Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

pc sluit spontaan af en start weer op

Anoniem
erika0401
29 antwoorden
  • op advies verplaatst vanuit anders (hardware)

    sinds een tijdje ontstaan steeds meer problemen met mijn acer aspire M5810. Internet Explorer kan steeds meer sites (bv buienradar of vliegtickets) niet meer tonen, het aantal groeit. uitwijken naar Chrome is dan de enige optie. Nu sinds een tweetal weken sluit de pc soms spontaan af en start weer op, de meeste keren tijdens het online gamen (al jaren een abonnement bij IWIN zonder problemen), maar soms ook tijdens het branden van een dvd vanuit een fotobewerkingsprogramma. Wie kan mij helpen? Ik gebruik regelmatig ccleaner en scan ook regelmatig.
    Malware bytes scan levert 0,0 op. Ik heb OLT gedownload en gedraaid. hieronder de resultaten.

    OTL logfile created on: 12/11/2012 10:08:29 PM - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\erika\Downloads
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000409 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

    5.99 Gb Total Physical Memory | 3.93 Gb Available Physical Memory | 65.59% Memory free
    11.98 Gb Paging File | 9.96 Gb Available in Paging File | 83.10% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 458.95 Gb Total Space | 122.58 Gb Free Space | 26.71% Space Free | Partition Type: NTFS
    Drive D: | 459.46 Gb Total Space | 459.35 Gb Free Space | 99.97% Space Free | Partition Type: NTFS

    Computer Name: ERIKA-PC | User Name: erika | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

  • hierbij de rest van de OLT logs:
    @Alternate Data Stream - 157 bytes -> C:\ProgramData\Temp:A204137B
    @Alternate Data Stream - 157 bytes -> C:\ProgramData\Temp:3C4C57F9
    @Alternate Data Stream - 155 bytes -> C:\ProgramData\Temp:DB46F7D7
    @Alternate Data Stream - 152 bytes -> C:\ProgramData\Temp:CDC3D578
    @Alternate Data Stream - 152 bytes -> C:\ProgramData\Temp:1D8B732A
    @Alternate Data Stream - 151 bytes -> C:\ProgramData\Temp:95B5F7D3
    @Alternate Data Stream - 151 bytes -> C:\ProgramData\Temp:07E55929
    @Alternate Data Stream - 147 bytes -> C:\ProgramData\Temp:4790A691
    @Alternate Data Stream - 146 bytes -> C:\ProgramData\Temp:26B7A916
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:F5D81BA1
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:EAB5D262
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:8396B0AE
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:481DAC2B
    @Alternate Data Stream - 145 bytes -> C:\ProgramData\Temp:24386795
    @Alternate Data Stream - 144 bytes -> C:\ProgramData\Temp:AD5AB506
    @Alternate Data Stream - 143 bytes -> C:\ProgramData\Temp:EBDA021F
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:F24AD862
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:250A84D5
    @Alternate Data Stream - 142 bytes -> C:\ProgramData\Temp:0FC57F99
    @Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp:4AC6A521
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:0C2A22D4
    @Alternate Data Stream - 140 bytes -> C:\ProgramData\Temp:093F44E8
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:D2DC4A11
    @Alternate Data Stream - 139 bytes -> C:\ProgramData\Temp:14AD1C14
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:B1BFD26C
    @Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:5D7E5A8F
    @Alternate Data Stream - 137 bytes -> C:\ProgramData\Temp:DDA2D0EB
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:F73EA84D
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:DCD9D80A
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:898109B4
    @Alternate Data Stream - 135 bytes -> C:\ProgramData\Temp:4C7FC755
    @Alternate Data Stream - 134 bytes -> C:\ProgramData\Temp:9F222B60
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:F1CBBAF0
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:A93A1878
    @Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:0F88E176
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:F3E112E0
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:7961507B
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:4D066AD2
    @Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:09B77012
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:EA21CA80
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:B66227B5
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:335F49EA
    @Alternate Data Stream - 131 bytes -> C:\ProgramData\Temp:27D1368B
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:EF258AD5
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:45F36D2E
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:1D32EC29
    @Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:020106A2
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:7F66BF58
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:52C5F022
    @Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:3AAFEFCD
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:25BA2318
    @Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:0F16D679
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:5FCC54B7
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:03DF2E8E
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:E1F04E8D
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:4D3521E6
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:3ED71AF9
    @Alternate Data Stream - 124 bytes -> C:\ProgramData\Temp:2F1D743F
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:C9515506
    @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:91A12471
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:C3CB23B4
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:AB7A26C6
    @Alternate Data Stream - 122 bytes -> C:\ProgramData\Temp:5947273C
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:7FEAB9B8
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:7C44248C
    @Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:6425A235
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:F10C2DA8
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:A5F11720
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:42C1964D
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:34296815
    @Alternate Data Stream - 120 bytes -> C:\ProgramData\Temp:05321270
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:C62F5141
    @Alternate Data Stream - 119 bytes -> C:\ProgramData\Temp:34C416C8
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:D9CED075
    @Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:9C93EDE6
    @Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:30AF8E0D
    @Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:17927369
    @Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:48C1DDAA
    @Alternate Data Stream - 104 bytes -> C:\ProgramData\Temp:12C2EF8D
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:C3177403
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:5070F1A6

    < End of report >

    OTL Extras logfile created on: 12/11/2012 10:08:30 PM - Run 1
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\erika\Downloads
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 00000409 | Country: Nederland | Language: NLD | Date Format: d-M-yyyy

    5.99 Gb Total Physical Memory | 3.93 Gb Available Physical Memory | 65.59% Memory free
    11.98 Gb Paging File | 9.96 Gb Available in Paging File | 83.10% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 458.95 Gb Total Space | 122.58 Gb Free Space | 26.71% Space Free | Partition Type: NTFS
    Drive D: | 459.46 Gb Total Space | 459.35 Gb Free Space | 99.97% Space Free | Partition Type: NTFS

    Computer Name: ERIKA-PC | User Name: erika | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
    Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

  • [b:37f9340498]Sluit voordat
  • hierbij het resultaat, ik ben benieuwd…..

    All processes killed
    ========== OTL ==========
    ADS C:\ProgramData\Temp:359B5EAB deleted successfully.
    ADS C:\ProgramData\Temp:A0339DEA deleted successfully.
    ADS C:\ProgramData\Temp:9A577758 deleted successfully.
    ADS C:\ProgramData\Temp:EB79FDF8 deleted successfully.
    ADS C:\ProgramData\Temp:B392E17F deleted successfully.
    ADS C:\ProgramData\Temp:E7DB8FFE deleted successfully.
    ADS C:\ProgramData\Temp:A27E4050 deleted successfully.
    ADS C:\ProgramData\Temp:4A2289A6 deleted successfully.
    ADS C:\ProgramData\Temp:86B6EFD4 deleted successfully.
    ADS C:\ProgramData\Temp:0E544CF5 deleted successfully.
    ADS C:\ProgramData\Temp:F5F91AE1 deleted successfully.
    ADS C:\ProgramData\Temp:67B858FB deleted successfully.
    ADS C:\ProgramData\Temp:5795E8B2 deleted successfully.
    ADS C:\ProgramData\Temp:A72132CC deleted successfully.
    ADS C:\ProgramData\Temp:1B7D2A38 deleted successfully.
    ADS C:\ProgramData\Temp:43D7076B deleted successfully.
    ADS C:\ProgramData\Temp:0FAE0193 deleted successfully.
    ADS C:\ProgramData\Temp:E44513D0 deleted successfully.
    ADS C:\ProgramData\Temp:0EDE4A51 deleted successfully.
    ADS C:\ProgramData\Temp:C720B492 deleted successfully.
    ADS C:\ProgramData\Temp:BD23791F deleted successfully.
    ADS C:\ProgramData\Temp:F5905B47 deleted successfully.
    ADS C:\ProgramData\Temp:556B8A38 deleted successfully.
    ADS C:\ProgramData\Temp:157C8CAF deleted successfully.
    ADS C:\ProgramData\Temp:52454683 deleted successfully.
    ADS C:\ProgramData\Temp:1E3E34AA deleted successfully.
    ADS C:\ProgramData\Temp:158AC5F5 deleted successfully.
    ADS C:\ProgramData\Temp:0A53FC92 deleted successfully.
    ADS C:\ProgramData\Temp:0FE90888 deleted successfully.
    ADS C:\ProgramData\Temp:D4A06B44 deleted successfully.
    ADS C:\ProgramData\Temp:A204137B deleted successfully.
    ADS C:\ProgramData\Temp:3C4C57F9 deleted successfully.
    ADS C:\ProgramData\Temp:DB46F7D7 deleted successfully.
    ADS C:\ProgramData\Temp:CDC3D578 deleted successfully.
    ADS C:\ProgramData\Temp:1D8B732A deleted successfully.
    ADS C:\ProgramData\Temp:95B5F7D3 deleted successfully.
    ADS C:\ProgramData\Temp:07E55929 deleted successfully.
    ADS C:\ProgramData\Temp:4790A691 deleted successfully.
    ADS C:\ProgramData\Temp:26B7A916 deleted successfully.
    ADS C:\ProgramData\Temp:F5D81BA1 deleted successfully.
    ADS C:\ProgramData\Temp:EAB5D262 deleted successfully.
    ADS C:\ProgramData\Temp:8396B0AE deleted successfully.
    ADS C:\ProgramData\Temp:481DAC2B deleted successfully.
    ADS C:\ProgramData\Temp:24386795 deleted successfully.
    ADS C:\ProgramData\Temp:AD5AB506 deleted successfully.
    ADS C:\ProgramData\Temp:EBDA021F deleted successfully.
    ADS C:\ProgramData\Temp:F24AD862 deleted successfully.
    ADS C:\ProgramData\Temp:250A84D5 deleted successfully.
    ADS C:\ProgramData\Temp:0FC57F99 deleted successfully.
    ADS C:\ProgramData\Temp:4AC6A521 deleted successfully.
    ADS C:\ProgramData\Temp:0C2A22D4 deleted successfully.
    ADS C:\ProgramData\Temp:093F44E8 deleted successfully.
    ADS C:\ProgramData\Temp:D2DC4A11 deleted successfully.
    ADS C:\ProgramData\Temp:14AD1C14 deleted successfully.
    ADS C:\ProgramData\Temp:B1BFD26C deleted successfully.
    ADS C:\ProgramData\Temp:5D7E5A8F deleted successfully.
    ADS C:\ProgramData\Temp:DDA2D0EB deleted successfully.
    ADS C:\ProgramData\Temp:F73EA84D deleted successfully.
    ADS C:\ProgramData\Temp:DCD9D80A deleted successfully.
    ADS C:\ProgramData\Temp:898109B4 deleted successfully.
    ADS C:\ProgramData\Temp:4C7FC755 deleted successfully.
    ADS C:\ProgramData\Temp:9F222B60 deleted successfully.
    ADS C:\ProgramData\Temp:F1CBBAF0 deleted successfully.
    ADS C:\ProgramData\Temp:A93A1878 deleted successfully.
    ADS C:\ProgramData\Temp:0F88E176 deleted successfully.
    ADS C:\ProgramData\Temp:F3E112E0 deleted successfully.
    ADS C:\ProgramData\Temp:7961507B deleted successfully.
    ADS C:\ProgramData\Temp:4D066AD2 deleted successfully.
    ADS C:\ProgramData\Temp:09B77012 deleted successfully.
    ADS C:\ProgramData\Temp:EA21CA80 deleted successfully.
    ADS C:\ProgramData\Temp:B66227B5 deleted successfully.
    ADS C:\ProgramData\Temp:335F49EA deleted successfully.
    ADS C:\ProgramData\Temp:27D1368B deleted successfully.
    ADS C:\ProgramData\Temp:EF258AD5 deleted successfully.
    ADS C:\ProgramData\Temp:45F36D2E deleted successfully.
    ADS C:\ProgramData\Temp:1D32EC29 deleted successfully.
    ADS C:\ProgramData\Temp:020106A2 deleted successfully.
    ADS C:\ProgramData\Temp:7F66BF58 deleted successfully.
    ADS C:\ProgramData\Temp:52C5F022 deleted successfully.
    ADS C:\ProgramData\Temp:3AAFEFCD deleted successfully.
    ADS C:\ProgramData\Temp:25BA2318 deleted successfully.
    ADS C:\ProgramData\Temp:0F16D679 deleted successfully.
    ADS C:\ProgramData\Temp:5FCC54B7 deleted successfully.
    ADS C:\ProgramData\Temp:03DF2E8E deleted successfully.
    ADS C:\ProgramData\Temp:E1F04E8D deleted successfully.
    ADS C:\ProgramData\Temp:4D3521E6 deleted successfully.
    ADS C:\ProgramData\Temp:3ED71AF9 deleted successfully.
    ADS C:\ProgramData\Temp:2F1D743F deleted successfully.
    ADS C:\ProgramData\Temp:C9515506 deleted successfully.
    ADS C:\ProgramData\Temp:91A12471 deleted successfully.
    ADS C:\ProgramData\Temp:C3CB23B4 deleted successfully.
    ADS C:\ProgramData\Temp:AB7A26C6 deleted successfully.
    ADS C:\ProgramData\Temp:5947273C deleted successfully.
    ADS C:\ProgramData\Temp:7FEAB9B8 deleted successfully.
    ADS C:\ProgramData\Temp:7C44248C deleted successfully.
    ADS C:\ProgramData\Temp:6425A235 deleted successfully.
    ADS C:\ProgramData\Temp:F10C2DA8 deleted successfully.
    ADS C:\ProgramData\Temp:A5F11720 deleted successfully.
    ADS C:\ProgramData\Temp:42C1964D deleted successfully.
    ADS C:\ProgramData\Temp:34296815 deleted successfully.
    ADS C:\ProgramData\Temp:05321270 deleted successfully.
    ADS C:\ProgramData\Temp:C62F5141 deleted successfully.
    ADS C:\ProgramData\Temp:34C416C8 deleted successfully.
    ADS C:\ProgramData\Temp:D9CED075 deleted successfully.
    ADS C:\ProgramData\Temp:9C93EDE6 deleted successfully.
    ADS C:\ProgramData\Temp:30AF8E0D deleted successfully.
    ADS C:\ProgramData\Temp:17927369 deleted successfully.
    ADS C:\ProgramData\Temp:48C1DDAA deleted successfully.
    ADS C:\ProgramData\Temp:12C2EF8D deleted successfully.
    ADS C:\ProgramData\Temp:C3177403 deleted successfully.
    ADS C:\ProgramData\Temp:5070F1A6 deleted successfully.
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    ========== FILES ==========
  • We kijken verder:

  • log van adwcleaner, stap 1:

    # AdwCleaner v2.100 - Verslag gemaakt op 15/12/2012 om 13:59:06
    # Geactualiseerd op 09/12/2012 door Xplode
    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Gebruiker : erika - ERIKA-PC
    # Opstarten Modus : Normale modus
    # Gelanceerd vanaf : C:\Users\erika\Downloads\adwcleaner.exe
    # Optie [Verwijderen]


    ***** [Diensten] *****


    ***** [Files / Mappen] *****

    Map Verwijdert : C:\Program Files (x86)\Wajam
    Map Verwijdert : C:\ProgramData\Ask
    Map Verwijdert : C:\ProgramData\boost_interprocess
    Map Verwijdert : C:\ProgramData\iWin
    Map Verwijdert : C:\ProgramData\Partner
    Map Verwijdert : C:\Users\erika\AppData\LocalLow\boost_interprocess
    Map Verwijdert : C:\Users\erika\AppData\Roaming\iWin

    ***** [Register] *****

    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\searchqutoolbar
    Sleutel Verwijdert : HKCU\Software\DataMngr
    Sleutel Verwijdert : HKCU\Software\Softonic
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
    Sleutel Verwijdert : HKLM\Software\Conduit
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
    Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{E3ED53C5-7AD5-4DF5-9734-AFB6E7E5D9DB}
    Sleutel Verwijdert : HKLM\SOFTWARE\DataMngr
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
    Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
    Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
    Waarde Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]

    ***** [Browsers] *****

    -\\ Internet Explorer v9.0.8112.16457

    [OK] Het register bevat geen enkele ongeoorloofde invoer.

