Windows\system32\Drivers\mup.sys
    23:11:53.0113 5104 Mup - ok
    23:11:53.0160 5104 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\Windows\system32\qagentRT.dll
    23:11:53.0175 5104 napagent - ok
    23:11:53.0300 5104 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    23:11:53.0300 5104 NativeWifiP - ok
    23:11:53.0440 5104 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\Windows\system32\drivers
    dis.sys
    23:11:53.0487 5104 NDIS - ok
    23:11:53.0550 5104 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    23:11:53.0565 5104 NdisCap - ok
    23:11:53.0612 5104 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    23:11:53.0612 5104 NdisTapi - ok
    23:11:53.0674 5104 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    23:11:53.0674 5104 Ndisuio - ok
    23:11:53.0721 5104 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    23:11:53.0721 5104 NdisWan - ok
    23:11:53.0799 5104 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    23:11:53.0799 5104 NDProxy - ok
    23:11:53.0846 5104 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    23:11:53.0862 5104 NetBIOS - ok
    23:11:53.0924 5104 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    23:11:53.0924 5104 NetBT - ok
    23:11:53.0971 5104 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\Windows\system32\lsass.exe
    23:11:53.0971 5104 Netlogon - ok
    23:11:54.0080 5104 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\Windows\System32
    etman.dll
    23:11:54.0096 5104 Netman - ok
    23:11:54.0142 5104 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\Windows\System32
    etprofm.dll
    23:11:54.0174 5104 netprofm - ok
    23:11:54.0205 5104 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    23:11:54.0205 5104 NetTcpPortSharing - ok
    23:11:54.0766 5104 [ 705283c02177809ca9fa7cc58a4f1e77 ] netw5v64 C:\Windows\system32\DRIVERS
    etw5v64.sys
    23:11:54.0876 5104 netw5v64 - ok
    23:11:54.0907 5104 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    23:11:54.0907 5104 nfrd960 - ok
    23:11:54.0969 5104 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\Windows\System32
    lasvc.dll
    23:11:54.0969 5104 NlaSvc - ok
    23:11:55.0000 5104 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    23:11:55.0000 5104 Npfs - ok
    23:11:55.0032 5104 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\Windows\system32
    sisvc.dll
    23:11:55.0032 5104 nsi - ok
    23:11:55.0047 5104 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    23:11:55.0063 5104 nsiproxy - ok
    23:11:55.0203 5104 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    23:11:55.0250 5104 Ntfs - ok
    23:11:55.0281 5104 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\Windows\system32\drivers\Null.sys
    23:11:55.0281 5104 Null - ok
    23:11:55.0359 5104 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\Windows\system32\drivers
    vraid.sys
    23:11:55.0375 5104 nvraid - ok
    23:11:55.0390 5104 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\Windows\system32\drivers
    vstor.sys
    23:11:55.0406 5104 nvstor - ok
    23:11:55.0437 5104 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    23:11:55.0437 5104 nv_agp - ok
    23:11:55.0780 5104 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    23:11:55.0796 5104 odserv - ok
    23:11:55.0827 5104 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    23:11:55.0843 5104 ohci1394 - ok
    23:11:55.0968 5104 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    23:11:55.0968 5104 ose - ok
    23:11:56.0077 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    23:11:56.0092 5104 p2pimsvc - ok
    23:11:56.0139 5104 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\Windows\system32\p2psvc.dll
    23:11:56.0139 5104 p2psvc - ok
    23:11:56.0170 5104 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    23:11:56.0186 5104 Parport - ok
    23:11:56.0217 5104 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\Windows\system32\drivers\partmgr.sys
    23:11:56.0233 5104 partmgr - ok
    23:11:56.0264 5104 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    23:11:56.0264 5104 PcaSvc - ok
    23:11:56.0311 5104 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\Windows\system32\drivers\pci.sys
    23:11:56.0326 5104 pci - ok
    23:11:56.0342 5104 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\Windows\system32\drivers\pciide.sys
    23:11:56.0342 5104 pciide - ok
    23:11:56.0373 5104 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    23:11:56.0389 5104 pcmcia - ok
    23:11:56.0404 5104 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\Windows\system32\drivers\pcw.sys
    23:11:56.0404 5104 pcw - ok
    23:11:56.0451 5104 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    23:11:56.0482 5104 PEAUTH - ok
    23:11:57.0231 5104 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\Windows\SysWow64\perfhost.exe
    23:11:57.0231 5104 PerfHost - ok
    23:11:57.0356 5104 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\Windows\system32\pla.dll
    23:11:57.0403 5104 pla - ok
    23:11:57.0512 5104 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    23:11:57.0543 5104 PlugPlay - ok
    23:11:57.0559 5104 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    23:11:57.0559 5104 PNRPAutoReg - ok
    23:11:57.0574 5104 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    23:11:57.0574 5104 PNRPsvc - ok
    23:11:57.0668 5104 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    23:11:57.0699 5104 PolicyAgent - ok
    23:11:57.0746 5104 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\Windows\system32\umpo.dll
    23:11:57.0746 5104 Power - ok
    23:11:57.0808 5104 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    23:11:57.0808 5104 PptpMiniport - ok
    23:11:57.0824 5104 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\Windows\system32\DRIVERS\processr.sys
    23:11:57.0840 5104 Processor - ok
    23:11:57.0871 5104 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\Windows\system32\profsvc.dll
    23:11:57.0886 5104 ProfSvc - ok
    23:11:57.0902 5104 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    23:11:57.0902 5104 ProtectedStorage - ok
    23:11:57.0996 5104 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    23:11:58.0011 5104 Psched - ok
    23:11:58.0058 5104 [ aed797cca02783296c68aa10d0cff8a9 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    23:11:58.0058 5104 PxHlpa64 - ok
    23:11:58.0198 5104 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    23:11:58.0292 5104 ql2300 - ok
    23:11:58.0308 5104 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    23:11:58.0323 5104 ql40xx - ok
    23:11:58.0417 5104 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\Windows\system32\qwave.dll
    23:11:58.0417 5104 QWAVE - ok
