Vraag & Antwoord

Beveiliging & privacy

vraagje voor abraham,pc is traag

Anoniem
None
26 antwoorden
  • hallo abraham,mijn pc is sinds een week of 3 heel erg traag,eenvoudige spellen zoals mahjong zijn nauwelijks te spelen omdat de muis vaak blijft hangen(stottert) ook pagina;s worden heel langzaam geladen en het afsluiten idem dito.
    Ik heb een systeemherstel geprobeerd maar ook dit doet hij niet meer.

    mijn pc is ong 3 jaar oud en draait op windows xp en browser is firefox.
    ik heb hem gescant met malwarebytes,spybot,atf-cleaner en cw shredder maar er wordt niets gevonden,ikzelf denk dat het aan firefox ligt.
    hierbij zend ik u de hi-jack log en ik hoop dat u mij verder kunt helpen.
    b.v.d ria.

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 22:47:40, on 26-11-2012
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    C:\Program Files\Java\jre7\bin\jqs.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\UPC\bin\sprtcmd.exe
    C:\Program Files\AVAST Software\Avast\avastUI.exe
    C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Epson Software\Event Manager\EEventManager.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE
    C:\Program Files\uTorrent\uTorrent.exe
    C:\PROGRA~1\Webshots\315~1.761\Webshots.scr
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\Program Files\UPC\agentui\bcont.exe
    F:\software\hi-jack this\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=71126
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O2 - BHO: free-downloads.net - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll
    O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\prxtbfre2.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [UPC] "C:\Program Files\UPC\bin\sprtcmd.exe" /P UPC
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [Reader Application Helper] C:\Program Files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE /EPT "EPLTarget\P0000000000000000" /M "Epson Stylus SX440"
    O4 - HKCU\..\Run: [EPLTarget\P0000000000000001] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE /EPT "EPLTarget\P0000000000000001" /M "Epson Stylus SX440"
    O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\3.1.5.7617\Launcher.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1203547422406
    O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
    O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Sony SCSI Helper Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe


    End of file - 9553 bytes
  • Hallo Ria, begin met verwijderen van de NVidia NetworkAccessManager via [b:c7cf774417]
  • hallo abraham,hierbij de gevraagde logfiles.
    adwcleaner:
    # AdwCleaner v2.009 - Verslag gemaakt op 27/11/2012 om 10:22:26
    # Geactualiseerd op 24/11/2012 door Xplode
    # Besturingssysteem : Microsoft Windows XP Service Pack 3 (32 bits)
    # Gebruiker : RIA - RIA-3BAF41774F7
    # Opstarten Modus : Normale modus
    # Gelanceerd vanaf : F:\software\adwcleander\adwcleaner.exe
    # Optie [Verwijderen]


    ***** [Diensten] *****


    ***** [Files / Mappen] *****

    File Verwijdert : C:\user.js
    File Verwijdert : C:\WINDOWS\system32\conduitEngine.tmp
    Map Verwijdert : C:\Documents and Settings\All Users\Application Data\AGI
    Map Verwijdert : C:\Documents and Settings\All Users\Application Data\Tarma Installer
    Map Verwijdert : C:\Documents and Settings\RIA\Application Data\AGI
    Map Verwijdert : C:\Documents and Settings\RIA\Local Settings\Application Data\Conduit
    Map Verwijdert : C:\Documents and Settings\RIA\Local Settings\Application Data\free-downloads.net
    Map Verwijdert : C:\Program Files\AGI
    Map Verwijdert : C:\Program Files\Conduit
    Map Verwijdert : C:\Program Files\free-downloads.net

    ***** [Register] *****

    Sleutel Verwijdert : HKCU\Software\AGI
    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\SmartBar
    Sleutel Verwijdert : HKCU\Software\Conduit
    Sleutel Verwijdert : HKCU\Software\free-downloads.net
    Sleutel Verwijdert : HKCU\Software\IM
    Sleutel Verwijdert : HKCU\Software\ImInstaller
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKCU\Software\PriceGong
    Sleutel Verwijdert : HKCU\Software\SmartBar
    Sleutel Verwijdert : HKCU\Software\Softonic
    Sleutel Verwijdert : HKCU\Toolbar
    Sleutel Verwijdert : HKLM\Software\AGI
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\agihelper.AGUtils
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{8ED24CCC-C483-4005-A6F0-68FAB7B56997}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Conduit.Engine
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.BHO
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.Sandbox
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CrossriderApp0005060.Sandbox.1
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT1098640
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2865317
    Sleutel Verwijdert : HKLM\Software\Conduit
    Sleutel Verwijdert : HKLM\Software\free-downloads.net
    Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
    Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
    Sleutel Verwijdert : HKLM\Software\IB Updater
    Sleutel Verwijdert : HKLM\Software\Iminent
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{068D5947-1D0F-4A32-BD21-2B7B838E2401}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110011501160}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FA31EF2E-1F2F-47F3-BC66-95DB10B34EB0}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\facemoods
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\free-downloads.net Toolbar
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\iMesh 1 MediaBar
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ECDEE021-0D17-467F-A1FF-C7A115230949}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8ED24CCC-C483-4005-A6F0-68FAB7B56997}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\free-downloads.net Toolbar
    Sleutel Verwijdert : HKLM\Software\Tarma Installer
    Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{ECDEE021-0D17-467F-A1FF-C7A115230949}]
    Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{ECDEE021-0D17-467F-A1FF-C7A115230949}]
    Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

    ***** [Browsers] *****

    -\\ Internet Explorer v8.0.6001.18702

    [OK] Het register bevat geen enkele ongeoorloofde invoer.

    -\\ Mozilla Firefox v17.0 (nl)

    Profielnaam : default-1352403524218 [Profil par défaut]
    File : C:\Documents and Settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\prefs.js

    [OK] De file bevat geen enkele ongeoorloofde invoer.

    -\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

    File : C:\Documents and Settings\RIA\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

    [OK] De file bevat geen enkele ongeoorloofde invoer.

    *************************

    AdwCleaner[S1].txt - [6042 octets] - [27/11/2012 10:22:26]

    ########## EOF - C:\AdwCleaner[S1].txt - [6102 octets] ##########

    combofix:

    ComboFix 12-11-26.02 - RIA 27-11-2012 10:41:47.1.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1919.1443 [GMT 1:00]
    Gestart vanuit: c:\documents and settings\RIA\Bureaublad\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    [i:17eb1b1168] ADS - WINDOWS: deleted 48 bytes in 1 streams. [/i:17eb1b1168]
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\All Users\Application Data\TEMP
    c:\documents and settings\RIA\Application Data\inst.exe
    c:\documents and settings\RIA\Application Data\vso_ts_preview.xml
    c:\windows\IsUn0413.exe
    c:\windows\system32\ReadMe.txt
    c:\windows\system32\Thumbs.db
    E:\install.exe
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-10-27 to 2012-11-27 ))))))))))))))))))))))))))))))
    .
    .
    2012-11-26 20:31 . 2012-11-26 20:35 ——– d—–w- c:\program files\a-squared Free
    2012-11-25 20:23 . 2012-11-27 09:25 ——– d–h–r- c:\documents and settings\RIA\Onlangs geopend
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\ElevatedDiagnostics
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\IDM
    2012-11-25 20:20 . 2012-11-25 20:20 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\ABBYY
    2012-11-25 20:19 . 2012-11-25 20:19 ——– d—–w- c:\program files\Mozilla Maintenance Service
    2012-11-14 10:29 . 2012-11-14 10:29 ——– dc—-w- c:\documents and settings\All Users\Application Data\Ahead
    2012-11-11 19:28 . 2007-06-03 13:31 10752 —-a-w- c:\windows\system32\ff_vfw.dll
    2012-11-11 19:28 . 2007-04-24 16:30 60273 —-a-w- c:\windows\system32\pthreadGC2.dll
    2012-11-11 19:28 . 2012-11-25 20:12 ——– d—–w- c:\program files\AviSynth 2.5
    2012-11-11 19:27 . 2012-11-25 20:12 ——– d—–w- c:\program files\The FilmMachine
    2012-11-07 16:33 . 2012-11-08 15:47 8192 —-a-w- c:\windows\system32\E_DCINST.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 95232 —-a-w- c:\windows\system32\E_FLBHBE.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 81408 —-a-w- c:\windows\system32\E_FD4BHBE.DLL
    2012-11-07 16:12 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\ABBYY
    2012-11-07 16:12 . 2012-11-25 20:14 ——– d—–w- c:\program files\ABBYY FineReader 9.0 Sprint
    2012-11-07 16:12 . 2012-11-07 16:12 ——– d—–w- c:\program files\Common Files\ABBYY
    2012-11-07 16:11 . 2012-11-07 16:11 ——– dc—-w- c:\documents and settings\All Users\Application Data\UDL
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\ensppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\ensppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enspres.dll
    2012-11-07 16:08 . 2012-11-25 20:15 ——– d—–w- c:\program files\EpsonNet
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\enppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\enppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enpres.dll
    2012-11-07 16:08 . 2012-11-25 20:14 ——– d—–w- c:\program files\Common Files\EPSON
    2012-11-07 16:08 . 2012-11-07 16:11 ——– d—–w- c:\program files\EPSON Software
    2012-11-07 16:05 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\EPSON
    2012-11-07 16:04 . 2009-10-15 23:00 132560 —-a-w- c:\windows\system32\esdevapp.exe
    2012-11-07 16:04 . 2009-09-16 23:00 342016 —-a-w- c:\windows\system32\eswiaud.dll
    2012-10-31 15:39 . 2012-10-31 15:39 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\Sun
    2012-10-31 15:28 . 2012-10-31 15:28 93672 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-11-14 09:47 . 2012-04-17 07:10 697272 —-a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-11-14 09:47 . 2011-05-14 07:12 73656 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-10-31 15:28 . 2012-06-30 20:37 821736 —-a-w- c:\windows\system32\npdeployJava1.dll
    2012-10-31 15:28 . 2008-02-20 22:35 143872 —-a-w- c:\windows\system32\javacpl.cpl
    2012-10-30 22:51 . 2012-06-27 18:51 361032 —-a-w- c:\windows\system32\drivers\aswSP.sys
    2012-10-30 22:51 . 2012-06-27 18:51 738504 —-a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-10-30 22:51 . 2012-06-27 18:51 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-10-30 22:51 . 2012-06-27 18:51 35928 —-a-w- c:\windows\system32\drivers\aswRdr.sys
    2012-10-30 22:51 . 2012-06-27 18:51 97608 —-a-w- c:\windows\system32\drivers\aswmon2.sys
    2012-10-30 22:51 . 2012-06-27 18:51 89752 —-a-w- c:\windows\system32\drivers\aswmon.sys
    2012-10-30 22:51 . 2012-06-27 18:51 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-10-30 22:51 . 2012-06-27 18:51 25256 —-a-w- c:\windows\system32\drivers\aavmker4.sys
    2012-10-30 22:51 . 2012-06-27 18:51 41224 —-a-w- c:\windows\avastSS.scr
    2012-10-30 22:50 . 2012-06-27 18:51 227648 —-a-w- c:\windows\system32\aswBoot.exe
    2012-10-22 19:57 . 2004-08-03 22:56 1866496 —-a-w- c:\windows\system32\win32k.sys
    2012-10-02 18:04 . 2004-08-03 23:03 58368 —-a-w- c:\windows\system32\synceng.dll
    2012-09-29 18:54 . 2012-06-30 18:31 22856 —-a-w- c:\windows\system32\drivers\mbam.sys
    2007-03-12 16:59 . 2007-03-12 16:59 299008 -c–a-w- c:\program files\navigram_register.exe
    2012-11-21 14:15 . 2012-11-21 14:15 262112 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-10-30 22:50 121528 —-a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "EPLTarget\P0000000000000000"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "EPLTarget\P0000000000000001"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-11-01 289072]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-30 7634944]
    "nwiz"="nwiz.exe" [2006-10-30 1622016]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-30 86016]
    "RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
    "SkyTel"="SkyTel.EXE" [2007-06-15 1826816]
    "UPC"="c:\program files\UPC\bin\sprtcmd.exe" [2005-08-16 192512]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
    "Reader Application Helper"="c:\program files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" [2012-07-12 892928]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\RIA\Menu Start\Programma's\Opstarten\
    Webshots.lnk - c:\program files\Webshots\3.1.5.7617\Launcher.exe [2009-12-29 157088]
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Netpresenter Player.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Netpresenter Player.lnk
    backup=c:\windows\pss\Netpresenter Player.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\WinZip Quick Pick.lnk
    backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
    HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPLTarget
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2009-01-11 15:59 2522048 -c–a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    2006-09-28 19:21 57344 -c–a-w- c:\program files\SlySoft\CloneCD\CloneCDTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 —-a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPLTarget\P0000000000000000]
    2012-11-08 15:47 249440 —-a-w- c:\windows\system32\spool\drivers\w32x86\3\E_FATIHBE.EXE
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    2006-01-12 14:40 155648 -c–a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\WINDOWS\\system32\\msiexec.exe"=
    "c:\\Documents and Settings\\RIA\\Local Settings\\Temp\\ibtmp213d533\\component_567"=
    "c:\\Program Files\\EPSON Software\\Event Manager\\EEventManager.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "58471:TCP"= 58471:TCP:Pando P2P TCP Listening Port
    "58471:UDP"= 58471:UDP:Pando P2P UDP Listening Port
    "58023:TCP"= 58023:TCP:Pando P2P TCP Listening Port
    "58023:UDP"= 58023:UDP:Pando P2P UDP Listening Port
    "57447:TCP"= 57447:TCP:Pando P2P TCP Listening Port
    "57447:UDP"= 57447:UDP:Pando P2P UDP Listening Port
    "13532:TCP"= 13532:TCP:BitCometBeta 13532 TCP
    "13532:UDP"= 13532:UDP:BitCometBeta 13532 UDP
    "50005:TCP"= 50005:TCP:utorrent1
    "50005:UDP"= 50005:UDP:utorrent1
    .
    R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23-2-2009 13:54 717296]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27-6-2012 19:51 738504]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [27-6-2012 19:51 361032]
    R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [5-6-2012 23:00 101720]
    R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [26-11-2012 21:31 1872320]
    R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [14-5-2009 17:07 759048]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27-6-2012 19:51 21256]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18-3-2008 13:04 47360]
    S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys –> c:\windows\system32\DRIVERS\Lbd.sys [?]
    S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys –> c:\windows\system32\drivers\hitmanpro3.sys [?]
    S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys –> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 09:47]
    .
    2012-11-27 c:\windows\Tasks\avast! Emergency Update.job
    - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-01 22:50]
    .
    2012-11-27 c:\windows\Tasks\OGALogon.job
    - c:\windows\system32\OGAEXEC.exe [2009-08-03 13:07]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = about:blank
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 192.168.0.1
    FF - ProfilePath - c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\
    FF - ExtSQL: 2012-11-08 12:59; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
    FF - ExtSQL: 2012-11-19 21:20; {2d3fbcf7-be69-4433-8858-c621a8d0e58d}; c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    MSConfigStartUp-Ad-Aware Browsing Protection - c:\documents and settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe
    MSConfigStartUp-BitTorrent - c:\program files\BitTorrent\BitTorrent.exe
    MSConfigStartUp-Creative WebCam Tray - c:\program files\Creative\Shared Files\CamTray.exe
    MSConfigStartUp-Easy-PrintToolBox - c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE
    MSConfigStartUp-EEventManager - c:\program files\EPSON\Creativity Suite\Event Manager\EEventManager.exe
    MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
    MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    AddRemove-{2857dbef-0b50-361c-8690-7d505747009f} - c:\program files\AGI\core\4.2\InstallerGUI.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2012-11-27 10:53
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scannen van verborgen processen …
    .
    scannen van verborgen autostart items …
    .
    scannen van verborgen bestanden …
    .
    Scan succesvol afgerond
    verborgen bestanden: 0
    .
    **************************************************************************
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    Voltooingstijd: 2012-11-27 10:58:09
    ComboFix-quarantined-files.txt 2012-11-27 09:58
    .
    Pre-Run: 61.779.423.232 bytes beschikbaar
    Post-Run: 62.178.799.616 bytes beschikbaar
    .
    WindowsXP-KB310994-SP2-Pro-BootDisk-NLD.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    UnsupportedDebug="do not select this" /debug
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect /usepmtimer
    [spybotsd]
    timeout.old=30
    .
    - - End Of File - - 04BF7F6D390996D6D49BB7C4E7F241EB

    gr.ria
  • Hallo Ria, hoe gaat het intussen?