    -\\ Google Chrome v23.0.1271.97

    File : C:\Users\erika\AppData\Local\Google\Chrome\User Data\Default\Preferences

    Verwijdert [l.51] : icon_url = "hxxp://isearch.avg.com/favicon.ico",
    Verwijdert [l.54] : keyword = "isearch.avg.com",
    Verwijdert [l.57] : search_url = "hxxp://isearch.avg.com/search?cid={25E2DEA5-01F7-464C-8BC3-8D18EDA35EB6}&mid=84[…]

    *************************

    AdwCleaner[S1].txt - [3728 octets] - [15/12/2012 13:59:06]

    ########## EOF - C:\AdwCleaner[S1].txt - [3788 octets] ##########
  • log van combofix, stap 2:

    ComboFix 12-12-14.01 - erika 15-12-2012 14:12:39.1.4 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.6135.4228 [GMT 1:00]
    Gestart vanuit: c:\users\erika\Downloads\ComboFix.exe
    AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
    SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\program files (x86)\Common Files\Acer GameZone online.ico
    c:\program files (x86)\iWin Games\iWinGamesHookIE.dll
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.exe.lnk
    c:\users\erika\AppData\Roaming\.#
    c:\users\erika\Documents\~WRL2218.tmp
    c:\users\erika\Documents\~WRL2407.tmp
    c:\users\erika\Documents\~WRL2691.tmp
    c:\users\erika\Documents\7E88F836.tmp
    c:\users\erika\Documents\FE4C1FF4.tmp
    c:\windows\IsUn0413.exe
    c:\windows\wininit.ini
    D:\install.exe
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    ——-\Service_Boonty Games
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-11-15 to 2012-12-15 ))))))))))))))))))))))))))))))
    .
    .
    2012-12-15 13:18 . 2012-12-15 13:18 ——– d—–w- c:\users\UpdatusUser\AppData\Local\temp
    2012-12-15 13:18 . 2012-12-15 13:18 ——– d—–w- c:\users\UpdatusUser.erika-PC\AppData\Local\temp
    2012-12-15 09:11 . 2012-12-15 09:11 ——– d—–w- C:\_OTL
    2012-12-15 08:47 . 2012-11-08 17:24 9125352 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D35FA09F-7552-41C4-BFE4-7F43381F42BF}\mpengine.dll
    2012-12-13 08:11 . 2012-11-08 17:24 9125352 —-a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2012-12-12 07:51 . 2012-11-09 05:45 2048 —-a-w- c:\windows\system32\tzres.dll
    2012-12-12 07:50 . 2012-11-02 05:59 478208 —-a-w- c:\windows\system32\dpnet.dll
    2012-12-12 07:50 . 2012-11-02 05:11 376832 —-a-w- c:\windows\SysWow64\dpnet.dll
    2012-12-10 09:00 . 2012-12-10 09:00 ——– d—–w- c:\program files (x86)\Common Files\Java
    2012-12-10 08:59 . 2012-12-10 08:59 ——– d—–w- c:\program files (x86)\Java
    2012-12-07 18:48 . 2012-12-07 19:25 ——– d—–w- c:\users\erika\AppData\Roaming\Hidden Objects Expert
    2012-11-30 15:06 . 2012-12-04 18:58 ——– d—–w- c:\programdata\Freemake
    2012-11-30 15:05 . 2012-12-04 18:58 ——– d—–w- c:\program files (x86)\Freemake
    2012-11-28 13:25 . 2012-11-28 13:25 ——– d—–w- c:\users\erika\AppData\Local\DDMSettings
    2012-11-28 13:23 . 2012-11-28 13:24 ——– d—–w- c:\program files\DivX
    2012-11-28 13:23 . 2012-11-28 13:24 ——– d—–w- c:\program files (x86)\Common Files\DivX Shared
    2012-11-28 13:21 . 2012-11-28 13:24 ——– d—–w- c:\program files (x86)\DivX
    2012-11-28 13:20 . 2012-11-28 13:25 ——– d—–w- c:\programdata\DivX
    2012-11-28 07:56 . 2012-11-28 07:56 972264 ——w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1BBDD670-5C90-4EB5-B5CB-8BCC316E129B}\gapaengine.dll
    2012-11-26 18:42 . 2012-12-15 13:01 ——– d—–r- c:\users\erika\Dropbox
    2012-11-26 18:40 . 2012-12-15 13:01 ——– d—–w- c:\users\erika\AppData\Roaming\Dropbox
    2012-11-25 18:55 . 2012-11-25 18:55 ——– d—–w- c:\programdata\easetech
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-12-12 21:13 . 2009-12-07 16:08 67413224 —-a-w- c:\windows\system32\MRT.exe
    2012-12-11 18:46 . 2012-03-30 05:49 697272 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-12-11 18:46 . 2011-05-15 12:19 73656 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-11-13 20:29 . 2012-11-13 20:29 354216 —-a-w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
    2012-10-16 08:38 . 2012-11-28 07:52 135168 —-a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
    2012-10-16 08:38 . 2012-11-28 07:52 350208 —-a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
    2012-10-16 07:39 . 2012-11-28 07:52 561664 —-a-w- c:\windows\apppatch\AcLayers.dll
    2012-10-09 18:17 . 2012-11-14 07:49 55296 —-a-w- c:\windows\system32\dhcpcsvc6.dll
    2012-10-09 18:17 . 2012-11-14 07:49 226816 —-a-w- c:\windows\system32\dhcpcore6.dll
    2012-10-09 17:40 . 2012-11-14 07:49 44032 —-a-w- c:\windows\SysWow64\dhcpcsvc6.dll
    2012-10-09 17:40 . 2012-11-14 07:49 193536 —-a-w- c:\windows\SysWow64\dhcpcore6.dll
    2012-10-04 16:40 . 2012-12-12 07:51 44032 —-a-w- c:\windows\apppatch\acwow64.dll
    2012-10-03 17:56 . 2012-11-14 07:49 1914248 —-a-w- c:\windows\system32\drivers\tcpip.sys
    2012-10-03 17:44 . 2012-11-14 07:49 70656 —-a-w- c:\windows\system32
    laapi.dll
    2012-10-03 17:44 . 2012-11-14 07:49 303104 —-a-w- c:\windows\system32
    lasvc.dll
    2012-10-03 17:44 . 2012-11-14 07:49 246272 —-a-w- c:\windows\system32
    etcorehc.dll
    2012-10-03 17:44 . 2012-11-14 07:49 18944 —-a-w- c:\windows\system32
    etevent.dll
    2012-10-03 17:44 . 2012-11-14 07:49 216576 —-a-w- c:\windows\system32
    csi.dll
    2012-10-03 17:42 . 2012-11-14 07:49 569344 —-a-w- c:\windows\system32\iphlpsvc.dll
    2012-10-03 16:42 . 2012-11-14 07:49 18944 —-a-w- c:\windows\SysWow64
    etevent.dll
    2012-10-03 16:42 . 2012-11-14 07:49 175104 —-a-w- c:\windows\SysWow64
    etcorehc.dll
    2012-10-03 16:42 . 2012-11-14 07:49 156672 —-a-w- c:\windows\SysWow64
    csi.dll
    2012-10-03 16:07 . 2012-11-14 07:49 45568 —-a-w- c:\windows\system32\drivers\tcpipreg.sys
    2012-10-03 07:50 . 2012-06-13 08:35 972192 ——w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
    2012-10-02 22:21 . 2012-10-11 07:17 9146728 —-a-w- c:\windows\system32
    vcuda.dll
    2012-10-02 22:21 . 2012-10-11 07:17 7697768 —-a-w- c:\windows\SysWow64
    vcuda.dll
    2012-10-02 22:21 . 2012-10-11 07:17 7414632 —-a-w- c:\windows\system32
    vopencl.dll
    2012-10-02 22:21 . 2012-10-11 07:17 6127464 —-a-w- c:\windows\SysWow64
    vopencl.dll
    2012-10-02 22:21 . 2012-10-11 07:17 2747240 —-a-w- c:\windows\system32
    vcuvid.dll
    2012-10-02 22:21 . 2012-10-11 07:17 26331496 —-a-w- c:\windows\system32
    voglv64.dll
    2012-10-02 22:21 . 2012-10-11 07:17 2574696 —-a-w- c:\windows\SysWow64
    vcuvid.dll
    2012-10-02 22:21 . 2012-10-11 07:17 2218344 —-a-w- c:\windows\system32
    vcuvenc.dll
    2012-10-02 22:21 . 2012-10-11 07:17 19906920 —-a-w- c:\windows\SysWow64
    voglv32.dll
    2012-10-02 22:21 . 2012-10-11 07:17 1867112 —-a-w- c:\windows\SysWow64
    vcuvenc.dll
    2012-10-02 22:21 . 2012-10-11 07:17 18252136 —-a-w- c:\windows\system32
    vd3dumx.dll
    2012-10-02 22:21 . 2012-10-11 07:17 13443944 —-a-w- c:\windows\system32\drivers
    vlddmkm.sys
    2012-10-02 22:21 . 2012-10-11 07:17 25256296 —-a-w- c:\windows\system32
    vcompiler.dll
    2012-10-02 22:21 . 2012-10-11 07:17 17559912 —-a-w- c:\windows\SysWow64
    vcompiler.dll
    2012-10-02 22:21 . 2012-09-16 14:57 15309160 —-a-w- c:\windows\SysWow64
    vd3dum.dll
    2012-10-02 22:21 . 2012-09-16 14:57 1482600 —-a-w- c:\windows\system32
    vdispgenco64.dll
    2012-10-02 22:21 . 2011-10-25 16:46 1760104 —-a-w- c:\windows\system32
    vdispco64.dll
    2012-10-02 22:21 . 2010-04-03 20:55 12501352 —-a-w- c:\windows\SysWow64
    vwgf2um.dll
    2012-10-02 22:21 . 2009-08-15 04:47 14922600 —-a-w- c:\windows\system32
    vwgf2umx.dll
    2012-10-02 22:21 . 2009-08-15 04:47 2731880 —-a-w- c:\windows\system32
    vapi64.dll
    2012-10-02 22:21 . 2009-08-15 04:47 2428776 —-a-w- c:\windows\SysWow64
    vapi.dll
    2012-10-02 19:51 . 2010-04-03 16:42 3293544 —-a-w- c:\windows\system32
    vsvc64.dll
    2012-10-02 19:51 . 2010-04-03 16:42 6200680 —-a-w- c:\windows\system32
    vcpl.dll
    2012-10-02 19:50 . 2010-04-03 16:42 891240 —-a-w- c:\windows\system32
    vvsvc.exe
    2012-10-02 19:50 . 2010-04-03 16:42 2557800 —-a-w- c:\windows\system32
    vsvcr.dll
    2012-10-02 19:50 . 2010-04-03 16:42 118120 —-a-w- c:\windows\system32
    vmctray.dll
    2012-10-02 19:50 . 2009-07-14 17:51 63336 —-a-w- c:\windows\system32
    vshext.dll
    2012-10-02 11:15 . 2012-10-02 11:15 430952 —-a-w- c:\windows\SysWow64
    vStreaming.exe
    2012-09-29 17:54 . 2012-02-19 17:47 25928 —-a-w- c:\windows\system32\drivers\mbam.sys
    2012-09-25 22:47 . 2012-11-14 07:48 78336 —-a-w- c:\windows\SysWow64\synceng.dll
    2012-09-25 22:46 . 2012-11-14 07:48 95744 —-a-w- c:\windows\system32\synceng.dll
    2012-09-24 13:32 . 2012-05-10 07:37 477168 —-a-w- c:\windows\SysWow64
    pdeployJava1.dll
    2012-09-24 13:32 . 2010-05-11 14:39 473072 —-a-w- c:\windows\SysWow64\deployJava1.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
    @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
    [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
    2009-08-06 17:18 120104 —-a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-15 39408]
    "ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2004-04-17 196608]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-08-05 181480]
    "PivotSoftware"="c:\program files (x86)\Portrait Displays\Pivot Software\wpctrl.exe" [2007-02-09 694008]
    "NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648]
    "JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
    "ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2004-04-13 69632]
    "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
    "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208]
    "Hotkey Utility"="c:\program files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe" [2009-08-18 629280]
    "EgisTecLiveUpdate"="c:\program files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [2009-08-04 199464]
    "DT ACR"="c:\program files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe" [2010-10-26 121456]
    "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
    "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2009-08-12 261888]
    "ArcadeDeluxeAgent"="c:\program files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-08-01 128296]
    "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
    "Adobe Photo Downloader"="c:\program files (x86)\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-22 63712]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
    "DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2012-11-13 450560]
    "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2012-11-01 1263512]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896]
    .
    c:\users\erika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\erika\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-11-22 28791288]
    OneNote 2010 Schermopname en Snel starten.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
    Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2009-12-8 1207312]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "mixer2"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 Bonifay;Bonifay;c:\windows\system32\DRIVERS\Bonifay.sys [x]
    R3 Gonzales;Gonzales;c:\windows\system32\DRIVERS\Gonzales.sys [x]
    R3 IAMTVE;Driver for Intel(R) Active Management Technology - KCS;c:\windows\system32\DRIVERS\IAMTVE.sys [x]
    R3 IAMTXPE;Driver for Intel(R) Active Management Technology - KCS;c:\windows\system32\DRIVERS\IAMTXPE.sys [x]
    R3 ioatdma1;ioatdma1;c:\windows\System32\Drivers\qd162x64.sys [2009-06-12 40144]
    R3 ioatdma2;Intel(R) QuickData Technology device ver.2;c:\windows\System32\Drivers\qd262x64.sys [2009-06-12 41680]
    R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS
    etr28x.sys [2009-06-10 620544]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
    R3 NisSrv;Microsoft Netwerkinspectie;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-24 1255736]
    R4 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2010-04-16 109168]
    R4 pr2apx8b;Super Architect 3D Zilver V12 Ref 4206 Drivers Auto Removal (pr2apx8b);c:\windows\system32\pr2apx8b.exe svc [x]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S0 pe3apx8b;Super Architect 3D Zilver V12 Ref 4206 Environment Driver (pe3apx8b);c:\windows\system32\drivers\pe3apx8b.sys [2007-12-31 72880]
    S0 ps7apx8b;Super Architect 3D Zilver V12 Ref 4206 Synchronization Driver (ps7apx8b);c:\windows\system32\drivers\ps7apx8b.sys [2007-12-31 103608]
    S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-02 22576]
    S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-02 20016]
    S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-02 60464]
    S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
    S2 iWinTrusted;iWinTrusted;c:\program files (x86)\iWin Games\iWinTrusted.exe [2011-04-08 176848]
    S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]
    S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]
    S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-06 311592]
    S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-12 62208]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision
    vSCPAPISvr.exe [2012-10-02 382824]
    S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
    S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [2009-06-22 273072]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-29 25928]
    .
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-12-15 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-30 18:46]
    .
    2012-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-30 15:40]
    .
    2012-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-01-30 15:40]
    .
    2012-12-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1613732923-4281746086-2680225796-1000Core.job
    - c:\users\erika\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-23 11:50]
    .
    2012-12-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1613732923-4281746086-2680225796-1000UA.job
    - c:\users\erika\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-23 11:50]
    .
    .
    ——— X64 Entries ———–
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\erika\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
    @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
    [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
    2009-08-06 17:19 137512 —-a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
    "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-12-30 172032]
    "Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-06-16 1833504]
    "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-06-16 7883296]
    "mwlDaemon"="c:\program files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2009-08-06 349480]
    "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
    "IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
    .
    ——- Bijkomende Scan ——-
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.google.nl/
    mStart Page = hxxp://homepage.acer.com
    dr.aspx?b=ACAW&l=0413&m=aspire_m5810&r=17361209cn05973363k25qx861wl67
    mLocal Page = c:\windows\SysWOW64\blank.htm
    Trusted Zone: umcg.nl\woa
    Trusted Zone: vliegtickets.nl\boeking
    Trusted Zone: vliegtickets.nl\www
    TCP: DhcpNameServer = 192.168.1.1
    DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} - hxxp://www.myheritage.nl/Genoogle/Components/ActiveX/SearchEngineQuery.dll
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    BHO-{8CA5ED52-F3FB-4414-A105-2E3491156990} - c:\program files (x86)\iWin Games\iWinGamesHookIE.dll
    Toolbar-Locked - (no file)
    Toolbar-10 - (no file)
    SafeBoot-mcmscsvc
    SafeBoot-MCODS
    HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
    Toolbar-Locked - (no file)
    Toolbar-10 - (no file)
    AddRemove-Adobe Photoshop Elements 1.0 - c:\windows\ISUN0413.EXE
    AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
    .
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
    "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    c:\program files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
    c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2012-12-15 14:24:40 - machine werd herstart
    ComboFix-quarantined-files.txt 2012-12-15 13:24
    .
    Pre-Run: 128.595.476.480 bytes beschikbaar
    Post-Run: 127.926.239.232 bytes beschikbaar
    .
    - - End Of File - - 478871A9DF2757F3208D2DE989860E04







































  • Laat maar weten hoe het nu gaat.
  • helaas, inmiddels alweer twee keer een BlueScreen foutmelding gehad, waardoor de pc afsluit en weer opstart.
    Kan ik nog iets anders proberen??
  • Laten we dan maar eens je PC als geheel in ogenschouw nemen:

    [b:7f20a63c8a]Welk programma[/b:7f20a63c8a]:
  • hierbij het resultaat:

    http://speccy.piriform.com
    esults/i2CFvD1hjZ2UCKnL0M50GDK
  • Wil je een nieuwe Speccy link posten, wanneer je PC een paar uur in gebruik is?
  • Hierbij het resultaat, pc staat normalerwijze de hele dag aan, nu ter test even wat meer activiteiten uitgevoerd.

    http://speccy.piriform.com
    esults/ZB7nSXUUA6pMshJ6EBWyhZe

    Overigens heb ik gisteren de pc weer teruggezet in een ruimere kast, bedacht me dat ik vlak voor de start van de problemen de pc in mijn nieuwe computerbureau in een net passende ruimte had geplaatst. Sinds gisteravond geen bluescreen nog weer gehad, ook niet bij het spelletje waar het met regelmaat gebeurde. Kan dat mogelijk ook nog een oorzaak zijn (geweest)??
  • Mooi, dezelfde lage temps - dus daar ligt het niet aan.

