Vraag & Antwoord

Beveiliging & privacy

vraagje voor abraham,pc is traag

Anoniem
None
26 antwoorden
  • hallo abraham,mijn pc is sinds een week of 3 heel erg traag,eenvoudige spellen zoals mahjong zijn nauwelijks te spelen omdat de muis vaak blijft hangen(stottert) ook pagina;s worden heel langzaam geladen en het afsluiten idem dito.
    Ik heb een systeemherstel geprobeerd maar ook dit doet hij niet meer.

    mijn pc is ong 3 jaar oud en draait op windows xp en browser is firefox.
    ik heb hem gescant met malwarebytes,spybot,atf-cleaner en cw shredder maar er wordt niets gevonden,ikzelf denk dat het aan firefox ligt.
    hierbij zend ik u de hi-jack log en ik hoop dat u mij verder kunt helpen.
    b.v.d ria.

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 22:47:40, on 26-11-2012
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    C:\Program Files\Java\jre7\bin\jqs.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
    SvcLog.exe
    C:\WINDOWS\system32
    vsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
    SvcIp.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\UPC\bin\sprtcmd.exe
    C:\Program Files\AVAST Software\Avast\avastUI.exe
    C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Epson Software\Event Manager\EEventManager.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE
    C:\Program Files\uTorrent\uTorrent.exe
    C:\PROGRA~1\Webshots\315~1.761\Webshots.scr
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\UPC\agentui\bcont.exe
    F:\software\hi-jack this\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=71126
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O2 - BHO: free-downloads.net - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [UPC] "C:\Program Files\UPC\bin\sprtcmd.exe" /P UPC
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE /EPT "EPLTarget\P0000000000000000" /M "Epson Stylus SX440"
    O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE /EPT "EPLTarget\P0000000000000001" /M "Epson Stylus SX440"
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\3.1.5.7617\Launcher.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1203547422406
    O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
    SvcIp.exe
    O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
    SvcLog.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
    vsvc32.exe
    O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe


    End of file - 9553 bytes





  • Hallo Ria, begin met verwijderen van de NVidia NetworkAccessManager via [b:c7cf774417]
  • hallo abraham,hierbij de gevraagde logfiles.
    adwcleaner:
    # AdwCleaner v2.009 - Verslag gemaakt op 27/11/2012 om 10:22:26
    # Geactualiseerd op 24/11/2012 door Xplode
    # Besturingssysteem : Microsoft Windows XP Service Pack 3 (32 bits)
    # Gebruiker : RIA - RIA-3BAF41774F7
    # Opstarten Modus : Normale modus
    # Gelanceerd vanaf : F:\software\adwcleander\adwcleaner.exe
    # Optie [Verwijderen]


    ***** [Diensten] *****


    ***** [Files / Mappen] *****

    File Verwijdert : C:\user.js
    File Verwijdert : C:\WINDOWS\system32\conduitEngine.tmp
    Map Verwijdert : C:\Documents and Settings\All Users\Application Data\AGI
    Map Verwijdert : C:\Documents and Settings\All Users\Application Data\Tarma Installer
    Map Verwijdert : C:\Documents and Settings\RIA\Application Data\AGI
    Map Verwijdert : C:\Documents and Settings\RIA\Local Settings\Application Data\Conduit
    Map Verwijdert : C:\Documents and Settings\RIA\Local Settings\Application Data\free-downloads.net
    Map Verwijdert : C:\Program Files\AGI
    Map Verwijdert : C:\Program Files\Conduit
    Map Verwijdert : C:\Program Files\free-downloads.net

    ***** [Register] *****

    Sleutel Verwijdert : HKCU\Software\AGI
    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\SmartBar
    Sleutel Verwijdert : HKCU\Software\Conduit
    Sleutel Verwijdert : HKCU\Software\free-downloads.net
    Sleutel Verwijdert : HKCU\Software\IM
    Sleutel Verwijdert : HKCU\Software\ImInstaller
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKCU\Software\PriceGong
    Sleutel Verwijdert : HKCU\Software\SmartBar
    Sleutel Verwijdert : HKCU\Software\Softonic
    Sleutel Verwijdert : HKCU\Toolbar
    Sleutel Verwijdert : HKLM\Software\AGI
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\agihelper.AGUtils
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{8ED24CCC-C483-4005-A6F0-68FAB7B56997}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Conduit.Engine
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.BHO
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.Sandbox
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.Sandbox.1
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT1098640
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2865317
    Sleutel Verwijdert : HKLM\Software\Conduit
    Sleutel Verwijdert : HKLM\Software\free-downloads.net
    Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
    Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
    Sleutel Verwijdert : HKLM\Software\IB Updater
    Sleutel Verwijdert : HKLM\Software\Iminent
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{068D5947-1D0F-4A32-BD21-2B7B838E2401}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011501160}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA31EF2E-1F2F-47F3-BC66-95DB10B34EB0}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\facemoods
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\free-downloads.net Toolbar
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\iMesh 1 MediaBar
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8ED24CCC-C483-4005-A6F0-68FAB7B56997}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\free-downloads.net Toolbar
    Sleutel Verwijdert : HKLM\Software\Tarma Installer
    Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{ECDEE021-0D17-467F-A1FF-C7A115230949}]
    Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{ECDEE021-0D17-467F-A1FF-C7A115230949}]
    Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

    ***** [Browsers] *****

    -\\ Internet Explorer v8.0.6001.18702

    [OK] Het register bevat geen enkele ongeoorloofde invoer.

    -\\ Mozilla Firefox v17.0 (nl)

    Profielnaam : default-1352403524218 [Profil par défaut]
    File : C:\Documents and Settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\prefs.js

    [OK] De file bevat geen enkele ongeoorloofde invoer.

    -\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

    File : C:\Documents and Settings\RIA\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

    [OK] De file bevat geen enkele ongeoorloofde invoer.

    *************************

    AdwCleaner[S1].txt - [6042 octets] - [27/11/2012 10:22:26]

    ########## EOF - C:\AdwCleaner[S1].txt - [6102 octets] ##########

    combofix:

    ComboFix 12-11-26.02 - RIA 27-11-2012 10:41:47.1.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1919.1443 [GMT 1:00]
    Gestart vanuit: c:\documents and settings\RIA\Bureaublad\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    [i:17eb1b1168] ADS - WINDOWS: deleted 48 bytes in 1 streams. [/i:17eb1b1168]
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\All Users\Application Data\TEMP
    c:\documents and settings\RIA\Application Data\inst.exe
    c:\documents and settings\RIA\Application Data\vso_ts_preview.xml
    c:\windows\IsUn0413.exe
    c:\windows\system32\ReadMe.txt
    c:\windows\system32\Thumbs.db
    E:\install.exe
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-10-27 to 2012-11-27 ))))))))))))))))))))))))))))))
    .
    .
    2012-11-26 20:31 . 2012-11-26 20:35 ——– d—–w- c:\program files\a-squared Free
    2012-11-25 20:23 . 2012-11-27 09:25 ——– d–h–r- c:\documents and settings\RIA\Onlangs geopend
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\ElevatedDiagnostics
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\IDM
    2012-11-25 20:20 . 2012-11-25 20:20 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\ABBYY
    2012-11-25 20:19 . 2012-11-25 20:19 ——– d—–w- c:\program files\Mozilla Maintenance Service
    2012-11-14 10:29 . 2012-11-14 10:29 ——– dc—-w- c:\documents and settings\All Users\Application Data\Ahead
    2012-11-11 19:28 . 2007-06-03 13:31 10752 —-a-w- c:\windows\system32\ff_vfw.dll
    2012-11-11 19:28 . 2007-04-24 16:30 60273 —-a-w- c:\windows\system32\pthreadGC2.dll
    2012-11-11 19:28 . 2012-11-25 20:12 ——– d—–w- c:\program files\AviSynth 2.5
    2012-11-11 19:27 . 2012-11-25 20:12 ——– d—–w- c:\program files\The FilmMachine
    2012-11-07 16:33 . 2012-11-08 15:47 8192 —-a-w- c:\windows\system32\E_DCINST.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 95232 —-a-w- c:\windows\system32\E_FLBHBE.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 81408 —-a-w- c:\windows\system32\E_FD4BHBE.DLL
    2012-11-07 16:12 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\ABBYY
    2012-11-07 16:12 . 2012-11-25 20:14 ——– d—–w- c:\program files\ABBYY FineReader 9.0 Sprint
    2012-11-07 16:12 . 2012-11-07 16:12 ——– d—–w- c:\program files\Common Files\ABBYY
    2012-11-07 16:11 . 2012-11-07 16:11 ——– dc—-w- c:\documents and settings\All Users\Application Data\UDL
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\ensppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\ensppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enspres.dll
    2012-11-07 16:08 . 2012-11-25 20:15 ——– d—–w- c:\program files\EpsonNet
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\enppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\enppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enpres.dll
    2012-11-07 16:08 . 2012-11-25 20:14 ——– d—–w- c:\program files\Common Files\EPSON
    2012-11-07 16:08 . 2012-11-07 16:11 ——– d—–w- c:\program files\EPSON Software
    2012-11-07 16:05 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\EPSON
    2012-11-07 16:04 . 2009-10-15 23:00 132560 —-a-w- c:\windows\system32\esdevapp.exe
    2012-11-07 16:04 . 2009-09-16 23:00 342016 —-a-w- c:\windows\system32\eswiaud.dll
    2012-10-31 15:39 . 2012-10-31 15:39 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\Sun
    2012-10-31 15:28 . 2012-10-31 15:28 93672 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-11-14 09:47 . 2012-04-17 07:10 697272 —-a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-11-14 09:47 . 2011-05-14 07:12 73656 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-10-31 15:28 . 2012-06-30 20:37 821736 —-a-w- c:\windows\system32
    pdeployJava1.dll
    2012-10-31 15:28 . 2008-02-20 22:35 143872 —-a-w- c:\windows\system32\javacpl.cpl
    2012-10-30 22:51 . 2012-06-27 18:51 361032 —-a-w- c:\windows\system32\drivers\aswSP.sys
    2012-10-30 22:51 . 2012-06-27 18:51 738504 —-a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-10-30 22:51 . 2012-06-27 18:51 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-10-30 22:51 . 2012-06-27 18:51 35928 —-a-w- c:\windows\system32\drivers\aswRdr.sys
    2012-10-30 22:51 . 2012-06-27 18:51 97608 —-a-w- c:\windows\system32\drivers\aswmon2.sys
    2012-10-30 22:51 . 2012-06-27 18:51 89752 —-a-w- c:\windows\system32\drivers\aswmon.sys
    2012-10-30 22:51 . 2012-06-27 18:51 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-10-30 22:51 . 2012-06-27 18:51 25256 —-a-w- c:\windows\system32\drivers\aavmker4.sys
    2012-10-30 22:51 . 2012-06-27 18:51 41224 —-a-w- c:\windows\avastSS.scr
    2012-10-30 22:50 . 2012-06-27 18:51 227648 —-a-w- c:\windows\system32\aswBoot.exe
    2012-10-22 19:57 . 2004-08-03 22:56 1866496 —-a-w- c:\windows\system32\win32k.sys
    2012-10-02 18:04 . 2004-08-03 23:03 58368 —-a-w- c:\windows\system32\synceng.dll
    2012-09-29 18:54 . 2012-06-30 18:31 22856 —-a-w- c:\windows\system32\drivers\mbam.sys
    2007-03-12 16:59 . 2007-03-12 16:59 299008 -c–a-w- c:\program files
    avigram_register.exe
    2012-11-21 14:15 . 2012-11-21 14:15 262112 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-10-30 22:50 121528 —-a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "EPLTarget\P0000000000000000"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "EPLTarget\P0000000000000001"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-11-01 289072]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-30 7634944]
    "nwiz"="nwiz.exe" [2006-10-30 1622016]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-30 86016]
    "RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
    "SkyTel"="SkyTel.EXE" [2007-06-15 1826816]
    "UPC"="c:\program files\UPC\bin\sprtcmd.exe" [2005-08-16 192512]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
    "Reader Application Helper"="c:\program files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" [2012-07-12 892928]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\RIA\Menu Start\Programma's\Opstarten\
    Webshots.lnk - c:\program files\Webshots\3.1.5.7617\Launcher.exe [2009-12-29 157088]
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Netpresenter Player.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Netpresenter Player.lnk
    backup=c:\windows\pss\Netpresenter Player.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\WinZip Quick Pick.lnk
    backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPLTarget
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2009-01-11 15:59 2522048 -c–a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    2006-09-28 19:21 57344 -c–a-w- c:\program files\SlySoft\CloneCD\CloneCDTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 —-a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPLTarget\P0000000000000000]
    2012-11-08 15:47 249440 —-a-w- c:\windows\system32\spool\drivers\w32x86\3\E_FATIHBE.EXE
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    2006-01-12 14:40 155648 -c–a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\WINDOWS\\system32\\msiexec.exe"=
    "c:\\Documents and Settings\\RIA\\Local Settings\\Temp\\ibtmp213d533\\component_567"=
    "c:\\Program Files\\EPSON Software\\Event Manager\\EEventManager.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "58471:TCP"= 58471:TCP:Pando P2P TCP Listening Port
    "58471:UDP"= 58471:UDP:Pando P2P UDP Listening Port
    "58023:TCP"= 58023:TCP:Pando P2P TCP Listening Port
    "58023:UDP"= 58023:UDP:Pando P2P UDP Listening Port
    "57447:TCP"= 57447:TCP:Pando P2P TCP Listening Port
    "57447:UDP"= 57447:UDP:Pando P2P UDP Listening Port
    "13532:TCP"= 13532:TCP:BitCometBeta 13532 TCP
    "13532:UDP"= 13532:UDP:BitCometBeta 13532 UDP
    "50005:TCP"= 50005:TCP:utorrent1
    "50005:UDP"= 50005:UDP:utorrent1
    .
    R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23-2-2009 13:54 717296]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27-6-2012 19:51 738504]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [27-6-2012 19:51 361032]
    R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [5-6-2012 23:00 101720]
    R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [26-11-2012 21:31 1872320]
    R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [14-5-2009 17:07 759048]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27-6-2012 19:51 21256]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18-3-2008 13:04 47360]
    S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys –> c:\windows\system32\DRIVERS\Lbd.sys [?]
    S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys –> c:\windows\system32\drivers\hitmanpro3.sys [?]
    S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys –> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 09:47]
    .
    2012-11-27 c:\windows\Tasks\avast! Emergency Update.job
    - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-01 22:50]
    .
    2012-11-27 c:\windows\Tasks\OGALogon.job
    - c:\windows\system32\OGAEXEC.exe [2009-08-03 13:07]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = about:blank
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 192.168.0.1
    FF - ProfilePath - c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\
    FF - ExtSQL: 2012-11-08 12:59; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
    FF - ExtSQL: 2012-11-19 21:20; {2d3fbcf7-be69-4433-8858-c621a8d0e58d}; c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    MSConfigStartUp-Ad-Aware Browsing Protection - c:\documents and settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
    MSConfigStartUp-BitTorrent - c:\program files\BitTorrent\BitTorrent.exe
    MSConfigStartUp-Creative WebCam Tray - c:\program files\Creative\Shared Files\CamTray.exe
    MSConfigStartUp-Easy-PrintToolBox - c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE
    MSConfigStartUp-EEventManager - c:\program files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
    MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
    MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    AddRemove-{2857dbef-0b50-361c-8690-7d505747009f} - c:\program files\AGI\core\4.2\InstallerGUI.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2012-11-27 10:53
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scannen van verborgen processen …
    .
    scannen van verborgen autostart items …
    .
    scannen van verborgen bestanden …
    .
    Scan succesvol afgerond
    verborgen bestanden: 0
    .
    **************************************************************************
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    Voltooingstijd: 2012-11-27 10:58:09
    ComboFix-quarantined-files.txt 2012-11-27 09:58
    .
    Pre-Run: 61.779.423.232 bytes beschikbaar
    Post-Run: 62.178.799.616 bytes beschikbaar
    .
    WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    UnsupportedDebug="do not select this" /debug
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer
    [spybotsd]
    timeout.old=30
    .
    - - End Of File - - 04BF7F6D390996D6D49BB7C4E7F241EB

    gr.ria

  • Hallo Ria, hoe gaat het intussen?

