HijackThis logje nakijken na verwijdering Trojan

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

O4 - HKCU\..\Run: [acceafebefafcdct] "C:\ProgramData\acceafebefafcdct.exe"

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

En als extra controle. Download TDSSKilleren plaats het op je bureaublad.
Pak de bestanden in tdsskiller.zip uit.
Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.

Windows 7 en Windows Vista gebruikers:
Rechtsklik op TDSSKiller.exe -> Uitvoeren als Administrator om de tool te starten.

Als TDSSKiller bericht geeft van een beschikbare update, dan voer je deze eerst uit.

Klik op de knop "Start Scan" en volg de instructies.
Wanneer de scan klaar is klik je op de knop "Report".
Er opent een kladblokbestand. Post de inhoud van dit bestand.

Herstart de pc als TDSSKiller die optie geeft. (Reboot now)

Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt. Hang dit in je volgende bericht, samen met een nieuw log van HijackThis.

14:18:45.0701 1760 TDSS rootkit removing tool 2.7.29.0 Apr 18 2012 16:44:20
14:18:45.0769 1760 ============================================================
14:18:45.0770 1760 Current date / time: 2012/04/19 14:18:45.0769
14:18:45.0770 1760 SystemInfo:
14:18:45.0770 1760
14:18:45.0770 1760 OS Version: 6.1.7601 ServicePack: 1.0
14:18:45.0770 1760 Product type: Workstation
14:18:45.0770 1760 ComputerName: GEBRUIKER-PC
14:18:45.0770 1760 UserName: gebruiker
14:18:45.0770 1760 Windows directory: C:\Windows
14:18:45.0770 1760 System windows directory: C:\Windows
14:18:45.0770 1760 Running under WOW64
14:18:45.0770 1760 Processor architecture: Intel x64
14:18:45.0770 1760 Number of processors: 4
14:18:45.0770 1760 Page size: 0x1000
14:18:45.0770 1760 Boot type: Normal boot
14:18:45.0770 1760 ============================================================
14:18:46.0323 1760 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:18:46.0328 1760 \Device\Harddisk0\DR0:
14:18:46.0328 1760 MBR partitions:
14:18:46.0328 1760 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2711676, BlocksNum 0xE8E0168
14:18:46.0346 1760 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x10FF2000, BlocksNum 0x29393800
14:18:46.0385 1760 C: <-> \Device\Harddisk0\DR0\Partition0
14:18:46.0421 1760 D: <-> \Device\Harddisk0\DR0\Partition1
14:18:46.0421 1760 Initialize success
14:18:46.0421 1760 ============================================================
14:18:58.0957 3704 ============================================================
14:18:58.0957 3704 Scan started
14:18:58.0957 3704 Mode: Manual;
14:18:58.0957 3704 ============================================================
14:18:59.0312 3704 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:18:59.0314 3704 1394ohci - ok
14:18:59.0389 3704 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:18:59.0392 3704 ACPI - ok
14:18:59.0498 3704 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:18:59.0499 3704 AcpiPmi - ok
14:18:59.0574 3704 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:18:59.0577 3704 adp94xx - ok
14:18:59.0637 3704 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:18:59.0639 3704 adpahci - ok
14:18:59.0686 3704 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:18:59.0688 3704 adpu320 - ok
14:18:59.0728 3704 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:18:59.0730 3704 AeLookupSvc - ok
14:18:59.0823 3704 AFBAgent (2d00d3dadc1d3326ba788eb071f2726e) C:\Windows\system32\FBAgent.exe
14:18:59.0830 3704 AFBAgent - ok
14:18:59.0888 3704 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:18:59.0891 3704 AFD - ok
14:18:59.0947 3704 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:18:59.0948 3704 agp440 - ok
14:19:00.0029 3704 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:19:00.0031 3704 ALG - ok
14:19:00.0108 3704 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:19:00.0109 3704 aliide - ok
14:19:00.0156 3704 AMD External Events Utility (3d90cf67db75823a8480e56bbcd2e028) C:\Windows\system32\atiesrxx.exe
14:19:00.0161 3704 AMD External Events Utility - ok
14:19:00.0229 3704 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:19:00.0230 3704 amdide - ok
14:19:00.0291 3704 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:19:00.0292 3704 AmdK8 - ok
14:19:00.0422 3704 amdkmdag (52679612d742bf74ca1ba6ab86ddf431) C:\Windows\system32\DRIVERS\atipmdag.sys
14:19:00.0546 3704 amdkmdag - ok
14:19:00.0584 3704 amdkmdap (414e0788920a8c856032be2cbf29f984) C:\Windows\system32\DRIVERS\atikmpag.sys
14:19:00.0586 3704 amdkmdap - ok
14:19:00.0619 3704 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:19:00.0621 3704 AmdPPM - ok
14:19:00.0667 3704 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
14:19:00.0669 3704 amdsata - ok
14:19:00.0711 3704 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:19:00.0713 3704 amdsbs - ok
14:19:00.0757 3704 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
14:19:00.0758 3704 amdxata - ok
14:19:00.0867 3704 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:19:00.0869 3704 AppID - ok
14:19:00.0911 3704 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:19:00.0913 3704 AppIDSvc - ok
14:19:00.0967 3704 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:19:00.0970 3704 Appinfo - ok
14:19:01.0029 3704 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:19:01.0031 3704 arc - ok
14:19:01.0094 3704 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:19:01.0095 3704 arcsas - ok
14:19:01.0179 3704 ASLDRService (18e5c2f937f9deb8c282df66a3761925) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
14:19:01.0180 3704 ASLDRService - ok
14:19:01.0225 3704 ASMMAP64 (4c016fd76ed5c05e84ca8cab77993961) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
14:19:01.0225 3704 ASMMAP64 - ok
14:19:01.0328 3704 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:19:01.0331 3704 AsyncMac - ok
14:19:01.0410 3704 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:19:01.0411 3704 atapi - ok
14:19:01.0494 3704 athr (f8633cdd09647a64ee8db550630427ff) C:\Windows\system32\DRIVERS\athrx.sys