    Download [b:acb16b0322] en plaats het op je bureaublad.
    [list:acb16b0322]
    [*:acb16b0322] Voordat je TDSSKiller uitvoert is het raadzaam om de onderstaande handleiding van TDSSKiller te raadplegen.
    [list:acb16b0322]
    [*:acb16b0322] [b:acb16b0322][/b:acb16b0322][/list:u:acb16b0322]
    [*:acb16b0322] Dubbelklik op [b:acb16b0322]TDSSKiller.exe[/b:acb16b0322] om de tool te starten. ([i:acb16b0322]Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken[/i:acb16b0322]).
    [*:acb16b0322] [i:acb16b0322]Als er door TDSSkiller een update wordt gevonden klikt u op de knop "[b:acb16b0322]Load update[/b:acb16b0322]"[/i:acb16b0322]
    [img:acb16b0322]http://www.imgdumper.nl/uploads6/506422ecca8b3/506422ecc81a0-TDSSkiller%28update%29.jpg[/img:acb16b0322]
    [*:acb16b0322] [i:acb16b0322]Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.[/i:acb16b0322]
    [*:acb16b0322] [i:acb16b0322]Start nu TDSSkiller opnieuw.[/i:acb16b0322]
    [*:acb16b0322] Klik op "[b:acb16b0322]Change parameters[/b:acb16b0322]" en zorg dat de onderstaande opties allemaal aangevinkt zijn.
    [img:acb16b0322]http://www.imgdumper.nl/uploads6/5064230056569/506423005368c-TDSSkiller%28opties%29.jpg[/img:acb16b0322]
    [*:acb16b0322] Klik op de knop "[b:acb16b0322]Start Scan[/b:acb16b0322]" en volg de instructies.
    [list:acb16b0322]
    [*:acb16b0322] Gebruik
  • Hierbij de TDSSKiller log:
    19:02:49.0672 6040 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    19:02:49.0953 6040 ============================================================
    19:02:49.0953 6040 Current date / time: 2012/12/20 19:02:49.0953
    19:02:49.0953 6040 SystemInfo:
    19:02:49.0953 6040
    19:02:49.0953 6040 OS Version: 6.1.7601 ServicePack: 1.0
    19:02:49.0953 6040 Product type: Workstation
    19:02:49.0953 6040 ComputerName: ERIKA-PC
    19:02:49.0953 6040 UserName: erika
    19:02:49.0953 6040 Windows directory: C:\Windows
    19:02:49.0953 6040 System windows directory: C:\Windows
    19:02:49.0953 6040 Running under WOW64
    19:02:49.0953 6040 Processor architecture: Intel x64
    19:02:49.0953 6040 Number of processors: 4
    19:02:49.0953 6040 Page size: 0x1000
    19:02:49.0953 6040 Boot type: Normal boot
    19:02:49.0953 6040 ============================================================
    19:02:50.0764 6040 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    19:02:50.0826 6040 ============================================================
    19:02:50.0826 6040 \Device\Harddisk0\DR0:
    19:02:50.0826 6040 MBR partitions:
    19:02:50.0826 6040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
    19:02:50.0826 6040 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x395E7000
    19:02:50.0826 6040 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B019800, BlocksNum 0x396EC800
    19:02:50.0826 6040 ============================================================
    19:02:50.0858 6040 C: <-> \Device\Harddisk0\DR0\Partition2
    19:02:50.0889 6040 D: <-> \Device\Harddisk0\DR0\Partition3
    19:02:50.0889 6040 ============================================================
    19:02:50.0889 6040 Initialize success
    19:02:50.0889 6040 ============================================================
    19:04:10.0792 5048 ============================================================
    19:04:10.0792 5048 Scan started
    19:04:10.0792 5048 Mode: Manual; SigCheck; TDLFS;
    19:04:10.0792 5048 ============================================================
    19:04:11.0057 5048 ================ Scan system memory ========================
    19:04:11.0057 5048 System memory - ok
    19:04:11.0057 5048 ================ Scan services =============================
    19:04:11.0167 5048 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    19:04:11.0260 5048 1394ohci - ok
    19:04:11.0276 5048 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    19:04:11.0291 5048 ACPI - ok
    19:04:11.0291 5048 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    19:04:11.0354 5048 AcpiPmi - ok
    19:04:11.0432 5048 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    19:04:11.0463 5048 AdobeFlashPlayerUpdateSvc - ok
    19:04:11.0510 5048 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    19:04:11.0541 5048 adp94xx - ok
    19:04:11.0541 5048 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    19:04:11.0572 5048 adpahci - ok
    19:04:11.0588 5048 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    19:04:11.0603 5048 adpu320 - ok
    19:04:11.0635 5048 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    19:04:11.0744 5048 AeLookupSvc - ok
    19:04:11.0791 5048 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    19:04:11.0853 5048 AFD - ok
    19:04:11.0869 5048 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    19:04:11.0884 5048 agp440 - ok
    19:04:11.0884 5048 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    19:04:11.0900 5048 ALG - ok
    19:04:11.0915 5048 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    19:04:11.0931 5048 aliide - ok
    19:04:11.0931 5048 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    19:04:11.0947 5048 amdide - ok
    19:04:11.0947 5048 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    19:04:11.0993 5048 AmdK8 - ok
    19:04:12.0009 5048 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    19:04:12.0025 5048 AmdPPM - ok
    19:04:12.0040 5048 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    19:04:12.0056 5048 amdsata - ok
    19:04:12.0056 5048 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    19:04:12.0071 5048 amdsbs - ok
    19:04:12.0071 5048 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    19:04:12.0087 5048 amdxata - ok
    19:04:12.0134 5048 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    19:04:12.0212 5048 AppID - ok
    19:04:12.0227 5048 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    19:04:12.0259 5048 AppIDSvc - ok
    19:04:12.0290 5048 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    19:04:12.0352 5048 Appinfo - ok
    19:04:12.0383 5048 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    19:04:12.0399 5048 arc - ok
    19:04:12.0415 5048 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    19:04:12.0430 5048 arcsas - ok
    19:04:12.0461 5048 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    19:04:12.0493 5048 AsyncMac - ok
    19:04:12.0508 5048 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    19:04:12.0524 5048 atapi - ok
    19:04:12.0602 5048 [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag C:\Windows\system32\drivers\atikmdag.sys
    19:04:12.0773 5048 atikmdag - ok
    19:04:12.0805 5048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    19:04:12.0883 5048 AudioEndpointBuilder - ok
    19:04:12.0898 5048 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    19:04:12.0914 5048 AudioSrv - ok
    19:04:12.0961 5048 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    19:04:12.0976 5048 AxInstSV - ok
    19:04:13.0007 5048 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    19:04:13.0023 5048 b06bdrv - ok
    19:04:13.0039 5048 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    19:04:13.0070 5048 b57nd60a - ok
    19:04:13.0085 5048 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    19:04:13.0101 5048 BDESVC - ok
    19:04:13.0101 5048 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    19:04:13.0132 5048 Beep - ok
    19:04:13.0179 5048 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    19:04:13.0226 5048 BFE - ok
    19:04:13.0257 5048 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
    19:04:13.0288 5048 BITS - ok
    19:04:13.0304 5048 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    19:04:13.0335 5048 blbdrive - ok
    19:04:13.0335 5048 Bonifay - ok
    19:04:13.0382 5048 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    19:04:13.0413 5048 bowser - ok
    19:04:13.0413 5048 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    19:04:13.0444 5048 BrFiltLo - ok
    19:04:13.0475 5048 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    19:04:13.0491 5048 BrFiltUp - ok
    19:04:13.0522 5048 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
    19:04:13.0553 5048 BridgeMP - ok
    19:04:13.0585 5048 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    19:04:13.0600 5048 Browser - ok
    19:04:13.0616 5048 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    19:04:13.0631 5048 Brserid - ok
    19:04:13.0647 5048 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    19:04:13.0663 5048 BrSerWdm - ok
    19:04:13.0678 5048 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    19:04:13.0678 5048 BrUsbMdm - ok
    19:04:13.0694 5048 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    19:04:13.0725 5048 BrUsbSer - ok
    19:04:13.0772 5048 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    19:04:13.0834 5048 BthEnum - ok
    19:04:13.0850 5048 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    19:04:13.0865 5048 BTHMODEM - ok
    19:04:13.0912 5048 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    19:04:13.0943 5048 BthPan - ok
    19:04:13.0975 5048 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    19:04:14.0006 5048 BTHPORT - ok
    19:04:14.0021 5048 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    19:04:14.0068 5048 bthserv - ok
    19:04:14.0099 5048 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    19:04:14.0115 5048 BTHUSB - ok
    19:04:14.0131 5048 catchme - ok
    19:04:14.0162 5048 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    19:04:14.0209 5048 cdfs - ok
    19:04:14.0240 5048 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    19:04:14.0255 5048 cdrom - ok
    19:04:14.0302 5048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    19:04:14.0349 5048 CertPropSvc - ok
    19:04:14.0365 5048 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    19:04:14.0380 5048 circlass - ok
    19:04:14.0380 5048 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    19:04:14.0396 5048 CLFS - ok
    19:04:14.0458 5048 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    19:04:14.0474 5048 clr_optimization_v2.0.50727_32 - ok
    19:04:14.0505 5048 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    19:04:14.0505 5048 clr_optimization_v2.0.50727_64 - ok
    19:04:14.0599 5048 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    19:04:14.0614 5048 clr_optimization_v4.0.30319_32 - ok
    19:04:14.0630 5048 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    19:04:14.0630 5048 clr_optimization_v4.0.30319_64 - ok
    19:04:14.0645 5048 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    19:04:14.0677 5048 CmBatt - ok
    19:04:14.0677 5048 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    19:04:14.0692 5048 cmdide - ok
    19:04:14.0723 5048 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
    19:04:14.0770 5048 CNG - ok
    19:04:14.0786 5048 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    19:04:14.0801 5048 Compbatt - ok
    19:04:14.0801 5048 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    19:04:14.0817 5048 CompositeBus - ok
    19:04:14.0833 5048 COMSysApp - ok
    19:04:14.0848 5048 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    19:04:14.0848 5048 crcdisk - ok
    19:04:14.0895 5048 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    19:04:14.0911 5048 CryptSvc - ok
    19:04:14.0957 5048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    19:04:15.0004 5048 DcomLaunch - ok
    19:04:15.0035 5048 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    19:04:15.0067 5048 defragsvc - ok
    19:04:15.0113 5048 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    19:04:15.0129 5048 DfsC - ok
    19:04:15.0145 5048 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    19:04:15.0160 5048 Dhcp - ok
    19:04:15.0176 5048 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    19:04:15.0191 5048 discache - ok
    19:04:15.0207 5048 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    19:04:15.0207 5048 Disk - ok
    19:04:15.0254 5048 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    19:04:15.0285 5048 Dnscache - ok
    19:04:15.0316 5048 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    19:04:15.0379 5048 dot3svc - ok
    19:04:15.0425 5048 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
    19:04:15.0472 5048 Dot4 - ok
    19:04:15.0519 5048 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
    19:04:15.0535 5048 Dot4Print - ok
    19:04:15.0566 5048 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
    19:04:15.0613 5048 dot4usb - ok
    19:04:15.0628 5048 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    19:04:15.0691 5048 DPS - ok
    19:04:15.0706 5048 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    19:04:15.0722 5048 drmkaud - ok
    19:04:15.0815 5048 [ 3F28A00F88B5A21875E29AA63B862444 ] DTSRVC C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe
    19:04:15.0878 5048 DTSRVC - ok
    19:04:15.0925 5048 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    19:04:15.0940 5048 DXGKrnl - ok
    19:04:15.0971 5048 [ 04DDDEA79B9E616F50B9132752F656FC ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
    19:04:15.0987 5048 e1kexpress - ok
    19:04:16.0003 5048 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    19:04:16.0034 5048 EapHost - ok
    19:04:16.0112 5048 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    19:04:16.0205 5048 ebdrv - ok
    19:04:16.0237 5048 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    19:04:16.0237 5048 EFS - ok
    19:04:16.0283 5048 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    19:04:16.0315 5048 ehRecvr - ok
    19:04:16.0346 5048 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    19:04:16.0346 5048 ehSched - ok
    19:04:16.0377 5048 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    19:04:16.0393 5048 elxstor - ok
    19:04:16.0408 5048 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    19:04:16.0424 5048 ErrDev - ok
    19:04:16.0439 5048 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    19:04:16.0486 5048 EventSystem - ok
    19:04:16.0502 5048 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    19:04:16.0517 5048 exfat - ok
    19:04:16.0533 5048 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    19:04:16.0564 5048 fastfat - ok
    19:04:16.0595 5048 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    19:04:16.0627 5048 Fax - ok
    19:04:16.0642 5048 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    19:04:16.0658 5048 fdc - ok
    19:04:16.0658 5048 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    19:04:16.0689 5048 fdPHost - ok
    19:04:16.0720 5048 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    19:04:16.0751 5048 FDResPub - ok
    19:04:16.0783 5048 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    19:04:16.0783 5048 FileInfo - ok
    19:04:16.0798 5048 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    19:04:16.0829 5048 Filetrace - ok
    19:04:16.0845 5048 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    19:04:16.0861 5048 flpydisk - ok
    19:04:16.0892 5048 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    19:04:16.0907 5048 FltMgr - ok
    19:04:16.0970 5048 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    19:04:17.0017 5048 FontCache - ok
    19:04:17.0063 5048 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    19:04:17.0079 5048 FontCache3.0.0.0 - ok
    19:04:17.0095 5048 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    19:04:17.0110 5048 FsDepends - ok
    19:04:17.0173 5048 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
    19:04:17.0188 5048 fssfltr - ok
    19:04:17.0235 5048 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
    19:04:17.0266 5048 fsssvc - ok
    19:04:17.0282 5048 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    19:04:17.0297 5048 Fs_Rec - ok
    19:04:17.0313 5048 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    19:04:17.0329 5048 fvevol - ok
    19:04:17.0329 5048 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    19:04:17.0344 5048 gagp30kx - ok
    19:04:17.0360 5048 Gonzales - ok
    19:04:17.0407 5048 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    19:04:17.0453 5048 gpsvc - ok
    19:04:17.0516 5048 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
    19:04:17.0578 5048 Greg_Service - ok
    19:04:17.0625 5048 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    19:04:17.0641 5048 gupdate - ok
    19:04:17.0656 5048 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    19:04:17.0672 5048 gupdatem - ok
    19:04:17.0687 5048 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    19:04:17.0703 5048 gusvc - ok
    19:04:17.0703 5048 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    19:04:17.0719 5048 hcw85cir - ok
    19:04:17.0765 5048 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    19:04:17.0797 5048 HdAudAddService - ok
    19:04:17.0797 5048 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    19:04:17.0828 5048 HDAudBus - ok
    19:04:17.0843 5048 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    19:04:17.0843 5048 HidBatt - ok
    19:04:17.0859 5048 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    19:04:17.0890 5048 HidBth - ok
    19:04:17.0906 5048 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    19:04:17.0937 5048 HidIr - ok
    19:04:17.0968 5048 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
    19:04:18.0015 5048 hidserv - ok
    19:04:18.0031 5048 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    19:04:18.0031 5048 HidUsb - ok
    19:04:18.0077 5048 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    19:04:18.0093 5048 hkmsvc - ok
    19:04:18.0140 5048 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    19:04:18.0140 5048 HomeGroupListener - ok
    19:04:18.0187 5048 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    19:04:18.0202 5048 HomeGroupProvider - ok
    19:04:18.0311 5048 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    19:04:18.0327 5048 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
    19:04:18.0327 5048 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
    19:04:18.0343 5048 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
    19:04:18.0358 5048 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
    19:04:18.0358 5048 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
    19:04:18.0374 5048 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    19:04:18.0405 5048 HpSAMD - ok
    19:04:18.0452 5048 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    19:04:18.0499 5048 HTTP - ok
    19:04:18.0514 5048 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    19:04:18.0530 5048 hwpolicy - ok
    19:04:18.0561 5048 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    19:04:18.0561 5048 i8042prt - ok
    19:04:18.0623 5048 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    19:04:18.0639 5048 IAANTMON - ok
    19:04:18.0655 5048 IAMTVE - ok
    19:04:18.0655 5048 IAMTXPE - ok
    19:04:18.0686 5048 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    19:04:18.0717 5048 iaStor - ok
    19:04:18.0733 5048 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    19:04:18.0764 5048 iaStorV - ok
    19:04:18.0795 5048 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    19:04:18.0826 5048 idsvc - ok
    19:04:18.0842 5048 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    19:04:18.0857 5048 iirsp - ok
    19:04:18.0873 5048 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    19:04:18.0904 5048 IKEEXT - ok
    19:04:18.0951 5048 [ 135856AC71116CCFF05ED8481745241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    19:04:18.0998 5048 IntcAzAudAddService - ok
    19:04:18.0998 5048 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    19:04:19.0013 5048 intelide - ok
    19:04:19.0013 5048 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    19:04:19.0045 5048 intelppm - ok
    19:04:19.0060 5048 [ 127F0A7586ACEC7B83131BFF2B4394C1 ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys
    19:04:19.0076 5048 ioatdma1 - ok
    19:04:19.0076 5048 [ 70CC19B5C076F8497CAB4A77D6500E8A ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys
    19:04:19.0076 5048 ioatdma2 - ok
    19:04:19.0107 5048 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    19:04:19.0138 5048 IPBusEnum - ok
    19:04:19.0138 5048 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    19:04:19.0169 5048 IpFilterDriver - ok
    19:04:19.0216 5048 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    19:04:19.0247 5048 iphlpsvc - ok
    19:04:19.0263 5048 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    19:04:19.0279 5048 IPMIDRV - ok
    19:04:19.0294 5048 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    19:04:19.0325 5048 IPNAT - ok
    19:04:19.0341 5048 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    19:04:19.0372 5048 IRENUM - ok
    19:04:19.0372 5048 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    19:04:19.0388 5048 isapnp - ok
    19:04:19.0403 5048 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    19:04:19.0403 5048 iScsiPrt - ok
    19:04:19.0466 5048 [ FE1A970E7CE330BB844E333C374C6599 ] iWinTrusted C:\Program Files (x86)\iWin Games\iWinTrusted.exe
    19:04:19.0481 5048 iWinTrusted - ok
    19:04:19.0513 5048 [ 2224ABC439D115A44EDB5630A92C1D7E ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
    19:04:19.0544 5048 JRAID - ok
    19:04:19.0559 5048 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    19:04:19.0575 5048 kbdclass - ok
    19:04:19.0575 5048 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    19:04:19.0606 5048 kbdhid - ok
    19:04:19.0622 5048 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    19:04:19.0622 5048 KeyIso - ok
    19:04:19.0669 5048 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    19:04:19.0669 5048 KSecDD - ok
    19:04:19.0700 5048 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    19:04:19.0715 5048 KSecPkg - ok
    19:04:19.0715 5048 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    19:04:19.0747 5048 ksthunk - ok
    19:04:19.0778 5048 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    19:04:19.0809 5048 KtmRm - ok
    19:04:19.0856 5048 [ F33C5D79D3273530E1892A0922283A7B ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys
    19:04:19.0871 5048 L8042Kbd - ok
    19:04:19.0887 5048 [ A6FE2E63441094074F57243FB0FDB45A ] L8042mou C:\Windows\system32\DRIVERS\L8042mou.Sys
    19:04:19.0903 5048 L8042mou - ok
    19:04:19.0934 5048 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
    19:04:19.0996 5048 LanmanServer - ok
    19:04:20.0027 5048 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    19:04:20.0074 5048 LanmanWorkstation - ok
    19:04:20.0168 5048 [ 88E52495B47C67126B510AF53FDB0BC7 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
    19:04:20.0183 5048 LBTServ - ok
    19:04:20.0199 5048 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
    19:04:20.0215 5048 LHidFilt - ok
    19:04:20.0230 5048 lirsgt - ok
    19:04:20.0246 5048 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    19:04:20.0324 5048 lltdio - ok
    19:04:20.0339 5048 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    19:04:20.0371 5048 lltdsvc - ok
    19:04:20.0386 5048 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    19:04:20.0417 5048 lmhosts - ok
    19:04:20.0433 5048 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
    19:04:20.0433 5048 LMouFilt - ok
    19:04:20.0449 5048 [ F518C34C137348B7DBE5343ACC646A1C ] LMouKE C:\Windows\system32\DRIVERS\LMouKE.Sys
    19:04:20.0464 5048 LMouKE - ok
    19:04:20.0480 5048 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    19:04:20.0495 5048 LSI_FC - ok
    19:04:20.0495 5048 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    19:04:20.0511 5048 LSI_SAS - ok
    19:04:20.0511 5048 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    19:04:20.0527 5048 LSI_SAS2 - ok
    19:04:20.0542 5048 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    19:04:20.0542 5048 LSI_SCSI - ok
    19:04:20.0558 5048 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    19:04:20.0589 5048 luafv - ok
    19:04:20.0620 5048 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
    19:04:20.0651 5048 MarvinBus - ok
    19:04:20.0714 5048 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
    19:04:20.0729 5048 MBAMProtector - ok
    19:04:20.0776 5048 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    19:04:20.0807 5048 MBAMScheduler - ok
    19:04:20.0823 5048 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    19:04:20.0839 5048 MBAMService - ok
    19:04:20.0870 5048 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    19:04:20.0901 5048 Mcx2Svc - ok
    19:04:20.0979 5048 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    19:04:20.0995 5048 MDM - ok
    19:04:20.0995 5048 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    19:04:21.0010 5048 megasas - ok
    19:04:21.0026 5048 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    19:04:21.0041 5048 MegaSR - ok
    19:04:21.0057 5048 Microsoft SharePoint Workspace Audit Service - ok
    19:04:21.0088 5048 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    19:04:21.0151 5048 MMCSS - ok
    19:04:21.0166 5048 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    19:04:21.0182 5048 Modem - ok
    19:04:21.0197 5048 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    19:04:21.0213 5048 monitor - ok
    19:04:21.0213 5048 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    19:04:21.0229 5048 mouclass - ok
    19:04:21.0229 5048 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    19:04:21.0244 5048 mouhid - ok
    19:04:21.0275 5048 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    19:04:21.0291 5048 mountmgr - ok
    19:04:21.0353 5048 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    19:04:21.0385 5048 MpFilter - ok
    19:04:21.0431 5048 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    19:04:21.0447 5048 mpio - ok
    19:04:21.0463 5048 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    19:04:21.0494 5048 mpsdrv - ok