    En nog een opdracht: verwijder Lavasoft AdAware.
    Dit tool met zijn slechte virusherkenning heb je echt niet meer nodig.
  • [quote:9734291d24="Abraham54"]Hallo Ria, hoe gaat het intussen?

    En nog een opdracht: verwijder Lavasoft AdAware.
    Dit tool met zijn slechte virusherkenning heb je echt niet meer nodig.[/quote:9734291d24]

    hallo abraham,nog niet echt beter,ik kan nog steeds geen spel spelen.
    gr.ria
  • Heb je inmiddels Lavasoft AdAware kunnen verwijderen?

    Download [b:f055e387f9] en plaats het op je bureaublad.
    [list:f055e387f9]
    [*:f055e387f9] Voordat je TDSSKiller uitvoert is het raadzaam om de onderstaande handleiding van TDSSKiller te raadplegen.
    [list:f055e387f9]
    [*:f055e387f9] [b:f055e387f9][/b:f055e387f9][/list:u:f055e387f9]
    [*:f055e387f9] Dubbelklik op [b:f055e387f9]TDSSKiller.exe[/b:f055e387f9] om de tool te starten. ([i:f055e387f9]Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken[/i:f055e387f9]).
    [*:f055e387f9] [i:f055e387f9]Als er door TDSSkiller een update wordt gevonden klikt u op de knop "[b:f055e387f9]Load update[/b:f055e387f9]"[/i:f055e387f9]
    [img:f055e387f9]http://www.imgdumper.nl/uploads6/506422ecca8b3/506422ecc81a0-TDSSkiller%28update%29.jpg[/img:f055e387f9]
    [*:f055e387f9] [i:f055e387f9]Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.[/i:f055e387f9]
    [*:f055e387f9] [i:f055e387f9]Start nu TDSSkiller opnieuw.[/i:f055e387f9]
    [*:f055e387f9] Klik op "[b:f055e387f9]Change parameters[/b:f055e387f9]" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    [img:f055e387f9]http://www.imgdumper.nl/uploads6/5064230056569/506423005368c-TDSSkiller%28opties%29.jpg[/img:f055e387f9]
    [*:f055e387f9] Klik op de knop "[b:f055e387f9]Start Scan[/b:f055e387f9]" en volg de instructies.
    [list:f055e387f9]
    [*:f055e387f9] Gebruik
  • hallo abraham,hierbij de log van de tdsskiller