    23:11:58.0464 5104 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    23:11:58.0464 5104 QWAVEdrv - ok
    23:11:58.0495 5104 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    23:11:58.0495 5104 RasAcd - ok
    23:11:58.0588 5104 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    23:11:58.0588 5104 RasAgileVpn - ok
    23:11:58.0635 5104 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\Windows\System32\rasauto.dll
    23:11:58.0651 5104 RasAuto - ok
    23:11:58.0713 5104 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    23:11:58.0713 5104 Rasl2tp - ok
    23:11:58.0807 5104 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\Windows\System32\rasmans.dll
    23:11:58.0822 5104 RasMan - ok
    23:11:58.0885 5104 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    23:11:58.0885 5104 RasPppoe - ok
    23:11:58.0932 5104 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    23:11:58.0932 5104 RasSstp - ok
    23:11:59.0056 5104 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    23:11:59.0103 5104 rdbss - ok
    23:11:59.0119 5104 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    23:11:59.0119 5104 rdpbus - ok
    23:11:59.0150 5104 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    23:11:59.0150 5104 RDPCDD - ok
    23:11:59.0181 5104 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    23:11:59.0181 5104 RDPENCDD - ok
    23:11:59.0197 5104 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    23:11:59.0197 5104 RDPREFMP - ok
    23:11:59.0228 5104 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    23:11:59.0244 5104 RDPWD - ok
    23:11:59.0306 5104 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    23:11:59.0322 5104 rdyboost - ok
    23:11:59.0384 5104 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    23:11:59.0384 5104 RemoteAccess - ok
    23:11:59.0446 5104 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    23:11:59.0478 5104 RemoteRegistry - ok
    23:11:59.0509 5104 [ 3dd798846e2c28102b922c56e71b7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    23:11:59.0509 5104 RFCOMM - ok
    23:11:59.0524 5104 [ 258aadb43e3f3468b5cf8cb0f84872c2 ] rimsptsk C:\Windows\system32\DRIVERS\rimssn64.sys
    23:11:59.0540 5104 rimsptsk - ok
    23:11:59.0571 5104 RimUsb - ok
    23:11:59.0618 5104 [ 71e182a0de1cecb3f912960716345405 ] risdptsk C:\Windows\system32\DRIVERS\risdsn64.sys
    23:11:59.0618 5104 risdptsk - ok
    23:11:59.0649 5104 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    23:11:59.0649 5104 RpcEptMapper - ok
    23:11:59.0665 5104 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\Windows\system32\locator.exe
    23:11:59.0680 5104 RpcLocator - ok
    23:11:59.0743 5104 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\Windows\system32\rpcss.dll
    23:11:59.0758 5104 RpcSs - ok
    23:11:59.0805 5104 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    23:11:59.0805 5104 rspndr - ok
    23:11:59.0852 5104 [ 34f05c417f038ffa3bef69b798d7d7dd ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
    23:11:59.0868 5104 RTHDMIAzAudService - ok
    23:12:00.0008 5104 [ 01e6a1e53e39a0b1e2b6ae62bf52e8ec ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
    23:12:00.0024 5104 RtkAudioService - ok
    23:12:00.0024 5104 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\Windows\system32\lsass.exe
    23:12:00.0024 5104 SamSs - ok
    23:12:00.0102 5104 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    23:12:00.0102 5104 sbp2port - ok
    23:12:00.0148 5104 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\Windows\System32\SCardSvr.dll
    23:12:00.0148 5104 SCardSvr - ok
    23:12:00.0180 5104 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    23:12:00.0195 5104 scfilter - ok
    23:12:00.0336 5104 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\Windows\system32\schedsvc.dll
    23:12:00.0367 5104 Schedule - ok
    23:12:00.0429 5104 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\Windows\System32\certprop.dll
    23:12:00.0429 5104 SCPolicySvc - ok
    23:12:00.0492 5104 [ 111e0ebc0ad79cb0fa014b907b231cf0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
    23:12:00.0492 5104 sdbus - ok
    23:12:00.0523 5104 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    23:12:00.0523 5104 SDRSVC - ok
    23:12:00.0554 5104 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    23:12:00.0554 5104 secdrv - ok
    23:12:00.0570 5104 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\Windows\system32\seclogon.dll
    23:12:00.0570 5104 seclogon - ok
    23:12:00.0601 5104 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\Windows\System32\sens.dll
    23:12:00.0616 5104 SENS - ok
    23:12:00.0632 5104 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    23:12:00.0648 5104 SensrSvc - ok
    23:12:00.0679 5104 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    23:12:00.0694 5104 Serenum - ok
    23:12:00.0741 5104 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    23:12:00.0741 5104 Serial - ok
    23:12:00.0757 5104 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    23:12:00.0757 5104 sermouse - ok
    23:12:00.0819 5104 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    23:12:00.0819 5104 SessionEnv - ok
    23:12:00.0850 5104 [ 70f9c476b62de4f2823e918a6c181ade ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
    23:12:00.0850 5104 SFEP - ok
    23:12:00.0882 5104 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    23:12:00.0882 5104 sffdisk - ok
    23:12:00.0897 5104 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    23:12:00.0897 5104 sffp_mmc - ok
    23:12:00.0913 5104 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    23:12:00.0913 5104 sffp_sd - ok
    23:12:00.0960 5104 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    23:12:00.0975 5104 sfloppy - ok
    23:12:01.0084 5104 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    23:12:01.0084 5104 ShellHWDetection - ok
    23:12:01.0131 5104 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    23:12:01.0131 5104 SiSRaid2 - ok
    23:12:01.0162 5104 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    23:12:01.0178 5104 SiSRaid4 - ok
    23:12:01.0225 5104 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    23:12:01.0225 5104 Smb - ok
    23:12:01.0287 5104 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    23:12:01.0287 5104 SNMPTRAP - ok
    23:12:01.0381 5104 [ 98886c88a1cb13d61672ae2c638b7e1c ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
    23:12:01.0396 5104 SOHCImp - ok
    23:12:01.0443 5104 [ 442a13f395546f4564c377296d43b564 ] SOHDBSvr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
    23:12:01.0443 5104 SOHDBSvr - ok
    23:12:01.0506 5104 [ 556681be668d71dc162391a45422b52c ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
    23:12:01.0506 5104 SOHDms - ok