14:19:01.0529 3704 athr - ok
14:19:01.0666 3704 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
14:19:01.0667 3704 AtiHdmiService - ok
14:19:01.0840 3704 atikmdag (52679612d742bf74ca1ba6ab86ddf431) C:\Windows\system32\DRIVERS\atikmdag.sys
14:19:01.0976 3704 atikmdag - ok
14:19:02.0067 3704 ATKGFNEXSrv (7910158929571214a959d5a6d16dd9c0) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
14:19:02.0068 3704 ATKGFNEXSrv - ok
14:19:02.0167 3704 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:19:02.0177 3704 AudioEndpointBuilder - ok
14:19:02.0188 3704 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:19:02.0193 3704 AudioSrv - ok
14:19:02.0366 3704 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
14:19:02.0390 3704 AVGIDSAgent - ok
14:19:02.0489 3704 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
14:19:02.0490 3704 AVGIDSDriver - ok
14:19:02.0510 3704 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
14:19:02.0512 3704 AVGIDSEH - ok
14:19:02.0545 3704 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
14:19:02.0546 3704 AVGIDSFilter - ok
14:19:02.0588 3704 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
14:19:02.0590 3704 Avgldx64 - ok
14:19:02.0629 3704 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
14:19:02.0630 3704 Avgmfx64 - ok
14:19:02.0750 3704 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
14:19:02.0751 3704 Avgrkx64 - ok
14:19:02.0789 3704 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
14:19:02.0792 3704 Avgtdia - ok
14:19:02.0867 3704 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
14:19:02.0869 3704 avgwd - ok
14:19:02.0961 3704 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:19:02.0965 3704 AxInstSV - ok
14:19:03.0043 3704 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:19:03.0046 3704 b06bdrv - ok
14:19:03.0130 3704 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:19:03.0135 3704 b57nd60a - ok
14:19:03.0255 3704 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
14:19:03.0256 3704 BBSvc - ok
14:19:03.0292 3704 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
14:19:03.0293 3704 BBUpdate - ok
14:19:03.0382 3704 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:19:03.0386 3704 BDESVC - ok
14:19:03.0451 3704 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:19:03.0453 3704 Beep - ok
14:19:03.0520 3704 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:19:03.0545 3704 BFE - ok
14:19:03.0615 3704 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:19:03.0637 3704 BITS - ok
14:19:03.0729 3704 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:19:03.0731 3704 blbdrive - ok
14:19:03.0806 3704 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:19:03.0809 3704 bowser - ok
14:19:03.0869 3704 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:19:03.0870 3704 BrFiltLo - ok
14:19:03.0881 3704 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:19:03.0882 3704 BrFiltUp - ok
14:19:03.0920 3704 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:19:03.0924 3704 Browser - ok
14:19:03.0952 3704 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:19:03.0954 3704 Brserid - ok
14:19:03.0973 3704 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:19:03.0975 3704 BrSerWdm - ok
14:19:03.0996 3704 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:19:03.0997 3704 BrUsbMdm - ok
14:19:04.0019 3704 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:19:04.0020 3704 BrUsbSer - ok
14:19:04.0043 3704 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:19:04.0044 3704 BTHMODEM - ok
14:19:04.0096 3704 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:19:04.0099 3704 bthserv - ok
14:19:04.0154 3704 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:19:04.0157 3704 cdfs - ok
14:19:04.0213 3704 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
14:19:04.0214 3704 cdrom - ok
14:19:04.0304 3704 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:19:04.0308 3704 CertPropSvc - ok
14:19:04.0362 3704 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:19:04.0363 3704 circlass - ok
14:19:04.0428 3704 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:19:04.0430 3704 CLFS - ok
14:19:04.0530 3704 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:19:04.0531 3704 clr_optimization_v2.0.50727_32 - ok
14:19:04.0622 3704 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:19:04.0623 3704 clr_optimization_v2.0.50727_64 - ok
14:19:04.0775 3704 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:19:04.0778 3704 clr_optimization_v4.0.30319_32 - ok
14:19:04.0852 3704 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:19:04.0855 3704 clr_optimization_v4.0.30319_64 - ok
14:19:04.0908 3704 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:19:04.0911 3704 CmBatt - ok
14:19:04.0963 3704 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:19:04.0964 3704 cmdide - ok
14:19:05.0036 3704 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:19:05.0039 3704 CNG - ok
14:19:05.0092 3704 CnxtHdAudService (f7ca3accf5aa0e2182546c5be42b2e96) C:\Windows\system32\drivers\CHDRT64.sys
14:19:05.0102 3704 CnxtHdAudService - ok
14:19:05.0193 3704 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:19:05.0194 3704 Compbatt - ok
14:19:05.0232 3704 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:19:05.0234 3704 CompositeBus - ok
14:19:05.0271 3704 COMSysApp - ok
14:19:05.0296 3704 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:19:05.0297 3704 crcdisk - ok
14:19:05.0354 3704 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
14:19:05.0359 3704 CryptSvc - ok
14:19:05.0402 3704 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:19:05.0410 3704 DcomLaunch - ok
14:19:05.0453 3704 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:19:05.0459 3704 defragsvc - ok
14:19:05.0515 3704 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:19:05.0519 3704 DfsC - ok
14:19:05.0574 3704 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:19:05.0580 3704 Dhcp - ok