    15:49:00.0578 1764 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    15:49:00.0828 1764 ============================================================
    15:49:00.0828 1764 Current date / time: 2012/11/27 15:49:00.0828
    15:49:00.0828 1764 SystemInfo:
    15:49:00.0828 1764
    15:49:00.0828 1764 OS Version: 5.1.2600 ServicePack: 3.0
    15:49:00.0828 1764 Product type: Workstation
    15:49:00.0828 1764 ComputerName: RIA-3BAF41774F7
    15:49:00.0828 1764 UserName: RIA
    15:49:00.0828 1764 Windows directory: C:\WINDOWS
    15:49:00.0828 1764 System windows directory: C:\WINDOWS
    15:49:00.0828 1764 Processor architecture: Intel x86
    15:49:00.0828 1764 Number of processors: 2
    15:49:00.0828 1764 Page size: 0x1000
    15:49:00.0828 1764 Boot type: Normal boot
    15:49:00.0828 1764 ============================================================
    15:49:02.0484 1764 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    15:49:02.0500 1764 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    15:49:02.0515 1764 ============================================================
    15:49:02.0515 1764 \Device\Harddisk0\DR0:
    15:49:02.0515 1764 MBR partitions:
    15:49:02.0515 1764 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F00, BlocksNum 0xF46566
    15:49:02.0531 1764 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xF4A4A5, BlocksNum 0x2629FBC
    15:49:02.0546 1764 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x35744A0, BlocksNum 0x16E78D8
    15:49:02.0562 1764 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x4C5BDB7, BlocksNum 0x7A51F4
    15:49:02.0578 1764 \Device\Harddisk0\DR0\Partition5: MBR, Type 0xB, StartLBA 0x5400FEA, BlocksNum 0x7A51F4
    15:49:02.0593 1764 \Device\Harddisk0\DR0\Partition6: MBR, Type 0xB, StartLBA 0x5BA621D, BlocksNum 0x1E88C4A
    15:49:02.0609 1764 \Device\Harddisk0\DR0\Partition7: MBR, Type 0xB, StartLBA 0x7A2EEA6, BlocksNum 0x1E79146
    15:49:02.0609 1764 \Device\Harddisk1\DR1:
    15:49:02.0609 1764 MBR partitions:
    15:49:02.0609 1764 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC6B9CAC
    15:49:02.0625 1764 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC6B9D2A, BlocksNum 0xC6B9CAC
    15:49:02.0640 1764 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x18D73A15, BlocksNum 0xC6B5DEB
    15:49:02.0640 1764 ============================================================
    15:49:02.0671 1764 C: <-> \Device\Harddisk1\DR1\Partition1
    15:49:02.0703 1764 E: <-> \Device\Harddisk1\DR1\Partition2
    15:49:02.0734 1764 F: <-> \Device\Harddisk1\DR1\Partition3
    15:49:02.0750 1764 G: <-> \Device\Harddisk0\DR0\Partition1
    15:49:02.0765 1764 H: <-> \Device\Harddisk0\DR0\Partition2
    15:49:02.0781 1764 I: <-> \Device\Harddisk0\DR0\Partition3
    15:49:02.0796 1764 J: <-> \Device\Harddisk0\DR0\Partition4
    15:49:02.0812 1764 K: <-> \Device\Harddisk0\DR0\Partition5
    15:49:02.0812 1764 L: <-> \Device\Harddisk0\DR0\Partition6
    15:49:02.0828 1764 M: <-> \Device\Harddisk0\DR0\Partition7
    15:49:02.0828 1764 ============================================================
    15:49:02.0828 1764 Initialize success
    15:49:02.0828 1764 ============================================================
    15:49:29.0531 2220 ============================================================
    15:49:29.0531 2220 Scan started
    15:49:29.0531 2220 Mode: Manual;
    15:49:29.0531 2220 ============================================================
    15:49:32.0296 2220 ================ Scan system memory ========================
    15:49:32.0312 2220 System memory - ok
    15:49:32.0312 2220 ================ Scan services =============================
    15:49:32.0687 2220 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    15:49:32.0781 2220 a2free - ok
    15:49:32.0937 2220 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    15:49:32.0937 2220 Aavmker4 - ok
    15:49:33.0062 2220 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    15:49:33.0125 2220 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    15:49:33.0156 2220 Abiosdsk - ok
    15:49:33.0187 2220 abp480n5 - ok
    15:49:33.0296 2220 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    15:49:33.0312 2220 ACPI - ok
    15:49:33.0359 2220 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    15:49:33.0375 2220 ACPIEC - ok
    15:49:33.0468 2220 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    15:49:33.0484 2220 AdobeFlashPlayerUpdateSvc - ok
    15:49:33.0515 2220 adpu160m - ok
    15:49:33.0640 2220 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    15:49:33.0656 2220 aec - ok
    15:49:33.0718 2220 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    15:49:33.0734 2220 AFD - ok
    15:49:33.0765 2220 Aha154x - ok
    15:49:33.0796 2220 aic78u2 - ok
    15:49:33.0843 2220 aic78xx - ok
    15:49:33.0906 2220 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    15:49:33.0906 2220 Alerter - ok
    15:49:33.0968 2220 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    15:49:33.0984 2220 ALG - ok
    15:49:34.0000 2220 AliIde - ok
    15:49:34.0078 2220 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    15:49:34.0078 2220 AmdK8 - ok
    15:49:34.0109 2220 amsint - ok
    15:49:34.0171 2220 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    15:49:34.0187 2220 AnyDVD - ok
    15:49:34.0250 2220 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    15:49:34.0265 2220 AppMgmt - ok
    15:49:34.0296 2220 asc - ok
    15:49:34.0328 2220 asc3350p - ok
    15:49:34.0375 2220 asc3550 - ok
    15:49:34.0531 2220 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    15:49:34.0531 2220 Aspi32 - ok
    15:49:34.0656 2220 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    15:49:34.0656 2220 aspnet_state - ok
    15:49:34.0718 2220 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    15:49:34.0734 2220 aswFsBlk - ok
    15:49:34.0781 2220 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    15:49:34.0796 2220 aswMon2 - ok
    15:49:34.0843 2220 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    15:49:34.0843 2220 AswRdr - ok
    15:49:34.0921 2220 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    15:49:34.0968 2220 aswSnx - ok
    15:49:35.0046 2220 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    15:49:35.0062 2220 aswSP - ok
    15:49:35.0109 2220 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    15:49:35.0125 2220 aswTdi - ok
    15:49:35.0171 2220 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    15:49:35.0187 2220 AsyncMac - ok
    15:49:35.0234 2220 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    15:49:35.0250 2220 atapi - ok
    15:49:35.0265 2220 Atdisk - ok
    15:49:35.0312 2220 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    15:49:35.0328 2220 Atmarpc - ok
    15:49:35.0375 2220 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    15:49:35.0390 2220 AudioSrv - ok
    15:49:35.0437 2220 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    15:49:35.0453 2220 audstub - ok
    15:49:35.0531 2220 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    15:49:35.0531 2220 avast! Antivirus - ok
    15:49:35.0593 2220 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    15:49:35.0609 2220 Beep - ok
    15:49:35.0671 2220 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    15:49:35.0734 2220 BITS - ok
    15:49:35.0796 2220 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    15:49:35.0828 2220 Browser - ok
    15:49:35.0968 2220 catchme - ok
    15:49:36.0015 2220 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    15:49:36.0015 2220 cbidf2k - ok
    15:49:36.0093 2220 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    15:49:36.0109 2220 CCALib8 - ok
    15:49:36.0171 2220 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    15:49:36.0187 2220 CCDECODE - ok
    15:49:36.0218 2220 cd20xrnt - ok
    15:49:36.0281 2220 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    15:49:36.0296 2220 Cdaudio - ok
    15:49:36.0328 2220 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    15:49:36.0343 2220 Cdfs - ok
    15:49:36.0375 2220 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    15:49:36.0375 2220 Cdrom - ok
    15:49:36.0421 2220 Changer - ok
    15:49:36.0484 2220 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    15:49:36.0500 2220 CiSvc - ok
    15:49:36.0531 2220 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    15:49:36.0546 2220 ClipSrv - ok
    15:49:36.0625 2220 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:49:36.0656 2220 clr_optimization_v2.0.50727_32 - ok
    15:49:36.0718 2220 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    15:49:36.0734 2220 clr_optimization_v4.0.30319_32 - ok
    15:49:36.0765 2220 CmdIde - ok
    15:49:36.0796 2220 COMSysApp - ok
    15:49:36.0875 2220 Cpqarray - ok
    15:49:37.0406 2220 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    15:49:37.0421 2220 CryptSvc - ok
    15:49:37.0453 2220 dac2w2k - ok
    15:49:37.0484 2220 dac960nt - ok
    15:49:37.0562 2220 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    15:49:37.0640 2220 DcomLaunch - ok
    15:49:37.0718 2220 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    15:49:37.0734 2220 Dhcp - ok
    15:49:37.0781 2220 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    15:49:37.0796 2220 Disk - ok
    15:49:37.0828 2220 dmadmin - ok
    15:49:37.0937 2220 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    15:49:37.0984 2220 dmboot - ok
    15:49:38.0046 2220 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    15:49:38.0062 2220 dmio - ok
    15:49:38.0093 2220 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    15:49:38.0109 2220 dmload - ok
    15:49:38.0156 2220 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    15:49:38.0187 2220 dmserver - ok
    15:49:38.0218 2220 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    15:49:38.0234 2220 DMusic - ok
    15:49:38.0281 2220 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    15:49:38.0312 2220 Dnscache - ok
    15:49:38.0375 2220 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    15:49:38.0390 2220 Dot3svc - ok
    15:49:38.0421 2220 dpti2o - ok
    15:49:38.0453 2220 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    15:49:38.0468 2220 drmkaud - ok
    15:49:38.0515 2220 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    15:49:38.0546 2220 EapHost - ok
    15:49:38.0593 2220 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    15:49:38.0609 2220 ElbyCDFL - ok
    15:49:38.0656 2220 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    15:49:38.0671 2220 ElbyCDIO - ok
    15:49:38.0703 2220 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    15:49:38.0734 2220 ERSvc - ok
    15:49:38.0796 2220 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    15:49:38.0843 2220 Eventlog - ok
    15:49:38.0906 2220 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    15:49:38.0953 2220 EventSystem - ok
    15:49:38.0984 2220 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    15:49:39.0000 2220 Fastfat - ok
    15:49:39.0062 2220 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    15:49:39.0140 2220 FastUserSwitchingCompatibility - ok
    15:49:39.0187 2220 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    15:49:39.0203 2220 Fdc - ok
    15:49:39.0234 2220 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    15:49:39.0250 2220 Fips - ok
    15:49:39.0281 2220 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    15:49:39.0312 2220 Flpydisk - ok
    15:49:39.0343 2220 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    15:49:39.0375 2220 FltMgr - ok
    15:49:39.0437 2220 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    15:49:39.0453 2220 FontCache3.0.0.0 - ok
    15:49:39.0484 2220 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    15:49:39.0515 2220 Fs_Rec - ok
    15:49:39.0562 2220 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    15:49:39.0578 2220 Ftdisk - ok
    15:49:39.0625 2220 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    15:49:39.0640 2220 Gpc - ok
    15:49:39.0718 2220 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    15:49:39.0734 2220 gusvc - ok
    15:49:39.0796 2220 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    15:49:39.0796 2220 HDAudBus - ok
    15:49:39.0890 2220 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    15:49:39.0890 2220 helpsvc - ok
    15:49:39.0953 2220 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    15:49:39.0968 2220 HidServ - ok
    15:49:40.0015 2220 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    15:49:40.0015 2220 HidUsb - ok
    15:49:40.0046 2220 hitmanpro3 - ok
    15:49:40.0109 2220 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    15:49:40.0140 2220 hkmsvc - ok
    15:49:40.0171 2220 hpn - ok
    15:49:40.0265 2220 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    15:49:40.0281 2220 HTTP - ok
    15:49:40.0328 2220 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    15:49:40.0390 2220 HTTPFilter - ok
    15:49:40.0421 2220 i2omgmt - ok
    15:49:40.0453 2220 i2omp - ok
    15:49:40.0500 2220 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    15:49:40.0515 2220 i8042prt - ok
    15:49:40.0625 2220 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    15:49:40.0687 2220 idsvc - ok
    15:49:40.0750 2220 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    15:49:40.0750 2220 Imapi - ok
    15:49:40.0812 2220 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    15:49:40.0843 2220 ImapiService - ok
    15:49:40.0890 2220 ini910u - ok
    15:49:41.0265 2220 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    15:49:41.0515 2220 IntcAzAudAddService - ok
    15:49:41.0546 2220 IntelIde - ok
    15:49:41.0609 2220 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    15:49:41.0609 2220 Ip6Fw - ok
    15:49:41.0687 2220 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    15:49:41.0703 2220 IpFilterDriver - ok
    15:49:41.0734 2220 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    15:49:41.0750 2220 IpInIp - ok
    15:49:41.0781 2220 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    15:49:41.0796 2220 IpNat - ok
    15:49:41.0843 2220 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    15:49:41.0843 2220 IPSec - ok
    15:49:41.0890 2220 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    15:49:41.0906 2220 IRENUM - ok
    15:49:41.0968 2220 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    15:49:41.0984 2220 isapnp - ok
    15:49:42.0062 2220 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    15:49:42.0093 2220 JavaQuickStarterService - ok
    15:49:42.0125 2220 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    15:49:42.0140 2220 Kbdclass - ok
    15:49:42.0171 2220 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    15:49:42.0187 2220 kbdhid - ok
    15:49:42.0234 2220 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    15:49:42.0250 2220 kmixer - ok
    15:49:42.0296 2220 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    15:49:42.0312 2220 KSecDD - ok
    15:49:42.0375 2220 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    15:49:42.0437 2220 lanmanserver - ok
    15:49:42.0484 2220 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    15:49:42.0562 2220 lanmanworkstation - ok
    15:49:42.0593 2220 Lavasoft Kernexplorer - ok
    15:49:42.0640 2220 Lbd - ok
    15:49:42.0671 2220 lbrtfdc - ok
    15:49:42.0750 2220 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    15:49:42.0781 2220 LmHosts - ok
    15:49:42.0828 2220 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    15:49:42.0859 2220 Messenger - ok
    15:49:42.0890 2220 mferkdk - ok
    15:49:42.0953 2220 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    15:49:42.0968 2220 mnmdd - ok
    15:49:43.0015 2220 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    15:49:43.0062 2220 mnmsrvc - ok
    15:49:43.0093 2220 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    15:49:43.0109 2220 Modem - ok
    15:49:43.0140 2220 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    15:49:43.0156 2220 Mouclass - ok
    15:49:43.0218 2220 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    15:49:43.0234 2220 mouhid - ok
    15:49:43.0265 2220 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    15:49:43.0281 2220 MountMgr - ok
    15:49:43.0328 2220 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    15:49:43.0328 2220 MozillaMaintenance - ok
    15:49:43.0359 2220 mraid35x - ok
    15:49:43.0406 2220 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    15:49:43.0421 2220 MRxDAV - ok
    15:49:43.0500 2220 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    15:49:43.0546 2220 MRxSmb - ok
    15:49:43.0609 2220 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    15:49:43.0640 2220 MSDTC - ok
    15:49:43.0718 2220 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    15:49:43.0734 2220 Msfs - ok
    15:49:43.0750 2220 MSIServer - ok
    15:49:43.0812 2220 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    15:49:43.0812 2220 MSKSSRV - ok
    15:49:43.0859 2220 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    15:49:43.0859 2220 MSPCLOCK - ok
    15:49:43.0906 2220 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    15:49:43.0906 2220 MSPQM - ok
    15:49:43.0937 2220 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    15:49:43.0953 2220 mssmbios - ok
    15:49:44.0000 2220 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    15:49:44.0000 2220 MSTEE - ok