    23:12:01.0537 5104 [ 72b46103e4111439109acf5882627c24 ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
    23:12:01.0537 5104 SOHDs - ok
    23:12:01.0568 5104 [ 725b6e9cd1959271ac993dc035e1606d ] SOHPlMgr C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
    23:12:01.0568 5104 SOHPlMgr - ok
    23:12:01.0568 5104 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\Windows\system32\drivers\spldr.sys
    23:12:01.0568 5104 spldr - ok
    23:12:01.0630 5104 [ 85daa09a98c9286d4ea2ba8d0e644377 ] Spooler C:\Windows\System32\spoolsv.exe
    23:12:01.0662 5104 Spooler - ok
    23:12:01.0896 5104 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\Windows\system32\sppsvc.exe
    23:12:01.0974 5104 sppsvc - ok
    23:12:02.0005 5104 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    23:12:02.0005 5104 sppuinotify - ok
    23:12:02.0083 5104 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\Windows\system32\DRIVERS\srv.sys
    23:12:02.0114 5104 srv - ok
    23:12:02.0145 5104 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    23:12:02.0161 5104 srv2 - ok
    23:12:02.0192 5104 [ 0c4540311e11664b245a263e1154cef8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
    23:12:02.0208 5104 SrvHsfHDA - ok
    23:12:02.0286 5104 [ 02071d207a9858fbe3a48cbfd59c4a04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
    23:12:02.0348 5104 SrvHsfV92 - ok
    23:12:02.0442 5104 [ 18e40c245dbfaf36fd0134a7ef2df396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
    23:12:02.0474 5104 SrvHsfWinac - ok
    23:12:02.0552 5104 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    23:12:02.0552 5104 srvnet - ok
    23:12:02.0599 5104 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    23:12:02.0599 5104 SSDPSRV - ok
    23:12:02.0630 5104 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\Windows\system32\sstpsvc.dll
    23:12:02.0630 5104 SstpSvc - ok
    23:12:02.0661 5104 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    23:12:02.0661 5104 stexstor - ok
    23:12:02.0723 5104 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\Windows\System32\wiaservc.dll
    23:12:02.0739 5104 stisvc - ok
    23:12:02.0786 5104 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\Windows\system32\drivers\swenum.sys
    23:12:02.0786 5104 swenum - ok
    23:12:02.0848 5104 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\Windows\System32\swprv.dll
    23:12:02.0879 5104 swprv - ok
    23:12:03.0051 5104 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\Windows\system32\sysmain.dll
    23:12:03.0098 5104 SysMain - ok
    23:12:03.0160 5104 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    23:12:03.0160 5104 TabletInputService - ok
    23:12:03.0223 5104 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    23:12:03.0238 5104 TapiSrv - ok
    23:12:03.0269 5104 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\Windows\System32\tbssvc.dll
    23:12:03.0269 5104 TBS - ok
    23:12:03.0394 5104 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    23:12:03.0441 5104 Tcpip - ok
    23:12:03.0581 5104 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    23:12:03.0597 5104 TCPIP6 - ok
    23:12:03.0644 5104 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    23:12:03.0644 5104 tcpipreg - ok
    23:12:03.0722 5104 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    23:12:03.0722 5104 TDPIPE - ok
    23:12:03.0753 5104 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    23:12:03.0769 5104 TDTCP - ok
    23:12:03.0815 5104 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    23:12:03.0815 5104 tdx - ok
    23:12:03.0878 5104 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    23:12:03.0893 5104 TermDD - ok
    23:12:03.0956 5104 [ 2e648163254233755035b46dd7b89123 ] TermService C:\Windows\System32\termsrv.dll
    23:12:04.0003 5104 TermService - ok
    23:12:04.0034 5104 [ f0344071948d1a1fa732231785a0664c ] Themes C:\Windows\system32\themeservice.dll
    23:12:04.0034 5104 Themes - ok
    23:12:04.0065 5104 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\Windows\system32\mmcss.dll
    23:12:04.0081 5104 THREADORDER - ok
    23:12:04.0112 5104 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\Windows\System32\trkwks.dll
    23:12:04.0112 5104 TrkWks - ok
    23:12:04.0237 5104 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    23:12:04.0252 5104 TrustedInstaller - ok
    23:12:04.0299 5104 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    23:12:04.0315 5104 tssecsrv - ok
    23:12:04.0408 5104 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    23:12:04.0408 5104 TsUsbFlt - ok
    23:12:04.0486 5104 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    23:12:04.0502 5104 tunnel - ok
    23:12:04.0533 5104 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    23:12:04.0533 5104 uagp35 - ok
    23:12:04.0611 5104 [ 63f6d08c54d5b3c1b12a6172032055c7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
    23:12:04.0611 5104 uCamMonitor - ok
    23:12:04.0658 5104 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    23:12:04.0673 5104 udfs - ok
    23:12:04.0767 5104 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    23:12:04.0783 5104 UI0Detect - ok
    23:12:04.0814 5104 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    23:12:04.0814 5104 uliagpkx - ok
    23:12:04.0861 5104 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    23:12:04.0876 5104 umbus - ok
    23:12:04.0892 5104 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    23:12:04.0892 5104 UmPass - ok
    23:12:04.0954 5104 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\Windows\System32\upnphost.dll
    23:12:04.0970 5104 upnphost - ok
    23:12:05.0001 5104 [ fb251567f41bc61988b26731dec19e4b ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
    23:12:05.0001 5104 USBAAPL64 - ok
    23:12:05.0032 5104 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    23:12:05.0048 5104 usbccgp - ok
    23:12:05.0126 5104 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    23:12:05.0141 5104 usbcir - ok
    23:12:05.0157 5104 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    23:12:05.0157 5104 usbehci - ok
    23:12:05.0219 5104 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    23:12:05.0219 5104 usbhub - ok
    23:12:05.0251 5104 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    23:12:05.0251 5104 usbohci - ok
    23:12:05.0297 5104 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    23:12:05.0297 5104 usbprint - ok
    23:12:05.0329 5104 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    23:12:05.0329 5104 USBSTOR - ok
    23:12:05.0375 5104 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    23:12:05.0375 5104 usbuhci - ok
    23:12:05.0500 5104 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    23:12:05.0500 5104 usbvideo - ok