14:19:05.0629 3704 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:19:05.0630 3704 discache - ok
14:19:05.0681 3704 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:19:05.0682 3704 Disk - ok
14:19:05.0736 3704 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:19:05.0741 3704 Dnscache - ok
14:19:05.0817 3704 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:19:05.0823 3704 dot3svc - ok
14:19:05.0864 3704 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:19:05.0869 3704 DPS - ok
14:19:05.0913 3704 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:19:05.0916 3704 drmkaud - ok
14:19:05.0966 3704 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:19:05.0972 3704 DXGKrnl - ok
14:19:06.0010 3704 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:19:06.0014 3704 EapHost - ok
14:19:06.0102 3704 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:19:06.0120 3704 ebdrv - ok
14:19:06.0169 3704 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:19:06.0171 3704 EFS - ok
14:19:06.0244 3704 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
14:19:06.0248 3704 ehRecvr - ok
14:19:06.0280 3704 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
14:19:06.0281 3704 ehSched - ok
14:19:06.0390 3704 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:19:06.0393 3704 elxstor - ok
14:19:06.0450 3704 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:19:06.0452 3704 ErrDev - ok
14:19:06.0570 3704 ETD (06c94be9d9e1e6411429433a64a76936) C:\Windows\system32\DRIVERS\ETD.sys
14:19:06.0573 3704 ETD - ok
14:19:06.0632 3704 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:19:06.0638 3704 EventSystem - ok
14:19:06.0695 3704 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:19:06.0699 3704 exfat - ok
14:19:06.0728 3704 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:19:06.0741 3704 fastfat - ok
14:19:06.0798 3704 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:19:06.0803 3704 Fax - ok
14:19:06.0852 3704 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:19:06.0853 3704 fdc - ok
14:19:06.0881 3704 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:19:06.0884 3704 fdPHost - ok
14:19:06.0899 3704 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:19:06.0902 3704 FDResPub - ok
14:19:06.0924 3704 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:19:06.0925 3704 FileInfo - ok
14:19:06.0951 3704 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:19:06.0953 3704 Filetrace - ok
14:19:06.0986 3704 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:19:06.0988 3704 flpydisk - ok
14:19:07.0032 3704 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:19:07.0035 3704 FltMgr - ok
14:19:07.0087 3704 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
14:19:07.0121 3704 FontCache - ok
14:19:07.0230 3704 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:19:07.0231 3704 FontCache3.0.0.0 - ok
14:19:07.0288 3704 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:19:07.0290 3704 FsDepends - ok
14:19:07.0378 3704 fssfltr (2bf3b36b96d015af666b6aa63ae2e38f) C:\Windows\system32\DRIVERS\fssfltr.sys
14:19:07.0381 3704 fssfltr - ok
14:19:07.0486 3704 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
14:19:07.0490 3704 fsssvc - ok
14:19:07.0573 3704 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
14:19:07.0574 3704 Fs_Rec - ok
14:19:07.0650 3704 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:19:07.0652 3704 fvevol - ok
14:19:07.0690 3704 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:19:07.0691 3704 gagp30kx - ok
14:19:07.0741 3704 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:19:07.0763 3704 gpsvc - ok
14:19:07.0806 3704 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
14:19:07.0808 3704 hamachi - ok
14:19:07.0837 3704 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:19:07.0838 3704 hcw85cir - ok
14:19:07.0900 3704 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
14:19:07.0903 3704 HdAudAddService - ok
14:19:07.0954 3704 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
14:19:07.0955 3704 HDAudBus - ok
14:19:07.0983 3704 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
14:19:07.0984 3704 HECIx64 - ok
14:19:08.0006 3704 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:19:08.0007 3704 HidBatt - ok
14:19:08.0025 3704 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:19:08.0026 3704 HidBth - ok
14:19:08.0049 3704 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:19:08.0050 3704 HidIr - ok
14:19:08.0078 3704 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:19:08.0081 3704 hidserv - ok
14:19:08.0164 3704 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
14:19:08.0166 3704 HidUsb - ok
14:19:08.0210 3704 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:19:08.0214 3704 hkmsvc - ok
14:19:08.0261 3704 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:19:08.0267 3704 HomeGroupListener - ok
14:19:08.0288 3704 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:19:08.0294 3704 HomeGroupProvider - ok
14:19:08.0367 3704 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:19:08.0368 3704 HpSAMD - ok
14:19:08.0411 3704 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:19:08.0433 3704 HTTP - ok
14:19:08.0487 3704 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:19:08.0488 3704 hwpolicy - ok
14:19:08.0537 3704 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
14:19:08.0540 3704 i8042prt - ok
14:19:08.0584 3704 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
14:19:08.0587 3704 iaStor - ok
14:19:08.0648 3704 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
14:19:08.0651 3704 iaStorV - ok
14:19:08.0756 3704 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:19:08.0761 3704 idsvc - ok
14:19:08.0853 3704 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:19:08.0854 3704 iirsp - ok
14:19:08.0923 3704 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:19:08.0946 3704 IKEEXT - ok
14:19:09.0059 3704 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:19:09.0060 3704 intelide - ok