    15:49:44.0062 2220 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    15:49:44.0078 2220 MTsensor - ok
    15:49:44.0125 2220 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    15:49:44.0156 2220 Mup - ok
    15:49:44.0187 2220 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    15:49:44.0218 2220 NABTSFEC - ok
    15:49:44.0281 2220 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    15:49:44.0343 2220 napagent - ok
    15:49:44.0375 2220 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    15:49:44.0390 2220 NDIS - ok
    15:49:44.0437 2220 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    15:49:44.0453 2220 NdisIP - ok
    15:49:44.0500 2220 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS
    distapi.sys
    15:49:44.0515 2220 NdisTapi - ok
    15:49:44.0546 2220 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS
    disuio.sys
    15:49:44.0578 2220 Ndisuio - ok
    15:49:44.0609 2220 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS
    diswan.sys
    15:49:44.0625 2220 NdisWan - ok
    15:49:44.0687 2220 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    15:49:44.0703 2220 NDProxy - ok
    15:49:44.0718 2220 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS
    etbios.sys
    15:49:44.0734 2220 NetBIOS - ok
    15:49:44.0781 2220 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS
    etbt.sys
    15:49:44.0812 2220 NetBT - ok
    15:49:44.0875 2220 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32
    etdde.exe
    15:49:44.0921 2220 NetDDE - ok
    15:49:44.0937 2220 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32
    etdde.exe
    15:49:44.0984 2220 NetDDEdsdm - ok
    15:49:45.0015 2220 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    15:49:45.0046 2220 Netlogon - ok
    15:49:45.0093 2220 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32
    etman.dll
    15:49:45.0156 2220 Netman - ok
    15:49:45.0203 2220 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    15:49:45.0234 2220 NetTcpPortSharing - ok
    15:49:45.0296 2220 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    15:49:45.0343 2220 Nla - ok
    15:49:45.0375 2220 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    15:49:45.0390 2220 Npfs - ok
    15:49:45.0453 2220 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    15:49:45.0500 2220 Ntfs - ok
    15:49:45.0531 2220 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    15:49:45.0578 2220 NtLmSsp - ok
    15:49:45.0640 2220 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32
    tmssvc.dll
    15:49:45.0703 2220 NtmsSvc - ok
    15:49:45.0765 2220 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    15:49:45.0781 2220 Null - ok
    15:49:46.0046 2220 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS
    v4_mini.sys
    15:49:46.0281 2220 nv - ok
    15:49:46.0328 2220 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS
    vata.sys
    15:49:46.0343 2220 nvata - ok
    15:49:46.0375 2220 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    15:49:46.0375 2220 NVENETFD - ok
    15:49:46.0421 2220 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS
    vnetbus.sys
    15:49:46.0437 2220 nvnetbus - ok
    15:49:46.0468 2220 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32
    vsvc32.exe
    15:49:46.0515 2220 NVSvc - ok
    15:49:46.0562 2220 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS
    wlnkflt.sys
    15:49:46.0578 2220 NwlnkFlt - ok
    15:49:46.0625 2220 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS
    wlnkfwd.sys
    15:49:46.0640 2220 NwlnkFwd - ok
    15:49:46.0734 2220 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    15:49:46.0781 2220 odserv - ok
    15:49:46.0859 2220 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    15:49:46.0875 2220 ose - ok
    15:49:46.0953 2220 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    15:49:46.0968 2220 Parport - ok
    15:49:47.0015 2220 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    15:49:47.0031 2220 PartMgr - ok
    15:49:47.0078 2220 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    15:49:47.0093 2220 ParVdm - ok
    15:49:47.0125 2220 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    15:49:47.0140 2220 PCI - ok
    15:49:47.0156 2220 PCIDump - ok
    15:49:47.0218 2220 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    15:49:47.0234 2220 PCIIde - ok
    15:49:47.0281 2220 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    15:49:47.0312 2220 Pcmcia - ok
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan global ===============================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan MBR ==================================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan VBR ==================================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ============================================================
    15:49:47.0328 2220 Scan finished
    15:49:47.0328 2220 ============================================================
    15:49:47.0390 3944 Detected object count: 0
    15:49:47.0390 3944 Actual detected object count: 0
    15:50:06.0578 3860 ============================================================
    15:50:06.0578 3860 Scan started
    15:50:06.0578 3860 Mode: Manual; SigCheck; TDLFS;
    15:50:06.0578 3860 ============================================================
    15:50:08.0437 3860 ================ Scan system memory ========================
    15:50:08.0453 3860 System memory - ok
    15:50:08.0453 3860 ================ Scan services =============================
    15:50:08.0812 3860 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    15:50:09.0828 3860 a2free - ok
    15:50:09.0953 3860 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    15:50:10.0078 3860 Aavmker4 - ok
    15:50:10.0203 3860 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    15:50:10.0375 3860 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    15:50:10.0390 3860 Abiosdsk - ok
    15:50:10.0437 3860 abp480n5 - ok
    15:50:10.0531 3860 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    15:50:11.0765 3860 ACPI - ok
    15:50:11.0812 3860 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    15:50:12.0578 3860 ACPIEC - ok
    15:50:12.0671 3860 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    15:50:12.0781 3860 AdobeFlashPlayerUpdateSvc - ok
    15:50:12.0812 3860 adpu160m - ok
    15:50:12.0906 3860 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    15:50:13.0781 3860 aec - ok
    15:50:13.0890 3860 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    15:50:14.0046 3860 AFD - ok
    15:50:14.0062 3860 Aha154x - ok
    15:50:14.0109 3860 aic78u2 - ok
    15:50:14.0140 3860 aic78xx - ok
    15:50:14.0203 3860 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    15:50:15.0140 3860 Alerter - ok
    15:50:15.0203 3860 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    15:50:15.0562 3860 ALG - ok
    15:50:15.0593 3860 AliIde - ok
    15:50:15.0656 3860 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    15:50:15.0796 3860 AmdK8 - ok
    15:50:15.0812 3860 amsint - ok
    15:50:15.0890 3860 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    15:50:16.0000 3860 AnyDVD - ok
    15:50:16.0062 3860 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    15:50:16.0437 3860 AppMgmt - ok
    15:50:16.0468 3860 asc - ok
    15:50:16.0500 3860 asc3350p - ok
    15:50:16.0531 3860 asc3550 - ok
    15:50:16.0640 3860 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    15:50:16.0671 3860 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
    15:50:16.0671 3860 Aspi32 - detected UnsignedFile.Multi.Generic (1)
    15:50:16.0750 3860 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    15:50:16.0843 3860 aspnet_state - ok
    15:50:16.0906 3860 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    15:50:17.0000 3860 aswFsBlk - ok
    15:50:17.0031 3860 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    15:50:17.0140 3860 aswMon2 - ok
    15:50:17.0203 3860 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    15:50:17.0296 3860 AswRdr - ok
    15:50:17.0359 3860 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    15:50:17.0562 3860 aswSnx - ok
    15:50:17.0671 3860 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    15:50:17.0812 3860 aswSP - ok
    15:50:17.0843 3860 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    15:50:17.0937 3860 aswTdi - ok
    15:50:17.0984 3860 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    15:50:18.0750 3860 AsyncMac - ok
    15:50:18.0796 3860 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    15:50:19.0687 3860 atapi - ok
    15:50:19.0718 3860 Atdisk - ok
    15:50:19.0828 3860 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    15:50:20.0718 3860 Atmarpc - ok
    15:50:20.0765 3860 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    15:50:21.0703 3860 AudioSrv - ok
    15:50:21.0750 3860 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    15:50:22.0640 3860 audstub - ok
    15:50:22.0750 3860 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    15:50:22.0843 3860 avast! Antivirus - ok
    15:50:22.0921 3860 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    15:50:23.0812 3860 Beep - ok
    15:50:23.0859 3860 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    15:50:24.0906 3860 BITS - ok
    15:50:25.0015 3860 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    15:50:25.0156 3860 Browser - ok
    15:50:25.0281 3860 catchme - ok
    15:50:25.0328 3860 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    15:50:26.0375 3860 cbidf2k - ok
    15:50:26.0453 3860 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    15:50:26.0500 3860 CCALib8 ( UnsignedFile.Multi.Generic ) - warning
    15:50:26.0500 3860 CCALib8 - detected UnsignedFile.Multi.Generic (1)
    15:50:26.0546 3860 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    15:50:27.0593 3860 CCDECODE - ok
    15:50:27.0625 3860 cd20xrnt - ok
    15:50:27.0703 3860 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    15:50:28.0750 3860 Cdaudio - ok
    15:50:28.0812 3860 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    15:50:29.0687 3860 Cdfs - ok
    15:50:29.0750 3860 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    15:50:30.0734 3860 Cdrom - ok
    15:50:30.0765 3860 Changer - ok
    15:50:30.0906 3860 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    15:50:31.0875 3860 CiSvc - ok
    15:50:31.0937 3860 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    15:50:32.0937 3860 ClipSrv - ok
    15:50:33.0046 3860 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:50:33.0171 3860 clr_optimization_v2.0.50727_32 - ok
    15:50:33.0281 3860 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    15:50:33.0375 3860 clr_optimization_v4.0.30319_32 - ok
    15:50:33.0406 3860 CmdIde - ok
    15:50:33.0421 3860 COMSysApp - ok
    15:50:33.0500 3860 Cpqarray - ok
    15:50:33.0562 3860 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    15:50:34.0796 3860 CryptSvc - ok
    15:50:34.0812 3860 dac2w2k - ok
    15:50:34.0843 3860 dac960nt - ok
    15:50:34.0984 3860 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    15:50:35.0203 3860 DcomLaunch - ok
    15:50:35.0250 3860 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    15:50:36.0218 3860 Dhcp - ok
    15:50:36.0312 3860 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    15:50:37.0375 3860 Disk - ok
    15:50:37.0437 3860 dmadmin - ok
    15:50:37.0562 3860 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    15:50:38.0296 3860 dmboot - ok
    15:50:38.0328 3860 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    15:50:39.0125 3860 dmio - ok
    15:50:39.0218 3860 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    15:50:40.0093 3860 dmload - ok
    15:50:40.0140 3860 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    15:50:40.0890 3860 dmserver - ok
    15:50:40.0937 3860 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    15:50:41.0625 3860 DMusic - ok
    15:50:41.0656 3860 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    15:50:41.0796 3860 Dnscache - ok
    15:50:41.0859 3860 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    15:50:42.0609 3860 Dot3svc - ok
    15:50:42.0625 3860 dpti2o - ok
    15:50:42.0671 3860 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    15:50:43.0546 3860 drmkaud - ok
    15:50:43.0640 3860 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    15:50:44.0671 3860 EapHost - ok
    15:50:44.0781 3860 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    15:50:44.0875 3860 ElbyCDFL - ok
    15:50:44.0921 3860 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    15:50:45.0031 3860 ElbyCDIO - ok
    15:50:45.0078 3860 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    15:50:46.0078 3860 ERSvc - ok
    15:50:46.0140 3860 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    15:50:46.0312 3860 Eventlog - ok
    15:50:46.0406 3860 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    15:50:46.0578 3860 EventSystem - ok
    15:50:46.0703 3860 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    15:50:47.0718 3860 Fastfat - ok
    15:50:47.0828 3860 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    15:50:48.0031 3860 FastUserSwitchingCompatibility - ok
    15:50:48.0125 3860 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    15:50:49.0218 3860 Fdc - ok
    15:50:49.0265 3860 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    15:50:50.0312 3860 Fips - ok
    15:50:50.0343 3860 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    15:50:51.0375 3860 Flpydisk - ok
    15:50:51.0421 3860 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    15:50:52.0515 3860 FltMgr - ok
    15:50:52.0625 3860 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    15:50:52.0718 3860 FontCache3.0.0.0 - ok
    15:50:52.0750 3860 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    15:50:53.0734 3860 Fs_Rec - ok
    15:50:53.0781 3860 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    15:50:54.0843 3860 Ftdisk - ok
    15:50:54.0890 3860 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    15:50:56.0015 3860 Gpc - ok
    15:50:56.0109 3860 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    15:50:56.0218 3860 gusvc - ok
    15:50:56.0281 3860 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    15:50:57.0218 3860 HDAudBus - ok
    15:50:57.0359 3860 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    15:50:58.0515 3860 helpsvc - ok
    15:50:58.0562 3860 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    15:50:59.0546 3860 HidServ - ok
    15:50:59.0593 3860 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    15:51:00.0546 3860 HidUsb - ok
    15:51:00.0578 3860 hitmanpro3 - ok
    15:51:00.0640 3860 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    15:51:01.0593 3860 hkmsvc - ok
    15:51:01.0625 3860 hpn - ok
    15:51:01.0718 3860 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    15:51:01.0859 3860 HTTP - ok
    15:51:01.0906 3860 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    15:51:02.0953 3860 HTTPFilter - ok
    15:51:02.0984 3860 i2omgmt - ok
    15:51:03.0015 3860 i2omp - ok
    15:51:03.0062 3860 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    15:51:03.0953 3860 i8042prt - ok
    15:51:04.0078 3860 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    15:51:04.0281 3860 idsvc - ok
    15:51:04.0390 3860 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    15:51:05.0328 3860 Imapi - ok
    15:51:05.0390 3860 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    15:51:06.0312 3860 ImapiService - ok
    15:51:06.0343 3860 ini910u - ok
    15:51:06.0703 3860 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    15:51:07.0343 3860 IntcAzAudAddService - ok
    15:51:07.0375 3860 IntelIde - ok
    15:51:07.0406 3860 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    15:51:08.0546 3860 Ip6Fw - ok
    15:51:08.0593 3860 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    15:51:09.0718 3860 IpFilterDriver - ok
    15:51:09.0812 3860 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    15:51:10.0890 3860 IpInIp - ok
    15:51:10.0953 3860 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    15:51:11.0921 3860 IpNat - ok
    15:51:11.0968 3860 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    15:51:12.0968 3860 IPSec - ok
    15:51:13.0031 3860 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    15:51:13.0406 3860 IRENUM - ok
    15:51:13.0515 3860 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    15:51:14.0296 3860 isapnp - ok
    15:51:14.0406 3860 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    15:51:14.0484 3860 JavaQuickStarterService - ok
    15:51:14.0531 3860 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    15:51:15.0421 3860 Kbdclass - ok
    15:51:15.0453 3860 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    15:51:16.0328 3860 kbdhid - ok
    15:51:16.0375 3860 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    15:51:17.0359 3860 kmixer - ok
    15:51:17.0437 3860 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    15:51:17.0593 3860 KSecDD - ok
    15:51:17.0671 3860 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    15:51:17.0828 3860 lanmanserver - ok
    15:51:17.0890 3860 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    15:51:18.0078 3860 lanmanworkstation - ok
    15:51:18.0109 3860 Lavasoft Kernexplorer - ok
    15:51:18.0140 3860 Lbd - ok
    15:51:18.0187 3860 lbrtfdc - ok
    15:51:18.0328 3860 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    15:51:19.0343 3860 LmHosts - ok