    23:12:05.0563 5104 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\Windows\System32\uxsms.dll
    23:12:05.0563 5104 UxSms - ok
    23:12:05.0719 5104 [ 4e7135d6d0127067e4cfee12259f895d ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
    23:12:05.0719 5104 VAIO Entertainment TV Device Arbitration Service - ok
    23:12:05.0890 5104 [ d4197cf0c8567046fd4af28ff47af528 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
    23:12:05.0890 5104 VAIO Event Service - ok
    23:12:06.0031 5104 [ 2d6605c1f0bbd0f71a4cb3a5b1e07240 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
    23:12:06.0046 5104 VAIO Power Management - ok
    23:12:06.0077 5104 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\Windows\system32\lsass.exe
    23:12:06.0077 5104 VaultSvc - ok
    23:12:06.0218 5104 [ 06fe5beddadb158d84e6de33cbe19f3e ] VCFw C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
    23:12:06.0249 5104 VCFw - ok
    23:12:06.0374 5104 [ 34063c0b842e73662067f9b03947c55c ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
    23:12:06.0374 5104 VcmIAlzMgr - ok
    23:12:06.0483 5104 [ a8f5d1651a324abc6c308891a1252ee3 ] VcmINSMgr C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
    23:12:06.0483 5104 VcmINSMgr - ok
    23:12:06.0608 5104 [ db544b487f360128dc1c383e0a6fcc2f ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
    23:12:06.0623 5104 VcmXmlIfHelper - ok
    23:12:06.0623 5104 Vcsw - ok
    23:12:06.0655 5104 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    23:12:06.0655 5104 vdrvroot - ok
    23:12:06.0733 5104 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\Windows\System32\vds.exe
    23:12:06.0779 5104 vds - ok
    23:12:06.0826 5104 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    23:12:06.0826 5104 vga - ok
    23:12:06.0842 5104 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\Windows\System32\drivers\vga.sys
    23:12:06.0857 5104 VgaSave - ok
    23:12:06.0889 5104 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    23:12:06.0889 5104 vhdmp - ok
    23:12:06.0904 5104 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\Windows\system32\drivers\viaide.sys
    23:12:06.0904 5104 viaide - ok
    23:12:06.0935 5104 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    23:12:06.0935 5104 volmgr - ok
    23:12:06.0982 5104 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    23:12:06.0998 5104 volmgrx - ok
    23:12:07.0013 5104 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    23:12:07.0029 5104 volsnap - ok
    23:12:07.0060 5104 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    23:12:07.0076 5104 vsmraid - ok
    23:12:07.0279 5104 [ e9638e51373d527e22438b80126b64f9 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
    23:12:07.0310 5104 VSNService - ok
    23:12:07.0466 5104 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\Windows\system32\vssvc.exe
    23:12:07.0497 5104 VSS - ok
    23:12:07.0528 5104 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    23:12:07.0528 5104 vwifibus - ok
    23:12:07.0559 5104 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    23:12:07.0559 5104 vwififlt - ok
    23:12:07.0591 5104 [ d8bef4ac1eac809dbdbd441d6cff6c4c ] VzCdbSvc C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
    23:12:07.0606 5104 VzCdbSvc - ok
    23:12:07.0669 5104 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\Windows\system32\w32time.dll
    23:12:07.0684 5104 W32Time - ok
    23:12:07.0747 5104 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    23:12:07.0747 5104 WacomPen - ok
    23:12:07.0840 5104 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    23:12:07.0856 5104 WANARP - ok
    23:12:07.0856 5104 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    23:12:07.0856 5104 Wanarpv6 - ok
    23:12:08.0043 5104 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    23:12:08.0090 5104 WatAdminSvc - ok
    23:12:08.0230 5104 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\Windows\system32\wbengine.exe
    23:12:08.0261 5104 wbengine - ok
    23:12:08.0293 5104 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    23:12:08.0308 5104 WbioSrvc - ok
    23:12:08.0371 5104 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\Windows\System32\wcncsvc.dll
    23:12:08.0402 5104 wcncsvc - ok
    23:12:08.0417 5104 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    23:12:08.0417 5104 WcsPlugInService - ok
    23:12:08.0449 5104 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\Windows\system32\DRIVERS\wd.sys
    23:12:08.0449 5104 Wd - ok
    23:12:08.0527 5104 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    23:12:08.0542 5104 Wdf01000 - ok
    23:12:08.0558 5104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    23:12:08.0558 5104 WdiServiceHost - ok
    23:12:08.0573 5104 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    23:12:08.0573 5104 WdiSystemHost - ok
    23:12:08.0636 5104 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\Windows\System32\webclnt.dll
    23:12:08.0651 5104 WebClient - ok
    23:12:08.0698 5104 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    23:12:08.0698 5104 Wecsvc - ok
    23:12:08.0714 5104 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    23:12:08.0729 5104 wercplsupport - ok
    23:12:08.0776 5104 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\Windows\System32\WerSvc.dll
    23:12:08.0792 5104 WerSvc - ok
    23:12:08.0823 5104 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    23:12:08.0839 5104 WfpLwf - ok
    23:12:08.0854 5104 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    23:12:08.0854 5104 WIMMount - ok
    23:12:08.0854 5104 WinHttpAutoProxySvc - ok
    23:12:08.0963 5104 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    23:12:08.0963 5104 Winmgmt - ok
    23:12:09.0151 5104 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\Windows\system32\WsmSvc.dll
    23:12:09.0197 5104 WinRM - ok
    23:12:09.0291 5104 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    23:12:09.0291 5104 WinUsb - ok
    23:12:09.0385 5104 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\Windows\System32\wlansvc.dll
    23:12:09.0400 5104 Wlansvc - ok
    23:12:09.0697 5104 [ 7e47c328fc4768cb8beafbcfafa70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    23:12:09.0743 5104 wlidsvc - ok
    23:12:09.0790 5104 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    23:12:09.0790 5104 WmiAcpi - ok
    23:12:09.0821 5104 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    23:12:09.0837 5104 wmiApSrv - ok
    23:12:09.0884 5104 WMPNetworkSvc - ok
    23:12:09.0899 5104 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\Windows\System32\wpcsvc.dll
    23:12:09.0899 5104 WPCSvc - ok
    23:12:09.0946 5104 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    23:12:09.0946 5104 WPDBusEnum -

