14:19:09.0117 3704 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:19:09.0118 3704 intelppm - ok
14:19:09.0149 3704 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:19:09.0153 3704 IPBusEnum - ok
14:19:09.0197 3704 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:19:09.0200 3704 IpFilterDriver - ok
14:19:09.0257 3704 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:19:09.0266 3704 iphlpsvc - ok
14:19:09.0314 3704 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:19:09.0315 3704 IPMIDRV - ok
14:19:09.0357 3704 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:19:09.0362 3704 IPNAT - ok
14:19:09.0442 3704 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:19:09.0445 3704 IRENUM - ok
14:19:09.0501 3704 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:19:09.0502 3704 isapnp - ok
14:19:09.0544 3704 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:19:09.0546 3704 iScsiPrt - ok
14:19:09.0644 3704 JMCR (db917b998cbc15a153c00dd6efc34c13) C:\Windows\system32\DRIVERS\jmcr.sys
14:19:09.0657 3704 JMCR - ok
14:19:09.0718 3704 JME (de4b2249d95c7815d06a39ea5ff4ee53) C:\Windows\system32\DRIVERS\JME.sys
14:19:09.0720 3704 JME - ok
14:19:09.0761 3704 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
14:19:09.0762 3704 kbdclass - ok
14:19:09.0821 3704 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
14:19:09.0824 3704 kbdhid - ok
14:19:09.0854 3704 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
14:19:09.0855 3704 kbfiltr - ok
14:19:09.0902 3704 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:19:09.0903 3704 KeyIso - ok
14:19:09.0942 3704 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:19:09.0943 3704 KSecDD - ok
14:19:10.0016 3704 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:19:10.0018 3704 KSecPkg - ok
14:19:10.0090 3704 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:19:10.0091 3704 ksthunk - ok
14:19:10.0144 3704 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:19:10.0152 3704 KtmRm - ok
14:19:10.0227 3704 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:19:10.0234 3704 LanmanServer - ok
14:19:10.0296 3704 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:19:10.0300 3704 LanmanWorkstation - ok
14:19:10.0370 3704 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:19:10.0372 3704 lltdio - ok
14:19:10.0416 3704 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:19:10.0423 3704 lltdsvc - ok
14:19:10.0451 3704 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:19:10.0453 3704 lmhosts - ok
14:19:10.0511 3704 LMS (a1c148801b4af64847aeb9f3ad9594ef) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:19:10.0515 3704 LMS - ok
14:19:10.0615 3704 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:19:10.0617 3704 LSI_FC - ok
14:19:10.0656 3704 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:19:10.0657 3704 LSI_SAS - ok
14:19:10.0762 3704 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:19:10.0763 3704 LSI_SAS2 - ok
14:19:10.0797 3704 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:19:10.0799 3704 LSI_SCSI - ok
14:19:10.0850 3704 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:19:10.0852 3704 luafv - ok
14:19:10.0908 3704 ***laby (085435ae1a124361304044029b5cc644) C:\Windows\system32\DRIVERS\***laby.sys
14:19:10.0909 3704 ***laby - ok
14:19:10.0972 3704 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
14:19:10.0973 3704 MBAMProtector - ok
14:19:11.0041 3704 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:19:11.0059 3704 MBAMService - ok
14:19:11.0155 3704 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
14:19:11.0159 3704 Mcx2Svc - ok
14:19:11.0198 3704 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:19:11.0199 3704 megasas - ok
14:19:11.0224 3704 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:19:11.0227 3704 MegaSR - ok
14:19:11.0319 3704 Microsoft SharePoint Workspace Audit Service - ok
14:19:11.0411 3704 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:19:11.0415 3704 MMCSS - ok
14:19:11.0452 3704 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:19:11.0455 3704 Modem - ok
14:19:11.0482 3704 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:19:11.0483 3704 monitor - ok
14:19:11.0536 3704 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
14:19:11.0537 3704 mouclass - ok
14:19:11.0572 3704 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:19:11.0574 3704 mouhid - ok
14:19:11.0630 3704 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:19:11.0632 3704 mountmgr - ok
14:19:11.0681 3704 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:19:11.0682 3704 mpio - ok
14:19:11.0719 3704 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:19:11.0722 3704 mpsdrv - ok
14:19:11.0781 3704 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:19:11.0806 3704 MpsSvc - ok
14:19:11.0860 3704 MRAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:19:11.0862 3704 MRAV - ok
14:19:11.0912 3704 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:19:11.0916 3704 mrxsmb - ok
14:19:11.0944 3704 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:19:11.0950 3704 mrxsmb10 - ok
14:19:11.0974 3704 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:19:11.0977 3704 mrxsmb20 - ok
14:19:12.0018 3704 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:19:12.0019 3704 msahci - ok
14:19:12.0041 3704 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:19:12.0042 3704 msdsm - ok
14:19:12.0077 3704 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:19:12.0079 3704 MSDTC - ok
14:19:12.0139 3704 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:19:12.0142 3704 Msfs - ok
14:19:12.0175 3704 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:19:12.0176 3704 mshidkmdf - ok
14:19:12.0220 3704 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:19:12.0221 3704 msisadrv - ok
14:19:12.0261 3704 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:19:12.0266 3704 MSiSCSI - ok
14:19:12.0275 3704 msiserver - ok