    19:04:21.0541 5048 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    19:04:21.0587 5048 MpsSvc - ok
    19:04:21.0619 5048 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    19:04:21.0650 5048 MRxDAV - ok
    19:04:21.0681 5048 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    19:04:21.0728 5048 mrxsmb - ok
    19:04:21.0759 5048 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    19:04:21.0790 5048 mrxsmb10 - ok
    19:04:21.0837 5048 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    19:04:21.0868 5048 mrxsmb20 - ok
    19:04:21.0884 5048 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    19:04:21.0899 5048 msahci - ok
    19:04:21.0915 5048 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    19:04:21.0931 5048 msdsm - ok
    19:04:21.0946 5048 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    19:04:21.0962 5048 MSDTC - ok
    19:04:21.0977 5048 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    19:04:22.0024 5048 Msfs - ok
    19:04:22.0024 5048 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    19:04:22.0071 5048 mshidkmdf - ok
    19:04:22.0071 5048 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    19:04:22.0087 5048 msisadrv - ok
    19:04:22.0102 5048 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    19:04:22.0133 5048 MSiSCSI - ok
    19:04:22.0133 5048 msiserver - ok
    19:04:22.0149 5048 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    19:04:22.0180 5048 MSKSSRV - ok
    19:04:22.0243 5048 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    19:04:22.0258 5048 MsMpSvc - ok
    19:04:22.0274 5048 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    19:04:22.0289 5048 MSPCLOCK - ok
    19:04:22.0321 5048 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    19:04:22.0336 5048 MSPQM - ok
    19:04:22.0383 5048 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    19:04:22.0399 5048 MsRPC - ok
    19:04:22.0414 5048 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    19:04:22.0430 5048 mssmbios - ok
    19:04:22.0430 5048 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    19:04:22.0477 5048 MSTEE - ok
    19:04:22.0492 5048 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    19:04:22.0508 5048 MTConfig - ok
    19:04:22.0523 5048 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    19:04:22.0539 5048 Mup - ok
    19:04:22.0555 5048 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
    19:04:22.0570 5048 mwlPSDFilter - ok
    19:04:22.0570 5048 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
    19:04:22.0570 5048 mwlPSDNServ - ok
    19:04:22.0586 5048 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
    19:04:22.0601 5048 mwlPSDVDisk - ok
    19:04:22.0617 5048 [ 0F5FAAC852DB4C340B7A2F187E3358B8 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
    19:04:22.0617 5048 MWLService - ok
    19:04:22.0633 5048 NAL - ok
    19:04:22.0648 5048 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    19:04:22.0679 5048 napagent - ok
    19:04:22.0695 5048 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    19:04:22.0711 5048 NativeWifiP - ok
    19:04:22.0742 5048 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers
    dis.sys
    19:04:22.0773 5048 NDIS - ok
    19:04:22.0773 5048 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    19:04:22.0820 5048 NdisCap - ok
    19:04:22.0820 5048 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    19:04:22.0835 5048 NdisTapi - ok
    19:04:22.0882 5048 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    19:04:22.0913 5048 Ndisuio - ok
    19:04:22.0929 5048 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    19:04:22.0976 5048 NdisWan - ok
    19:04:22.0976 5048 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    19:04:23.0023 5048 NDProxy - ok
    19:04:23.0069 5048 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
    19:04:23.0101 5048 Nero BackItUp Scheduler 4.0 - ok
    19:04:23.0132 5048 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    19:04:23.0147 5048 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    19:04:23.0147 5048 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    19:04:23.0163 5048 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    19:04:23.0210 5048 NetBIOS - ok
    19:04:23.0225 5048 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    19:04:23.0257 5048 NetBT - ok
    19:04:23.0272 5048 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    19:04:23.0272 5048 Netlogon - ok
    19:04:23.0303 5048 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32
    etman.dll
    19:04:23.0319 5048 Netman - ok
    19:04:23.0335 5048 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32
    etprofm.dll
    19:04:23.0381 5048 netprofm - ok
    19:04:23.0397 5048 [ B72BB9496A126FCFC7FC5945DED9B411 ] netr28x C:\Windows\system32\DRIVERS
    etr28x.sys
    19:04:23.0413 5048 netr28x - ok
    19:04:23.0444 5048 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    19:04:23.0459 5048 NetTcpPortSharing - ok
    19:04:23.0475 5048 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    19:04:23.0475 5048 nfrd960 - ok
    19:04:23.0522 5048 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    19:04:23.0553 5048 NisDrv - ok
    19:04:23.0584 5048 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
    19:04:23.0600 5048 NisSrv - ok
    19:04:23.0615 5048 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32
    lasvc.dll
    19:04:23.0631 5048 NlaSvc - ok
    19:04:23.0647 5048 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    19:04:23.0678 5048 Npfs - ok
    19:04:23.0693 5048 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32
    sisvc.dll
    19:04:23.0725 5048 nsi - ok
    19:04:23.0725 5048 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    19:04:23.0771 5048 nsiproxy - ok
    19:04:23.0818 5048 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    19:04:23.0881 5048 Ntfs - ok
    19:04:23.0927 5048 [ BD691091AC7D9713D8F0B07C6B099E6C ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    19:04:23.0943 5048 NTI IScheduleSvc - ok
    19:04:23.0959 5048 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
    19:04:23.0959 5048 NTIDrvr - ok
    19:04:23.0974 5048 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    19:04:24.0005 5048 Null - ok
    19:04:24.0021 5048 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers
    vhda64v.sys
    19:04:24.0037 5048 NVHDA - ok
    19:04:24.0255 5048 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS
    vlddmkm.sys
    19:04:24.0567 5048 nvlddmkm - ok
    19:04:24.0567 5048 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers
    vraid.sys
    19:04:24.0583 5048 nvraid - ok
    19:04:24.0614 5048 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers
    vstor.sys
    19:04:24.0629 5048 nvstor - ok
    19:04:24.0676 5048 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32
    vvsvc.exe
    19:04:24.0723 5048 nvsvc - ok
    19:04:24.0832 5048 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    19:04:24.0848 5048 nvUpdatusService - ok
    19:04:24.0895 5048 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    19:04:24.0910 5048 nv_agp - ok
    19:04:24.0957 5048 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    19:04:25.0019 5048 ohci1394 - ok
    19:04:25.0066 5048 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    19:04:25.0082 5048 ose - ok
    19:04:25.0207 5048 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    19:04:25.0269 5048 osppsvc - ok
    19:04:25.0300 5048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    19:04:25.0316 5048 p2pimsvc - ok
    19:04:25.0331 5048 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    19:04:25.0347 5048 p2psvc - ok
    19:04:25.0363 5048 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    19:04:25.0378 5048 Parport - ok
    19:04:25.0409 5048 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    19:04:25.0425 5048 partmgr - ok
    19:04:25.0441 5048 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    19:04:25.0456 5048 PcaSvc - ok
    19:04:25.0472 5048 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    19:04:25.0472 5048 pci - ok
    19:04:25.0487 5048 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    19:04:25.0487 5048 pciide - ok
    19:04:25.0503 5048 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    19:04:25.0519 5048 pcmcia - ok
    19:04:25.0519 5048 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    19:04:25.0534 5048 pcw - ok
    19:04:25.0565 5048 [ C65CEBC504DE95212232213010DB9A51 ] PdiPorts C:\Windows\system32\DRIVERS\PdiPorts.sys
    19:04:25.0597 5048 PdiPorts - ok
    19:04:25.0628 5048 [ 0A098DF98EC8FACAA30BD7DB4C7AEA06 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
    19:04:25.0690 5048 PdiService - ok
    19:04:25.0737 5048 [ 631CC6305C99933F264ED7000CDF2D2A ] pe3apx8b C:\Windows\system32\drivers\pe3apx8b.sys
    19:04:25.0737 5048 pe3apx8b - ok
    19:04:25.0753 5048 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    19:04:25.0799 5048 PEAUTH - ok
    19:04:25.0862 5048 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    19:04:25.0893 5048 PerfHost - ok
    19:04:25.0940 5048 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    19:04:26.0033 5048 pla - ok
    19:04:26.0080 5048 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    19:04:26.0111 5048 PlugPlay - ok
    19:04:26.0143 5048 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    19:04:26.0158 5048 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    19:04:26.0158 5048 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    19:04:26.0158 5048 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    19:04:26.0174 5048 PNRPAutoReg - ok
    19:04:26.0205 5048 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    19:04:26.0205 5048 PNRPsvc - ok
    19:04:26.0221 5048 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    19:04:26.0252 5048 PolicyAgent - ok
    19:04:26.0283 5048 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    19:04:26.0314 5048 Power - ok
    19:04:26.0345 5048 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    19:04:26.0408 5048 PptpMiniport - ok
    19:04:26.0439 5048 pr2apx8b - ok
    19:04:26.0439 5048 PRISM_A02 - ok
    19:04:26.0455 5048 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    19:04:26.0486 5048 Processor - ok
    19:04:26.0517 5048 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    19:04:26.0533 5048 ProfSvc - ok
    19:04:26.0533 5048 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    19:04:26.0548 5048 ProtectedStorage - ok
    19:04:26.0595 5048 [ A8B0CC75F04AE882FB868EAD9C9D11C4 ] ps7apx8b C:\Windows\system32\drivers\ps7apx8b.sys
    19:04:26.0611 5048 ps7apx8b - ok
    19:04:26.0642 5048 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    19:04:26.0689 5048 Psched - ok
    19:04:26.0720 5048 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    19:04:26.0751 5048 ql2300 - ok
    19:04:26.0767 5048 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    19:04:26.0767 5048 ql40xx - ok
    19:04:26.0782 5048 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    19:04:26.0798 5048 QWAVE - ok
    19:04:26.0798 5048 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    19:04:26.0829 5048 QWAVEdrv - ok
    19:04:26.0891 5048 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
    19:04:26.0907 5048 RapiMgr - ok
    19:04:26.0923 5048 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    19:04:26.0954 5048 RasAcd - ok
    19:04:26.0969 5048 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    19:04:27.0001 5048 RasAgileVpn - ok
    19:04:27.0016 5048 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    19:04:27.0047 5048 RasAuto - ok
    19:04:27.0094 5048 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    19:04:27.0157 5048 Rasl2tp - ok
    19:04:27.0188 5048 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    19:04:27.0235 5048 RasMan - ok
    19:04:27.0235 5048 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    19:04:27.0281 5048 RasPppoe - ok
    19:04:27.0297 5048 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    19:04:27.0328 5048 RasSstp - ok
    19:04:27.0328 5048 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    19:04:27.0359 5048 rdbss - ok
    19:04:27.0375 5048 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    19:04:27.0375 5048 rdpbus - ok
    19:04:27.0391 5048 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    19:04:27.0422 5048 RDPCDD - ok
    19:04:27.0437 5048 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    19:04:27.0469 5048 RDPENCDD - ok
    19:04:27.0469 5048 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    19:04:27.0500 5048 RDPREFMP - ok
    19:04:27.0547 5048 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    19:04:27.0578 5048 RdpVideoMiniport - ok
    19:04:27.0625 5048 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    19:04:27.0640 5048 RDPWD - ok
    19:04:27.0671 5048 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    19:04:27.0687 5048 rdyboost - ok
    19:04:27.0718 5048 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    19:04:27.0749 5048 RemoteAccess - ok
    19:04:27.0765 5048 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    19:04:27.0812 5048 RemoteRegistry - ok
    19:04:27.0859 5048 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    19:04:27.0890 5048 RFCOMM - ok
    19:04:27.0905 5048 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    19:04:27.0937 5048 RpcEptMapper - ok
    19:04:27.0937 5048 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    19:04:27.0952 5048 RpcLocator - ok
    19:04:27.0968 5048 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
    19:04:27.0999 5048 RpcSs - ok
    19:04:28.0015 5048 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    19:04:28.0046 5048 rspndr - ok
    19:04:28.0077 5048 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    19:04:28.0093 5048 SamSs - ok
    19:04:28.0124 5048 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    19:04:28.0155 5048 sbp2port - ok
    19:04:28.0186 5048 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    19:04:28.0233 5048 SCardSvr - ok
    19:04:28.0264 5048 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    19:04:28.0295 5048 scfilter - ok
    19:04:28.0342 5048 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    19:04:28.0420 5048 Schedule - ok
    19:04:28.0451 5048 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    19:04:28.0483 5048 SCPolicySvc - ok
    19:04:28.0498 5048 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    19:04:28.0514 5048 SDRSVC - ok
    19:04:28.0514 5048 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    19:04:28.0561 5048 secdrv - ok
    19:04:28.0576 5048 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    19:04:28.0607 5048 seclogon - ok
    19:04:28.0639 5048 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
    19:04:28.0654 5048 SENS - ok
    19:04:28.0670 5048 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    19:04:28.0685 5048 SensrSvc - ok
    19:04:28.0685 5048 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    19:04:28.0701 5048 Serenum - ok
    19:04:28.0701 5048 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    19:04:28.0717 5048 Serial - ok
    19:04:28.0717 5048 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    19:04:28.0748 5048 sermouse - ok
    19:04:28.0763 5048 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    19:04:28.0795 5048 SessionEnv - ok
    19:04:28.0795 5048 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    19:04:28.0826 5048 sffdisk - ok
    19:04:28.0826 5048 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    19:04:28.0841 5048 sffp_mmc - ok
    19:04:28.0857 5048 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    19:04:28.0873 5048 sffp_sd - ok
    19:04:28.0873 5048 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    19:04:28.0888 5048 sfloppy - ok
    19:04:28.0904 5048 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    19:04:28.0935 5048 SharedAccess - ok
    19:04:28.0982 5048 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    19:04:29.0044 5048 ShellHWDetection - ok
    19:04:29.0060 5048 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    19:04:29.0060 5048 SiSRaid2 - ok
    19:04:29.0060 5048 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    19:04:29.0075 5048 SiSRaid4 - ok
    19:04:29.0075 5048 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    19:04:29.0107 5048 Smb - ok
    19:04:29.0122 5048 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    19:04:29.0138 5048 SNMPTRAP - ok
    19:04:29.0153 5048 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    19:04:29.0153 5048 spldr - ok
    19:04:29.0200 5048 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    19:04:29.0231 5048 Spooler - ok
    19:04:29.0325 5048 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    19:04:29.0450 5048 sppsvc - ok
    19:04:29.0481 5048 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    19:04:29.0497 5048 sppuinotify - ok
    19:04:29.0528 5048 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    19:04:29.0559 5048 srv - ok
    19:04:29.0575 5048 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    19:04:29.0590 5048 srv2 - ok
    19:04:29.0606 5048 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    19:04:29.0621 5048 srvnet - ok
    19:04:29.0637 5048 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    19:04:29.0653 5048 SSDPSRV - ok
    19:04:29.0668 5048 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    19:04:29.0699 5048 SstpSvc - ok
    19:04:29.0777 5048 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision
    vSCPAPISvr.exe
    19:04:29.0809 5048 Stereo Service - ok
    19:04:29.0809 5048 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    19:04:29.0824 5048 stexstor - ok
    19:04:29.0887 5048 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    19:04:29.0933 5048 stisvc - ok
    19:04:29.0965 5048 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    19:04:29.0980 5048 swenum - ok
    19:04:29.0996 5048 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    19:04:30.0043 5048 swprv - ok
    19:04:30.0105 5048 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    19:04:30.0167 5048 SysMain - ok
    19:04:30.0199 5048 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    19:04:30.0214 5048 TabletInputService - ok
    19:04:30.0230 5048 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    19:04:30.0277 5048 TapiSrv - ok
    19:04:30.0292 5048 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    19:04:30.0308 5048 TBS - ok
    19:04:30.0355 5048 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    19:04:30.0401 5048 Tcpip - ok
    19:04:30.0433 5048 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    19:04:30.0464 5048 TCPIP6 - ok
    19:04:30.0495 5048 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    19:04:30.0495 5048 tcpipreg - ok
    19:04:30.0511 5048 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    19:04:30.0526 5048 TDPIPE - ok
    19:04:30.0557 5048 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    19:04:30.0589 5048 TDTCP - ok
    19:04:30.0635 5048 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    19:04:30.0682 5048 tdx - ok
    19:04:30.0698 5048 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    19:04:30.0698 5048 TermDD - ok
    19:04:30.0729 5048 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    19:04:30.0776 5048 TermService - ok
    19:04:30.0791 5048 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    19:04:30.0807 5048 Themes - ok
    19:04:30.0823 5048 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    19:04:30.0854 5048 THREADORDER - ok
    19:04:30.0854 5048 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    19:04:30.0885 5048 TrkWks - ok
    19:04:30.0947 5048 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    19:04:31.0010 5048 TrustedInstaller - ok
    19:04:31.0041 5048 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    19:04:31.0088 5048 tssecsrv - ok
    19:04:31.0119 5048 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    19:04:31.0119 5048 TsUsbFlt - ok
    19:04:31.0150 5048 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    19:04:31.0181 5048 tunnel - ok
    19:04:31.0197 5048 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    19:04:31.0197 5048 uagp35 - ok
    19:04:31.0213 5048 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
    19:04:31.0228 5048 UBHelper - ok
    19:04:31.0244 5048 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    19:04:31.0275 5048 udfs - ok
    19:04:31.0291 5048 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    19:04:31.0291 5048 UI0Detect - ok
    19:04:31.0306 5048 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    19:04:31.0322 5048 uliagpkx - ok
    19:04:31.0322 5048 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    19:04:31.0353 5048 umbus - ok
    19:04:31.0384 5048 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    19:04:31.0384 5048 UmPass - ok
    19:04:31.0431 5048 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
    19:04:31.0431 5048 Updater Service - ok
    19:04:31.0447 5048 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    19:04:31.0478 5048 upnphost - ok
    19:04:31.0493 5048 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    19:04:31.0509 5048 usbccgp - ok
    19:04:31.0525 5048 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    19:04:31.0540 5048 usbcir - ok
    19:04:31.0556 5048 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    19:04:31.0571 5048 usbehci - ok
    19:04:31.0571 5048 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    19:04:31.0603 5048 usbhub - ok
    19:04:31.0603 5048 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    19:04:31.0634 5048 usbohci - ok
    19:04:31.0665 5048 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    19:04:31.0681 5048 usbprint - ok
    19:04:31.0681 5048 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    19:04:31.0712 5048 USBSTOR - ok
    19:04:31.0712 5048 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    19:04:31.0727 5048 usbuhci - ok
    19:04:31.0759 5048 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
    19:04:31.0774 5048 usb_rndisx - ok
    19:04:31.0790 5048 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    19:04:31.0821 5048 UxSms - ok
    19:04:31.0837 5048 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    19:04:31.0837 5048 VaultSvc - ok
    19:04:31.0852 5048 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    19:04:31.0868 5048 vdrvroot - ok
    19:04:31.0883 5048 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    19:04:31.0930 5048 vds - ok
    19:04:31.0946 5048 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    19:04:31.0961 5048 vga - ok
    19:04:31.0977 5048 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    19:04:31.0993 5048 VgaSave - ok
    19:04:32.0008 5048 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    19:04:32.0024 5048 vhdmp - ok
    19:04:32.0039 5048 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    19:04:32.0039 5048 viaide - ok
    19:04:32.0039 5048 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    19:04:32.0055 5048 volmgr - ok
    19:04:32.0102 5048 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    19:04:32.0133 5048 volmgrx - ok
    19:04:32.0149 5048 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    19:04:32.0164 5048 volsnap - ok
    19:04:32.0180 5048 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    19:04:32.0195 5048 vsmraid - ok
    19:04:32.0242 5048 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    19:04:32.0273 5048 VSS - ok
    19:04:32.0289 5048 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    19:04:32.0305 5048 vwifibus - ok
    19:04:32.0320 5048 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    19:04:32.0367 5048 vwififlt - ok
    19:04:32.0383 5048 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    19:04:32.0429 5048 W32Time - ok
    19:04:32.0445 5048 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    19:04:32.0476 5048 WacomPen - ok
    19:04:32.0492 5048 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    19:04:32.0507 5048 WANARP - ok
    19:04:32.0523 5048 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    19:04:32.0539 5048 Wanarpv6 - ok
    19:04:32.0617 5048 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    19:04:32.0663 5048 WatAdminSvc - ok
    19:04:32.0695 5048 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    19:04:32.0741 5048 wbengine - ok
    19:04:32.0773 5048 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    19:04:32.0788 5048 WbioSrvc - ok
    19:04:32.0835 5048 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
    19:04:32.0866 5048 WcesComm - ok
    19:04:32.0882 5048 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    19:04:32.0913 5048 wcncsvc - ok
    19:04:32.0929 5048 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    19:04:32.0960 5048 WcsPlugInService - ok
    19:04:32.0975 5048 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    19:04:32.0991 5048 Wd - ok
    19:04:33.0007 5048 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    19:04:33.0038 5048 Wdf01000 - ok
    19:04:33.0053 5048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    19:04:33.0069 5048 WdiServiceHost - ok
    19:04:33.0069 5048 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    19:04:33.0085 5048 WdiSystemHost - ok
    19:04:33.0116 5048 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    19:04:33.0163 5048 WebClient - ok
    19:04:33.0178 5048 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    19:04:33.0209 5048 Wecsvc - ok
    19:04:33.0225 5048 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    19:04:33.0272 5048 wercplsupport - ok
    19:04:33.0287 5048 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    19:04:33.0319 5048 WerSvc - ok
    19:04:33.0334 5048 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    19:04:33.0350 5048 Wfp





