    15:51:19.0375 3860 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    15:51:20.0484 3860 Messenger - ok
    15:51:20.0500 3860 mferkdk - ok
    15:51:20.0625 3860 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    15:51:21.0500 3860 mnmdd - ok
    15:51:21.0593 3860 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    15:51:22.0671 3860 mnmsrvc - ok
    15:51:22.0718 3860 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    15:51:23.0656 3860 Modem - ok
    15:51:23.0703 3860 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    15:51:24.0640 3860 Mouclass - ok
    15:51:24.0765 3860 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    15:51:25.0671 3860 mouhid - ok
    15:51:25.0750 3860 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    15:51:26.0546 3860 MountMgr - ok
    15:51:26.0640 3860 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    15:51:26.0750 3860 MozillaMaintenance - ok
    15:51:26.0781 3860 mraid35x - ok
    15:51:26.0828 3860 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    15:51:27.0703 3860 MRxDAV - ok
    15:51:27.0859 3860 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    15:51:28.0015 3860 MRxSmb - ok
    15:51:28.0046 3860 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    15:51:29.0015 3860 MSDTC - ok
    15:51:29.0109 3860 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    15:51:30.0093 3860 Msfs - ok
    15:51:30.0125 3860 MSIServer - ok
    15:51:30.0171 3860 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    15:51:31.0046 3860 MSKSSRV - ok
    15:51:31.0125 3860 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    15:51:32.0140 3860 MSPCLOCK - ok
    15:51:32.0187 3860 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    15:51:33.0187 3860 MSPQM - ok
    15:51:33.0218 3860 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    15:51:34.0093 3860 mssmbios - ok
    15:51:34.0171 3860 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    15:51:35.0078 3860 MSTEE - ok
    15:51:35.0140 3860 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    15:51:35.0250 3860 MTsensor - ok
    15:51:35.0312 3860 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    15:51:35.0421 3860 Mup - ok
    15:51:35.0468 3860 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    15:51:36.0531 3860 NABTSFEC - ok
    15:51:36.0656 3860 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    15:51:37.0734 3860 napagent - ok
    15:51:37.0796 3860 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    15:51:38.0828 3860 NDIS - ok
    15:51:38.0921 3860 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    15:51:39.0750 3860 NdisIP - ok
    15:51:39.0828 3860 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS
    distapi.sys
    15:51:39.0937 3860 NdisTapi - ok
    15:51:39.0984 3860 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS
    disuio.sys
    15:51:40.0859 3860 Ndisuio - ok
    15:51:40.0890 3860 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS
    diswan.sys
    15:51:41.0890 3860 NdisWan - ok
    15:51:41.0937 3860 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    15:51:42.0078 3860 NDProxy - ok
    15:51:42.0109 3860 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS
    etbios.sys
    15:51:43.0000 3860 NetBIOS - ok
    15:51:43.0046 3860 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS
    etbt.sys
    15:51:44.0000 3860 NetBT - ok
    15:51:44.0062 3860 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32
    etdde.exe
    15:51:44.0968 3860 NetDDE - ok
    15:51:45.0000 3860 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32
    etdde.exe
    15:51:45.0890 3860 NetDDEdsdm - ok
    15:51:46.0015 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    15:51:46.0859 3860 Netlogon - ok
    15:51:46.0953 3860 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32
    etman.dll
    15:51:47.0875 3860 Netman - ok
    15:51:47.0953 3860 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    15:51:48.0062 3860 NetTcpPortSharing - ok
    15:51:48.0140 3860 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    15:51:48.0375 3860 Nla - ok
    15:51:48.0406 3860 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    15:51:49.0484 3860 Npfs - ok
    15:51:49.0546 3860 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    15:51:50.0500 3860 Ntfs - ok
    15:51:50.0531 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    15:51:51.0578 3860 NtLmSsp - ok
    15:51:51.0640 3860 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32
    tmssvc.dll
    15:51:52.0546 3860 NtmsSvc - ok
    15:51:52.0625 3860 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    15:51:53.0609 3860 Null - ok
    15:51:53.0968 3860 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS
    v4_mini.sys
    15:51:54.0453 3860 nv - ok
    15:51:54.0500 3860 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS
    vata.sys
    15:51:54.0625 3860 nvata - ok
    15:51:54.0656 3860 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    15:51:54.0796 3860 NVENETFD - ok
    15:51:54.0843 3860 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS
    vnetbus.sys
    15:51:54.0953 3860 nvnetbus - ok
    15:51:55.0062 3860 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32
    vsvc32.exe
    15:51:55.0234 3860 NVSvc - ok
    15:51:55.0312 3860 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS
    wlnkflt.sys
    15:51:56.0125 3860 NwlnkFlt - ok
    15:51:56.0156 3860 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS
    wlnkfwd.sys
    15:51:57.0125 3860 NwlnkFwd - ok
    15:51:57.0234 3860 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    15:51:57.0359 3860 odserv - ok
    15:51:57.0453 3860 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    15:51:57.0562 3860 ose - ok
    15:51:57.0703 3860 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    15:51:58.0593 3860 Parport - ok
    15:51:58.0687 3860 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    15:51:59.0578 3860 PartMgr - ok
    15:51:59.0640 3860 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    15:52:00.0515 3860 ParVdm - ok
    15:52:00.0562 3860 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    15:52:01.0593 3860 PCI - ok
    15:52:01.0625 3860 PCIDump - ok
    15:52:01.0703 3860 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    15:52:02.0593 3860 PCIIde - ok
    15:52:02.0687 3860 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    15:52:03.0609 3860 Pcmcia - ok
    15:52:03.0671 3860 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
    15:52:03.0703 3860 pcouffin ( UnsignedFile.Multi.Generic ) - warning
    15:52:03.0703 3860 pcouffin - detected UnsignedFile.Multi.Generic (1)
    15:52:03.0750 3860 PDCOMP - ok
    15:52:03.0781 3860 PDFRAME - ok
    15:52:03.0812 3860 PDRELI - ok
    15:52:03.0843 3860 PDRFRAME - ok
    15:52:03.0875 3860 perc2 - ok
    15:52:03.0906 3860 perc2hib - ok
    15:52:04.0046 3860 [ 6C1618A07B49E3873582B6449E744088 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
    15:52:04.0093 3860 pfc ( UnsignedFile.Multi.Generic ) - warning
    15:52:04.0093 3860 pfc - detected UnsignedFile.Multi.Generic (1)
    15:52:04.0140 3860 [ 657B69389B893F440B07590C9E963F23 ] PlugPlay C:\WINDOWS\system32\services.exe
    15:52:04.0296 3860 PlugPlay - ok
    15:52:04.0328 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
    15:52:05.0312 3860 PolicyAgent - ok
    15:52:05.0343 3860 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
    15:52:06.0281 3860 PptpMiniport - ok
    15:52:06.0312 3860 [ 82A17ECA34D801590A67C0A2244965ED ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
    15:52:07.0281 3860 Processor - ok
    15:52:07.0312 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
    15:52:08.0250 3860 ProtectedStorage - ok
    15:52:08.0296 3860 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
    15:52:09.0234 3860 PSched - ok
    15:52:09.0265 3860 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
    15:52:10.0156 3860 Ptilink - ok
    15:52:10.0203 3860 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
    15:52:10.0296 3860 PxHelp20 - ok
    15:52:10.0328 3860 ql1080 - ok
    15:52:10.0359 3860 Ql10wnt - ok
    15:52:10.0375 3860 ql12160 - ok
    15:52:10.0421 3860 ql1240 - ok
    15:52:10.0437 3860 ql1280 - ok
    15:52:10.0500 3860 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
    15:52:11.0375 3860 RasAcd - ok
    15:52:11.0406 3860 [ 0575D034B1292CA3A9BB9F67A8EE289C ] RasAuto C:\WINDOWS\System32\rasauto.dll
    15:52:12.0343 3860 RasAuto - ok
    15:52:12.0421 3860 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    15:52:13.0468 3860 Rasl2tp - ok
    15:52:13.0578 3860 [ 9E7E2DF6971A5F00102BE3F901CC3BDC ] RasMan C:\WINDOWS\System32\rasmans.dll
    15:52:14.0375 3860 RasMan - ok
    15:52:14.0421 3860 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    15:52:15.0406 3860 RasPppoe - ok
    15:52:15.0437 3860 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
    15:52:16.0281 3860 Raspti - ok
    15:52:16.0375 3860 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
    15:52:17.0281 3860 Rdbss - ok
    15:52:17.0296 3860 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    15:52:18.0093 3860 RDPCDD - ok
    15:52:18.0140 3860 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    15:52:18.0937 3860 rdpdr - ok
    15:52:19.0031 3860 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
    15:52:19.0171 3860 RDPWD - ok
    15:52:19.0218 3860 [ EA9FDF71D696B532BDC44C8BFF03A737 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
    15:52:20.0078 3860 RDSessMgr - ok
    15:52:20.0203 3860 [ 4173BC66E485FD77A03C4819F60BD0DA ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
    15:52:21.0328 3860 redbook - ok
    15:52:21.0437 3860 [ 4007ABF5D9BF0E55451D775443D1F985 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
    15:52:22.0328 3860 RemoteAccess - ok
    15:52:22.0359 3860 [ 2FD5B89BF9289C774C5C730DEA96CD91 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
    15:52:23.0390 3860 RemoteRegistry - ok
    15:52:23.0421 3860 [ BE078F8F7EC2491EFDD79A53353A060F ] RpcLocator C:\WINDOWS\system32\locator.exe
    15:52:24.0281 3860 RpcLocator - ok
    15:52:24.0375 3860 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] RpcSs C:\WINDOWS\System32\rpcss.dll
    15:52:24.0546 3860 RpcSs - ok
    15:52:24.0625 3860 [ AD1B5F1B99FFF08C99F443D784711A81 ] RSVP C:\WINDOWS\system32\rsvp.exe
    15:52:25.0562 3860 RSVP - ok
    15:52:25.0687 3860 [ 0A7293EDC2537652A4914018A7589F14 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys
    15:52:25.0921 3860 rt2870 - ok
    15:52:26.0000 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] SamSs C:\WINDOWS\system32\lsass.exe
    15:52:26.0953 3860 SamSs - ok
    15:52:27.0062 3860 [ 0505DA5D357F18A5D42FC5DEDE6BC9A0 ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
    15:52:27.0171 3860 SBRE - ok
    15:52:27.0218 3860 [ 1B4CD62174E907C7EF8EC5D4D0A2A616 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
    15:52:28.0125 3860 SCardSvr - ok
    15:52:28.0203 3860 [ 7C288AE0F75CB18CFF1DF6179A67AD8F ] Schedule C:\WINDOWS\system32\schedsvc.dll
    15:52:29.0171 3860 Schedule - ok
    15:52:29.0234 3860 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
    15:52:29.0593 3860 Secdrv - ok
    15:52:29.0640 3860 [ 6983665BEA867125B1DA5757CD8B2F9D ] seclogon C:\WINDOWS\System32\seclogon.dll
    15:52:30.0687 3860 seclogon - ok
    15:52:30.0718 3860 [ F6EC8F1E50E40237BDDEE1CB7FE20B42 ] SENS C:\WINDOWS\system32\sens.dll
    15:52:31.0593 3860 SENS - ok
    15:52:31.0687 3860 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
    15:52:32.0640 3860 serenum - ok
    15:52:32.0671 3860 [ 92C21762653BB2CE51147EB8A9AA654F ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
    15:52:33.0546 3860 Serial - ok
    15:52:33.0703 3860 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
    15:52:34.0578 3860 Sfloppy - ok
    15:52:34.0703 3860 [ 7579C4BE909D47F10F3D8D801CB13ED9 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
    15:52:35.0609 3860 SharedAccess - ok
    15:52:35.0687 3860 [ 2D5D4156292150FE571872C1B88E9299 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
    15:52:35.0859 3860 ShellHWDetection - ok
    15:52:35.0890 3860 Simbad - ok
    15:52:36.0000 3860 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
    15:52:36.0953 3860 SLIP - ok
    15:52:37.0125 3860 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
    15:52:37.0203 3860 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
    15:52:37.0203 3860 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
    15:52:37.0281 3860 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
    15:52:37.0421 3860 SONYPVU1 - ok
    15:52:37.0437 3860 Sparrow - ok
    15:52:37.0453 3860 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
    15:52:37.0609 3860 splitter - ok
    15:52:37.0687 3860 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
    15:52:37.0734 3860 Spooler - ok
    15:52:37.0781 3860 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
    15:52:37.0781 3860 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
    15:52:37.0781 3860 sptd ( LockedFile.Multi.Generic ) - warning
    15:52:37.0781 3860 sptd - detected LockedFile.Multi.Generic (1)
    15:52:37.0781 3860 [ 64D2A7640E0767ECD3BCB38D3200E7CE ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
    15:52:37.0843 3860 sr - ok
    15:52:37.0890 3860 [ 81CBF363C414620CAA61BD6843D8FDB9 ] srservice C:\WINDOWS\system32\srsvc.dll
    15:52:37.0953 3860 srservice - ok
    15:52:37.0984 3860 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
    15:52:38.0015 3860 Srv - ok
    15:52:38.0031 3860 [ 5B9D0DE64BE96A806819516440FD211C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
    15:52:38.0109 3860 SSDPSRV - ok
    15:52:38.0140 3860 [ 5AE996186D2DC694FEF88F14A3FC9242 ] stisvc C:\WINDOWS\system32\wiaservc.dll
    15:52:38.0281 3860 stisvc - ok
    15:52:38.0296 3860 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    15:52:38.0421 3860 streamip - ok
    15:52:38.0500 3860 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
    15:52:38.0640 3860 swenum - ok
    15:52:38.0656 3860 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
    15:52:38.0843 3860 swmidi - ok
    15:52:38.0843 3860 SwPrv - ok
    15:52:38.0859 3860 symc810 - ok
    15:52:38.0859 3860 symc8xx - ok
    15:52:38.0875 3860 sym_hi - ok
    15:52:38.0875 3860 sym_u3 - ok
    15:52:38.0906 3860 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
    15:52:39.0062 3860 sysaudio - ok
    15:52:39.0093 3860 [ 251EAE7C56C6AB9490311A3C9757E18D ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
    15:52:39.0250 3860 SysmonLog - ok
    15:52:39.0281 3860 [ 2BC9FB448F0C2394FF53C83A7BB04731 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
    15:52:39.0406 3860 TapiSrv - ok
    15:52:39.0500 3860 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
    15:52:39.0531 3860 Tcpip - ok
    15:52:39.0562 3860 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
    15:52:39.0734 3860 TDPIPE - ok
    15:52:39.0765 3860 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
    15:52:39.0921 3860 TDTCP - ok
    15:52:39.0937 3860 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
    15:52:40.0093 3860 TermDD - ok
    15:52:40.0109 3860 [ E0AEF86A594C9990D6321C5CA239C5B7 ] TermService C:\WINDOWS\System32\termsrv.dll
    15:52:40.0250 3860 TermService - ok
    15:52:40.0281 3860 [ 2D5D4156292150FE571872C1B88E9299 ] Themes C:\WINDOWS\System32\shsvcs.dll
    15:52:40.0312 3860 Themes - ok
    15:52:40.0343 3860 [ 78A2FE13662A119875F10E9FFCB49A8F ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
    15:52:40.0406 3860 TlntSvr - ok
    15:52:40.0406 3860 TosIde - ok
    15:52:40.0421 3860 [ 20655E8CA1C78BC7088B18E93806D21B ] TrkWks C:\WINDOWS\system32\trkwks.dll
    15:52:40.0593 3860 TrkWks - ok
    15:52:40.0609 3860 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
    15:52:40.0750 3860 Udfs - ok
    15:52:40.0750 3860 ultra - ok
    15:52:40.0796 3860 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
    15:52:40.0921 3860 Update - ok
    15:52:40.0953 3860 [ 01653D6C9604F1FB31A76EC94E08954F ] upnphost C:\WINDOWS\System32\upnphost.dll
    15:52:41.0031 3860 upnphost - ok
    15:52:41.0046 3860 [ A89796DD0DE24CF03B3A39407E1F46A3 ] UPS C:\WINDOWS\System32\ups.exe
    15:52:41.0203 3860 UPS - ok
    15:52:41.0265 3860 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    15:52:41.0390 3860 usbccgp - ok
    15:52:41.0406 3860 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
    15:52:41.0546 3860 usbehci - ok
    15:52:41.0562 3860 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
    15:52:41.0734 3860 usbhub - ok
    15:52:41.0750 3860 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
    15:52:41.0875 3860 usbohci - ok
    15:52:41.0890 3860 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
    15:52:42.0046 3860 usbprint - ok
    15:52:42.0109 3860 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
    15:52:42.0234 3860 usbscan - ok
    15:52:42.0250 3860 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    15:52:42.0390 3860 USBSTOR - ok
    15:52:42.0406 3860 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
    15:52:42.0531 3860 usb_rndisx - ok
    15:52:42.0546 3860 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
    15:52:42.0687 3860 VgaSave - ok
    15:52:42.0703 3860 ViaIde - ok
    15:52:42.0718 3860 [ 8AB662B3C4691E6DDF61C96BB5B7D103 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
    15:52:42.0859 3860 VolSnap -





