14:19:12.0320 3704 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:19:12.0322 3704 MSKSSRV - ok
14:19:12.0333 3704 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:19:12.0334 3704 MSPCLOCK - ok
14:19:12.0345 3704 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:19:12.0347 3704 MSPQM - ok
14:19:12.0402 3704 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:19:12.0408 3704 MsRPC - ok
14:19:12.0447 3704 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:19:12.0448 3704 mssmbios - ok
14:19:12.0484 3704 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:19:12.0486 3704 MSTEE - ok
14:19:12.0510 3704 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:19:12.0511 3704 MTConfig - ok
14:19:12.0546 3704 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
14:19:12.0547 3704 MTsensor - ok
14:19:12.0572 3704 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:19:12.0573 3704 Mup - ok
14:19:12.0630 3704 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:19:12.0638 3704 napagent - ok
14:19:12.0705 3704 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:19:12.0711 3704 NativeWifiP - ok
14:19:12.0775 3704 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:19:12.0781 3704 NDIS - ok
14:19:12.0825 3704 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:19:12.0828 3704 NdisCap - ok
14:19:12.0867 3704 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:19:12.0870 3704 NdisTapi - ok
14:19:12.0922 3704 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:19:12.0925 3704 Ndisuio - ok
14:19:12.0972 3704 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:19:12.0977 3704 NdisWan - ok
14:19:13.0021 3704 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:19:13.0024 3704 NDProxy - ok
14:19:13.0066 3704 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:19:13.0069 3704 NetBIOS - ok
14:19:13.0112 3704 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:19:13.0117 3704 NetBT - ok
14:19:13.0169 3704 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:19:13.0170 3704 Netlogon - ok
14:19:13.0227 3704 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:19:13.0235 3704 Netman - ok
14:19:13.0255 3704 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:19:13.0264 3704 netprofm - ok
14:19:13.0350 3704 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:19:13.0351 3704 NetTcpPortSharing - ok
14:19:13.0421 3704 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:19:13.0422 3704 nfrd960 - ok
14:19:13.0492 3704 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:19:13.0499 3704 NlaSvc - ok
14:19:13.0514 3704 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:19:13.0516 3704 Npfs - ok
14:19:13.0544 3704 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:19:13.0547 3704 nsi - ok
14:19:13.0568 3704 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:19:13.0569 3704 nsiproxy - ok
14:19:13.0637 3704 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
14:19:13.0681 3704 Ntfs - ok
14:19:13.0716 3704 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:19:13.0719 3704 Null - ok
14:19:13.0774 3704 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
14:19:13.0776 3704 nvraid - ok
14:19:13.0816 3704 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
14:19:13.0817 3704 nvstor - ok
14:19:13.0866 3704 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:19:13.0867 3704 nv_agp - ok
14:19:13.0907 3704 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:19:13.0908 3704 ohci1394 - ok
14:19:13.0971 3704 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:19:13.0974 3704 ose - ok
14:19:14.0140 3704 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:19:14.0262 3704 osppsvc - ok
14:19:14.0344 3704 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:19:14.0350 3704 p2pimsvc - ok
14:19:14.0384 3704 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:19:14.0393 3704 p2psvc - ok
14:19:14.0439 3704 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:19:14.0441 3704 Parport - ok
14:19:14.0490 3704 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
14:19:14.0491 3704 partmgr - ok
14:19:14.0524 3704 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:19:14.0530 3704 PcaSvc - ok
14:19:14.0589 3704 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:19:14.0591 3704 pci - ok
14:19:14.0627 3704 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:19:14.0628 3704 pciide - ok
14:19:14.0667 3704 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:19:14.0669 3704 pcmcia - ok
14:19:14.0692 3704 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:19:14.0693 3704 pcw - ok
14:19:14.0727 3704 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:19:14.0750 3704 PEAUTH - ok
14:19:14.0836 3704 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:19:14.0837 3704 PerfHost - ok
14:19:14.0938 3704 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:19:14.0972 3704 pla - ok
14:19:15.0052 3704 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:19:15.0060 3704 PlugPlay - ok
14:19:15.0130 3704 PnkBstrA - ok
14:19:15.0183 3704 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:19:15.0186 3704 PNRPAutoReg - ok
14:19:15.0224 3704 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:19:15.0227 3704 PNRPsvc - ok
14:19:15.0278 3704 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:19:15.0286 3704 PolicyAgent - ok
14:19:15.0325 3704 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:19:15.0331 3704 Power - ok
14:19:15.0404 3704 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:19:15.0407 3704 PptpMiniport - ok
14:19:15.0448 3704 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:19:15.0449 3704 Processor - ok
14:19:15.0499 3704 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
14:19:15.0504 3704 ProfSvc - ok
14:19:15.0535 3704 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:19:15.0536 3704 ProtectedStorage - ok
14:19:15.0610 3704 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:19:15.0613 3704 Psched - ok
14:19:15.0687 3704 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:19:15.0696 3704 ql2300 - ok