  • Het log is incompleet.
  • nieuwe poging (heb de scan opnieuw gedaan)

    19:54:30.0254 1960 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    19:54:30.0441 1960 ============================================================
    19:54:30.0441 1960 Current date / time: 2012/12/20 19:54:30.0441
    19:54:30.0441 1960 SystemInfo:
    19:54:30.0441 1960
    19:54:30.0441 1960 OS Version: 6.1.7601 ServicePack: 1.0
    19:54:30.0441 1960 Product type: Workstation
    19:54:30.0441 1960 ComputerName: ERIKA-PC
    19:54:30.0441 1960 UserName: erika
    19:54:30.0441 1960 Windows directory: C:\Windows
    19:54:30.0441 1960 System windows directory: C:\Windows
    19:54:30.0441 1960 Running under WOW64
    19:54:30.0441 1960 Processor architecture: Intel x64
    19:54:30.0441 1960 Number of processors: 4
    19:54:30.0441 1960 Page size: 0x1000
    19:54:30.0441 1960 Boot type: Normal boot
    19:54:30.0441 1960 ============================================================
    19:54:31.0112 1960 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    19:54:31.0174 1960 ============================================================
    19:54:31.0174 1960 \Device\Harddisk0\DR0:
    19:54:31.0174 1960 MBR partitions:
    19:54:31.0174 1960 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
    19:54:31.0174 1960 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x395E7000
    19:54:31.0174 1960 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B019800, BlocksNum 0x396EC800
    19:54:31.0174 1960 ============================================================
    19:54:31.0190 1960 C: <-> \Device\Harddisk0\DR0\Partition2
    19:54:31.0221 1960 D: <-> \Device\Harddisk0\DR0\Partition3
    19:54:31.0221 1960 ============================================================
    19:54:31.0221 1960 Initialize success
    19:54:31.0221 1960 ============================================================
    19:56:12.0185 5868 ============================================================
    19:56:12.0185 5868 Scan started
    19:56:12.0185 5868 Mode: Manual; SigCheck; TDLFS;
    19:56:12.0185 5868 ============================================================
    19:56:12.0341 5868 ================ Scan system memory ========================
    19:56:12.0341 5868 System memory - ok
    19:56:12.0341 5868 ================ Scan services =============================
    19:56:12.0465 5868 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    19:56:12.0559 5868 1394ohci - ok
    19:56:12.0606 5868 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    19:56:12.0637 5868 ACPI - ok
    19:56:12.0637 5868 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    19:56:12.0699 5868 AcpiPmi - ok
    19:56:12.0809 5868 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    19:56:12.0824 5868 AdobeFlashPlayerUpdateSvc - ok
    19:56:12.0855 5868 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    19:56:12.0871 5868 adp94xx - ok
    19:56:12.0871 5868 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    19:56:12.0887 5868 adpahci - ok
    19:56:12.0918 5868 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    19:56:12.0918 5868 adpu320 - ok
    19:56:12.0949 5868 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    19:56:13.0058 5868 AeLookupSvc - ok
    19:56:13.0121 5868 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    19:56:13.0199 5868 AFD - ok
    19:56:13.0199 5868 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    19:56:13.0230 5868 agp440 - ok
    19:56:13.0245 5868 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    19:56:13.0277 5868 ALG - ok
    19:56:13.0292 5868 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    19:56:13.0308 5868 aliide - ok
    19:56:13.0308 5868 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    19:56:13.0323 5868 amdide - ok
    19:56:13.0323 5868 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    19:56:13.0401 5868 AmdK8 - ok
    19:56:13.0401 5868 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    19:56:13.0448 5868 AmdPPM - ok
    19:56:13.0464 5868 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    19:56:13.0479 5868 amdsata - ok
    19:56:13.0495 5868 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    19:56:13.0511 5868 amdsbs - ok
    19:56:13.0511 5868 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    19:56:13.0526 5868 amdxata - ok
    19:56:13.0573 5868 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    19:56:13.0682 5868 AppID - ok
    19:56:13.0698 5868 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    19:56:13.0760 5868 AppIDSvc - ok
    19:56:13.0776 5868 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    19:56:13.0823 5868 Appinfo - ok
    19:56:13.0838 5868 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    19:56:13.0854 5868 arc - ok
    19:56:13.0854 5868 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    19:56:13.0869 5868 arcsas - ok
    19:56:13.0885 5868 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    19:56:13.0932 5868 AsyncMac - ok
    19:56:13.0947 5868 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    19:56:13.0963 5868 atapi - ok
    19:56:14.0041 5868 [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag C:\Windows\system32\drivers\atikmdag.sys
    19:56:14.0181 5868 atikmdag - ok
    19:56:14.0213 5868 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    19:56:14.0306 5868 AudioEndpointBuilder - ok
    19:56:14.0306 5868 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    19:56:14.0337 5868 AudioSrv - ok
    19:56:14.0369 5868 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    19:56:14.0415 5868 AxInstSV - ok
    19:56:14.0431 5868 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    19:56:14.0478 5868 b06bdrv - ok
    19:56:14.0478 5868 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    19:56:14.0509 5868 b57nd60a - ok
    19:56:14.0525 5868 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    19:56:14.0571 5868 BDESVC - ok
    19:56:14.0571 5868 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    19:56:14.0634 5868 Beep - ok
    19:56:14.0665 5868 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    19:56:14.0712 5868 BFE - ok
    19:56:14.0743 5868 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
    19:56:14.0790 5868 BITS - ok
    19:56:14.0805 5868 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    19:56:14.0821 5868 blbdrive - ok
    19:56:14.0821 5868 Bonifay - ok
    19:56:14.0868 5868 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    19:56:14.0915 5868 bowser - ok
    19:56:14.0930 5868 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    19:56:14.0977 5868 BrFiltLo - ok
    19:56:14.0993 5868 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    19:56:15.0008 5868 BrFiltUp - ok
    19:56:15.0039 5868 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
    19:56:15.0102 5868 BridgeMP - ok
    19:56:15.0149 5868 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    19:56:15.0149 5868 Browser - ok
    19:56:15.0164 5868 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    19:56:15.0195 5868 Brserid - ok
    19:56:15.0211 5868 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    19:56:15.0227 5868 BrSerWdm - ok
    19:56:15.0242 5868 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    19:56:15.0273 5868 BrUsbMdm - ok
    19:56:15.0289 5868 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    19:56:15.0320 5868 BrUsbSer - ok
    19:56:15.0367 5868 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
    19:56:15.0414 5868 BthEnum - ok
    19:56:15.0429 5868 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    19:56:15.0445 5868 BTHMODEM - ok
    19:56:15.0476 5868 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
    19:56:15.0523 5868 BthPan - ok
    19:56:15.0554 5868 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
    19:56:15.0601 5868 BTHPORT - ok
    19:56:15.0617 5868 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    19:56:15.0679 5868 bthserv - ok
    19:56:15.0710 5868 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
    19:56:15.0726 5868 BTHUSB - ok
    19:56:15.0726 5868 catchme - ok
    19:56:15.0757 5868 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    19:56:15.0804 5868 cdfs - ok
    19:56:15.0851 5868 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    19:56:15.0866 5868 cdrom - ok
    19:56:15.0897 5868 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    19:56:15.0960 5868 CertPropSvc - ok
    19:56:15.0975 5868 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    19:56:15.0991 5868 circlass - ok
    19:56:16.0007 5868 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    19:56:16.0022 5868 CLFS - ok
    19:56:16.0085 5868 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    19:56:16.0100 5868 clr_optimization_v2.0.50727_32 - ok
    19:56:16.0116 5868 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    19:56:16.0131 5868 clr_optimization_v2.0.50727_64 - ok
    19:56:16.0209 5868 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    19:56:16.0272 5868 clr_optimization_v4.0.30319_32 - ok
    19:56:16.0303 5868 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    19:56:16.0319 5868 clr_optimization_v4.0.30319_64 - ok
    19:56:16.0319 5868 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    19:56:16.0334 5868 CmBatt - ok
    19:56:16.0350 5868 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    19:56:16.0350 5868 cmdide - ok
    19:56:16.0381 5868 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
    19:56:16.0397 5868 CNG - ok
    19:56:16.0412 5868 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    19:56:16.0412 5868 Compbatt - ok
    19:56:16.0428 5868 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    19:56:16.0443 5868 CompositeBus - ok
    19:56:16.0443 5868 COMSysApp - ok
    19:56:16.0459 5868 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    19:56:16.0459 5868 crcdisk - ok
    19:56:16.0490 5868 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    19:56:16.0553 5868 CryptSvc - ok
    19:56:16.0584 5868 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    19:56:16.0646 5868 DcomLaunch - ok
    19:56:16.0662 5868 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    19:56:16.0693 5868 defragsvc - ok
    19:56:16.0740 5868 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    19:56:16.0802 5868 DfsC - ok
    19:56:16.0833 5868 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    19:56:16.0865 5868 Dhcp - ok
    19:56:16.0880 5868 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    19:56:16.0943 5868 discache - ok
    19:56:16.0958 5868 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    19:56:16.0974 5868 Disk - ok
    19:56:17.0005 5868 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    19:56:17.0052 5868 Dnscache - ok
    19:56:17.0083 5868 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    19:56:17.0130 5868 dot3svc - ok
    19:56:17.0192 5868 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
    19:56:17.0223 5868 Dot4 - ok
    19:56:17.0270 5868 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
    19:56:17.0301 5868 Dot4Print - ok
    19:56:17.0333 5868 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
    19:56:17.0364 5868 dot4usb - ok
    19:56:17.0379 5868 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    19:56:17.0426 5868 DPS - ok
    19:56:17.0442 5868 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    19:56:17.0457 5868 drmkaud - ok
    19:56:17.0551 5868 [ 3F28A00F88B5A21875E29AA63B862444 ] DTSRVC C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe
    19:56:17.0613 5868 DTSRVC - ok
    19:56:17.0660 5868 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    19:56:17.0691 5868 DXGKrnl - ok
    19:56:17.0723 5868 [ 04DDDEA79B9E616F50B9132752F656FC ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
    19:56:17.0723 5868 e1kexpress - ok
    19:56:17.0754 5868 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    19:56:17.0801 5868 EapHost - ok
    19:56:17.0863 5868 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    19:56:17.0957 5868 ebdrv - ok
    19:56:17.0988 5868 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    19:56:18.0019 5868 EFS - ok
    19:56:18.0066 5868 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    19:56:18.0113 5868 ehRecvr - ok
    19:56:18.0144 5868 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    19:56:18.0175 5868 ehSched - ok
    19:56:18.0191 5868 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    19:56:18.0222 5868 elxstor - ok
    19:56:18.0237 5868 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    19:56:18.0269 5868 ErrDev - ok
    19:56:18.0300 5868 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    19:56:18.0362 5868 EventSystem - ok
    19:56:18.0378 5868 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    19:56:18.0440 5868 exfat - ok
    19:56:18.0456 5868 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    19:56:18.0487 5868 fastfat - ok
    19:56:18.0518 5868 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    19:56:18.0596 5868 Fax - ok
    19:56:18.0612 5868 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    19:56:18.0643 5868 fdc - ok
    19:56:18.0659 5868 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    19:56:18.0690 5868 fdPHost - ok
    19:56:18.0705 5868 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    19:56:18.0737 5868 FDResPub - ok
    19:56:18.0752 5868 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    19:56:18.0768 5868 FileInfo - ok
    19:56:18.0768 5868 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    19:56:18.0799 5868 Filetrace - ok
    19:56:18.0815 5868 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    19:56:18.0830 5868 flpydisk - ok
    19:56:18.0861 5868 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    19:56:18.0893 5868 FltMgr - ok
    19:56:18.0939 5868 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    19:56:19.0002 5868 FontCache - ok
    19:56:19.0049 5868 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    19:56:19.0064 5868 FontCache3.0.0.0 - ok
    19:56:19.0080 5868 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    19:56:19.0080 5868 FsDepends - ok
    19:56:19.0142 5868 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
    19:56:19.0158 5868 fssfltr - ok
    19:56:19.0205 5868 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
    19:56:19.0267 5868 fsssvc - ok
    19:56:19.0298 5868 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    19:56:19.0298 5868 Fs_Rec - ok
    19:56:19.0345 5868 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    19:56:19.0361 5868 fvevol - ok
    19:56:19.0361 5868 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    19:56:19.0376 5868 gagp30kx - ok
    19:56:19.0392 5868 Gonzales - ok
    19:56:19.0423 5868 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    19:56:19.0501 5868 gpsvc - ok
    19:56:19.0579 5868 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
    19:56:19.0641 5868 Greg_Service - ok
    19:56:19.0704 5868 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    19:56:19.0719 5868 gupdate - ok
    19:56:19.0735 5868 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    19:56:19.0751 5868 gupdatem - ok
    19:56:19.0782 5868 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    19:56:19.0797 5868 gusvc - ok
    19:56:19.0797 5868 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    19:56:19.0844 5868 hcw85cir - ok
    19:56:19.0907 5868 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    19:56:19.0953 5868 HdAudAddService - ok
    19:56:19.0953 5868 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    19:56:20.0000 5868 HDAudBus - ok
    19:56:20.0016 5868 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    19:56:20.0031 5868 HidBatt - ok
    19:56:20.0063 5868 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    19:56:20.0094 5868 HidBth - ok
    19:56:20.0094 5868 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    19:56:20.0109 5868 HidIr - ok
    19:56:20.0141 5868 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
    19:56:20.0187 5868 hidserv - ok
    19:56:20.0187 5868 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    19:56:20.0203 5868 HidUsb - ok
    19:56:20.0234 5868 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    19:56:20.0281 5868 hkmsvc - ok
    19:56:20.0312 5868 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    19:56:20.0359 5868 HomeGroupListener - ok
    19:56:20.0406 5868 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    19:56:20.0421 5868 HomeGroupProvider - ok
    19:56:20.0546 5868 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    19:56:20.0562 5868 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
    19:56:20.0562 5868 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
    19:56:20.0593 5868 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
    19:56:20.0609 5868 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
    19:56:20.0609 5868 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
    19:56:20.0624 5868 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    19:56:20.0640 5868 HpSAMD - ok
    19:56:20.0687 5868 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    19:56:20.0749 5868 HTTP - ok
    19:56:20.0765 5868 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    19:56:20.0780 5868 hwpolicy - ok
    19:56:20.0796 5868 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    19:56:20.0796 5868 i8042prt - ok
    19:56:20.0843 5868 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    19:56:20.0858 5868 IAANTMON - ok
    19:56:20.0858 5868 IAMTVE - ok
    19:56:20.0858 5868 IAMTXPE - ok
    19:56:20.0889 5868 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    19:56:20.0889 5868 iaStor - ok
    19:56:20.0921 5868 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    19:56:20.0936 5868 iaStorV - ok
    19:56:20.0983 5868 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    19:56:21.0014 5868 idsvc - ok
    19:56:21.0045 5868 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    19:56:21.0061 5868 iirsp - ok
    19:56:21.0077 5868 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    19:56:21.0123 5868 IKEEXT - ok
    19:56:21.0170 5868 [ 135856AC71116CCFF05ED8481745241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    19:56:21.0186 5868 IntcAzAudAddService - ok
    19:56:21.0201 5868 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    19:56:21.0217 5868 intelide - ok
    19:56:21.0217 5868 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    19:56:21.0233 5868 intelppm - ok
    19:56:21.0264 5868 [ 127F0A7586ACEC7B83131BFF2B4394C1 ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys
    19:56:21.0264 5868 ioatdma1 - ok
    19:56:21.0264 5868 [ 70CC19B5C076F8497CAB4A77D6500E8A ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys
    19:56:21.0279 5868 ioatdma2 - ok
    19:56:21.0311 5868 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    19:56:21.0342 5868 IPBusEnum - ok
    19:56:21.0357 5868 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    19:56:21.0389 5868 IpFilterDriver - ok
    19:56:21.0435 5868 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    19:56:21.0467 5868 iphlpsvc - ok
    19:56:21.0482 5868 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    19:56:21.0498 5868 IPMIDRV - ok
    19:56:21.0513 5868 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    19:56:21.0560 5868 IPNAT - ok
    19:56:21.0576 5868 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    19:56:21.0591 5868 IRENUM - ok
    19:56:21.0607 5868 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    19:56:21.0607 5868 isapnp - ok
    19:56:21.0623 5868 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    19:56:21.0638 5868 iScsiPrt - ok
    19:56:21.0685 5868 [ FE1A970E7CE330BB844E333C374C6599 ] iWinTrusted C:\Program Files (x86)\iWin Games\iWinTrusted.exe
    19:56:21.0701 5868 iWinTrusted - ok
    19:56:21.0716 5868 [ 2224ABC439D115A44EDB5630A92C1D7E ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
    19:56:21.0732 5868 JRAID - ok
    19:56:21.0747 5868 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    19:56:21.0763 5868 kbdclass - ok
    19:56:21.0763 5868 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    19:56:21.0794 5868 kbdhid - ok
    19:56:21.0794 5868 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    19:56:21.0810 5868 KeyIso - ok
    19:56:21.0841 5868 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    19:56:21.0857 5868 KSecDD - ok
    19:56:21.0888 5868 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    19:56:21.0903 5868 KSecPkg - ok
    19:56:21.0919 5868 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    19:56:21.0950 5868 ksthunk - ok
    19:56:21.0981 5868 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    19:56:22.0013 5868 KtmRm - ok
    19:56:22.0075 5868 [ F33C5D79D3273530E1892A0922283A7B ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys
    19:56:22.0075 5868 L8042Kbd - ok
    19:56:22.0091 5868 [ A6FE2E63441094074F57243FB0FDB45A ] L8042mou C:\Windows\system32\DRIVERS\L8042mou.Sys
    19:56:22.0106 5868 L8042mou - ok
    19:56:22.0153 5868 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
    19:56:22.0200 5868 LanmanServer - ok
    19:56:22.0231 5868 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    19:56:22.0262 5868 LanmanWorkstation - ok
    19:56:22.0356 5868 [ 88E52495B47C67126B510AF53FDB0BC7 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
    19:56:22.0371 5868 LBTServ - ok
    19:56:22.0387 5868 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
    19:56:22.0403 5868 LHidFilt - ok
    19:56:22.0418 5868 lirsgt - ok
    19:56:22.0434 5868 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    19:56:22.0481 5868 lltdio - ok
    19:56:22.0512 5868 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    19:56:22.0559 5868 lltdsvc - ok
    19:56:22.0559 5868 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    19:56:22.0590 5868 lmhosts - ok
    19:56:22.0605 5868 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
    19:56:22.0605 5868 LMouFilt - ok
    19:56:22.0637 5868 [ F518C34C137348B7DBE5343ACC646A1C ] LMouKE C:\Windows\system32\DRIVERS\LMouKE.Sys
    19:56:22.0637 5868 LMouKE - ok
    19:56:22.0668 5868 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    19:56:22.0668 5868 LSI_FC - ok
    19:56:22.0683 5868 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    19:56:22.0699 5868 LSI_SAS - ok
    19:56:22.0699 5868 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    19:56:22.0715 5868 LSI_SAS2 - ok
    19:56:22.0715 5868 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    19:56:22.0730 5868 LSI_SCSI - ok
    19:56:22.0746 5868 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    19:56:22.0793 5868 luafv - ok
    19:56:22.0824 5868 [ 024DA28053D57E9E32BEE52600576BBB ] MarvinBus C:\Windows\system32\DRIVERS\MarvinBus64.sys
    19:56:22.0871 5868 MarvinBus - ok
    19:56:22.0917 5868 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
    19:56:22.0933 5868 MBAMProtector - ok
    19:56:23.0011 5868 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    19:56:23.0027 5868 MBAMScheduler - ok
    19:56:23.0058 5868 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    19:56:23.0073 5868 MBAMService - ok
    19:56:23.0105 5868 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    19:56:23.0136 5868 Mcx2Svc - ok
    19:56:23.0214 5868 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    19:56:23.0229 5868 MDM - ok
    19:56:23.0245 5868 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    19:56:23.0261 5868 megasas - ok
    19:56:23.0276 5868 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    19:56:23.0276 5868 MegaSR - ok
    19:56:23.0307 5868 Microsoft SharePoint Workspace Audit Service - ok
    19:56:23.0323 5868 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    19:56:23.0370 5868 MMCSS - ok
    19:56:23.0401 5868 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    19:56:23.0432 5868 Modem - ok
    19:56:23.0448 5868 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    19:56:23.0463 5868 monitor - ok
    19:56:23.0479 5868 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    19:56:23.0495 5868 mouclass - ok
    19:56:23.0495 5868 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    19:56:23.0510 5868 mouhid - ok
    19:56:23.0541 5868 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    19:56:23.0557 5868 mountmgr - ok
    19:56:23.0635 5868 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    19:56:23.0651 5868 MpFilter - ok
    19:56:23.0697 5868 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    19:56:23.0713 5868 mpio - ok
    19:56:23.0729 5868 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    19:56:23.0760 5868 mpsdrv - ok
    19:56:23.0807 5868 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    19:56:23.0853 5868 MpsSvc - ok
    19:56:23.0885 5868 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    19:56:23.0916 5868 MRxDAV - ok
    19:56:23.0947 5868 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    19:56:23.0994 5868 mrxsmb - ok
    19:56:24.0025 5868 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    19:56:24.0056 5868 mrxsmb10 - ok
    19:56:24.0103 5868 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    19:56:24.0134 5868 mrxsmb20 - ok
    19:56:24.0150 5868 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    19:56:24.0165 5868 msahci - ok