  • 23:12:09.0946 5104 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    23:12:09.0946 5104 WPDBusEnum - ok
    23:12:09.0977 5104 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    23:12:09.0977 5104 ws2ifsl - ok
    23:12:09.0977 5104 WSearch - ok
    23:12:10.0040 5104 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    23:12:10.0055 5104 WudfPf - ok
    23:12:10.0071 5104 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    23:12:10.0087 5104 WUDFRd - ok
    23:12:10.0133 5104 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    23:12:10.0149 5104 wudfsvc - ok
    23:12:10.0180 5104 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\Windows\System32\wwansvc.dll
    23:12:10.0180 5104 WwanSvc - ok
    23:12:10.0289 5104 [ 6affd75c6807b3dd3ab018e27b88ef95 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
    23:12:10.0367 5104 yukonw7 - ok
    23:12:10.0430 5104 ================ Scan global ===============================
    23:12:10.0445 5104 (ba0cd8c393e8c9f83354106093832c7b) C:\Windows\system32\basesrv.dll
    23:12:10.0523 5104 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
    23:12:10.0539 5104 (eb6a48cc998e1090e44e8e7f1009a640) C:\Windows\system32\winsrv.dll
    23:12:10.0570 5104 (d6160f9d869ba3af0b787f971db56368) C:\Windows\system32\sxssrv.dll
    23:12:10.0633 5104 (014a9cb92514e27c0107614df764bc06) C:\Windows\system32\services.exe
    23:12:10.0633 5104 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
    23:12:10.0633 5104 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
    23:12:10.0633 5104 ================ Scan MBR ==================================
    23:12:10.0648 5104 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    23:12:11.0647 5104 \Device\Harddisk0\DR0 - ok
    23:12:11.0647 5104 ================ Scan VBR ==================================
    23:12:11.0678 5104 Boot (0x1200) (8b283327304a30cffdb805d90dae2d36) \Device\Harddisk0\DR0\Partition1
    23:12:11.0678 5104 \Device\Harddisk0\DR0\Partition1 - ok
    23:12:11.0709 5104 Boot (0x1200) (985d2d9434d21a2786975eba12d9fc01) \Device\Harddisk0\DR0\Partition2
    23:12:11.0725 5104 \Device\Harddisk0\DR0\Partition2 - ok
    23:12:11.0725 5104 ============================================================
    23:12:11.0725 5104 Scan finished
    23:12:11.0725 5104 ============================================================
    23:12:11.0725 6124 Detected object count: 1
    23:12:11.0725 6124 Actual detected object count: 1
    23:12:23.0939 6124 C:\Windows\system32\services.exe - copied to quarantine
    23:12:26.0264 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\@ - copied to quarantine
    23:12:26.0279 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\L\00000004.@ - copied to quarantine
    23:12:26.0279 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\L\201d3dde - copied to quarantine
    23:12:26.0279 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\00000004.@ - copied to quarantine
    23:12:26.0295 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\00000008.@ - copied to quarantine
    23:12:26.0295 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\000000cb.@ - copied to quarantine
    23:12:26.0295 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000000.@ - copied to quarantine
    23:12:26.0295 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000032.@ - copied to quarantine
    23:12:26.0295 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000064.@ - copied to quarantine
    23:12:26.0357 6124 C:\Users\Jesper\AppData\Local\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\@ - copied to quarantine
    23:12:45.0779 6124 Backup copy found, using it..
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\00000004.@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\00000008.@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\000000cb.@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000000.@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000032.@ - will be deleted on reboot
    23:12:45.0873 6124 C:\Windows\installer\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\U\80000064.@ - will be deleted on reboot
    23:12:45.0904 6124 C:\Users\Jesper\AppData\Local\{cffd14f5-e125-5f8c-578b-bf175d7747b2}\@ - will be deleted on reboot
    23:12:45.0904 6124 C:\Windows\system32\services.exe - will be cured on reboot
    23:12:45.0904 6124 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
  • Welnu, dat laatste geposte log is nu compleet!