14:19:15.0736 3704 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:19:15.0737 3704 ql40xx - ok
14:19:15.0783 3704 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:19:15.0790 3704 QWAVE - ok
14:19:15.0813 3704 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:19:15.0815 3704 QWAVEdrv - ok
14:19:15.0839 3704 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:19:15.0842 3704 RasAcd - ok
14:19:15.0965 3704 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:19:15.0968 3704 RasAgileVpn - ok
14:19:15.0997 3704 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:19:16.0001 3704 RasAuto - ok
14:19:16.0062 3704 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:19:16.0066 3704 Rasl2tp - ok
14:19:16.0132 3704 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:19:16.0139 3704 RasMan - ok
14:19:16.0210 3704 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:19:16.0213 3704 RasPppoe - ok
14:19:16.0244 3704 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:19:16.0247 3704 RasSstp - ok
14:19:16.0300 3704 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:19:16.0306 3704 rdbss - ok
14:19:16.0347 3704 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:19:16.0348 3704 rdpbus - ok
14:19:16.0370 3704 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:19:16.0371 3704 RDPCDD - ok
14:19:16.0464 3704 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:19:16.0465 3704 RDPENCDD - ok
14:19:16.0498 3704 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:19:16.0499 3704 RDPREFMP - ok
14:19:16.0589 3704 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
14:19:16.0594 3704 RDPWD - ok
14:19:16.0720 3704 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:19:16.0722 3704 rdyboost - ok
14:19:16.0753 3704 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:19:16.0757 3704 RemoteAccess - ok
14:19:16.0794 3704 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:19:16.0806 3704 RemoteRegistry - ok
14:19:16.0824 3704 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:19:16.0828 3704 RpcEptMapper - ok
14:19:16.0853 3704 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:19:16.0855 3704 RpcLocator - ok
14:19:16.0902 3704 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:19:16.0906 3704 RpcSs - ok
14:19:17.0013 3704 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:19:17.0016 3704 rspndr - ok
14:19:17.0054 3704 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:19:17.0056 3704 SamSs - ok
14:19:17.0113 3704 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:19:17.0114 3704 sbp2port - ok
14:19:17.0182 3704 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:19:17.0187 3704 SCardSvr - ok
14:19:17.0243 3704 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:19:17.0245 3704 scfilter - ok
14:19:17.0310 3704 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:19:17.0344 3704 Schedule - ok
14:19:17.0390 3704 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:19:17.0391 3704 SCPolicySvc - ok
14:19:17.0517 3704 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
14:19:17.0519 3704 sdbus - ok
14:19:17.0557 3704 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:19:17.0563 3704 SDRSVC - ok
14:19:17.0648 3704 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:19:17.0650 3704 secdrv - ok
14:19:17.0709 3704 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:19:17.0712 3704 seclogon - ok
14:19:17.0752 3704 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:19:17.0756 3704 SENS - ok
14:19:17.0778 3704 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:19:17.0782 3704 SensrSvc - ok
14:19:17.0841 3704 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:19:17.0842 3704 Serenum - ok
14:19:17.0884 3704 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:19:17.0885 3704 Serial - ok
14:19:17.0931 3704 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:19:17.0933 3704 sermouse - ok
14:19:17.0986 3704 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:19:17.0990 3704 SessionEnv - ok
14:19:18.0038 3704 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:19:18.0039 3704 sffdisk - ok
14:19:18.0055 3704 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:19:18.0056 3704 sffp_mmc - ok
14:19:18.0076 3704 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:19:18.0077 3704 sffp_sd - ok
14:19:18.0141 3704 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:19:18.0142 3704 sfloppy - ok
14:19:18.0241 3704 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:19:18.0248 3704 SharedAccess - ok
14:19:18.0290 3704 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:19:18.0298 3704 ShellHWDetection - ok
14:19:18.0353 3704 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
14:19:18.0357 3704 SiSGbeLH - ok
14:19:18.0436 3704 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:19:18.0438 3704 SiSRaid2 - ok
14:19:18.0504 3704 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:19:18.0506 3704 SiSRaid4 - ok
14:19:18.0576 3704 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
14:19:18.0579 3704 SkypeUpdate - ok
14:19:18.0679 3704 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:19:18.0682 3704 Smb - ok
14:19:18.0727 3704 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:19:18.0729 3704 SNMPTRAP - ok
14:19:18.0874 3704 SNP2UVC (2114518e55b380a3acc28b2c27fd499a) C:\Windows\system32\DRIVERS\snp2uvc.sys
14:19:18.0909 3704 SNP2UVC - ok
14:19:18.0947 3704 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:19:18.0948 3704 spldr - ok
14:19:18.0992 3704 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:19:19.0001 3704 Spooler - ok
14:19:19.0114 3704 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:19:19.0203 3704 sppsvc - ok
14:19:19.0237 3704 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:19:19.0240 3704 sppuinotify - ok
14:19:19.0300 3704 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:19:19.0307 3704 srv - ok
14:19:19.0338 3704 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:19:19.0345 3704 srv2 - ok