    En nog een opdracht: verwijder Lavasoft AdAware.
    Dit tool met zijn slechte virusherkenning heb je echt niet meer nodig.
  • [quote:9734291d24="Abraham54"]Hallo Ria, hoe gaat het intussen?

    En nog een opdracht: verwijder Lavasoft AdAware.
    Dit tool met zijn slechte virusherkenning heb je echt niet meer nodig.[/quote:9734291d24]

    hallo abraham,nog niet echt beter,ik kan nog steeds geen spel spelen.
    gr.ria
  • Heb je inmiddels Lavasoft AdAware kunnen verwijderen?

    Download [b:f055e387f9] en plaats het op je bureaublad.
    [list:f055e387f9]
    [*:f055e387f9] Voordat je TDSSKiller uitvoert is het raadzaam om de onderstaande handleiding van TDSSKiller te raadplegen.
    [list:f055e387f9]
    [*:f055e387f9] [b:f055e387f9][/b:f055e387f9][/list:u:f055e387f9]
    [*:f055e387f9] Dubbelklik op [b:f055e387f9]TDSSKiller.exe[/b:f055e387f9] om de tool te starten. ([i:f055e387f9]Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken[/i:f055e387f9]).
    [*:f055e387f9] [i:f055e387f9]Als er door TDSSkiller een update wordt gevonden klikt u op de knop "[b:f055e387f9]Load update[/b:f055e387f9]"[/i:f055e387f9]
    [img:f055e387f9]http://www.imgdumper.nl/uploads6/506422ecca8b3/506422ecc81a0-TDSSkiller%28update%29.jpg[/img:f055e387f9]
    [*:f055e387f9] [i:f055e387f9]Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.[/i:f055e387f9]
    [*:f055e387f9] [i:f055e387f9]Start nu TDSSkiller opnieuw.[/i:f055e387f9]
    [*:f055e387f9] Klik op "[b:f055e387f9]Change parameters[/b:f055e387f9]" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    [img:f055e387f9]http://www.imgdumper.nl/uploads6/5064230056569/506423005368c-TDSSkiller%28opties%29.jpg[/img:f055e387f9]
    [*:f055e387f9] Klik op de knop "[b:f055e387f9]Start Scan[/b:f055e387f9]" en volg de instructies.
    [list:f055e387f9]
    [*:f055e387f9] Gebruik
  • hallo abraham,hierbij de log van de tdsskiller