  • Het log is niet kompleet.
    De eindkonklusie mist.
    Graag alsnog posten.
  • [quote:4d7a175e8e="Abraham54"]Het log is niet kompleet.
    De eindkonklusie mist.
    Graag alsnog posten.[/quote:4d7a175e8e]

    bij deze.
    17:17:27.0765 3996 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    17:17:27.0937 3996 ============================================================
    17:17:27.0937 3996 Current date / time: 2012/11/27 17:17:27.0937
    17:17:27.0937 3996 SystemInfo:
    17:17:27.0937 3996
    17:17:27.0937 3996 OS Version: 5.1.2600 ServicePack: 3.0
    17:17:27.0937 3996 Product type: Workstation
    17:17:27.0937 3996 ComputerName: RIA-3BAF41774F7
    17:17:27.0937 3996 UserName: RIA
    17:17:27.0937 3996 Windows directory: C:\WINDOWS
    17:17:27.0937 3996 System windows directory: C:\WINDOWS
    17:17:27.0937 3996 Processor architecture: Intel x86
    17:17:27.0937 3996 Number of processors: 2
    17:17:27.0937 3996 Page size: 0x1000
    17:17:27.0937 3996 Boot type: Normal boot
    17:17:27.0937 3996 ============================================================
    17:17:28.0218 3996 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    17:17:28.0234 3996 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    17:17:28.0234 3996 ============================================================
    17:17:28.0234 3996 \Device\Harddisk0\DR0:
    17:17:28.0234 3996 MBR partitions:
    17:17:28.0234 3996 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F00, BlocksNum 0xF46566
    17:17:28.0250 3996 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xF4A4A5, BlocksNum 0x2629FBC
    17:17:28.0265 3996 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x35744A0, BlocksNum 0x16E78D8
    17:17:28.0281 3996 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x4C5BDB7, BlocksNum 0x7A51F4
    17:17:28.0296 3996 \Device\Harddisk0\DR0\Partition5: MBR, Type 0xB, StartLBA 0x5400FEA, BlocksNum 0x7A51F4
    17:17:28.0296 3996 \Device\Harddisk0\DR0\Partition6: MBR, Type 0xB, StartLBA 0x5BA621D, BlocksNum 0x1E88C4A
    17:17:28.0312 3996 \Device\Harddisk0\DR0\Partition7: MBR, Type 0xB, StartLBA 0x7A2EEA6, BlocksNum 0x1E79146
    17:17:28.0312 3996 \Device\Harddisk1\DR1:
    17:17:28.0312 3996 MBR partitions:
    17:17:28.0312 3996 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC6B9CAC
    17:17:28.0328 3996 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC6B9D2A, BlocksNum 0xC6B9CAC
    17:17:28.0343 3996 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x18D73A15, BlocksNum 0xC6B5DEB
    17:17:28.0343 3996 ============================================================
    17:17:28.0375 3996 C: <-> \Device\Harddisk1\DR1\Partition1
    17:17:28.0406 3996 E: <-> \Device\Harddisk1\DR1\Partition2
    17:17:28.0437 3996 F: <-> \Device\Harddisk1\DR1\Partition3
    17:17:28.0453 3996 G: <-> \Device\Harddisk0\DR0\Partition1
    17:17:28.0468 3996 H: <-> \Device\Harddisk0\DR0\Partition2
    17:17:28.0484 3996 I: <-> \Device\Harddisk0\DR0\Partition3
    17:17:28.0500 3996 J: <-> \Device\Harddisk0\DR0\Partition4
    17:17:28.0500 3996 K: <-> \Device\Harddisk0\DR0\Partition5
    17:17:28.0515 3996 L: <-> \Device\Harddisk0\DR0\Partition6
    17:17:28.0531 3996 M: <-> \Device\Harddisk0\DR0\Partition7
    17:17:28.0531 3996 ============================================================
    17:17:28.0531 3996 Initialize success
    17:17:28.0531 3996 ============================================================
    17:17:39.0125 1812 ============================================================
    17:17:39.0125 1812 Scan started
    17:17:39.0125 1812 Mode: Manual; SigCheck; TDLFS;
    17:17:39.0125 1812 ============================================================
    17:17:39.0562 1812 ================ Scan system memory ========================
    17:17:39.0562 1812 System memory - ok
    17:17:39.0562 1812 ================ Scan services =============================
    17:17:39.0703 1812 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    17:17:39.0875 1812 a2free - ok
    17:17:39.0984 1812 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    17:17:40.0000 1812 Aavmker4 - ok
    17:17:40.0078 1812 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    17:17:40.0109 1812 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    17:17:40.0109 1812 Abiosdsk - ok
    17:17:40.0109 1812 abp480n5 - ok
    17:17:40.0156 1812 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    17:17:40.0343 1812 ACPI - ok
    17:17:40.0359 1812 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    17:17:40.0484 1812 ACPIEC - ok
    17:17:40.0562 1812 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    17:17:40.0578 1812 AdobeFlashPlayerUpdateSvc - ok
    17:17:40.0593 1812 adpu160m - ok
    17:17:40.0609 1812 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    17:17:40.0750 1812 aec - ok
    17:17:40.0796 1812 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    17:17:40.0812 1812 AFD - ok
    17:17:40.0812 1812 Aha154x - ok
    17:17:40.0812 1812 aic78u2 - ok
    17:17:40.0828 1812 aic78xx - ok
    17:17:40.0859 1812 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    17:17:40.0984 1812 Alerter - ok
    17:17:41.0015 1812 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    17:17:41.0078 1812 ALG - ok
    17:17:41.0093 1812 AliIde - ok
    17:17:41.0109 1812 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    17:17:41.0156 1812 AmdK8 - ok
    17:17:41.0156 1812 amsint - ok
    17:17:41.0187 1812 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    17:17:41.0203 1812 AnyDVD - ok
    17:17:41.0250 1812 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    17:17:41.0312 1812 AppMgmt - ok
    17:17:41.0312 1812 asc - ok
    17:17:41.0312 1812 asc3350p - ok
    17:17:41.0328 1812 asc3550 - ok
    17:17:41.0359 1812 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    17:17:41.0375 1812 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
    17:17:41.0375 1812 Aspi32 - detected UnsignedFile.Multi.Generic (1)
    17:17:41.0453 1812 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    17:17:41.0468 1812 aspnet_state - ok
    17:17:41.0484 1812 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    17:17:41.0500 1812 aswFsBlk - ok
    17:17:41.0515 1812 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    17:17:41.0531 1812 aswMon2 - ok
    17:17:41.0562 1812 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    17:17:41.0578 1812 AswRdr - ok
    17:17:41.0609 1812 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    17:17:41.0656 1812 aswSnx - ok
    17:17:41.0687 1812 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    17:17:41.0703 1812 aswSP - ok
    17:17:41.0718 1812 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    17:17:41.0734 1812 aswTdi - ok
    17:17:41.0765 1812 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    17:17:41.0875 1812 AsyncMac - ok
    17:17:41.0906 1812 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    17:17:42.0046 1812 atapi - ok
    17:17:42.0046 1812 Atdisk - ok
    17:17:42.0078 1812 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    17:17:42.0203 1812 Atmarpc - ok
    17:17:42.0234 1812 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    17:17:42.0375 1812 AudioSrv - ok
    17:17:42.0406 1812 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    17:17:42.0546 1812 audstub - ok
    17:17:42.0609 1812 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    17:17:42.0625 1812 avast! Antivirus - ok
    17:17:42.0656 1812 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    17:17:42.0796 1812 Beep - ok
    17:17:42.0828 1812 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    17:17:42.0968 1812 BITS - ok
    17:17:43.0046 1812 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    17:17:43.0062 1812 Browser - ok
    17:17:43.0171 1812 catchme - ok
    17:17:43.0187 1812 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    17:17:43.0343 1812 cbidf2k - ok
    17:17:43.0421 1812 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    17:17:43.0421 1812 CCALib8 ( UnsignedFile.Multi.Generic ) - warning
    17:17:43.0421 1812 CCALib8 - detected UnsignedFile.Multi.Generic (1)
    17:17:43.0453 1812 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    17:17:43.0593 1812 CCDECODE - ok
    17:17:43.0609 1812 cd20xrnt - ok
    17:17:43.0609 1812 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    17:17:43.0765 1812 Cdaudio - ok
    17:17:43.0781 1812 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    17:17:43.0937 1812 Cdfs - ok
    17:17:44.0015 1812 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    17:17:44.0156 1812 Cdrom - ok
    17:17:44.0156 1812 Changer - ok
    17:17:44.0218 1812 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    17:17:44.0343 1812 CiSvc - ok
    17:17:44.0359 1812 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    17:17:44.0515 1812 ClipSrv - ok
    17:17:44.0625 1812 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    17:17:44.0640 1812 clr_optimization_v2.0.50727_32 - ok
    17:17:44.0671 1812 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    17:17:44.0687 1812 clr_optimization_v4.0.30319_32 - ok
    17:17:44.0703 1812 CmdIde - ok
    17:17:44.0703 1812 COMSysApp - ok
    17:17:44.0718 1812 Cpqarray - ok
    17:17:44.0734 1812 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    17:17:44.0875 1812 CryptSvc - ok
    17:17:44.0890 1812 dac2w2k - ok
    17:17:44.0890 1812 dac960nt - ok
    17:17:44.0984 1812 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    17:17:45.0015 1812 DcomLaunch - ok
    17:17:45.0046 1812 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    17:17:45.0203 1812 Dhcp - ok
    17:17:45.0265 1812 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    17:17:45.0406 1812 Disk - ok
    17:17:45.0406 1812 dmadmin - ok
    17:17:45.0453 1812 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    17:17:45.0609 1812 dmboot - ok
    17:17:45.0609 1812 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    17:17:45.0750 1812 dmio - ok
    17:17:45.0765 1812 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    17:17:45.0937 1812 dmload - ok
    17:17:45.0968 1812 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    17:17:46.0093 1812 dmserver - ok
    17:17:46.0140 1812 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    17:17:46.0296 1812 DMusic - ok
    17:17:46.0343 1812 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    17:17:46.0343 1812 Dnscache - ok
    17:17:46.0375 1812 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    17:17:46.0500 1812 Dot3svc - ok
    17:17:46.0515 1812 dpti2o - ok
    17:17:46.0515 1812 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    17:17:46.0671 1812 drmkaud - ok
    17:17:46.0703 1812 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    17:17:46.0843 1812 EapHost - ok
    17:17:46.0875 1812 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    17:17:46.0890 1812 ElbyCDFL - ok
    17:17:46.0906 1812 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    17:17:46.0921 1812 ElbyCDIO - ok
    17:17:46.0937 1812 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    17:17:47.0078 1812 ERSvc - ok
    17:17:47.0156 1812 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    17:17:47.0171 1812 Eventlog - ok
    17:17:47.0218 1812 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    17:17:47.0250 1812 EventSystem - ok
    17:17:47.0281 1812 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    17:17:47.0437 1812 Fastfat - ok
    17:17:47.0531 1812 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    17:17:47.0546 1812 FastUserSwitchingCompatibility - ok
    17:17:47.0562 1812 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    17:17:47.0703 1812 Fdc - ok
    17:17:47.0718 1812 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    17:17:47.0859 1812 Fips - ok
    17:17:47.0859 1812 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    17:17:48.0015 1812 Flpydisk - ok
    17:17:48.0031 1812 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    17:17:48.0171 1812 FltMgr - ok
    17:17:48.0250 1812 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    17:17:48.0265 1812 FontCache3.0.0.0 - ok
    17:17:48.0265 1812 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    17:17:48.0406 1812 Fs_Rec - ok
    17:17:48.0406 1812 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    17:17:48.0562 1812 Ftdisk - ok
    17:17:48.0593 1812 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    17:17:48.0734 1812 Gpc - ok
    17:17:48.0796 1812 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    17:17:48.0812 1812 gusvc - ok
    17:17:48.0828 1812 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    17:17:48.0968 1812 HDAudBus - ok
    17:17:49.0046 1812 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    17:17:49.0203 1812 helpsvc - ok
    17:17:49.0218 1812 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    17:17:49.0359 1812 HidServ - ok
    17:17:49.0375 1812 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    17:17:49.0515 1812 HidUsb - ok
    17:17:49.0515 1812 hitmanpro3 - ok
    17:17:49.0593 1812 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    17:17:49.0718 1812 hkmsvc - ok
    17:17:49.0734 1812 hpn - ok
    17:17:49.0781 1812 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    17:17:49.0796 1812 HTTP - ok
    17:17:49.0828 1812 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    17:17:49.0984 1812 HTTPFilter - ok
    17:17:50.0000 1812 i2omgmt - ok
    17:17:50.0000 1812 i2omp - ok
    17:17:50.0062 1812 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    17:17:50.0203 1812 i8042prt - ok
    17:17:50.0328 1812 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    17:17:50.0375 1812 idsvc - ok
    17:17:50.0421 1812 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    17:17:50.0562 1812 Imapi - ok
    17:17:50.0593 1812 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    17:17:50.0734 1812 ImapiService - ok
    17:17:50.0750 1812 ini910u - ok
    17:17:50.0875 1812 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    17:17:51.0015 1812 IntcAzAudAddService - ok
    17:17:51.0031 1812 IntelIde - ok
    17:17:51.0062 1812 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    17:17:51.0218 1812 Ip6Fw - ok
    17:17:51.0281 1812 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    17:17:51.0421 1812 IpFilterDriver - ok
    17:17:51.0453 1812 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    17:17:51.0593 1812 IpInIp - ok
    17:17:51.0593 1812 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    17:17:51.0750 1812 IpNat - ok
    17:17:51.0765 1812 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    17:17:51.0890 1812 IPSec - ok
    17:17:51.0953 1812 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    17:17:52.0000 1812 IRENUM - ok
    17:17:52.0031 1812 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    17:17:52.0171 1812 isapnp - ok
    17:17:52.0281 1812 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    17:17:52.0296 1812 JavaQuickStarterService - ok
    17:17:52.0312 1812 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    17:17:52.0468 1812 Kbdclass - ok
    17:17:52.0468 1812 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    17:17:52.0609 1812 kbdhid - ok
    17:17:52.0625 1812 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    17:17:52.0750 1812 kmixer - ok
    17:17:52.0765 1812 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    17:17:52.0781 1812 KSecDD - ok
    17:17:52.0812 1812 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    17:17:52.0828 1812 lanmanserver - ok
    17:17:52.0843 1812 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    17:17:52.0875 1812 lanmanworkstation - ok
    17:17:52.0890 1812 Lavasoft Kernexplorer - ok
    17:17:52.0890 1812 Lbd - ok
    17:17:52.0906 1812 lbrtfdc - ok
    17:17:52.0921 1812 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    17:17:53.0078 1812 LmHosts - ok
    17:17:53.0093 1812 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    17:17:53.0250 1812 Messenger - ok
    17:17:53.0265 1812 mferkdk - ok
    17:17:53.0296 1812 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    17:17:53.0437 1812 mnmdd - ok
    17:17:53.0468 1812 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    17:17:53.0609 1812 mnmsrvc - ok
    17:17:53.0640 1812 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    17:17:53.0781 1812 Modem - ok
    17:17:53.0796 1812 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    17:17:53.0953 1812 Mouclass - ok
    17:17:54.0046 1812 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    17:17:54.0203 1812 mouhid - ok
    17:17:54.0203 1812 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    17:17:54.0359 1812 MountMgr - ok
    17:17:54.0406 1812 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    17:17:54.0421 1812 MozillaMaintenance - ok
    17:17:54.0421 1812 mraid35x - ok
    17:17:54.0421 1812 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    17:17:54.0562 1812 MRxDAV - ok
    17:17:54.0609 1812 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    17:17:54.0640 1812 MRxSmb - ok
    17:17:54.0656 1812 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    17:17:54.0812 1812 MSDTC - ok
    17:17:54.0843 1812 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    17:17:54.0984 1812 Msfs - ok
    17:17:54.0984 1812 MSIServer - ok
    17:17:55.0031 1812 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    17:17:55.0171 1812 MSKSSRV - ok
    17:17:55.0187 1812 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    17:17:55.0343 1812 MSPCLOCK - ok
    17:17:55.0359 1812 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    17:17:55.0500 1812 MSPQM - ok
    17:17:55.0515 1812 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    17:17:55.0671 1812 mssmbios - ok
    17:17:55.0718 1812 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    17:17:55.0859 1812 MSTEE - ok
    17:17:55.0906 1812 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    17:17:55.0937 1812 MTsensor - ok
    17:17:55.0953 1812 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    17:17:55.0968 1812 Mup - ok
    17:17:55.0984 1812 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    17:17:56.0140 1812 NABTSFEC - ok
    17:17:56.0187 1812 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    17:17:56.0343 1812 napagent - ok
    17:17:56.0375 1812 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    17:17:56.0515 1812 NDIS - ok
    17:17:56.0578 1812 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    17:17:56.0718 1812 NdisIP - ok
    17:17:56.0750 1812 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS
    distapi.sys
    17:17:56.0765 1812 NdisTapi - ok
    17:17:56.0781 1812 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS
    disuio.sys
    17:17:56.0921 1812 Ndisuio - ok
    17:17:56.0921 1812 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS
    diswan.sys
    17:17:57.0062 1812 NdisWan - ok
    17:17:57.0125 1812 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    17:17:57.0140 1812 NDProxy - ok
    17:17:57.0156 1812 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS
    etbios.sys
    17:17:57.0312 1812 NetBIOS - ok
    17:17:57.0390 1812 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS
    etbt.sys
    17:17:57.0515 1812 NetBT - ok
    17:17:57.0593 1812 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32
    etdde.exe
    17:17:57.0750 1812 NetDDE - ok
    17:17:57.0765 1812 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32
    etdde.exe
    17:17:57.0890 1812 NetDDEdsdm - ok