    TDSSKiller heeft goed zijn werk gedaan zo te zien, want anders had HitmanPro nog meer laten zien!

    [b:5d0c61ce5d]Welk programma[/b:5d0c61ce5d]:
  • Ok dat klinkt in ieder geval goed. Ik heb Combofix al gebruikt (zie eerste post met log). Is het dan nog nodig om het opnieuw uit te voeren? Of is mijn computer vrij van problemen nu?
  • Ja, anders had ik het je echt niet opgedragen!
  • Mijn excuses, hierbij het log rapport van combofix


    ComboFix 12-08-22.01 - Jesper 22-08-2012 19:20:52.2.2 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4063.2631 [GMT 2:00]
    Gestart vanuit: c:\users\Jesper\Desktop\ComboFix.exe
    AV: AVG Anti-Virus Free *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    SP: AVG Anti-Virus Free *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-07-22 to 2012-08-22 ))))))))))))))))))))))))))))))
    .
    .
    2012-08-22 17:25 . 2012-08-22 17:25 ——– d—–w- c:\users\Default\AppData\Local\temp
    2012-08-22 16:11 . 2012-08-22 16:14 ——– d—–w- c:\programdata\HitmanPro
    2012-08-20 17:26 . 2012-08-20 17:26 770384 —-a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
    2012-08-20 17:26 . 2012-08-20 17:26 421200 —-a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
    2012-08-20 16:43 . 2012-08-20 16:43 477168 —-a-w- c:\windows\SysWow64
    pdeployJava1.dll
    2012-08-19 22:03 . 2012-08-19 22:03 27256 —-a-w- c:\windows\system32\drivers\FixZeroAccess.sys
    2012-08-19 21:53 . 2012-08-19 21:53 328704 —-a-w- c:\windows\system32\services.exe.BA01FB2368239359
    2012-08-19 21:00 . 2012-08-19 21:00 ——– d-sh–w- c:\windows\SysWow64\%APPDATA%
    2012-08-17 22:11 . 2012-08-17 22:11 ——– d–h–w- c:\users\Jesper\InstallAnywhere
    2012-08-17 20:09 . 2012-08-17 20:09 ——– d—–w- c:\users\Jesper\.swt
    2012-08-15 21:09 . 2004-07-02 12:51 327904 —-a-w- c:\program files (x86)\Mozilla Firefox\plugins
    p32asw.dll
    2012-08-15 21:09 . 2004-07-02 12:51 327904 —-a-w- c:\program files (x86)\Mozilla Firefox\components
    p32asw.dll
    2012-08-15 07:13 . 2012-07-06 20:07 552960 —-a-w- c:\windows\system32\drivers\bthport.sys
    2012-08-14 22:42 . 2012-02-11 06:43 751104 —-a-w- c:\windows\system32\win32spl.dll
    2012-08-14 22:42 . 2012-02-11 06:36 559104 —-a-w- c:\windows\system32\spoolsv.exe
    2012-08-14 22:42 . 2012-02-11 06:36 67072 —-a-w- c:\windows\splwow64.exe
    2012-08-14 22:42 . 2012-02-11 05:43 492032 —-a-w- c:\windows\SysWow64\win32spl.dll
    2012-08-14 21:27 . 2012-05-05 08:36 503808 —-a-w- c:\windows\system32\srcore.dll
    2012-08-14 21:27 . 2012-05-05 07:46 43008 —-a-w- c:\windows\SysWow64\srclient.dll
    2012-08-14 21:27 . 2012-07-04 22:16 73216 —-a-w- c:\windows\system32
    etapi32.dll
    2012-08-14 21:27 . 2012-07-04 22:13 59392 —-a-w- c:\windows\system32\browcli.dll
    2012-08-14 21:27 . 2012-07-04 22:13 136704 —-a-w- c:\windows\system32\browser.dll
    2012-08-14 21:27 . 2012-07-04 21:14 41984 —-a-w- c:\windows\SysWow64\browcli.dll
    2012-08-14 21:27 . 2012-07-18 18:15 3148800 —-a-w- c:\windows\system32\win32k.sys
    2012-08-14 21:27 . 2012-05-14 05:26 956928 —-a-w- c:\windows\system32\localspl.dll
    2012-08-03 07:58 . 2012-08-03 07:58 ——– d—–w- c:\programdata\mquadr.at
    2012-08-03 07:57 . 2012-08-03 08:33 ——– d—–w- c:\program files (x86)\KPN
    2012-08-03 07:56 . 2012-08-03 07:56 ——– d—–w- c:\users\Jesper\AppData\Local\PackageAware
    2012-07-30 21:52 . 2012-07-30 21:52 103904 —-a-w- c:\program files (x86)\Mozilla Firefox\plugins
    ppdf32.dll
    2012-07-30 21:52 . 2012-07-30 21:52 103904 —-a-w- c:\program files (x86)\Internet Explorer\Plugins
    ppdf32.dll
    2012-07-25 18:58 . 2012-07-25 18:58 ——– d—–w- c:\programdata\TomTom
    2012-07-25 18:45 . 2012-07-25 18:45 ——– d—–w- c:\users\Jesper\AppData\Roaming\TomTom
    2012-07-25 18:45 . 2012-07-25 18:45 ——– d—–w- c:\users\Jesper\AppData\Local\TomTom
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-08-20 16:43 . 2010-04-28 21:09 473072 —-a-w- c:\windows\SysWow64\deployJava1.dll
    2012-08-19 21:55 . 2009-07-13 23:19 328704 —-a-w- c:\windows\system32\services.exe
    2012-08-15 07:08 . 2009-10-26 20:24 62134624 —-a-w- c:\windows\system32\MRT.exe
    2012-07-03 17:05 . 2012-04-04 21:25 426184 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-07-03 17:05 . 2011-05-30 20:53 70344 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-06-09 05:43 . 2012-07-12 10:57 14172672 —-a-w- c:\windows\system32\shell32.dll
    2012-06-06 18:59 . 2012-06-06 18:59 1070152 —-a-w- c:\windows\SysWow64\MSCOMCTL.OCX
    2012-06-06 06:06 . 2012-07-12 10:57 2004480 —-a-w- c:\windows\system32\msxml6.dll
    2012-06-06 06:06 . 2012-07-12 10:57 1881600 —-a-w- c:\windows\system32\msxml3.dll
    2012-06-06 06:02 . 2012-07-12 10:56 1133568 —-a-w- c:\windows\system32\cdosys.dll
    2012-06-06 05:05 . 2012-07-12 10:57 1390080 —-a-w- c:\windows\SysWow64\msxml6.dll
    2012-06-06 05:05 . 2012-07-12 10:57 1236992 —-a-w- c:\windows\SysWow64\msxml3.dll
    2012-06-06 05:03 . 2012-07-12 10:56 805376 —-a-w- c:\windows\SysWow64\cdosys.dll
    2012-06-02 22:19 . 2012-06-26 21:24 38424 —-a-w- c:\windows\system32\wups.dll
    2012-06-02 22:19 . 2012-06-26 21:24 2428952 —-a-w- c:\windows\system32\wuaueng.dll
    2012-06-02 22:19 . 2012-06-26 21:24 57880 —-a-w- c:\windows\system32\wuauclt.exe
    2012-06-02 22:19 . 2012-06-26 21:24 44056 —-a-w- c:\windows\system32\wups2.dll
    2012-06-02 22:19 . 2012-06-26 21:24 701976 —-a-w- c:\windows\system32\wuapi.dll
    2012-06-02 22:15 . 2012-06-26 21:24 2622464 —-a-w- c:\windows\system32\wucltux.dll
    2012-06-02 22:15 . 2012-06-26 21:24 99840 —-a-w- c:\windows\system32\wudriver.dll
    2012-06-02 13:19 . 2012-06-26 21:24 186752 —-a-w- c:\windows\system32\wuwebv.dll
    2012-06-02 13:15 . 2012-06-26 21:24 36864 —-a-w- c:\windows\system32\wuapp.exe
    2012-06-02 05:50 . 2012-07-12 10:56 458704 —-a-w- c:\windows\system32\drivers\cng.sys
    2012-06-02 05:48 . 2012-07-12 10:56 95600 —-a-w- c:\windows\system32\drivers\ksecdd.sys
    2012-06-02 05:48 . 2012-07-12 10:56 151920 —-a-w- c:\windows\system32\drivers\ksecpkg.sys
    2012-06-02 05:45 . 2012-07-12 10:56 340992 —-a-w- c:\windows\system32\schannel.dll
    2012-06-02 05:44 . 2012-07-12 10:56 307200 —-a-w- c:\windows\system32
    crypt.dll
    2012-06-02 04:40 . 2012-07-12 10:56 22016 —-a-w- c:\windows\SysWow64\secur32.dll
    2012-06-02 04:40 . 2012-07-12 10:56 225280 —-a-w- c:\windows\SysWow64\schannel.dll
    2012-06-02 04:39 . 2012-07-12 10:56 219136 —-a-w- c:\windows\SysWow64
    crypt.dll
    2012-06-02 04:34 . 2012-07-12 10:56 96768 —-a-w- c:\windows\SysWow64\sspicli.dll
    .
    .
    ((((((((((((((((((((((((((((( SnapShot@2012-08-20_19.39.18 )))))))))))))))))))))))))))))))))))))))))
    .