14:19:19.0373 3704 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:19:19.0378 3704 srvnet - ok
14:19:19.0422 3704 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:19:19.0428 3704 SSDPSRV - ok
14:19:19.0447 3704 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:19:19.0451 3704 SstpSvc - ok
14:19:19.0512 3704 Steam Client Service - ok
14:19:19.0603 3704 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:19:19.0604 3704 stexstor - ok
14:19:19.0676 3704 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:19:19.0686 3704 stisvc - ok
14:19:19.0739 3704 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:19:19.0740 3704 swenum - ok
14:19:19.0836 3704 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:19:19.0839 3704 SwitchBoard - ok
14:19:20.0025 3704 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:19:20.0047 3704 swprv - ok
14:19:20.0141 3704 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:19:20.0185 3704 SysMain - ok
14:19:20.0265 3704 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:19:20.0270 3704 TabletInputService - ok
14:19:20.0312 3704 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:19:20.0319 3704 TapiSrv - ok
14:19:20.0353 3704 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:19:20.0355 3704 TBS - ok
14:19:20.0457 3704 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
14:19:20.0469 3704 Tcpip - ok
14:19:20.0534 3704 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
14:19:20.0553 3704 TCPIP6 - ok
14:19:20.0617 3704 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:19:20.0619 3704 tcpipreg - ok
14:19:20.0658 3704 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:19:20.0660 3704 TDPIPE - ok
14:19:20.0691 3704 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:19:20.0693 3704 TDTCP - ok
14:19:20.0749 3704 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:19:20.0752 3704 tdx - ok
14:19:20.0810 3704 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:19:20.0811 3704 TermDD - ok
14:19:20.0877 3704 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:19:20.0900 3704 TermService - ok
14:19:20.0936 3704 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:19:20.0939 3704 Themes - ok
14:19:20.0974 3704 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:19:20.0975 3704 THREADORDER - ok
14:19:21.0028 3704 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:19:21.0032 3704 TrkWks - ok
14:19:21.0089 3704 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:19:21.0092 3704 TrustedInstaller - ok
14:19:21.0165 3704 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:19:21.0168 3704 tssecsrv - ok
14:19:21.0240 3704 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:19:21.0243 3704 TsUsbFlt - ok
14:19:21.0372 3704 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:19:21.0376 3704 tunnel - ok
14:19:21.0408 3704 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:19:21.0409 3704 uagp35 - ok
14:19:21.0450 3704 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:19:21.0456 3704 udfs - ok
14:19:21.0504 3704 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:19:21.0506 3704 UI0Detect - ok
14:19:21.0608 3704 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:19:21.0609 3704 uliagpkx - ok
14:19:21.0716 3704 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
14:19:21.0720 3704 umbus - ok
14:19:21.0772 3704 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:19:21.0773 3704 UmPass - ok
14:19:21.0883 3704 UNS (41118d920b2b268c0adc36421248cdcf) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
14:19:21.0951 3704 UNS - ok
14:19:22.0039 3704 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:19:22.0046 3704 upnphost - ok
14:19:22.0140 3704 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
14:19:22.0143 3704 usbccgp - ok
14:19:22.0195 3704 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:19:22.0196 3704 usbcir - ok
14:19:22.0320 3704 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
14:19:22.0321 3704 usbehci - ok
14:19:22.0372 3704 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
14:19:22.0379 3704 usbhub - ok
14:19:22.0489 3704 USBMULCD (f9b3054339a71f16430f6585ebc8be96) C:\Windows\system32\drivers\CM10664.sys
14:19:22.0536 3704 USBMULCD - ok
14:19:22.0649 3704 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
14:19:22.0650 3704 usbohci - ok
14:19:22.0695 3704 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:19:22.0697 3704 usbprint - ok
14:19:22.0745 3704 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:19:22.0748 3704 USBSTOR - ok
14:19:22.0782 3704 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
14:19:22.0784 3704 usbuhci - ok
14:19:22.0903 3704 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
14:19:22.0905 3704 usbvideo - ok
14:19:22.0940 3704 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:19:22.0943 3704 UxSms - ok
14:19:22.0986 3704 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:19:22.0987 3704 VaultSvc - ok
14:19:23.0069 3704 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:19:23.0070 3704 vdrvroot - ok
14:19:23.0121 3704 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:19:23.0126 3704 vds - ok
14:19:23.0167 3704 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:19:23.0169 3704 vga - ok
14:19:23.0205 3704 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:19:23.0207 3704 VgaSave - ok
14:19:23.0309 3704 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:19:23.0311 3704 vhdmp - ok
14:19:23.0374 3704 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:19:23.0375 3704 viaide - ok
14:19:23.0460 3704 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:19:23.0461 3704 volmgr - ok
14:19:23.0515 3704 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:19:23.0518 3704 volmgrx - ok
14:19:23.0625 3704 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:19:23.0627 3704 volsnap - ok
14:19:23.0672 3704 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:19:23.0674 3704 vsmraid - ok