    19:56:24.0181 5868 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    19:56:24.0197 5868 msdsm - ok
    19:56:24.0212 5868 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    19:56:24.0228 5868 MSDTC - ok
    19:56:24.0243 5868 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    19:56:24.0275 5868 Msfs - ok
    19:56:24.0290 5868 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    19:56:24.0321 5868 mshidkmdf - ok
    19:56:24.0337 5868 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    19:56:24.0337 5868 msisadrv - ok
    19:56:24.0353 5868 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    19:56:24.0384 5868 MSiSCSI - ok
    19:56:24.0384 5868 msiserver - ok
    19:56:24.0399 5868 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    19:56:24.0446 5868 MSKSSRV - ok
    19:56:24.0509 5868 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    19:56:24.0540 5868 MsMpSvc - ok
    19:56:24.0540 5868 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    19:56:24.0587 5868 MSPCLOCK - ok
    19:56:24.0602 5868 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    19:56:24.0649 5868 MSPQM - ok
    19:56:24.0680 5868 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    19:56:24.0711 5868 MsRPC - ok
    19:56:24.0758 5868 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    19:56:24.0774 5868 mssmbios - ok
    19:56:24.0789 5868 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    19:56:24.0852 5868 MSTEE - ok
    19:56:24.0867 5868 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    19:56:24.0883 5868 MTConfig - ok
    19:56:24.0899 5868 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    19:56:24.0914 5868 Mup - ok
    19:56:24.0930 5868 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
    19:56:24.0930 5868 mwlPSDFilter - ok
    19:56:24.0961 5868 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
    19:56:24.0961 5868 mwlPSDNServ - ok
    19:56:24.0977 5868 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
    19:56:24.0977 5868 mwlPSDVDisk - ok
    19:56:24.0992 5868 [ 0F5FAAC852DB4C340B7A2F187E3358B8 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
    19:56:25.0008 5868 MWLService - ok
    19:56:25.0008 5868 NAL - ok
    19:56:25.0023 5868 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    19:56:25.0070 5868 napagent - ok
    19:56:25.0086 5868 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS
    wifi.sys
    19:56:25.0117 5868 NativeWifiP - ok
    19:56:25.0148 5868 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers
    dis.sys
    19:56:25.0179 5868 NDIS - ok
    19:56:25.0179 5868 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS
    discap.sys
    19:56:25.0226 5868 NdisCap - ok
    19:56:25.0226 5868 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS
    distapi.sys
    19:56:25.0257 5868 NdisTapi - ok
    19:56:25.0289 5868 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS
    disuio.sys
    19:56:25.0335 5868 Ndisuio - ok
    19:56:25.0367 5868 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS
    diswan.sys
    19:56:25.0413 5868 NdisWan - ok
    19:56:25.0413 5868 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    19:56:25.0476 5868 NDProxy - ok
    19:56:25.0523 5868 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
    19:56:25.0554 5868 Nero BackItUp Scheduler 4.0 - ok
    19:56:25.0585 5868 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    19:56:25.0601 5868 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    19:56:25.0601 5868 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    19:56:25.0616 5868 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS
    etbios.sys
    19:56:25.0663 5868 NetBIOS - ok
    19:56:25.0725 5868 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS
    etbt.sys
    19:56:25.0772 5868 NetBT - ok
    19:56:25.0772 5868 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    19:56:25.0788 5868 Netlogon - ok
    19:56:25.0803 5868 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32
    etman.dll
    19:56:25.0850 5868 Netman - ok
    19:56:25.0866 5868 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32
    etprofm.dll
    19:56:25.0897 5868 netprofm - ok
    19:56:25.0928 5868 [ B72BB9496A126FCFC7FC5945DED9B411 ] netr28x C:\Windows\system32\DRIVERS
    etr28x.sys
    19:56:25.0944 5868 netr28x - ok
    19:56:25.0975 5868 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    19:56:25.0991 5868 NetTcpPortSharing - ok
    19:56:26.0006 5868 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS
    frd960.sys
    19:56:26.0022 5868 nfrd960 - ok
    19:56:26.0053 5868 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    19:56:26.0069 5868 NisDrv - ok
    19:56:26.0100 5868 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
    19:56:26.0131 5868 NisSrv - ok
    19:56:26.0147 5868 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32
    lasvc.dll
    19:56:26.0162 5868 NlaSvc - ok
    19:56:26.0178 5868 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    19:56:26.0209 5868 Npfs - ok
    19:56:26.0209 5868 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32
    sisvc.dll
    19:56:26.0287 5868 nsi - ok
    19:56:26.0303 5868 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers
    siproxy.sys
    19:56:26.0334 5868 nsiproxy - ok
    19:56:26.0396 5868 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    19:56:26.0459 5868 Ntfs - ok
    19:56:26.0490 5868 [ BD691091AC7D9713D8F0B07C6B099E6C ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
    19:56:26.0505 5868 NTI IScheduleSvc - ok
    19:56:26.0521 5868 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
    19:56:26.0537 5868 NTIDrvr - ok
    19:56:26.0552 5868 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    19:56:26.0615 5868 Null - ok
    19:56:26.0630 5868 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers
    vhda64v.sys
    19:56:26.0646 5868 NVHDA - ok
    19:56:26.0849 5868 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS
    vlddmkm.sys
    19:56:27.0005 5868 nvlddmkm - ok
    19:56:27.0020 5868 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers
    vraid.sys
    19:56:27.0036 5868 nvraid - ok
    19:56:27.0067 5868 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers
    vstor.sys
    19:56:27.0083 5868 nvstor - ok
    19:56:27.0145 5868 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32
    vvsvc.exe
    19:56:27.0192 5868 nvsvc - ok
    19:56:27.0270 5868 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    19:56:27.0301 5868 nvUpdatusService - ok
    19:56:27.0317 5868 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers
    v_agp.sys
    19:56:27.0317 5868 nv_agp - ok
    19:56:27.0332 5868 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    19:56:27.0332 5868 ohci1394 - ok
    19:56:27.0379 5868 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    19:56:27.0379 5868 ose - ok
    19:56:27.0488 5868 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    19:56:27.0551 5868 osppsvc - ok
    19:56:27.0582 5868 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    19:56:27.0613 5868 p2pimsvc - ok
    19:56:27.0629 5868 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    19:56:27.0644 5868 p2psvc - ok
    19:56:27.0660 5868 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    19:56:27.0675 5868 Parport - ok
    19:56:27.0707 5868 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    19:56:27.0707 5868 partmgr - ok
    19:56:27.0722 5868 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    19:56:27.0738 5868 PcaSvc - ok
    19:56:27.0753 5868 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    19:56:27.0769 5868 pci - ok
    19:56:27.0785 5868 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    19:56:27.0785 5868 pciide - ok
    19:56:27.0800 5868 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    19:56:27.0816 5868 pcmcia - ok
    19:56:27.0816 5868 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    19:56:27.0831 5868 pcw - ok
    19:56:27.0863 5868 [ C65CEBC504DE95212232213010DB9A51 ] PdiPorts C:\Windows\system32\DRIVERS\PdiPorts.sys
    19:56:27.0878 5868 PdiPorts - ok
    19:56:27.0909 5868 [ 0A098DF98EC8FACAA30BD7DB4C7AEA06 ] PdiService C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
    19:56:27.0956 5868 PdiService - ok
    19:56:27.0987 5868 [ 631CC6305C99933F264ED7000CDF2D2A ] pe3apx8b C:\Windows\system32\drivers\pe3apx8b.sys
    19:56:28.0003 5868 pe3apx8b - ok
    19:56:28.0019 5868 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    19:56:28.0081 5868 PEAUTH - ok
    19:56:28.0143 5868 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    19:56:28.0175 5868 PerfHost - ok
    19:56:28.0221 5868 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    19:56:28.0331 5868 pla - ok
    19:56:28.0377 5868 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    19:56:28.0424 5868 PlugPlay - ok
    19:56:28.0471 5868 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    19:56:28.0502 5868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
    19:56:28.0502 5868 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
    19:56:28.0518 5868 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    19:56:28.0549 5868 PNRPAutoReg - ok
    19:56:28.0565 5868 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    19:56:28.0580 5868 PNRPsvc - ok
    19:56:28.0596 5868 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    19:56:28.0627 5868 PolicyAgent - ok
    19:56:28.0658 5868 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    19:56:28.0689 5868 Power - ok
    19:56:28.0721 5868 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    19:56:28.0752 5868 PptpMiniport - ok
    19:56:28.0783 5868 pr2apx8b - ok
    19:56:28.0783 5868 PRISM_A02 - ok
    19:56:28.0814 5868 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    19:56:28.0830 5868 Processor - ok
    19:56:28.0861 5868 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    19:56:28.0877 5868 ProfSvc - ok
    19:56:28.0892 5868 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    19:56:28.0908 5868 ProtectedStorage - ok
    19:56:28.0939 5868 [ A8B0CC75F04AE882FB868EAD9C9D11C4 ] ps7apx8b C:\Windows\system32\drivers\ps7apx8b.sys
    19:56:28.0970 5868 ps7apx8b - ok
    19:56:29.0017 5868 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    19:56:29.0064 5868 Psched - ok
    19:56:29.0095 5868 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    19:56:29.0142 5868 ql2300 - ok
    19:56:29.0157 5868 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    19:56:29.0173 5868 ql40xx - ok
    19:56:29.0189 5868 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    19:56:29.0220 5868 QWAVE - ok
    19:56:29.0235 5868 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    19:56:29.0235 5868 QWAVEdrv - ok
    19:56:29.0282 5868 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
    19:56:29.0298 5868 RapiMgr - ok
    19:56:29.0313 5868 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    19:56:29.0360 5868 RasAcd - ok
    19:56:29.0376 5868 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    19:56:29.0407 5868 RasAgileVpn - ok
    19:56:29.0423 5868 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    19:56:29.0438 5868 RasAuto - ok
    19:56:29.0485 5868 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    19:56:29.0532 5868 Rasl2tp - ok
    19:56:29.0547 5868 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    19:56:29.0579 5868 RasMan - ok
    19:56:29.0594 5868 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    19:56:29.0625 5868 RasPppoe - ok
    19:56:29.0657 5868 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    19:56:29.0672 5868 RasSstp - ok
    19:56:29.0688 5868 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    19:56:29.0719 5868 rdbss - ok
    19:56:29.0719 5868 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    19:56:29.0735 5868 rdpbus - ok
    19:56:29.0750 5868 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    19:56:29.0766 5868 RDPCDD - ok
    19:56:29.0781 5868 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    19:56:29.0828 5868 RDPENCDD - ok
    19:56:29.0828 5868 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    19:56:29.0859 5868 RDPREFMP - ok
    19:56:29.0906 5868 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    19:56:29.0937 5868 RdpVideoMiniport - ok
    19:56:29.0984 5868 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    19:56:30.0047 5868 RDPWD - ok
    19:56:30.0062 5868 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    19:56:30.0078 5868 rdyboost - ok
    19:56:30.0109 5868 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    19:56:30.0125 5868 RemoteAccess - ok
    19:56:30.0156 5868 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    19:56:30.0203 5868 RemoteRegistry - ok
    19:56:30.0249 5868 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
    19:56:30.0281 5868 RFCOMM - ok
    19:56:30.0281 5868 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    19:56:30.0312 5868 RpcEptMapper - ok
    19:56:30.0327 5868 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    19:56:30.0327 5868 RpcLocator - ok
    19:56:30.0343 5868 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
    19:56:30.0374 5868 RpcSs - ok
    19:56:30.0390 5868 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    19:56:30.0405 5868 rspndr - ok
    19:56:30.0421 5868 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    19:56:30.0421 5868 SamSs - ok
    19:56:30.0468 5868 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    19:56:30.0483 5868 sbp2port - ok
    19:56:30.0483 5868 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    19:56:30.0515 5868 SCardSvr - ok
    19:56:30.0546 5868 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    19:56:30.0577 5868 scfilter - ok
    19:56:30.0624 5868 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    19:56:30.0717 5868 Schedule - ok
    19:56:30.0749 5868 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    19:56:30.0764 5868 SCPolicySvc - ok
    19:56:30.0780 5868 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    19:56:30.0827 5868 SDRSVC - ok
    19:56:30.0842 5868 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    19:56:30.0905 5868 secdrv - ok
    19:56:30.0951 5868 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    19:56:31.0014 5868 seclogon - ok
    19:56:31.0045 5868 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
    19:56:31.0092 5868 SENS - ok
    19:56:31.0123 5868 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    19:56:31.0139 5868 SensrSvc - ok
    19:56:31.0139 5868 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    19:56:31.0154 5868 Serenum - ok
    19:56:31.0170 5868 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    19:56:31.0170 5868 Serial - ok
    19:56:31.0170 5868 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    19:56:31.0185 5868 sermouse - ok
    19:56:31.0217 5868 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    19:56:31.0263 5868 SessionEnv - ok
    19:56:31.0279 5868 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    19:56:31.0310 5868 sffdisk - ok
    19:56:31.0310 5868 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    19:56:31.0341 5868 sffp_mmc - ok
    19:56:31.0357 5868 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    19:56:31.0373 5868 sffp_sd - ok
    19:56:31.0388 5868 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    19:56:31.0404 5868 sfloppy - ok
    19:56:31.0419 5868 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    19:56:31.0466 5868 SharedAccess - ok
    19:56:31.0497 5868 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    19:56:31.0529 5868 ShellHWDetection - ok
    19:56:31.0529 5868 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    19:56:31.0544 5868 SiSRaid2 - ok
    19:56:31.0560 5868 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    19:56:31.0560 5868 SiSRaid4 - ok
    19:56:31.0575 5868 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    19:56:31.0591 5868 Smb - ok
    19:56:31.0622 5868 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    19:56:31.0638 5868 SNMPTRAP - ok
    19:56:31.0638 5868 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    19:56:31.0653 5868 spldr - ok
    19:56:31.0700 5868 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    19:56:31.0731 5868 Spooler - ok
    19:56:31.0825 5868 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    19:56:31.0934 5868 sppsvc - ok
    19:56:31.0934 5868 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    19:56:31.0981 5868 sppuinotify - ok
    19:56:32.0012 5868 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    19:56:32.0059 5868 srv - ok
    19:56:32.0075 5868 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    19:56:32.0090 5868 srv2 - ok
    19:56:32.0106 5868 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    19:56:32.0137 5868 srvnet - ok
    19:56:32.0153 5868 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    19:56:32.0199 5868 SSDPSRV - ok
    19:56:32.0215 5868 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    19:56:32.0231 5868 SstpSvc - ok
    19:56:32.0309 5868 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision
    vSCPAPISvr.exe
    19:56:32.0340 5868 Stereo Service - ok
    19:56:32.0340 5868 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    19:56:32.0355 5868 stexstor - ok
    19:56:32.0402 5868 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    19:56:32.0433 5868 stisvc - ok
    19:56:32.0465 5868 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    19:56:32.0480 5868 swenum - ok
    19:56:32.0511 5868 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    19:56:32.0558 5868 swprv - ok
    19:56:32.0605 5868 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    19:56:32.0652 5868 SysMain - ok
    19:56:32.0667 5868 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    19:56:32.0683 5868 TabletInputService - ok
    19:56:32.0699 5868 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    19:56:32.0745 5868 TapiSrv - ok
    19:56:32.0761 5868 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    19:56:32.0792 5868 TBS - ok
    19:56:32.0855 5868 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    19:56:32.0917 5868 Tcpip - ok
    19:56:32.0948 5868 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    19:56:32.0979 5868 TCPIP6 - ok
    19:56:33.0011 5868 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    19:56:33.0026 5868 tcpipreg - ok
    19:56:33.0042 5868 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    19:56:33.0057 5868 TDPIPE - ok
    19:56:33.0104 5868 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    19:56:33.0120 5868 TDTCP - ok
    19:56:33.0135 5868 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    19:56:33.0167 5868 tdx - ok
    19:56:33.0167 5868 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    19:56:33.0182 5868 TermDD - ok
    19:56:33.0198 5868 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    19:56:33.0245 5868 TermService - ok
    19:56:33.0245 5868 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    19:56:33.0260 5868 Themes - ok
    19:56:33.0291 5868 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    19:56:33.0307 5868 THREADORDER - ok
    19:56:33.0323 5868 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    19:56:33.0354 5868 TrkWks - ok
    19:56:33.0385 5868 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    19:56:33.0447 5868 TrustedInstaller - ok
    19:56:33.0479 5868 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    19:56:33.0510 5868 tssecsrv - ok
    19:56:33.0525 5868 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    19:56:33.0557 5868 TsUsbFlt - ok
    19:56:33.0588 5868 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    19:56:33.0650 5868 tunnel - ok
    19:56:33.0650 5868 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    19:56:33.0666 5868 uagp35 - ok
    19:56:33.0681 5868 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
    19:56:33.0697 5868 UBHelper - ok
    19:56:33.0713 5868 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    19:56:33.0744 5868 udfs - ok
    19:56:33.0759 5868 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    19:56:33.0775 5868 UI0Detect - ok
    19:56:33.0775 5868 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    19:56:33.0791 5868 uliagpkx - ok
    19:56:33.0822 5868 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    19:56:33.0853 5868 umbus - ok
    19:56:33.0869 5868 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    19:56:33.0900 5868 UmPass - ok
    19:56:33.0947 5868 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
    19:56:33.0962 5868 Updater Service - ok
    19:56:33.0978 5868 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    19:56:34.0025 5868 upnphost - ok
    19:56:34.0040 5868 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    19:56:34.0056 5868 usbccgp - ok
    19:56:34.0056 5868 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    19:56:34.0071 5868 usbcir - ok
    19:56:34.0071 5868 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    19:56:34.0103 5868 usbehci - ok
    19:56:34.0103 5868 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    19:56:34.0134 5868 usbhub - ok
    19:56:34.0134 5868 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    19:56:34.0165 5868 usbohci - ok
    19:56:34.0181 5868 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    19:56:34.0196 5868 usbprint - ok
    19:56:34.0196 5868 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    19:56:34.0227 5868 USBSTOR - ok
    19:56:34.0227 5868 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    19:56:34.0243 5868 usbuhci - ok
    19:56:34.0290 5868 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
    19:56:34.0337 5868 usb_rndisx - ok
    19:56:34.0352 5868 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    19:56:34.0399 5868 UxSms - ok
    19:56:34.0399 5868 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    19:56:34.0415 5868 VaultSvc - ok
    19:56:34.0430 5868 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    19:56:34.0430 5868 vdrvroot - ok
    19:56:34.0461 5868 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    19:56:34.0493 5868 vds - ok
    19:56:34.0508 5868 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    19:56:34.0524 5868 vga - ok
    19:56:34.0524 5868 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    19:56:34.0555 5868 VgaSave - ok
    19:56:34.0571 5868 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    19:56:34.0586 5868 vhdmp - ok
    19:56:34.0586 5868 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    19:56:34.0602 5868 viaide - ok
    19:56:34.0617 5868 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    19:56:34.0617 5868 volmgr - ok
    19:56:34.0664 5868 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    19:56:34.0680 5868 volmgrx - ok
    19:56:34.0711 5868 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    19:56:34.0727 5868 volsnap - ok
    19:56:34.0742 5868 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    19:56:34.0758 5868 vsmraid - ok
    19:56:34.0820 5868 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    19:56:34.0898 5868 VSS - ok
    19:56:34.0929 5868 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    19:56:34.0961 5868 vwifibus - ok
    19:56:34.0976 5868 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    19:56:35.0023 5868 vwififlt - ok
    19:56:35.0054 5868 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    19:56:35.0101 5868 W32Time - ok
    19:56:35.0117 5868 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    19:56:35.0148 5868 WacomPen - ok
    19:56:35.0163 5868 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    19:56:35.0226 5868 WANARP - ok
    19:56:35.0226 5868 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    19:56:35.0257 5868 Wanarpv6 - ok
    19:56:35.0304 5868 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    19:56:35.0366 5868 WatAdminSvc - ok
    19:56:35.0413 5868 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    19:56:35.0491 5868 wbengine - ok
    19:56:35.0507 5868 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    19:56:35.0538 5868 WbioSrvc - ok
    19:56:35.0600 5868 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
    19:56:35.0616 5868 WcesComm - ok
    19:56:35.0631 5868 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    19:56:35.0663 5868 wcncsvc - ok
    19:56:35.0678 5868 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    19:56:35.0709 5868 WcsPlugInService - ok
    19:56:35.0725 5868 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    19:56:35.0741 5868 Wd - ok
    19:56:35.0772 5868 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    19:56:35.0803 5868 Wdf01000 - ok
    19:56:35.0819 5868 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    19:56:35.0881 5868 WdiServiceHost - ok
    19:56:35.0881 5868 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    19:56:35.0912 5868 WdiSystemHost - ok
    19:56:35.0943 5868 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    19:56:35.0990 5868 WebClient - ok
    19:56:35.0990 5868 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    19:56:36.0053 5868 Wecsvc - ok
    19:56:36.0068 5868 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    19:56:36.0115 5868 wercplsupport - ok
    19:56:36.0115 5868 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    19:56:36.0162 5868 WerSvc - ok
    19:56:36.0177 5868 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    19:56





