    - 2009-07-14 04:54 . 2012-08-20 05:30 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2009-07-14 04:54 . 2012-08-21 20:14 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2009-07-14 04:54 . 2012-08-21 20:14 49152 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2009-07-14 04:54 . 2012-08-20 05:30 49152 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2009-08-18 10:28 . 2012-08-20 21:49 57754 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 05:10 . 2012-08-20 21:49 46620 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2009-10-26 20:32 . 2012-08-20 21:49 22962 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3244703278-4158541130-2026294571-1000_UserData.bin
    + 2009-07-14 04:46 . 2012-08-21 16:48 94000 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
    + 2009-11-04 01:06 . 2012-08-20 20:28 2182 c:\windows\system32\wdi\ERCQueuedResolutions.dat
    - 2012-08-20 19:38 . 2012-08-20 19:38 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2012-08-20 21:46 . 2012-08-20 21:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2012-08-20 19:38 . 2012-08-20 19:38 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2012-08-20 21:46 . 2012-08-20 21:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2009-07-14 04:54 . 2012-08-21 20:14 278528 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2009-07-14 04:54 . 2012-08-20 05:30 278528 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-10-27 21:38 . 2012-08-21 22:26 268004 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
    + 2009-10-27 10:32 . 2012-08-22 00:13 299740 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
    - 2009-07-14 05:01 . 2012-08-20 19:27 417904 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2009-07-14 05:01 . 2012-08-20 20:51 417904 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2010-10-29 01:22 . 2012-08-20 20:51 39416348 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3244703278-4158541130-2026294571-1000-12288.dat
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-11 39408]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]
    "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
    "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-03-27 421736]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-1 1079584]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon
    otify\VESWinlogon]
    2009-07-01 09:49 98304 ——w- c:\windows\System32\VESWinlogon.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "mixer3"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36]
    @=""
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys]
    @=""
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 135664]
    R2 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-07-27 427304]
    R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-07-30 35104]
    R3 DCamUSBVM;Lenovo Q350 USB PC Camera;c:\windows\system32\Drivers\usbVM31b.sys [2005-09-19 142336]
    R3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;c:\windows\system32\DRIVERS\aabed2.sys [2008-03-20 28672]
    R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 135664]
    R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-20 113120]
    R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
    R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
    R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736]
    R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-06-26 357672]
    R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2009-06-17 110888]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-26 1255736]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-05-20 55280]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-07-27 203264]
    S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [2009-07-24 189984]
    S2 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-07-27 120104]
    S2 SOHDBSvr;VAIO Media plus Database Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-07-27 70952]
    S2 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-07-27 75048]
    S2 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-07-27 91432]
    S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
    S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2009-07-16 411496]
    S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-07-22 642920]
    S2 VSNService;VSNService;c:\program files\Sony\VAIO Smart Network\VSNService.exe [2009-08-12 522240]
    S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
    S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS
    etw5v64.sys [2009-06-05 5435904]
    S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2009-06-11 11392]
    S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-06-26 468264]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-07-31 393216]
    S4 AvgTdiA;AVG Free Network Redirector x64;c:\windows\System32\Drivers\avgtdia.sys [x]
    .
    .
    — Andere Services/Drivers In Geheugen —
    .
    *Deregistered* - AvgLdx64
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-08-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 14:44]
    .
    2012-08-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-20 14:44]
    .
    .
    ——— X64 Entries ———–
    .
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-24 7938080]
    "Apoint"="c:\program files (x86)\Apoint\Apoint.exe" [BU]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x1
    .
    ——- Bijkomende Scan ——-
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.nu.nl/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
    IE: Pagina verzenden naar &Bluetooth-apparaat… - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    TCP: DhcpNameServer = 192.168.2.254
    TCP: Interfaces\{FEED30C4-7D45-495C-B2FE-ABDB3E51713E}\052796E63756E6762716368647: NameServer = 192.168.1.254,195.241.77.55
    DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} - hxxp://kitchenplanner.ikea.com/NL/Core/Player/2020PlayerAX_IKEA_Win32.cab
    FF - ProfilePath - c:\users\Jesper\AppData\Roaming\Mozilla\Firefox\Profiles\lzirhxdv.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.kpnvandaag.nl
    FF - prefs.js: network.proxy.gopher -
    FF - prefs.js: network.proxy.gopher_port - 0
    FF - prefs.js: network.proxy.type - 0
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_257_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_257.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Voltooingstijd: 2012-08-22 19:28:25
    ComboFix-quarantined-files.txt 2012-08-22 17:28
    ComboFix2.txt 2012-08-20 19:57
    .
    Pre-Run: 351.604.985.856 bytes beschikbaar
    Post-Run: 351.990.067.200 bytes beschikbaar
    .
    - - End Of File - - 72370B689A7455E9F5B34659B4515B4C