    15:49:00.0578 1764 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    15:49:00.0828 1764 ============================================================
    15:49:00.0828 1764 Current date / time: 2012/11/27 15:49:00.0828
    15:49:00.0828 1764 SystemInfo:
    15:49:00.0828 1764
    15:49:00.0828 1764 OS Version: 5.1.2600 ServicePack: 3.0
    15:49:00.0828 1764 Product type: Workstation
    15:49:00.0828 1764 ComputerName: RIA-3BAF41774F7
    15:49:00.0828 1764 UserName: RIA
    15:49:00.0828 1764 Windows directory: C:\WINDOWS
    15:49:00.0828 1764 System windows directory: C:\WINDOWS
    15:49:00.0828 1764 Processor architecture: Intel x86
    15:49:00.0828 1764 Number of processors: 2
    15:49:00.0828 1764 Page size: 0x1000
    15:49:00.0828 1764 Boot type: Normal boot
    15:49:00.0828 1764 ============================================================
    15:49:02.0484 1764 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    15:49:02.0500 1764 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    15:49:02.0515 1764 ============================================================
    15:49:02.0515 1764 \Device\Harddisk0\DR0:
    15:49:02.0515 1764 MBR partitions:
    15:49:02.0515 1764 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F00, BlocksNum 0xF46566
    15:49:02.0531 1764 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xF4A4A5, BlocksNum 0x2629FBC
    15:49:02.0546 1764 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x35744A0, BlocksNum 0x16E78D8
    15:49:02.0562 1764 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x4C5BDB7, BlocksNum 0x7A51F4
    15:49:02.0578 1764 \Device\Harddisk0\DR0\Partition5: MBR, Type 0xB, StartLBA 0x5400FEA, BlocksNum 0x7A51F4
    15:49:02.0593 1764 \Device\Harddisk0\DR0\Partition6: MBR, Type 0xB, StartLBA 0x5BA621D, BlocksNum 0x1E88C4A
    15:49:02.0609 1764 \Device\Harddisk0\DR0\Partition7: MBR, Type 0xB, StartLBA 0x7A2EEA6, BlocksNum 0x1E79146
    15:49:02.0609 1764 \Device\Harddisk1\DR1:
    15:49:02.0609 1764 MBR partitions:
    15:49:02.0609 1764 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC6B9CAC
    15:49:02.0625 1764 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC6B9D2A, BlocksNum 0xC6B9CAC
    15:49:02.0640 1764 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x18D73A15, BlocksNum 0xC6B5DEB
    15:49:02.0640 1764 ============================================================
    15:49:02.0671 1764 C: <-> \Device\Harddisk1\DR1\Partition1
    15:49:02.0703 1764 E: <-> \Device\Harddisk1\DR1\Partition2
    15:49:02.0734 1764 F: <-> \Device\Harddisk1\DR1\Partition3
    15:49:02.0750 1764 G: <-> \Device\Harddisk0\DR0\Partition1
    15:49:02.0765 1764 H: <-> \Device\Harddisk0\DR0\Partition2
    15:49:02.0781 1764 I: <-> \Device\Harddisk0\DR0\Partition3
    15:49:02.0796 1764 J: <-> \Device\Harddisk0\DR0\Partition4
    15:49:02.0812 1764 K: <-> \Device\Harddisk0\DR0\Partition5
    15:49:02.0812 1764 L: <-> \Device\Harddisk0\DR0\Partition6
    15:49:02.0828 1764 M: <-> \Device\Harddisk0\DR0\Partition7
    15:49:02.0828 1764 ============================================================
    15:49:02.0828 1764 Initialize success
    15:49:02.0828 1764 ============================================================
    15:49:29.0531 2220 ============================================================
    15:49:29.0531 2220 Scan started
    15:49:29.0531 2220 Mode: Manual;
    15:49:29.0531 2220 ============================================================
    15:49:32.0296 2220 ================ Scan system memory ========================
    15:49:32.0312 2220 System memory - ok
    15:49:32.0312 2220 ================ Scan services =============================
    15:49:32.0687 2220 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    15:49:32.0781 2220 a2free - ok
    15:49:32.0937 2220 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    15:49:32.0937 2220 Aavmker4 - ok
    15:49:33.0062 2220 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    15:49:33.0125 2220 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    15:49:33.0156 2220 Abiosdsk - ok
    15:49:33.0187 2220 abp480n5 - ok
    15:49:33.0296 2220 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    15:49:33.0312 2220 ACPI - ok
    15:49:33.0359 2220 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    15:49:33.0375 2220 ACPIEC - ok
    15:49:33.0468 2220 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    15:49:33.0484 2220 AdobeFlashPlayerUpdateSvc - ok
    15:49:33.0515 2220 adpu160m - ok
    15:49:33.0640 2220 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    15:49:33.0656 2220 aec - ok
    15:49:33.0718 2220 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    15:49:33.0734 2220 AFD - ok
    15:49:33.0765 2220 Aha154x - ok
    15:49:33.0796 2220 aic78u2 - ok
    15:49:33.0843 2220 aic78xx - ok
    15:49:33.0906 2220 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    15:49:33.0906 2220 Alerter - ok
    15:49:33.0968 2220 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    15:49:33.0984 2220 ALG - ok
    15:49:34.0000 2220 AliIde - ok
    15:49:34.0078 2220 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    15:49:34.0078 2220 AmdK8 - ok
    15:49:34.0109 2220 amsint - ok
    15:49:34.0171 2220 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    15:49:34.0187 2220 AnyDVD - ok
    15:49:34.0250 2220 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    15:49:34.0265 2220 AppMgmt - ok
    15:49:34.0296 2220 asc - ok
    15:49:34.0328 2220 asc3350p - ok
    15:49:34.0375 2220 asc3550 - ok
    15:49:34.0531 2220 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    15:49:34.0531 2220 Aspi32 - ok
    15:49:34.0656 2220 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    15:49:34.0656 2220 aspnet_state - ok
    15:49:34.0718 2220 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    15:49:34.0734 2220 aswFsBlk - ok
    15:49:34.0781 2220 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    15:49:34.0796 2220 aswMon2 - ok
    15:49:34.0843 2220 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    15:49:34.0843 2220 AswRdr - ok
    15:49:34.0921 2220 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    15:49:34.0968 2220 aswSnx - ok
    15:49:35.0046 2220 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    15:49:35.0062 2220 aswSP - ok
    15:49:35.0109 2220 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    15:49:35.0125 2220 aswTdi - ok
    15:49:35.0171 2220 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    15:49:35.0187 2220 AsyncMac - ok
    15:49:35.0234 2220 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    15:49:35.0250 2220 atapi - ok
    15:49:35.0265 2220 Atdisk - ok
    15:49:35.0312 2220 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    15:49:35.0328 2220 Atmarpc - ok
    15:49:35.0375 2220 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    15:49:35.0390 2220 AudioSrv - ok
    15:49:35.0437 2220 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    15:49:35.0453 2220 audstub - ok
    15:49:35.0531 2220 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    15:49:35.0531 2220 avast! Antivirus - ok
    15:49:35.0593 2220 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    15:49:35.0609 2220 Beep - ok
    15:49:35.0671 2220 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    15:49:35.0734 2220 BITS - ok
    15:49:35.0796 2220 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    15:49:35.0828 2220 Browser - ok
    15:49:35.0968 2220 catchme - ok
    15:49:36.0015 2220 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    15:49:36.0015 2220 cbidf2k - ok
    15:49:36.0093 2220 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    15:49:36.0109 2220 CCALib8 - ok
    15:49:36.0171 2220 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    15:49:36.0187 2220 CCDECODE - ok
    15:49:36.0218 2220 cd20xrnt - ok
    15:49:36.0281 2220 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    15:49:36.0296 2220 Cdaudio - ok
    15:49:36.0328 2220 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    15:49:36.0343 2220 Cdfs - ok
    15:49:36.0375 2220 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    15:49:36.0375 2220 Cdrom - ok
    15:49:36.0421 2220 Changer - ok
    15:49:36.0484 2220 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    15:49:36.0500 2220 CiSvc - ok
    15:49:36.0531 2220 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    15:49:36.0546 2220 ClipSrv - ok
    15:49:36.0625 2220 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:49:36.0656 2220 clr_optimization_v2.0.50727_32 - ok
    15:49:36.0718 2220 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    15:49:36.0734 2220 clr_optimization_v4.0.30319_32 - ok
    15:49:36.0765 2220 CmdIde - ok
    15:49:36.0796 2220 COMSysApp - ok
    15:49:36.0875 2220 Cpqarray - ok
    15:49:37.0406 2220 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    15:49:37.0421 2220 CryptSvc - ok
    15:49:37.0453 2220 dac2w2k - ok
    15:49:37.0484 2220 dac960nt - ok
    15:49:37.0562 2220 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    15:49:37.0640 2220 DcomLaunch - ok
    15:49:37.0718 2220 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    15:49:37.0734 2220 Dhcp - ok
    15:49:37.0781 2220 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    15:49:37.0796 2220 Disk - ok
    15:49:37.0828 2220 dmadmin - ok
    15:49:37.0937 2220 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    15:49:37.0984 2220 dmboot - ok
    15:49:38.0046 2220 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    15:49:38.0062 2220 dmio - ok
    15:49:38.0093 2220 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    15:49:38.0109 2220 dmload - ok
    15:49:38.0156 2220 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    15:49:38.0187 2220 dmserver - ok
    15:49:38.0218 2220 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    15:49:38.0234 2220 DMusic - ok
    15:49:38.0281 2220 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    15:49:38.0312 2220 Dnscache - ok
    15:49:38.0375 2220 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    15:49:38.0390 2220 Dot3svc - ok
    15:49:38.0421 2220 dpti2o - ok
    15:49:38.0453 2220 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    15:49:38.0468 2220 drmkaud - ok
    15:49:38.0515 2220 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    15:49:38.0546 2220 EapHost - ok
    15:49:38.0593 2220 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    15:49:38.0609 2220 ElbyCDFL - ok
    15:49:38.0656 2220 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    15:49:38.0671 2220 ElbyCDIO - ok
    15:49:38.0703 2220 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    15:49:38.0734 2220 ERSvc - ok
    15:49:38.0796 2220 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    15:49:38.0843 2220 Eventlog - ok
    15:49:38.0906 2220 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    15:49:38.0953 2220 EventSystem - ok
    15:49:38.0984 2220 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    15:49:39.0000 2220 Fastfat - ok
    15:49:39.0062 2220 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    15:49:39.0140 2220 FastUserSwitchingCompatibility - ok
    15:49:39.0187 2220 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    15:49:39.0203 2220 Fdc - ok
    15:49:39.0234 2220 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    15:49:39.0250 2220 Fips - ok
    15:49:39.0281 2220 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    15:49:39.0312 2220 Flpydisk - ok
    15:49:39.0343 2220 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    15:49:39.0375 2220 FltMgr - ok
    15:49:39.0437 2220 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    15:49:39.0453 2220 FontCache3.0.0.0 - ok
    15:49:39.0484 2220 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    15:49:39.0515 2220 Fs_Rec - ok
    15:49:39.0562 2220 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    15:49:39.0578 2220 Ftdisk - ok
    15:49:39.0625 2220 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    15:49:39.0640 2220 Gpc - ok
    15:49:39.0718 2220 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    15:49:39.0734 2220 gusvc - ok
    15:49:39.0796 2220 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    15:49:39.0796 2220 HDAudBus - ok
    15:49:39.0890 2220 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    15:49:39.0890 2220 helpsvc - ok
    15:49:39.0953 2220 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    15:49:39.0968 2220 HidServ - ok
    15:49:40.0015 2220 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    15:49:40.0015 2220 HidUsb - ok
    15:49:40.0046 2220 hitmanpro3 - ok
    15:49:40.0109 2220 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    15:49:40.0140 2220 hkmsvc - ok
    15:49:40.0171 2220 hpn - ok
    15:49:40.0265 2220 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    15:49:40.0281 2220 HTTP - ok
    15:49:40.0328 2220 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    15:49:40.0390 2220 HTTPFilter - ok
    15:49:40.0421 2220 i2omgmt - ok
    15:49:40.0453 2220 i2omp - ok
    15:49:40.0500 2220 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    15:49:40.0515 2220 i8042prt - ok
    15:49:40.0625 2220 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    15:49:40.0687 2220 idsvc - ok
    15:49:40.0750 2220 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    15:49:40.0750 2220 Imapi - ok
    15:49:40.0812 2220 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    15:49:40.0843 2220 ImapiService - ok
    15:49:40.0890 2220 ini910u - ok
    15:49:41.0265 2220 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    15:49:41.0515 2220 IntcAzAudAddService - ok
    15:49:41.0546 2220 IntelIde - ok
    15:49:41.0609 2220 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    15:49:41.0609 2220 Ip6Fw - ok
    15:49:41.0687 2220 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    15:49:41.0703 2220 IpFilterDriver - ok
    15:49:41.0734 2220 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    15:49:41.0750 2220 IpInIp - ok
    15:49:41.0781 2220 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    15:49:41.0796 2220 IpNat - ok
    15:49:41.0843 2220 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    15:49:41.0843 2220 IPSec - ok
    15:49:41.0890 2220 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    15:49:41.0906 2220 IRENUM - ok
    15:49:41.0968 2220 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    15:49:41.0984 2220 isapnp - ok
    15:49:42.0062 2220 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    15:49:42.0093 2220 JavaQuickStarterService - ok
    15:49:42.0125 2220 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    15:49:42.0140 2220 Kbdclass - ok
    15:49:42.0171 2220 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    15:49:42.0187 2220 kbdhid - ok
    15:49:42.0234 2220 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    15:49:42.0250 2220 kmixer - ok
    15:49:42.0296 2220 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    15:49:42.0312 2220 KSecDD - ok
    15:49:42.0375 2220 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    15:49:42.0437 2220 lanmanserver - ok
    15:49:42.0484 2220 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    15:49:42.0562 2220 lanmanworkstation - ok
    15:49:42.0593 2220 Lavasoft Kernexplorer - ok
    15:49:42.0640 2220 Lbd - ok
    15:49:42.0671 2220 lbrtfdc - ok
    15:49:42.0750 2220 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    15:49:42.0781 2220 LmHosts - ok
    15:49:42.0828 2220 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    15:49:42.0859 2220 Messenger - ok
    15:49:42.0890 2220 mferkdk - ok
    15:49:42.0953 2220 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    15:49:42.0968 2220 mnmdd - ok
    15:49:43.0015 2220 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    15:49:43.0062 2220 mnmsrvc - ok
    15:49:43.0093 2220 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    15:49:43.0109 2220 Modem - ok
    15:49:43.0140 2220 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    15:49:43.0156 2220 Mouclass - ok
    15:49:43.0218 2220 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    15:49:43.0234 2220 mouhid - ok
    15:49:43.0265 2220 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    15:49:43.0281 2220 MountMgr - ok
    15:49:43.0328 2220 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    15:49:43.0328 2220 MozillaMaintenance - ok
    15:49:43.0359 2220 mraid35x - ok
    15:49:43.0406 2220 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    15:49:43.0421 2220 MRxDAV - ok
    15:49:43.0500 2220 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    15:49:43.0546 2220 MRxSmb - ok
    15:49:43.0609 2220 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    15:49:43.0640 2220 MSDTC - ok
    15:49:43.0718 2220 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    15:49:43.0734 2220 Msfs - ok
    15:49:43.0750 2220 MSIServer - ok
    15:49:43.0812 2220 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    15:49:43.0812 2220 MSKSSRV - ok
    15:49:43.0859 2220 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    15:49:43.0859 2220 MSPCLOCK - ok
    15:49:43.0906 2220 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    15:49:43.0906 2220 MSPQM - ok
    15:49:43.0937 2220 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    15:49:43.0953 2220 mssmbios - ok
    15:49:44.0000 2220 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    15:49:44.0000 2220 MSTEE - ok