14:19:23.0783 3704 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:19:23.0817 3704 VSS - ok
14:19:23.0864 3704 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:19:23.0866 3704 vwifibus - ok
14:19:23.0921 3704 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:19:23.0924 3704 vwififlt - ok
14:19:23.0968 3704 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
14:19:23.0970 3704 vwifimp - ok
14:19:24.0022 3704 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:19:24.0030 3704 W32Time - ok
14:19:24.0053 3704 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:19:24.0054 3704 WacomPen - ok
14:19:24.0121 3704 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:19:24.0125 3704 WANARP - ok
14:19:24.0138 3704 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:19:24.0139 3704 Wanarpv6 - ok
14:19:24.0263 3704 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:19:24.0271 3704 WatAdminSvc - ok
14:19:24.0348 3704 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:19:24.0358 3704 wbengine - ok
14:19:24.0398 3704 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:19:24.0404 3704 WbioSrvc - ok
14:19:24.0451 3704 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:19:24.0459 3704 wcncsvc - ok
14:19:24.0483 3704 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:19:24.0487 3704 WcsPlugInService - ok
14:19:24.0538 3704 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:19:24.0539 3704 Wd - ok
14:19:24.0581 3704 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:19:24.0586 3704 Wdf01000 - ok
14:19:24.0616 3704 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:19:24.0620 3704 WdiServiceHost - ok
14:19:24.0626 3704 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:19:24.0628 3704 WdiSystemHost - ok
14:19:24.0671 3704 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:19:24.0685 3704 WebClient - ok
14:19:24.0719 3704 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:19:24.0726 3704 Wecsvc - ok
14:19:24.0743 3704 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:19:24.0747 3704 wercplsupport - ok
14:19:24.0774 3704 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:19:24.0778 3704 WerSvc - ok
14:19:24.0837 3704 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:19:24.0839 3704 WfpLwf - ok
14:19:24.0879 3704 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
14:19:24.0884 3704 WimFltr - ok
14:19:24.0918 3704 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:19:24.0920 3704 WIMMount - ok
14:19:24.0969 3704 WinDefend - ok
14:19:24.0975 3704 WinHttpAutoProxySvc - ok
14:19:25.0076 3704 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:19:25.0082 3704 Winmgmt - ok
14:19:25.0162 3704 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:19:25.0217 3704 WinRM - ok
14:19:25.0280 3704 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:19:25.0302 3704 Wlansvc - ok
14:19:25.0377 3704 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:19:25.0378 3704 WmiAcpi - ok
14:19:25.0441 3704 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:19:25.0443 3704 wmiApSrv - ok
14:19:25.0495 3704 WMPNetworkSvc - ok
14:19:25.0573 3704 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:19:25.0577 3704 WPCSvc - ok
14:19:25.0619 3704 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:19:25.0623 3704 WPDBusEnum - ok
14:19:25.0680 3704 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:19:25.0681 3704 ws2ifsl - ok
14:19:25.0717 3704 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:19:25.0722 3704 wscsvc - ok
14:19:25.0730 3704 WSearch - ok
14:19:25.0829 3704 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
14:19:25.0896 3704 wuauserv - ok
14:19:25.0955 3704 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:19:25.0957 3704 WudfPf - ok
14:19:25.0998 3704 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:19:26.0003 3704 WUDFRd - ok
14:19:26.0053 3704 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:19:26.0058 3704 wudfsvc - ok
14:19:26.0105 3704 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:19:26.0111 3704 WwanSvc - ok
14:19:26.0155 3704 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
14:19:26.0238 3704 \Device\Harddisk0\DR0 - ok
14:19:26.0248 3704 Boot (0x1200) (876387e50fb56e3fe1828d7f793253b3) \Device\Harddisk0\DR0\Partition0
14:19:26.0251 3704 \Device\Harddisk0\DR0\Partition0 - ok
14:19:26.0268 3704 Boot (0x1200) (1fdf0dc67eef2af438dc66bcfedac550) \Device\Harddisk0\DR0\Partition1
14:19:26.0271 3704 \Device\Harddisk0\DR0\Partition1 - ok
14:19:26.0271 3704 ============================================================
14:19:26.0271 3704 Scan finished
14:19:26.0271 3704 ============================================================
14:19:26.0282 4720 Detected object count: 0
14:19:26.0282 4720 Actual detected object count: 0


==============================================================================================
==============================================================================================


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:20:03, on 19/04/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\Mouse Driver\Tilt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
D:\Important\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [Inno Tilt] "C:\Program Files (x86)\Mouse Driver\Tilt.exe" /hide
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9697 bytes



==============================================================================================
==============================================================================================

Klaar.
Nog 1 vraagje, Kan ik die TDSSkiller gewoon houden en regelmatig mee scannen, terwijl AVG blijft draaien?

Mvg.

Dit ziet er nu allemaal netjes uit. Indien je AVG geen kik meer geeft, ben je van de Trojan verlost.

Het is niet aangewezen om TDSS Killer constant te gebruiken, enkel bij probleemoplossing is dit een aanvaardbaar programma, niet als routinescanner. Dus best verwijderen nu.

Ok heel erg bedankt ;)
Tot over enkele weken/maanden voor volgende HijackThis check !