  • We kijken verder:

    [b:3d438f3f44]Welk programma[/b:3d438f3f44]:
  • Weer wat gevonden:


    Emsisoft Emergency Kit - Versie 2.0
    Laatste Update: 22-8-2012 19:48:52

    Scaninstellingen:

    Scantype: Diepe scan
    Objecten: Rootkits, Geheugen, Sporen, C:\
    Scan archieven: Aan
    ADS Scan: Aan

    Scan gestart: 22-8-2012 19:50:37

    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5f3936be-1c9c4ab8 -> a.class Ontdekt: Exploit.Java.CVE-2010!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5f3936be-1c9c4ab8 -> b.class Ontdekt: Exploit.Java.CVE-2011-3544!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5f3936be-1c9c4ab8 -> Field.class Ontdekt: Exploit.Java.CVE-2011-3544!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5f3936be-1c9c4ab8 -> Photo.class Ontdekt: Exploit.Java.CVE!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\48c8bd8-43361ffd -> support\Attachment.class Ontdekt: Exploit.Java.Blacole!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\48c8bd8-43361ffd -> support\SendMail.class Ontdekt: JAVA.Agent!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\48c8bd8-43361ffd -> support\SmartySplitter.class Ontdekt: Trojan.Java.Agent!E2

    Gescand 619707
    Gevonden 7

    Scan geëindigd: 22-8-2012 20:58:17
    Scantijd: 1:07:40

    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\48c8bd8-43361ffd -> support\SmartySplitter.class Verwijderd Trojan.Java.Agent!E2
    C:\Users\Jesper\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62\5f3936be-1c9c4ab8 -> Photo.class Verwijderd Exploit.Java.CVE!E2

    Verwijderd 2
  • Laat mij weten hoe jouw Windows inmiddels op de fix heeft gereageerd?
  • Windows lijkt weer volledig en snel te werken! Waarvoor zeer veel dank! Ik hoop dat mijn computer weer volledig schoon is en dat ik hem ook schoon kan houden. Dank voor alle hulp
  • Dan doen we nu het volgende: een test, om te kijken hoe goed de veiligheidssituatie in Windows is.

    Download naar je bureaublad [b:8d49b93591].
    [list:8d49b93591][*:8d49b93591] Klik/dubbelklik op [b:8d49b93591]SecurityCheck.exe[/b:8d49b93591] en let op de instrukties in het zwarte venster.
    [*:8d49b93591] Een Kladblok document genaamd [b:8d49b93591]checkup.txt[/b:8d49b93591] dient automatisch open te gaan; sluit dit document via opslaan op het bureaublad.
    [*:8d49b93591] Indien een van je veiligheidstools rapporteert, dat DIG.EXE het internet op wil, sta dit dan toe.[/list:u:8d49b93591]
    Post de inhoud van [b:8d49b93591]checkup.txt [/b:8d49b93591]in je volgende post.
  • Ok, dit is wat er uit kwam.


    Results of screen317's Security Check version 0.99.46
    Windows 7 Service Pack 1 x64
  • Results of screen317's Security Check version 0.99.46
    Windows 7 Service Pack 1 x64
  • Ik zie dat jij al zelf bezig bent geweest met vernieuwen.

    Eerst Java; de versie die jij gebruikt is 6 update 34 en is mogelijk al de laatste versie in deze Java reeks.
    Want Oracle is alweer een poosje bezig met de serie 7.
    Het is in mijn ogen dan ook beter dat je die versiesprong gaat maken - ook omdat ik zelf heb gemerkt dat het updateproces nu op de juiste wijze werkt.

    [b:9476021f50]
  • Ik heb alles inmiddels geupdate en de UAC weer aangezet voor de veiligheid.

    Het enige probleem dat ik nu nog heb is dat ik mijn windows update niet meer kan gebruiken. Ik kwam er bij services achter dat BITS (background intelligent transfer service) niet aanwezig is en nergens te vinden is. Is er een mogelijkheid om dit terug te zetten?

    Alvast bedankt

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.