    15:49:44.0062 2220 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    15:49:44.0078 2220 MTsensor - ok
    15:49:44.0125 2220 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    15:49:44.0156 2220 Mup - ok
    15:49:44.0187 2220 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    15:49:44.0218 2220 NABTSFEC - ok
    15:49:44.0281 2220 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    15:49:44.0343 2220 napagent - ok
    15:49:44.0375 2220 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    15:49:44.0390 2220 NDIS - ok
    15:49:44.0437 2220 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    15:49:44.0453 2220 NdisIP - ok
    15:49:44.0500 2220 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    15:49:44.0515 2220 NdisTapi - ok
    15:49:44.0546 2220 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    15:49:44.0578 2220 Ndisuio - ok
    15:49:44.0609 2220 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    15:49:44.0625 2220 NdisWan - ok
    15:49:44.0687 2220 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    15:49:44.0703 2220 NDProxy - ok
    15:49:44.0718 2220 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
    15:49:44.0734 2220 NetBIOS - ok
    15:49:44.0781 2220 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
    15:49:44.0812 2220 NetBT - ok
    15:49:44.0875 2220 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32\netdde.exe
    15:49:44.0921 2220 NetDDE - ok
    15:49:44.0937 2220 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
    15:49:44.0984 2220 NetDDEdsdm - ok
    15:49:45.0015 2220 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    15:49:45.0046 2220 Netlogon - ok
    15:49:45.0093 2220 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32\netman.dll
    15:49:45.0156 2220 Netman - ok
    15:49:45.0203 2220 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    15:49:45.0234 2220 NetTcpPortSharing - ok
    15:49:45.0296 2220 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    15:49:45.0343 2220 Nla - ok
    15:49:45.0375 2220 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    15:49:45.0390 2220 Npfs - ok
    15:49:45.0453 2220 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    15:49:45.0500 2220 Ntfs - ok
    15:49:45.0531 2220 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    15:49:45.0578 2220 NtLmSsp - ok
    15:49:45.0640 2220 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
    15:49:45.0703 2220 NtmsSvc - ok
    15:49:45.0765 2220 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    15:49:45.0781 2220 Null - ok
    15:49:46.0046 2220 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
    15:49:46.0281 2220 nv - ok
    15:49:46.0328 2220 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
    15:49:46.0343 2220 nvata - ok
    15:49:46.0375 2220 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    15:49:46.0375 2220 NVENETFD - ok
    15:49:46.0421 2220 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
    15:49:46.0437 2220 nvnetbus - ok
    15:49:46.0468 2220 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
    15:49:46.0515 2220 NVSvc - ok
    15:49:46.0562 2220 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    15:49:46.0578 2220 NwlnkFlt - ok
    15:49:46.0625 2220 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    15:49:46.0640 2220 NwlnkFwd - ok
    15:49:46.0734 2220 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    15:49:46.0781 2220 odserv - ok
    15:49:46.0859 2220 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    15:49:46.0875 2220 ose - ok
    15:49:46.0953 2220 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    15:49:46.0968 2220 Parport - ok
    15:49:47.0015 2220 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    15:49:47.0031 2220 PartMgr - ok
    15:49:47.0078 2220 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    15:49:47.0093 2220 ParVdm - ok
    15:49:47.0125 2220 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    15:49:47.0140 2220 PCI - ok
    15:49:47.0156 2220 PCIDump - ok
    15:49:47.0218 2220 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    15:49:47.0234 2220 PCIIde - ok
    15:49:47.0281 2220 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    15:49:47.0312 2220 Pcmcia - ok
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan global ===============================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan MBR ==================================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ================ Scan VBR ==================================
    15:49:47.0328 2220 Scan interrupted by user!
    15:49:47.0328 2220 ============================================================
    15:49:47.0328 2220 Scan finished
    15:49:47.0328 2220 ============================================================
    15:49:47.0390 3944 Detected object count: 0
    15:49:47.0390 3944 Actual detected object count: 0
    15:50:06.0578 3860 ============================================================
    15:50:06.0578 3860 Scan started
    15:50:06.0578 3860 Mode: Manual; SigCheck; TDLFS;
    15:50:06.0578 3860 ============================================================
    15:50:08.0437 3860 ================ Scan system memory ========================
    15:50:08.0453 3860 System memory - ok
    15:50:08.0453 3860 ================ Scan services =============================
    15:50:08.0812 3860 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    15:50:09.0828 3860 a2free - ok
    15:50:09.0953 3860 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    15:50:10.0078 3860 Aavmker4 - ok
    15:50:10.0203 3860 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    15:50:10.0375 3860 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    15:50:10.0390 3860 Abiosdsk - ok
    15:50:10.0437 3860 abp480n5 - ok
    15:50:10.0531 3860 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    15:50:11.0765 3860 ACPI - ok
    15:50:11.0812 3860 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    15:50:12.0578 3860 ACPIEC - ok
    15:50:12.0671 3860 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    15:50:12.0781 3860 AdobeFlashPlayerUpdateSvc - ok
    15:50:12.0812 3860 adpu160m - ok
    15:50:12.0906 3860 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    15:50:13.0781 3860 aec - ok
    15:50:13.0890 3860 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    15:50:14.0046 3860 AFD - ok
    15:50:14.0062 3860 Aha154x - ok
    15:50:14.0109 3860 aic78u2 - ok
    15:50:14.0140 3860 aic78xx - ok
    15:50:14.0203 3860 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    15:50:15.0140 3860 Alerter - ok
    15:50:15.0203 3860 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    15:50:15.0562 3860 ALG - ok
    15:50:15.0593 3860 AliIde - ok
    15:50:15.0656 3860 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    15:50:15.0796 3860 AmdK8 - ok
    15:50:15.0812 3860 amsint - ok
    15:50:15.0890 3860 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    15:50:16.0000 3860 AnyDVD - ok
    15:50:16.0062 3860 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    15:50:16.0437 3860 AppMgmt - ok
    15:50:16.0468 3860 asc - ok
    15:50:16.0500 3860 asc3350p - ok
    15:50:16.0531 3860 asc3550 - ok
    15:50:16.0640 3860 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    15:50:16.0671 3860 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
    15:50:16.0671 3860 Aspi32 - detected UnsignedFile.Multi.Generic (1)
    15:50:16.0750 3860 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    15:50:16.0843 3860 aspnet_state - ok
    15:50:16.0906 3860 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    15:50:17.0000 3860 aswFsBlk - ok
    15:50:17.0031 3860 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    15:50:17.0140 3860 aswMon2 - ok
    15:50:17.0203 3860 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    15:50:17.0296 3860 AswRdr - ok
    15:50:17.0359 3860 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    15:50:17.0562 3860 aswSnx - ok
    15:50:17.0671 3860 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    15:50:17.0812 3860 aswSP - ok
    15:50:17.0843 3860 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    15:50:17.0937 3860 aswTdi - ok
    15:50:17.0984 3860 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    15:50:18.0750 3860 AsyncMac - ok
    15:50:18.0796 3860 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    15:50:19.0687 3860 atapi - ok
    15:50:19.0718 3860 Atdisk - ok
    15:50:19.0828 3860 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    15:50:20.0718 3860 Atmarpc - ok
    15:50:20.0765 3860 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    15:50:21.0703 3860 AudioSrv - ok
    15:50:21.0750 3860 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    15:50:22.0640 3860 audstub - ok
    15:50:22.0750 3860 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    15:50:22.0843 3860 avast! Antivirus - ok
    15:50:22.0921 3860 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    15:50:23.0812 3860 Beep - ok
    15:50:23.0859 3860 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    15:50:24.0906 3860 BITS - ok
    15:50:25.0015 3860 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    15:50:25.0156 3860 Browser - ok
    15:50:25.0281 3860 catchme - ok
    15:50:25.0328 3860 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    15:50:26.0375 3860 cbidf2k - ok
    15:50:26.0453 3860 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    15:50:26.0500 3860 CCALib8 ( UnsignedFile.Multi.Generic ) - warning
    15:50:26.0500 3860 CCALib8 - detected UnsignedFile.Multi.Generic (1)
    15:50:26.0546 3860 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    15:50:27.0593 3860 CCDECODE - ok
    15:50:27.0625 3860 cd20xrnt - ok
    15:50:27.0703 3860 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    15:50:28.0750 3860 Cdaudio - ok
    15:50:28.0812 3860 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    15:50:29.0687 3860 Cdfs - ok
    15:50:29.0750 3860 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    15:50:30.0734 3860 Cdrom - ok
    15:50:30.0765 3860 Changer - ok
    15:50:30.0906 3860 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    15:50:31.0875 3860 CiSvc - ok
    15:50:31.0937 3860 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    15:50:32.0937 3860 ClipSrv - ok
    15:50:33.0046 3860 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:50:33.0171 3860 clr_optimization_v2.0.50727_32 - ok
    15:50:33.0281 3860 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    15:50:33.0375 3860 clr_optimization_v4.0.30319_32 - ok
    15:50:33.0406 3860 CmdIde - ok
    15:50:33.0421 3860 COMSysApp - ok
    15:50:33.0500 3860 Cpqarray - ok
    15:50:33.0562 3860 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    15:50:34.0796 3860 CryptSvc - ok
    15:50:34.0812 3860 dac2w2k - ok
    15:50:34.0843 3860 dac960nt - ok
    15:50:34.0984 3860 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    15:50:35.0203 3860 DcomLaunch - ok
    15:50:35.0250 3860 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    15:50:36.0218 3860 Dhcp - ok
    15:50:36.0312 3860 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    15:50:37.0375 3860 Disk - ok
    15:50:37.0437 3860 dmadmin - ok
    15:50:37.0562 3860 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    15:50:38.0296 3860 dmboot - ok
    15:50:38.0328 3860 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    15:50:39.0125 3860 dmio - ok
    15:50:39.0218 3860 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    15:50:40.0093 3860 dmload - ok
    15:50:40.0140 3860 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    15:50:40.0890 3860 dmserver - ok
    15:50:40.0937 3860 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    15:50:41.0625 3860 DMusic - ok
    15:50:41.0656 3860 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    15:50:41.0796 3860 Dnscache - ok
    15:50:41.0859 3860 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    15:50:42.0609 3860 Dot3svc - ok
    15:50:42.0625 3860 dpti2o - ok
    15:50:42.0671 3860 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    15:50:43.0546 3860 drmkaud - ok
    15:50:43.0640 3860 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    15:50:44.0671 3860 EapHost - ok
    15:50:44.0781 3860 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    15:50:44.0875 3860 ElbyCDFL - ok
    15:50:44.0921 3860 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    15:50:45.0031 3860 ElbyCDIO - ok
    15:50:45.0078 3860 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    15:50:46.0078 3860 ERSvc - ok
    15:50:46.0140 3860 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    15:50:46.0312 3860 Eventlog - ok
    15:50:46.0406 3860 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    15:50:46.0578 3860 EventSystem - ok
    15:50:46.0703 3860 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    15:50:47.0718 3860 Fastfat - ok
    15:50:47.0828 3860 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    15:50:48.0031 3860 FastUserSwitchingCompatibility - ok
    15:50:48.0125 3860 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    15:50:49.0218 3860 Fdc - ok
    15:50:49.0265 3860 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    15:50:50.0312 3860 Fips - ok
    15:50:50.0343 3860 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    15:50:51.0375 3860 Flpydisk - ok
    15:50:51.0421 3860 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    15:50:52.0515 3860 FltMgr - ok
    15:50:52.0625 3860 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    15:50:52.0718 3860 FontCache3.0.0.0 - ok
    15:50:52.0750 3860 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    15:50:53.0734 3860 Fs_Rec - ok
    15:50:53.0781 3860 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    15:50:54.0843 3860 Ftdisk - ok
    15:50:54.0890 3860 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    15:50:56.0015 3860 Gpc - ok
    15:50:56.0109 3860 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    15:50:56.0218 3860 gusvc - ok
    15:50:56.0281 3860 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    15:50:57.0218 3860 HDAudBus - ok
    15:50:57.0359 3860 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    15:50:58.0515 3860 helpsvc - ok
    15:50:58.0562 3860 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    15:50:59.0546 3860 HidServ - ok
    15:50:59.0593 3860 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    15:51:00.0546 3860 HidUsb - ok
    15:51:00.0578 3860 hitmanpro3 - ok
    15:51:00.0640 3860 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    15:51:01.0593 3860 hkmsvc - ok
    15:51:01.0625 3860 hpn - ok
    15:51:01.0718 3860 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    15:51:01.0859 3860 HTTP - ok
    15:51:01.0906 3860 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    15:51:02.0953 3860 HTTPFilter - ok
    15:51:02.0984 3860 i2omgmt - ok
    15:51:03.0015 3860 i2omp - ok
    15:51:03.0062 3860 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    15:51:03.0953 3860 i8042prt - ok
    15:51:04.0078 3860 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    15:51:04.0281 3860 idsvc - ok
    15:51:04.0390 3860 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    15:51:05.0328 3860 Imapi - ok
    15:51:05.0390 3860 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    15:51:06.0312 3860 ImapiService - ok
    15:51:06.0343 3860 ini910u - ok
    15:51:06.0703 3860 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    15:51:07.0343 3860 IntcAzAudAddService - ok
    15:51:07.0375 3860 IntelIde - ok
    15:51:07.0406 3860 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    15:51:08.0546 3860 Ip6Fw - ok
    15:51:08.0593 3860 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    15:51:09.0718 3860 IpFilterDriver - ok
    15:51:09.0812 3860 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    15:51:10.0890 3860 IpInIp - ok
    15:51:10.0953 3860 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    15:51:11.0921 3860 IpNat - ok
    15:51:11.0968 3860 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    15:51:12.0968 3860 IPSec - ok
    15:51:13.0031 3860 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    15:51:13.0406 3860 IRENUM - ok
    15:51:13.0515 3860 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    15:51:14.0296 3860 isapnp - ok
    15:51:14.0406 3860 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    15:51:14.0484 3860 JavaQuickStarterService - ok
    15:51:14.0531 3860 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    15:51:15.0421 3860 Kbdclass - ok
    15:51:15.0453 3860 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    15:51:16.0328 3860 kbdhid - ok
    15:51:16.0375 3860 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    15:51:17.0359 3860 kmixer - ok
    15:51:17.0437 3860 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    15:51:17.0593 3860 KSecDD - ok
    15:51:17.0671 3860 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    15:51:17.0828 3860 lanmanserver - ok
    15:51:17.0890 3860 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    15:51:18.0078 3860 lanmanworkstation - ok
    15:51:18.0109 3860 Lavasoft Kernexplorer - ok
    15:51:18.0140 3860 Lbd - ok
    15:51:18.0187 3860 lbrtfdc - ok
    15:51:18.0328 3860 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    15:51:19.0343 3860 LmHosts - ok