  • deel 2:

    19:56:36.0193 5868 WfpLwf - ok
    19:56:36.0209 5868 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    19:56:36.0209 5868 WIMMount - ok
    19:56:36.0224 5868 WinDefend - ok
    19:56:36.0224 5868 WinHttpAutoProxySvc - ok
    19:56:36.0271 5868 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    19:56:36.0333 5868 Winmgmt - ok
    19:56:36.0380 5868 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
    19:56:36.0458 5868 WinRM - ok
    19:56:36.0521 5868 [ FE88B288356E7B47B74B13372ADD906D ] WINUSB C:\Windows\system32\DRIVERS\WinUsb.sys
    19:56:36.0552 5868 WINUSB - ok
    19:56:36.0583 5868 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    19:56:36.0614 5868 Wlansvc - ok
    19:56:36.0692 5868 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    19:56:36.0708 5868 wlcrasvc - ok
    19:56:36.0770 5868 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    19:56:36.0848 5868 wlidsvc - ok
    19:56:36.0864 5868 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    19:56:36.0864 5868 WmiAcpi - ok
    19:56:36.0879 5868 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    19:56:36.0895 5868 wmiApSrv - ok
    19:56:36.0926 5868 WMPNetworkSvc - ok
    19:56:36.0942 5868 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    19:56:36.0957 5868 WPCSvc - ok
    19:56:36.0989 5868 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    19:56:37.0004 5868 WPDBusEnum - ok
    19:56:37.0020 5868 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    19:56:37.0082 5868 ws2ifsl - ok
    19:56:37.0082 5868 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
    19:56:37.0113 5868 wscsvc - ok
    19:56:37.0113 5868 WSearch - ok
    19:56:37.0191 5868 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    19:56:37.0269 5868 wuauserv - ok
    19:56:37.0301 5868 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    19:56:37.0332 5868 WudfPf - ok
    19:56:37.0347 5868 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    19:56:37.0379 5868 WUDFRd - ok
    19:56:37.0410 5868 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    19:56:37.0425 5868 wudfsvc - ok
    19:56:37.0441 5868 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    19:56:37.0472 5868 WwanSvc - ok
    19:56:37.0519 5868 ================ Scan global ===============================
    19:56:37.0550 5868 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    19:56:37.0597 5868 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    19:56:37.0613 5868 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    19:56:37.0628 5868 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    19:56:37.0659 5868 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    19:56:37.0659 5868 [Global] - ok
    19:56:37.0659 5868 ================ Scan MBR ==================================
    19:56:37.0675 5868 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    19:56:37.0925 5868 \Device\Harddisk0\DR0 - ok
    19:56:37.0925 5868 ================ Scan VBR ==================================
    19:56:37.0925 5868 [ 1FA8E7B3408ACA79C18C047435B0A9EF ] \Device\Harddisk0\DR0\Partition1
    19:56:37.0925 5868 \Device\Harddisk0\DR0\Partition1 - ok
    19:56:37.0956 5868 [ 0504AE92A78841697FEB8803334E83A1 ] \Device\Harddisk0\DR0\Partition2
    19:56:37.0956 5868 \Device\Harddisk0\DR0\Partition2 - ok
    19:56:37.0987 5868 [ 441207C72FFD6B18A8254C37176F1C24 ] \Device\Harddisk0\DR0\Partition3
    19:56:37.0987 5868 \Device\Harddisk0\DR0\Partition3 - ok
    19:56:37.0987 5868 ============================================================
    19:56:37.0987 5868 Scan finished
    19:56:37.0987 5868 ============================================================
    19:56:37.0987 6112 Detected object count: 4
    19:56:37.0987 6112 Actual detected object count: 4
    19:56:42.0698 6112 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
    19:56:42.0698 6112 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    19:56:42.0698 6112 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
    19:56:42.0698 6112 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
    19:56:42.0698 6112 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
    19:56:42.0698 6112 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
    19:56:42.0698 6112 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
    19:56:42.0698 6112 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
  • Goed gedaan.