    17:17:57.0968 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    17:17:58.0109 1812 Netlogon - ok
    17:17:58.0125 1812 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32
    etman.dll
    17:17:58.0250 1812 Netman - ok
    17:17:58.0343 1812 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    17:17:58.0359 1812 NetTcpPortSharing - ok
    17:17:58.0390 1812 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    17:17:58.0437 1812 Nla - ok
    17:17:58.0437 1812 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    17:17:58.0593 1812 Npfs - ok
    17:17:58.0625 1812 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    17:17:58.0812 1812 Ntfs - ok
    17:17:58.0812 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    17:17:58.0953 1812 NtLmSsp - ok
    17:17:58.0984 1812 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32
    tmssvc.dll
    17:17:59.0125 1812 NtmsSvc - ok
    17:17:59.0156 1812 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    17:17:59.0281 1812 Null - ok
    17:17:59.0421 1812 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS
    v4_mini.sys
    17:17:59.0546 1812 nv - ok
    17:17:59.0546 1812 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS
    vata.sys
    17:17:59.0578 1812 nvata - ok
    17:17:59.0578 1812 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    17:17:59.0593 1812 NVENETFD - ok
    17:17:59.0625 1812 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS
    vnetbus.sys
    17:17:59.0656 1812 nvnetbus - ok
    17:17:59.0671 1812 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32
    vsvc32.exe
    17:17:59.0703 1812 NVSvc - ok
    17:17:59.0734 1812 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS
    wlnkflt.sys
    17:17:59.0875 1812 NwlnkFlt - ok
    17:17:59.0953 1812 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS
    wlnkfwd.sys
    17:18:00.0093 1812 NwlnkFwd - ok
    17:18:00.0156 1812 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    17:18:00.0171 1812 odserv - ok
    17:18:00.0218 1812 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    17:18:00.0234 1812 ose - ok
    17:18:00.0265 1812 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    17:18:00.0406 1812 Parport - ok
    17:18:00.0421 1812 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    17:18:00.0578 1812 PartMgr - ok
    17:18:00.0656 1812 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    17:18:00.0781 1812 ParVdm - ok
    17:18:00.0796 1812 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    17:18:00.0953 1812 PCI - ok
    17:18:00.0953 1812 PCIDump - ok
    17:18:01.0015 1812 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    17:18:01.0156 1812 PCIIde - ok
    17:18:01.0218 1812 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    17:18:01.0359 1812 Pcmcia - ok
    17:18:01.0390 1812 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
    17:18:01.0406 1812 pcouffin ( UnsignedFile.Multi.Generic ) - warning
    17:18:01.0406 1812 pcouffin - detected UnsignedFile.Multi.Generic (1)
    17:18:01.0406 1812 PDCOMP - ok
    17:18:01.0406 1812 PDFRAME - ok
    17:18:01.0421 1812 PDRELI - ok
    17:18:01.0421 1812 PDRFRAME - ok
    17:18:01.0437 1812 perc2 - ok
    17:18:01.0437 1812 perc2hib - ok
    17:18:01.0484 1812 [ 6C1618A07B49E3873582B6449E744088 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
    17:18:01.0500 1812 pfc ( UnsignedFile.Multi.Generic ) - warning
    17:18:01.0500 1812 pfc - detected UnsignedFile.Multi.Generic (1)
    17:18:01.0515 1812 [ 657B69389B893F440B07590C9E963F23 ] PlugPlay C:\WINDOWS\system32\services.exe
    17:18:01.0531 1812 PlugPlay - ok
    17:18:01.0546 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
    17:18:01.0687 1812 PolicyAgent - ok
    17:18:01.0687 1812 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
    17:18:01.0859 1812 PptpMiniport - ok
    17:18:01.0875 1812 [ 82A17ECA34D801590A67C0A2244965ED ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
    17:18:02.0031 1812 Processor - ok
    17:18:02.0046 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
    17:18:02.0187 1812 ProtectedStorage - ok
    17:18:02.0203 1812 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
    17:18:02.0343 1812 PSched - ok
    17:18:02.0390 1812 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
    17:18:02.0531 1812 Ptilink - ok
    17:18:02.0562 1812 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
    17:18:02.0578 1812 PxHelp20 - ok
    17:18:02.0593 1812 ql1080 - ok
    17:18:02.0593 1812 Ql10wnt - ok
    17:18:02.0609 1812 ql12160 - ok
    17:18:02.0609 1812 ql1240 - ok
    17:18:02.0609 1812 ql1280 - ok
    17:18:02.0640 1812 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
    17:18:02.0796 1812 RasAcd - ok
    17:18:02.0828 1812 [ 0575D034B1292CA3A9BB9F67A8EE289C ] RasAuto C:\WINDOWS\System32\rasauto.dll
    17:18:02.0968 1812 RasAuto - ok
    17:18:02.0984 1812 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    17:18:03.0140 1812 Rasl2tp - ok
    17:18:03.0218 1812 [ 9E7E2DF6971A5F00102BE3F901CC3BDC ] RasMan C:\WINDOWS\System32\rasmans.dll
    17:18:03.0359 1812 RasMan - ok
    17:18:03.0375 1812 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    17:18:03.0500 1812 RasPppoe - ok
    17:18:03.0515 1812 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
    17:18:03.0656 1812 Raspti - ok
    17:18:03.0687 1812 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
    17:18:03.0812 1812 Rdbss - ok
    17:18:03.0812 1812 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    17:18:03.0953 1812 RDPCDD - ok
    17:18:03.0968 1812 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    17:18:04.0078 1812 rdpdr - ok
    17:18:04.0156 1812 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
    17:18:04.0171 1812 RDPWD - ok
    17:18:04.0187 1812 [ EA9FDF71D696B532BDC44C8BFF03A737 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
    17:18:04.0328 1812 RDSessMgr - ok
    17:18:04.0343 1812 [ 4173BC66E485FD77A03C4819F60BD0DA ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
    17:18:04.0484 1812 redbook - ok
    17:18:04.0546 1812 [ 4007ABF5D9BF0E55451D775443D1F985 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
    17:18:04.0687 1812 RemoteAccess - ok
    17:18:04.0718 1812 [ 2FD5B89BF9289C774C5C730DEA96CD91 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
    17:18:04.0843 1812 RemoteRegistry - ok
    17:18:04.0859 1812 [ BE078F8F7EC2491EFDD79A53353A060F ] RpcLocator C:\WINDOWS\system32\locator.exe
    17:18:05.0015 1812 RpcLocator - ok
    17:18:05.0093 1812 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] RpcSs C:\WINDOWS\System32\rpcss.dll
    17:18:05.0125 1812 RpcSs - ok
    17:18:05.0156 1812 [ AD1B5F1B99FFF08C99F443D784711A81 ] RSVP C:\WINDOWS\system32\rsvp.exe
    17:18:05.0312 1812 RSVP - ok
    17:18:05.0359 1812 [ 0A7293EDC2537652A4914018A7589F14 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys
    17:18:05.0406 1812 rt2870 - ok
    17:18:05.0406 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] SamSs C:\WINDOWS\system32\lsass.exe
    17:18:05.0562 1812 SamSs - ok
    17:18:05.0656 1812 [ 0505DA5D357F18A5D42FC5DEDE6BC9A0 ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
    17:18:05.0671 1812 SBRE - ok
    17:18:05.0687 1812 [ 1B4CD62174E907C7EF8EC5D4D0A2A616 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
    17:18:05.0843 1812 SCardSvr - ok
    17:18:05.0906 1812 [ 7C288AE0F75CB18CFF1DF6179A67AD8F ] Schedule C:\WINDOWS\system32\schedsvc.dll
    17:18:06.0062 1812 Schedule - ok
    17:18:06.0093 1812 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
    17:18:06.0156 1812 Secdrv - ok
    17:18:06.0171 1812 [ 6983665BEA867125B1DA5757CD8B2F9D ] seclogon C:\WINDOWS\System32\seclogon.dll
    17:18:06.0312 1812 seclogon - ok
    17:18:06.0328 1812 [ F6EC8F1E50E40237BDDEE1CB7FE20B42 ] SENS C:\WINDOWS\system32\sens.dll
    17:18:06.0468 1812 SENS - ok
    17:18:06.0531 1812 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
    17:18:06.0671 1812 serenum - ok
    17:18:06.0687 1812 [ 92C21762653BB2CE51147EB8A9AA654F ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
    17:18:06.0828 1812 Serial - ok
    17:18:06.0890 1812 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
    17:18:07.0015 1812 Sfloppy - ok
    17:18:07.0093 1812 [ 7579C4BE909D47F10F3D8D801CB13ED9 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
    17:18:07.0250 1812 SharedAccess - ok
    17:18:07.0265 1812 [ 2D5D4156292150FE571872C1B88E9299 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
    17:18:07.0296 1812 ShellHWDetection - ok
    17:18:07.0296 1812 Simbad - ok
    17:18:07.0312 1812 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
    17:18:07.0453 1812 SLIP - ok
    17:18:07.0515 1812 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
    17:18:07.0531 1812 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
    17:18:07.0531 1812 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
    17:18:07.0562 1812 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
    17:18:07.0687 1812 SONYPVU1 - ok
    17:18:07.0687 1812 Sparrow - ok
    17:18:07.0718 1812 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
    17:18:07.0859 1812 splitter - ok
    17:18:07.0906 1812 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
    17:18:07.0937 1812 Spooler - ok
    17:18:07.0984 1812 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
    17:18:07.0984 1812 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
    17:18:07.0984 1812 sptd ( LockedFile.Multi.Generic ) - warning
    17:18:07.0984 1812 sptd - detected LockedFile.Multi.Generic (1)
    17:18:08.0000 1812 [ 64D2A7640E0767ECD3BCB38D3200E7CE ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
    17:18:08.0046 1812 sr - ok
    17:18:08.0093 1812 [ 81CBF363C414620CAA61BD6843D8FDB9 ] srservice C:\WINDOWS\system32\srsvc.dll
    17:18:08.0156 1812 srservice - ok
    17:18:08.0171 1812 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
    17:18:08.0203 1812 Srv - ok
    17:18:08.0218 1812 [ 5B9D0DE64BE96A806819516440FD211C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
    17:18:08.0281 1812 SSDPSRV - ok
    17:18:08.0312 1812 [ 5AE996186D2DC694FEF88F14A3FC9242 ] stisvc C:\WINDOWS\system32\wiaservc.dll
    17:18:08.0453 1812 stisvc - ok
    17:18:08.0484 1812 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    17:18:08.0609 1812 streamip - ok
    17:18:08.0640 1812 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
    17:18:08.0765 1812 swenum - ok
    17:18:08.0781 1812 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
    17:18:08.0937 1812 swmidi - ok
    17:18:08.0953 1812 SwPrv - ok
    17:18:08.0953 1812 symc810 - ok
    17:18:08.0968 1812 symc8xx - ok
    17:18:08.0968 1812 sym_hi - ok
    17:18:08.0984 1812 sym_u3 - ok
    17:18:08.0984 1812 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
    17:18:09.0140 1812 sysaudio - ok
    17:18:09.0171 1812 [ 251EAE7C56C6AB9490311A3C9757E18D ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
    17:18:09.0312 1812 SysmonLog - ok
    17:18:09.0328 1812 [ 2BC9FB448F0C2394FF53C83A7BB04731 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
    17:18:09.0484 1812 TapiSrv - ok
    17:18:09.0546 1812 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
    17:18:09.0562 1812 Tcpip - ok
    17:18:09.0578 1812 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
    17:18:09.0703 1812 TDPIPE - ok
    17:18:09.0734 1812 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
    17:18:09.0875 1812 TDTCP - ok
    17:18:09.0890 1812 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
    17:18:10.0031 1812 TermDD - ok
    17:18:10.0046 1812 [ E0AEF86A594C9990D6321C5CA239C5B7 ] TermService C:\WINDOWS\System32\termsrv.dll
    17:18:10.0203 1812 TermService - ok
    17:18:10.0218 1812 [ 2D5D4156292150FE571872C1B88E9299 ] Themes C:\WINDOWS\System32\shsvcs.dll
    17:18:10.0250 1812 Themes - ok
    17:18:10.0265 1812 [ 78A2FE13662A119875F10E9FFCB49A8F ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
    17:18:10.0328 1812 TlntSvr - ok
    17:18:10.0343 1812 TosIde - ok
    17:18:10.0343 1812 [ 20655E8CA1C78BC7088B18E93806D21B ] TrkWks C:\WINDOWS\system32\trkwks.dll
    17:18:10.0515 1812 TrkWks - ok
    17:18:10.0531 1812 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
    17:18:10.0656 1812 Udfs - ok
    17:18:10.0656 1812 ultra - ok
    17:18:10.0671 1812 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
    17:18:10.0812 1812 Update - ok
    17:18:10.0843 1812 [ 01653D6C9604F1FB31A76EC94E08954F ] upnphost C:\WINDOWS\System32\upnphost.dll
    17:18:10.0921 1812 upnphost - ok
    17:18:10.0937 1812 [ A89796DD0DE24CF03B3A39407E1F46A3 ] UPS C:\WINDOWS\System32\ups.exe
    17:18:11.0093 1812 UPS - ok
    17:18:11.0125 1812 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    17:18:11.0265 1812 usbccgp - ok
    17:18:11.0296 1812 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
    17:18:11.0421 1812 usbehci - ok
    17:18:11.0437 1812 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
    17:18:11.0593 1812 usbhub - ok
    17:18:11.0609 1812 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
    17:18:11.0750 1812 usbohci - ok
    17:18:11.0765 1812 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
    17:18:11.0906 1812 usbprint - ok
    17:18:11.0937 1812 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
    17:18:12.0078 1812 usbscan - ok
    17:18:12.0125 1812 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    17:18:12.0281 1812 USBSTOR - ok
    17:18:12.0328 1812 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
    17:18:12.0437 1812 usb_rndisx - ok
    17:18:12.0468 1812 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
    17:18:12.0609 1812 VgaSave - ok
    17:18:12.0609 1812 ViaIde - ok
    17:18:12.0625 1812 [ 8AB662B3C4691E6DDF61C96BB5B7D103 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
    17:18:12.0765 1812 VolSnap - ok
    17:18:12.0812 1812 [ A585EDD6965B301DE8A45C6768C7C215 ] VSS C:\WINDOWS\System32\vssvc.exe
    17:18:12.0890 1812 VSS - ok
    17:18:12.0906 1812 [ 390D8E65F362327AD510B08971478301 ] W32Time C:\WINDOWS\system32\w32time.dll
    17:18:13.0031 1812 W32Time - ok
    17:18:13.0031 1812 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
    17:18:13.0187 1812 Wanarp - ok
    17:18:13.0203 1812 WDICA - ok
    17:18:13.0218 1812 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
    17:18:13.0359 1812 wdmaud - ok
    17:18:13.0390 1812 [ 33D8E2812054D97A0AEC9B8F04277927 ] WebClient C:\WINDOWS\System32\webclnt.dll
    17:18:13.0531 1812 WebClient - ok
    17:18:13.0609 1812 [ F9E105F369C18E4001E0C05AAF600D73 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
    17:18:13.0750 1812 winmgmt - ok
    17:18:13.0812 1812 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
    17:18:13.0843 1812 WmdmPmSN - ok
    17:18:13.0890 1812 [ 93F8EB8C7CD4E325EC92EDBFC545103D ] Wmi C:\WINDOWS\System32\advapi32.dll
    17:18:13.0921 1812 Wmi - ok
    17:18:13.0953 1812 [ 87F11D161207C7063EDABAC0AADC33C3 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
    17:18:14.0093 1812 WmiApSrv - ok
    17:18:14.0187 1812 [ 79A01ACD485687EE602411A06B63A9A5 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
    17:18:14.0234 1812 WMPNetworkSvc - ok
    17:18:14.0250 1812 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    17:18:14.0265 1812 WpdUsb - ok
    17:18:14.0328 1812 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
    17:18:14.0359 1812 WPFFontCache_v0400 - ok
    17:18:14.0390 1812 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
    17:18:14.0546 1812 WS2IFSL - ok
    17:18:14.0578 1812 [ 843F7FA8EA38E6A4262976DCC994C81A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
    17:18:14.0734 1812 wscsvc - ok
    17:18:14.0765 1812 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    17:18:14.0906 1812 WSTCODEC - ok
    17:18:14.0937 1812 [ 1E8FDDDEF3FE260BADAB06DAE10D753A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
    17:18:15.0093 1812 wuauserv - ok
    17:18:15.0156 1812 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    17:18:15.0171 1812 WudfPf - ok
    17:18:15.0203 1812 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    17:18:15.0218 1812 WudfRd - ok
    17:18:15.0250 1812 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
    17:18:15.0281 1812 WudfSvc - ok
    17:18:15.0312 1812 [ E99782DBB8FFA2AEE72B31DAC8D8D887 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
    17:18:15.0484 1812 WZCSVC - ok
    17:18:15.0515 1812 [ FD3C38635808920F8235BF2FED642F54 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
    17:18:15.0671 1812 xmlprov - ok
    17:18:15.0687 1812 ================ Scan global ===============================
    17:18:15.0765 1812 [ 953AD498333B03F7CE547151F96EF241 ] C:\WINDOWS\system32\basesrv.dll
    17:18:15.0796 1812 [ C7CC71181F7FD61C49EFF278003827A5 ] C:\WINDOWS\system32\winsrv.dll
    17:18:15.0812 1812 [ C7CC71181F7FD61C49EFF278003827A5 ] C:\WINDOWS\system32\winsrv.dll
    17:18:15.0843 1812 [ 657B69389B893F440B07590C9E963F23 ] C:\WINDOWS\system32\services.exe
    17:18:15.0843 1812 [Global] - ok
    17:18:15.0843 1812 ================ Scan MBR ==================================
    17:18:15.0875 1812 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
    17:18:15.0953 1812 \Device\Harddisk0\DR0 - ok
    17:18:15.0968 1812 [ 3051207086651214E435112E51817DC5 ] \Device\Harddisk1\DR1
    17:18:16.0140 1812 \Device\Harddisk1\DR1 - ok
    17:18:16.0140 1812 ================ Scan VBR ==================================
    17:18:16.0156 1812 [ 7E094F19C857ED56775425AF9A7000A4 ] \Device\Harddisk0\DR0\Partition1
    17:18:16.0156 1812 \Device\Harddisk0\DR0\Partition1 - ok
    17:18:16.0171 1812 [ EE4723A14079B5CC6C5437B0CCB2253C ] \Device\Harddisk0\DR0\Partition2
    17:18:16.0171 1812 \Device\Harddisk0\DR0\Partition2 - ok
    17:18:16.0187 1812 [ 83B19A4A66E5D8AC14A535E9CF88A976 ] \Device\Harddisk0\DR0\Partition3
    17:18:16.0187 1812 \Device\Harddisk0\DR0\Partition3 - ok
    17:18:16.0218 1812 [ 9C9D1102CD60FC3D837F45EEDA47A0B7 ] \Device\Harddisk0\DR0\Partition4
    17:18:16.0218 1812 \Device\Harddisk0\DR0\Partition4 - ok
    17:18:16.0218 1812 [ 9CB867C0A42F9F74C010DF57D493D705 ] \Device\Harddisk0\DR0\Partition5
    17:18:16.0218 1812 \Device\Harddisk0\DR0\Partition5 - ok
    17:18:16.0250 1812 [ 847DD1DA68998AA7461DCA73E4CEB404 ] \Device\Harddisk0\DR0\Partition6
    17:18:16.0250 1812 \Device\Harddisk0\DR0\Partition6 - ok
    17:18:16.0265 1812 [ C409D71CE370230BF57347C7A4051342 ] \Device\Harddisk0\DR0\Partition7
    17:18:16.0265 1812 \Device\Harddisk0\DR0\Partition7 - ok
    17:18:16.0265 1812 [ 7EC10A40CCA16CCCC648E4CCB205B8AA ] \Device\Harddisk1\DR1\Partition1
    17:18:16.0265 1812 \Device\Harddisk1\DR1\Partition1 - ok
    17:18:16.0265 1812 [ 7DD6A922E4ABFCDB599EC6B497FFD99F ] \Device\Harddisk1\DR1\Partition2
    17:18:16.0281 1812 \Device\Harddisk1\DR1\Partition2 - ok
    17:18:16.0296 1812 [ 92A8E87108164FD38D491ED88BAD69BF ] \Device\Harddisk1\DR1\Partition3
    17:18:16.0296 1812 \Device\Harddisk1\DR1\Partition3 - ok
    17:18:16.0296 1812 ============================================================
    17:18:16.0296 1812 Scan finished
    17:18:16.0296 1812 ============================================================
    17:18:16.0406 1320 Detected object count: 6
    17:18:16.0406 1320 Actual detected object count: 6
    17:18:50.0984 1320 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 CCALib8 ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 CCALib8 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 pcouffin ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 sptd ( LockedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 sptd ( LockedFile.Multi.Generic ) - User select action: Skip