    15:51:19.0375 3860 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    15:51:20.0484 3860 Messenger - ok
    15:51:20.0500 3860 mferkdk - ok
    15:51:20.0625 3860 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    15:51:21.0500 3860 mnmdd - ok
    15:51:21.0593 3860 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    15:51:22.0671 3860 mnmsrvc - ok
    15:51:22.0718 3860 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    15:51:23.0656 3860 Modem - ok
    15:51:23.0703 3860 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    15:51:24.0640 3860 Mouclass - ok
    15:51:24.0765 3860 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    15:51:25.0671 3860 mouhid - ok
    15:51:25.0750 3860 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    15:51:26.0546 3860 MountMgr - ok
    15:51:26.0640 3860 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    15:51:26.0750 3860 MozillaMaintenance - ok
    15:51:26.0781 3860 mraid35x - ok
    15:51:26.0828 3860 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    15:51:27.0703 3860 MRxDAV - ok
    15:51:27.0859 3860 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    15:51:28.0015 3860 MRxSmb - ok
    15:51:28.0046 3860 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    15:51:29.0015 3860 MSDTC - ok
    15:51:29.0109 3860 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    15:51:30.0093 3860 Msfs - ok
    15:51:30.0125 3860 MSIServer - ok
    15:51:30.0171 3860 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    15:51:31.0046 3860 MSKSSRV - ok
    15:51:31.0125 3860 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    15:51:32.0140 3860 MSPCLOCK - ok
    15:51:32.0187 3860 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    15:51:33.0187 3860 MSPQM - ok
    15:51:33.0218 3860 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    15:51:34.0093 3860 mssmbios - ok
    15:51:34.0171 3860 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    15:51:35.0078 3860 MSTEE - ok
    15:51:35.0140 3860 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    15:51:35.0250 3860 MTsensor - ok
    15:51:35.0312 3860 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    15:51:35.0421 3860 Mup - ok
    15:51:35.0468 3860 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    15:51:36.0531 3860 NABTSFEC - ok
    15:51:36.0656 3860 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    15:51:37.0734 3860 napagent - ok
    15:51:37.0796 3860 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    15:51:38.0828 3860 NDIS - ok
    15:51:38.0921 3860 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    15:51:39.0750 3860 NdisIP - ok
    15:51:39.0828 3860 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    15:51:39.0937 3860 NdisTapi - ok
    15:51:39.0984 3860 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    15:51:40.0859 3860 Ndisuio - ok
    15:51:40.0890 3860 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    15:51:41.0890 3860 NdisWan - ok
    15:51:41.0937 3860 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    15:51:42.0078 3860 NDProxy - ok
    15:51:42.0109 3860 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
    15:51:43.0000 3860 NetBIOS - ok
    15:51:43.0046 3860 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
    15:51:44.0000 3860 NetBT - ok
    15:51:44.0062 3860 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32\netdde.exe
    15:51:44.0968 3860 NetDDE - ok
    15:51:45.0000 3860 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
    15:51:45.0890 3860 NetDDEdsdm - ok
    15:51:46.0015 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    15:51:46.0859 3860 Netlogon - ok
    15:51:46.0953 3860 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32\netman.dll
    15:51:47.0875 3860 Netman - ok
    15:51:47.0953 3860 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    15:51:48.0062 3860 NetTcpPortSharing - ok
    15:51:48.0140 3860 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    15:51:48.0375 3860 Nla - ok
    15:51:48.0406 3860 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    15:51:49.0484 3860 Npfs - ok
    15:51:49.0546 3860 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    15:51:50.0500 3860 Ntfs - ok
    15:51:50.0531 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    15:51:51.0578 3860 NtLmSsp - ok
    15:51:51.0640 3860 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
    15:51:52.0546 3860 NtmsSvc - ok
    15:51:52.0625 3860 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    15:51:53.0609 3860 Null - ok
    15:51:53.0968 3860 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
    15:51:54.0453 3860 nv - ok
    15:51:54.0500 3860 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
    15:51:54.0625 3860 nvata - ok
    15:51:54.0656 3860 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    15:51:54.0796 3860 NVENETFD - ok
    15:51:54.0843 3860 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
    15:51:54.0953 3860 nvnetbus - ok
    15:51:55.0062 3860 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
    15:51:55.0234 3860 NVSvc - ok
    15:51:55.0312 3860 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    15:51:56.0125 3860 NwlnkFlt - ok
    15:51:56.0156 3860 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    15:51:57.0125 3860 NwlnkFwd - ok
    15:51:57.0234 3860 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    15:51:57.0359 3860 odserv - ok
    15:51:57.0453 3860 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    15:51:57.0562 3860 ose - ok
    15:51:57.0703 3860 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    15:51:58.0593 3860 Parport - ok
    15:51:58.0687 3860 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    15:51:59.0578 3860 PartMgr - ok
    15:51:59.0640 3860 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    15:52:00.0515 3860 ParVdm - ok
    15:52:00.0562 3860 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    15:52:01.0593 3860 PCI - ok
    15:52:01.0625 3860 PCIDump - ok
    15:52:01.0703 3860 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    15:52:02.0593 3860 PCIIde - ok
    15:52:02.0687 3860 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    15:52:03.0609 3860 Pcmcia - ok
    15:52:03.0671 3860 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
    15:52:03.0703 3860 pcouffin ( UnsignedFile.Multi.Generic ) - warning
    15:52:03.0703 3860 pcouffin - detected UnsignedFile.Multi.Generic (1)
    15:52:03.0750 3860 PDCOMP - ok
    15:52:03.0781 3860 PDFRAME - ok
    15:52:03.0812 3860 PDRELI - ok
    15:52:03.0843 3860 PDRFRAME - ok
    15:52:03.0875 3860 perc2 - ok
    15:52:03.0906 3860 perc2hib - ok
    15:52:04.0046 3860 [ 6C1618A07B49E3873582B6449E744088 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
    15:52:04.0093 3860 pfc ( UnsignedFile.Multi.Generic ) - warning
    15:52:04.0093 3860 pfc - detected UnsignedFile.Multi.Generic (1)
    15:52:04.0140 3860 [ 657B69389B893F440B07590C9E963F23 ] PlugPlay C:\WINDOWS\system32\services.exe
    15:52:04.0296 3860 PlugPlay - ok
    15:52:04.0328 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
    15:52:05.0312 3860 PolicyAgent - ok
    15:52:05.0343 3860 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
    15:52:06.0281 3860 PptpMiniport - ok
    15:52:06.0312 3860 [ 82A17ECA34D801590A67C0A2244965ED ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
    15:52:07.0281 3860 Processor - ok
    15:52:07.0312 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
    15:52:08.0250 3860 ProtectedStorage - ok
    15:52:08.0296 3860 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
    15:52:09.0234 3860 PSched - ok
    15:52:09.0265 3860 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
    15:52:10.0156 3860 Ptilink - ok
    15:52:10.0203 3860 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
    15:52:10.0296 3860 PxHelp20 - ok
    15:52:10.0328 3860 ql1080 - ok
    15:52:10.0359 3860 Ql10wnt - ok
    15:52:10.0375 3860 ql12160 - ok
    15:52:10.0421 3860 ql1240 - ok
    15:52:10.0437 3860 ql1280 - ok
    15:52:10.0500 3860 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
    15:52:11.0375 3860 RasAcd - ok
    15:52:11.0406 3860 [ 0575D034B1292CA3A9BB9F67A8EE289C ] RasAuto C:\WINDOWS\System32\rasauto.dll
    15:52:12.0343 3860 RasAuto - ok
    15:52:12.0421 3860 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    15:52:13.0468 3860 Rasl2tp - ok
    15:52:13.0578 3860 [ 9E7E2DF6971A5F00102BE3F901CC3BDC ] RasMan C:\WINDOWS\System32\rasmans.dll
    15:52:14.0375 3860 RasMan - ok
    15:52:14.0421 3860 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    15:52:15.0406 3860 RasPppoe - ok
    15:52:15.0437 3860 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
    15:52:16.0281 3860 Raspti - ok
    15:52:16.0375 3860 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
    15:52:17.0281 3860 Rdbss - ok
    15:52:17.0296 3860 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    15:52:18.0093 3860 RDPCDD - ok
    15:52:18.0140 3860 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    15:52:18.0937 3860 rdpdr - ok
    15:52:19.0031 3860 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
    15:52:19.0171 3860 RDPWD - ok
    15:52:19.0218 3860 [ EA9FDF71D696B532BDC44C8BFF03A737 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
    15:52:20.0078 3860 RDSessMgr - ok
    15:52:20.0203 3860 [ 4173BC66E485FD77A03C4819F60BD0DA ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
    15:52:21.0328 3860 redbook - ok
    15:52:21.0437 3860 [ 4007ABF5D9BF0E55451D775443D1F985 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
    15:52:22.0328 3860 RemoteAccess - ok
    15:52:22.0359 3860 [ 2FD5B89BF9289C774C5C730DEA96CD91 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
    15:52:23.0390 3860 RemoteRegistry - ok
    15:52:23.0421 3860 [ BE078F8F7EC2491EFDD79A53353A060F ] RpcLocator C:\WINDOWS\system32\locator.exe
    15:52:24.0281 3860 RpcLocator - ok
    15:52:24.0375 3860 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] RpcSs C:\WINDOWS\System32\rpcss.dll
    15:52:24.0546 3860 RpcSs - ok
    15:52:24.0625 3860 [ AD1B5F1B99FFF08C99F443D784711A81 ] RSVP C:\WINDOWS\system32\rsvp.exe
    15:52:25.0562 3860 RSVP - ok
    15:52:25.0687 3860 [ 0A7293EDC2537652A4914018A7589F14 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys
    15:52:25.0921 3860 rt2870 - ok
    15:52:26.0000 3860 [ 8754210A3399D19610CE2D71E0C3E5D9 ] SamSs C:\WINDOWS\system32\lsass.exe
    15:52:26.0953 3860 SamSs - ok
    15:52:27.0062 3860 [ 0505DA5D357F18A5D42FC5DEDE6BC9A0 ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
    15:52:27.0171 3860 SBRE - ok
    15:52:27.0218 3860 [ 1B4CD62174E907C7EF8EC5D4D0A2A616 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
    15:52:28.0125 3860 SCardSvr - ok
    15:52:28.0203 3860 [ 7C288AE0F75CB18CFF1DF6179A67AD8F ] Schedule C:\WINDOWS\system32\schedsvc.dll
    15:52:29.0171 3860 Schedule - ok
    15:52:29.0234 3860 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
    15:52:29.0593 3860 Secdrv - ok
    15:52:29.0640 3860 [ 6983665BEA867125B1DA5757CD8B2F9D ] seclogon C:\WINDOWS\System32\seclogon.dll
    15:52:30.0687 3860 seclogon - ok
    15:52:30.0718 3860 [ F6EC8F1E50E40237BDDEE1CB7FE20B42 ] SENS C:\WINDOWS\system32\sens.dll
    15:52:31.0593 3860 SENS - ok
    15:52:31.0687 3860 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
    15:52:32.0640 3860 serenum - ok
    15:52:32.0671 3860 [ 92C21762653BB2CE51147EB8A9AA654F ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
    15:52:33.0546 3860 Serial - ok
    15:52:33.0703 3860 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
    15:52:34.0578 3860 Sfloppy - ok
    15:52:34.0703 3860 [ 7579C4BE909D47F10F3D8D801CB13ED9 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
    15:52:35.0609 3860 SharedAccess - ok
    15:52:35.0687 3860 [ 2D5D4156292150FE571872C1B88E9299 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
    15:52:35.0859 3860 ShellHWDetection - ok
    15:52:35.0890 3860 Simbad - ok
    15:52:36.0000 3860 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
    15:52:36.0953 3860 SLIP - ok
    15:52:37.0125 3860 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
    15:52:37.0203 3860 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
    15:52:37.0203 3860 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
    15:52:37.0281 3860 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
    15:52:37.0421 3860 SONYPVU1 - ok
    15:52:37.0437 3860 Sparrow - ok
    15:52:37.0453 3860 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
    15:52:37.0609 3860 splitter - ok
    15:52:37.0687 3860 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
    15:52:37.0734 3860 Spooler - ok
    15:52:37.0781 3860 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
    15:52:37.0781 3860 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
    15:52:37.0781 3860 sptd ( LockedFile.Multi.Generic ) - warning
    15:52:37.0781 3860 sptd - detected LockedFile.Multi.Generic (1)
    15:52:37.0781 3860 [ 64D2A7640E0767ECD3BCB38D3200E7CE ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
    15:52:37.0843 3860 sr - ok
    15:52:37.0890 3860 [ 81CBF363C414620CAA61BD6843D8FDB9 ] srservice C:\WINDOWS\system32\srsvc.dll
    15:52:37.0953 3860 srservice - ok
    15:52:37.0984 3860 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
    15:52:38.0015 3860 Srv - ok
    15:52:38.0031 3860 [ 5B9D0DE64BE96A806819516440FD211C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
    15:52:38.0109 3860 SSDPSRV - ok
    15:52:38.0140 3860 [ 5AE996186D2DC694FEF88F14A3FC9242 ] stisvc C:\WINDOWS\system32\wiaservc.dll
    15:52:38.0281 3860 stisvc - ok
    15:52:38.0296 3860 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    15:52:38.0421 3860 streamip - ok
    15:52:38.0500 3860 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
    15:52:38.0640 3860 swenum - ok
    15:52:38.0656 3860 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
    15:52:38.0843 3860 swmidi - ok
    15:52:38.0843 3860 SwPrv - ok
    15:52:38.0859 3860 symc810 - ok
    15:52:38.0859 3860 symc8xx - ok
    15:52:38.0875 3860 sym_hi - ok
    15:52:38.0875 3860 sym_u3 - ok
    15:52:38.0906 3860 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
    15:52:39.0062 3860 sysaudio - ok
    15:52:39.0093 3860 [ 251EAE7C56C6AB9490311A3C9757E18D ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
    15:52:39.0250 3860 SysmonLog - ok
    15:52:39.0281 3860 [ 2BC9FB448F0C2394FF53C83A7BB04731 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
    15:52:39.0406 3860 TapiSrv - ok
    15:52:39.0500 3860 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
    15:52:39.0531 3860 Tcpip - ok
    15:52:39.0562 3860 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
    15:52:39.0734 3860 TDPIPE - ok
    15:52:39.0765 3860 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
    15:52:39.0921 3860 TDTCP - ok
    15:52:39.0937 3860 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
    15:52:40.0093 3860 TermDD - ok
    15:52:40.0109 3860 [ E0AEF86A594C9990D6321C5CA239C5B7 ] TermService C:\WINDOWS\System32\termsrv.dll
    15:52:40.0250 3860 TermService - ok
    15:52:40.0281 3860 [ 2D5D4156292150FE571872C1B88E9299 ] Themes C:\WINDOWS\System32\shsvcs.dll
    15:52:40.0312 3860 Themes - ok
    15:52:40.0343 3860 [ 78A2FE13662A119875F10E9FFCB49A8F ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
    15:52:40.0406 3860 TlntSvr - ok
    15:52:40.0406 3860 TosIde - ok
    15:52:40.0421 3860 [ 20655E8CA1C78BC7088B18E93806D21B ] TrkWks C:\WINDOWS\system32\trkwks.dll
    15:52:40.0593 3860 TrkWks - ok
    15:52:40.0609 3860 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
    15:52:40.0750 3860 Udfs - ok
    15:52:40.0750 3860 ultra - ok
    15:52:40.0796 3860 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
    15:52:40.0921 3860 Update - ok
    15:52:40.0953 3860 [ 01653D6C9604F1FB31A76EC94E08954F ] upnphost C:\WINDOWS\System32\upnphost.dll
    15:52:41.0031 3860 upnphost - ok
    15:52:41.0046 3860 [ A89796DD0DE24CF03B3A39407E1F46A3 ] UPS C:\WINDOWS\System32\ups.exe
    15:52:41.0203 3860 UPS - ok
    15:52:41.0265 3860 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    15:52:41.0390 3860 usbccgp - ok
    15:52:41.0406 3860 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
    15:52:41.0546 3860 usbehci - ok
    15:52:41.0562 3860 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
    15:52:41.0734 3860 usbhub - ok
    15:52:41.0750 3860 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
    15:52:41.0875 3860 usbohci - ok
    15:52:41.0890 3860 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
    15:52:42.0046 3860 usbprint - ok
    15:52:42.0109 3860 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
    15:52:42.0234 3860 usbscan - ok
    15:52:42.0250 3860 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    15:52:42.0390 3860 USBSTOR - ok
    15:52:42.0406 3860 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
    15:52:42.0531 3860 usb_rndisx - ok
    15:52:42.0546 3860 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
    15:52:42.0687 3860 VgaSave - ok
    15:52:42.0703 3860 ViaIde - ok
    15:52:42.0718 3860 [ 8AB662B3C4691E6DDF61C96BB5B7D103 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
    15:52:42.0859 3860 VolSnap -
  • Het log is niet kompleet.
    De eindkonklusie mist.
    Graag alsnog posten.
  • [quote:4d7a175e8e="Abraham54"]Het log is niet kompleet.
    De eindkonklusie mist.
    Graag alsnog posten.[/quote:4d7a175e8e]

    bij deze.
    17:17:27.0765 3996 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    17:17:27.0937 3996 ============================================================
    17:17:27.0937 3996 Current date / time: 2012/11/27 17:17:27.0937
    17:17:27.0937 3996 SystemInfo:
    17:17:27.0937 3996
    17:17:27.0937 3996 OS Version: 5.1.2600 ServicePack: 3.0
    17:17:27.0937 3996 Product type: Workstation
    17:17:27.0937 3996 ComputerName: RIA-3BAF41774F7
    17:17:27.0937 3996 UserName: RIA
    17:17:27.0937 3996 Windows directory: C:\WINDOWS
    17:17:27.0937 3996 System windows directory: C:\WINDOWS
    17:17:27.0937 3996 Processor architecture: Intel x86
    17:17:27.0937 3996 Number of processors: 2
    17:17:27.0937 3996 Page size: 0x1000
    17:17:27.0937 3996 Boot type: Normal boot
    17:17:27.0937 3996 ============================================================
    17:17:28.0218 3996 Drive \Device\Harddisk0\DR0 - Size: 0x1315740000 (76.34 Gb), SectorSize: 0x200, Cylinders: 0x26EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    17:17:28.0234 3996 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    17:17:28.0234 3996 ============================================================
    17:17:28.0234 3996 \Device\Harddisk0\DR0:
    17:17:28.0234 3996 MBR partitions:
    17:17:28.0234 3996 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F00, BlocksNum 0xF46566
    17:17:28.0250 3996 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0xF4A4A5, BlocksNum 0x2629FBC
    17:17:28.0265 3996 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x35744A0, BlocksNum 0x16E78D8
    17:17:28.0281 3996 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x4C5BDB7, BlocksNum 0x7A51F4
    17:17:28.0296 3996 \Device\Harddisk0\DR0\Partition5: MBR, Type 0xB, StartLBA 0x5400FEA, BlocksNum 0x7A51F4
    17:17:28.0296 3996 \Device\Harddisk0\DR0\Partition6: MBR, Type 0xB, StartLBA 0x5BA621D, BlocksNum 0x1E88C4A
    17:17:28.0312 3996 \Device\Harddisk0\DR0\Partition7: MBR, Type 0xB, StartLBA 0x7A2EEA6, BlocksNum 0x1E79146
    17:17:28.0312 3996 \Device\Harddisk1\DR1:
    17:17:28.0312 3996 MBR partitions:
    17:17:28.0312 3996 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC6B9CAC
    17:17:28.0328 3996 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC6B9D2A, BlocksNum 0xC6B9CAC
    17:17:28.0343 3996 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x18D73A15, BlocksNum 0xC6B5DEB
    17:17:28.0343 3996 ============================================================
    17:17:28.0375 3996 C: <-> \Device\Harddisk1\DR1\Partition1
    17:17:28.0406 3996 E: <-> \Device\Harddisk1\DR1\Partition2
    17:17:28.0437 3996 F: <-> \Device\Harddisk1\DR1\Partition3
    17:17:28.0453 3996 G: <-> \Device\Harddisk0\DR0\Partition1
    17:17:28.0468 3996 H: <-> \Device\Harddisk0\DR0\Partition2
    17:17:28.0484 3996 I: <-> \Device\Harddisk0\DR0\Partition3
    17:17:28.0500 3996 J: <-> \Device\Harddisk0\DR0\Partition4
    17:17:28.0500 3996 K: <-> \Device\Harddisk0\DR0\Partition5
    17:17:28.0515 3996 L: <-> \Device\Harddisk0\DR0\Partition6
    17:17:28.0531 3996 M: <-> \Device\Harddisk0\DR0\Partition7
    17:17:28.0531 3996 ============================================================
    17:17:28.0531 3996 Initialize success
    17:17:28.0531 3996 ============================================================
    17:17:39.0125 1812 ============================================================
    17:17:39.0125 1812 Scan started
    17:17:39.0125 1812 Mode: Manual; SigCheck; TDLFS;
    17:17:39.0125 1812 ============================================================
    17:17:39.0562 1812 ================ Scan system memory ========================
    17:17:39.0562 1812 System memory - ok
    17:17:39.0562 1812 ================ Scan services =============================
    17:17:39.0703 1812 [ 160270FB6706B45392B3C20753BEF1A9 ] a2free C:\Program Files\a-squared Free\a2service.exe
    17:17:39.0875 1812 a2free - ok
    17:17:39.0984 1812 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
    17:17:40.0000 1812 Aavmker4 - ok
    17:17:40.0078 1812 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
    17:17:40.0109 1812 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
    17:17:40.0109 1812 Abiosdsk - ok
    17:17:40.0109 1812 abp480n5 - ok
    17:17:40.0156 1812 [ 02273A448BA21A7D447DAEB47810D40C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
    17:17:40.0343 1812 ACPI - ok
    17:17:40.0359 1812 [ 63F517B1A87DABF3F5ACB8A7952FC1D1 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
    17:17:40.0484 1812 ACPIEC - ok
    17:17:40.0562 1812 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    17:17:40.0578 1812 AdobeFlashPlayerUpdateSvc - ok
    17:17:40.0593 1812 adpu160m - ok
    17:17:40.0609 1812 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
    17:17:40.0750 1812 aec - ok
    17:17:40.0796 1812 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
    17:17:40.0812 1812 AFD - ok
    17:17:40.0812 1812 Aha154x - ok
    17:17:40.0812 1812 aic78u2 - ok
    17:17:40.0828 1812 aic78xx - ok
    17:17:40.0859 1812 [ 8BED67D13DCB55B3E9FF6DAC4C6D3B49 ] Alerter C:\WINDOWS\system32\alrsvc.dll
    17:17:40.0984 1812 Alerter - ok
    17:17:41.0015 1812 [ DAB2A89FDE5CF791161200D90C1BCB12 ] ALG C:\WINDOWS\System32\alg.exe
    17:17:41.0078 1812 ALG - ok
    17:17:41.0093 1812 AliIde - ok
    17:17:41.0109 1812 [ 27E10D39513C3B04D3385B77E0DE7804 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
    17:17:41.0156 1812 AmdK8 - ok
    17:17:41.0156 1812 amsint - ok
    17:17:41.0187 1812 [ E394B7CD8F5731B3C932A0B1389D0B4A ] AnyDVD C:\WINDOWS\system32\Drivers\AnyDVD.sys
    17:17:41.0203 1812 AnyDVD - ok
    17:17:41.0250 1812 [ 434A70FA278EB3C42140E3755C2FA4F8 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
    17:17:41.0312 1812 AppMgmt - ok
    17:17:41.0312 1812 asc - ok
    17:17:41.0312 1812 asc3350p - ok
    17:17:41.0328 1812 asc3550 - ok
    17:17:41.0359 1812 [ ED8CEE58C1E4C5893F5B2FD686A272BF ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
    17:17:41.0375 1812 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
    17:17:41.0375 1812 Aspi32 - detected UnsignedFile.Multi.Generic (1)
    17:17:41.0453 1812 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
    17:17:41.0468 1812 aspnet_state - ok
    17:17:41.0484 1812 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
    17:17:41.0500 1812 aswFsBlk - ok
    17:17:41.0515 1812 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
    17:17:41.0531 1812 aswMon2 - ok
    17:17:41.0562 1812 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
    17:17:41.0578 1812 AswRdr - ok
    17:17:41.0609 1812 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
    17:17:41.0656 1812 aswSnx - ok
    17:17:41.0687 1812 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
    17:17:41.0703 1812 aswSP - ok
    17:17:41.0718 1812 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
    17:17:41.0734 1812 aswTdi - ok
    17:17:41.0765 1812 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    17:17:41.0875 1812 AsyncMac - ok
    17:17:41.0906 1812 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
    17:17:42.0046 1812 atapi - ok
    17:17:42.0046 1812 Atdisk - ok
    17:17:42.0078 1812 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    17:17:42.0203 1812 Atmarpc - ok
    17:17:42.0234 1812 [ F10745ED3195360E69AA4A6E7768C0E0 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
    17:17:42.0375 1812 AudioSrv - ok
    17:17:42.0406 1812 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
    17:17:42.0546 1812 audstub - ok
    17:17:42.0609 1812 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    17:17:42.0625 1812 avast! Antivirus - ok
    17:17:42.0656 1812 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
    17:17:42.0796 1812 Beep - ok
    17:17:42.0828 1812 [ 5C0073A51C4873430FA8B262E92183FF ] BITS C:\WINDOWS\system32\qmgr.dll
    17:17:42.0968 1812 BITS - ok
    17:17:43.0046 1812 [ 139102D1865D3C1F152A25ABD16242DB ] Browser C:\WINDOWS\System32\browser.dll
    17:17:43.0062 1812 Browser - ok
    17:17:43.0171 1812 catchme - ok
    17:17:43.0187 1812 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
    17:17:43.0343 1812 cbidf2k - ok
    17:17:43.0421 1812 [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
    17:17:43.0421 1812 CCALib8 ( UnsignedFile.Multi.Generic ) - warning
    17:17:43.0421 1812 CCALib8 - detected UnsignedFile.Multi.Generic (1)
    17:17:43.0453 1812 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
    17:17:43.0593 1812 CCDECODE - ok
    17:17:43.0609 1812 cd20xrnt - ok
    17:17:43.0609 1812 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
    17:17:43.0765 1812 Cdaudio - ok
    17:17:43.0781 1812 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
    17:17:43.0937 1812 Cdfs - ok
    17:17:44.0015 1812 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
    17:17:44.0156 1812 Cdrom - ok
    17:17:44.0156 1812 Changer - ok
    17:17:44.0218 1812 [ BD85400700B80FBE3D4A3412BCE74861 ] CiSvc C:\WINDOWS\system32\cisvc.exe
    17:17:44.0343 1812 CiSvc - ok
    17:17:44.0359 1812 [ 4FB6108130829666C8FE96B442FEAD94 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
    17:17:44.0515 1812 ClipSrv - ok
    17:17:44.0625 1812 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    17:17:44.0640 1812 clr_optimization_v2.0.50727_32 - ok
    17:17:44.0671 1812 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    17:17:44.0687 1812 clr_optimization_v4.0.30319_32 - ok
    17:17:44.0703 1812 CmdIde - ok
    17:17:44.0703 1812 COMSysApp - ok
    17:17:44.0718 1812 Cpqarray - ok
    17:17:44.0734 1812 [ 0A9CF5D3CF63A8699F28C814EF821C7E ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
    17:17:44.0875 1812 CryptSvc - ok
    17:17:44.0890 1812 dac2w2k - ok
    17:17:44.0890 1812 dac960nt - ok
    17:17:44.0984 1812 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
    17:17:45.0015 1812 DcomLaunch - ok
    17:17:45.0046 1812 [ 146AB038F5DBB366122D28444999AB2C ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
    17:17:45.0203 1812 Dhcp - ok
    17:17:45.0265 1812 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
    17:17:45.0406 1812 Disk - ok
    17:17:45.0406 1812 dmadmin - ok
    17:17:45.0453 1812 [ DEC123E0C75971D0CC7A6C6A75E28429 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
    17:17:45.0609 1812 dmboot - ok
    17:17:45.0609 1812 [ 7268E66259722F6228C730685B201092 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
    17:17:45.0750 1812 dmio - ok
    17:17:45.0765 1812 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
    17:17:45.0937 1812 dmload - ok
    17:17:45.0968 1812 [ 127DB74184E2D3D31655DA525A5EFDE1 ] dmserver C:\WINDOWS\System32\dmserver.dll
    17:17:46.0093 1812 dmserver - ok
    17:17:46.0140 1812 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
    17:17:46.0296 1812 DMusic - ok
    17:17:46.0343 1812 [ DE6CDB6CBC5C27B9085CFA6DFE8E5025 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
    17:17:46.0343 1812 Dnscache - ok
    17:17:46.0375 1812 [ 90EE765E1A598B578852901F74F914F1 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
    17:17:46.0500 1812 Dot3svc - ok
    17:17:46.0515 1812 dpti2o - ok
    17:17:46.0515 1812 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
    17:17:46.0671 1812 drmkaud - ok
    17:17:46.0703 1812 [ E6BBDEBF7081899D161C773E8D84D015 ] EapHost C:\WINDOWS\System32\eapsvc.dll
    17:17:46.0843 1812 EapHost - ok
    17:17:46.0875 1812 [ CE37E3D51912E59C80C6D84337C0B4CD ] ElbyCDFL C:\WINDOWS\system32\Drivers\ElbyCDFL.sys
    17:17:46.0890 1812 ElbyCDFL - ok
    17:17:46.0906 1812 [ 2A42DE6C216D914AB58E1F60B8E62C47 ] ElbyCDIO C:\WINDOWS\system32\Drivers\ElbyCDIO.sys
    17:17:46.0921 1812 ElbyCDIO - ok
    17:17:46.0937 1812 [ 2F5C7F650B7AF178988946EE4B0D9C01 ] ERSvc C:\WINDOWS\System32\ersvc.dll
    17:17:47.0078 1812 ERSvc - ok
    17:17:47.0156 1812 [ 657B69389B893F440B07590C9E963F23 ] Eventlog C:\WINDOWS\system32\services.exe
    17:17:47.0171 1812 Eventlog - ok
    17:17:47.0218 1812 [ 97912DC0679D2DA60CCE589BBC196D72 ] EventSystem C:\WINDOWS\system32\es.dll
    17:17:47.0250 1812 EventSystem - ok
    17:17:47.0281 1812 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
    17:17:47.0437 1812 Fastfat - ok
    17:17:47.0531 1812 [ 2D5D4156292150FE571872C1B88E9299 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
    17:17:47.0546 1812 FastUserSwitchingCompatibility - ok
    17:17:47.0562 1812 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
    17:17:47.0703 1812 Fdc - ok
    17:17:47.0718 1812 [ 8BFFFB5AC954E19DFDB96D56512AA518 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
    17:17:47.0859 1812 Fips - ok
    17:17:47.0859 1812 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
    17:17:48.0015 1812 Flpydisk - ok
    17:17:48.0031 1812 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
    17:17:48.0171 1812 FltMgr - ok
    17:17:48.0250 1812 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
    17:17:48.0265 1812 FontCache3.0.0.0 - ok
    17:17:48.0265 1812 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
    17:17:48.0406 1812 Fs_Rec - ok
    17:17:48.0406 1812 [ FA8CA22E70245C81FF29C36AF56292FC ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    17:17:48.0562 1812 Ftdisk - ok
    17:17:48.0593 1812 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
    17:17:48.0734 1812 Gpc - ok
    17:17:48.0796 1812 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    17:17:48.0812 1812 gusvc - ok
    17:17:48.0828 1812 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    17:17:48.0968 1812 HDAudBus - ok
    17:17:49.0046 1812 [ 5327BAD9B35C33D2A64B64E4CF282ECD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
    17:17:49.0203 1812 helpsvc - ok
    17:17:49.0218 1812 [ 10003105AAB8D5A7DB51A9CB3D9F55A3 ] HidServ C:\WINDOWS\System32\hidserv.dll
    17:17:49.0359 1812 HidServ - ok
    17:17:49.0375 1812 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
    17:17:49.0515 1812 HidUsb - ok
    17:17:49.0515 1812 hitmanpro3 - ok
    17:17:49.0593 1812 [ 1FF903FFA2DA1704E5A5443D37D8E49E ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
    17:17:49.0718 1812 hkmsvc - ok
    17:17:49.0734 1812 hpn - ok
    17:17:49.0781 1812 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
    17:17:49.0796 1812 HTTP - ok
    17:17:49.0828 1812 [ 2529C7BA05242BEED0027F554D0513BB ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
    17:17:49.0984 1812 HTTPFilter - ok
    17:17:50.0000 1812 i2omgmt - ok
    17:17:50.0000 1812 i2omp - ok
    17:17:50.0062 1812 [ C43372D0682F8E32E4EC21117E089EC0 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    17:17:50.0203 1812 i8042prt - ok
    17:17:50.0328 1812 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    17:17:50.0375 1812 idsvc - ok
    17:17:50.0421 1812 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
    17:17:50.0562 1812 Imapi - ok
    17:17:50.0593 1812 [ A117772F94C854DE5D1BBC1F1962B192 ] ImapiService C:\WINDOWS\system32\imapi.exe
    17:17:50.0734 1812 ImapiService - ok
    17:17:50.0750 1812 ini910u - ok
    17:17:50.0875 1812 [ 1EBDE650D97A8ECCDC1CC4A0804647CD ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
    17:17:51.0015 1812 IntcAzAudAddService - ok
    17:17:51.0031 1812 IntelIde - ok
    17:17:51.0062 1812 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
    17:17:51.0218 1812 Ip6Fw - ok
    17:17:51.0281 1812 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    17:17:51.0421 1812 IpFilterDriver - ok
    17:17:51.0453 1812 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
    17:17:51.0593 1812 IpInIp - ok
    17:17:51.0593 1812 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
    17:17:51.0750 1812 IpNat - ok
    17:17:51.0765 1812 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
    17:17:51.0890 1812 IPSec - ok
    17:17:51.0953 1812 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
    17:17:52.0000 1812 IRENUM - ok
    17:17:52.0031 1812 [ 0B78E1A31340E1FB1E389D5633F7C3A0 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
    17:17:52.0171 1812 isapnp - ok
    17:17:52.0281 1812 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
    17:17:52.0296 1812 JavaQuickStarterService - ok
    17:17:52.0312 1812 [ 380397621E94B32C744E7B2CC1330390 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    17:17:52.0468 1812 Kbdclass - ok
    17:17:52.0468 1812 [ B833B70FE639F01FB36CEDABE57EF031 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    17:17:52.0609 1812 kbdhid - ok
    17:17:52.0625 1812 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
    17:17:52.0750 1812 kmixer - ok
    17:17:52.0765 1812 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
    17:17:52.0781 1812 KSecDD - ok
    17:17:52.0812 1812 [ C7955E7EDAEA462D04F1C4BE1D340372 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
    17:17:52.0828 1812 lanmanserver - ok
    17:17:52.0843 1812 [ A936A575EAF6DCE8DC08BC0C53972ADD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
    17:17:52.0875 1812 lanmanworkstation - ok
    17:17:52.0890 1812 Lavasoft Kernexplorer - ok
    17:17:52.0890 1812 Lbd - ok
    17:17:52.0906 1812 lbrtfdc - ok
    17:17:52.0921 1812 [ 91AE20C5C2776C511994AA1308C05283 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
    17:17:53.0078 1812 LmHosts - ok
    17:17:53.0093 1812 [ C56A45A03DCA11712DE9FDF98224230B ] Messenger C:\WINDOWS\System32\msgsvc.dll
    17:17:53.0250 1812 Messenger - ok
    17:17:53.0265 1812 mferkdk - ok
    17:17:53.0296 1812 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
    17:17:53.0437 1812 mnmdd - ok
    17:17:53.0468 1812 [ 5B1D994DCF1895AFA27600E46A2F0FEA ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
    17:17:53.0609 1812 mnmsrvc - ok
    17:17:53.0640 1812 [ 8114EEAC353F549331AB73E9AF4219ED ] Modem C:\WINDOWS\system32\drivers\Modem.sys
    17:17:53.0781 1812 Modem - ok
    17:17:53.0796 1812 [ 1A4E2214DD63E4A876463D3427EE8261 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
    17:17:53.0953 1812 Mouclass - ok
    17:17:54.0046 1812 [ 18017899254E01371E1A39754D6BF98C ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
    17:17:54.0203 1812 mouhid - ok
    17:17:54.0203 1812 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
    17:17:54.0359 1812 MountMgr - ok
    17:17:54.0406 1812 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    17:17:54.0421 1812 MozillaMaintenance - ok
    17:17:54.0421 1812 mraid35x - ok
    17:17:54.0421 1812 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    17:17:54.0562 1812 MRxDAV - ok
    17:17:54.0609 1812 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    17:17:54.0640 1812 MRxSmb - ok
    17:17:54.0656 1812 [ 21EA21984D7D1AD50DB2E627020AB14C ] MSDTC C:\WINDOWS\system32\msdtc.exe
    17:17:54.0812 1812 MSDTC - ok
    17:17:54.0843 1812 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
    17:17:54.0984 1812 Msfs - ok
    17:17:54.0984 1812 MSIServer - ok
    17:17:55.0031 1812 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
    17:17:55.0171 1812 MSKSSRV - ok
    17:17:55.0187 1812 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    17:17:55.0343 1812 MSPCLOCK - ok
    17:17:55.0359 1812 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
    17:17:55.0500 1812 MSPQM - ok
    17:17:55.0515 1812 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    17:17:55.0671 1812 mssmbios - ok
    17:17:55.0718 1812 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
    17:17:55.0859 1812 MSTEE - ok
    17:17:55.0906 1812 [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys
    17:17:55.0937 1812 MTsensor - ok
    17:17:55.0953 1812 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
    17:17:55.0968 1812 Mup - ok
    17:17:55.0984 1812 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
    17:17:56.0140 1812 NABTSFEC - ok
    17:17:56.0187 1812 [ 87E394C810794D3C70CF22E8316CB23E ] napagent C:\WINDOWS\System32\qagentrt.dll
    17:17:56.0343 1812 napagent - ok
    17:17:56.0375 1812 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
    17:17:56.0515 1812 NDIS - ok
    17:17:56.0578 1812 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
    17:17:56.0718 1812 NdisIP - ok
    17:17:56.0750 1812 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    17:17:56.0765 1812 NdisTapi - ok
    17:17:56.0781 1812 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    17:17:56.0921 1812 Ndisuio - ok
    17:17:56.0921 1812 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    17:17:57.0062 1812 NdisWan - ok
    17:17:57.0125 1812 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
    17:17:57.0140 1812 NDProxy - ok
    17:17:57.0156 1812 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
    17:17:57.0312 1812 NetBIOS - ok
    17:17:57.0390 1812 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
    17:17:57.0515 1812 NetBT - ok
    17:17:57.0593 1812 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDE C:\WINDOWS\system32\netdde.exe
    17:17:57.0750 1812 NetDDE - ok
    17:17:57.0765 1812 [ DC6BAE085E9B3C2F3A963ED46791FEAB ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
    17:17:57.0890 1812 NetDDEdsdm - ok
    17:17:57.0968 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] Netlogon C:\WINDOWS\system32\lsass.exe
    17:17:58.0109 1812 Netlogon - ok
    17:17:58.0125 1812 [ 5431FB616ECAE0D587C5B97D0B86CBD8 ] Netman C:\WINDOWS\System32\netman.dll
    17:17:58.0250 1812 Netman - ok
    17:17:58.0343 1812 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
    17:17:58.0359 1812 NetTcpPortSharing - ok
    17:17:58.0390 1812 [ 4522CBE00A9E9EEE36AA82ED4B319148 ] Nla C:\WINDOWS\System32\mswsock.dll
    17:17:58.0437 1812 Nla - ok
    17:17:58.0437 1812 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
    17:17:58.0593 1812 Npfs - ok
    17:17:58.0625 1812 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
    17:17:58.0812 1812 Ntfs - ok
    17:17:58.0812 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
    17:17:58.0953 1812 NtLmSsp - ok
    17:17:58.0984 1812 [ AC1A78237B53044735693633F8235468 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
    17:17:59.0125 1812 NtmsSvc - ok
    17:17:59.0156 1812 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
    17:17:59.0281 1812 Null - ok
    17:17:59.0421 1812 [ EB2858F920B8135B807B5CCAA3ED73DC ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
    17:17:59.0546 1812 nv - ok
    17:17:59.0546 1812 [ EF9941593B2E9B436F64A87DDB570D1A ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
    17:17:59.0578 1812 nvata - ok
    17:17:59.0578 1812 [ 24336267DF2A52E2785D50F41B9CF9B8 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
    17:17:59.0593 1812 NVENETFD - ok
    17:17:59.0625 1812 [ FEA32E16BD1DDA896A647A6E19216FCA ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
    17:17:59.0656 1812 nvnetbus - ok
    17:17:59.0671 1812 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
    17:17:59.0703 1812 NVSvc - ok
    17:17:59.0734 1812 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    17:17:59.0875 1812 NwlnkFlt - ok
    17:17:59.0953 1812 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    17:18:00.0093 1812 NwlnkFwd - ok
    17:18:00.0156 1812 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    17:18:00.0171 1812 odserv - ok
    17:18:00.0218 1812 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    17:18:00.0234 1812 ose - ok
    17:18:00.0265 1812 [ E3934CCC20A4D24F1924E13D36D2A5BD ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
    17:18:00.0406 1812 Parport - ok
    17:18:00.0421 1812 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
    17:18:00.0578 1812 PartMgr - ok
    17:18:00.0656 1812 [ 1EADE28746A64C21E0A808BB12A63326 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
    17:18:00.0781 1812 ParVdm - ok
    17:18:00.0796 1812 [ 3B166F9F753C21AEDAA9A6BD76B49655 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
    17:18:00.0953 1812 PCI - ok
    17:18:00.0953 1812 PCIDump - ok
    17:18:01.0015 1812 [ B31EDEBA4DA28283F6B8DC4756FB9585 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
    17:18:01.0156 1812 PCIIde - ok
    17:18:01.0218 1812 [ 2137FFD65F8E609A3A5ACD487C56CCE0 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
    17:18:01.0359 1812 Pcmcia - ok
    17:18:01.0390 1812 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\WINDOWS\system32\Drivers\pcouffin.sys
    17:18:01.0406 1812 pcouffin ( UnsignedFile.Multi.Generic ) - warning
    17:18:01.0406 1812 pcouffin - detected UnsignedFile.Multi.Generic (1)
    17:18:01.0406 1812 PDCOMP - ok
    17:18:01.0406 1812 PDFRAME - ok
    17:18:01.0421 1812 PDRELI - ok
    17:18:01.0421 1812 PDRFRAME - ok
    17:18:01.0437 1812 perc2 - ok
    17:18:01.0437 1812 perc2hib - ok
    17:18:01.0484 1812 [ 6C1618A07B49E3873582B6449E744088 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
    17:18:01.0500 1812 pfc ( UnsignedFile.Multi.Generic ) - warning
    17:18:01.0500 1812 pfc - detected UnsignedFile.Multi.Generic (1)
    17:18:01.0515 1812 [ 657B69389B893F440B07590C9E963F23 ] PlugPlay C:\WINDOWS\system32\services.exe
    17:18:01.0531 1812 PlugPlay - ok
    17:18:01.0546 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
    17:18:01.0687 1812 PolicyAgent - ok
    17:18:01.0687 1812 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
    17:18:01.0859 1812 PptpMiniport - ok
    17:18:01.0875 1812 [ 82A17ECA34D801590A67C0A2244965ED ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
    17:18:02.0031 1812 Processor - ok
    17:18:02.0046 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
    17:18:02.0187 1812 ProtectedStorage - ok
    17:18:02.0203 1812 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
    17:18:02.0343 1812 PSched - ok
    17:18:02.0390 1812 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
    17:18:02.0531 1812 Ptilink - ok
    17:18:02.0562 1812 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
    17:18:02.0578 1812 PxHelp20 - ok
    17:18:02.0593 1812 ql1080 - ok
    17:18:02.0593 1812 Ql10wnt - ok
    17:18:02.0609 1812 ql12160 - ok
    17:18:02.0609 1812 ql1240 - ok
    17:18:02.0609 1812 ql1280 - ok
    17:18:02.0640 1812 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
    17:18:02.0796 1812 RasAcd - ok
    17:18:02.0828 1812 [ 0575D034B1292CA3A9BB9F67A8EE289C ] RasAuto C:\WINDOWS\System32\rasauto.dll
    17:18:02.0968 1812 RasAuto - ok
    17:18:02.0984 1812 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    17:18:03.0140 1812 Rasl2tp - ok
    17:18:03.0218 1812 [ 9E7E2DF6971A5F00102BE3F901CC3BDC ] RasMan C:\WINDOWS\System32\rasmans.dll
    17:18:03.0359 1812 RasMan - ok
    17:18:03.0375 1812 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    17:18:03.0500 1812 RasPppoe - ok
    17:18:03.0515 1812 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
    17:18:03.0656 1812 Raspti - ok
    17:18:03.0687 1812 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
    17:18:03.0812 1812 Rdbss - ok
    17:18:03.0812 1812 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    17:18:03.0953 1812 RDPCDD - ok
    17:18:03.0968 1812 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    17:18:04.0078 1812 rdpdr - ok
    17:18:04.0156 1812 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
    17:18:04.0171 1812 RDPWD - ok
    17:18:04.0187 1812 [ EA9FDF71D696B532BDC44C8BFF03A737 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
    17:18:04.0328 1812 RDSessMgr - ok
    17:18:04.0343 1812 [ 4173BC66E485FD77A03C4819F60BD0DA ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
    17:18:04.0484 1812 redbook - ok
    17:18:04.0546 1812 [ 4007ABF5D9BF0E55451D775443D1F985 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
    17:18:04.0687 1812 RemoteAccess - ok
    17:18:04.0718 1812 [ 2FD5B89BF9289C774C5C730DEA96CD91 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
    17:18:04.0843 1812 RemoteRegistry - ok
    17:18:04.0859 1812 [ BE078F8F7EC2491EFDD79A53353A060F ] RpcLocator C:\WINDOWS\system32\locator.exe
    17:18:05.0015 1812 RpcLocator - ok
    17:18:05.0093 1812 [ D9883335CC1C17AFC3A09C8AC3E4DBE4 ] RpcSs C:\WINDOWS\System32\rpcss.dll
    17:18:05.0125 1812 RpcSs - ok
    17:18:05.0156 1812 [ AD1B5F1B99FFF08C99F443D784711A81 ] RSVP C:\WINDOWS\system32\rsvp.exe
    17:18:05.0312 1812 RSVP - ok
    17:18:05.0359 1812 [ 0A7293EDC2537652A4914018A7589F14 ] rt2870 C:\WINDOWS\system32\DRIVERS\rt2870.sys
    17:18:05.0406 1812 rt2870 - ok
    17:18:05.0406 1812 [ 8754210A3399D19610CE2D71E0C3E5D9 ] SamSs C:\WINDOWS\system32\lsass.exe
    17:18:05.0562 1812 SamSs - ok
    17:18:05.0656 1812 [ 0505DA5D357F18A5D42FC5DEDE6BC9A0 ] SBRE C:\WINDOWS\system32\drivers\SBREdrv.sys
    17:18:05.0671 1812 SBRE - ok
    17:18:05.0687 1812 [ 1B4CD62174E907C7EF8EC5D4D0A2A616 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
    17:18:05.0843 1812 SCardSvr - ok
    17:18:05.0906 1812 [ 7C288AE0F75CB18CFF1DF6179A67AD8F ] Schedule C:\WINDOWS\system32\schedsvc.dll
    17:18:06.0062 1812 Schedule - ok
    17:18:06.0093 1812 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
    17:18:06.0156 1812 Secdrv - ok
    17:18:06.0171 1812 [ 6983665BEA867125B1DA5757CD8B2F9D ] seclogon C:\WINDOWS\System32\seclogon.dll
    17:18:06.0312 1812 seclogon - ok
    17:18:06.0328 1812 [ F6EC8F1E50E40237BDDEE1CB7FE20B42 ] SENS C:\WINDOWS\system32\sens.dll
    17:18:06.0468 1812 SENS - ok
    17:18:06.0531 1812 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
    17:18:06.0671 1812 serenum - ok
    17:18:06.0687 1812 [ 92C21762653BB2CE51147EB8A9AA654F ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
    17:18:06.0828 1812 Serial - ok
    17:18:06.0890 1812 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
    17:18:07.0015 1812 Sfloppy - ok
    17:18:07.0093 1812 [ 7579C4BE909D47F10F3D8D801CB13ED9 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
    17:18:07.0250 1812 SharedAccess - ok
    17:18:07.0265 1812 [ 2D5D4156292150FE571872C1B88E9299 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
    17:18:07.0296 1812 ShellHWDetection - ok
    17:18:07.0296 1812 Simbad - ok
    17:18:07.0312 1812 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
    17:18:07.0453 1812 SLIP - ok
    17:18:07.0515 1812 [ 3BB48F7E33C2B76184DDF233000C09CD ] Sony SCSI Helper Service C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
    17:18:07.0531 1812 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - warning
    17:18:07.0531 1812 Sony SCSI Helper Service - detected UnsignedFile.Multi.Generic (1)
    17:18:07.0562 1812 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
    17:18:07.0687 1812 SONYPVU1 - ok
    17:18:07.0687 1812 Sparrow - ok
    17:18:07.0718 1812 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
    17:18:07.0859 1812 splitter - ok
    17:18:07.0906 1812 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
    17:18:07.0937 1812 Spooler - ok
    17:18:07.0984 1812 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
    17:18:07.0984 1812 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
    17:18:07.0984 1812 sptd ( LockedFile.Multi.Generic ) - warning
    17:18:07.0984 1812 sptd - detected LockedFile.Multi.Generic (1)
    17:18:08.0000 1812 [ 64D2A7640E0767ECD3BCB38D3200E7CE ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
    17:18:08.0046 1812 sr - ok
    17:18:08.0093 1812 [ 81CBF363C414620CAA61BD6843D8FDB9 ] srservice C:\WINDOWS\system32\srsvc.dll
    17:18:08.0156 1812 srservice - ok
    17:18:08.0171 1812 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
    17:18:08.0203 1812 Srv - ok
    17:18:08.0218 1812 [ 5B9D0DE64BE96A806819516440FD211C ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
    17:18:08.0281 1812 SSDPSRV - ok
    17:18:08.0312 1812 [ 5AE996186D2DC694FEF88F14A3FC9242 ] stisvc C:\WINDOWS\system32\wiaservc.dll
    17:18:08.0453 1812 stisvc - ok
    17:18:08.0484 1812 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
    17:18:08.0609 1812 streamip - ok
    17:18:08.0640 1812 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
    17:18:08.0765 1812 swenum - ok
    17:18:08.0781 1812 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
    17:18:08.0937 1812 swmidi - ok
    17:18:08.0953 1812 SwPrv - ok
    17:18:08.0953 1812 symc810 - ok
    17:18:08.0968 1812 symc8xx - ok
    17:18:08.0968 1812 sym_hi - ok
    17:18:08.0984 1812 sym_u3 - ok
    17:18:08.0984 1812 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
    17:18:09.0140 1812 sysaudio - ok
    17:18:09.0171 1812 [ 251EAE7C56C6AB9490311A3C9757E18D ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
    17:18:09.0312 1812 SysmonLog - ok
    17:18:09.0328 1812 [ 2BC9FB448F0C2394FF53C83A7BB04731 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
    17:18:09.0484 1812 TapiSrv - ok
    17:18:09.0546 1812 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
    17:18:09.0562 1812 Tcpip - ok
    17:18:09.0578 1812 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
    17:18:09.0703 1812 TDPIPE - ok
    17:18:09.0734 1812 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
    17:18:09.0875 1812 TDTCP - ok
    17:18:09.0890 1812 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
    17:18:10.0031 1812 TermDD - ok
    17:18:10.0046 1812 [ E0AEF86A594C9990D6321C5CA239C5B7 ] TermService C:\WINDOWS\System32\termsrv.dll
    17:18:10.0203 1812 TermService - ok
    17:18:10.0218 1812 [ 2D5D4156292150FE571872C1B88E9299 ] Themes C:\WINDOWS\System32\shsvcs.dll
    17:18:10.0250 1812 Themes - ok
    17:18:10.0265 1812 [ 78A2FE13662A119875F10E9FFCB49A8F ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
    17:18:10.0328 1812 TlntSvr - ok
    17:18:10.0343 1812 TosIde - ok
    17:18:10.0343 1812 [ 20655E8CA1C78BC7088B18E93806D21B ] TrkWks C:\WINDOWS\system32\trkwks.dll
    17:18:10.0515 1812 TrkWks - ok
    17:18:10.0531 1812 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
    17:18:10.0656 1812 Udfs - ok
    17:18:10.0656 1812 ultra - ok
    17:18:10.0671 1812 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
    17:18:10.0812 1812 Update - ok
    17:18:10.0843 1812 [ 01653D6C9604F1FB31A76EC94E08954F ] upnphost C:\WINDOWS\System32\upnphost.dll
    17:18:10.0921 1812 upnphost - ok
    17:18:10.0937 1812 [ A89796DD0DE24CF03B3A39407E1F46A3 ] UPS C:\WINDOWS\System32\ups.exe
    17:18:11.0093 1812 UPS - ok
    17:18:11.0125 1812 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    17:18:11.0265 1812 usbccgp - ok
    17:18:11.0296 1812 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
    17:18:11.0421 1812 usbehci - ok
    17:18:11.0437 1812 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
    17:18:11.0593 1812 usbhub - ok
    17:18:11.0609 1812 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
    17:18:11.0750 1812 usbohci - ok
    17:18:11.0765 1812 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
    17:18:11.0906 1812 usbprint - ok
    17:18:11.0937 1812 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
    17:18:12.0078 1812 usbscan - ok
    17:18:12.0125 1812 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    17:18:12.0281 1812 USBSTOR - ok
    17:18:12.0328 1812 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
    17:18:12.0437 1812 usb_rndisx - ok
    17:18:12.0468 1812 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
    17:18:12.0609 1812 VgaSave - ok
    17:18:12.0609 1812 ViaIde - ok
    17:18:12.0625 1812 [ 8AB662B3C4691E6DDF61C96BB5B7D103 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
    17:18:12.0765 1812 VolSnap - ok
    17:18:12.0812 1812 [ A585EDD6965B301DE8A45C6768C7C215 ] VSS C:\WINDOWS\System32\vssvc.exe
    17:18:12.0890 1812 VSS - ok
    17:18:12.0906 1812 [ 390D8E65F362327AD510B08971478301 ] W32Time C:\WINDOWS\system32\w32time.dll
    17:18:13.0031 1812 W32Time - ok
    17:18:13.0031 1812 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
    17:18:13.0187 1812 Wanarp - ok
    17:18:13.0203 1812 WDICA - ok
    17:18:13.0218 1812 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
    17:18:13.0359 1812 wdmaud - ok
    17:18:13.0390 1812 [ 33D8E2812054D97A0AEC9B8F04277927 ] WebClient C:\WINDOWS\System32\webclnt.dll
    17:18:13.0531 1812 WebClient - ok
    17:18:13.0609 1812 [ F9E105F369C18E4001E0C05AAF600D73 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
    17:18:13.0750 1812 winmgmt - ok
    17:18:13.0812 1812 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
    17:18:13.0843 1812 WmdmPmSN - ok
    17:18:13.0890 1812 [ 93F8EB8C7CD4E325EC92EDBFC545103D ] Wmi C:\WINDOWS\System32\advapi32.dll
    17:18:13.0921 1812 Wmi - ok
    17:18:13.0953 1812 [ 87F11D161207C7063EDABAC0AADC33C3 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
    17:18:14.0093 1812 WmiApSrv - ok
    17:18:14.0187 1812 [ 79A01ACD485687EE602411A06B63A9A5 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
    17:18:14.0234 1812 WMPNetworkSvc - ok
    17:18:14.0250 1812 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    17:18:14.0265 1812 WpdUsb - ok
    17:18:14.0328 1812 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
    17:18:14.0359 1812 WPFFontCache_v0400 - ok
    17:18:14.0390 1812 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
    17:18:14.0546 1812 WS2IFSL - ok
    17:18:14.0578 1812 [ 843F7FA8EA38E6A4262976DCC994C81A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
    17:18:14.0734 1812 wscsvc - ok
    17:18:14.0765 1812 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
    17:18:14.0906 1812 WSTCODEC - ok
    17:18:14.0937 1812 [ 1E8FDDDEF3FE260BADAB06DAE10D753A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
    17:18:15.0093 1812 wuauserv - ok
    17:18:15.0156 1812 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    17:18:15.0171 1812 WudfPf - ok
    17:18:15.0203 1812 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    17:18:15.0218 1812 WudfRd - ok
    17:18:15.0250 1812 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
    17:18:15.0281 1812 WudfSvc - ok
    17:18:15.0312 1812 [ E99782DBB8FFA2AEE72B31DAC8D8D887 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
    17:18:15.0484 1812 WZCSVC - ok
    17:18:15.0515 1812 [ FD3C38635808920F8235BF2FED642F54 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
    17:18:15.0671 1812 xmlprov - ok
    17:18:15.0687 1812 ================ Scan global ===============================
    17:18:15.0765 1812 [ 953AD498333B03F7CE547151F96EF241 ] C:\WINDOWS\system32\basesrv.dll
    17:18:15.0796 1812 [ C7CC71181F7FD61C49EFF278003827A5 ] C:\WINDOWS\system32\winsrv.dll
    17:18:15.0812 1812 [ C7CC71181F7FD61C49EFF278003827A5 ] C:\WINDOWS\system32\winsrv.dll
    17:18:15.0843 1812 [ 657B69389B893F440B07590C9E963F23 ] C:\WINDOWS\system32\services.exe
    17:18:15.0843 1812 [Global] - ok
    17:18:15.0843 1812 ================ Scan MBR ==================================
    17:18:15.0875 1812 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
    17:18:15.0953 1812 \Device\Harddisk0\DR0 - ok
    17:18:15.0968 1812 [ 3051207086651214E435112E51817DC5 ] \Device\Harddisk1\DR1
    17:18:16.0140 1812 \Device\Harddisk1\DR1 - ok
    17:18:16.0140 1812 ================ Scan VBR ==================================
    17:18:16.0156 1812 [ 7E094F19C857ED56775425AF9A7000A4 ] \Device\Harddisk0\DR0\Partition1
    17:18:16.0156 1812 \Device\Harddisk0\DR0\Partition1 - ok
    17:18:16.0171 1812 [ EE4723A14079B5CC6C5437B0CCB2253C ] \Device\Harddisk0\DR0\Partition2
    17:18:16.0171 1812 \Device\Harddisk0\DR0\Partition2 - ok
    17:18:16.0187 1812 [ 83B19A4A66E5D8AC14A535E9CF88A976 ] \Device\Harddisk0\DR0\Partition3
    17:18:16.0187 1812 \Device\Harddisk0\DR0\Partition3 - ok
    17:18:16.0218 1812 [ 9C9D1102CD60FC3D837F45EEDA47A0B7 ] \Device\Harddisk0\DR0\Partition4
    17:18:16.0218 1812 \Device\Harddisk0\DR0\Partition4 - ok
    17:18:16.0218 1812 [ 9CB867C0A42F9F74C010DF57D493D705 ] \Device\Harddisk0\DR0\Partition5
    17:18:16.0218 1812 \Device\Harddisk0\DR0\Partition5 - ok
    17:18:16.0250 1812 [ 847DD1DA68998AA7461DCA73E4CEB404 ] \Device\Harddisk0\DR0\Partition6
    17:18:16.0250 1812 \Device\Harddisk0\DR0\Partition6 - ok
    17:18:16.0265 1812 [ C409D71CE370230BF57347C7A4051342 ] \Device\Harddisk0\DR0\Partition7
    17:18:16.0265 1812 \Device\Harddisk0\DR0\Partition7 - ok
    17:18:16.0265 1812 [ 7EC10A40CCA16CCCC648E4CCB205B8AA ] \Device\Harddisk1\DR1\Partition1
    17:18:16.0265 1812 \Device\Harddisk1\DR1\Partition1 - ok
    17:18:16.0265 1812 [ 7DD6A922E4ABFCDB599EC6B497FFD99F ] \Device\Harddisk1\DR1\Partition2
    17:18:16.0281 1812 \Device\Harddisk1\DR1\Partition2 - ok
    17:18:16.0296 1812 [ 92A8E87108164FD38D491ED88BAD69BF ] \Device\Harddisk1\DR1\Partition3
    17:18:16.0296 1812 \Device\Harddisk1\DR1\Partition3 - ok
    17:18:16.0296 1812 ============================================================
    17:18:16.0296 1812 Scan finished
    17:18:16.0296 1812 ============================================================
    17:18:16.0406 1320 Detected object count: 6
    17:18:16.0406 1320 Actual detected object count: 6
    17:18:50.0984 1320 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 CCALib8 ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 CCALib8 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 pcouffin ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 pcouffin ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 Sony SCSI Helper Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
    17:18:50.0984 1320 sptd ( LockedFile.Multi.Generic ) - skipped by user
    17:18:50.0984 1320 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
  • hallo abraham ik heb mijn pc opnieuw opgestart en krijg nu de melding dat ik mogelijk de dupe bent geworden van softwarevervalsing,wat moet ik hiermee?

    gr.ria
  • Van welke firma krijg je die melding?

    Doe de ComboFix scan nogmaals.
    Het kan na opstarten van ComboFix gebeuren dat er een melding komt:

    - of ComboFix wil geupdated worden;
    - of ComboFix wil opnieuw gedownload worden.

    Post wederom de inhoud van het ComboFix-log.
  • de melding is van microsoft.
    ook is de achtergrond van mijn bureaublad verdwenen.

    [quote:4e36e085b8="Abraham54"]Van welke firma krijg je die melding?

    Doe de ComboFix scan nogmaals.
    Het kan na opstarten van ComboFix gebeuren dat er een melding komt:

    - of ComboFix wil geupdated worden;
    - of ComboFix wil opnieuw gedownload worden.

    Post wederom de inhoud van het ComboFix-log.[/quote:4e36e085b8]
  • de melding is van windows genuine adventage:
    dit exemplaar van windows is niet als legitieme windows software gevalideerd.

    moet ik dit negeren of updaten?
    ik heb geen codes als daarom gevraagd wordt.

    hieronder de combofix log.;

    ComboFix 12-11-27.01 - RIA 27-11-2012 23:01:45.2.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1919.1393 [GMT 1:00]
    Gestart vanuit: c:\documents and settings\RIA\Bureaublad\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-10-27 to 2012-11-27 ))))))))))))))))))))))))))))))
    .
    .
    2012-11-26 20:31 . 2012-11-26 20:35 ——– d—–w- c:\program files\a-squared Free
    2012-11-25 20:23 . 2012-11-27 20:39 ——– d–h–r- c:\documents and settings\RIA\Onlangs geopend
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\ElevatedDiagnostics
    2012-11-25 20:22 . 2012-11-25 20:22 ——– d—–w- c:\documents and settings\RIA\Application Data\IDM
    2012-11-25 20:20 . 2012-11-25 20:20 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\ABBYY
    2012-11-25 20:19 . 2012-11-25 20:19 ——– d—–w- c:\program files\Mozilla Maintenance Service
    2012-11-14 10:29 . 2012-11-14 10:29 ——– dc—-w- c:\documents and settings\All Users\Application Data\Ahead
    2012-11-11 19:28 . 2007-06-03 13:31 10752 —-a-w- c:\windows\system32\ff_vfw.dll
    2012-11-11 19:28 . 2007-04-24 16:30 60273 —-a-w- c:\windows\system32\pthreadGC2.dll
    2012-11-11 19:28 . 2012-11-25 20:12 ——– d—–w- c:\program files\AviSynth 2.5
    2012-11-11 19:27 . 2012-11-25 20:12 ——– d—–w- c:\program files\The FilmMachine
    2012-11-07 16:33 . 2012-11-08 15:47 8192 —-a-w- c:\windows\system32\E_DCINST.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 95232 —-a-w- c:\windows\system32\E_FLBHBE.DLL
    2012-11-07 16:33 . 2012-11-08 15:46 81408 —-a-w- c:\windows\system32\E_FD4BHBE.DLL
    2012-11-07 16:12 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\ABBYY
    2012-11-07 16:12 . 2012-11-25 20:14 ——– d—–w- c:\program files\ABBYY FineReader 9.0 Sprint
    2012-11-07 16:12 . 2012-11-07 16:12 ——– d—–w- c:\program files\Common Files\ABBYY
    2012-11-07 16:11 . 2012-11-07 16:11 ——– dc—-w- c:\documents and settings\All Users\Application Data\UDL
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\ensppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\ensppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enspres.dll
    2012-11-07 16:08 . 2012-11-25 20:15 ——– d—–w- c:\program files\EpsonNet
    2012-11-07 16:08 . 2011-08-30 12:39 457780 —-a-w- c:\windows\system32\enppui.dll
    2012-11-07 16:08 . 2011-08-30 12:38 475496 —-a-w- c:\windows\system32\enppmon.dll
    2012-11-07 16:08 . 2011-08-01 17:24 249344 —-a-w- c:\windows\system32\enpres.dll
    2012-11-07 16:08 . 2012-11-25 20:14 ——– d—–w- c:\program files\Common Files\EPSON
    2012-11-07 16:08 . 2012-11-07 16:11 ——– d—–w- c:\program files\EPSON Software
    2012-11-07 16:05 . 2012-11-25 20:14 ——– dc—-w- c:\documents and settings\All Users\Application Data\EPSON
    2012-11-07 16:04 . 2009-10-15 23:00 132560 —-a-w- c:\windows\system32\esdevapp.exe
    2012-11-07 16:04 . 2009-09-16 23:00 342016 —-a-w- c:\windows\system32\eswiaud.dll
    2012-10-31 15:39 . 2012-10-31 15:39 ——– d—–w- c:\documents and settings\RIA\Local Settings\Application Data\Sun
    2012-10-31 15:28 . 2012-10-31 15:28 93672 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-11-14 09:47 . 2012-04-17 07:10 697272 —-a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-11-14 09:47 . 2011-05-14 07:12 73656 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-10-31 15:28 . 2012-06-30 20:37 821736 —-a-w- c:\windows\system32\npdeployJava1.dll
    2012-10-31 15:28 . 2008-02-20 22:35 143872 —-a-w- c:\windows\system32\javacpl.cpl
    2012-10-30 22:51 . 2012-06-27 18:51 361032 —-a-w- c:\windows\system32\drivers\aswSP.sys
    2012-10-30 22:51 . 2012-06-27 18:51 738504 —-a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-10-30 22:51 . 2012-06-27 18:51 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-10-30 22:51 . 2012-06-27 18:51 35928 —-a-w- c:\windows\system32\drivers\aswRdr.sys
    2012-10-30 22:51 . 2012-06-27 18:51 97608 —-a-w- c:\windows\system32\drivers\aswmon2.sys
    2012-10-30 22:51 . 2012-06-27 18:51 89752 —-a-w- c:\windows\system32\drivers\aswmon.sys
    2012-10-30 22:51 . 2012-06-27 18:51 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-10-30 22:51 . 2012-06-27 18:51 25256 —-a-w- c:\windows\system32\drivers\aavmker4.sys
    2012-10-30 22:51 . 2012-06-27 18:51 41224 —-a-w- c:\windows\avastSS.scr
    2012-10-30 22:50 . 2012-06-27 18:51 227648 —-a-w- c:\windows\system32\aswBoot.exe
    2012-10-22 19:57 . 2004-08-03 22:56 1866496 —-a-w- c:\windows\system32\win32k.sys
    2012-10-02 18:04 . 2004-08-03 23:03 58368 —-a-w- c:\windows\system32\synceng.dll
    2012-09-29 18:54 . 2012-06-30 18:31 22856 —-a-w- c:\windows\system32\drivers\mbam.sys
    2007-03-12 16:59 . 2007-03-12 16:59 299008 -c–a-w- c:\program files\navigram_register.exe
    2012-11-21 14:15 . 2012-11-21 14:15 262112 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-10-30 22:50 121528 —-a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "EPLTarget\P0000000000000000"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "EPLTarget\P0000000000000001"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE" [2012-11-08 249440]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-11-01 289072]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-30 7634944]
    "nwiz"="nwiz.exe" [2006-10-30 1622016]
    "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-30 86016]
    "RTHDCPL"="RTHDCPL.EXE" [2007-07-05 16380416]
    "SkyTel"="SkyTel.EXE" [2007-06-15 1826816]
    "UPC"="c:\program files\UPC\bin\sprtcmd.exe" [2005-08-16 192512]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
    "Reader Application Helper"="c:\program files\Sony\ReaderDesktop\appHelper\ReaderAppHelper.exe" [2012-07-12 892928]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2010-10-12 979328]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    c:\documents and settings\RIA\Menu Start\Programma's\Opstarten\
    Webshots.lnk - c:\program files\Webshots\3.1.5.7617\Launcher.exe [2009-12-29 157088]
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
    backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Netpresenter Player.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Netpresenter Player.lnk
    backup=c:\windows\pss\Netpresenter Player.lnkCommon Startup
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
    path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\WinZip Quick Pick.lnk
    backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD]
    2009-01-11 15:59 2522048 -c–a-w- c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
    2006-09-28 19:21 57344 -c–a-w- c:\program files\SlySoft\CloneCD\CloneCDTray.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
    2011-07-28 23:08 1259376 —-a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
    2006-01-12 14:40 155648 -c–a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
    "c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\WINDOWS\\system32\\msiexec.exe"=
    "c:\\Documents and Settings\\RIA\\Local Settings\\Temp\\ibtmp213d533\\component_567"=
    "c:\\Program Files\\EPSON Software\\Event Manager\\EEventManager.exe"=
    "c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "58471:TCP"= 58471:TCP:Pando P2P TCP Listening Port
    "58471:UDP"= 58471:UDP:Pando P2P UDP Listening Port
    "58023:TCP"= 58023:TCP:Pando P2P TCP Listening Port
    "58023:UDP"= 58023:UDP:Pando P2P UDP Listening Port
    "57447:TCP"= 57447:TCP:Pando P2P TCP Listening Port
    "57447:UDP"= 57447:UDP:Pando P2P UDP Listening Port
    "13532:TCP"= 13532:TCP:BitCometBeta 13532 TCP
    "13532:UDP"= 13532:UDP:BitCometBeta 13532 UDP
    "50005:TCP"= 50005:TCP:utorrent1
    "50005:UDP"= 50005:UDP:utorrent1
    .
    R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [23-2-2009 13:54 717296]
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [27-6-2012 19:51 738504]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [27-6-2012 19:51 361032]
    R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [5-6-2012 23:00 101720]
    R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [26-11-2012 21:31 1872320]
    R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [14-5-2009 17:07 759048]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [27-6-2012 19:51 21256]
    R3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [18-3-2008 13:04 47360]
    S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys –> c:\windows\system32\DRIVERS\Lbd.sys [?]
    S3 hitmanpro3;Hitman Pro 3 Support Driver;\??\c:\windows\system32\drivers\hitmanpro3.sys –> c:\windows\system32\drivers\hitmanpro3.sys [?]
    S3 Lavasoft Kernexplorer;Lavasoft helper driver;\??\c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys –> c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [?]
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-17 09:47]
    .
    2012-11-27 c:\windows\Tasks\avast! Emergency Update.job
    - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-01 22:50]
    .
    2012-11-27 c:\windows\Tasks\OGALogon.job
    - c:\windows\system32\OGAEXEC.exe [2009-08-03 13:07]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = about:blank
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    TCP: DhcpNameServer = 192.168.0.1
    FF - ProfilePath - c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\
    FF - ExtSQL: 2012-11-08 12:59; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
    FF - ExtSQL: 2012-11-19 21:20; {2d3fbcf7-be69-4433-8858-c621a8d0e58d}; c:\documents and settings\RIA\Application Data\Mozilla\Firefox\Profiles\q6yrqt1t.default-1352403524218\extensions\{2d3fbcf7-be69-4433-8858-c621a8d0e58d}
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2012-11-27 23:22
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scannen van verborgen processen …
    .
    scannen van verborgen autostart items …
    .
    scannen van verborgen bestanden …
    .
    Scan succesvol afgerond
    verborgen bestanden: 0
    .
    **************************************************************************
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    ——————— DLLs Geladen Onder Lopende Processen ———————
    .
    - - - - - - - > 'explorer.exe'(404)
    c:\windows\system32\msi.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    Voltooingstijd: 2012-11-27 23:28:33
    ComboFix-quarantined-files.txt 2012-11-27 22:28
    ComboFix2.txt 2012-11-27 09:58
    .
    Pre-Run: 63.209.627.648 bytes beschikbaar
    Post-Run: 63.218.782.208 bytes beschikbaar
    .
    - - End Of File - - ADD03A1EF87DC71A314BFFD0E9046822

    voor straks welterusten.gr.ria
  • hallo abraham,heeft u nog iets kunnen vinden?
    de problemen zijn er nog steeds,ik kan nog steeds geen eenvoudige spellen spelen.zou het misschien aan avast of firefox kunnen liggen?

    gr.ria
  • mijn ervaring is dat Abraham54 altijd antwoordt, dus even geduld hebben.
  • [quote:ba7a341a92="f.j.stols"]mijn ervaring is dat Abraham54 altijd antwoordt, dus even geduld hebben.[/quote:ba7a341a92]

    komt goed hoor,bedankt.
    fijne dag nog.

    gr.ria
  • Hallo Ria, na de nodige problemen met mijn notebook ben ik er weer.

    Je mag het volgende gaan doen:

    [b:dd693ffac9]Welk programma[/b:dd693ffac9]:
  • [quote:99d2a115a6="Abraham54"]Hallo Ria, na de nodige problemen met mijn notebook ben ik er weer.

    Je mag het volgende gaan doen:

    [b:99d2a115a6]Welk programma[/b:99d2a115a6]:
  • Krijg je nog steeds die activatiemelding?
    En hoe draait Windows momenteel?

    Doe ook het volgende:

    [b:747145afed]Welk programma[/b:747145afed]:
  • [quote:988bb6aa98="Abraham54"]Krijg je nog steeds die activatiemelding?
    En hoe draait Windows momenteel?

    Doe ook het volgende:

    [b:988bb6aa98]Welk programma[/b:988bb6aa98]:

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.