    WhoCrashed introductie

    WhoCrashed beschrijving

    Download de [i:017ea48155]free home edition[/i:017ea48155] van [b:017ea48155]WhoCrashed[/b:017ea48155] naar je bureaublad via klik hier [img:017ea48155]http://i65.servimg.com/u/f65/11/35/67/12/whocra10.png[/img:017ea48155] en installeer het tool via klikken/dubbelklikken op "[b:017ea48155]whocrashedSetup.exe[/b:017ea48155]"

    Nadat 'WhoCrashed' is opgestart, klik je op de "[b:017ea48155]Analyze[/b:017ea48155]" knop.

    Selekteer nu de inhoud van het venster, kopieer dit en post het resultaat in je volgende post.
  • hierbij het resultaat (bovenste infodeel verwijderd)

    System Information (local)
    ——————————————————————————–

    computer name: ERIKA-PC
    windows version: Windows 7 Service Pack 1, 6.1, build: 7601
    windows dir: C:\Windows
    CPU: GenuineIntel Intel(R) Core(TM) i5 CPU 750 @ 2.67GHz Intel586, level: 6
    4 logical processors, active mask: 15
    RAM: 6433095680 total
    VM: 2147352576, free: 1960554496




    ——————————————————————————–
    Crash Dump Analysis
    ——————————————————————————–

    Crash dump directory: C:\Windows\Minidump

    Crash dumps are enabled on your computer.

    On Wed 19-12-2012 17:44:03 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121912-16473-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA8005D94420, 0xFFFFF8800FD99630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Wed 19-12-2012 17:44:03 GMT your computer crashed
    crash dump file: C:\Windows\memory.dmp
    This was probably caused by the following module: nvlddmkm.sys (0xFFFFF8800FD99630)
    Bugcheck code: 0x116 (0xFFFFFA8005D94420, 0xFFFFF8800FD99630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Wed 19-12-2012 17:27:21 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121912-15756-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800B441010, 0xFFFFF8800FD83630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Tue 18-12-2012 18:49:06 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121812-15303-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA8005C3D010, 0xFFFFF8800FDBE630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Tue 18-12-2012 18:21:26 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121812-14820-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800609A4E0, 0xFFFFF8800FD03630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Tue 18-12-2012 17:59:07 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121812-17425-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800ACCE010, 0xFFFFF8800FDA9630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 16:16:55 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-22464-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA80071D4010, 0xFFFFF8800FD59630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 15:52:07 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-43274-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA80055B74E0, 0xFFFFF8800FDC7630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 15:41:06 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-18252-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA80059D64E0, 0xFFFFF8800FD42630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 15:32:34 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-18096-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800AA644E0, 0xFFFFF8800FD7E630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 14:47:51 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-16941-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA80060A54E0, 0xFFFFF8800FDCF630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Sat 15-12-2012 10:42:39 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121512-19702-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800A335010, 0xFFFFF8800FDC4630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Thu 13-12-2012 13:17:09 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121312-20467-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA8009E1A4E0, 0xFFFFF8800FD25630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Wed 12-12-2012 10:17:02 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121212-17565-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA8005BFE390, 0xFFFFF8800FDA6630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR



    On Tue 11-12-2012 11:01:50 GMT your computer crashed
    crash dump file: C:\Windows\Minidump\121112-18782-01.dmp
    This was probably caused by the following module: nvlddmkm.sys (nvlddmkm+0xADE630)
    Bugcheck code: 0x116 (0xFFFFFA800AABB010, 0xFFFFF8800FD5A630, 0xFFFFFFFFC000009A, 0x4)
    Error: VIDEO_TDR_ERROR
    file path: C:\Windows\system32\drivers
    vlddmkm.sys
    product: NVIDIA Windows Kernel Mode Driver, Version 306.97
    company: NVIDIA Corporation
    description: NVIDIA Windows Kernel Mode Driver, Version 306.97
    Bug check description: This indicates that an attempt to reset the display driver and recover from a timeout failed.
    A third party driver was identified as the probable root cause of this system error. It is suggested you look for an update for the following driver: nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation).
    Google query: NVIDIA Corporation VIDEO_TDR_ERROR




    ——————————————————————————–
    Conclusion
    ——————————————————————————–

    16 crash dumps have been found and analyzed. Only 15 are included in this report. A third party driver has been identified to be causing system crashes on your computer. It is strongly suggested that you check for updates for these drivers on their company websites. Click on the links below to search with Google for updates for these drivers:

    nvlddmkm.sys (NVIDIA Windows Kernel Mode Driver, Version 306.97 , NVIDIA Corporation)

    If no updates for these drivers are available, try searching with Google on the names of these drivers in combination the errors that have been reported for these drivers and include the brand and model name of your computer as well in the query. This often yields interesting results from discussions from users who have been experiencing similar problems.


    Read the topic general suggestions for troubleshooting system crashes for more information.

    Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.














Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.