  • hallo abraham ik heb mijn pc opnieuw opgestart en krijg nu de melding dat ik mogelijk de dupe bent geworden van softwarevervalsing,wat moet ik hiermee?

    gr.ria
  • Van welke firma krijg je die melding?

    Doe de ComboFix scan nogmaals.
    Het kan na opstarten van ComboFix gebeuren dat er een melding komt:

    - of ComboFix wil geupdated worden;
    - of ComboFix wil opnieuw gedownload worden.

    Post wederom de inhoud van het ComboFix-log.
  • de melding is van microsoft.
    ook is de achtergrond van mijn bureaublad verdwenen.

    [quote:4e36e085b8="Abraham54"]Van welke firma krijg je die melding?

    Doe de ComboFix scan nogmaals.
    Het kan na opstarten van ComboFix gebeuren dat er een melding komt:

    - of ComboFix wil geupdated worden;
    - of ComboFix wil opnieuw gedownload worden.

    Post wederom de inhoud van het ComboFix-log.[/quote:4e36e085b8]
  • de melding is van windows genuine adventage:
    dit exemplaar van windows is niet als legitieme windows software gevalideerd.

    moet ik dit negeren of updaten?
    ik heb geen codes als daarom gevraagd wordt.

    hieronder de combofix log.;

    ComboFix 12-11-27.01 - RIA 27-11-2012 23:01:45.2.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1919.1393 [GMT 1:00]
    Gestart vanuit: c:\documents and settings\RIA\Bureaublad\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-10-27 to 2012-11-27 ))))))))))))))))))))))))))))))
    .
    .
    2012-11-26 20:31 . 2012-11-26 20:35 ——– d—–w- c:\program files\a-squared Free
    2012-11-25 20:23 . 2012-11-27 20:39 ——– d–h–r- c:\documents and settings\RIA\Onlangs geopend
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\ElevatedDiagnostics
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\IDM
    2012-11-25 20:20 . 2012-11-25 20:20 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\ABBYY
    2012-11-25 20:19 . 2012-11-25 20:19 ——– d—–w- c:\program files\Mozilla Maintenance Service
    2012-11-14 10:29 . 2012-11-14 10:29 ——– dc—-w- c:\documents and settings\All Users\Application Data\Ahead
    2012-11-11 19:28 . 2007-06-03 13:31 10752 —-a-w- c:\windows\system32\ff_vfw.dll
    2012-11-11 19:28 . 2007-04-24 16:30 60273 —-a-w- c:\windows\system32\pthreadGC2.dll
    2012-11-11 19:28 . 2012-11-25 20:12 ——– d—–w- c:\program files\AviSynth 2.5
    2012-11-11 19:27 . 2012-11-25 20:12 ——– d—–w- c:\program files\The FilmMachine
    2012-11-07 16:33 . 2012-11-08 15:47 8192 —-a-w- c:\windows\system32\E_DCINST.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 95232 —-a-w- c:\windows\system32\E_FLBHBE.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 81408 —-a-w- c:\windows\system32\E_FD4BHBE.DLL
    2012-11-07 16:12 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\ABBYY
    2012-11-07 16:12 . 2012-11-25 20:14 ——– d—–w- c:\program files\ABBYY FineReader 9.0 Sprint
    2012-11-07 16:12 . 2012-11-07 16:12 ——– d—–w- c:\program files\Common Files\ABBYY
    2012-11-07 16:11 . 2012-11-07 16:11 ——– dc—-w- c:\documents and settings\All Users\Application Data\UDL
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\ensppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\ensppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enspres.dll
    2012-11-07 16:08 . 2012-11-25 20:15 ——– d—–w- c:\program files\EpsonNet
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\enppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\enppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enpres.dll
    2012-11-07 16:08 . 2012-11-25 20:14 ——– d—–w- c:\program files\Common Files\EPSON
    2012-11-07 16:08 . 2012-11-07 16:11 ——– d—–w- c:\program files\EPSON Software
    2012-11-07 16:05 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\EPSON
    2012-11-07 16:04 . 2009-10-15 23:00 132560 —-a-w- c:\windows\system32\esdevapp.exe
    2012-11-07 16:04 . 2009-09-16 23:00 342016 —-a-w- c:\windows\system32\eswiaud.dll
    2012-10-31 15:39 . 2012-10-31 15:39 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\Sun
    2012-10-31 15:28 . 2012-10-31 15:28 93672 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-11-14 09:47 . 2012-04-17 07:10 697272 —-a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-11-14 09:47 . 2011-05-14 07:12 73656 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-10-31 15:28 . 2012-06-30 20:37 821736 —-a-w- c:\windows\system32
    pdeployJava1.dll
    2012-10-31 15:28 . 2008-02-20 22:35 143872 —-a-w- c:\windows\system32\javacpl.cpl
    2012-10-30 22:51 . 2012-06-27 18:51 361032 —-a-w- c:\windows\system32\drivers\aswSP.sys
    2012-10-30 22:51 . 2012-06-27 18:51 738504 —-a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-10-30 22:51 . 2012-06-27 18:51 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-10-30 22:51 . 2012-06-27 18:51 35928 —-a-w- c:\windows\system32\drivers\aswRdr.sys
    2012-10-30 22:51 . 2012-06-27 18:51 97608 —-a-w- c:\windows\system32\drivers\aswmon2.sys
    2012-10-30 22:51 . 2012-06-27 18:51 89752 —-a-w- c:\windows\system32\drivers\aswmon.sys
    2012-10-30 22:51 . 2012-06-27 18:51 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-10-30 22:51 . 2012-06-27 18:51 25256 —-a-w- c:\windows\system32\drivers\aavmker4.sys
    2012-10-30 22:51 . 2012-06-27 18:51 41224 —-a-w- c:\windows\avastSS.scr
    2012-10-30 22:50 . 2012-06-27 18:51 227648 —-a-w- c:\windows\system32\aswBoot.exe
    2012-10-22 19:57 . 2004-08-03 22:56 1866496 —-a-w- c:\windows\system32\win32k.sys
    2012-10-02 18:04 . 2004-08-03 23:03 58368 —-a-w- c:\windows\system32\synceng.dll
    2012-09-29 18:54 . 2012-06-30 18:31 22856 —-a-w- c:\windows\system32\drivers\mbam.sys
    2007-03-12 16:59 . 2007-03-12 16:59 299008 -c–a-w- c:\program files
    avigram_register.exe
    2012-11-21 14:15 . 2012-11-21 14:15 262112 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-10-30 22:50 121528 —-a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "EPLTarget\P0000000000000000"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "EPLTarget\P0000000000000001"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-11-01 289072]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-30 7634944]
    "nwiz"="nwiz.exe" [2006-10-30 1622016]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-30 86016]
    "RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
    "SkyTel"="SkyTel.EXE" [2007-06-15 1826816]
    "UPC"="c:\program files\UPC\bin\sprtcmd.exe" [2005-08-16 192512]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
    "Reader Application Helper"="c:\program files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" [2012-07-12 892928]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\RIA\Menu Start\Programma's\Opstarten\
    Webshots.lnk - c:\program files\Webshots\3.1.5.7617\Launcher.exe [2009-12-29 157088]
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Netpresenter Player.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Netpresenter Player.lnk
    backup=c:\windows\pss\Netpresenter Player.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\WinZip Quick Pick.lnk
    backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2009-01-11 15:59 2522048 -c–a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    2006-09-28 19:21 57344 -c–a-w- c:\program files\SlySoft\CloneCD\CloneCDTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 —-a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    2006-01-12 14:40 155648 -c–a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\WINDOWS\\system32\\msiexec.exe"=
    "c:\\Documents and Settings\\RIA\\Local Settings\\Temp\\ibtmp213d533\\component_567"=
    "c:\\Program Files\\EPSON Software\\Event Manager\\EEventManager.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "58471:TCP"= 58471:TCP:Pando P2P TCP Listening Port
    "58471:UDP"= 58471:UDP:Pando P2P UDP Listening Port
    "58023:TCP"= 58023:TCP:Pando P2P TCP Listening Port
    "58023:UDP"= 58023:UDP:Pando P2P UDP Listening Port
    "57447:TCP"= 57447:TCP:Pando P2P TCP Listening Port
    "57447:UDP"= 57447:UDP:Pando P2P UDP Listening Port
    "13532:TCP"= 13532:TCP:BitCometBeta 13532 TCP
    "13532:UDP"= 13532:UDP:BitCometBeta 13532 UDP
    "50005:TCP"= 50005:TCP:utorrent1
    "50005:UDP"= 50005:UDP:utorrent1
    .
    R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23-2-2009 13:54 717296]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27-6-2012 19:51 738504]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [27-6-2012 19:51 361032]
    R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [5-6-2012 23:00 101720]
    R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [26-11-2012 21:31 1872320]
    R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [14-5-2009 17:07 759048]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27-6-2012 19:51 21256]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18-3-2008 13:04 47360]
    S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys –> c:\windows\system32\DRIVERS\Lbd.sys [?]
    S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys –> c:\windows\system32\drivers\hitmanpro3.sys [?]
    S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys –> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 09:47]
    .
    2012-11-27 c:\windows\Tasks\avast! Emergency Update.job
    - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-01 22:50]
    .
    2012-11-27 c:\windows\Tasks\OGALogon.job
    - c:\windows\system32\OGAEXEC.exe [2009-08-03 13:07]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = about:blank
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 192.168.0.1
    FF - ProfilePath - c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\
    FF - ExtSQL: 2012-11-08 12:59; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
    FF - ExtSQL: 2012-11-19 21:20; {2d3fbcf7-be69-4433-8858-c621a8d0e58d}; c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2012-11-27 23:22
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scannen van verborgen processen …
    .
    scannen van verborgen autostart items …
    .
    scannen van verborgen bestanden …
    .
    Scan succesvol afgerond
    verborgen bestanden: 0
    .
    **************************************************************************
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    ——————— DLLs Geladen Onder Lopende Processen ———————
    .
    - - - - - - - > 'explorer.exe'(404)
    c:\windows\system32\msi.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    Voltooingstijd: 2012-11-27 23:28:33
    ComboFix-quarantined-files.txt 2012-11-27 22:28
    ComboFix2.txt 2012-11-27 09:58
    .
    Pre-Run: 63.209.627.648 bytes beschikbaar
    Post-Run: 63.218.782.208 bytes beschikbaar
    .
    - - End Of File - - ADD03A1EF87DC71A314BFFD0E9046822

    voor straks welterusten.gr.ria

  • hallo abraham,heeft u nog iets kunnen vinden?
    de problemen zijn er nog steeds,ik kan nog steeds geen eenvoudige spellen spelen.zou het misschien aan avast of firefox kunnen liggen?

    gr.ria
  • mijn ervaring is dat Abraham54 altijd antwoordt, dus even geduld hebben.
  • [quote:ba7a341a92="f.j.stols"]mijn ervaring is dat Abraham54 altijd antwoordt, dus even geduld hebben.[/quote:ba7a341a92]

    komt goed hoor,bedankt.
    fijne dag nog.

    gr.ria
  • Hallo Ria, na de nodige problemen met mijn notebook ben ik er weer.

    Je mag het volgende gaan doen:

    [b:dd693ffac9]Welk programma[/b:dd693ffac9]:
  • [quote:99d2a115a6="Abraham54"]Hallo Ria, na de nodige problemen met mijn notebook ben ik er weer.

    Je mag het volgende gaan doen:

    [b:99d2a115a6]Welk programma[/b:99d2a115a6]:
  • Krijg je nog steeds die activatiemelding?
    En hoe draait Windows momenteel?

    Doe ook het volgende:

    [b:747145afed]Welk programma[/b:747145afed]:
  • [quote:988bb6aa98="Abraham54"]Krijg je nog steeds die activatiemelding?
    En hoe draait Windows momenteel?

    Doe ook het volgende:

    [b:988bb6aa98]Welk programma[/b:988bb6aa98]:

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.

Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord