jarsteve

Neen, dat bedoel ik niet. In deze masterproef vind je een mooi voorbeeld van randnummers. Het zijn de nummers in het vet die aan het begin van een alinea staan. http://lib.ugent.be/fulltxt/RUG01/001/787/041/RUG01-001787041_2012_0001_AC.pdf Dank op voorhand!

Excuses als ik te opdringerig overkwam. Dat is helemaal niet mijn bedoel. Ik ben ook dankbaar voor de hulp die ik hier aangeboden krijg. Wat betreft mijn vraag en jouw uitleg: voetnoten en randnummers zijn niet hetzelfde. Ik weet dat het mogelijk is om randnummers (het heeft waarschijnlijk een andere benaming) in te vullen aangezien ik het ooit eens op een andere pc op word heb gedaan. Jammer genoeg weet ik de juiste werkwijze niet meer. Alvast bedankt voor de hulp.

iemand?

Neen, niet echt. Dat is een "gewone" nummering waarbij de tekst "inspringt". Een ander voorbeeld: "03. Een passend mededingingsrechtelijk kader is noodzakelijk om de anticompetitieve gedragingen van joint ventures te behandelen. De mededingingsautoriteiten vrijwaren namelijk de mededinging op de markt om de consumentenwelvaart te maximaliseren.De Commissie stelde voor vele jaren dat art. 101 VwEU niet van toepassing was op de verhouding tussen moedermaatschappijen en hun joint ventures. Zij werden niet als een economische eenheid beschouwd. 04. De Europese Commissie is echter recent van aanpak veranderd. De Europese Commissie stelt vandaag de dag dat een beslissende invloed, wat noodzakelijk is om te spreken van een economische eenheid, ook aanwezig kan zijn in zaken waar er sprake is van gezamenlijke controle van verschillende aandeelhouders over hun (full- function) joint venture. De Europese Commissie stelt zelfs dat meer dan één aandeelhouder aansprakelijk kan zijn voor de inbreuken van de joint venture. " Ik heb het over nummers aan het begin van een alinea die ook gebruikt kunnen worden om naar te verwijzen in een voetnoot. Er wordt normaal gezien gesproken over randnummers: iedere keer als je een nieuwe gedacht begint in een verhandeling begin je met het volgende randnummer. Heb je een idee wat ik bedoel?

Hallo! Heeft iemand een idee hoe je randnummers automatisch kan laten invoegen? Ik weet dat dit normaal moet kunnen in Word, maar ik vind hier bijzonder weinig informatie over terug. Een voorbeeld van wat ik bedoel: " 57. Ook in Nederland kent het wetboek een hele reeks bevoegdheden toe aan de algemene vergadering inzake kapitaal en vermogen. We kunnen drie groepen onderscheiden. 58. Vooreerst is de goedkeuring vereist van de algemene vergadering voor de toekenning of overgang van het stemrecht aan de vruchtgebruiker wanneer de vruchtgebruiker een persoon is aan wie de aandelen niet vrijelijk kunnen worden overgedragen (artikel 2:88 lid 3 BW). Hetzelfde geldt voor de toekenning of overgang van het stemrecht in geval van vestiging van pandrecht op aandelen " Alvast bedankt voor de hulp! Jarsteve

Hallo iedereen, Ik probeerde citrix te installeren omdat ik dit nodig had om een progamma te openen. De installatie werd echter onderbroken. Ik probeerde opnieuw om citrix te installeren, maar ik kwam steeds op de volgende melding uit: "setup cannot continue because this version of Receiver is incompatible with a previously-installed version". Zelfs als ik alles manueel verwijder en het programma opnieuw download krijg ik dezelfde melding. Heeft iemand raad? Bedankt, Jarsteve

Onlangs heb ik een volledig herstel gedaan via Samsung recovery solutions 4. Het nadeel is nu dat mijn windows update geen updates meer zoekt. Kan er iemand helpen?

Dag iedereen, Ik downloadde een lied via een youtubeconverter, maar na een tijdje begon mijn pc raar te doen en trager te gaan. ik scande bijgevolg even via malwarebytes en er werden enkele virussen gevonden: rootkits, iets in de module, ... in totaal 10. Het was dus een gevaarlijke website, wat ik te laat doorhad. Nadat de virussen gevonden waren liet ik deze verwijderen door malwarebytes door de pc opnieuw op te starten. Hier komen de problemen. Na het 'inleidingsscherm' blijft alles zwart en ik kan bijgevolg niets doen. Ik probeerde het langs de veilige modus, maar eenmaal op het scherm om mij aan te melden werkte mijn toetsenbord niet. Ik kan mij dus niet inloggen. Ik heb al een basisherstel geprobeerd via de samsung recovery 4 solution, maar ik kom dezelfde problemen tegen. Ik zou nu het volledige herstel doen. Is dit een goed idee? Jarsteve

Net voor ik jouw bericht zag, heb ik Malwarebytes even laten updaten en het opnieuw laten scannen. Dit virussen zijn dan wel gevonden aangezien ik jouw aangedragen elementen niet meer terugvind in het Hijackthis-logje. Ik neem aan dat de problemen verholpen zijn. Ik vraag mij af of ik MRT.exe niet kan verwijderen via Hijackthis, aangezien ik op het internet las dat dit aanleiding kan geven tot virussen en dit eigelijk toch niet gebruik. Dit is het Hijackthis-logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:03:05, on 17/09/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\windows\system32\taskeng.exe C:\windows\system32\taskhost.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Lexmark Pro700 Series\lxeemon.exe C:\Program Files\Lexmark Pro700 Series\ezprint.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe C:\windows\system32\igfxext.exe C:\windows\system32\igfxsrvc.exe C:\windows\system32\SearchProtocolHost.exe C:\windows\system32\SearchFilterHost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe C:\windows\system32\sdclt.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-21-837711937-2185517149-3617628737-1001\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun (User '?') O4 - HKUS\S-1-5-21-837711937-2185517149-3617628737-1001\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User '?') O4 - S-1-5-21-837711937-2185517149-3617628737-1001 Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (User '?') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Livescribe Pulse Smartpen Service (PenCommService) - Livescribe - C:\Program Files\Common Files\Livescribe\PenComm\PenCommService.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 11353 bytes Alvast bedankt! Jarsteve

Bij het downloaden van een file van een youtubeconverter werd ik geconfronteerd met het Ukash-virus. Ik liet Malwarebytes al eens draaien, waardoor er een virus werd gevonden, maar na het heropstarten was het Ukashvirus nog steeds aanwezig... Kan iemand helpen? Hijackthis-log: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:24:50, on 17/09/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Safe mode with network support Running processes: C:\windows\Explorer.EXE C:\windows\system32\ctfmon.exe C:\windows\helppane.exe C:\Users\Jonas\virus\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\windows\notepad.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [rjzcxgdoaeuerrm] C:\ProgramData\rjzcxgdo.exe O4 - HKUS\S-1-5-21-837711937-2185517149-3617628737-1001\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun (User '?') O4 - HKUS\S-1-5-21-837711937-2185517149-3617628737-1001\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun (User '?') O4 - HKUS\S-1-5-21-837711937-2185517149-3617628737-1001\..\Run: [rjzcxgdoaeuerrm] C:\ProgramData\rjzcxgdo.exe (User '?') O4 - S-1-5-21-837711937-2185517149-3617628737-1001 Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (User '?') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Livescribe Pulse Smartpen Service (PenCommService) - Livescribe - C:\Program Files\Common Files\Livescribe\PenComm\PenCommService.exe O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 9873 bytes Jarsteve

Hallo, Ik wou naar een site gaan van een youtubeconverter toen mijn scherm opeens compleet wit werd en er een variant van het Ukash virus opkwam (een Engelse versie). Ik probeerde mijn laptop in veilige modus met netwerkmogelijkheden op te starten, maar zelfs daar verscheen het virus. Ik startte vervolgens de laptop in veilige modus op en kon malwarebytes opstarten. Deze vond 2 fouten. Nadat ik de pc herstartte kon ik terug op het 'normale' scherm. Voor de zekerheid poste ik hier nog even een Hijackthis-logje om zekerheid te verkrijgen of alle virussen weg zijn. Alvast bedankt voor de hulp! Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:12:47, on 29/08/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\windows\system32\taskeng.exe C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\windows\system32\taskhost.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\windows\system32\SearchProtocolHost.exe C:\Program Files\Lexmark Pro700 Series\lxeemon.exe C:\Program Files\Lexmark Pro700 Series\ezprint.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\windows\system32\igfxext.exe C:\windows\system32\igfxsrvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\windows\system32\SearchFilterHost.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 9762 bytes

Dit het MBAM logje: Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.08.17.06 Windows 7 Service Pack 1 x86 NTFS (Veilige modus/netwerkmogelijkheden) Internet Explorer 9.0.8112.16421 Jonas :: JONAS-PC [administrator] 17/08/2012 16:49:16 mbam-log-2012-08-17 (16-49-16).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 221064 Verstreken tijd: 3 minuut/minuten, 54 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 1 HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon|Shell (Trojan.Agent) -> Data: explorer.exe,C:\Users\Jonas\AppData\Roaming\msconfig.dat -> Succesvol in quarantaine geplaatst en verwijderd. Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 5 C:\ProgramData\TaAAw43a.exe (Trojan.Agent.H) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Users\Jonas\AppData\Local\temp\502177kas435271.exe (Trojan.Ransom) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Users\Jonas\AppData\Roaming\pkg_0ll.exe (Exploit.Drop.GSA) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Users\Jonas\0.23036985426037504.exe (Exploit.Drop.UR.2) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Users\Jonas\AppData\Roaming\msconfig.dat (Trojan.Agent) -> Succesvol in quarantaine geplaatst en verwijderd. (einde) Dit is het nieuwe HijackThis logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:03:26, on 17/08/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\windows\system32\taskeng.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe C:\windows\system32\taskhost.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\windows\system32\igfxext.exe C:\windows\system32\igfxsrvc.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Windows\System32\igfxtray.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Lexmark Pro700 Series\lxeemon.exe C:\Program Files\Lexmark Pro700 Series\ezprint.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\windows\system32\SearchFilterHost.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 9609 bytes Voorlopig lijkt alles in orde! Jarsteve

Sinds deze morgen werd ik geconfronteerd met het Ukash-virus. Ik heb al een Hijackthis-logje gemaakt. Hopelijk kan iemand mij helpen! Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:03:26, on 17/08/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Safe mode with network support Running processes: C:\windows\Explorer.EXE C:\windows\system32\ctfmon.exe C:\windows\helppane.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [qafmjnkpkkrpfsf] C:\ProgramData\qafmjnkp.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 8159 bytes

Alles in orde! Bedankt!

AppData had ik al zichtbaar kunnen maken. Het was echter de map {023b0c7e-a8b9-3c6a-88eb-24e115af39b5}\U\, waaruit de problemen leken voort te komen, die ik niet vond. Dit het logje van Malwarebytes: Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Databaseversie: v2012.06.20.05 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Jonas :: JONAS-PC [administrator] 12/07/2012 19:44:45 mbam-log-2012-07-12 (19-44-45).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 231623 Verstreken tijd: 8 minuut/minuten, 19 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 1 HKCU\SOFTWARE\CLASSES\CLSID\{42AEDC87-2188-41FD-B9A3-0C966FEABEC1}\INPROCSERVER32 (Trojan.Zaccess) -> Succesvol in quarantaine geplaatst en verwijderd. Registerwaarden gedetecteerd: 1 HKCU\SOFTWARE\CLASSES\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32| (Trojan.Zaccess) -> Data: C:\Users\Jonas\AppData\Local\{023b0c7e-a8b9-3c6a-88eb-24e115af39b5}\n. -> Succesvol in quarantaine geplaatst en verwijderd. Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Het nieuwe hijackthis-logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:04:25, on 12/07/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\windows\system32\taskeng.exe C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe C:\windows\system32\igfxext.exe C:\windows\system32\igfxsrvc.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Lexmark Pro700 Series\lxeemon.exe C:\Program Files\Lexmark Pro700 Series\ezprint.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SavUI.exe C:\PROGRA~1\samsung\SAMSUN~2\SUPNOT~1.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\windows\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Jonas\virus\Malwarebytes' Anti-Malware\mbam.exe C:\windows\system32\NOTEPAD.EXE C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe C:\windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 9942 bytes Alles in orde nu? Bedankt

Hier alleszins al mijn hijackthis-log: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:19:37, on 12/07/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\windows\system32\taskhost.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\windows\system32\taskeng.exe C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe C:\windows\system32\igfxext.exe C:\windows\system32\igfxsrvc.exe C:\windows\system32\Dwm.exe C:\windows\Explorer.EXE C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Citrix\ICA Client\concentr.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Lexmark Pro700 Series\lxeemon.exe C:\Program Files\Lexmark Pro700 Series\ezprint.exe C:\Program Files\Citrix\ICA Client\wfcrun32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Symantec\Symantec Endpoint Protection\SavUI.exe C:\PROGRA~1\samsung\SAMSUN~2\SUPNOT~1.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Users\Jonas\virus\Trend Micro\HiJackThis\HiJackThis.exe C:\windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Lexmark Werkbalk - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [igfxTray] C:\windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files\Citrix\ICA Client\concentr.exe" /startup O4 - HKLM\..\Run: [MRT] "C:\windows\system32\MRT.exe" /R O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [lxeemon.exe] "C:\Program Files\Lexmark Pro700 Series\lxeemon.exe" O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark Pro700 Series\ezprint.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [Daonahk] C:\Users\Jonas\AppData\Roaming\Syvabi\duog.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: lxeeCATSCustConnectService - Lexmark International, Inc. - C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe O23 - Service: lxee_device - - C:\windows\system32\lxeecoms.exe O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 9845 bytes Bedankt

Hallo! Mijn zus downloadde een bestand en nu geeft mijn Symantec AntiVirus constant aan dat hij virussen vindt. Ik probeerde de map te zoeken waaruit ze vandaan komen, maar vond deze niet terug terwijl ik deze vroeger wel terug vond. Ik dacht dat eerst dat deze louter verborgen was, maar ook dit is niet het geval... kan er iemand helpen en weten jullie welk virus dit is? De onvindbare map is {023b0c7e-a8b9-3c6a-88eb-24e115af39b5}\U\ Hartelijk dank

Het ziet er naar uit dat ik geen last meer heb van MyStart/Incredibar. Er waren blijkbaar veel besmette bestanden... Hartelijk dank! Jarsteve

Hier is het logje: # AdwCleaner v1.701 - Logfile created 07/10/2012 at 15:23:15 # Updated 02/07/2012 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (32 bits) # User : Jonas - JONAS-PC # Running from : C:\Users\Jonas\Desktop\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\Users\Jonas\AppData\LocalLow\Conduit Folder Deleted : C:\Users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\ConduitCommon Folder Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\0t64exzg.default\extensions\toolbar@ask.com File Deleted : C:\Users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\searchplugins\MyStart Search.xml File Deleted : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\0t64exzg.default\searchplugins\Askcom.xml File Deleted : C:\Program Files\Mozilla Firefox\.autoreg ***** [Registry] ***** [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2849859 Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar Key Deleted : HKCU\Software\AppDataLow\Toolbar Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\ImInstaller Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\SweetIm Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1 Key Deleted : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc Key Deleted : HKLM\SOFTWARE\Classes\esrv.IncredibarESrvc.1 Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject Key Deleted : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1 Key Deleted : HKLM\SOFTWARE\Classes\I Key Deleted : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr Key Deleted : HKLM\SOFTWARE\Classes\Incredibar.IncredibarHlpr.1 Key Deleted : HKLM\SOFTWARE\Classes\IncredibarApp.appCore Key Deleted : HKLM\SOFTWARE\Classes\IncredibarApp.appCore.1 Key Deleted : HKLM\SOFTWARE\Conduit Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Key Deleted : HKLM\SOFTWARE\Iminent Key Deleted : HKLM\SOFTWARE\Incredibar.com Key Deleted : HKLM\SOFTWARE\SweetIM Key Deleted : HKLM\SOFTWARE\Web Assistant Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}] ***** [Registre - GUID] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C01315C7-B4E2-4864-B43D-5FAFC414D179} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1545464-C77C-4130-A572-1C619E2895FE} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ED0E67AD-926C-4008-87E5-03CF72AA2A7E} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF7FEC6D-451B-4452-9D26-7E10C6B5DB6E} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{48C9C8B0-A546-46C1-A81F-47A31E623E9D} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A} ***** [internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Registry is clean. -\\ Mozilla Firefox v3.5.16 (nl) Profile name : default File : C:\Users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\prefs.js C:\Users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\user.js ... Deleted ! Deleted : user_pref("CT2849859.HasUserGlobalKeys", true); Deleted : user_pref("CT2849859.IsMulticommunity", false); Deleted : user_pref("CT2849859.ServiceMapLastCheckTime", "Mon Jul 09 2012 20:08:49 GMT+0200"); Deleted : user_pref("CT2849859.autoDisableScopes", 0); Deleted : user_pref("CT2849859.testingCtid", ""); Deleted : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Jonas\\AppData\\Roaming\\Mozilla\\F[...] Deleted : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6"); Deleted : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true); Deleted : user_pref("CommunityToolbar.notifications.locale", ""); Deleted : user_pref("CommunityToolbar.notifications.loginIntervalMin", 0); Deleted : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sun Jul 08 2012 01:12:13 GMT+0200"); Deleted : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", ""); Deleted : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com"); Deleted : user_pref("CommunityToolbar.notifications.userId", "6853f3ab-49c0-45ff-84de-378869d67b62"); Deleted : user_pref("browser.newtab.url", "hxxp://mystart.incredibar.com/mb128?a=6R8yiA4Lp5&loc=FF_NT"); Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl"); Deleted : user_pref("extensions.incredibar_i.dfltLng", ""); Deleted : user_pref("extensions.incredibar_i.did", "10658"); Deleted : user_pref("extensions.incredibar_i.excTlbr", false); Deleted : user_pref("extensions.incredibar_i.id", "84adbed90000000000000626b67c15e5"); Deleted : user_pref("extensions.incredibar_i.installerproductid", "26"); Deleted : user_pref("extensions.incredibar_i.instlDay", "15528"); Deleted : user_pref("extensions.incredibar_i.instlRef", ""); Deleted : user_pref("extensions.incredibar_i.ms_url_id", ""); Deleted : user_pref("extensions.incredibar_i.newTab", false); Deleted : user_pref("extensions.incredibar_i.ppd", ""); Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar"); Deleted : user_pref("extensions.incredibar_i.productid", "26"); Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar"); Deleted : user_pref("extensions.incredibar_i.smplGrp", "none"); Deleted : user_pref("extensions.incredibar_i.tlbrId", "base"); Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6R8yiA4Lp5&loc=IB[...] Deleted : user_pref("extensions.incredibar_i.upn2", "6R8yiA4Lp5"); Deleted : user_pref("extensions.incredibar_i.upn2n", "92824666021914927"); Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14"); Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1422:26:52"); Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14"); Profile name : default File : C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\0t64exzg.default\prefs.js [OK] File is clean. ************************* AdwCleaner[s1].txt - [9185 octets] - [10/07/2012 15:23:15] ########## EOF - C:\AdwCleaner[s1].txt - [9313 octets] ##########

Er moet blijkbaar veel verwijderd worden? Hier is het volgende logje: ComboFix 12-07-08.02 - Jonas 10/07/2012 12:51:44.4.2 - x86 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3005.2135 [GMT 2:00] Gestart vanuit: c:\users\Jonas\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Jonas\Desktop\CFScript.txt AV: Symantec Endpoint Protection *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855} SP: Symantec Endpoint Protection *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\windows\system32\drivers\dtsoftbus01.sys" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome.manifest c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.js c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.xul c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\install.rdf c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome.manifest c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.js c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.xul c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\install.rdf c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome.manifest c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.js c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\content\ffjcext\ffjcext.xul c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext\ffjcext.dtd c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}\install.rdf c:\users\Jonas\AppData\Roaming\Ubyti c:\users\Jonas\AppData\Roaming\Ubyti\uvtae.exe c:\users\Jonas\AppData\Roaming\Ylapf c:\users\Jonas\AppData\Roaming\Ylapf\wiil.goz c:\users\Jonas\AppData\Roaming\Ylapf\wiil.tmp c:\windows\system32\drivers\dtsoftbus01.sys . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_dtsoftbus01 . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-10 to 2012-07-10 )))))))))))))))))))))))))))))) . . 2012-07-10 10:58 . 2012-07-10 11:03 -------- d-----w- c:\users\Jonas\AppData\Local\temp 2012-07-10 10:58 . 2012-07-10 10:58 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-10 10:58 . 2012-07-10 10:58 -------- d-----w- c:\users\Danny\AppData\Local\temp 2012-07-10 10:46 . 2012-07-10 10:50 -------- d-----w- c:\users\Jonas\AppData\Roaming\Pemuy 2012-07-10 10:46 . 2012-07-10 10:46 -------- d-----w- c:\users\Jonas\AppData\Roaming\Ymiqo 2012-07-09 22:09 . 2012-07-10 10:46 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\offreg.dll 2012-07-08 10:13 . 2012-07-08 10:13 -------- d-----w- c:\program files\Common Files\SWF Studio 2012-07-07 23:10 . 2012-07-09 22:16 -------- d-----w- c:\users\Jonas\AppData\Roaming\DAEMON Tools Lite 2012-07-07 23:08 . 2012-07-09 22:16 -------- d-----w- c:\programdata\DAEMON Tools Lite 2012-07-07 22:38 . 2012-07-07 22:38 -------- d-----w- c:\users\Jonas\AppData\Local\CRE 2012-07-07 22:37 . 2012-07-09 16:21 -------- d-----w- c:\users\Jonas\AppData\Roaming\BitTorrent 2012-07-07 20:44 . 2012-07-07 22:33 -------- d-----w- c:\users\Jonas\AppData\Roaming\uTorrent 2012-07-07 20:05 . 2012-07-09 13:07 -------- d-----w- c:\users\Jonas\anno 2012-06-21 08:36 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-21 08:36 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-21 08:36 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-21 08:36 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-21 08:35 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-21 08:35 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-21 08:35 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-21 08:35 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-21 08:35 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-20 18:22 . 2012-06-20 18:22 -------- d-----w- c:\programdata\jmhjsleidlvueef 2012-06-13 07:08 . 2012-04-28 03:17 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-06-13 07:08 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\system32\msi.dll 2012-06-13 07:08 . 2012-05-15 01:05 2343936 ----a-w- c:\windows\system32\win32k.sys 2012-06-13 07:08 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll 2012-06-13 07:08 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-06-13 07:08 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-06-13 07:08 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\system32\crypt32.dll 2012-06-13 07:08 . 2012-04-24 04:36 103936 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-10 14:22 . 2012-06-10 14:22 -------- d-----w- c:\programdata\Lexmark Pro700 Series . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-05 16:03 . 2012-03-29 18:58 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-05 16:03 . 2011-05-17 15:17 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-06-09 13:25 . 2012-06-09 13:25 135680 ----a-w- c:\users\Jonas\AppData\Roaming\pkg_0ll.exe 2012-05-30 08:29 . 2012-05-30 08:29 121856 ----a-w- c:\users\Jonas\AppData\Roaming\opret0l.exe 2012-05-08 16:40 . 2012-06-01 07:01 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\mpengine.dll 2012-04-18 18:56 . 2012-04-18 18:56 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-04-18 18:56 . 2012-04-18 18:56 69632 ----a-w- c:\windows\system32\QuickTime.qts 2009-10-26 14:05 . 2009-10-26 14:05 124240 ----a-w- c:\program files\mozilla firefox\plugins\CCMSDK.dll 2009-10-26 14:10 . 2009-10-26 14:10 13136 ----a-w- c:\program files\mozilla firefox\plugins\cgpcfg.dll 2009-10-26 14:08 . 2009-10-26 14:08 70488 ----a-w- c:\program files\mozilla firefox\plugins\CgpCore.dll 2009-10-26 14:09 . 2009-10-26 14:09 91480 ----a-w- c:\program files\mozilla firefox\plugins\confmgr.dll 2009-10-26 14:08 . 2009-10-26 14:08 22360 ----a-w- c:\program files\mozilla firefox\plugins\ctxlogging.dll 2009-10-26 14:06 . 2009-10-26 14:06 255312 ----a-w- c:\program files\mozilla firefox\plugins\ctxmui.dll 2009-10-26 14:08 . 2009-10-26 14:08 31064 ----a-w- c:\program files\mozilla firefox\plugins\icafile.dll 2009-10-26 14:09 . 2009-10-26 14:09 40280 ----a-w- c:\program files\mozilla firefox\plugins\icalogon.dll 2009-10-19 16:58 . 2009-10-19 16:58 652640 ----a-w- c:\program files\mozilla firefox\plugins\sslsdk_b.dll 2009-10-26 14:08 . 2009-10-26 14:08 23896 ----a-w- c:\program files\mozilla firefox\plugins\TcpPServ.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-08-19 7711264] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-14 1541416] "UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2009-07-08 115560] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520] "ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" [2009-10-26 103768] "MRT"="c:\windows\system32\MRT.exe" [2012-06-14 56731752] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "lxeemon.exe"="c:\program files\Lexmark Pro700 Series\lxeemon.exe" [2011-01-24 770728] "EzPrint"="c:\program files\Lexmark Pro700 Series\ezprint.exe" [2011-01-24 148280] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736] . c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x] R2 lxeeCATSCustConnectService;lxeeCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [x] S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 lxee_device;lxee_device;c:\windows\system32\lxeecoms.exe [x] S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [x] S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [x] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-03-29 c:\windows\Tasks\SpeedyPC Registration3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\UUS3.dll [2011-10-06 16:18] . 2012-03-29 c:\windows\Tasks\SpeedyPC Update Version3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\SpeedyPC_Update3.exe [2011-10-06 16:18] . 2012-07-08 c:\windows\Tasks\SyncBack Backup Jonas Bibliotheken.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . 2012-07-08 c:\windows\Tasks\SyncBack Synchronise Folder RECHTEN.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyOverride = *.local IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: network.proxy.http - 127.0.0.1 FF - prefs.js: network.proxy.http_port - 55758 FF - prefs.js: network.proxy.type - 1 FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . - - - - ORPHANS VERWIJDERD - - - - . HKCU-Run-Curihey - c:\users\Jonas\AppData\Roaming\Ubyti\uvtae.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Symantec\Symantec Endpoint Protection\Smc.exe c:\program files\Common Files\Symantec Shared\ccSvcHst.exe c:\windows\system32\taskhost.exe c:\program files\Samsung\Samsung Support Center\SSCKbdHk.exe c:\program files\Samsung\Samsung Update Plus\SUPBackground.exe c:\program files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe c:\program files\Symantec\Symantec Endpoint Protection\SmcGui.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe c:\program files\Symantec\Symantec Endpoint Protection\Rtvscan.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files\TeamViewer\Version6\TeamViewer.exe c:\windows\system32\igfxext.exe c:\windows\system32\igfxsrvc.exe c:\program files\TeamViewer\Version6\tv_w32.exe c:\windows\servicing\TrustedInstaller.exe c:\windows\system32\conhost.exe c:\windows\system32\DllHost.exe c:\windows\system32\sppsvc.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\system32\sdclt.exe . ************************************************************************** . Voltooingstijd: 2012-07-10 13:07:27 - machine werd herstart ComboFix-quarantined-files.txt 2012-07-10 11:07 ComboFix2.txt 2012-07-09 22:23 ComboFix3.txt 2012-07-09 19:52 ComboFix4.txt 2012-07-09 17:37 . Pre-Run: 140.882.599.936 bytes beschikbaar Post-Run: 141.093.957.632 bytes beschikbaar . - - End Of File - - 5698EF238AC08B6531E3704F97733DEC Bedankt! Jarsteve

Dit is het volgende logje: ComboFix 12-07-08.02 - Jonas 10/07/2012 0:07.3.2 - x86 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3005.1849 [GMT 2:00] Gestart vanuit: c:\users\Jonas\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Jonas\Desktop\CFScript.txt AV: Symantec Endpoint Protection *Disabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855} SP: Symantec Endpoint Protection *Disabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\windows\system32\drivers\atksgt.sys" "c:\windows\system32\drivers\lirsgt.sys" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Jonas\AppData\Roaming\Ygehze c:\users\Jonas\AppData\Roaming\Ygehze\fuehd.exe . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_SpyHunter 4 Service . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-09 to 2012-07-09 )))))))))))))))))))))))))))))) . . 2012-07-09 22:15 . 2012-07-09 22:17 -------- d-----w- c:\users\Jonas\AppData\Local\temp 2012-07-09 22:15 . 2012-07-09 22:15 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-09 22:15 . 2012-07-09 22:15 -------- d-----w- c:\users\Danny\AppData\Local\temp 2012-07-09 22:09 . 2012-07-09 22:09 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\offreg.dll 2012-07-09 20:52 . 2012-07-09 20:57 -------- d-----w- c:\users\Jonas\AppData\Roaming\Ylapf 2012-07-09 13:52 . 2012-07-09 13:52 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-07-08 10:13 . 2012-07-08 10:13 -------- d-----w- c:\program files\Common Files\SWF Studio 2012-07-07 23:10 . 2012-07-09 22:16 -------- d-----w- c:\users\Jonas\AppData\Roaming\DAEMON Tools Lite 2012-07-07 23:08 . 2012-07-09 22:16 -------- d-----w- c:\programdata\DAEMON Tools Lite 2012-07-07 22:38 . 2012-07-07 22:38 -------- d-----w- c:\users\Jonas\AppData\Local\CRE 2012-07-07 22:37 . 2012-07-09 16:21 -------- d-----w- c:\users\Jonas\AppData\Roaming\BitTorrent 2012-07-07 20:44 . 2012-07-07 22:33 -------- d-----w- c:\users\Jonas\AppData\Roaming\uTorrent 2012-07-07 20:05 . 2012-07-09 13:07 -------- d-----w- c:\users\Jonas\anno 2012-06-21 08:36 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-21 08:36 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-21 08:36 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-21 08:36 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-21 08:35 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-21 08:35 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-21 08:35 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-21 08:35 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-21 08:35 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-20 18:22 . 2012-06-20 18:22 -------- d-----w- c:\programdata\jmhjsleidlvueef 2012-06-13 07:08 . 2012-04-28 03:17 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-06-13 07:08 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\system32\msi.dll 2012-06-13 07:08 . 2012-05-15 01:05 2343936 ----a-w- c:\windows\system32\win32k.sys 2012-06-13 07:08 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll 2012-06-13 07:08 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-06-13 07:08 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-06-13 07:08 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\system32\crypt32.dll 2012-06-13 07:08 . 2012-04-24 04:36 103936 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-10 14:22 . 2012-06-10 14:22 -------- d-----w- c:\programdata\Lexmark Pro700 Series . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-05 16:03 . 2012-03-29 18:58 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-05 16:03 . 2011-05-17 15:17 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-06-09 13:25 . 2012-06-09 13:25 135680 ----a-w- c:\users\Jonas\AppData\Roaming\pkg_0ll.exe 2012-05-30 08:29 . 2012-05-30 08:29 121856 ----a-w- c:\users\Jonas\AppData\Roaming\opret0l.exe 2012-05-08 16:40 . 2012-06-01 07:01 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\mpengine.dll 2012-04-18 18:56 . 2012-04-18 18:56 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-04-18 18:56 . 2012-04-18 18:56 69632 ----a-w- c:\windows\system32\QuickTime.qts 2009-10-26 14:05 . 2009-10-26 14:05 124240 ----a-w- c:\program files\mozilla firefox\plugins\CCMSDK.dll 2009-10-26 14:10 . 2009-10-26 14:10 13136 ----a-w- c:\program files\mozilla firefox\plugins\cgpcfg.dll 2009-10-26 14:08 . 2009-10-26 14:08 70488 ----a-w- c:\program files\mozilla firefox\plugins\CgpCore.dll 2009-10-26 14:09 . 2009-10-26 14:09 91480 ----a-w- c:\program files\mozilla firefox\plugins\confmgr.dll 2009-10-26 14:08 . 2009-10-26 14:08 22360 ----a-w- c:\program files\mozilla firefox\plugins\ctxlogging.dll 2009-10-26 14:06 . 2009-10-26 14:06 255312 ----a-w- c:\program files\mozilla firefox\plugins\ctxmui.dll 2009-10-26 14:08 . 2009-10-26 14:08 31064 ----a-w- c:\program files\mozilla firefox\plugins\icafile.dll 2009-10-26 14:09 . 2009-10-26 14:09 40280 ----a-w- c:\program files\mozilla firefox\plugins\icalogon.dll 2009-10-19 16:58 . 2009-10-19 16:58 652640 ----a-w- c:\program files\mozilla firefox\plugins\sslsdk_b.dll 2009-10-26 14:08 . 2009-10-26 14:08 23896 ----a-w- c:\program files\mozilla firefox\plugins\TcpPServ.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-08-19 7711264] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-14 1541416] "UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2009-07-08 115560] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520] "ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" [2009-10-26 103768] "MRT"="c:\windows\system32\MRT.exe" [2012-06-14 56731752] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "lxeemon.exe"="c:\program files\Lexmark Pro700 Series\lxeemon.exe" [2011-01-24 770728] "EzPrint"="c:\program files\Lexmark Pro700 Series\ezprint.exe" [2011-01-24 148280] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736] . c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x] R2 lxeeCATSCustConnectService;lxeeCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x] S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 lxee_device;lxee_device;c:\windows\system32\lxeecoms.exe [x] S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [x] S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [x] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-03-29 c:\windows\Tasks\SpeedyPC Registration3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\UUS3.dll [2011-10-06 16:18] . 2012-03-29 c:\windows\Tasks\SpeedyPC Update Version3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\SpeedyPC_Update3.exe [2011-10-06 16:18] . 2012-07-08 c:\windows\Tasks\SyncBack Backup Jonas Bibliotheken.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . 2012-07-08 c:\windows\Tasks\SyncBack Synchronise Folder RECHTEN.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyOverride = *.local IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: network.proxy.http - 127.0.0.1 FF - prefs.js: network.proxy.http_port - 55758 FF - prefs.js: network.proxy.type - 1 FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . - - - - ORPHANS VERWIJDERD - - - - . SafeBoot-49504850.sys . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Symantec\Symantec Endpoint Protection\Smc.exe c:\program files\Common Files\Symantec Shared\ccSvcHst.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe c:\program files\Symantec\Symantec Endpoint Protection\Rtvscan.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\windows\system32\taskhost.exe c:\program files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe c:\program files\Samsung\Easy Display Manager\dmhkcore.exe c:\program files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe c:\program files\Samsung\Samsung Support Center\SSCKbdHk.exe c:\program files\Samsung\Samsung Update Plus\SUPBackground.exe c:\program files\TeamViewer\Version6\TeamViewer.exe c:\program files\Symantec\Symantec Endpoint Protection\SmcGui.exe c:\program files\TeamViewer\Version6\tv_w32.exe c:\windows\servicing\TrustedInstaller.exe c:\windows\system32\conhost.exe c:\windows\system32\igfxext.exe c:\windows\system32\igfxsrvc.exe c:\windows\system32\DllHost.exe c:\windows\system32\sppsvc.exe c:\program files\Windows Media Player\wmpnetwk.exe . ************************************************************************** . Voltooingstijd: 2012-07-10 00:23:06 - machine werd herstart ComboFix-quarantined-files.txt 2012-07-09 22:23 ComboFix2.txt 2012-07-09 19:52 ComboFix3.txt 2012-07-09 17:37 . Pre-Run: 141.457.633.280 bytes beschikbaar Post-Run: 141.132.476.416 bytes beschikbaar . - - End Of File - - B532F0E664A7A87A131CE1476FFD2CFA

Ik heb de additionele mogelijkheden moeten aanduiden vooraleer er bedreigingen werden gesignaleerd. Hier is mijn TDSSKiller-log: 22:37:47.0275 4904 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35 22:37:47.0446 4904 ============================================================ 22:37:47.0446 4904 Current date / time: 2012/07/09 22:37:47.0446 22:37:47.0446 4904 SystemInfo: 22:37:47.0446 4904 22:37:47.0446 4904 OS Version: 6.1.7601 ServicePack: 1.0 22:37:47.0446 4904 Product type: Workstation 22:37:47.0446 4904 ComputerName: JONAS-PC 22:37:47.0446 4904 UserName: Jonas 22:37:47.0446 4904 Windows directory: C:\windows 22:37:47.0446 4904 System windows directory: C:\windows 22:37:47.0446 4904 Processor architecture: Intel x86 22:37:47.0446 4904 Number of processors: 2 22:37:47.0446 4904 Page size: 0x1000 22:37:47.0446 4904 Boot type: Normal boot 22:37:47.0446 4904 ============================================================ 22:37:48.0070 4904 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 22:37:48.0070 4904 ============================================================ 22:37:48.0070 4904 \Device\Harddisk0\DR0: 22:37:48.0070 4904 MBR partitions: 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x16A3A000 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1886C800, BlocksNum 0xCBC1800 22:37:48.0070 4904 ============================================================ 22:37:48.0117 4904 C: <-> \Device\Harddisk0\DR0\Partition1 22:37:48.0148 4904 D: <-> \Device\Harddisk0\DR0\Partition2 22:37:48.0148 4904 ============================================================ 22:37:48.0148 4904 Initialize success 22:37:48.0148 4904 ============================================================ 22:38:20.0053 5932 ============================================================ 22:38:20.0053 5932 Scan started 22:38:20.0053 5932 Mode: Manual; 22:38:20.0053 5932 ============================================================ 22:38:20.0458 5932 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:38:20.0458 5932 1394ohci - ok 22:38:20.0521 5932 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:38:20.0536 5932 ACPI - ok 22:38:20.0583 5932 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:38:20.0583 5932 AcpiPmi - ok 22:38:20.0677 5932 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:38:20.0677 5932 adp94xx - ok 22:38:20.0723 5932 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:38:20.0723 5932 adpahci - ok 22:38:20.0755 5932 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:38:20.0755 5932 adpu320 - ok 22:38:20.0801 5932 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:38:20.0801 5932 AeLookupSvc - ok 22:38:20.0879 5932 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:38:20.0879 5932 AFD - ok 22:38:20.0911 5932 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:38:20.0911 5932 agp440 - ok 22:38:20.0973 5932 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:38:20.0973 5932 aic78xx - ok 22:38:21.0020 5932 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:38:21.0035 5932 ALG - ok 22:38:21.0035 5932 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:38:21.0035 5932 aliide - ok 22:38:21.0067 5932 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:38:21.0067 5932 amdagp - ok 22:38:21.0113 5932 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:38:21.0129 5932 amdide - ok 22:38:21.0191 5932 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:38:21.0191 5932 AmdK8 - ok 22:38:21.0223 5932 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:38:21.0223 5932 AmdPPM - ok 22:38:21.0285 5932 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:38:21.0285 5932 amdsata - ok 22:38:21.0347 5932 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:38:21.0347 5932 amdsbs - ok 22:38:21.0363 5932 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:38:21.0363 5932 amdxata - ok 22:38:21.0425 5932 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:38:21.0425 5932 AppID - ok 22:38:21.0472 5932 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:38:21.0472 5932 AppIDSvc - ok 22:38:21.0519 5932 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:38:21.0519 5932 Appinfo - ok 22:38:21.0628 5932 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:38:21.0628 5932 Apple Mobile Device - ok 22:38:21.0769 5932 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:38:21.0784 5932 arc - ok 22:38:21.0800 5932 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:38:21.0800 5932 arcsas - ok 22:38:21.0815 5932 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:38:21.0815 5932 AsyncMac - ok 22:38:21.0847 5932 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:38:21.0862 5932 atapi - ok 22:38:21.0971 5932 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:38:21.0987 5932 athr - ok 22:38:22.0065 5932 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:38:22.0065 5932 atksgt - ok 22:38:22.0143 5932 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:38:22.0143 5932 AudioEndpointBuilder - ok 22:38:22.0159 5932 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:38:22.0159 5932 Audiosrv - ok 22:38:22.0237 5932 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:38:22.0237 5932 AxInstSV - ok 22:38:22.0315 5932 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:38:22.0315 5932 b06bdrv - ok 22:38:22.0330 5932 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:38:22.0346 5932 b57nd60x - ok 22:38:22.0424 5932 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:38:22.0439 5932 BcmSqlStartupSvc - ok 22:38:22.0502 5932 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:38:22.0502 5932 BDESVC - ok 22:38:22.0533 5932 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:38:22.0533 5932 Beep - ok 22:38:22.0627 5932 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:38:22.0627 5932 BFE - ok 22:38:22.0658 5932 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:38:22.0673 5932 BITS - ok 22:38:22.0705 5932 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:38:22.0705 5932 blbdrive - ok 22:38:22.0829 5932 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:38:22.0829 5932 Bonjour Service - ok 22:38:22.0892 5932 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:38:22.0892 5932 bowser - ok 22:38:22.0923 5932 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:38:22.0923 5932 BrFiltLo - ok 22:38:22.0939 5932 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:38:22.0939 5932 BrFiltUp - ok 22:38:22.0985 5932 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:38:22.0985 5932 BridgeMP - ok 22:38:23.0032 5932 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:38:23.0032 5932 Browser - ok 22:38:23.0079 5932 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:38:23.0079 5932 Brserid - ok 22:38:23.0095 5932 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:38:23.0095 5932 BrSerWdm - ok 22:38:23.0110 5932 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:38:23.0110 5932 BrUsbMdm - ok 22:38:23.0141 5932 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:38:23.0141 5932 BrUsbSer - ok 22:38:23.0157 5932 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:38:23.0157 5932 BTHMODEM - ok 22:38:23.0219 5932 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:38:23.0219 5932 bthserv - ok 22:38:23.0313 5932 catchme - ok 22:38:23.0422 5932 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:38:23.0422 5932 ccEvtMgr - ok 22:38:23.0422 5932 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:38:23.0422 5932 ccSetMgr - ok 22:38:23.0485 5932 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:38:23.0485 5932 cdfs - ok 22:38:23.0547 5932 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:38:23.0563 5932 cdrom - ok 22:38:23.0625 5932 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:38:23.0625 5932 CertPropSvc - ok 22:38:23.0672 5932 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:38:23.0672 5932 circlass - ok 22:38:23.0703 5932 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:38:23.0703 5932 CLFS - ok 22:38:23.0828 5932 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:38:23.0828 5932 clr_optimization_v2.0.50727_32 - ok 22:38:23.0968 5932 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:38:23.0968 5932 clr_optimization_v4.0.30319_32 - ok 22:38:23.0999 5932 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:38:23.0999 5932 CmBatt - ok 22:38:24.0031 5932 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:38:24.0031 5932 cmdide - ok 22:38:24.0077 5932 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:38:24.0093 5932 CNG - ok 22:38:24.0124 5932 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:38:24.0124 5932 Compbatt - ok 22:38:24.0187 5932 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:38:24.0202 5932 CompositeBus - ok 22:38:24.0218 5932 COMSysApp - ok 22:38:24.0249 5932 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:38:24.0249 5932 crcdisk - ok 22:38:24.0280 5932 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:38:24.0280 5932 CryptSvc - ok 22:38:24.0358 5932 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:38:24.0358 5932 ctxusbm - ok 22:38:24.0421 5932 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:38:24.0436 5932 DcomLaunch - ok 22:38:24.0483 5932 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:38:24.0483 5932 defragsvc - ok 22:38:24.0530 5932 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:38:24.0530 5932 DfsC - ok 22:38:24.0608 5932 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:38:24.0623 5932 Dhcp - ok 22:38:24.0655 5932 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:38:24.0655 5932 discache - ok 22:38:24.0717 5932 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:38:24.0717 5932 Disk - ok 22:38:24.0764 5932 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:38:24.0764 5932 Dnscache - ok 22:38:24.0795 5932 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:38:24.0811 5932 dot3svc - ok 22:38:24.0857 5932 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:38:24.0857 5932 Dot4 - ok 22:38:24.0920 5932 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:38:24.0920 5932 Dot4Print - ok 22:38:24.0935 5932 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:38:24.0935 5932 dot4usb - ok 22:38:24.0982 5932 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:38:24.0982 5932 DPS - ok 22:38:25.0045 5932 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:38:25.0045 5932 drmkaud - ok 22:38:25.0123 5932 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:38:25.0123 5932 dtsoftbus01 - ok 22:38:25.0185 5932 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:38:25.0201 5932 DXGKrnl - ok 22:38:25.0279 5932 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:38:25.0279 5932 EapHost - ok 22:38:25.0528 5932 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:38:25.0575 5932 ebdrv - ok 22:38:25.0700 5932 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:38:25.0700 5932 eeCtrl - ok 22:38:25.0809 5932 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:38:25.0809 5932 EFS - ok 22:38:25.0903 5932 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:38:25.0903 5932 ehRecvr - ok 22:38:25.0934 5932 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:38:25.0934 5932 ehSched - ok 22:38:26.0027 5932 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:38:26.0043 5932 elxstor - ok 22:38:26.0183 5932 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:38:26.0183 5932 EraserUtilRebootDrv - ok 22:38:26.0215 5932 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:38:26.0215 5932 ErrDev - ok 22:38:26.0293 5932 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:38:26.0293 5932 EventSystem - ok 22:38:26.0324 5932 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:38:26.0324 5932 exfat - ok 22:38:26.0355 5932 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:38:26.0355 5932 fastfat - ok 22:38:26.0433 5932 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:38:26.0449 5932 Fax - ok 22:38:26.0464 5932 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:38:26.0464 5932 fdc - ok 22:38:26.0495 5932 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:38:26.0495 5932 fdPHost - ok 22:38:26.0527 5932 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:38:26.0527 5932 FDResPub - ok 22:38:26.0542 5932 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:38:26.0542 5932 FileInfo - ok 22:38:26.0558 5932 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:38:26.0558 5932 Filetrace - ok 22:38:26.0573 5932 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:38:26.0573 5932 flpydisk - ok 22:38:26.0636 5932 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:38:26.0636 5932 FltMgr - ok 22:38:26.0745 5932 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:38:26.0761 5932 FontCache - ok 22:38:26.0807 5932 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:38:26.0807 5932 FontCache3.0.0.0 - ok 22:38:26.0823 5932 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:38:26.0823 5932 FsDepends - ok 22:38:26.0885 5932 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:38:26.0885 5932 fssfltr - ok 22:38:27.0104 5932 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:38:27.0119 5932 fsssvc - ok 22:38:27.0244 5932 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:38:27.0244 5932 Fs_Rec - ok 22:38:27.0307 5932 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:38:27.0307 5932 fvevol - ok 22:38:27.0369 5932 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:38:27.0385 5932 gagp30kx - ok 22:38:27.0431 5932 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:38:27.0431 5932 GEARAspiWDM - ok 22:38:27.0494 5932 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:38:27.0509 5932 gpsvc - ok 22:38:27.0619 5932 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:38:27.0619 5932 gupdate - ok 22:38:27.0650 5932 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:38:27.0650 5932 gupdatem - ok 22:38:27.0712 5932 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:38:27.0712 5932 gusvc - ok 22:38:27.0759 5932 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:38:27.0759 5932 hcw85cir - ok 22:38:27.0837 5932 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:38:27.0837 5932 HdAudAddService - ok 22:38:27.0884 5932 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:38:27.0884 5932 HDAudBus - ok 22:38:27.0899 5932 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:38:27.0899 5932 HidBatt - ok 22:38:27.0915 5932 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:38:27.0915 5932 HidBth - ok 22:38:27.0962 5932 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:38:27.0962 5932 HidIr - ok 22:38:27.0977 5932 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:38:27.0977 5932 hidserv - ok 22:38:28.0055 5932 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:38:28.0055 5932 HidUsb - ok 22:38:28.0118 5932 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:38:28.0118 5932 hkmsvc - ok 22:38:28.0149 5932 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:38:28.0149 5932 HomeGroupListener - ok 22:38:28.0180 5932 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:38:28.0196 5932 HomeGroupProvider - ok 22:38:28.0243 5932 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:38:28.0243 5932 HpSAMD - ok 22:38:28.0321 5932 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:38:28.0321 5932 HTTP - ok 22:38:28.0336 5932 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:38:28.0336 5932 hwpolicy - ok 22:38:28.0414 5932 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:38:28.0414 5932 i8042prt - ok 22:38:28.0539 5932 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:38:28.0539 5932 IAANTMON - ok 22:38:28.0586 5932 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:38:28.0586 5932 iaStor - ok 22:38:28.0648 5932 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:38:28.0648 5932 iaStorV - ok 22:38:28.0789 5932 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:38:28.0804 5932 idsvc - ok 22:38:29.0225 5932 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:38:29.0428 5932 igfx - ok 22:38:29.0631 5932 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:38:29.0647 5932 iirsp - ok 22:38:29.0803 5932 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:38:29.0803 5932 IKEEXT - ok 22:38:29.0990 5932 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:38:30.0021 5932 IntcAzAudAddService - ok 22:38:30.0146 5932 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:38:30.0146 5932 intelide - ok 22:38:30.0193 5932 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:38:30.0193 5932 intelppm - ok 22:38:30.0224 5932 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:38:30.0224 5932 IPBusEnum - ok 22:38:30.0255 5932 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:38:30.0271 5932 IpFilterDriver - ok 22:38:30.0333 5932 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:38:30.0333 5932 iphlpsvc - ok 22:38:30.0364 5932 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:38:30.0364 5932 IPMIDRV - ok 22:38:30.0395 5932 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:38:30.0395 5932 IPNAT - ok 22:38:30.0536 5932 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:38:30.0551 5932 iPod Service - ok 22:38:30.0598 5932 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:38:30.0598 5932 IRENUM - ok 22:38:30.0629 5932 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:38:30.0629 5932 isapnp - ok 22:38:30.0676 5932 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:38:30.0676 5932 iScsiPrt - ok 22:38:30.0739 5932 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:38:30.0739 5932 kbdclass - ok 22:38:30.0785 5932 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:38:30.0785 5932 kbdhid - ok 22:38:30.0817 5932 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:30.0832 5932 KeyIso - ok 22:38:30.0832 5932 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:38:30.0832 5932 KSecDD - ok 22:38:30.0848 5932 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:38:30.0863 5932 KSecPkg - ok 22:38:30.0895 5932 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:38:30.0895 5932 KtmRm - ok 22:38:30.0941 5932 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:38:30.0957 5932 LanmanServer - ok 22:38:31.0019 5932 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:38:31.0035 5932 LanmanWorkstation - ok 22:38:31.0097 5932 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:38:31.0097 5932 lirsgt - ok 22:38:31.0409 5932 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:38:31.0456 5932 LiveUpdate - ok 22:38:31.0597 5932 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:38:31.0597 5932 lltdio - ok 22:38:31.0628 5932 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:38:31.0628 5932 lltdsvc - ok 22:38:31.0643 5932 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:38:31.0659 5932 lmhosts - ok 22:38:31.0721 5932 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:38:31.0721 5932 LSI_FC - ok 22:38:31.0737 5932 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:38:31.0737 5932 LSI_SAS - ok 22:38:31.0753 5932 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:38:31.0753 5932 LSI_SAS2 - ok 22:38:31.0768 5932 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:38:31.0768 5932 LSI_SCSI - ok 22:38:31.0831 5932 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:38:31.0831 5932 luafv - ok 22:38:31.0940 5932 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:38:31.0955 5932 lxeeCATSCustConnectService - ok 22:38:31.0971 5932 lxee_device - ok 22:38:32.0018 5932 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:38:32.0018 5932 Mcx2Svc - ok 22:38:32.0049 5932 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:38:32.0049 5932 megasas - ok 22:38:32.0111 5932 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:38:32.0111 5932 MegaSR - ok 22:38:32.0205 5932 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:38:32.0205 5932 Microsoft Office Groove Audit Service - ok 22:38:32.0236 5932 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:38:32.0236 5932 MMCSS - ok 22:38:32.0252 5932 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:38:32.0252 5932 Modem - ok 22:38:32.0299 5932 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:38:32.0299 5932 monitor - ok 22:38:32.0423 5932 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:38:32.0423 5932 mouclass - ok 22:38:32.0486 5932 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:38:32.0486 5932 mouhid - ok 22:38:32.0533 5932 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:38:32.0533 5932 mountmgr - ok 22:38:32.0564 5932 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:38:32.0564 5932 mpio - ok 22:38:32.0595 5932 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:38:32.0595 5932 mpsdrv - ok 22:38:32.0704 5932 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:38:32.0720 5932 MpsSvc - ok 22:38:32.0751 5932 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:38:32.0751 5932 MRxDAV - ok 22:38:32.0813 5932 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:38:32.0813 5932 mrxsmb - ok 22:38:32.0876 5932 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:38:32.0876 5932 mrxsmb10 - ok 22:38:32.0891 5932 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:38:32.0891 5932 mrxsmb20 - ok 22:38:32.0923 5932 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:38:32.0938 5932 msahci - ok 22:38:32.0954 5932 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:38:32.0969 5932 msdsm - ok 22:38:32.0985 5932 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:38:33.0001 5932 MSDTC - ok 22:38:33.0063 5932 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:38:33.0063 5932 Msfs - ok 22:38:33.0079 5932 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:38:33.0079 5932 mshidkmdf - ok 22:38:33.0110 5932 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:38:33.0110 5932 msisadrv - ok 22:38:33.0188 5932 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:38:33.0188 5932 MSiSCSI - ok 22:38:33.0188 5932 msiserver - ok 22:38:33.0203 5932 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:38:33.0219 5932 MSKSSRV - ok 22:38:33.0250 5932 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:38:33.0250 5932 MSPCLOCK - ok 22:38:33.0297 5932 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:38:33.0313 5932 MSPQM - ok 22:38:33.0344 5932 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:38:33.0344 5932 MsRPC - ok 22:38:33.0391 5932 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:38:33.0391 5932 mssmbios - ok 22:38:33.0500 5932 MSSQL$MSSMLBIZ - ok 22:38:33.0531 5932 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:38:33.0531 5932 MSSQLServerADHelper - ok 22:38:33.0578 5932 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:38:33.0578 5932 MSTEE - ok 22:38:33.0593 5932 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:38:33.0593 5932 MTConfig - ok 22:38:33.0625 5932 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:38:33.0625 5932 Mup - ok 22:38:33.0671 5932 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:38:33.0671 5932 napagent - ok 22:38:33.0749 5932 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:38:33.0749 5932 NativeWifiP - ok 22:38:33.0859 5932 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:38:33.0859 5932 NAVENG - ok 22:38:34.0015 5932 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:38:34.0046 5932 NAVEX15 - ok 22:38:34.0202 5932 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:38:34.0217 5932 NDIS - ok 22:38:34.0264 5932 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:38:34.0264 5932 NdisCap - ok 22:38:34.0311 5932 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:38:34.0311 5932 NdisTapi - ok 22:38:34.0373 5932 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:38:34.0373 5932 Ndisuio - ok 22:38:34.0405 5932 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:38:34.0405 5932 NdisWan - ok 22:38:34.0451 5932 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:38:34.0451 5932 NDProxy - ok 22:38:34.0498 5932 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:38:34.0498 5932 NetBIOS - ok 22:38:34.0529 5932 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:38:34.0545 5932 NetBT - ok 22:38:34.0561 5932 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:34.0576 5932 Netlogon - ok 22:38:34.0639 5932 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:38:34.0654 5932 Netman - ok 22:38:34.0717 5932 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:38:34.0717 5932 netprofm - ok 22:38:34.0779 5932 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:38:34.0795 5932 NetTcpPortSharing - ok 22:38:34.0841 5932 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:38:34.0841 5932 nfrd960 - ok 22:38:34.0888 5932 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:38:34.0888 5932 NlaSvc - ok 22:38:34.0904 5932 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:38:34.0904 5932 Npfs - ok 22:38:34.0951 5932 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:38:34.0951 5932 nsi - ok 22:38:34.0951 5932 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:38:34.0966 5932 nsiproxy - ok 22:38:35.0060 5932 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:38:35.0075 5932 Ntfs - ok 22:38:35.0107 5932 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:38:35.0107 5932 Null - ok 22:38:35.0138 5932 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:38:35.0138 5932 nvraid - ok 22:38:35.0169 5932 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:38:35.0169 5932 nvstor - ok 22:38:35.0185 5932 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:38:35.0185 5932 nv_agp - ok 22:38:35.0278 5932 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:38:35.0278 5932 OberonGameConsoleService - ok 22:38:35.0387 5932 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:38:35.0387 5932 odserv - ok 22:38:35.0434 5932 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:38:35.0434 5932 ohci1394 - ok 22:38:35.0465 5932 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:38:35.0465 5932 ose - ok 22:38:35.0512 5932 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:38:35.0512 5932 p2pimsvc - ok 22:38:35.0543 5932 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:38:35.0543 5932 p2psvc - ok 22:38:35.0606 5932 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:38:35.0606 5932 Parport - ok 22:38:35.0621 5932 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:38:35.0637 5932 partmgr - ok 22:38:35.0653 5932 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:38:35.0653 5932 Parvdm - ok 22:38:35.0684 5932 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:38:35.0684 5932 PcaSvc - ok 22:38:35.0731 5932 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:38:35.0731 5932 pci - ok 22:38:35.0777 5932 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:38:35.0777 5932 pciide - ok 22:38:35.0809 5932 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:38:35.0809 5932 pcmcia - ok 22:38:35.0824 5932 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:38:35.0824 5932 pcw - ok 22:38:35.0871 5932 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:38:35.0887 5932 PEAUTH - ok 22:38:35.0996 5932 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:38:36.0027 5932 pla - ok 22:38:36.0136 5932 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:38:36.0136 5932 PlugPlay - ok 22:38:36.0167 5932 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:38:36.0167 5932 PNRPAutoReg - ok 22:38:36.0199 5932 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:38:36.0199 5932 PNRPsvc - ok 22:38:36.0245 5932 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:38:36.0245 5932 PolicyAgent - ok 22:38:36.0292 5932 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:38:36.0308 5932 Power - ok 22:38:36.0370 5932 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:38:36.0370 5932 PptpMiniport - ok 22:38:36.0386 5932 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:38:36.0386 5932 Processor - ok 22:38:36.0448 5932 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:38:36.0448 5932 ProfSvc - ok 22:38:36.0479 5932 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:36.0479 5932 ProtectedStorage - ok 22:38:36.0526 5932 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:38:36.0526 5932 Psched - ok 22:38:36.0635 5932 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:38:36.0651 5932 ql2300 - ok 22:38:36.0791 5932 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:38:36.0791 5932 ql40xx - ok 22:38:36.0838 5932 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:38:36.0838 5932 QWAVE - ok 22:38:36.0854 5932 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:38:36.0854 5932 QWAVEdrv - ok 22:38:36.0869 5932 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:38:36.0869 5932 RasAcd - ok 22:38:36.0916 5932 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:38:36.0916 5932 RasAgileVpn - ok 22:38:36.0932 5932 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:38:36.0932 5932 RasAuto - ok 22:38:36.0963 5932 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:38:36.0963 5932 Rasl2tp - ok 22:38:37.0041 5932 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:38:37.0041 5932 RasMan - ok 22:38:37.0057 5932 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:38:37.0057 5932 RasPppoe - ok 22:38:37.0103 5932 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:38:37.0119 5932 RasSstp - ok 22:38:37.0135 5932 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:38:37.0135 5932 rdbss - ok 22:38:37.0150 5932 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:38:37.0150 5932 rdpbus - ok 22:38:37.0181 5932 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:38:37.0181 5932 RDPCDD - ok 22:38:37.0228 5932 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:38:37.0228 5932 RDPENCDD - ok 22:38:37.0244 5932 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:38:37.0244 5932 RDPREFMP - ok 22:38:37.0275 5932 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:38:37.0275 5932 RDPWD - ok 22:38:37.0337 5932 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:38:37.0353 5932 rdyboost - ok 22:38:37.0369 5932 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:38:37.0369 5932 RemoteAccess - ok 22:38:37.0400 5932 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:38:37.0400 5932 RemoteRegistry - ok 22:38:37.0447 5932 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:38:37.0447 5932 RpcEptMapper - ok 22:38:37.0478 5932 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:38:37.0478 5932 RpcLocator - ok 22:38:37.0540 5932 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:38:37.0540 5932 RpcSs - ok 22:38:37.0603 5932 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:38:37.0603 5932 rspndr - ok 22:38:37.0634 5932 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:38:37.0634 5932 RTL8167 - ok 22:38:37.0696 5932 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:38:37.0696 5932 SABI - ok 22:38:37.0727 5932 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:37.0727 5932 SamSs - ok 22:38:37.0774 5932 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:38:37.0790 5932 sbp2port - ok 22:38:37.0837 5932 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:38:37.0837 5932 SCardSvr - ok 22:38:37.0883 5932 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:38:37.0883 5932 scfilter - ok 22:38:37.0946 5932 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:38:37.0961 5932 Schedule - ok 22:38:37.0993 5932 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:38:37.0993 5932 SCPolicySvc - ok 22:38:38.0024 5932 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:38:38.0039 5932 SDRSVC - ok 22:38:38.0086 5932 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:38:38.0086 5932 secdrv - ok 22:38:38.0117 5932 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:38:38.0117 5932 seclogon - ok 22:38:38.0164 5932 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:38:38.0164 5932 SENS - ok 22:38:38.0242 5932 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:38:38.0258 5932 SensrSvc - ok 22:38:38.0305 5932 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:38:38.0305 5932 Serenum - ok 22:38:38.0320 5932 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:38:38.0320 5932 Serial - ok 22:38:38.0367 5932 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:38:38.0367 5932 sermouse - ok 22:38:38.0429 5932 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:38:38.0429 5932 SessionEnv - ok 22:38:38.0461 5932 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:38:38.0461 5932 sffdisk - ok 22:38:38.0476 5932 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:38:38.0476 5932 sffp_mmc - ok 22:38:38.0492 5932 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:38:38.0492 5932 sffp_sd - ok 22:38:38.0539 5932 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:38:38.0539 5932 sfloppy - ok 22:38:38.0617 5932 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:38:38.0632 5932 SharedAccess - ok 22:38:38.0679 5932 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:38:38.0695 5932 ShellHWDetection - ok 22:38:38.0726 5932 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:38:38.0726 5932 sisagp - ok 22:38:38.0773 5932 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:38:38.0773 5932 SiSRaid2 - ok 22:38:38.0788 5932 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:38:38.0788 5932 SiSRaid4 - ok 22:38:38.0835 5932 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:38:38.0835 5932 Smb - ok 22:38:39.0038 5932 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:38:39.0053 5932 SmcService - ok 22:38:39.0100 5932 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:38:39.0100 5932 SNAC - ok 22:38:39.0225 5932 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:38:39.0225 5932 SNMPTRAP - ok 22:38:39.0397 5932 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:38:39.0412 5932 SPBBCDrv - ok 22:38:39.0459 5932 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:38:39.0459 5932 spldr - ok 22:38:39.0537 5932 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:38:39.0537 5932 Spooler - ok 22:38:39.0693 5932 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:38:39.0724 5932 sppsvc - ok 22:38:39.0849 5932 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:38:39.0849 5932 sppuinotify - ok 22:38:39.0958 5932 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:38:39.0974 5932 SpyHunter 4 Service - ok 22:38:40.0068 5932 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:38:40.0083 5932 SQLBrowser - ok 22:38:40.0130 5932 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:38:40.0130 5932 SQLWriter - ok 22:38:40.0177 5932 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:38:40.0192 5932 SRTSP - ok 22:38:40.0224 5932 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:38:40.0224 5932 SRTSPL - ok 22:38:40.0270 5932 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:38:40.0270 5932 SRTSPX - ok 22:38:40.0302 5932 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:38:40.0317 5932 srv - ok 22:38:40.0364 5932 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:38:40.0364 5932 srv2 - ok 22:38:40.0395 5932 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:38:40.0395 5932 srvnet - ok 22:38:40.0426 5932 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:38:40.0442 5932 SSDPSRV - ok 22:38:40.0458 5932 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:38:40.0458 5932 SstpSvc - ok 22:38:40.0489 5932 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:38:40.0489 5932 stexstor - ok 22:38:40.0536 5932 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:38:40.0551 5932 StiSvc - ok 22:38:40.0598 5932 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:38:40.0598 5932 swenum - ok 22:38:40.0645 5932 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:38:40.0645 5932 swprv - ok 22:38:40.0863 5932 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:38:40.0879 5932 Symantec AntiVirus - ok 22:38:41.0035 5932 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:38:41.0035 5932 SymEvent - ok 22:38:41.0097 5932 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:38:41.0097 5932 SYMREDRV - ok 22:38:41.0128 5932 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:38:41.0128 5932 SYMTDI - ok 22:38:41.0206 5932 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:38:41.0206 5932 SynTP - ok 22:38:41.0316 5932 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:38:41.0331 5932 SysMain - ok 22:38:41.0362 5932 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:38:41.0362 5932 TabletInputService - ok 22:38:41.0425 5932 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:38:41.0425 5932 TapiSrv - ok 22:38:41.0440 5932 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:38:41.0456 5932 TBS - ok 22:38:41.0550 5932 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:38:41.0565 5932 Tcpip - ok 22:38:41.0612 5932 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:38:41.0612 5932 TCPIP6 - ok 22:38:41.0659 5932 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:38:41.0659 5932 tcpipreg - ok 22:38:41.0690 5932 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:38:41.0690 5932 TDPIPE - ok 22:38:41.0721 5932 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:38:41.0721 5932 TDTCP - ok 22:38:41.0784 5932 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:38:41.0784 5932 tdx - ok 22:38:42.0096 5932 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:38:42.0111 5932 TeamViewer6 - ok 22:38:42.0236 5932 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:38:42.0252 5932 TermDD - ok 22:38:42.0298 5932 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:38:42.0314 5932 TermService - ok 22:38:42.0330 5932 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:38:42.0345 5932 Themes - ok 22:38:42.0376 5932 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:38:42.0376 5932 THREADORDER - ok 22:38:42.0423 5932 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:38:42.0423 5932 TrkWks - ok 22:38:42.0486 5932 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:38:42.0486 5932 TrustedInstaller - ok 22:38:42.0517 5932 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:38:42.0517 5932 tssecsrv - ok 22:38:42.0548 5932 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:38:42.0548 5932 TsUsbFlt - ok 22:38:42.0626 5932 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:38:42.0626 5932 tunnel - ok 22:38:42.0657 5932 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:38:42.0657 5932 uagp35 - ok 22:38:42.0735 5932 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:38:42.0735 5932 udfs - ok 22:38:42.0782 5932 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:38:42.0782 5932 UI0Detect - ok 22:38:42.0844 5932 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:38:42.0844 5932 uliagpkx - ok 22:38:42.0891 5932 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:38:42.0891 5932 umbus - ok 22:38:42.0938 5932 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:38:42.0938 5932 UmPass - ok 22:38:43.0047 5932 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:38:43.0047 5932 upnphost - ok 22:38:43.0110 5932 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:38:43.0110 5932 USBAAPL - ok 22:38:43.0156 5932 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:38:43.0156 5932 usbccgp - ok 22:38:43.0188 5932 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:38:43.0203 5932 usbcir - ok 22:38:43.0219 5932 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:38:43.0219 5932 usbehci - ok 22:38:43.0281 5932 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:38:43.0281 5932 usbhub - ok 22:38:43.0312 5932 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:38:43.0312 5932 usbohci - ok 22:38:43.0375 5932 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:38:43.0375 5932 usbprint - ok 22:38:43.0422 5932 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:38:43.0422 5932 usbscan - ok 22:38:43.0468 5932 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:38:43.0468 5932 USBSTOR - ok 22:38:43.0484 5932 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:38:43.0484 5932 usbuhci - ok 22:38:43.0546 5932 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:38:43.0546 5932 usbvideo - ok 22:38:43.0578 5932 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:38:43.0578 5932 UxSms - ok 22:38:43.0609 5932 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:43.0609 5932 VaultSvc - ok 22:38:43.0671 5932 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:38:43.0671 5932 vdrvroot - ok 22:38:43.0749 5932 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:38:43.0765 5932 vds - ok 22:38:43.0780 5932 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:38:43.0796 5932 vga - ok 22:38:43.0812 5932 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:38:43.0812 5932 VgaSave - ok 22:38:43.0843 5932 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:38:43.0843 5932 vhdmp - ok 22:38:43.0905 5932 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:38:43.0905 5932 viaagp - ok 22:38:43.0921 5932 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:38:43.0921 5932 ViaC7 - ok 22:38:43.0936 5932 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:38:43.0936 5932 viaide - ok 22:38:43.0952 5932 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:38:43.0952 5932 volmgr - ok 22:38:43.0983 5932 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:38:43.0983 5932 volmgrx - ok 22:38:44.0030 5932 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:38:44.0030 5932 volsnap - ok 22:38:44.0108 5932 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:38:44.0108 5932 vsmraid - ok 22:38:44.0202 5932 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:38:44.0217 5932 VSS - ok 22:38:44.0233 5932 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:38:44.0233 5932 vwifibus - ok 22:38:44.0280 5932 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:38:44.0280 5932 vwififlt - ok 22:38:44.0326 5932 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:38:44.0326 5932 vwifimp - ok 22:38:44.0373 5932 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:38:44.0373 5932 W32Time - ok 22:38:44.0404 5932 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:38:44.0420 5932 WacomPen - ok 22:38:44.0467 5932 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:38:44.0467 5932 WANARP - ok 22:38:44.0482 5932 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:38:44.0482 5932 Wanarpv6 - ok 22:38:44.0607 5932 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:38:44.0623 5932 WatAdminSvc - ok 22:38:44.0701 5932 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:38:44.0716 5932 wbengine - ok 22:38:44.0763 5932 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:38:44.0763 5932 WbioSrvc - ok 22:38:44.0810 5932 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:38:44.0826 5932 wcncsvc - ok 22:38:44.0841 5932 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:38:44.0841 5932 WcsPlugInService - ok 22:38:44.0904 5932 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:38:44.0904 5932 Wd - ok 22:38:44.0935 5932 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:38:44.0935 5932 Wdf01000 - ok 22:38:44.0966 5932 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:38:44.0966 5932 WdiServiceHost - ok 22:38:44.0966 5932 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:38:44.0966 5932 WdiSystemHost - ok 22:38:45.0013 5932 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:38:45.0013 5932 WebClient - ok 22:38:45.0044 5932 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:38:45.0044 5932 Wecsvc - ok 22:38:45.0060 5932 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:38:45.0060 5932 wercplsupport - ok 22:38:45.0106 5932 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:38:45.0106 5932 WerSvc - ok 22:38:45.0153 5932 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:38:45.0169 5932 WfpLwf - ok 22:38:45.0184 5932 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:38:45.0184 5932 WIMMount - ok 22:38:45.0262 5932 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:38:45.0262 5932 WinDefend - ok 22:38:45.0278 5932 WinHttpAutoProxySvc - ok 22:38:45.0356 5932 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:38:45.0356 5932 Winmgmt - ok 22:38:45.0434 5932 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:38:45.0465 5932 WinRM - ok 22:38:45.0559 5932 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:38:45.0559 5932 WinUsb - ok 22:38:45.0621 5932 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:38:45.0637 5932 Wlansvc - ok 22:38:45.0840 5932 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:38:45.0855 5932 wlidsvc - ok 22:38:45.0980 5932 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:38:45.0980 5932 WmiAcpi - ok 22:38:46.0042 5932 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:38:46.0042 5932 wmiApSrv - ok 22:38:46.0198 5932 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:38:46.0214 5932 WMPNetworkSvc - ok 22:38:46.0245 5932 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:38:46.0261 5932 WPCSvc - ok 22:38:46.0308 5932 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:38:46.0308 5932 WPDBusEnum - ok 22:38:46.0354 5932 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:38:46.0354 5932 ws2ifsl - ok 22:38:46.0386 5932 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:38:46.0401 5932 wscsvc - ok 22:38:46.0401 5932 WSearch - ok 22:38:46.0542 5932 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:38:46.0557 5932 wuauserv - ok 22:38:46.0682 5932 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:38:46.0682 5932 WudfPf - ok 22:38:46.0729 5932 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:38:46.0744 5932 WUDFRd - ok 22:38:46.0791 5932 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:38:46.0807 5932 wudfsvc - ok 22:38:46.0838 5932 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:38:46.0838 5932 WwanSvc - ok 22:38:46.0900 5932 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:38:47.0134 5932 \Device\Harddisk0\DR0 - ok 22:38:47.0134 5932 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:38:47.0134 5932 \Device\Harddisk0\DR0\Partition0 - ok 22:38:47.0150 5932 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:38:47.0166 5932 \Device\Harddisk0\DR0\Partition1 - ok 22:38:47.0181 5932 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:38:47.0181 5932 \Device\Harddisk0\DR0\Partition2 - ok 22:38:47.0181 5932 ============================================================ 22:38:47.0181 5932 Scan finished 22:38:47.0181 5932 ============================================================ 22:38:47.0197 5708 Detected object count: 0 22:38:47.0197 5708 Actual detected object count: 0 22:40:10.0251 4324 ============================================================ 22:40:10.0251 4324 Scan started 22:40:10.0251 4324 Mode: Manual; SigCheck; TDLFS; 22:40:10.0251 4324 ============================================================ 22:40:10.0532 4324 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:40:10.0626 4324 1394ohci - ok 22:40:10.0672 4324 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:40:10.0704 4324 ACPI - ok 22:40:10.0719 4324 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:40:10.0797 4324 AcpiPmi - ok 22:40:10.0844 4324 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:40:10.0891 4324 adp94xx - ok 22:40:10.0922 4324 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:40:10.0938 4324 adpahci - ok 22:40:10.0969 4324 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:40:10.0969 4324 adpu320 - ok 22:40:11.0000 4324 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:40:11.0062 4324 AeLookupSvc - ok 22:40:11.0094 4324 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:40:11.0172 4324 AFD - ok 22:40:11.0203 4324 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:40:11.0218 4324 agp440 - ok 22:40:11.0296 4324 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:40:11.0312 4324 aic78xx - ok 22:40:11.0343 4324 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:40:11.0374 4324 ALG - ok 22:40:11.0406 4324 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:40:11.0406 4324 aliide - ok 22:40:11.0437 4324 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:40:11.0452 4324 amdagp - ok 22:40:11.0484 4324 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:40:11.0499 4324 amdide - ok 22:40:11.0515 4324 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:40:11.0562 4324 AmdK8 - ok 22:40:11.0577 4324 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:40:11.0608 4324 AmdPPM - ok 22:40:11.0655 4324 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:40:11.0655 4324 amdsata - ok 22:40:11.0686 4324 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:40:11.0702 4324 amdsbs - ok 22:40:11.0718 4324 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:40:11.0733 4324 amdxata - ok 22:40:11.0780 4324 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:40:11.0874 4324 AppID - ok 22:40:11.0889 4324 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:40:11.0936 4324 AppIDSvc - ok 22:40:11.0967 4324 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:40:12.0014 4324 Appinfo - ok 22:40:12.0108 4324 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:40:12.0123 4324 Apple Mobile Device - ok 22:40:12.0186 4324 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:40:12.0217 4324 arc - ok 22:40:12.0217 4324 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:40:12.0232 4324 arcsas - ok 22:40:12.0248 4324 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:40:12.0279 4324 AsyncMac - ok 22:40:12.0326 4324 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:40:12.0342 4324 atapi - ok 22:40:12.0420 4324 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:40:12.0482 4324 athr - ok 22:40:12.0544 4324 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:40:12.0560 4324 atksgt ( UnsignedFile.Multi.Generic ) - warning 22:40:12.0560 4324 atksgt - detected UnsignedFile.Multi.Generic (1) 22:40:12.0622 4324 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:40:12.0654 4324 AudioEndpointBuilder - ok 22:40:12.0669 4324 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:40:12.0700 4324 Audiosrv - ok 22:40:12.0732 4324 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:40:12.0778 4324 AxInstSV - ok 22:40:12.0856 4324 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:40:12.0888 4324 b06bdrv - ok 22:40:12.0919 4324 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:40:12.0950 4324 b57nd60x - ok 22:40:13.0012 4324 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:40:13.0028 4324 BcmSqlStartupSvc - ok 22:40:13.0059 4324 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:40:13.0090 4324 BDESVC - ok 22:40:13.0122 4324 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:40:13.0153 4324 Beep - ok 22:40:13.0200 4324 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:40:13.0246 4324 BFE - ok 22:40:13.0293 4324 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:40:13.0324 4324 BITS - ok 22:40:13.0340 4324 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:40:13.0371 4324 blbdrive - ok 22:40:13.0465 4324 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:40:13.0480 4324 Bonjour Service - ok 22:40:13.0512 4324 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:40:13.0574 4324 bowser - ok 22:40:13.0590 4324 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:40:13.0668 4324 BrFiltLo - ok 22:40:13.0683 4324 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:40:13.0714 4324 BrFiltUp - ok 22:40:13.0730 4324 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:40:13.0792 4324 BridgeMP - ok 22:40:13.0824 4324 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:40:13.0855 4324 Browser - ok 22:40:13.0886 4324 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:40:13.0902 4324 Brserid - ok 22:40:13.0933 4324 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:40:13.0964 4324 BrSerWdm - ok 22:40:13.0980 4324 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:40:14.0011 4324 BrUsbMdm - ok 22:40:14.0026 4324 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:40:14.0073 4324 BrUsbSer - ok 22:40:14.0089 4324 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:40:14.0104 4324 BTHMODEM - ok 22:40:14.0136 4324 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:40:14.0182 4324 bthserv - ok 22:40:14.0245 4324 catchme - ok 22:40:14.0338 4324 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:40:14.0354 4324 ccEvtMgr - ok 22:40:14.0354 4324 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:40:14.0370 4324 ccSetMgr - ok 22:40:14.0401 4324 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:40:14.0432 4324 cdfs - ok 22:40:14.0463 4324 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:40:14.0479 4324 cdrom - ok 22:40:14.0510 4324 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:40:14.0572 4324 CertPropSvc - ok 22:40:14.0604 4324 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:40:14.0635 4324 circlass - ok 22:40:14.0666 4324 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:40:14.0682 4324 CLFS - ok 22:40:14.0760 4324 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:40:14.0775 4324 clr_optimization_v2.0.50727_32 - ok 22:40:14.0838 4324 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:40:14.0853 4324 clr_optimization_v4.0.30319_32 - ok 22:40:14.0869 4324 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:40:14.0916 4324 CmBatt - ok 22:40:14.0947 4324 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:40:14.0962 4324 cmdide - ok 22:40:15.0009 4324 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:40:15.0056 4324 CNG - ok 22:40:15.0072 4324 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:40:15.0072 4324 Compbatt - ok 22:40:15.0103 4324 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:40:15.0150 4324 CompositeBus - ok 22:40:15.0150 4324 COMSysApp - ok 22:40:15.0181 4324 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:40:15.0196 4324 crcdisk - ok 22:40:15.0243 4324 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:40:15.0274 4324 CryptSvc - ok 22:40:15.0306 4324 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:40:15.0321 4324 ctxusbm - ok 22:40:15.0384 4324 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:40:15.0415 4324 DcomLaunch - ok 22:40:15.0446 4324 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:40:15.0493 4324 defragsvc - ok 22:40:15.0540 4324 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:40:15.0602 4324 DfsC - ok 22:40:15.0633 4324 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:40:15.0664 4324 Dhcp - ok 22:40:15.0696 4324 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:40:15.0727 4324 discache - ok 22:40:15.0742 4324 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:40:15.0758 4324 Disk - ok 22:40:15.0805 4324 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:40:15.0867 4324 Dnscache - ok 22:40:15.0898 4324 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:40:15.0945 4324 dot3svc - ok 22:40:15.0992 4324 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:40:16.0008 4324 Dot4 - ok 22:40:16.0054 4324 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:40:16.0086 4324 Dot4Print - ok 22:40:16.0101 4324 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:40:16.0148 4324 dot4usb - ok 22:40:16.0195 4324 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:40:16.0242 4324 DPS - ok 22:40:16.0273 4324 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:40:16.0288 4324 drmkaud - ok 22:40:16.0351 4324 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:40:16.0382 4324 dtsoftbus01 - ok 22:40:16.0444 4324 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:40:16.0460 4324 DXGKrnl - ok 22:40:16.0491 4324 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:40:16.0538 4324 EapHost - ok 22:40:16.0694 4324 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:40:16.0756 4324 ebdrv - ok 22:40:16.0850 4324 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:40:16.0881 4324 eeCtrl - ok 22:40:16.0975 4324 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:40:16.0990 4324 EFS - ok 22:40:17.0084 4324 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:40:17.0131 4324 ehRecvr - ok 22:40:17.0162 4324 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:40:17.0193 4324 ehSched - ok 22:40:17.0271 4324 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:40:17.0302 4324 elxstor - ok 22:40:17.0380 4324 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:40:17.0396 4324 EraserUtilRebootDrv - ok 22:40:17.0427 4324 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:40:17.0458 4324 ErrDev - ok 22:40:17.0521 4324 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:40:17.0568 4324 EventSystem - ok 22:40:17.0599 4324 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:40:17.0661 4324 exfat - ok 22:40:17.0692 4324 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:40:17.0739 4324 fastfat - ok 22:40:17.0786 4324 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:40:17.0817 4324 Fax - ok 22:40:17.0848 4324 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:40:17.0880 4324 fdc - ok 22:40:17.0911 4324 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:40:17.0958 4324 fdPHost - ok 22:40:17.0973 4324 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:40:18.0020 4324 FDResPub - ok 22:40:18.0051 4324 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:40:18.0051 4324 FileInfo - ok 22:40:18.0082 4324 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:40:18.0129 4324 Filetrace - ok 22:40:18.0145 4324 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:40:18.0192 4324 flpydisk - ok 22:40:18.0207 4324 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:40:18.0223 4324 FltMgr - ok 22:40:18.0285 4324 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:40:18.0332 4324 FontCache - ok 22:40:18.0394 4324 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:40:18.0410 4324 FontCache3.0.0.0 - ok 22:40:18.0426 4324 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:40:18.0441 4324 FsDepends - ok 22:40:18.0472 4324 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:40:18.0488 4324 fssfltr - ok 22:40:18.0660 4324 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:40:18.0691 4324 fsssvc - ok 22:40:18.0816 4324 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:40:18.0831 4324 Fs_Rec - ok 22:40:18.0862 4324 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:40:18.0878 4324 fvevol - ok 22:40:18.0909 4324 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:40:18.0925 4324 gagp30kx - ok 22:40:18.0956 4324 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:40:18.0972 4324 GEARAspiWDM - ok 22:40:19.0034 4324 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:40:19.0096 4324 gpsvc - ok 22:40:19.0190 4324 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:40:19.0206 4324 gupdate - ok 22:40:19.0206 4324 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:40:19.0221 4324 gupdatem - ok 22:40:19.0252 4324 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:40:19.0268 4324 gusvc - ok 22:40:19.0299 4324 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:40:19.0330 4324 hcw85cir - ok 22:40:19.0377 4324 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:40:19.0408 4324 HdAudAddService - ok 22:40:19.0440 4324 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:40:19.0471 4324 HDAudBus - ok 22:40:19.0518 4324 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:40:19.0549 4324 HidBatt - ok 22:40:19.0580 4324 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:40:19.0627 4324 HidBth - ok 22:40:19.0642 4324 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:40:19.0689 4324 HidIr - ok 22:40:19.0720 4324 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:40:19.0767 4324 hidserv - ok 22:40:19.0798 4324 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:40:19.0830 4324 HidUsb - ok 22:40:19.0876 4324 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:40:19.0908 4324 hkmsvc - ok 22:40:19.0939 4324 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:40:19.0986 4324 HomeGroupListener - ok 22:40:20.0017 4324 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:40:20.0064 4324 HomeGroupProvider - ok 22:40:20.0079 4324 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:40:20.0095 4324 HpSAMD - ok 22:40:20.0157 4324 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:40:20.0204 4324 HTTP - ok 22:40:20.0220 4324 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:40:20.0235 4324 hwpolicy - ok 22:40:20.0266 4324 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:40:20.0298 4324 i8042prt - ok 22:40:20.0360 4324 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:40:20.0391 4324 IAANTMON - ok 22:40:20.0438 4324 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:40:20.0454 4324 iaStor - ok 22:40:20.0485 4324 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:40:20.0516 4324 iaStorV - ok 22:40:20.0625 4324 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:40:20.0656 4324 idsvc - ok 22:40:21.0062 4324 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:40:21.0265 4324 igfx - ok 22:40:21.0390 4324 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:40:21.0405 4324 iirsp - ok 22:40:21.0468 4324 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:40:21.0530 4324 IKEEXT - ok 22:40:21.0670 4324 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:40:21.0717 4324 IntcAzAudAddService - ok 22:40:21.0842 4324 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:40:21.0858 4324 intelide - ok 22:40:21.0889 4324 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:40:21.0920 4324 intelppm - ok 22:40:21.0967 4324 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:40:22.0014 4324 IPBusEnum - ok 22:40:22.0029 4324 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:40:22.0076 4324 IpFilterDriver - ok 22:40:22.0138 4324 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:40:22.0170 4324 iphlpsvc - ok 22:40:22.0201 4324 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:40:22.0232 4324 IPMIDRV - ok 22:40:22.0263 4324 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:40:22.0294 4324 IPNAT - ok 22:40:22.0388 4324 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:40:22.0404 4324 iPod Service - ok 22:40:22.0435 4324 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:40:22.0466 4324 IRENUM - ok 22:40:22.0497 4324 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:40:22.0513 4324 isapnp - ok 22:40:22.0544 4324 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:40:22.0560 4324 iScsiPrt - ok 22:40:22.0591 4324 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:40:22.0606 4324 kbdclass - ok 22:40:22.0622 4324 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:40:22.0669 4324 kbdhid - ok 22:40:22.0731 4324 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:22.0747 4324 KeyIso - ok 22:40:22.0747 4324 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:40:22.0762 4324 KSecDD - ok 22:40:22.0778 4324 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:40:22.0794 4324 KSecPkg - ok 22:40:22.0825 4324 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:40:22.0856 4324 KtmRm - ok 22:40:22.0887 4324 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:40:22.0934 4324 LanmanServer - ok 22:40:22.0965 4324 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:40:23.0012 4324 LanmanWorkstation - ok 22:40:23.0059 4324 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:40:23.0074 4324 lirsgt ( UnsignedFile.Multi.Generic ) - warning 22:40:23.0074 4324 lirsgt - detected UnsignedFile.Multi.Generic (1) 22:40:23.0293 4324 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:40:23.0340 4324 LiveUpdate - ok 22:40:23.0449 4324 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:40:23.0511 4324 lltdio - ok 22:40:23.0558 4324 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:40:23.0605 4324 lltdsvc - ok 22:40:23.0620 4324 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:40:23.0683 4324 lmhosts - ok 22:40:23.0698 4324 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:40:23.0714 4324 LSI_FC - ok 22:40:23.0745 4324 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:40:23.0761 4324 LSI_SAS - ok 22:40:23.0792 4324 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:40:23.0808 4324 LSI_SAS2 - ok 22:40:23.0808 4324 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:40:23.0823 4324 LSI_SCSI - ok 22:40:23.0854 4324 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:40:23.0901 4324 luafv - ok 22:40:23.0979 4324 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:40:24.0010 4324 lxeeCATSCustConnectService - ok 22:40:24.0010 4324 lxee_device - ok 22:40:24.0042 4324 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:40:24.0057 4324 Mcx2Svc - ok 22:40:24.0088 4324 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:40:24.0104 4324 megasas - ok 22:40:24.0120 4324 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:40:24.0135 4324 MegaSR - ok 22:40:24.0229 4324 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:40:24.0244 4324 Microsoft Office Groove Audit Service - ok 22:40:24.0276 4324 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:40:24.0307 4324 MMCSS - ok 22:40:24.0307 4324 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:40:24.0354 4324 Modem - ok 22:40:24.0385 4324 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:40:24.0416 4324 monitor - ok 22:40:24.0463 4324 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:40:24.0478 4324 mouclass - ok 22:40:24.0494 4324 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:40:24.0525 4324 mouhid - ok 22:40:24.0556 4324 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:40:24.0572 4324 mountmgr - ok 22:40:24.0603 4324 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:40:24.0619 4324 mpio - ok 22:40:24.0650 4324 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:40:24.0697 4324 mpsdrv - ok 22:40:24.0759 4324 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:40:24.0822 4324 MpsSvc - ok 22:40:24.0868 4324 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:40:24.0884 4324 MRxDAV - ok 22:40:24.0915 4324 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:40:24.0978 4324 mrxsmb - ok 22:40:25.0009 4324 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:40:25.0040 4324 mrxsmb10 - ok 22:40:25.0071 4324 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:40:25.0118 4324 mrxsmb20 - ok 22:40:25.0149 4324 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:40:25.0165 4324 msahci - ok 22:40:25.0196 4324 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:40:25.0212 4324 msdsm - ok 22:40:25.0243 4324 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:40:25.0258 4324 MSDTC - ok 22:40:25.0290 4324 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:40:25.0336 4324 Msfs - ok 22:40:25.0368 4324 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:40:25.0430 4324 mshidkmdf - ok 22:40:25.0461 4324 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:40:25.0477 4324 msisadrv - ok 22:40:25.0508 4324 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:40:25.0539 4324 MSiSCSI - ok 22:40:25.0539 4324 msiserver - ok 22:40:25.0555 4324 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:40:25.0602 4324 MSKSSRV - ok 22:40:25.0633 4324 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:40:25.0695 4324 MSPCLOCK - ok 22:40:25.0711 4324 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:40:25.0742 4324 MSPQM - ok 22:40:25.0758 4324 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:40:25.0773 4324 MsRPC - ok 22:40:25.0804 4324 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:40:25.0836 4324 mssmbios - ok 22:40:25.0929 4324 MSSQL$MSSMLBIZ - ok 22:40:25.0960 4324 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:40:25.0976 4324 MSSQLServerADHelper - ok 22:40:25.0992 4324 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:40:26.0023 4324 MSTEE - ok 22:40:26.0038 4324 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:40:26.0070 4324 MTConfig - ok 22:40:26.0085 4324 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:40:26.0101 4324 Mup - ok 22:40:26.0148 4324 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:40:26.0194 4324 napagent - ok 22:40:26.0226 4324 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:40:26.0272 4324 NativeWifiP - ok 22:40:26.0382 4324 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:40:26.0397 4324 NAVENG - ok 22:40:26.0475 4324 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:40:26.0506 4324 NAVEX15 - ok 22:40:26.0662 4324 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:40:26.0709 4324 NDIS - ok 22:40:26.0740 4324 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:40:26.0772 4324 NdisCap - ok 22:40:26.0787 4324 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:40:26.0834 4324 NdisTapi - ok 22:40:26.0865 4324 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:40:26.0928 4324 Ndisuio - ok 22:40:26.0974 4324 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:40:27.0037 4324 NdisWan - ok 22:40:27.0068 4324 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:40:27.0099 4324 NDProxy - ok 22:40:27.0115 4324 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:40:27.0162 4324 NetBIOS - ok 22:40:27.0193 4324 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:40:27.0240 4324 NetBT - ok 22:40:27.0271 4324 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:27.0286 4324 Netlogon - ok 22:40:27.0318 4324 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:40:27.0349 4324 Netman - ok 22:40:27.0396 4324 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:40:27.0442 4324 netprofm - ok 22:40:27.0505 4324 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:40:27.0536 4324 NetTcpPortSharing - ok 22:40:27.0552 4324 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:40:27.0567 4324 nfrd960 - ok 22:40:27.0614 4324 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:40:27.0676 4324 NlaSvc - ok 22:40:27.0692 4324 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:40:27.0739 4324 Npfs - ok 22:40:27.0786 4324 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:40:27.0817 4324 nsi - ok 22:40:27.0832 4324 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:40:27.0879 4324 nsiproxy - ok 22:40:27.0973 4324 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:40:28.0004 4324 Ntfs - ok 22:40:28.0020 4324 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:40:28.0051 4324 Null - ok 22:40:28.0082 4324 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:40:28.0098 4324 nvraid - ok 22:40:28.0129 4324 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:40:28.0144 4324 nvstor - ok 22:40:28.0160 4324 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:40:28.0176 4324 nv_agp - ok 22:40:28.0238 4324 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:40:28.0254 4324 OberonGameConsoleService - ok 22:40:28.0347 4324 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:40:28.0378 4324 odserv - ok 22:40:28.0394 4324 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:40:28.0410 4324 ohci1394 - ok 22:40:28.0441 4324 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:40:28.0456 4324 ose - ok 22:40:28.0488 4324 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:40:28.0534 4324 p2pimsvc - ok 22:40:28.0566 4324 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:40:28.0581 4324 p2psvc - ok 22:40:28.0612 4324 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:40:28.0628 4324 Parport - ok 22:40:28.0659 4324 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:40:28.0675 4324 partmgr - ok 22:40:28.0706 4324 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:40:28.0737 4324 Parvdm - ok 22:40:28.0784 4324 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:40:28.0815 4324 PcaSvc - ok 22:40:28.0862 4324 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:40:28.0893 4324 pci - ok 22:40:28.0924 4324 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:40:28.0924 4324 pciide - ok 22:40:28.0956 4324 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:40:28.0971 4324 pcmcia - ok 22:40:28.0987 4324 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:40:29.0002 4324 pcw - ok 22:40:29.0034 4324 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:40:29.0080 4324 PEAUTH - ok 22:40:29.0190 4324 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:40:29.0236 4324 pla - ok 22:40:29.0361 4324 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:40:29.0424 4324 PlugPlay - ok 22:40:29.0455 4324 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:40:29.0502 4324 PNRPAutoReg - ok 22:40:29.0533 4324 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:40:29.0564 4324 PNRPsvc - ok 22:40:29.0595 4324 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:40:29.0642 4324 PolicyAgent - ok 22:40:29.0720 4324 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:40:29.0782 4324 Power - ok 22:40:29.0829 4324 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:40:29.0876 4324 PptpMiniport - ok 22:40:29.0907 4324 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:40:29.0923 4324 Processor - ok 22:40:29.0954 4324 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:40:30.0001 4324 ProfSvc - ok 22:40:30.0032 4324 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:30.0048 4324 ProtectedStorage - ok 22:40:30.0094 4324 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:40:30.0110 4324 Psched - ok 22:40:30.0188 4324 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:40:30.0219 4324 ql2300 - ok 22:40:30.0313 4324 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:40:30.0328 4324 ql40xx - ok 22:40:30.0360 4324 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:40:30.0406 4324 QWAVE - ok 22:40:30.0438 4324 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:40:30.0453 4324 QWAVEdrv - ok 22:40:30.0469 4324 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:40:30.0500 4324 RasAcd - ok 22:40:30.0516 4324 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:40:30.0562 4324 RasAgileVpn - ok 22:40:30.0578 4324 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:40:30.0609 4324 RasAuto - ok 22:40:30.0625 4324 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:40:30.0687 4324 Rasl2tp - ok 22:40:30.0734 4324 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:40:30.0781 4324 RasMan - ok 22:40:30.0796 4324 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:40:30.0828 4324 RasPppoe - ok 22:40:30.0874 4324 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:40:30.0952 4324 RasSstp - ok 22:40:30.0984 4324 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:40:31.0015 4324 rdbss - ok 22:40:31.0030 4324 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:40:31.0062 4324 rdpbus - ok 22:40:31.0108 4324 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:40:31.0140 4324 RDPCDD - ok 22:40:31.0171 4324 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:40:31.0202 4324 RDPENCDD - ok 22:40:31.0249 4324 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:40:31.0264 4324 RDPREFMP - ok 22:40:31.0311 4324 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:40:31.0374 4324 RDPWD - ok 22:40:31.0405 4324 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:40:31.0420 4324 rdyboost - ok 22:40:31.0436 4324 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:40:31.0483 4324 RemoteAccess - ok 22:40:31.0530 4324 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:40:31.0545 4324 RemoteRegistry - ok 22:40:31.0561 4324 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:40:31.0608 4324 RpcEptMapper - ok 22:40:31.0639 4324 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:40:31.0670 4324 RpcLocator - ok 22:40:31.0718 4324 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:40:31.0749 4324 RpcSs - ok 22:40:31.0796 4324 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:40:31.0843 4324 rspndr - ok 22:40:31.0874 4324 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:40:31.0921 4324 RTL8167 - ok 22:40:31.0952 4324 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:40:32.0014 4324 SABI - ok 22:40:32.0045 4324 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:32.0061 4324 SamSs - ok 22:40:32.0092 4324 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:40:32.0108 4324 sbp2port - ok 22:40:32.0139 4324 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:40:32.0170 4324 SCardSvr - ok 22:40:32.0201 4324 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:40:32.0248 4324 scfilter - ok 22:40:32.0326 4324 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:40:32.0357 4324 Schedule - ok 22:40:32.0389 4324 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:40:32.0420 4324 SCPolicySvc - ok 22:40:32.0451 4324 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:40:32.0482 4324 SDRSVC - ok 22:40:32.0513 4324 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:40:32.0560 4324 secdrv - ok 22:40:32.0591 4324 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:40:32.0623 4324 seclogon - ok 22:40:32.0638 4324 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:40:32.0669 4324 SENS - ok 22:40:32.0716 4324 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:40:32.0732 4324 SensrSvc - ok 22:40:32.0747 4324 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:40:32.0779 4324 Serenum - ok 22:40:32.0794 4324 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:40:32.0810 4324 Serial - ok 22:40:32.0857 4324 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:40:32.0888 4324 sermouse - ok 22:40:32.0935 4324 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:40:33.0010 4324 SessionEnv - ok 22:40:33.0041 4324 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:40:33.0088 4324 sffdisk - ok 22:40:33.0103 4324 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:40:33.0119 4324 sffp_mmc - ok 22:40:33.0166 4324 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:40:33.0181 4324 sffp_sd - ok 22:40:33.0197 4324 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:40:33.0228 4324 sfloppy - ok 22:40:33.0259 4324 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:40:33.0306 4324 SharedAccess - ok 22:40:33.0353 4324 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:40:33.0384 4324 ShellHWDetection - ok 22:40:33.0415 4324 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:40:33.0431 4324 sisagp - ok 22:40:33.0462 4324 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:40:33.0478 4324 SiSRaid2 - ok 22:40:33.0493 4324 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:40:33.0493 4324 SiSRaid4 - ok 22:40:33.0524 4324 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:40:33.0571 4324 Smb - ok 22:40:33.0758 4324 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:40:33.0821 4324 SmcService - ok 22:40:33.0852 4324 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:40:33.0868 4324 SNAC - ok 22:40:33.0961 4324 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:40:33.0992 4324 SNMPTRAP - ok 22:40:34.0189 4324 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:40:34.0205 4324 SPBBCDrv - ok 22:40:34.0270 4324 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:40:34.0301 4324 spldr - ok 22:40:34.0384 4324 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:40:34.0418 4324 Spooler - ok 22:40:34.0576 4324 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:40:34.0641 4324 sppsvc - ok 22:40:34.0767 4324 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:40:34.0824 4324 sppuinotify - ok 22:40:34.0904 4324 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:40:34.0934 4324 SpyHunter 4 Service - ok 22:40:35.0077 4324 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:40:35.0093 4324 SQLBrowser - ok 22:40:35.0124 4324 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:40:35.0137 4324 SQLWriter - ok 22:40:35.0190 4324 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:40:35.0193 4324 SRTSP - ok 22:40:35.0224 4324 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:40:35.0263 4324 SRTSPL - ok 22:40:35.0278 4324 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:40:35.0293 4324 SRTSPX - ok 22:40:35.0312 4324 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:40:35.0343 4324 srv - ok 22:40:35.0394 4324 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:40:35.0410 4324 srv2 - ok 22:40:35.0448 4324 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:40:35.0478 4324 srvnet - ok 22:40:35.0514 4324 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:40:35.0546 4324 SSDPSRV - ok 22:40:35.0571 4324 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:40:35.0592 4324 SstpSvc - ok 22:40:35.0623 4324 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:40:35.0639 4324 stexstor - ok 22:40:35.0685 4324 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:40:35.0716 4324 StiSvc - ok 22:40:35.0747 4324 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:40:35.0763 4324 swenum - ok 22:40:35.0778 4324 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:40:35.0810 4324 swprv - ok 22:40:36.0321 4324 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:40:36.0373 4324 Symantec AntiVirus - ok 22:40:36.0788 4324 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:40:36.0811 4324 SymEvent - ok 22:40:36.0858 4324 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:40:36.0876 4324 SYMREDRV - ok 22:40:36.0951 4324 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:40:36.0966 4324 SYMTDI - ok 22:40:37.0021 4324 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:40:37.0036 4324 SynTP - ok 22:40:37.0130 4324 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:40:37.0177 4324 SysMain - ok 22:40:37.0512 4324 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:40:37.0527 4324 TabletInputService - ok 22:40:37.0574 4324 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:40:37.0605 4324 TapiSrv - ok 22:40:37.0636 4324 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:40:37.0683 4324 TBS - ok 22:40:37.0808 4324 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:40:37.0839 4324 Tcpip - ok 22:40:37.0855 4324 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:40:37.0886 4324 TCPIP6 - ok 22:40:37.0933 4324 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:40:37.0980 4324 tcpipreg - ok 22:40:38.0026 4324 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:40:38.0073 4324 TDPIPE - ok 22:40:38.0120 4324 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:40:38.0136 4324 TDTCP - ok 22:40:38.0214 4324 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:40:38.0229 4324 tdx - ok 22:40:38.0510 4324 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:40:38.0557 4324 TeamViewer6 - ok 22:40:38.0697 4324 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:40:38.0744 4324 TermDD - ok 22:40:38.0791 4324 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:40:38.0822 4324 TermService - ok 22:40:38.0853 4324 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:40:38.0900 4324 Themes - ok 22:40:38.0931 4324 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:40:38.0962 4324 THREADORDER - ok 22:40:38.0978 4324 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:40:39.0025 4324 TrkWks - ok 22:40:39.0103 4324 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:40:39.0134 4324 TrustedInstaller - ok 22:40:39.0165 4324 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:40:39.0196 4324 tssecsrv - ok 22:40:39.0243 4324 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:40:39.0259 4324 TsUsbFlt - ok 22:40:39.0290 4324 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:40:39.0337 4324 tunnel - ok 22:40:39.0368 4324 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:40:39.0384 4324 uagp35 - ok 22:40:39.0430 4324 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:40:39.0462 4324 udfs - ok 22:40:39.0477 4324 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:40:39.0508 4324 UI0Detect - ok 22:40:39.0555 4324 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:40:39.0571 4324 uliagpkx - ok 22:40:39.0602 4324 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:40:39.0618 4324 umbus - ok 22:40:39.0649 4324 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:40:39.0680 4324 UmPass - ok 22:40:39.0711 4324 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:40:39.0742 4324 upnphost - ok 22:40:39.0774 4324 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:40:39.0805 4324 USBAAPL - ok 22:40:39.0852 4324 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:40:39.0914 4324 usbccgp - ok 22:40:39.0945 4324 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:40:39.0992 4324 usbcir - ok 22:40:40.0008 4324 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:40:40.0023 4324 usbehci - ok 22:40:40.0054 4324 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:40:40.0086 4324 usbhub - ok 22:40:40.0117 4324 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:40:40.0148 4324 usbohci - ok 22:40:40.0179 4324 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:40:40.0195 4324 usbprint - ok 22:40:40.0226 4324 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:40:40.0242 4324 usbscan - ok 22:40:40.0257 4324 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:40:40.0320 4324 USBSTOR - ok 22:40:40.0351 4324 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:40:40.0382 4324 usbuhci - ok 22:40:40.0429 4324 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:40:40.0476 4324 usbvideo - ok 22:40:40.0522 4324 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:40:40.0569 4324 UxSms - ok 22:40:40.0600 4324 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:40.0616 4324 VaultSvc - ok 22:40:40.0647 4324 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:40:40.0663 4324 vdrvroot - ok 22:40:40.0725 4324 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:40:40.0756 4324 vds - ok 22:40:40.0788 4324 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:40:40.0803 4324 vga - ok 22:40:40.0819 4324 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:40:40.0866 4324 VgaSave - ok 22:40:40.0912 4324 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:40:40.0928 4324 vhdmp - ok 22:40:40.0975 4324 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:40:40.0975 4324 viaagp - ok 22:40:40.0990 4324 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:40:41.0006 4324 ViaC7 - ok 22:40:41.0037 4324 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:40:41.0053 4324 viaide - ok 22:40:41.0084 4324 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:40:41.0100 4324 volmgr - ok 22:40:41.0131 4324 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:40:41.0146 4324 volmgrx - ok 22:40:41.0193 4324 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:40:41.0209 4324 volsnap - ok 22:40:41.0224 4324 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:40:41.0240 4324 vsmraid - ok 22:40:41.0318 4324 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:40:41.0380 4324 VSS - ok 22:40:41.0412 4324 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:40:41.0443 4324 vwifibus - ok 22:40:41.0474 4324 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:40:41.0490 4324 vwififlt - ok 22:40:41.0505 4324 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:40:41.0552 4324 vwifimp - ok 22:40:41.0599 4324 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:40:41.0630 4324 W32Time - ok 22:40:41.0661 4324 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:40:41.0708 4324 WacomPen - ok 22:40:41.0739 4324 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:40:41.0770 4324 WANARP - ok 22:40:41.0770 4324 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:40:41.0802 4324 Wanarpv6 - ok 22:40:41.0880 4324 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:40:41.0911 4324 WatAdminSvc - ok 22:40:41.0989 4324 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:40:42.0036 4324 wbengine - ok 22:40:42.0082 4324 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:40:42.0129 4324 WbioSrvc - ok 22:40:42.0176 4324 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:40:42.0223 4324 wcncsvc - ok 22:40:42.0238 4324 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:40:42.0270 4324 WcsPlugInService - ok 22:40:42.0332 4324 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:40:42.0348 4324 Wd - ok 22:40:42.0379 4324 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:40:42.0410 4324 Wdf01000 - ok 22:40:42.0426 4324 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:40:42.0472 4324 WdiServiceHost - ok 22:40:42.0472 4324 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:40:42.0488 4324 WdiSystemHost - ok 22:40:42.0535 4324 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:40:42.0582 4324 WebClient - ok 22:40:42.0597 4324 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:40:42.0644 4324 Wecsvc - ok 22:40:42.0675 4324 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:40:42.0722 4324 wercplsupport - ok 22:40:42.0753 4324 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:40:42.0784 4324 WerSvc - ok 22:40:42.0800 4324 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:40:42.0862 4324 WfpLwf - ok 22:40:42.0878 4324 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:40:42.0894 4324 WIMMount - ok 22:40:42.0972 4324 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:40:43.0018 4324 WinDefend - ok 22:40:43.0034 4324 WinHttpAutoProxySvc - ok 22:40:43.0096 4324 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:40:43.0143 4324 Winmgmt - ok 22:40:43.0221 4324 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:40:43.0268 4324 WinRM - ok 22:40:43.0330 4324 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:40:43.0377 4324 WinUsb - ok 22:40:43.0471 4324 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:40:43.0518 4324 Wlansvc - ok 22:40:43.0658 4324 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:40:43.0720 4324 wlidsvc - ok 22:40:43.0830 4324 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:40:43.0876 4324 WmiAcpi - ok 22:40:43.0954 4324 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:40:43.0986 4324 wmiApSrv - ok 22:40:44.0110 4324 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:40:44.0142 4324 WMPNetworkSvc - ok 22:40:44.0173 4324 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:40:44.0204 4324 WPCSvc - ok 22:40:44.0235 4324 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:40:44.0266 4324 WPDBusEnum - ok 22:40:44.0329 4324 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:40:44.0360 4324 ws2ifsl - ok 22:40:44.0391 4324 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:40:44.0407 4324 wscsvc - ok 22:40:44.0407 4324 WSearch - ok 22:40:44.0516 4324 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:40:44.0563 4324 wuauserv - ok 22:40:44.0688 4324 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:40:44.0750 4324 WudfPf - ok 22:40:44.0766 4324 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:40:44.0797 4324 WUDFRd - ok 22:40:44.0828 4324 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:40:44.0875 4324 wudfsvc - ok 22:40:44.0922 4324 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:40:44.0953 4324 WwanSvc - ok 22:40:44.0984 4324 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:40:45.0327 4324 \Device\Harddisk0\DR0 - ok 22:40:45.0327 4324 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:40:45.0327 4324 \Device\Harddisk0\DR0\Partition0 - ok 22:40:45.0358 4324 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:40:45.0358 4324 \Device\Harddisk0\DR0\Partition1 - ok 22:40:45.0390 4324 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:40:45.0390 4324 \Device\Harddisk0\DR0\Partition2 - ok 22:40:45.0390 4324 ============================================================ 22:40:45.0390 4324 Scan finished 22:40:45.0390 4324 ============================================================ 22:40:45.0405 5164 Detected object count: 2 22:40:45.0405 5164 Actual detected object count: 2 22:41:23.0208 5164 atksgt ( UnsignedFile.Multi.Generic ) - skipped by user 22:41:23.0208 5164 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Skip 22:41:23.0224 5164 lirsgt ( UnsignedFile.Multi.Generic ) - skipped by user 22:41:23.0224 5164 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip 22:41:50.0368 4036 ============================================================ 22:41:50.0368 4036 Scan started 22:41:50.0368 4036 Mode: Manual; SigCheck; TDLFS; 22:41:50.0368 4036 ============================================================ 22:41:50.0618 4036 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:41:50.0664 4036 1394ohci - ok 22:41:50.0711 4036 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:41:50.0727 4036 ACPI - ok 22:41:50.0742 4036 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:41:50.0758 4036 AcpiPmi - ok 22:41:50.0789 4036 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:41:50.0820 4036 adp94xx - ok 22:41:50.0836 4036 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:41:50.0852 4036 adpahci - ok 22:41:50.0883 4036 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:41:50.0883 4036 adpu320 - ok 22:41:50.0914 4036 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:41:50.0930 4036 AeLookupSvc - ok 22:41:50.0976 4036 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:41:50.0992 4036 AFD - ok 22:41:51.0023 4036 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:41:51.0023 4036 agp440 - ok 22:41:51.0054 4036 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:41:51.0070 4036 aic78xx - ok 22:41:51.0086 4036 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:41:51.0101 4036 ALG - ok 22:41:51.0132 4036 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:41:51.0148 4036 aliide - ok 22:41:51.0164 4036 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:41:51.0179 4036 amdagp - ok 22:41:51.0210 4036 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:41:51.0210 4036 amdide - ok 22:41:51.0226 4036 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:41:51.0242 4036 AmdK8 - ok 22:41:51.0288 4036 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:41:51.0304 4036 AmdPPM - ok 22:41:51.0335 4036 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:41:51.0335 4036 amdsata - ok 22:41:51.0382 4036 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:41:51.0398 4036 amdsbs - ok 22:41:51.0413 4036 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:41:51.0429 4036 amdxata - ok 22:41:51.0460 4036 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:41:51.0491 4036 AppID - ok 22:41:51.0507 4036 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:41:51.0538 4036 AppIDSvc - ok 22:41:51.0569 4036 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:41:51.0600 4036 Appinfo - ok 22:41:51.0678 4036 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:41:51.0710 4036 Apple Mobile Device - ok 22:41:51.0741 4036 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:41:51.0772 4036 arc - ok 22:41:51.0788 4036 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:41:51.0803 4036 arcsas - ok 22:41:51.0819 4036 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:41:51.0850 4036 AsyncMac - ok 22:41:51.0881 4036 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:41:51.0897 4036 atapi - ok 22:41:51.0959 4036 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:41:51.0990 4036 athr - ok 22:41:52.0037 4036 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:41:52.0037 4036 atksgt ( UnsignedFile.Multi.Generic ) - warning 22:41:52.0037 4036 atksgt - detected UnsignedFile.Multi.Generic (1) 22:41:52.0334 4036 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:41:52.0380 4036 AudioEndpointBuilder - ok 22:41:52.0380 4036 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:41:52.0412 4036 Audiosrv - ok 22:41:52.0443 4036 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:41:52.0458 4036 AxInstSV - ok 22:41:52.0505 4036 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:41:52.0521 4036 b06bdrv - ok 22:41:52.0536 4036 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:41:52.0552 4036 b57nd60x - ok 22:41:52.0599 4036 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:41:52.0614 4036 BcmSqlStartupSvc - ok 22:41:52.0646 4036 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:41:52.0661 4036 BDESVC - ok 22:41:52.0724 4036 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:41:52.0755 4036 Beep - ok 22:41:52.0802 4036 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:41:52.0833 4036 BFE - ok 22:41:52.0864 4036 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:41:52.0895 4036 BITS - ok 22:41:52.0911 4036 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:41:52.0926 4036 blbdrive - ok 22:41:52.0989 4036 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:41:53.0020 4036 Bonjour Service - ok 22:41:53.0051 4036 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:41:53.0067 4036 bowser - ok 22:41:53.0082 4036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:41:53.0098 4036 BrFiltLo - ok 22:41:53.0129 4036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:41:53.0129 4036 BrFiltUp - ok 22:41:53.0145 4036 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:41:53.0176 4036 BridgeMP - ok 22:41:53.0223 4036 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:41:53.0238 4036 Browser - ok 22:41:53.0285 4036 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:41:53.0301 4036 Brserid - ok 22:41:53.0301 4036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:41:53.0316 4036 BrSerWdm - ok 22:41:53.0348 4036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:41:53.0363 4036 BrUsbMdm - ok 22:41:53.0394 4036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:41:53.0394 4036 BrUsbSer - ok 22:41:53.0410 4036 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:41:53.0426 4036 BTHMODEM - ok 22:41:53.0457 4036 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:41:53.0488 4036 bthserv - ok 22:41:53.0535 4036 catchme - ok 22:41:53.0613 4036 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:41:53.0628 4036 ccEvtMgr - ok 22:41:53.0644 4036 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:41:53.0660 4036 ccSetMgr - ok 22:41:53.0675 4036 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:41:53.0706 4036 cdfs - ok 22:41:53.0738 4036 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:41:53.0753 4036 cdrom - ok 22:41:53.0784 4036 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:41:53.0816 4036 CertPropSvc - ok 22:41:53.0831 4036 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:41:53.0847 4036 circlass - ok 22:41:53.0878 4036 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:41:53.0894 4036 CLFS - ok 22:41:53.0956 4036 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:41:53.0972 4036 clr_optimization_v2.0.50727_32 - ok 22:41:54.0034 4036 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:41:54.0065 4036 clr_optimization_v4.0.30319_32 - ok 22:41:54.0096 4036 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:41:54.0096 4036 CmBatt - ok 22:41:54.0128 4036 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:41:54.0143 4036 cmdide - ok 22:41:54.0190 4036 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:41:54.0206 4036 CNG - ok 22:41:54.0221 4036 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:41:54.0237 4036 Compbatt - ok 22:41:54.0268 4036 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:41:54.0284 4036 CompositeBus - ok 22:41:54.0284 4036 COMSysApp - ok 22:41:54.0299 4036 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:41:54.0315 4036 crcdisk - ok 22:41:54.0346 4036 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:41:54.0362 4036 CryptSvc - ok 22:41:54.0393 4036 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:41:54.0408 4036 ctxusbm - ok 22:41:54.0455 4036 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:41:54.0486 4036 DcomLaunch - ok 22:41:54.0518 4036 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:41:54.0549 4036 defragsvc - ok 22:41:54.0580 4036 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:41:54.0611 4036 DfsC - ok 22:41:54.0627 4036 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:41:54.0658 4036 Dhcp - ok 22:41:54.0689 4036 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:41:54.0720 4036 discache - ok 22:41:54.0720 4036 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:41:54.0736 4036 Disk - ok 22:41:54.0783 4036 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:41:54.0798 4036 Dnscache - ok 22:41:54.0845 4036 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:41:54.0861 4036 dot3svc - ok 22:41:54.0892 4036 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:41:54.0908 4036 Dot4 - ok 22:41:54.0939 4036 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:41:54.0954 4036 Dot4Print - ok 22:41:54.0986 4036 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:41:55.0001 4036 dot4usb - ok 22:41:55.0032 4036 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:41:55.0064 4036 DPS - ok 22:41:55.0079 4036 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:41:55.0095 4036 drmkaud - ok 22:41:55.0126 4036 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:41:55.0142 4036 dtsoftbus01 - ok 22:41:55.0204 4036 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:41:55.0235 4036 DXGKrnl - ok 22:41:55.0266 4036 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:41:55.0298 4036 EapHost - ok 22:41:55.0454 4036 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:41:55.0500 4036 ebdrv - ok 22:41:55.0594 4036 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:41:55.0610 4036 eeCtrl - ok 22:41:55.0719 4036 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:41:55.0734 4036 EFS - ok 22:41:55.0937 4036 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:41:55.0968 4036 ehRecvr - ok 22:41:55.0984 4036 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:41:56.0000 4036 ehSched - ok 22:41:56.0062 4036 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:41:56.0078 4036 elxstor - ok 22:41:56.0156 4036 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:41:56.0171 4036 EraserUtilRebootDrv - ok 22:41:56.0202 4036 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:41:56.0234 4036 ErrDev - ok 22:41:56.0280 4036 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:41:56.0312 4036 EventSystem - ok 22:41:56.0343 4036 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:41:56.0374 4036 exfat - ok 22:41:56.0390 4036 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:41:56.0421 4036 fastfat - ok 22:41:56.0468 4036 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:41:56.0483 4036 Fax - ok 22:41:56.0499 4036 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:41:56.0514 4036 fdc - ok 22:41:56.0530 4036 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:41:56.0561 4036 fdPHost - ok 22:41:56.0577 4036 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:41:56.0608 4036 FDResPub - ok 22:41:56.0624 4036 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:41:56.0639 4036 FileInfo - ok 22:41:56.0655 4036 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:41:56.0686 4036 Filetrace - ok 22:41:56.0702 4036 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:41:56.0717 4036 flpydisk - ok 22:41:56.0733 4036 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:41:56.0748 4036 FltMgr - ok 22:41:56.0811 4036 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:41:56.0842 4036 FontCache - ok 22:41:56.0904 4036 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:41:56.0920 4036 FontCache3.0.0.0 - ok 22:41:56.0936 4036 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:41:56.0951 4036 FsDepends - ok 22:41:56.0982 4036 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:41:56.0982 4036 fssfltr - ok 22:41:57.0154 4036 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:41:57.0185 4036 fsssvc - ok 22:41:57.0310 4036 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:41:57.0341 4036 Fs_Rec - ok 22:41:57.0372 4036 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:41:57.0404 4036 fvevol - ok 22:41:57.0419 4036 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:41:57.0435 4036 gagp30kx - ok 22:41:57.0482 4036 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:41:57.0482 4036 GEARAspiWDM - ok 22:41:57.0544 4036 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:41:57.0575 4036 gpsvc - ok 22:41:57.0653 4036 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:41:57.0669 4036 gupdate - ok 22:41:57.0669 4036 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:41:57.0684 4036 gupdatem - ok 22:41:57.0716 4036 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:41:57.0731 4036 gusvc - ok 22:41:57.0762 4036 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:41:57.0778 4036 hcw85cir - ok 22:41:57.0809 4036 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:41:57.0840 4036 HdAudAddService - ok 22:41:57.0856 4036 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:41:57.0872 4036 HDAudBus - ok 22:41:57.0872 4036 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:41:57.0887 4036 HidBatt - ok 22:41:57.0903 4036 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:41:57.0918 4036 HidBth - ok 22:41:57.0950 4036 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:41:57.0965 4036 HidIr - ok 22:41:57.0981 4036 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:41:58.0012 4036 hidserv - ok 22:41:58.0043 4036 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:41:58.0059 4036 HidUsb - ok 22:41:58.0090 4036 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:41:58.0137 4036 hkmsvc - ok 22:41:58.0152 4036 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:41:58.0168 4036 HomeGroupListener - ok 22:41:58.0215 4036 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:41:58.0230 4036 HomeGroupProvider - ok 22:41:58.0262 4036 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:41:58.0277 4036 HpSAMD - ok 22:41:58.0308 4036 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:41:58.0355 4036 HTTP - ok 22:41:58.0371 4036 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:41:58.0371 4036 hwpolicy - ok 22:41:58.0418 4036 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:41:58.0433 4036 i8042prt - ok 22:41:58.0496 4036 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:41:58.0511 4036 IAANTMON - ok 22:41:58.0558 4036 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:41:58.0574 4036 iaStor - ok 22:41:58.0620 4036 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:41:58.0636 4036 iaStorV - ok 22:41:58.0730 4036 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:41:58.0761 4036 idsvc - ok 22:41:59.0166 4036 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:41:59.0291 4036 igfx - ok 22:41:59.0400 4036 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:41:59.0416 4036 iirsp - ok 22:41:59.0478 4036 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:41:59.0525 4036 IKEEXT - ok 22:41:59.0666 4036 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:41:59.0728 4036 IntcAzAudAddService - ok 22:41:59.0837 4036 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:41:59.0853 4036 intelide - ok 22:41:59.0884 4036 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:41:59.0915 4036 intelppm - ok 22:41:59.0946 4036 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:41:59.0962 4036 IPBusEnum - ok 22:41:59.0993 4036 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:42:00.0024 4036 IpFilterDriver - ok 22:42:00.0056 4036 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:42:00.0087 4036 iphlpsvc - ok 22:42:00.0134 4036 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:42:00.0149 4036 IPMIDRV - ok 22:42:00.0180 4036 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:42:00.0227 4036 IPNAT - ok 22:42:00.0305 4036 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:42:00.0336 4036 iPod Service - ok 22:42:00.0368 4036 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:42:00.0383 4036 IRENUM - ok 22:42:00.0399 4036 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:42:00.0414 4036 isapnp - ok 22:42:00.0446 4036 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:42:00.0461 4036 iScsiPrt - ok 22:42:00.0492 4036 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:42:00.0508 4036 kbdclass - ok 22:42:00.0524 4036 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:42:00.0539 4036 kbdhid - ok 22:42:00.0570 4036 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:00.0586 4036 KeyIso - ok 22:42:00.0602 4036 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:42:00.0617 4036 KSecDD - ok 22:42:00.0633 4036 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:42:00.0633 4036 KSecPkg - ok 22:42:00.0664 4036 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:42:00.0695 4036 KtmRm - ok 22:42:00.0742 4036 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:42:00.0773 4036 LanmanServer - ok 22:42:00.0820 4036 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:42:00.0851 4036 LanmanWorkstation - ok 22:42:00.0882 4036 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:42:00.0898 4036 lirsgt ( UnsignedFile.Multi.Generic ) - warning 22:42:00.0898 4036 lirsgt - detected UnsignedFile.Multi.Generic (1) 22:42:01.0101 4036 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:42:01.0163 4036 LiveUpdate - ok 22:42:01.0272 4036 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:42:01.0304 4036 lltdio - ok 22:42:01.0350 4036 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:42:01.0382 4036 lltdsvc - ok 22:42:01.0382 4036 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:42:01.0413 4036 lmhosts - ok 22:42:01.0444 4036 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:42:01.0460 4036 LSI_FC - ok 22:42:01.0460 4036 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:42:01.0475 4036 LSI_SAS - ok 22:42:01.0506 4036 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:42:01.0522 4036 LSI_SAS2 - ok 22:42:01.0522 4036 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:42:01.0538 4036 LSI_SCSI - ok 22:42:01.0569 4036 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:42:01.0600 4036 luafv - ok 22:42:01.0678 4036 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:42:01.0694 4036 lxeeCATSCustConnectService - ok 22:42:01.0709 4036 lxee_device - ok 22:42:01.0740 4036 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:42:01.0756 4036 Mcx2Svc - ok 22:42:01.0772 4036 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:42:01.0787 4036 megasas - ok 22:42:01.0818 4036 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:42:01.0834 4036 MegaSR - ok 22:42:01.0912 4036 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:42:01.0943 4036 Microsoft Office Groove Audit Service - ok 22:42:01.0959 4036 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:42:02.0006 4036 MMCSS - ok 22:42:02.0021 4036 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:42:02.0052 4036 Modem - ok 22:42:02.0068 4036 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:42:02.0084 4036 monitor - ok 22:42:02.0130 4036 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:42:02.0130 4036 mouclass - ok 22:42:02.0146 4036 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:42:02.0162 4036 mouhid - ok 22:42:02.0193 4036 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:42:02.0208 4036 mountmgr - ok 22:42:02.0255 4036 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:42:02.0255 4036 mpio - ok 22:42:02.0286 4036 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:42:02.0318 4036 mpsdrv - ok 22:42:02.0364 4036 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:42:02.0396 4036 MpsSvc - ok 22:42:02.0442 4036 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:42:02.0458 4036 MRxDAV - ok 22:42:02.0505 4036 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:42:02.0520 4036 mrxsmb - ok 22:42:02.0567 4036 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:42:02.0583 4036 mrxsmb10 - ok 22:42:02.0598 4036 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:42:02.0614 4036 mrxsmb20 - ok 22:42:02.0645 4036 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:42:02.0661 4036 msahci - ok 22:42:02.0692 4036 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:42:02.0708 4036 msdsm - ok 22:42:02.0723 4036 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:42:02.0739 4036 MSDTC - ok 22:42:02.0786 4036 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:42:02.0801 4036 Msfs - ok 22:42:02.0817 4036 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:42:02.0848 4036 mshidkmdf - ok 22:42:02.0879 4036 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:42:02.0895 4036 msisadrv - ok 22:42:02.0926 4036 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:42:02.0942 4036 MSiSCSI - ok 22:42:02.0957 4036 msiserver - ok 22:42:02.0973 4036 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:42:03.0004 4036 MSKSSRV - ok 22:42:03.0020 4036 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:42:03.0051 4036 MSPCLOCK - ok 22:42:03.0051 4036 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:42:03.0082 4036 MSPQM - ok 22:42:03.0113 4036 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:42:03.0129 4036 MsRPC - ok 22:42:03.0176 4036 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:42:03.0191 4036 mssmbios - ok 22:42:03.0285 4036 MSSQL$MSSMLBIZ - ok 22:42:03.0316 4036 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:42:03.0332 4036 MSSQLServerADHelper - ok 22:42:03.0363 4036 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:42:03.0378 4036 MSTEE - ok 22:42:03.0394 4036 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:42:03.0410 4036 MTConfig - ok 22:42:03.0425 4036 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:42:03.0441 4036 Mup - ok 22:42:03.0488 4036 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:42:03.0519 4036 napagent - ok 22:42:03.0534 4036 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:42:03.0566 4036 NativeWifiP - ok 22:42:03.0675 4036 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:42:03.0690 4036 NAVENG - ok 22:42:03.0768 4036 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:42:03.0815 4036 NAVEX15 - ok 22:42:03.0940 4036 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:42:03.0971 4036 NDIS - ok 22:42:04.0002 4036 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:42:04.0034 4036 NdisCap - ok 22:42:04.0049 4036 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:42:04.0065 4036 NdisTapi - ok 22:42:04.0112 4036 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:42:04.0127 4036 Ndisuio - ok 22:42:04.0174 4036 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:42:04.0190 4036 NdisWan - ok 22:42:04.0236 4036 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:42:04.0252 4036 NDProxy - ok 22:42:04.0268 4036 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:42:04.0299 4036 NetBIOS - ok 22:42:04.0346 4036 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:42:04.0377 4036 NetBT - ok 22:42:04.0408 4036 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:04.0424 4036 Netlogon - ok 22:42:04.0455 4036 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:42:04.0486 4036 Netman - ok 22:42:04.0502 4036 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:42:04.0533 4036 netprofm - ok 22:42:04.0595 4036 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:42:04.0626 4036 NetTcpPortSharing - ok 22:42:04.0642 4036 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:42:04.0658 4036 nfrd960 - ok 22:42:04.0704 4036 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:42:04.0736 4036 NlaSvc - ok 22:42:04.0751 4036 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:42:04.0767 4036 Npfs - ok 22:42:04.0798 4036 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:42:04.0829 4036 nsi - ok 22:42:04.0845 4036 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:42:04.0876 4036 nsiproxy - ok 22:42:04.0970 4036 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:42:05.0001 4036 Ntfs - ok 22:42:05.0032 4036 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:42:05.0063 4036 Null - ok 22:42:05.0094 4036 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:42:05.0110 4036 nvraid - ok 22:42:05.0141 4036 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:42:05.0157 4036 nvstor - ok 22:42:05.0172 4036 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:42:05.0188 4036 nv_agp - ok 22:42:05.0250 4036 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:42:05.0266 4036 OberonGameConsoleService - ok 22:42:05.0360 4036 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:42:05.0391 4036 odserv - ok 22:42:05.0406 4036 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:42:05.0422 4036 ohci1394 - ok 22:42:05.0453 4036 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:42:05.0469 4036 ose - ok 22:42:05.0500 4036 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:42:05.0516 4036 p2pimsvc - ok 22:42:05.0562 4036 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:42:05.0578 4036 p2psvc - ok 22:42:05.0609 4036 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:42:05.0625 4036 Parport - ok 22:42:05.0656 4036 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:42:05.0672 4036 partmgr - ok 22:42:05.0672 4036 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:42:05.0687 4036 Parvdm - ok 22:42:05.0703 4036 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:42:05.0734 4036 PcaSvc - ok 22:42:05.0765 4036 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:42:05.0781 4036 pci - ok 22:42:05.0812 4036 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:42:05.0828 4036 pciide - ok 22:42:05.0859 4036 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:42:05.0874 4036 pcmcia - ok 22:42:05.0874 4036 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:42:05.0890 4036 pcw - ok 22:42:05.0921 4036 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:42:05.0968 4036 PEAUTH - ok 22:42:06.0062 4036 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:42:06.0108 4036 pla - ok 22:42:06.0218 4036 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:42:06.0249 4036 PlugPlay - ok 22:42:06.0264 4036 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:42:06.0280 4036 PNRPAutoReg - ok 22:42:06.0311 4036 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:42:06.0327 4036 PNRPsvc - ok 22:42:06.0374 4036 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:42:06.0405 4036 PolicyAgent - ok 22:42:06.0452 4036 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:42:06.0467 4036 Power - ok 22:42:06.0530 4036 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:42:06.0545 4036 PptpMiniport - ok 22:42:06.0561 4036 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:42:06.0576 4036 Processor - ok 22:42:06.0592 4036 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:42:06.0608 4036 ProfSvc - ok 22:42:06.0623 4036 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:06.0639 4036 ProtectedStorage - ok 22:42:06.0654 4036 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:42:06.0686 4036 Psched - ok 22:42:06.0764 4036 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:42:06.0810 4036 ql2300 - ok 22:42:06.0904 4036 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:42:06.0920 4036 ql40xx - ok 22:42:06.0951 4036 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:42:06.0966 4036 QWAVE - ok 22:42:06.0982 4036 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:42:06.0998 4036 QWAVEdrv - ok 22:42:07.0013 4036 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:42:07.0044 4036 RasAcd - ok 22:42:07.0060 4036 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:42:07.0091 4036 RasAgileVpn - ok 22:42:07.0122 4036 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:42:07.0138 4036 RasAuto - ok 22:42:07.0169 4036 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:42:07.0185 4036 Rasl2tp - ok 22:42:07.0232 4036 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:42:07.0263 4036 RasMan - ok 22:42:07.0294 4036 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:42:07.0310 4036 RasPppoe - ok 22:42:07.0325 4036 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:42:07.0356 4036 RasSstp - ok 22:42:07.0372 4036 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:42:07.0403 4036 rdbss - ok 22:42:07.0419 4036 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:42:07.0434 4036 rdpbus - ok 22:42:07.0466 4036 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:42:07.0497 4036 RDPCDD - ok 22:42:07.0512 4036 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:42:07.0544 4036 RDPENCDD - ok 22:42:07.0559 4036 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:42:07.0575 4036 RDPREFMP - ok 22:42:07.0606 4036 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:42:07.0622 4036 RDPWD - ok 22:42:07.0653 4036 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:42:07.0668 4036 rdyboost - ok 22:42:07.0700 4036 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:42:07.0731 4036 RemoteAccess - ok 22:42:07.0746 4036 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:42:07.0778 4036 RemoteRegistry - ok 22:42:07.0793 4036 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:42:07.0824 4036 RpcEptMapper - ok 22:42:07.0824 4036 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:42:07.0840 4036 RpcLocator - ok 22:42:07.0902 4036 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:42:07.0918 4036 RpcSs - ok 22:42:07.0949 4036 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:42:07.0980 4036 rspndr - ok 22:42:07.0996 4036 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:42:08.0012 4036 RTL8167 - ok 22:42:08.0043 4036 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:42:08.0058 4036 SABI - ok 22:42:08.0090 4036 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:08.0105 4036 SamSs - ok 22:42:08.0136 4036 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:42:08.0152 4036 sbp2port - ok 22:42:08.0168 4036 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:42:08.0199 4036 SCardSvr - ok 22:42:08.0230 4036 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:42:08.0277 4036 scfilter - ok 22:42:08.0339 4036 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:42:08.0386 4036 Schedule - ok 22:42:08.0417 4036 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:42:08.0448 4036 SCPolicySvc - ok 22:42:08.0464 4036 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:42:08.0480 4036 SDRSVC - ok 22:42:08.0511 4036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:42:08.0526 4036 secdrv - ok 22:42:08.0573 4036 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:42:08.0604 4036 seclogon - ok 22:42:08.0620 4036 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:42:08.0651 4036 SENS - ok 22:42:08.0682 4036 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:42:08.0698 4036 SensrSvc - ok 22:42:08.0698 4036 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:42:08.0714 4036 Serenum - ok 22:42:08.0729 4036 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:42:08.0745 4036 Serial - ok 22:42:08.0776 4036 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:42:08.0792 4036 sermouse - ok 22:42:08.0838 4036 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:42:08.0870 4036 SessionEnv - ok 22:42:08.0901 4036 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:42:08.0916 4036 sffdisk - ok 22:42:08.0932 4036 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:42:08.0948 4036 sffp_mmc - ok 22:42:08.0963 4036 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:42:08.0979 4036 sffp_sd - ok 22:42:08.0994 4036 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:42:09.0010 4036 sfloppy - ok 22:42:09.0041 4036 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:42:09.0072 4036 SharedAccess - ok 22:42:09.0119 4036 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:42:09.0150 4036 ShellHWDetection - ok 22:42:09.0197 4036 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:42:09.0197 4036 sisagp - ok 22:42:09.0228 4036 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:42:09.0244 4036 SiSRaid2 - ok 22:42:09.0260 4036 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:42:09.0275 4036 SiSRaid4 - ok 22:42:09.0291 4036 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:42:09.0322 4036 Smb - ok 22:42:09.0462 4036 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:42:09.0509 4036 SmcService - ok 22:42:09.0540 4036 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:42:09.0556 4036 SNAC - ok 22:42:09.0650 4036 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:42:09.0681 4036 SNMPTRAP - ok 22:42:09.0790 4036 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:42:09.0806 4036 SPBBCDrv - ok 22:42:09.0852 4036 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:42:09.0868 4036 spldr - ok 22:42:09.0930 4036 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:42:09.0962 4036 Spooler - ok 22:42:10.0118 4036 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:42:10.0180 4036 sppsvc - ok 22:42:10.0289 4036 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:42:10.0336 4036 sppuinotify - ok 22:42:10.0414 4036 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:42:10.0430 4036 SpyHunter 4 Service - ok 22:42:10.0492 4036 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:42:10.0508 4036 SQLBrowser - ok 22:42:10.0539 4036 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:42:10.0554 4036 SQLWriter - ok 22:42:10.0617 4036 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:42:10.0617 4036 SRTSP - ok 22:42:10.0648 4036 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:42:10.0664 4036 SRTSPL - ok 22:42:10.0695 4036 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:42:10.0695 4036 SRTSPX - ok 22:42:10.0726 4036 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:42:10.0742 4036 srv - ok 22:42:10.0773 4036 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:42:10.0788 4036 srv2 - ok 22:42:10.0804 4036 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:42:10.0820 4036 srvnet - ok 22:42:10.0851 4036 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:42:10.0882 4036 SSDPSRV - ok 22:42:10.0882 4036 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:42:10.0913 4036 SstpSvc - ok 22:42:10.0929 4036 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:42:10.0944 4036 stexstor - ok 22:42:11.0007 4036 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:42:11.0022 4036 StiSvc - ok 22:42:11.0054 4036 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:42:11.0069 4036 swenum - ok 22:42:11.0100 4036 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:42:11.0132 4036 swprv - ok 22:42:11.0319 4036 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:42:11.0366 4036 Symantec AntiVirus - ok 22:42:11.0475 4036 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:42:11.0490 4036 SymEvent - ok 22:42:11.0506 4036 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:42:11.0522 4036 SYMREDRV - ok 22:42:11.0553 4036 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:42:11.0553 4036 SYMTDI - ok 22:42:11.0600 4036 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:42:11.0600 4036 SynTP - ok 22:42:11.0678 4036 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:42:11.0724 4036 SysMain - ok 22:42:11.0756 4036 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:42:11.0771 4036 TabletInputService - ok 22:42:11.0802 4036 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:42:11.0834 4036 TapiSrv - ok 22:42:11.0865 4036 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:42:11.0896 4036 TBS - ok 22:42:12.0005 4036 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:42:12.0052 4036 Tcpip - ok 22:42:12.0068 4036 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:42:12.0099 4036 TCPIP6 - ok 22:42:12.0130 4036 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:42:12.0161 4036 tcpipreg - ok 22:42:12.0192 4036 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:42:12.0208 4036 TDPIPE - ok 22:42:12.0239 4036 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:42:12.0239 4036 TDTCP - ok 22:42:12.0270 4036 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:42:12.0302 4036 tdx - ok 22:42:12.0442 4036 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:42:12.0489 4036 TeamViewer6 - ok 22:42:12.0614 4036 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:42:12.0645 4036 TermDD - ok 22:42:12.0692 4036 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:42:12.0723 4036 TermService - ok 22:42:12.0754 4036 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:42:12.0770 4036 Themes - ok 22:42:12.0801 4036 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:42:12.0832 4036 THREADORDER - ok 22:42:12.0848 4036 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:42:12.0879 4036 TrkWks - ok 22:42:12.0941 4036 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:42:12.0957 4036 TrustedInstaller - ok 22:42:12.0988 4036 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:42:13.0019 4036 tssecsrv - ok 22:42:13.0050 4036 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:42:13.0066 4036 TsUsbFlt - ok 22:42:13.0113 4036 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:42:13.0129 4036 tunnel - ok 22:42:13.0160 4036 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:42:13.0175 4036 uagp35 - ok 22:42:13.0222 4036 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:42:13.0253 4036 udfs - ok 22:42:13.0300 4036 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:42:13.0316 4036 UI0Detect - ok 22:42:13.0363 4036 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:42:13.0378 4036 uliagpkx - ok 22:42:13.0409 4036 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:42:13.0425 4036 umbus - ok 22:42:13.0441 4036 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:42:13.0456 4036 UmPass - ok 22:42:13.0487 4036 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:42:13.0519 4036 upnphost - ok 22:42:13.0550 4036 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:42:13.0565 4036 USBAAPL - ok 22:42:13.0565 4036 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:42:13.0581 4036 usbccgp - ok 22:42:13.0612 4036 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:42:13.0628 4036 usbcir - ok 22:42:13.0643 4036 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:42:13.0659 4036 usbehci - ok 22:42:13.0706 4036 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:42:13.0737 4036 usbhub - ok 22:42:13.0753 4036 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:42:13.0768 4036 usbohci - ok 22:42:13.0784 4036 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:42:13.0799 4036 usbprint - ok 22:42:13.0831 4036 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:42:13.0846 4036 usbscan - ok 22:42:13.0877 4036 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:42:13.0877 4036 USBSTOR - ok 22:42:13.0893 4036 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:42:13.0909 4036 usbuhci - ok 22:42:13.0955 4036 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:42:13.0971 4036 usbvideo - ok 22:42:13.0987 4036 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:42:14.0018 4036 UxSms - ok 22:42:14.0049 4036 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:14.0049 4036 VaultSvc - ok 22:42:14.0096 4036 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:42:14.0111 4036 vdrvroot - ok 22:42:14.0174 4036 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:42:14.0205 4036 vds - ok 22:42:14.0236 4036 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:42:14.0252 4036 vga - ok 22:42:14.0283 4036 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:42:14.0299 4036 VgaSave - ok 22:42:14.0345 4036 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:42:14.0361 4036 vhdmp - ok 22:42:14.0377 4036 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:42:14.0377 4036 viaagp - ok 22:42:14.0392 4036 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:42:14.0408 4036 ViaC7 - ok 22:42:14.0439 4036 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:42:14.0455 4036 viaide - ok 22:42:14.0486 4036 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:42:14.0486 4036 volmgr - ok 22:42:14.0533 4036 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:42:14.0548 4036 volmgrx - ok 22:42:14.0564 4036 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:42:14.0579 4036 volsnap - ok 22:42:14.0595 4036 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:42:14.0611 4036 vsmraid - ok 22:42:14.0689 4036 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:42:14.0735 4036 VSS - ok 22:42:14.0751 4036 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:42:14.0767 4036 vwifibus - ok 22:42:14.0782 4036 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:42:14.0798 4036 vwififlt - ok 22:42:14.0813 4036 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:42:14.0829 4036 vwifimp - ok 22:42:14.0860 4036 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:42:14.0891 4036 W32Time - ok 22:42:14.0923 4036 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:42:14.0938 4036 WacomPen - ok 22:42:14.0969 4036 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:42:15.0001 4036 WANARP - ok 22:42:15.0001 4036 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:42:15.0016 4036 Wanarpv6 - ok 22:42:15.0094 4036 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:42:15.0125 4036 WatAdminSvc - ok 22:42:15.0219 4036 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:42:15.0250 4036 wbengine - ok 22:42:15.0281 4036 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:42:15.0313 4036 WbioSrvc - ok 22:42:15.0359 4036 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:42:15.0375 4036 wcncsvc - ok 22:42:15.0391 4036 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:42:15.0406 4036 WcsPlugInService - ok 22:42:15.0453 4036 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:42:15.0469 4036 Wd - ok 22:42:15.0500 4036 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:42:15.0515 4036 Wdf01000 - ok 22:42:15.0547 4036 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:42:15.0562 4036 WdiServiceHost - ok 22:42:15.0562 4036 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:42:15.0593 4036 WdiSystemHost - ok 22:42:15.0625 4036 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:42:15.0656 4036 WebClient - ok 22:42:15.0671 4036 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:42:15.0703 4036 Wecsvc - ok 22:42:15.0718 4036 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:42:15.0749 4036 wercplsupport - ok 22:42:15.0765 4036 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:42:15.0796 4036 WerSvc - ok 22:42:15.0812 4036 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:42:15.0843 4036 WfpLwf - ok 22:42:15.0859 4036 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:42:15.0874 4036 WIMMount - ok 22:42:15.0937 4036 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:42:15.0983 4036 WinDefend - ok 22:42:15.0983 4036 WinHttpAutoProxySvc - ok 22:42:16.0046 4036 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:42:16.0093 4036 Winmgmt - ok 22:42:16.0171 4036 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:42:16.0202 4036 WinRM - ok 22:42:16.0264 4036 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:42:16.0280 4036 WinUsb - ok 22:42:16.0342 4036 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:42:16.0373 4036 Wlansvc - ok 22:42:16.0514 4036 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:42:16.0545 4036 wlidsvc - ok 22:42:16.0670 4036 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:42:16.0685 4036 WmiAcpi - ok 22:42:16.0748 4036 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:42:16.0779 4036 wmiApSrv - ok 22:42:16.0888 4036 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:42:16.0919 4036 WMPNetworkSvc - ok 22:42:16.0951 4036 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:42:16.0966 4036 WPCSvc - ok 22:42:17.0013 4036 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:42:17.0029 4036 WPDBusEnum - ok 22:42:17.0075 4036 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:42:17.0122 4036 ws2ifsl - ok 22:42:17.0138 4036 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:42:17.0153 4036 wscsvc - ok 22:42:17.0153 4036 WSearch - ok 22:42:17.0278 4036 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:42:17.0325 4036 wuauserv - ok 22:42:17.0450 4036 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:42:17.0481 4036 WudfPf - ok 22:42:17.0497 4036 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:42:17.0528 4036 WUDFRd - ok 22:42:17.0559 4036 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:42:17.0590 4036 wudfsvc - ok 22:42:17.0606 4036 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:42:17.0621 4036 WwanSvc - ok 22:42:17.0653 4036 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:42:17.0965 4036 \Device\Harddisk0\DR0 - ok 22:42:17.0965 4036 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:42:17.0980 4036 \Device\Harddisk0\DR0\Partition0 - ok 22:42:17.0996 4036 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:42:17.0996 4036 \Device\Harddisk0\DR0\Partition1 - ok 22:42:18.0027 4036 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:42:18.0027 4036 \Device\Harddisk0\DR0\Partition2 - ok 22:42:18.0027 4036 ============================================================ 22:42:18.0027 4036 Scan finished 22:42:18.0027 4036 ============================================================ 22:42:18.0043 2232 Detected object count: 2 22:42:18.0043 2232 Actual detected object count: 2 22:42:44.0361 2232 C:\windows\system32\DRIVERS\atksgt.sys - copied to quarantine 22:42:44.0361 2232 HKLM\SYSTEM\ControlSet001\services\atksgt - will be deleted on reboot 22:42:44.0408 2232 HKLM\SYSTEM\ControlSet002\services\atksgt - will be deleted on reboot 22:42:44.0564 2232 C:\windows\system32\DRIVERS\atksgt.sys - will be deleted on reboot 22:42:44.0564 2232 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Delete 22:42:44.0579 2232 C:\windows\system32\DRIVERS\lirsgt.sys - copied to quarantine 22:42:44.0579 2232 HKLM\SYSTEM\ControlSet001\services\lirsgt - will be deleted on reboot 22:42:44.0579 2232 HKLM\SYSTEM\ControlSet002\services\lirsgt - will be deleted on reboot 22:42:44.0579 2232 C:\windows\system32\DRIVERS\lirsgt.sys - will be deleted on reboot 22:42:44.0579 2232 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Delete

Ik heb bij de TDSSKiller de addiotele mogelijkheden moeten aanklikken vooraleer er een bedreiging werd gevonden. Dit is het logje van TDSSkiller: 22:37:47.0275 4904 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35 22:37:47.0446 4904 ============================================================ 22:37:47.0446 4904 Current date / time: 2012/07/09 22:37:47.0446 22:37:47.0446 4904 SystemInfo: 22:37:47.0446 4904 22:37:47.0446 4904 OS Version: 6.1.7601 ServicePack: 1.0 22:37:47.0446 4904 Product type: Workstation 22:37:47.0446 4904 ComputerName: JONAS-PC 22:37:47.0446 4904 UserName: Jonas 22:37:47.0446 4904 Windows directory: C:\windows 22:37:47.0446 4904 System windows directory: C:\windows 22:37:47.0446 4904 Processor architecture: Intel x86 22:37:47.0446 4904 Number of processors: 2 22:37:47.0446 4904 Page size: 0x1000 22:37:47.0446 4904 Boot type: Normal boot 22:37:47.0446 4904 ============================================================ 22:37:48.0070 4904 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 22:37:48.0070 4904 ============================================================ 22:37:48.0070 4904 \Device\Harddisk0\DR0: 22:37:48.0070 4904 MBR partitions: 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x16A3A000 22:37:48.0070 4904 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1886C800, BlocksNum 0xCBC1800 22:37:48.0070 4904 ============================================================ 22:37:48.0117 4904 C: <-> \Device\Harddisk0\DR0\Partition1 22:37:48.0148 4904 D: <-> \Device\Harddisk0\DR0\Partition2 22:37:48.0148 4904 ============================================================ 22:37:48.0148 4904 Initialize success 22:37:48.0148 4904 ============================================================ 22:38:20.0053 5932 ============================================================ 22:38:20.0053 5932 Scan started 22:38:20.0053 5932 Mode: Manual; 22:38:20.0053 5932 ============================================================ 22:38:20.0458 5932 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:38:20.0458 5932 1394ohci - ok 22:38:20.0521 5932 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:38:20.0536 5932 ACPI - ok 22:38:20.0583 5932 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:38:20.0583 5932 AcpiPmi - ok 22:38:20.0677 5932 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:38:20.0677 5932 adp94xx - ok 22:38:20.0723 5932 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:38:20.0723 5932 adpahci - ok 22:38:20.0755 5932 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:38:20.0755 5932 adpu320 - ok 22:38:20.0801 5932 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:38:20.0801 5932 AeLookupSvc - ok 22:38:20.0879 5932 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:38:20.0879 5932 AFD - ok 22:38:20.0911 5932 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:38:20.0911 5932 agp440 - ok 22:38:20.0973 5932 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:38:20.0973 5932 aic78xx - ok 22:38:21.0020 5932 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:38:21.0035 5932 ALG - ok 22:38:21.0035 5932 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:38:21.0035 5932 aliide - ok 22:38:21.0067 5932 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:38:21.0067 5932 amdagp - ok 22:38:21.0113 5932 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:38:21.0129 5932 amdide - ok 22:38:21.0191 5932 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:38:21.0191 5932 AmdK8 - ok 22:38:21.0223 5932 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:38:21.0223 5932 AmdPPM - ok 22:38:21.0285 5932 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:38:21.0285 5932 amdsata - ok 22:38:21.0347 5932 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:38:21.0347 5932 amdsbs - ok 22:38:21.0363 5932 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:38:21.0363 5932 amdxata - ok 22:38:21.0425 5932 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:38:21.0425 5932 AppID - ok 22:38:21.0472 5932 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:38:21.0472 5932 AppIDSvc - ok 22:38:21.0519 5932 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:38:21.0519 5932 Appinfo - ok 22:38:21.0628 5932 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:38:21.0628 5932 Apple Mobile Device - ok 22:38:21.0769 5932 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:38:21.0784 5932 arc - ok 22:38:21.0800 5932 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:38:21.0800 5932 arcsas - ok 22:38:21.0815 5932 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:38:21.0815 5932 AsyncMac - ok 22:38:21.0847 5932 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:38:21.0862 5932 atapi - ok 22:38:21.0971 5932 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:38:21.0987 5932 athr - ok 22:38:22.0065 5932 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:38:22.0065 5932 atksgt - ok 22:38:22.0143 5932 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:38:22.0143 5932 AudioEndpointBuilder - ok 22:38:22.0159 5932 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:38:22.0159 5932 Audiosrv - ok 22:38:22.0237 5932 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:38:22.0237 5932 AxInstSV - ok 22:38:22.0315 5932 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:38:22.0315 5932 b06bdrv - ok 22:38:22.0330 5932 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:38:22.0346 5932 b57nd60x - ok 22:38:22.0424 5932 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:38:22.0439 5932 BcmSqlStartupSvc - ok 22:38:22.0502 5932 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:38:22.0502 5932 BDESVC - ok 22:38:22.0533 5932 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:38:22.0533 5932 Beep - ok 22:38:22.0627 5932 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:38:22.0627 5932 BFE - ok 22:38:22.0658 5932 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:38:22.0673 5932 BITS - ok 22:38:22.0705 5932 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:38:22.0705 5932 blbdrive - ok 22:38:22.0829 5932 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:38:22.0829 5932 Bonjour Service - ok 22:38:22.0892 5932 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:38:22.0892 5932 bowser - ok 22:38:22.0923 5932 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:38:22.0923 5932 BrFiltLo - ok 22:38:22.0939 5932 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:38:22.0939 5932 BrFiltUp - ok 22:38:22.0985 5932 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:38:22.0985 5932 BridgeMP - ok 22:38:23.0032 5932 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:38:23.0032 5932 Browser - ok 22:38:23.0079 5932 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:38:23.0079 5932 Brserid - ok 22:38:23.0095 5932 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:38:23.0095 5932 BrSerWdm - ok 22:38:23.0110 5932 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:38:23.0110 5932 BrUsbMdm - ok 22:38:23.0141 5932 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:38:23.0141 5932 BrUsbSer - ok 22:38:23.0157 5932 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:38:23.0157 5932 BTHMODEM - ok 22:38:23.0219 5932 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:38:23.0219 5932 bthserv - ok 22:38:23.0313 5932 catchme - ok 22:38:23.0422 5932 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:38:23.0422 5932 ccEvtMgr - ok 22:38:23.0422 5932 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:38:23.0422 5932 ccSetMgr - ok 22:38:23.0485 5932 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:38:23.0485 5932 cdfs - ok 22:38:23.0547 5932 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:38:23.0563 5932 cdrom - ok 22:38:23.0625 5932 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:38:23.0625 5932 CertPropSvc - ok 22:38:23.0672 5932 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:38:23.0672 5932 circlass - ok 22:38:23.0703 5932 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:38:23.0703 5932 CLFS - ok 22:38:23.0828 5932 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:38:23.0828 5932 clr_optimization_v2.0.50727_32 - ok 22:38:23.0968 5932 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:38:23.0968 5932 clr_optimization_v4.0.30319_32 - ok 22:38:23.0999 5932 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:38:23.0999 5932 CmBatt - ok 22:38:24.0031 5932 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:38:24.0031 5932 cmdide - ok 22:38:24.0077 5932 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:38:24.0093 5932 CNG - ok 22:38:24.0124 5932 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:38:24.0124 5932 Compbatt - ok 22:38:24.0187 5932 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:38:24.0202 5932 CompositeBus - ok 22:38:24.0218 5932 COMSysApp - ok 22:38:24.0249 5932 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:38:24.0249 5932 crcdisk - ok 22:38:24.0280 5932 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:38:24.0280 5932 CryptSvc - ok 22:38:24.0358 5932 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:38:24.0358 5932 ctxusbm - ok 22:38:24.0421 5932 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:38:24.0436 5932 DcomLaunch - ok 22:38:24.0483 5932 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:38:24.0483 5932 defragsvc - ok 22:38:24.0530 5932 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:38:24.0530 5932 DfsC - ok 22:38:24.0608 5932 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:38:24.0623 5932 Dhcp - ok 22:38:24.0655 5932 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:38:24.0655 5932 discache - ok 22:38:24.0717 5932 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:38:24.0717 5932 Disk - ok 22:38:24.0764 5932 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:38:24.0764 5932 Dnscache - ok 22:38:24.0795 5932 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:38:24.0811 5932 dot3svc - ok 22:38:24.0857 5932 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:38:24.0857 5932 Dot4 - ok 22:38:24.0920 5932 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:38:24.0920 5932 Dot4Print - ok 22:38:24.0935 5932 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:38:24.0935 5932 dot4usb - ok 22:38:24.0982 5932 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:38:24.0982 5932 DPS - ok 22:38:25.0045 5932 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:38:25.0045 5932 drmkaud - ok 22:38:25.0123 5932 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:38:25.0123 5932 dtsoftbus01 - ok 22:38:25.0185 5932 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:38:25.0201 5932 DXGKrnl - ok 22:38:25.0279 5932 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:38:25.0279 5932 EapHost - ok 22:38:25.0528 5932 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:38:25.0575 5932 ebdrv - ok 22:38:25.0700 5932 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:38:25.0700 5932 eeCtrl - ok 22:38:25.0809 5932 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:38:25.0809 5932 EFS - ok 22:38:25.0903 5932 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:38:25.0903 5932 ehRecvr - ok 22:38:25.0934 5932 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:38:25.0934 5932 ehSched - ok 22:38:26.0027 5932 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:38:26.0043 5932 elxstor - ok 22:38:26.0183 5932 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:38:26.0183 5932 EraserUtilRebootDrv - ok 22:38:26.0215 5932 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:38:26.0215 5932 ErrDev - ok 22:38:26.0293 5932 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:38:26.0293 5932 EventSystem - ok 22:38:26.0324 5932 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:38:26.0324 5932 exfat - ok 22:38:26.0355 5932 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:38:26.0355 5932 fastfat - ok 22:38:26.0433 5932 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:38:26.0449 5932 Fax - ok 22:38:26.0464 5932 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:38:26.0464 5932 fdc - ok 22:38:26.0495 5932 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:38:26.0495 5932 fdPHost - ok 22:38:26.0527 5932 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:38:26.0527 5932 FDResPub - ok 22:38:26.0542 5932 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:38:26.0542 5932 FileInfo - ok 22:38:26.0558 5932 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:38:26.0558 5932 Filetrace - ok 22:38:26.0573 5932 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:38:26.0573 5932 flpydisk - ok 22:38:26.0636 5932 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:38:26.0636 5932 FltMgr - ok 22:38:26.0745 5932 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:38:26.0761 5932 FontCache - ok 22:38:26.0807 5932 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:38:26.0807 5932 FontCache3.0.0.0 - ok 22:38:26.0823 5932 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:38:26.0823 5932 FsDepends - ok 22:38:26.0885 5932 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:38:26.0885 5932 fssfltr - ok 22:38:27.0104 5932 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:38:27.0119 5932 fsssvc - ok 22:38:27.0244 5932 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:38:27.0244 5932 Fs_Rec - ok 22:38:27.0307 5932 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:38:27.0307 5932 fvevol - ok 22:38:27.0369 5932 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:38:27.0385 5932 gagp30kx - ok 22:38:27.0431 5932 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:38:27.0431 5932 GEARAspiWDM - ok 22:38:27.0494 5932 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:38:27.0509 5932 gpsvc - ok 22:38:27.0619 5932 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:38:27.0619 5932 gupdate - ok 22:38:27.0650 5932 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:38:27.0650 5932 gupdatem - ok 22:38:27.0712 5932 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:38:27.0712 5932 gusvc - ok 22:38:27.0759 5932 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:38:27.0759 5932 hcw85cir - ok 22:38:27.0837 5932 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:38:27.0837 5932 HdAudAddService - ok 22:38:27.0884 5932 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:38:27.0884 5932 HDAudBus - ok 22:38:27.0899 5932 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:38:27.0899 5932 HidBatt - ok 22:38:27.0915 5932 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:38:27.0915 5932 HidBth - ok 22:38:27.0962 5932 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:38:27.0962 5932 HidIr - ok 22:38:27.0977 5932 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:38:27.0977 5932 hidserv - ok 22:38:28.0055 5932 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:38:28.0055 5932 HidUsb - ok 22:38:28.0118 5932 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:38:28.0118 5932 hkmsvc - ok 22:38:28.0149 5932 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:38:28.0149 5932 HomeGroupListener - ok 22:38:28.0180 5932 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:38:28.0196 5932 HomeGroupProvider - ok 22:38:28.0243 5932 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:38:28.0243 5932 HpSAMD - ok 22:38:28.0321 5932 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:38:28.0321 5932 HTTP - ok 22:38:28.0336 5932 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:38:28.0336 5932 hwpolicy - ok 22:38:28.0414 5932 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:38:28.0414 5932 i8042prt - ok 22:38:28.0539 5932 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:38:28.0539 5932 IAANTMON - ok 22:38:28.0586 5932 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:38:28.0586 5932 iaStor - ok 22:38:28.0648 5932 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:38:28.0648 5932 iaStorV - ok 22:38:28.0789 5932 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:38:28.0804 5932 idsvc - ok 22:38:29.0225 5932 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:38:29.0428 5932 igfx - ok 22:38:29.0631 5932 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:38:29.0647 5932 iirsp - ok 22:38:29.0803 5932 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:38:29.0803 5932 IKEEXT - ok 22:38:29.0990 5932 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:38:30.0021 5932 IntcAzAudAddService - ok 22:38:30.0146 5932 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:38:30.0146 5932 intelide - ok 22:38:30.0193 5932 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:38:30.0193 5932 intelppm - ok 22:38:30.0224 5932 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:38:30.0224 5932 IPBusEnum - ok 22:38:30.0255 5932 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:38:30.0271 5932 IpFilterDriver - ok 22:38:30.0333 5932 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:38:30.0333 5932 iphlpsvc - ok 22:38:30.0364 5932 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:38:30.0364 5932 IPMIDRV - ok 22:38:30.0395 5932 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:38:30.0395 5932 IPNAT - ok 22:38:30.0536 5932 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:38:30.0551 5932 iPod Service - ok 22:38:30.0598 5932 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:38:30.0598 5932 IRENUM - ok 22:38:30.0629 5932 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:38:30.0629 5932 isapnp - ok 22:38:30.0676 5932 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:38:30.0676 5932 iScsiPrt - ok 22:38:30.0739 5932 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:38:30.0739 5932 kbdclass - ok 22:38:30.0785 5932 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:38:30.0785 5932 kbdhid - ok 22:38:30.0817 5932 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:30.0832 5932 KeyIso - ok 22:38:30.0832 5932 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:38:30.0832 5932 KSecDD - ok 22:38:30.0848 5932 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:38:30.0863 5932 KSecPkg - ok 22:38:30.0895 5932 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:38:30.0895 5932 KtmRm - ok 22:38:30.0941 5932 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:38:30.0957 5932 LanmanServer - ok 22:38:31.0019 5932 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:38:31.0035 5932 LanmanWorkstation - ok 22:38:31.0097 5932 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:38:31.0097 5932 lirsgt - ok 22:38:31.0409 5932 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:38:31.0456 5932 LiveUpdate - ok 22:38:31.0597 5932 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:38:31.0597 5932 lltdio - ok 22:38:31.0628 5932 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:38:31.0628 5932 lltdsvc - ok 22:38:31.0643 5932 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:38:31.0659 5932 lmhosts - ok 22:38:31.0721 5932 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:38:31.0721 5932 LSI_FC - ok 22:38:31.0737 5932 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:38:31.0737 5932 LSI_SAS - ok 22:38:31.0753 5932 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:38:31.0753 5932 LSI_SAS2 - ok 22:38:31.0768 5932 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:38:31.0768 5932 LSI_SCSI - ok 22:38:31.0831 5932 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:38:31.0831 5932 luafv - ok 22:38:31.0940 5932 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:38:31.0955 5932 lxeeCATSCustConnectService - ok 22:38:31.0971 5932 lxee_device - ok 22:38:32.0018 5932 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:38:32.0018 5932 Mcx2Svc - ok 22:38:32.0049 5932 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:38:32.0049 5932 megasas - ok 22:38:32.0111 5932 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:38:32.0111 5932 MegaSR - ok 22:38:32.0205 5932 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:38:32.0205 5932 Microsoft Office Groove Audit Service - ok 22:38:32.0236 5932 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:38:32.0236 5932 MMCSS - ok 22:38:32.0252 5932 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:38:32.0252 5932 Modem - ok 22:38:32.0299 5932 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:38:32.0299 5932 monitor - ok 22:38:32.0423 5932 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:38:32.0423 5932 mouclass - ok 22:38:32.0486 5932 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:38:32.0486 5932 mouhid - ok 22:38:32.0533 5932 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:38:32.0533 5932 mountmgr - ok 22:38:32.0564 5932 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:38:32.0564 5932 mpio - ok 22:38:32.0595 5932 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:38:32.0595 5932 mpsdrv - ok 22:38:32.0704 5932 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:38:32.0720 5932 MpsSvc - ok 22:38:32.0751 5932 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:38:32.0751 5932 MRxDAV - ok 22:38:32.0813 5932 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:38:32.0813 5932 mrxsmb - ok 22:38:32.0876 5932 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:38:32.0876 5932 mrxsmb10 - ok 22:38:32.0891 5932 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:38:32.0891 5932 mrxsmb20 - ok 22:38:32.0923 5932 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:38:32.0938 5932 msahci - ok 22:38:32.0954 5932 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:38:32.0969 5932 msdsm - ok 22:38:32.0985 5932 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:38:33.0001 5932 MSDTC - ok 22:38:33.0063 5932 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:38:33.0063 5932 Msfs - ok 22:38:33.0079 5932 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:38:33.0079 5932 mshidkmdf - ok 22:38:33.0110 5932 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:38:33.0110 5932 msisadrv - ok 22:38:33.0188 5932 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:38:33.0188 5932 MSiSCSI - ok 22:38:33.0188 5932 msiserver - ok 22:38:33.0203 5932 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:38:33.0219 5932 MSKSSRV - ok 22:38:33.0250 5932 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:38:33.0250 5932 MSPCLOCK - ok 22:38:33.0297 5932 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:38:33.0313 5932 MSPQM - ok 22:38:33.0344 5932 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:38:33.0344 5932 MsRPC - ok 22:38:33.0391 5932 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:38:33.0391 5932 mssmbios - ok 22:38:33.0500 5932 MSSQL$MSSMLBIZ - ok 22:38:33.0531 5932 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:38:33.0531 5932 MSSQLServerADHelper - ok 22:38:33.0578 5932 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:38:33.0578 5932 MSTEE - ok 22:38:33.0593 5932 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:38:33.0593 5932 MTConfig - ok 22:38:33.0625 5932 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:38:33.0625 5932 Mup - ok 22:38:33.0671 5932 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:38:33.0671 5932 napagent - ok 22:38:33.0749 5932 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:38:33.0749 5932 NativeWifiP - ok 22:38:33.0859 5932 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:38:33.0859 5932 NAVENG - ok 22:38:34.0015 5932 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:38:34.0046 5932 NAVEX15 - ok 22:38:34.0202 5932 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:38:34.0217 5932 NDIS - ok 22:38:34.0264 5932 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:38:34.0264 5932 NdisCap - ok 22:38:34.0311 5932 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:38:34.0311 5932 NdisTapi - ok 22:38:34.0373 5932 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:38:34.0373 5932 Ndisuio - ok 22:38:34.0405 5932 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:38:34.0405 5932 NdisWan - ok 22:38:34.0451 5932 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:38:34.0451 5932 NDProxy - ok 22:38:34.0498 5932 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:38:34.0498 5932 NetBIOS - ok 22:38:34.0529 5932 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:38:34.0545 5932 NetBT - ok 22:38:34.0561 5932 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:34.0576 5932 Netlogon - ok 22:38:34.0639 5932 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:38:34.0654 5932 Netman - ok 22:38:34.0717 5932 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:38:34.0717 5932 netprofm - ok 22:38:34.0779 5932 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:38:34.0795 5932 NetTcpPortSharing - ok 22:38:34.0841 5932 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:38:34.0841 5932 nfrd960 - ok 22:38:34.0888 5932 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:38:34.0888 5932 NlaSvc - ok 22:38:34.0904 5932 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:38:34.0904 5932 Npfs - ok 22:38:34.0951 5932 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:38:34.0951 5932 nsi - ok 22:38:34.0951 5932 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:38:34.0966 5932 nsiproxy - ok 22:38:35.0060 5932 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:38:35.0075 5932 Ntfs - ok 22:38:35.0107 5932 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:38:35.0107 5932 Null - ok 22:38:35.0138 5932 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:38:35.0138 5932 nvraid - ok 22:38:35.0169 5932 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:38:35.0169 5932 nvstor - ok 22:38:35.0185 5932 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:38:35.0185 5932 nv_agp - ok 22:38:35.0278 5932 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:38:35.0278 5932 OberonGameConsoleService - ok 22:38:35.0387 5932 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:38:35.0387 5932 odserv - ok 22:38:35.0434 5932 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:38:35.0434 5932 ohci1394 - ok 22:38:35.0465 5932 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:38:35.0465 5932 ose - ok 22:38:35.0512 5932 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:38:35.0512 5932 p2pimsvc - ok 22:38:35.0543 5932 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:38:35.0543 5932 p2psvc - ok 22:38:35.0606 5932 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:38:35.0606 5932 Parport - ok 22:38:35.0621 5932 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:38:35.0637 5932 partmgr - ok 22:38:35.0653 5932 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:38:35.0653 5932 Parvdm - ok 22:38:35.0684 5932 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:38:35.0684 5932 PcaSvc - ok 22:38:35.0731 5932 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:38:35.0731 5932 pci - ok 22:38:35.0777 5932 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:38:35.0777 5932 pciide - ok 22:38:35.0809 5932 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:38:35.0809 5932 pcmcia - ok 22:38:35.0824 5932 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:38:35.0824 5932 pcw - ok 22:38:35.0871 5932 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:38:35.0887 5932 PEAUTH - ok 22:38:35.0996 5932 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:38:36.0027 5932 pla - ok 22:38:36.0136 5932 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:38:36.0136 5932 PlugPlay - ok 22:38:36.0167 5932 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:38:36.0167 5932 PNRPAutoReg - ok 22:38:36.0199 5932 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:38:36.0199 5932 PNRPsvc - ok 22:38:36.0245 5932 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:38:36.0245 5932 PolicyAgent - ok 22:38:36.0292 5932 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:38:36.0308 5932 Power - ok 22:38:36.0370 5932 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:38:36.0370 5932 PptpMiniport - ok 22:38:36.0386 5932 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:38:36.0386 5932 Processor - ok 22:38:36.0448 5932 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:38:36.0448 5932 ProfSvc - ok 22:38:36.0479 5932 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:36.0479 5932 ProtectedStorage - ok 22:38:36.0526 5932 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:38:36.0526 5932 Psched - ok 22:38:36.0635 5932 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:38:36.0651 5932 ql2300 - ok 22:38:36.0791 5932 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:38:36.0791 5932 ql40xx - ok 22:38:36.0838 5932 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:38:36.0838 5932 QWAVE - ok 22:38:36.0854 5932 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:38:36.0854 5932 QWAVEdrv - ok 22:38:36.0869 5932 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:38:36.0869 5932 RasAcd - ok 22:38:36.0916 5932 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:38:36.0916 5932 RasAgileVpn - ok 22:38:36.0932 5932 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:38:36.0932 5932 RasAuto - ok 22:38:36.0963 5932 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:38:36.0963 5932 Rasl2tp - ok 22:38:37.0041 5932 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:38:37.0041 5932 RasMan - ok 22:38:37.0057 5932 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:38:37.0057 5932 RasPppoe - ok 22:38:37.0103 5932 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:38:37.0119 5932 RasSstp - ok 22:38:37.0135 5932 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:38:37.0135 5932 rdbss - ok 22:38:37.0150 5932 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:38:37.0150 5932 rdpbus - ok 22:38:37.0181 5932 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:38:37.0181 5932 RDPCDD - ok 22:38:37.0228 5932 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:38:37.0228 5932 RDPENCDD - ok 22:38:37.0244 5932 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:38:37.0244 5932 RDPREFMP - ok 22:38:37.0275 5932 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:38:37.0275 5932 RDPWD - ok 22:38:37.0337 5932 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:38:37.0353 5932 rdyboost - ok 22:38:37.0369 5932 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:38:37.0369 5932 RemoteAccess - ok 22:38:37.0400 5932 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:38:37.0400 5932 RemoteRegistry - ok 22:38:37.0447 5932 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:38:37.0447 5932 RpcEptMapper - ok 22:38:37.0478 5932 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:38:37.0478 5932 RpcLocator - ok 22:38:37.0540 5932 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:38:37.0540 5932 RpcSs - ok 22:38:37.0603 5932 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:38:37.0603 5932 rspndr - ok 22:38:37.0634 5932 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:38:37.0634 5932 RTL8167 - ok 22:38:37.0696 5932 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:38:37.0696 5932 SABI - ok 22:38:37.0727 5932 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:37.0727 5932 SamSs - ok 22:38:37.0774 5932 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:38:37.0790 5932 sbp2port - ok 22:38:37.0837 5932 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:38:37.0837 5932 SCardSvr - ok 22:38:37.0883 5932 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:38:37.0883 5932 scfilter - ok 22:38:37.0946 5932 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:38:37.0961 5932 Schedule - ok 22:38:37.0993 5932 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:38:37.0993 5932 SCPolicySvc - ok 22:38:38.0024 5932 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:38:38.0039 5932 SDRSVC - ok 22:38:38.0086 5932 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:38:38.0086 5932 secdrv - ok 22:38:38.0117 5932 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:38:38.0117 5932 seclogon - ok 22:38:38.0164 5932 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:38:38.0164 5932 SENS - ok 22:38:38.0242 5932 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:38:38.0258 5932 SensrSvc - ok 22:38:38.0305 5932 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:38:38.0305 5932 Serenum - ok 22:38:38.0320 5932 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:38:38.0320 5932 Serial - ok 22:38:38.0367 5932 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:38:38.0367 5932 sermouse - ok 22:38:38.0429 5932 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:38:38.0429 5932 SessionEnv - ok 22:38:38.0461 5932 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:38:38.0461 5932 sffdisk - ok 22:38:38.0476 5932 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:38:38.0476 5932 sffp_mmc - ok 22:38:38.0492 5932 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:38:38.0492 5932 sffp_sd - ok 22:38:38.0539 5932 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:38:38.0539 5932 sfloppy - ok 22:38:38.0617 5932 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:38:38.0632 5932 SharedAccess - ok 22:38:38.0679 5932 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:38:38.0695 5932 ShellHWDetection - ok 22:38:38.0726 5932 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:38:38.0726 5932 sisagp - ok 22:38:38.0773 5932 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:38:38.0773 5932 SiSRaid2 - ok 22:38:38.0788 5932 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:38:38.0788 5932 SiSRaid4 - ok 22:38:38.0835 5932 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:38:38.0835 5932 Smb - ok 22:38:39.0038 5932 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:38:39.0053 5932 SmcService - ok 22:38:39.0100 5932 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:38:39.0100 5932 SNAC - ok 22:38:39.0225 5932 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:38:39.0225 5932 SNMPTRAP - ok 22:38:39.0397 5932 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:38:39.0412 5932 SPBBCDrv - ok 22:38:39.0459 5932 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:38:39.0459 5932 spldr - ok 22:38:39.0537 5932 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:38:39.0537 5932 Spooler - ok 22:38:39.0693 5932 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:38:39.0724 5932 sppsvc - ok 22:38:39.0849 5932 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:38:39.0849 5932 sppuinotify - ok 22:38:39.0958 5932 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:38:39.0974 5932 SpyHunter 4 Service - ok 22:38:40.0068 5932 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:38:40.0083 5932 SQLBrowser - ok 22:38:40.0130 5932 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:38:40.0130 5932 SQLWriter - ok 22:38:40.0177 5932 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:38:40.0192 5932 SRTSP - ok 22:38:40.0224 5932 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:38:40.0224 5932 SRTSPL - ok 22:38:40.0270 5932 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:38:40.0270 5932 SRTSPX - ok 22:38:40.0302 5932 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:38:40.0317 5932 srv - ok 22:38:40.0364 5932 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:38:40.0364 5932 srv2 - ok 22:38:40.0395 5932 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:38:40.0395 5932 srvnet - ok 22:38:40.0426 5932 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:38:40.0442 5932 SSDPSRV - ok 22:38:40.0458 5932 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:38:40.0458 5932 SstpSvc - ok 22:38:40.0489 5932 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:38:40.0489 5932 stexstor - ok 22:38:40.0536 5932 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:38:40.0551 5932 StiSvc - ok 22:38:40.0598 5932 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:38:40.0598 5932 swenum - ok 22:38:40.0645 5932 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:38:40.0645 5932 swprv - ok 22:38:40.0863 5932 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:38:40.0879 5932 Symantec AntiVirus - ok 22:38:41.0035 5932 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:38:41.0035 5932 SymEvent - ok 22:38:41.0097 5932 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:38:41.0097 5932 SYMREDRV - ok 22:38:41.0128 5932 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:38:41.0128 5932 SYMTDI - ok 22:38:41.0206 5932 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:38:41.0206 5932 SynTP - ok 22:38:41.0316 5932 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:38:41.0331 5932 SysMain - ok 22:38:41.0362 5932 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:38:41.0362 5932 TabletInputService - ok 22:38:41.0425 5932 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:38:41.0425 5932 TapiSrv - ok 22:38:41.0440 5932 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:38:41.0456 5932 TBS - ok 22:38:41.0550 5932 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:38:41.0565 5932 Tcpip - ok 22:38:41.0612 5932 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:38:41.0612 5932 TCPIP6 - ok 22:38:41.0659 5932 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:38:41.0659 5932 tcpipreg - ok 22:38:41.0690 5932 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:38:41.0690 5932 TDPIPE - ok 22:38:41.0721 5932 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:38:41.0721 5932 TDTCP - ok 22:38:41.0784 5932 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:38:41.0784 5932 tdx - ok 22:38:42.0096 5932 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:38:42.0111 5932 TeamViewer6 - ok 22:38:42.0236 5932 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:38:42.0252 5932 TermDD - ok 22:38:42.0298 5932 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:38:42.0314 5932 TermService - ok 22:38:42.0330 5932 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:38:42.0345 5932 Themes - ok 22:38:42.0376 5932 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:38:42.0376 5932 THREADORDER - ok 22:38:42.0423 5932 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:38:42.0423 5932 TrkWks - ok 22:38:42.0486 5932 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:38:42.0486 5932 TrustedInstaller - ok 22:38:42.0517 5932 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:38:42.0517 5932 tssecsrv - ok 22:38:42.0548 5932 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:38:42.0548 5932 TsUsbFlt - ok 22:38:42.0626 5932 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:38:42.0626 5932 tunnel - ok 22:38:42.0657 5932 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:38:42.0657 5932 uagp35 - ok 22:38:42.0735 5932 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:38:42.0735 5932 udfs - ok 22:38:42.0782 5932 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:38:42.0782 5932 UI0Detect - ok 22:38:42.0844 5932 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:38:42.0844 5932 uliagpkx - ok 22:38:42.0891 5932 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:38:42.0891 5932 umbus - ok 22:38:42.0938 5932 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:38:42.0938 5932 UmPass - ok 22:38:43.0047 5932 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:38:43.0047 5932 upnphost - ok 22:38:43.0110 5932 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:38:43.0110 5932 USBAAPL - ok 22:38:43.0156 5932 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:38:43.0156 5932 usbccgp - ok 22:38:43.0188 5932 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:38:43.0203 5932 usbcir - ok 22:38:43.0219 5932 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:38:43.0219 5932 usbehci - ok 22:38:43.0281 5932 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:38:43.0281 5932 usbhub - ok 22:38:43.0312 5932 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:38:43.0312 5932 usbohci - ok 22:38:43.0375 5932 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:38:43.0375 5932 usbprint - ok 22:38:43.0422 5932 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:38:43.0422 5932 usbscan - ok 22:38:43.0468 5932 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:38:43.0468 5932 USBSTOR - ok 22:38:43.0484 5932 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:38:43.0484 5932 usbuhci - ok 22:38:43.0546 5932 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:38:43.0546 5932 usbvideo - ok 22:38:43.0578 5932 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:38:43.0578 5932 UxSms - ok 22:38:43.0609 5932 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:38:43.0609 5932 VaultSvc - ok 22:38:43.0671 5932 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:38:43.0671 5932 vdrvroot - ok 22:38:43.0749 5932 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:38:43.0765 5932 vds - ok 22:38:43.0780 5932 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:38:43.0796 5932 vga - ok 22:38:43.0812 5932 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:38:43.0812 5932 VgaSave - ok 22:38:43.0843 5932 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:38:43.0843 5932 vhdmp - ok 22:38:43.0905 5932 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:38:43.0905 5932 viaagp - ok 22:38:43.0921 5932 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:38:43.0921 5932 ViaC7 - ok 22:38:43.0936 5932 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:38:43.0936 5932 viaide - ok 22:38:43.0952 5932 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:38:43.0952 5932 volmgr - ok 22:38:43.0983 5932 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:38:43.0983 5932 volmgrx - ok 22:38:44.0030 5932 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:38:44.0030 5932 volsnap - ok 22:38:44.0108 5932 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:38:44.0108 5932 vsmraid - ok 22:38:44.0202 5932 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:38:44.0217 5932 VSS - ok 22:38:44.0233 5932 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:38:44.0233 5932 vwifibus - ok 22:38:44.0280 5932 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:38:44.0280 5932 vwififlt - ok 22:38:44.0326 5932 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:38:44.0326 5932 vwifimp - ok 22:38:44.0373 5932 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:38:44.0373 5932 W32Time - ok 22:38:44.0404 5932 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:38:44.0420 5932 WacomPen - ok 22:38:44.0467 5932 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:38:44.0467 5932 WANARP - ok 22:38:44.0482 5932 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:38:44.0482 5932 Wanarpv6 - ok 22:38:44.0607 5932 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:38:44.0623 5932 WatAdminSvc - ok 22:38:44.0701 5932 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:38:44.0716 5932 wbengine - ok 22:38:44.0763 5932 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:38:44.0763 5932 WbioSrvc - ok 22:38:44.0810 5932 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:38:44.0826 5932 wcncsvc - ok 22:38:44.0841 5932 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:38:44.0841 5932 WcsPlugInService - ok 22:38:44.0904 5932 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:38:44.0904 5932 Wd - ok 22:38:44.0935 5932 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:38:44.0935 5932 Wdf01000 - ok 22:38:44.0966 5932 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:38:44.0966 5932 WdiServiceHost - ok 22:38:44.0966 5932 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:38:44.0966 5932 WdiSystemHost - ok 22:38:45.0013 5932 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:38:45.0013 5932 WebClient - ok 22:38:45.0044 5932 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:38:45.0044 5932 Wecsvc - ok 22:38:45.0060 5932 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:38:45.0060 5932 wercplsupport - ok 22:38:45.0106 5932 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:38:45.0106 5932 WerSvc - ok 22:38:45.0153 5932 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:38:45.0169 5932 WfpLwf - ok 22:38:45.0184 5932 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:38:45.0184 5932 WIMMount - ok 22:38:45.0262 5932 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:38:45.0262 5932 WinDefend - ok 22:38:45.0278 5932 WinHttpAutoProxySvc - ok 22:38:45.0356 5932 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:38:45.0356 5932 Winmgmt - ok 22:38:45.0434 5932 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:38:45.0465 5932 WinRM - ok 22:38:45.0559 5932 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:38:45.0559 5932 WinUsb - ok 22:38:45.0621 5932 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:38:45.0637 5932 Wlansvc - ok 22:38:45.0840 5932 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:38:45.0855 5932 wlidsvc - ok 22:38:45.0980 5932 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:38:45.0980 5932 WmiAcpi - ok 22:38:46.0042 5932 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:38:46.0042 5932 wmiApSrv - ok 22:38:46.0198 5932 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:38:46.0214 5932 WMPNetworkSvc - ok 22:38:46.0245 5932 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:38:46.0261 5932 WPCSvc - ok 22:38:46.0308 5932 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:38:46.0308 5932 WPDBusEnum - ok 22:38:46.0354 5932 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:38:46.0354 5932 ws2ifsl - ok 22:38:46.0386 5932 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:38:46.0401 5932 wscsvc - ok 22:38:46.0401 5932 WSearch - ok 22:38:46.0542 5932 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:38:46.0557 5932 wuauserv - ok 22:38:46.0682 5932 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:38:46.0682 5932 WudfPf - ok 22:38:46.0729 5932 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:38:46.0744 5932 WUDFRd - ok 22:38:46.0791 5932 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:38:46.0807 5932 wudfsvc - ok 22:38:46.0838 5932 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:38:46.0838 5932 WwanSvc - ok 22:38:46.0900 5932 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:38:47.0134 5932 \Device\Harddisk0\DR0 - ok 22:38:47.0134 5932 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:38:47.0134 5932 \Device\Harddisk0\DR0\Partition0 - ok 22:38:47.0150 5932 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:38:47.0166 5932 \Device\Harddisk0\DR0\Partition1 - ok 22:38:47.0181 5932 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:38:47.0181 5932 \Device\Harddisk0\DR0\Partition2 - ok 22:38:47.0181 5932 ============================================================ 22:38:47.0181 5932 Scan finished 22:38:47.0181 5932 ============================================================ 22:38:47.0197 5708 Detected object count: 0 22:38:47.0197 5708 Actual detected object count: 0 22:40:10.0251 4324 ============================================================ 22:40:10.0251 4324 Scan started 22:40:10.0251 4324 Mode: Manual; SigCheck; TDLFS; 22:40:10.0251 4324 ============================================================ 22:40:10.0532 4324 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:40:10.0626 4324 1394ohci - ok 22:40:10.0672 4324 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:40:10.0704 4324 ACPI - ok 22:40:10.0719 4324 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:40:10.0797 4324 AcpiPmi - ok 22:40:10.0844 4324 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:40:10.0891 4324 adp94xx - ok 22:40:10.0922 4324 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:40:10.0938 4324 adpahci - ok 22:40:10.0969 4324 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:40:10.0969 4324 adpu320 - ok 22:40:11.0000 4324 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:40:11.0062 4324 AeLookupSvc - ok 22:40:11.0094 4324 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:40:11.0172 4324 AFD - ok 22:40:11.0203 4324 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:40:11.0218 4324 agp440 - ok 22:40:11.0296 4324 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:40:11.0312 4324 aic78xx - ok 22:40:11.0343 4324 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:40:11.0374 4324 ALG - ok 22:40:11.0406 4324 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:40:11.0406 4324 aliide - ok 22:40:11.0437 4324 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:40:11.0452 4324 amdagp - ok 22:40:11.0484 4324 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:40:11.0499 4324 amdide - ok 22:40:11.0515 4324 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:40:11.0562 4324 AmdK8 - ok 22:40:11.0577 4324 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:40:11.0608 4324 AmdPPM - ok 22:40:11.0655 4324 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:40:11.0655 4324 amdsata - ok 22:40:11.0686 4324 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:40:11.0702 4324 amdsbs - ok 22:40:11.0718 4324 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:40:11.0733 4324 amdxata - ok 22:40:11.0780 4324 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:40:11.0874 4324 AppID - ok 22:40:11.0889 4324 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:40:11.0936 4324 AppIDSvc - ok 22:40:11.0967 4324 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:40:12.0014 4324 Appinfo - ok 22:40:12.0108 4324 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:40:12.0123 4324 Apple Mobile Device - ok 22:40:12.0186 4324 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:40:12.0217 4324 arc - ok 22:40:12.0217 4324 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:40:12.0232 4324 arcsas - ok 22:40:12.0248 4324 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:40:12.0279 4324 AsyncMac - ok 22:40:12.0326 4324 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:40:12.0342 4324 atapi - ok 22:40:12.0420 4324 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:40:12.0482 4324 athr - ok 22:40:12.0544 4324 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:40:12.0560 4324 atksgt ( UnsignedFile.Multi.Generic ) - warning 22:40:12.0560 4324 atksgt - detected UnsignedFile.Multi.Generic (1) 22:40:12.0622 4324 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:40:12.0654 4324 AudioEndpointBuilder - ok 22:40:12.0669 4324 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:40:12.0700 4324 Audiosrv - ok 22:40:12.0732 4324 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:40:12.0778 4324 AxInstSV - ok 22:40:12.0856 4324 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:40:12.0888 4324 b06bdrv - ok 22:40:12.0919 4324 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:40:12.0950 4324 b57nd60x - ok 22:40:13.0012 4324 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:40:13.0028 4324 BcmSqlStartupSvc - ok 22:40:13.0059 4324 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:40:13.0090 4324 BDESVC - ok 22:40:13.0122 4324 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:40:13.0153 4324 Beep - ok 22:40:13.0200 4324 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:40:13.0246 4324 BFE - ok 22:40:13.0293 4324 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:40:13.0324 4324 BITS - ok 22:40:13.0340 4324 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:40:13.0371 4324 blbdrive - ok 22:40:13.0465 4324 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:40:13.0480 4324 Bonjour Service - ok 22:40:13.0512 4324 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:40:13.0574 4324 bowser - ok 22:40:13.0590 4324 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:40:13.0668 4324 BrFiltLo - ok 22:40:13.0683 4324 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:40:13.0714 4324 BrFiltUp - ok 22:40:13.0730 4324 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:40:13.0792 4324 BridgeMP - ok 22:40:13.0824 4324 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:40:13.0855 4324 Browser - ok 22:40:13.0886 4324 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:40:13.0902 4324 Brserid - ok 22:40:13.0933 4324 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:40:13.0964 4324 BrSerWdm - ok 22:40:13.0980 4324 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:40:14.0011 4324 BrUsbMdm - ok 22:40:14.0026 4324 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:40:14.0073 4324 BrUsbSer - ok 22:40:14.0089 4324 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:40:14.0104 4324 BTHMODEM - ok 22:40:14.0136 4324 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:40:14.0182 4324 bthserv - ok 22:40:14.0245 4324 catchme - ok 22:40:14.0338 4324 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:40:14.0354 4324 ccEvtMgr - ok 22:40:14.0354 4324 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:40:14.0370 4324 ccSetMgr - ok 22:40:14.0401 4324 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:40:14.0432 4324 cdfs - ok 22:40:14.0463 4324 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:40:14.0479 4324 cdrom - ok 22:40:14.0510 4324 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:40:14.0572 4324 CertPropSvc - ok 22:40:14.0604 4324 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:40:14.0635 4324 circlass - ok 22:40:14.0666 4324 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:40:14.0682 4324 CLFS - ok 22:40:14.0760 4324 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:40:14.0775 4324 clr_optimization_v2.0.50727_32 - ok 22:40:14.0838 4324 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:40:14.0853 4324 clr_optimization_v4.0.30319_32 - ok 22:40:14.0869 4324 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:40:14.0916 4324 CmBatt - ok 22:40:14.0947 4324 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:40:14.0962 4324 cmdide - ok 22:40:15.0009 4324 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:40:15.0056 4324 CNG - ok 22:40:15.0072 4324 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:40:15.0072 4324 Compbatt - ok 22:40:15.0103 4324 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:40:15.0150 4324 CompositeBus - ok 22:40:15.0150 4324 COMSysApp - ok 22:40:15.0181 4324 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:40:15.0196 4324 crcdisk - ok 22:40:15.0243 4324 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:40:15.0274 4324 CryptSvc - ok 22:40:15.0306 4324 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:40:15.0321 4324 ctxusbm - ok 22:40:15.0384 4324 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:40:15.0415 4324 DcomLaunch - ok 22:40:15.0446 4324 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:40:15.0493 4324 defragsvc - ok 22:40:15.0540 4324 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:40:15.0602 4324 DfsC - ok 22:40:15.0633 4324 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:40:15.0664 4324 Dhcp - ok 22:40:15.0696 4324 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:40:15.0727 4324 discache - ok 22:40:15.0742 4324 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:40:15.0758 4324 Disk - ok 22:40:15.0805 4324 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:40:15.0867 4324 Dnscache - ok 22:40:15.0898 4324 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:40:15.0945 4324 dot3svc - ok 22:40:15.0992 4324 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:40:16.0008 4324 Dot4 - ok 22:40:16.0054 4324 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:40:16.0086 4324 Dot4Print - ok 22:40:16.0101 4324 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:40:16.0148 4324 dot4usb - ok 22:40:16.0195 4324 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:40:16.0242 4324 DPS - ok 22:40:16.0273 4324 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:40:16.0288 4324 drmkaud - ok 22:40:16.0351 4324 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:40:16.0382 4324 dtsoftbus01 - ok 22:40:16.0444 4324 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:40:16.0460 4324 DXGKrnl - ok 22:40:16.0491 4324 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:40:16.0538 4324 EapHost - ok 22:40:16.0694 4324 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:40:16.0756 4324 ebdrv - ok 22:40:16.0850 4324 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:40:16.0881 4324 eeCtrl - ok 22:40:16.0975 4324 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:40:16.0990 4324 EFS - ok 22:40:17.0084 4324 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:40:17.0131 4324 ehRecvr - ok 22:40:17.0162 4324 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:40:17.0193 4324 ehSched - ok 22:40:17.0271 4324 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:40:17.0302 4324 elxstor - ok 22:40:17.0380 4324 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:40:17.0396 4324 EraserUtilRebootDrv - ok 22:40:17.0427 4324 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:40:17.0458 4324 ErrDev - ok 22:40:17.0521 4324 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:40:17.0568 4324 EventSystem - ok 22:40:17.0599 4324 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:40:17.0661 4324 exfat - ok 22:40:17.0692 4324 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:40:17.0739 4324 fastfat - ok 22:40:17.0786 4324 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:40:17.0817 4324 Fax - ok 22:40:17.0848 4324 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:40:17.0880 4324 fdc - ok 22:40:17.0911 4324 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:40:17.0958 4324 fdPHost - ok 22:40:17.0973 4324 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:40:18.0020 4324 FDResPub - ok 22:40:18.0051 4324 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:40:18.0051 4324 FileInfo - ok 22:40:18.0082 4324 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:40:18.0129 4324 Filetrace - ok 22:40:18.0145 4324 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:40:18.0192 4324 flpydisk - ok 22:40:18.0207 4324 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:40:18.0223 4324 FltMgr - ok 22:40:18.0285 4324 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:40:18.0332 4324 FontCache - ok 22:40:18.0394 4324 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:40:18.0410 4324 FontCache3.0.0.0 - ok 22:40:18.0426 4324 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:40:18.0441 4324 FsDepends - ok 22:40:18.0472 4324 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:40:18.0488 4324 fssfltr - ok 22:40:18.0660 4324 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:40:18.0691 4324 fsssvc - ok 22:40:18.0816 4324 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:40:18.0831 4324 Fs_Rec - ok 22:40:18.0862 4324 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:40:18.0878 4324 fvevol - ok 22:40:18.0909 4324 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:40:18.0925 4324 gagp30kx - ok 22:40:18.0956 4324 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:40:18.0972 4324 GEARAspiWDM - ok 22:40:19.0034 4324 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:40:19.0096 4324 gpsvc - ok 22:40:19.0190 4324 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:40:19.0206 4324 gupdate - ok 22:40:19.0206 4324 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:40:19.0221 4324 gupdatem - ok 22:40:19.0252 4324 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:40:19.0268 4324 gusvc - ok 22:40:19.0299 4324 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:40:19.0330 4324 hcw85cir - ok 22:40:19.0377 4324 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:40:19.0408 4324 HdAudAddService - ok 22:40:19.0440 4324 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:40:19.0471 4324 HDAudBus - ok 22:40:19.0518 4324 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:40:19.0549 4324 HidBatt - ok 22:40:19.0580 4324 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:40:19.0627 4324 HidBth - ok 22:40:19.0642 4324 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:40:19.0689 4324 HidIr - ok 22:40:19.0720 4324 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:40:19.0767 4324 hidserv - ok 22:40:19.0798 4324 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:40:19.0830 4324 HidUsb - ok 22:40:19.0876 4324 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:40:19.0908 4324 hkmsvc - ok 22:40:19.0939 4324 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:40:19.0986 4324 HomeGroupListener - ok 22:40:20.0017 4324 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:40:20.0064 4324 HomeGroupProvider - ok 22:40:20.0079 4324 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:40:20.0095 4324 HpSAMD - ok 22:40:20.0157 4324 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:40:20.0204 4324 HTTP - ok 22:40:20.0220 4324 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:40:20.0235 4324 hwpolicy - ok 22:40:20.0266 4324 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:40:20.0298 4324 i8042prt - ok 22:40:20.0360 4324 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:40:20.0391 4324 IAANTMON - ok 22:40:20.0438 4324 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:40:20.0454 4324 iaStor - ok 22:40:20.0485 4324 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:40:20.0516 4324 iaStorV - ok 22:40:20.0625 4324 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:40:20.0656 4324 idsvc - ok 22:40:21.0062 4324 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:40:21.0265 4324 igfx - ok 22:40:21.0390 4324 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:40:21.0405 4324 iirsp - ok 22:40:21.0468 4324 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:40:21.0530 4324 IKEEXT - ok 22:40:21.0670 4324 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:40:21.0717 4324 IntcAzAudAddService - ok 22:40:21.0842 4324 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:40:21.0858 4324 intelide - ok 22:40:21.0889 4324 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:40:21.0920 4324 intelppm - ok 22:40:21.0967 4324 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:40:22.0014 4324 IPBusEnum - ok 22:40:22.0029 4324 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:40:22.0076 4324 IpFilterDriver - ok 22:40:22.0138 4324 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:40:22.0170 4324 iphlpsvc - ok 22:40:22.0201 4324 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:40:22.0232 4324 IPMIDRV - ok 22:40:22.0263 4324 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:40:22.0294 4324 IPNAT - ok 22:40:22.0388 4324 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:40:22.0404 4324 iPod Service - ok 22:40:22.0435 4324 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:40:22.0466 4324 IRENUM - ok 22:40:22.0497 4324 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:40:22.0513 4324 isapnp - ok 22:40:22.0544 4324 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:40:22.0560 4324 iScsiPrt - ok 22:40:22.0591 4324 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:40:22.0606 4324 kbdclass - ok 22:40:22.0622 4324 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:40:22.0669 4324 kbdhid - ok 22:40:22.0731 4324 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:22.0747 4324 KeyIso - ok 22:40:22.0747 4324 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:40:22.0762 4324 KSecDD - ok 22:40:22.0778 4324 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:40:22.0794 4324 KSecPkg - ok 22:40:22.0825 4324 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:40:22.0856 4324 KtmRm - ok 22:40:22.0887 4324 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:40:22.0934 4324 LanmanServer - ok 22:40:22.0965 4324 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:40:23.0012 4324 LanmanWorkstation - ok 22:40:23.0059 4324 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:40:23.0074 4324 lirsgt ( UnsignedFile.Multi.Generic ) - warning 22:40:23.0074 4324 lirsgt - detected UnsignedFile.Multi.Generic (1) 22:40:23.0293 4324 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:40:23.0340 4324 LiveUpdate - ok 22:40:23.0449 4324 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:40:23.0511 4324 lltdio - ok 22:40:23.0558 4324 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:40:23.0605 4324 lltdsvc - ok 22:40:23.0620 4324 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:40:23.0683 4324 lmhosts - ok 22:40:23.0698 4324 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:40:23.0714 4324 LSI_FC - ok 22:40:23.0745 4324 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:40:23.0761 4324 LSI_SAS - ok 22:40:23.0792 4324 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:40:23.0808 4324 LSI_SAS2 - ok 22:40:23.0808 4324 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:40:23.0823 4324 LSI_SCSI - ok 22:40:23.0854 4324 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:40:23.0901 4324 luafv - ok 22:40:23.0979 4324 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:40:24.0010 4324 lxeeCATSCustConnectService - ok 22:40:24.0010 4324 lxee_device - ok 22:40:24.0042 4324 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:40:24.0057 4324 Mcx2Svc - ok 22:40:24.0088 4324 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:40:24.0104 4324 megasas - ok 22:40:24.0120 4324 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:40:24.0135 4324 MegaSR - ok 22:40:24.0229 4324 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:40:24.0244 4324 Microsoft Office Groove Audit Service - ok 22:40:24.0276 4324 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:40:24.0307 4324 MMCSS - ok 22:40:24.0307 4324 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:40:24.0354 4324 Modem - ok 22:40:24.0385 4324 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:40:24.0416 4324 monitor - ok 22:40:24.0463 4324 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:40:24.0478 4324 mouclass - ok 22:40:24.0494 4324 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:40:24.0525 4324 mouhid - ok 22:40:24.0556 4324 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:40:24.0572 4324 mountmgr - ok 22:40:24.0603 4324 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:40:24.0619 4324 mpio - ok 22:40:24.0650 4324 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:40:24.0697 4324 mpsdrv - ok 22:40:24.0759 4324 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:40:24.0822 4324 MpsSvc - ok 22:40:24.0868 4324 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:40:24.0884 4324 MRxDAV - ok 22:40:24.0915 4324 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:40:24.0978 4324 mrxsmb - ok 22:40:25.0009 4324 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:40:25.0040 4324 mrxsmb10 - ok 22:40:25.0071 4324 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:40:25.0118 4324 mrxsmb20 - ok 22:40:25.0149 4324 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:40:25.0165 4324 msahci - ok 22:40:25.0196 4324 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:40:25.0212 4324 msdsm - ok 22:40:25.0243 4324 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:40:25.0258 4324 MSDTC - ok 22:40:25.0290 4324 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:40:25.0336 4324 Msfs - ok 22:40:25.0368 4324 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:40:25.0430 4324 mshidkmdf - ok 22:40:25.0461 4324 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:40:25.0477 4324 msisadrv - ok 22:40:25.0508 4324 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:40:25.0539 4324 MSiSCSI - ok 22:40:25.0539 4324 msiserver - ok 22:40:25.0555 4324 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:40:25.0602 4324 MSKSSRV - ok 22:40:25.0633 4324 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:40:25.0695 4324 MSPCLOCK - ok 22:40:25.0711 4324 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:40:25.0742 4324 MSPQM - ok 22:40:25.0758 4324 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:40:25.0773 4324 MsRPC - ok 22:40:25.0804 4324 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:40:25.0836 4324 mssmbios - ok 22:40:25.0929 4324 MSSQL$MSSMLBIZ - ok 22:40:25.0960 4324 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:40:25.0976 4324 MSSQLServerADHelper - ok 22:40:25.0992 4324 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:40:26.0023 4324 MSTEE - ok 22:40:26.0038 4324 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:40:26.0070 4324 MTConfig - ok 22:40:26.0085 4324 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:40:26.0101 4324 Mup - ok 22:40:26.0148 4324 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:40:26.0194 4324 napagent - ok 22:40:26.0226 4324 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:40:26.0272 4324 NativeWifiP - ok 22:40:26.0382 4324 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:40:26.0397 4324 NAVENG - ok 22:40:26.0475 4324 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:40:26.0506 4324 NAVEX15 - ok 22:40:26.0662 4324 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:40:26.0709 4324 NDIS - ok 22:40:26.0740 4324 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:40:26.0772 4324 NdisCap - ok 22:40:26.0787 4324 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:40:26.0834 4324 NdisTapi - ok 22:40:26.0865 4324 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:40:26.0928 4324 Ndisuio - ok 22:40:26.0974 4324 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:40:27.0037 4324 NdisWan - ok 22:40:27.0068 4324 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:40:27.0099 4324 NDProxy - ok 22:40:27.0115 4324 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:40:27.0162 4324 NetBIOS - ok 22:40:27.0193 4324 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:40:27.0240 4324 NetBT - ok 22:40:27.0271 4324 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:27.0286 4324 Netlogon - ok 22:40:27.0318 4324 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:40:27.0349 4324 Netman - ok 22:40:27.0396 4324 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:40:27.0442 4324 netprofm - ok 22:40:27.0505 4324 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:40:27.0536 4324 NetTcpPortSharing - ok 22:40:27.0552 4324 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:40:27.0567 4324 nfrd960 - ok 22:40:27.0614 4324 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:40:27.0676 4324 NlaSvc - ok 22:40:27.0692 4324 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:40:27.0739 4324 Npfs - ok 22:40:27.0786 4324 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:40:27.0817 4324 nsi - ok 22:40:27.0832 4324 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:40:27.0879 4324 nsiproxy - ok 22:40:27.0973 4324 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:40:28.0004 4324 Ntfs - ok 22:40:28.0020 4324 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:40:28.0051 4324 Null - ok 22:40:28.0082 4324 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:40:28.0098 4324 nvraid - ok 22:40:28.0129 4324 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:40:28.0144 4324 nvstor - ok 22:40:28.0160 4324 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:40:28.0176 4324 nv_agp - ok 22:40:28.0238 4324 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:40:28.0254 4324 OberonGameConsoleService - ok 22:40:28.0347 4324 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:40:28.0378 4324 odserv - ok 22:40:28.0394 4324 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:40:28.0410 4324 ohci1394 - ok 22:40:28.0441 4324 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:40:28.0456 4324 ose - ok 22:40:28.0488 4324 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:40:28.0534 4324 p2pimsvc - ok 22:40:28.0566 4324 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:40:28.0581 4324 p2psvc - ok 22:40:28.0612 4324 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:40:28.0628 4324 Parport - ok 22:40:28.0659 4324 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:40:28.0675 4324 partmgr - ok 22:40:28.0706 4324 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:40:28.0737 4324 Parvdm - ok 22:40:28.0784 4324 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:40:28.0815 4324 PcaSvc - ok 22:40:28.0862 4324 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:40:28.0893 4324 pci - ok 22:40:28.0924 4324 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:40:28.0924 4324 pciide - ok 22:40:28.0956 4324 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:40:28.0971 4324 pcmcia - ok 22:40:28.0987 4324 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:40:29.0002 4324 pcw - ok 22:40:29.0034 4324 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:40:29.0080 4324 PEAUTH - ok 22:40:29.0190 4324 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:40:29.0236 4324 pla - ok 22:40:29.0361 4324 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:40:29.0424 4324 PlugPlay - ok 22:40:29.0455 4324 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:40:29.0502 4324 PNRPAutoReg - ok 22:40:29.0533 4324 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:40:29.0564 4324 PNRPsvc - ok 22:40:29.0595 4324 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:40:29.0642 4324 PolicyAgent - ok 22:40:29.0720 4324 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:40:29.0782 4324 Power - ok 22:40:29.0829 4324 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:40:29.0876 4324 PptpMiniport - ok 22:40:29.0907 4324 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:40:29.0923 4324 Processor - ok 22:40:29.0954 4324 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:40:30.0001 4324 ProfSvc - ok 22:40:30.0032 4324 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:30.0048 4324 ProtectedStorage - ok 22:40:30.0094 4324 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:40:30.0110 4324 Psched - ok 22:40:30.0188 4324 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:40:30.0219 4324 ql2300 - ok 22:40:30.0313 4324 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:40:30.0328 4324 ql40xx - ok 22:40:30.0360 4324 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:40:30.0406 4324 QWAVE - ok 22:40:30.0438 4324 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:40:30.0453 4324 QWAVEdrv - ok 22:40:30.0469 4324 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:40:30.0500 4324 RasAcd - ok 22:40:30.0516 4324 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:40:30.0562 4324 RasAgileVpn - ok 22:40:30.0578 4324 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:40:30.0609 4324 RasAuto - ok 22:40:30.0625 4324 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:40:30.0687 4324 Rasl2tp - ok 22:40:30.0734 4324 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:40:30.0781 4324 RasMan - ok 22:40:30.0796 4324 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:40:30.0828 4324 RasPppoe - ok 22:40:30.0874 4324 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:40:30.0952 4324 RasSstp - ok 22:40:30.0984 4324 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:40:31.0015 4324 rdbss - ok 22:40:31.0030 4324 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:40:31.0062 4324 rdpbus - ok 22:40:31.0108 4324 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:40:31.0140 4324 RDPCDD - ok 22:40:31.0171 4324 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:40:31.0202 4324 RDPENCDD - ok 22:40:31.0249 4324 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:40:31.0264 4324 RDPREFMP - ok 22:40:31.0311 4324 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:40:31.0374 4324 RDPWD - ok 22:40:31.0405 4324 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:40:31.0420 4324 rdyboost - ok 22:40:31.0436 4324 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:40:31.0483 4324 RemoteAccess - ok 22:40:31.0530 4324 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:40:31.0545 4324 RemoteRegistry - ok 22:40:31.0561 4324 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:40:31.0608 4324 RpcEptMapper - ok 22:40:31.0639 4324 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:40:31.0670 4324 RpcLocator - ok 22:40:31.0718 4324 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:40:31.0749 4324 RpcSs - ok 22:40:31.0796 4324 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:40:31.0843 4324 rspndr - ok 22:40:31.0874 4324 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:40:31.0921 4324 RTL8167 - ok 22:40:31.0952 4324 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:40:32.0014 4324 SABI - ok 22:40:32.0045 4324 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:32.0061 4324 SamSs - ok 22:40:32.0092 4324 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:40:32.0108 4324 sbp2port - ok 22:40:32.0139 4324 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:40:32.0170 4324 SCardSvr - ok 22:40:32.0201 4324 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:40:32.0248 4324 scfilter - ok 22:40:32.0326 4324 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:40:32.0357 4324 Schedule - ok 22:40:32.0389 4324 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:40:32.0420 4324 SCPolicySvc - ok 22:40:32.0451 4324 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:40:32.0482 4324 SDRSVC - ok 22:40:32.0513 4324 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:40:32.0560 4324 secdrv - ok 22:40:32.0591 4324 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:40:32.0623 4324 seclogon - ok 22:40:32.0638 4324 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:40:32.0669 4324 SENS - ok 22:40:32.0716 4324 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:40:32.0732 4324 SensrSvc - ok 22:40:32.0747 4324 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:40:32.0779 4324 Serenum - ok 22:40:32.0794 4324 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:40:32.0810 4324 Serial - ok 22:40:32.0857 4324 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:40:32.0888 4324 sermouse - ok 22:40:32.0935 4324 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:40:33.0010 4324 SessionEnv - ok 22:40:33.0041 4324 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:40:33.0088 4324 sffdisk - ok 22:40:33.0103 4324 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:40:33.0119 4324 sffp_mmc - ok 22:40:33.0166 4324 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:40:33.0181 4324 sffp_sd - ok 22:40:33.0197 4324 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:40:33.0228 4324 sfloppy - ok 22:40:33.0259 4324 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:40:33.0306 4324 SharedAccess - ok 22:40:33.0353 4324 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:40:33.0384 4324 ShellHWDetection - ok 22:40:33.0415 4324 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:40:33.0431 4324 sisagp - ok 22:40:33.0462 4324 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:40:33.0478 4324 SiSRaid2 - ok 22:40:33.0493 4324 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:40:33.0493 4324 SiSRaid4 - ok 22:40:33.0524 4324 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:40:33.0571 4324 Smb - ok 22:40:33.0758 4324 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:40:33.0821 4324 SmcService - ok 22:40:33.0852 4324 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:40:33.0868 4324 SNAC - ok 22:40:33.0961 4324 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:40:33.0992 4324 SNMPTRAP - ok 22:40:34.0189 4324 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:40:34.0205 4324 SPBBCDrv - ok 22:40:34.0270 4324 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:40:34.0301 4324 spldr - ok 22:40:34.0384 4324 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:40:34.0418 4324 Spooler - ok 22:40:34.0576 4324 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:40:34.0641 4324 sppsvc - ok 22:40:34.0767 4324 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:40:34.0824 4324 sppuinotify - ok 22:40:34.0904 4324 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:40:34.0934 4324 SpyHunter 4 Service - ok 22:40:35.0077 4324 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:40:35.0093 4324 SQLBrowser - ok 22:40:35.0124 4324 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:40:35.0137 4324 SQLWriter - ok 22:40:35.0190 4324 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:40:35.0193 4324 SRTSP - ok 22:40:35.0224 4324 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:40:35.0263 4324 SRTSPL - ok 22:40:35.0278 4324 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:40:35.0293 4324 SRTSPX - ok 22:40:35.0312 4324 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:40:35.0343 4324 srv - ok 22:40:35.0394 4324 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:40:35.0410 4324 srv2 - ok 22:40:35.0448 4324 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:40:35.0478 4324 srvnet - ok 22:40:35.0514 4324 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:40:35.0546 4324 SSDPSRV - ok 22:40:35.0571 4324 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:40:35.0592 4324 SstpSvc - ok 22:40:35.0623 4324 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:40:35.0639 4324 stexstor - ok 22:40:35.0685 4324 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:40:35.0716 4324 StiSvc - ok 22:40:35.0747 4324 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:40:35.0763 4324 swenum - ok 22:40:35.0778 4324 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:40:35.0810 4324 swprv - ok 22:40:36.0321 4324 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:40:36.0373 4324 Symantec AntiVirus - ok 22:40:36.0788 4324 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:40:36.0811 4324 SymEvent - ok 22:40:36.0858 4324 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:40:36.0876 4324 SYMREDRV - ok 22:40:36.0951 4324 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:40:36.0966 4324 SYMTDI - ok 22:40:37.0021 4324 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:40:37.0036 4324 SynTP - ok 22:40:37.0130 4324 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:40:37.0177 4324 SysMain - ok 22:40:37.0512 4324 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:40:37.0527 4324 TabletInputService - ok 22:40:37.0574 4324 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:40:37.0605 4324 TapiSrv - ok 22:40:37.0636 4324 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:40:37.0683 4324 TBS - ok 22:40:37.0808 4324 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:40:37.0839 4324 Tcpip - ok 22:40:37.0855 4324 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:40:37.0886 4324 TCPIP6 - ok 22:40:37.0933 4324 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:40:37.0980 4324 tcpipreg - ok 22:40:38.0026 4324 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:40:38.0073 4324 TDPIPE - ok 22:40:38.0120 4324 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:40:38.0136 4324 TDTCP - ok 22:40:38.0214 4324 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:40:38.0229 4324 tdx - ok 22:40:38.0510 4324 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:40:38.0557 4324 TeamViewer6 - ok 22:40:38.0697 4324 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:40:38.0744 4324 TermDD - ok 22:40:38.0791 4324 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:40:38.0822 4324 TermService - ok 22:40:38.0853 4324 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:40:38.0900 4324 Themes - ok 22:40:38.0931 4324 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:40:38.0962 4324 THREADORDER - ok 22:40:38.0978 4324 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:40:39.0025 4324 TrkWks - ok 22:40:39.0103 4324 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:40:39.0134 4324 TrustedInstaller - ok 22:40:39.0165 4324 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:40:39.0196 4324 tssecsrv - ok 22:40:39.0243 4324 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:40:39.0259 4324 TsUsbFlt - ok 22:40:39.0290 4324 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:40:39.0337 4324 tunnel - ok 22:40:39.0368 4324 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:40:39.0384 4324 uagp35 - ok 22:40:39.0430 4324 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:40:39.0462 4324 udfs - ok 22:40:39.0477 4324 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:40:39.0508 4324 UI0Detect - ok 22:40:39.0555 4324 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:40:39.0571 4324 uliagpkx - ok 22:40:39.0602 4324 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:40:39.0618 4324 umbus - ok 22:40:39.0649 4324 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:40:39.0680 4324 UmPass - ok 22:40:39.0711 4324 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:40:39.0742 4324 upnphost - ok 22:40:39.0774 4324 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:40:39.0805 4324 USBAAPL - ok 22:40:39.0852 4324 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:40:39.0914 4324 usbccgp - ok 22:40:39.0945 4324 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:40:39.0992 4324 usbcir - ok 22:40:40.0008 4324 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:40:40.0023 4324 usbehci - ok 22:40:40.0054 4324 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:40:40.0086 4324 usbhub - ok 22:40:40.0117 4324 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:40:40.0148 4324 usbohci - ok 22:40:40.0179 4324 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:40:40.0195 4324 usbprint - ok 22:40:40.0226 4324 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:40:40.0242 4324 usbscan - ok 22:40:40.0257 4324 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:40:40.0320 4324 USBSTOR - ok 22:40:40.0351 4324 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:40:40.0382 4324 usbuhci - ok 22:40:40.0429 4324 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:40:40.0476 4324 usbvideo - ok 22:40:40.0522 4324 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:40:40.0569 4324 UxSms - ok 22:40:40.0600 4324 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:40:40.0616 4324 VaultSvc - ok 22:40:40.0647 4324 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:40:40.0663 4324 vdrvroot - ok 22:40:40.0725 4324 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:40:40.0756 4324 vds - ok 22:40:40.0788 4324 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:40:40.0803 4324 vga - ok 22:40:40.0819 4324 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:40:40.0866 4324 VgaSave - ok 22:40:40.0912 4324 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:40:40.0928 4324 vhdmp - ok 22:40:40.0975 4324 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:40:40.0975 4324 viaagp - ok 22:40:40.0990 4324 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:40:41.0006 4324 ViaC7 - ok 22:40:41.0037 4324 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:40:41.0053 4324 viaide - ok 22:40:41.0084 4324 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:40:41.0100 4324 volmgr - ok 22:40:41.0131 4324 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:40:41.0146 4324 volmgrx - ok 22:40:41.0193 4324 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:40:41.0209 4324 volsnap - ok 22:40:41.0224 4324 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:40:41.0240 4324 vsmraid - ok 22:40:41.0318 4324 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:40:41.0380 4324 VSS - ok 22:40:41.0412 4324 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:40:41.0443 4324 vwifibus - ok 22:40:41.0474 4324 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:40:41.0490 4324 vwififlt - ok 22:40:41.0505 4324 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:40:41.0552 4324 vwifimp - ok 22:40:41.0599 4324 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:40:41.0630 4324 W32Time - ok 22:40:41.0661 4324 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:40:41.0708 4324 WacomPen - ok 22:40:41.0739 4324 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:40:41.0770 4324 WANARP - ok 22:40:41.0770 4324 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:40:41.0802 4324 Wanarpv6 - ok 22:40:41.0880 4324 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:40:41.0911 4324 WatAdminSvc - ok 22:40:41.0989 4324 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:40:42.0036 4324 wbengine - ok 22:40:42.0082 4324 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:40:42.0129 4324 WbioSrvc - ok 22:40:42.0176 4324 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:40:42.0223 4324 wcncsvc - ok 22:40:42.0238 4324 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:40:42.0270 4324 WcsPlugInService - ok 22:40:42.0332 4324 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:40:42.0348 4324 Wd - ok 22:40:42.0379 4324 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:40:42.0410 4324 Wdf01000 - ok 22:40:42.0426 4324 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:40:42.0472 4324 WdiServiceHost - ok 22:40:42.0472 4324 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:40:42.0488 4324 WdiSystemHost - ok 22:40:42.0535 4324 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:40:42.0582 4324 WebClient - ok 22:40:42.0597 4324 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:40:42.0644 4324 Wecsvc - ok 22:40:42.0675 4324 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:40:42.0722 4324 wercplsupport - ok 22:40:42.0753 4324 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:40:42.0784 4324 WerSvc - ok 22:40:42.0800 4324 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:40:42.0862 4324 WfpLwf - ok 22:40:42.0878 4324 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:40:42.0894 4324 WIMMount - ok 22:40:42.0972 4324 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:40:43.0018 4324 WinDefend - ok 22:40:43.0034 4324 WinHttpAutoProxySvc - ok 22:40:43.0096 4324 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:40:43.0143 4324 Winmgmt - ok 22:40:43.0221 4324 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:40:43.0268 4324 WinRM - ok 22:40:43.0330 4324 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:40:43.0377 4324 WinUsb - ok 22:40:43.0471 4324 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:40:43.0518 4324 Wlansvc - ok 22:40:43.0658 4324 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:40:43.0720 4324 wlidsvc - ok 22:40:43.0830 4324 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:40:43.0876 4324 WmiAcpi - ok 22:40:43.0954 4324 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:40:43.0986 4324 wmiApSrv - ok 22:40:44.0110 4324 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:40:44.0142 4324 WMPNetworkSvc - ok 22:40:44.0173 4324 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:40:44.0204 4324 WPCSvc - ok 22:40:44.0235 4324 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:40:44.0266 4324 WPDBusEnum - ok 22:40:44.0329 4324 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:40:44.0360 4324 ws2ifsl - ok 22:40:44.0391 4324 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:40:44.0407 4324 wscsvc - ok 22:40:44.0407 4324 WSearch - ok 22:40:44.0516 4324 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:40:44.0563 4324 wuauserv - ok 22:40:44.0688 4324 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:40:44.0750 4324 WudfPf - ok 22:40:44.0766 4324 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:40:44.0797 4324 WUDFRd - ok 22:40:44.0828 4324 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:40:44.0875 4324 wudfsvc - ok 22:40:44.0922 4324 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:40:44.0953 4324 WwanSvc - ok 22:40:44.0984 4324 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:40:45.0327 4324 \Device\Harddisk0\DR0 - ok 22:40:45.0327 4324 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:40:45.0327 4324 \Device\Harddisk0\DR0\Partition0 - ok 22:40:45.0358 4324 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:40:45.0358 4324 \Device\Harddisk0\DR0\Partition1 - ok 22:40:45.0390 4324 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:40:45.0390 4324 \Device\Harddisk0\DR0\Partition2 - ok 22:40:45.0390 4324 ============================================================ 22:40:45.0390 4324 Scan finished 22:40:45.0390 4324 ============================================================ 22:40:45.0405 5164 Detected object count: 2 22:40:45.0405 5164 Actual detected object count: 2 22:41:23.0208 5164 atksgt ( UnsignedFile.Multi.Generic ) - skipped by user 22:41:23.0208 5164 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Skip 22:41:23.0224 5164 lirsgt ( UnsignedFile.Multi.Generic ) - skipped by user 22:41:23.0224 5164 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip 22:41:50.0368 4036 ============================================================ 22:41:50.0368 4036 Scan started 22:41:50.0368 4036 Mode: Manual; SigCheck; TDLFS; 22:41:50.0368 4036 ============================================================ 22:41:50.0618 4036 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys 22:41:50.0664 4036 1394ohci - ok 22:41:50.0711 4036 ACPI (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys 22:41:50.0727 4036 ACPI - ok 22:41:50.0742 4036 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys 22:41:50.0758 4036 AcpiPmi - ok 22:41:50.0789 4036 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys 22:41:50.0820 4036 adp94xx - ok 22:41:50.0836 4036 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys 22:41:50.0852 4036 adpahci - ok 22:41:50.0883 4036 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys 22:41:50.0883 4036 adpu320 - ok 22:41:50.0914 4036 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll 22:41:50.0930 4036 AeLookupSvc - ok 22:41:50.0976 4036 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys 22:41:50.0992 4036 AFD - ok 22:41:51.0023 4036 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys 22:41:51.0023 4036 agp440 - ok 22:41:51.0054 4036 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys 22:41:51.0070 4036 aic78xx - ok 22:41:51.0086 4036 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe 22:41:51.0101 4036 ALG - ok 22:41:51.0132 4036 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys 22:41:51.0148 4036 aliide - ok 22:41:51.0164 4036 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys 22:41:51.0179 4036 amdagp - ok 22:41:51.0210 4036 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys 22:41:51.0210 4036 amdide - ok 22:41:51.0226 4036 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys 22:41:51.0242 4036 AmdK8 - ok 22:41:51.0288 4036 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys 22:41:51.0304 4036 AmdPPM - ok 22:41:51.0335 4036 amdsata (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys 22:41:51.0335 4036 amdsata - ok 22:41:51.0382 4036 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys 22:41:51.0398 4036 amdsbs - ok 22:41:51.0413 4036 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys 22:41:51.0429 4036 amdxata - ok 22:41:51.0460 4036 AppID (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys 22:41:51.0491 4036 AppID - ok 22:41:51.0507 4036 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll 22:41:51.0538 4036 AppIDSvc - ok 22:41:51.0569 4036 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll 22:41:51.0600 4036 Appinfo - ok 22:41:51.0678 4036 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 22:41:51.0710 4036 Apple Mobile Device - ok 22:41:51.0741 4036 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys 22:41:51.0772 4036 arc - ok 22:41:51.0788 4036 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys 22:41:51.0803 4036 arcsas - ok 22:41:51.0819 4036 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys 22:41:51.0850 4036 AsyncMac - ok 22:41:51.0881 4036 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys 22:41:51.0897 4036 atapi - ok 22:41:51.0959 4036 athr (de0fbcccd6af0f0e7bf12e8d041cc48f) C:\windows\system32\DRIVERS\athr.sys 22:41:51.0990 4036 athr - ok 22:41:52.0037 4036 atksgt (6e996cf8459a2594e0e9609d0e34d41f) C:\windows\system32\DRIVERS\atksgt.sys 22:41:52.0037 4036 atksgt ( UnsignedFile.Multi.Generic ) - warning 22:41:52.0037 4036 atksgt - detected UnsignedFile.Multi.Generic (1) 22:41:52.0334 4036 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:41:52.0380 4036 AudioEndpointBuilder - ok 22:41:52.0380 4036 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll 22:41:52.0412 4036 Audiosrv - ok 22:41:52.0443 4036 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll 22:41:52.0458 4036 AxInstSV - ok 22:41:52.0505 4036 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys 22:41:52.0521 4036 b06bdrv - ok 22:41:52.0536 4036 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys 22:41:52.0552 4036 b57nd60x - ok 22:41:52.0599 4036 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe 22:41:52.0614 4036 BcmSqlStartupSvc - ok 22:41:52.0646 4036 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll 22:41:52.0661 4036 BDESVC - ok 22:41:52.0724 4036 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys 22:41:52.0755 4036 Beep - ok 22:41:52.0802 4036 BFE (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll 22:41:52.0833 4036 BFE - ok 22:41:52.0864 4036 BITS (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll 22:41:52.0895 4036 BITS - ok 22:41:52.0911 4036 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys 22:41:52.0926 4036 blbdrive - ok 22:41:52.0989 4036 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 22:41:53.0020 4036 Bonjour Service - ok 22:41:53.0051 4036 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys 22:41:53.0067 4036 bowser - ok 22:41:53.0082 4036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys 22:41:53.0098 4036 BrFiltLo - ok 22:41:53.0129 4036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys 22:41:53.0129 4036 BrFiltUp - ok 22:41:53.0145 4036 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys 22:41:53.0176 4036 BridgeMP - ok 22:41:53.0223 4036 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll 22:41:53.0238 4036 Browser - ok 22:41:53.0285 4036 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys 22:41:53.0301 4036 Brserid - ok 22:41:53.0301 4036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys 22:41:53.0316 4036 BrSerWdm - ok 22:41:53.0348 4036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys 22:41:53.0363 4036 BrUsbMdm - ok 22:41:53.0394 4036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys 22:41:53.0394 4036 BrUsbSer - ok 22:41:53.0410 4036 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys 22:41:53.0426 4036 BTHMODEM - ok 22:41:53.0457 4036 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll 22:41:53.0488 4036 bthserv - ok 22:41:53.0535 4036 catchme - ok 22:41:53.0613 4036 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:41:53.0628 4036 ccEvtMgr - ok 22:41:53.0644 4036 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe 22:41:53.0660 4036 ccSetMgr - ok 22:41:53.0675 4036 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys 22:41:53.0706 4036 cdfs - ok 22:41:53.0738 4036 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys 22:41:53.0753 4036 cdrom - ok 22:41:53.0784 4036 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:41:53.0816 4036 CertPropSvc - ok 22:41:53.0831 4036 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys 22:41:53.0847 4036 circlass - ok 22:41:53.0878 4036 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys 22:41:53.0894 4036 CLFS - ok 22:41:53.0956 4036 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 22:41:53.0972 4036 clr_optimization_v2.0.50727_32 - ok 22:41:54.0034 4036 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 22:41:54.0065 4036 clr_optimization_v4.0.30319_32 - ok 22:41:54.0096 4036 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys 22:41:54.0096 4036 CmBatt - ok 22:41:54.0128 4036 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys 22:41:54.0143 4036 cmdide - ok 22:41:54.0190 4036 CNG (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys 22:41:54.0206 4036 CNG - ok 22:41:54.0221 4036 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys 22:41:54.0237 4036 Compbatt - ok 22:41:54.0268 4036 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\drivers\CompositeBus.sys 22:41:54.0284 4036 CompositeBus - ok 22:41:54.0284 4036 COMSysApp - ok 22:41:54.0299 4036 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys 22:41:54.0315 4036 crcdisk - ok 22:41:54.0346 4036 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll 22:41:54.0362 4036 CryptSvc - ok 22:41:54.0393 4036 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\windows\system32\DRIVERS\ctxusbm.sys 22:41:54.0408 4036 ctxusbm - ok 22:41:54.0455 4036 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:41:54.0486 4036 DcomLaunch - ok 22:41:54.0518 4036 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll 22:41:54.0549 4036 defragsvc - ok 22:41:54.0580 4036 DfsC (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys 22:41:54.0611 4036 DfsC - ok 22:41:54.0627 4036 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll 22:41:54.0658 4036 Dhcp - ok 22:41:54.0689 4036 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys 22:41:54.0720 4036 discache - ok 22:41:54.0720 4036 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys 22:41:54.0736 4036 Disk - ok 22:41:54.0783 4036 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll 22:41:54.0798 4036 Dnscache - ok 22:41:54.0845 4036 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll 22:41:54.0861 4036 dot3svc - ok 22:41:54.0892 4036 Dot4 (b5e479eb83707dd698f66953e922042c) C:\windows\system32\DRIVERS\Dot4.sys 22:41:54.0908 4036 Dot4 - ok 22:41:54.0939 4036 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\windows\system32\drivers\Dot4Prt.sys 22:41:54.0954 4036 Dot4Print - ok 22:41:54.0986 4036 dot4usb (cf491ff38d62143203c065260567e2f7) C:\windows\system32\DRIVERS\dot4usb.sys 22:41:55.0001 4036 dot4usb - ok 22:41:55.0032 4036 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll 22:41:55.0064 4036 DPS - ok 22:41:55.0079 4036 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys 22:41:55.0095 4036 drmkaud - ok 22:41:55.0126 4036 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\windows\system32\DRIVERS\dtsoftbus01.sys 22:41:55.0142 4036 dtsoftbus01 - ok 22:41:55.0204 4036 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys 22:41:55.0235 4036 DXGKrnl - ok 22:41:55.0266 4036 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll 22:41:55.0298 4036 EapHost - ok 22:41:55.0454 4036 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys 22:41:55.0500 4036 ebdrv - ok 22:41:55.0594 4036 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 22:41:55.0610 4036 eeCtrl - ok 22:41:55.0719 4036 EFS (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe 22:41:55.0734 4036 EFS - ok 22:41:55.0937 4036 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\windows\ehome\ehRecvr.exe 22:41:55.0968 4036 ehRecvr - ok 22:41:55.0984 4036 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe 22:41:56.0000 4036 ehSched - ok 22:41:56.0062 4036 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys 22:41:56.0078 4036 elxstor - ok 22:41:56.0156 4036 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 22:41:56.0171 4036 EraserUtilRebootDrv - ok 22:41:56.0202 4036 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys 22:41:56.0234 4036 ErrDev - ok 22:41:56.0280 4036 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll 22:41:56.0312 4036 EventSystem - ok 22:41:56.0343 4036 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys 22:41:56.0374 4036 exfat - ok 22:41:56.0390 4036 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys 22:41:56.0421 4036 fastfat - ok 22:41:56.0468 4036 Fax (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe 22:41:56.0483 4036 Fax - ok 22:41:56.0499 4036 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys 22:41:56.0514 4036 fdc - ok 22:41:56.0530 4036 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll 22:41:56.0561 4036 fdPHost - ok 22:41:56.0577 4036 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll 22:41:56.0608 4036 FDResPub - ok 22:41:56.0624 4036 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys 22:41:56.0639 4036 FileInfo - ok 22:41:56.0655 4036 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys 22:41:56.0686 4036 Filetrace - ok 22:41:56.0702 4036 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys 22:41:56.0717 4036 flpydisk - ok 22:41:56.0733 4036 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys 22:41:56.0748 4036 FltMgr - ok 22:41:56.0811 4036 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll 22:41:56.0842 4036 FontCache - ok 22:41:56.0904 4036 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 22:41:56.0920 4036 FontCache3.0.0.0 - ok 22:41:56.0936 4036 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys 22:41:56.0951 4036 FsDepends - ok 22:41:56.0982 4036 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\windows\system32\DRIVERS\fssfltr.sys 22:41:56.0982 4036 fssfltr - ok 22:41:57.0154 4036 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 22:41:57.0185 4036 fsssvc - ok 22:41:57.0310 4036 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys 22:41:57.0341 4036 Fs_Rec - ok 22:41:57.0372 4036 fvevol (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys 22:41:57.0404 4036 fvevol - ok 22:41:57.0419 4036 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys 22:41:57.0435 4036 gagp30kx - ok 22:41:57.0482 4036 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys 22:41:57.0482 4036 GEARAspiWDM - ok 22:41:57.0544 4036 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll 22:41:57.0575 4036 gpsvc - ok 22:41:57.0653 4036 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:41:57.0669 4036 gupdate - ok 22:41:57.0669 4036 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe 22:41:57.0684 4036 gupdatem - ok 22:41:57.0716 4036 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 22:41:57.0731 4036 gusvc - ok 22:41:57.0762 4036 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys 22:41:57.0778 4036 hcw85cir - ok 22:41:57.0809 4036 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys 22:41:57.0840 4036 HdAudAddService - ok 22:41:57.0856 4036 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\drivers\HDAudBus.sys 22:41:57.0872 4036 HDAudBus - ok 22:41:57.0872 4036 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys 22:41:57.0887 4036 HidBatt - ok 22:41:57.0903 4036 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys 22:41:57.0918 4036 HidBth - ok 22:41:57.0950 4036 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys 22:41:57.0965 4036 HidIr - ok 22:41:57.0981 4036 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll 22:41:58.0012 4036 hidserv - ok 22:41:58.0043 4036 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\drivers\hidusb.sys 22:41:58.0059 4036 HidUsb - ok 22:41:58.0090 4036 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll 22:41:58.0137 4036 hkmsvc - ok 22:41:58.0152 4036 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll 22:41:58.0168 4036 HomeGroupListener - ok 22:41:58.0215 4036 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll 22:41:58.0230 4036 HomeGroupProvider - ok 22:41:58.0262 4036 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys 22:41:58.0277 4036 HpSAMD - ok 22:41:58.0308 4036 HTTP (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys 22:41:58.0355 4036 HTTP - ok 22:41:58.0371 4036 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys 22:41:58.0371 4036 hwpolicy - ok 22:41:58.0418 4036 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\drivers\i8042prt.sys 22:41:58.0433 4036 i8042prt - ok 22:41:58.0496 4036 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 22:41:58.0511 4036 IAANTMON - ok 22:41:58.0558 4036 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys 22:41:58.0574 4036 iaStor - ok 22:41:58.0620 4036 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys 22:41:58.0636 4036 iaStorV - ok 22:41:58.0730 4036 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 22:41:58.0761 4036 idsvc - ok 22:41:59.0166 4036 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\windows\system32\DRIVERS\igdkmd32.sys 22:41:59.0291 4036 igfx - ok 22:41:59.0400 4036 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys 22:41:59.0416 4036 iirsp - ok 22:41:59.0478 4036 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll 22:41:59.0525 4036 IKEEXT - ok 22:41:59.0666 4036 IntcAzAudAddService (5ceef2cccb4fe00d3ffbfeb12bcfa07f) C:\windows\system32\drivers\RTKVHDA.sys 22:41:59.0728 4036 IntcAzAudAddService - ok 22:41:59.0837 4036 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys 22:41:59.0853 4036 intelide - ok 22:41:59.0884 4036 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys 22:41:59.0915 4036 intelppm - ok 22:41:59.0946 4036 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll 22:41:59.0962 4036 IPBusEnum - ok 22:41:59.0993 4036 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys 22:42:00.0024 4036 IpFilterDriver - ok 22:42:00.0056 4036 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll 22:42:00.0087 4036 iphlpsvc - ok 22:42:00.0134 4036 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys 22:42:00.0149 4036 IPMIDRV - ok 22:42:00.0180 4036 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys 22:42:00.0227 4036 IPNAT - ok 22:42:00.0305 4036 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe 22:42:00.0336 4036 iPod Service - ok 22:42:00.0368 4036 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys 22:42:00.0383 4036 IRENUM - ok 22:42:00.0399 4036 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys 22:42:00.0414 4036 isapnp - ok 22:42:00.0446 4036 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys 22:42:00.0461 4036 iScsiPrt - ok 22:42:00.0492 4036 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\drivers\kbdclass.sys 22:42:00.0508 4036 kbdclass - ok 22:42:00.0524 4036 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys 22:42:00.0539 4036 kbdhid - ok 22:42:00.0570 4036 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:00.0586 4036 KeyIso - ok 22:42:00.0602 4036 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys 22:42:00.0617 4036 KSecDD - ok 22:42:00.0633 4036 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys 22:42:00.0633 4036 KSecPkg - ok 22:42:00.0664 4036 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll 22:42:00.0695 4036 KtmRm - ok 22:42:00.0742 4036 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll 22:42:00.0773 4036 LanmanServer - ok 22:42:00.0820 4036 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll 22:42:00.0851 4036 LanmanWorkstation - ok 22:42:00.0882 4036 lirsgt (975b6cf65f44e95883f3855bae8cecaf) C:\windows\system32\DRIVERS\lirsgt.sys 22:42:00.0898 4036 lirsgt ( UnsignedFile.Multi.Generic ) - warning 22:42:00.0898 4036 lirsgt - detected UnsignedFile.Multi.Generic (1) 22:42:01.0101 4036 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE 22:42:01.0163 4036 LiveUpdate - ok 22:42:01.0272 4036 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys 22:42:01.0304 4036 lltdio - ok 22:42:01.0350 4036 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll 22:42:01.0382 4036 lltdsvc - ok 22:42:01.0382 4036 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll 22:42:01.0413 4036 lmhosts - ok 22:42:01.0444 4036 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys 22:42:01.0460 4036 LSI_FC - ok 22:42:01.0460 4036 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys 22:42:01.0475 4036 LSI_SAS - ok 22:42:01.0506 4036 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys 22:42:01.0522 4036 LSI_SAS2 - ok 22:42:01.0522 4036 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys 22:42:01.0538 4036 LSI_SCSI - ok 22:42:01.0569 4036 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys 22:42:01.0600 4036 luafv - ok 22:42:01.0678 4036 lxeeCATSCustConnectService (a9d8d63c7378dd34e4e19036093a9264) C:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe 22:42:01.0694 4036 lxeeCATSCustConnectService - ok 22:42:01.0709 4036 lxee_device - ok 22:42:01.0740 4036 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\windows\system32\Mcx2Svc.dll 22:42:01.0756 4036 Mcx2Svc - ok 22:42:01.0772 4036 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys 22:42:01.0787 4036 megasas - ok 22:42:01.0818 4036 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys 22:42:01.0834 4036 MegaSR - ok 22:42:01.0912 4036 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 22:42:01.0943 4036 Microsoft Office Groove Audit Service - ok 22:42:01.0959 4036 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:42:02.0006 4036 MMCSS - ok 22:42:02.0021 4036 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys 22:42:02.0052 4036 Modem - ok 22:42:02.0068 4036 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys 22:42:02.0084 4036 monitor - ok 22:42:02.0130 4036 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\drivers\mouclass.sys 22:42:02.0130 4036 mouclass - ok 22:42:02.0146 4036 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys 22:42:02.0162 4036 mouhid - ok 22:42:02.0193 4036 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys 22:42:02.0208 4036 mountmgr - ok 22:42:02.0255 4036 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys 22:42:02.0255 4036 mpio - ok 22:42:02.0286 4036 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys 22:42:02.0318 4036 mpsdrv - ok 22:42:02.0364 4036 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll 22:42:02.0396 4036 MpsSvc - ok 22:42:02.0442 4036 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys 22:42:02.0458 4036 MRxDAV - ok 22:42:02.0505 4036 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys 22:42:02.0520 4036 mrxsmb - ok 22:42:02.0567 4036 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys 22:42:02.0583 4036 mrxsmb10 - ok 22:42:02.0598 4036 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys 22:42:02.0614 4036 mrxsmb20 - ok 22:42:02.0645 4036 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys 22:42:02.0661 4036 msahci - ok 22:42:02.0692 4036 msdsm (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys 22:42:02.0708 4036 msdsm - ok 22:42:02.0723 4036 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe 22:42:02.0739 4036 MSDTC - ok 22:42:02.0786 4036 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys 22:42:02.0801 4036 Msfs - ok 22:42:02.0817 4036 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys 22:42:02.0848 4036 mshidkmdf - ok 22:42:02.0879 4036 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys 22:42:02.0895 4036 msisadrv - ok 22:42:02.0926 4036 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll 22:42:02.0942 4036 MSiSCSI - ok 22:42:02.0957 4036 msiserver - ok 22:42:02.0973 4036 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys 22:42:03.0004 4036 MSKSSRV - ok 22:42:03.0020 4036 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys 22:42:03.0051 4036 MSPCLOCK - ok 22:42:03.0051 4036 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys 22:42:03.0082 4036 MSPQM - ok 22:42:03.0113 4036 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys 22:42:03.0129 4036 MsRPC - ok 22:42:03.0176 4036 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\drivers\mssmbios.sys 22:42:03.0191 4036 mssmbios - ok 22:42:03.0285 4036 MSSQL$MSSMLBIZ - ok 22:42:03.0316 4036 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 22:42:03.0332 4036 MSSQLServerADHelper - ok 22:42:03.0363 4036 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys 22:42:03.0378 4036 MSTEE - ok 22:42:03.0394 4036 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys 22:42:03.0410 4036 MTConfig - ok 22:42:03.0425 4036 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys 22:42:03.0441 4036 Mup - ok 22:42:03.0488 4036 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll 22:42:03.0519 4036 napagent - ok 22:42:03.0534 4036 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys 22:42:03.0566 4036 NativeWifiP - ok 22:42:03.0675 4036 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVENG.SYS 22:42:03.0690 4036 NAVENG - ok 22:42:03.0768 4036 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120706.036\NAVEX15.SYS 22:42:03.0815 4036 NAVEX15 - ok 22:42:03.0940 4036 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\windows\system32\drivers\ndis.sys 22:42:03.0971 4036 NDIS - ok 22:42:04.0002 4036 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys 22:42:04.0034 4036 NdisCap - ok 22:42:04.0049 4036 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys 22:42:04.0065 4036 NdisTapi - ok 22:42:04.0112 4036 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys 22:42:04.0127 4036 Ndisuio - ok 22:42:04.0174 4036 NdisWan (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys 22:42:04.0190 4036 NdisWan - ok 22:42:04.0236 4036 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys 22:42:04.0252 4036 NDProxy - ok 22:42:04.0268 4036 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys 22:42:04.0299 4036 NetBIOS - ok 22:42:04.0346 4036 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys 22:42:04.0377 4036 NetBT - ok 22:42:04.0408 4036 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:04.0424 4036 Netlogon - ok 22:42:04.0455 4036 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll 22:42:04.0486 4036 Netman - ok 22:42:04.0502 4036 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll 22:42:04.0533 4036 netprofm - ok 22:42:04.0595 4036 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 22:42:04.0626 4036 NetTcpPortSharing - ok 22:42:04.0642 4036 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys 22:42:04.0658 4036 nfrd960 - ok 22:42:04.0704 4036 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll 22:42:04.0736 4036 NlaSvc - ok 22:42:04.0751 4036 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys 22:42:04.0767 4036 Npfs - ok 22:42:04.0798 4036 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll 22:42:04.0829 4036 nsi - ok 22:42:04.0845 4036 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys 22:42:04.0876 4036 nsiproxy - ok 22:42:04.0970 4036 Ntfs (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys 22:42:05.0001 4036 Ntfs - ok 22:42:05.0032 4036 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys 22:42:05.0063 4036 Null - ok 22:42:05.0094 4036 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys 22:42:05.0110 4036 nvraid - ok 22:42:05.0141 4036 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys 22:42:05.0157 4036 nvstor - ok 22:42:05.0172 4036 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys 22:42:05.0188 4036 nv_agp - ok 22:42:05.0250 4036 OberonGameConsoleService (b5d5da8230d3d3525839d939a9196c3e) C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe 22:42:05.0266 4036 OberonGameConsoleService - ok 22:42:05.0360 4036 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 22:42:05.0391 4036 odserv - ok 22:42:05.0406 4036 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys 22:42:05.0422 4036 ohci1394 - ok 22:42:05.0453 4036 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 22:42:05.0469 4036 ose - ok 22:42:05.0500 4036 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:42:05.0516 4036 p2pimsvc - ok 22:42:05.0562 4036 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll 22:42:05.0578 4036 p2psvc - ok 22:42:05.0609 4036 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys 22:42:05.0625 4036 Parport - ok 22:42:05.0656 4036 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys 22:42:05.0672 4036 partmgr - ok 22:42:05.0672 4036 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys 22:42:05.0687 4036 Parvdm - ok 22:42:05.0703 4036 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll 22:42:05.0734 4036 PcaSvc - ok 22:42:05.0765 4036 pci (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys 22:42:05.0781 4036 pci - ok 22:42:05.0812 4036 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys 22:42:05.0828 4036 pciide - ok 22:42:05.0859 4036 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys 22:42:05.0874 4036 pcmcia - ok 22:42:05.0874 4036 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys 22:42:05.0890 4036 pcw - ok 22:42:05.0921 4036 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys 22:42:05.0968 4036 PEAUTH - ok 22:42:06.0062 4036 pla (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll 22:42:06.0108 4036 pla - ok 22:42:06.0218 4036 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll 22:42:06.0249 4036 PlugPlay - ok 22:42:06.0264 4036 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll 22:42:06.0280 4036 PNRPAutoReg - ok 22:42:06.0311 4036 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll 22:42:06.0327 4036 PNRPsvc - ok 22:42:06.0374 4036 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll 22:42:06.0405 4036 PolicyAgent - ok 22:42:06.0452 4036 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll 22:42:06.0467 4036 Power - ok 22:42:06.0530 4036 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys 22:42:06.0545 4036 PptpMiniport - ok 22:42:06.0561 4036 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys 22:42:06.0576 4036 Processor - ok 22:42:06.0592 4036 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll 22:42:06.0608 4036 ProfSvc - ok 22:42:06.0623 4036 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:06.0639 4036 ProtectedStorage - ok 22:42:06.0654 4036 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys 22:42:06.0686 4036 Psched - ok 22:42:06.0764 4036 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys 22:42:06.0810 4036 ql2300 - ok 22:42:06.0904 4036 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys 22:42:06.0920 4036 ql40xx - ok 22:42:06.0951 4036 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll 22:42:06.0966 4036 QWAVE - ok 22:42:06.0982 4036 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys 22:42:06.0998 4036 QWAVEdrv - ok 22:42:07.0013 4036 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys 22:42:07.0044 4036 RasAcd - ok 22:42:07.0060 4036 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys 22:42:07.0091 4036 RasAgileVpn - ok 22:42:07.0122 4036 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll 22:42:07.0138 4036 RasAuto - ok 22:42:07.0169 4036 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys 22:42:07.0185 4036 Rasl2tp - ok 22:42:07.0232 4036 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll 22:42:07.0263 4036 RasMan - ok 22:42:07.0294 4036 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys 22:42:07.0310 4036 RasPppoe - ok 22:42:07.0325 4036 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys 22:42:07.0356 4036 RasSstp - ok 22:42:07.0372 4036 rdbss (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys 22:42:07.0403 4036 rdbss - ok 22:42:07.0419 4036 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys 22:42:07.0434 4036 rdpbus - ok 22:42:07.0466 4036 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys 22:42:07.0497 4036 RDPCDD - ok 22:42:07.0512 4036 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys 22:42:07.0544 4036 RDPENCDD - ok 22:42:07.0559 4036 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys 22:42:07.0575 4036 RDPREFMP - ok 22:42:07.0606 4036 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys 22:42:07.0622 4036 RDPWD - ok 22:42:07.0653 4036 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys 22:42:07.0668 4036 rdyboost - ok 22:42:07.0700 4036 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll 22:42:07.0731 4036 RemoteAccess - ok 22:42:07.0746 4036 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll 22:42:07.0778 4036 RemoteRegistry - ok 22:42:07.0793 4036 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll 22:42:07.0824 4036 RpcEptMapper - ok 22:42:07.0824 4036 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe 22:42:07.0840 4036 RpcLocator - ok 22:42:07.0902 4036 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll 22:42:07.0918 4036 RpcSs - ok 22:42:07.0949 4036 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys 22:42:07.0980 4036 rspndr - ok 22:42:07.0996 4036 RTL8167 (6465166dd9b2f841dabad16abdadbe98) C:\windows\system32\DRIVERS\Rt86win7.sys 22:42:08.0012 4036 RTL8167 - ok 22:42:08.0043 4036 SABI (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys 22:42:08.0058 4036 SABI - ok 22:42:08.0090 4036 SamSs (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:08.0105 4036 SamSs - ok 22:42:08.0136 4036 sbp2port (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys 22:42:08.0152 4036 sbp2port - ok 22:42:08.0168 4036 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll 22:42:08.0199 4036 SCardSvr - ok 22:42:08.0230 4036 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys 22:42:08.0277 4036 scfilter - ok 22:42:08.0339 4036 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll 22:42:08.0386 4036 Schedule - ok 22:42:08.0417 4036 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll 22:42:08.0448 4036 SCPolicySvc - ok 22:42:08.0464 4036 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll 22:42:08.0480 4036 SDRSVC - ok 22:42:08.0511 4036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys 22:42:08.0526 4036 secdrv - ok 22:42:08.0573 4036 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll 22:42:08.0604 4036 seclogon - ok 22:42:08.0620 4036 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll 22:42:08.0651 4036 SENS - ok 22:42:08.0682 4036 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll 22:42:08.0698 4036 SensrSvc - ok 22:42:08.0698 4036 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys 22:42:08.0714 4036 Serenum - ok 22:42:08.0729 4036 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys 22:42:08.0745 4036 Serial - ok 22:42:08.0776 4036 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys 22:42:08.0792 4036 sermouse - ok 22:42:08.0838 4036 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll 22:42:08.0870 4036 SessionEnv - ok 22:42:08.0901 4036 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys 22:42:08.0916 4036 sffdisk - ok 22:42:08.0932 4036 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys 22:42:08.0948 4036 sffp_mmc - ok 22:42:08.0963 4036 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys 22:42:08.0979 4036 sffp_sd - ok 22:42:08.0994 4036 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys 22:42:09.0010 4036 sfloppy - ok 22:42:09.0041 4036 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll 22:42:09.0072 4036 SharedAccess - ok 22:42:09.0119 4036 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll 22:42:09.0150 4036 ShellHWDetection - ok 22:42:09.0197 4036 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys 22:42:09.0197 4036 sisagp - ok 22:42:09.0228 4036 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys 22:42:09.0244 4036 SiSRaid2 - ok 22:42:09.0260 4036 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys 22:42:09.0275 4036 SiSRaid4 - ok 22:42:09.0291 4036 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys 22:42:09.0322 4036 Smb - ok 22:42:09.0462 4036 SmcService (a58c1a086d9c09c6572c948f22cc0e94) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe 22:42:09.0509 4036 SmcService - ok 22:42:09.0540 4036 SNAC (d2c222441255131e29de351475f98f6d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE 22:42:09.0556 4036 SNAC - ok 22:42:09.0650 4036 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe 22:42:09.0681 4036 SNMPTRAP - ok 22:42:09.0790 4036 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 22:42:09.0806 4036 SPBBCDrv - ok 22:42:09.0852 4036 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys 22:42:09.0868 4036 spldr - ok 22:42:09.0930 4036 Spooler (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe 22:42:09.0962 4036 Spooler - ok 22:42:10.0118 4036 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe 22:42:10.0180 4036 sppsvc - ok 22:42:10.0289 4036 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll 22:42:10.0336 4036 sppuinotify - ok 22:42:10.0414 4036 SpyHunter 4 Service (63f2b52947577dbb075fe646bc758a2f) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE 22:42:10.0430 4036 SpyHunter 4 Service - ok 22:42:10.0492 4036 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 22:42:10.0508 4036 SQLBrowser - ok 22:42:10.0539 4036 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 22:42:10.0554 4036 SQLWriter - ok 22:42:10.0617 4036 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\windows\system32\Drivers\SRTSP.SYS 22:42:10.0617 4036 SRTSP - ok 22:42:10.0648 4036 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\windows\system32\Drivers\SRTSPL.SYS 22:42:10.0664 4036 SRTSPL - ok 22:42:10.0695 4036 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\windows\system32\Drivers\SRTSPX.SYS 22:42:10.0695 4036 SRTSPX - ok 22:42:10.0726 4036 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys 22:42:10.0742 4036 srv - ok 22:42:10.0773 4036 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys 22:42:10.0788 4036 srv2 - ok 22:42:10.0804 4036 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys 22:42:10.0820 4036 srvnet - ok 22:42:10.0851 4036 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll 22:42:10.0882 4036 SSDPSRV - ok 22:42:10.0882 4036 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll 22:42:10.0913 4036 SstpSvc - ok 22:42:10.0929 4036 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys 22:42:10.0944 4036 stexstor - ok 22:42:11.0007 4036 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll 22:42:11.0022 4036 StiSvc - ok 22:42:11.0054 4036 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\drivers\swenum.sys 22:42:11.0069 4036 swenum - ok 22:42:11.0100 4036 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll 22:42:11.0132 4036 swprv - ok 22:42:11.0319 4036 Symantec AntiVirus (ba2fb8f8ab24d0279caa98a4c118150e) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe 22:42:11.0366 4036 Symantec AntiVirus - ok 22:42:11.0475 4036 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\windows\system32\Drivers\SYMEVENT.SYS 22:42:11.0490 4036 SymEvent - ok 22:42:11.0506 4036 SYMREDRV (394b2368212114d538316812af60fddd) C:\windows\System32\Drivers\SYMREDRV.SYS 22:42:11.0522 4036 SYMREDRV - ok 22:42:11.0553 4036 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\windows\System32\Drivers\SYMTDI.SYS 22:42:11.0553 4036 SYMTDI - ok 22:42:11.0600 4036 SynTP (7a9025d8f7852b06d6d08ed536135e7e) C:\windows\system32\DRIVERS\SynTP.sys 22:42:11.0600 4036 SynTP - ok 22:42:11.0678 4036 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll 22:42:11.0724 4036 SysMain - ok 22:42:11.0756 4036 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll 22:42:11.0771 4036 TabletInputService - ok 22:42:11.0802 4036 TapiSrv (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll 22:42:11.0834 4036 TapiSrv - ok 22:42:11.0865 4036 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll 22:42:11.0896 4036 TBS - ok 22:42:12.0005 4036 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys 22:42:12.0052 4036 Tcpip - ok 22:42:12.0068 4036 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys 22:42:12.0099 4036 TCPIP6 - ok 22:42:12.0130 4036 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys 22:42:12.0161 4036 tcpipreg - ok 22:42:12.0192 4036 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys 22:42:12.0208 4036 TDPIPE - ok 22:42:12.0239 4036 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys 22:42:12.0239 4036 TDTCP - ok 22:42:12.0270 4036 tdx (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys 22:42:12.0302 4036 tdx - ok 22:42:12.0442 4036 TeamViewer6 (839e88db24d2d8f05b72e12b175951ca) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe 22:42:12.0489 4036 TeamViewer6 - ok 22:42:12.0614 4036 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\drivers\termdd.sys 22:42:12.0645 4036 TermDD - ok 22:42:12.0692 4036 TermService (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll 22:42:12.0723 4036 TermService - ok 22:42:12.0754 4036 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll 22:42:12.0770 4036 Themes - ok 22:42:12.0801 4036 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll 22:42:12.0832 4036 THREADORDER - ok 22:42:12.0848 4036 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll 22:42:12.0879 4036 TrkWks - ok 22:42:12.0941 4036 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe 22:42:12.0957 4036 TrustedInstaller - ok 22:42:12.0988 4036 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys 22:42:13.0019 4036 tssecsrv - ok 22:42:13.0050 4036 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys 22:42:13.0066 4036 TsUsbFlt - ok 22:42:13.0113 4036 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys 22:42:13.0129 4036 tunnel - ok 22:42:13.0160 4036 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys 22:42:13.0175 4036 uagp35 - ok 22:42:13.0222 4036 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys 22:42:13.0253 4036 udfs - ok 22:42:13.0300 4036 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe 22:42:13.0316 4036 UI0Detect - ok 22:42:13.0363 4036 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys 22:42:13.0378 4036 uliagpkx - ok 22:42:13.0409 4036 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\drivers\umbus.sys 22:42:13.0425 4036 umbus - ok 22:42:13.0441 4036 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys 22:42:13.0456 4036 UmPass - ok 22:42:13.0487 4036 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll 22:42:13.0519 4036 upnphost - ok 22:42:13.0550 4036 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys 22:42:13.0565 4036 USBAAPL - ok 22:42:13.0565 4036 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys 22:42:13.0581 4036 usbccgp - ok 22:42:13.0612 4036 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys 22:42:13.0628 4036 usbcir - ok 22:42:13.0643 4036 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys 22:42:13.0659 4036 usbehci - ok 22:42:13.0706 4036 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys 22:42:13.0737 4036 usbhub - ok 22:42:13.0753 4036 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\drivers\usbohci.sys 22:42:13.0768 4036 usbohci - ok 22:42:13.0784 4036 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys 22:42:13.0799 4036 usbprint - ok 22:42:13.0831 4036 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\windows\system32\DRIVERS\usbscan.sys 22:42:13.0846 4036 usbscan - ok 22:42:13.0877 4036 USBSTOR (f991ab9cc6b908db552166768176896a) C:\windows\system32\drivers\USBSTOR.SYS 22:42:13.0877 4036 USBSTOR - ok 22:42:13.0893 4036 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\DRIVERS\usbuhci.sys 22:42:13.0909 4036 usbuhci - ok 22:42:13.0955 4036 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\System32\Drivers\usbvideo.sys 22:42:13.0971 4036 usbvideo - ok 22:42:13.0987 4036 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll 22:42:14.0018 4036 UxSms - ok 22:42:14.0049 4036 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe 22:42:14.0049 4036 VaultSvc - ok 22:42:14.0096 4036 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys 22:42:14.0111 4036 vdrvroot - ok 22:42:14.0174 4036 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe 22:42:14.0205 4036 vds - ok 22:42:14.0236 4036 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys 22:42:14.0252 4036 vga - ok 22:42:14.0283 4036 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys 22:42:14.0299 4036 VgaSave - ok 22:42:14.0345 4036 vhdmp (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys 22:42:14.0361 4036 vhdmp - ok 22:42:14.0377 4036 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys 22:42:14.0377 4036 viaagp - ok 22:42:14.0392 4036 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys 22:42:14.0408 4036 ViaC7 - ok 22:42:14.0439 4036 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys 22:42:14.0455 4036 viaide - ok 22:42:14.0486 4036 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys 22:42:14.0486 4036 volmgr - ok 22:42:14.0533 4036 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys 22:42:14.0548 4036 volmgrx - ok 22:42:14.0564 4036 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\windows\system32\drivers\volsnap.sys 22:42:14.0579 4036 volsnap - ok 22:42:14.0595 4036 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys 22:42:14.0611 4036 vsmraid - ok 22:42:14.0689 4036 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe 22:42:14.0735 4036 VSS - ok 22:42:14.0751 4036 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys 22:42:14.0767 4036 vwifibus - ok 22:42:14.0782 4036 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys 22:42:14.0798 4036 vwififlt - ok 22:42:14.0813 4036 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys 22:42:14.0829 4036 vwifimp - ok 22:42:14.0860 4036 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll 22:42:14.0891 4036 W32Time - ok 22:42:14.0923 4036 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys 22:42:14.0938 4036 WacomPen - ok 22:42:14.0969 4036 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:42:15.0001 4036 WANARP - ok 22:42:15.0001 4036 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys 22:42:15.0016 4036 Wanarpv6 - ok 22:42:15.0094 4036 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\windows\system32\Wat\WatAdminSvc.exe 22:42:15.0125 4036 WatAdminSvc - ok 22:42:15.0219 4036 wbengine (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe 22:42:15.0250 4036 wbengine - ok 22:42:15.0281 4036 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll 22:42:15.0313 4036 WbioSrvc - ok 22:42:15.0359 4036 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll 22:42:15.0375 4036 wcncsvc - ok 22:42:15.0391 4036 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll 22:42:15.0406 4036 WcsPlugInService - ok 22:42:15.0453 4036 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys 22:42:15.0469 4036 Wd - ok 22:42:15.0500 4036 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys 22:42:15.0515 4036 Wdf01000 - ok 22:42:15.0547 4036 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:42:15.0562 4036 WdiServiceHost - ok 22:42:15.0562 4036 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll 22:42:15.0593 4036 WdiSystemHost - ok 22:42:15.0625 4036 WebClient (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll 22:42:15.0656 4036 WebClient - ok 22:42:15.0671 4036 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll 22:42:15.0703 4036 Wecsvc - ok 22:42:15.0718 4036 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll 22:42:15.0749 4036 wercplsupport - ok 22:42:15.0765 4036 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll 22:42:15.0796 4036 WerSvc - ok 22:42:15.0812 4036 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys 22:42:15.0843 4036 WfpLwf - ok 22:42:15.0859 4036 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys 22:42:15.0874 4036 WIMMount - ok 22:42:15.0937 4036 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll 22:42:15.0983 4036 WinDefend - ok 22:42:15.0983 4036 WinHttpAutoProxySvc - ok 22:42:16.0046 4036 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll 22:42:16.0093 4036 Winmgmt - ok 22:42:16.0171 4036 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll 22:42:16.0202 4036 WinRM - ok 22:42:16.0264 4036 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys 22:42:16.0280 4036 WinUsb - ok 22:42:16.0342 4036 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll 22:42:16.0373 4036 Wlansvc - ok 22:42:16.0514 4036 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 22:42:16.0545 4036 wlidsvc - ok 22:42:16.0670 4036 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys 22:42:16.0685 4036 WmiAcpi - ok 22:42:16.0748 4036 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe 22:42:16.0779 4036 wmiApSrv - ok 22:42:16.0888 4036 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe 22:42:16.0919 4036 WMPNetworkSvc - ok 22:42:16.0951 4036 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll 22:42:16.0966 4036 WPCSvc - ok 22:42:17.0013 4036 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll 22:42:17.0029 4036 WPDBusEnum - ok 22:42:17.0075 4036 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys 22:42:17.0122 4036 ws2ifsl - ok 22:42:17.0138 4036 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll 22:42:17.0153 4036 wscsvc - ok 22:42:17.0153 4036 WSearch - ok 22:42:17.0278 4036 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\windows\system32\wuaueng.dll 22:42:17.0325 4036 wuauserv - ok 22:42:17.0450 4036 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys 22:42:17.0481 4036 WudfPf - ok 22:42:17.0497 4036 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys 22:42:17.0528 4036 WUDFRd - ok 22:42:17.0559 4036 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll 22:42:17.0590 4036 wudfsvc - ok 22:42:17.0606 4036 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll 22:42:17.0621 4036 WwanSvc - ok 22:42:17.0653 4036 MBR (0x1B8) (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0 22:42:17.0965 4036 \Device\Harddisk0\DR0 - ok 22:42:17.0965 4036 Boot (0x1200) (5fb009d8d1bbe104d22d071977f32a2a) \Device\Harddisk0\DR0\Partition0 22:42:17.0980 4036 \Device\Harddisk0\DR0\Partition0 - ok 22:42:17.0996 4036 Boot (0x1200) (d5688b55e165a627667567455a328efc) \Device\Harddisk0\DR0\Partition1 22:42:17.0996 4036 \Device\Harddisk0\DR0\Partition1 - ok 22:42:18.0027 4036 Boot (0x1200) (78ee0a60b0242cd51c89824323794145) \Device\Harddisk0\DR0\Partition2 22:42:18.0027 4036 \Device\Harddisk0\DR0\Partition2 - ok 22:42:18.0027 4036 ============================================================ 22:42:18.0027 4036 Scan finished 22:42:18.0027 4036 ============================================================ 22:42:18.0043 2232 Detected object count: 2 22:42:18.0043 2232 Actual detected object count: 2 22:42:44.0361 2232 C:\windows\system32\DRIVERS\atksgt.sys - copied to quarantine 22:42:44.0361 2232 HKLM\SYSTEM\ControlSet001\services\atksgt - will be deleted on reboot 22:42:44.0408 2232 HKLM\SYSTEM\ControlSet002\services\atksgt - will be deleted on reboot 22:42:44.0564 2232 C:\windows\system32\DRIVERS\atksgt.sys - will be deleted on reboot 22:42:44.0564 2232 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Delete 22:42:44.0579 2232 C:\windows\system32\DRIVERS\lirsgt.sys - copied to quarantine 22:42:44.0579 2232 HKLM\SYSTEM\ControlSet001\services\lirsgt - will be deleted on reboot 22:42:44.0579 2232 HKLM\SYSTEM\ControlSet002\services\lirsgt - will be deleted on reboot 22:42:44.0579 2232 C:\windows\system32\DRIVERS\lirsgt.sys - will be deleted on reboot 22:42:44.0579 2232 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Delete

Dit is het volgende logje dat ik verkreeg. Er was geen vraag tot herstarten. ComboFix 12-07-08.02 - Jonas 09/07/2012 21:44:15.2.2 - x86 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3005.2010 [GMT 2:00] Gestart vanuit: c:\users\Jonas\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Jonas\Desktop\CFScript.txt AV: Symantec Endpoint Protection *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855} SP: Symantec Endpoint Protection *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\1ClickDownload c:\program files\1ClickDownload\1Click.cfg c:\program files\1ClickDownload\1click12.crx c:\program files\1ClickDownload\1ClickDownloader.exe c:\program files\1ClickDownload\1clicktemp.xpi c:\program files\1ClickDownload\Anno_1701.magnet c:\program files\1ClickDownload\mainpacklt.exe c:\program files\1ClickDownload\uninst.exe c:\program files\BittorrentBar_NL c:\program files\BittorrentBar_NL\BittorrentBar_NLToolbarHelper.exe c:\program files\BittorrentBar_NL\GottenAppsContextMenu.xml c:\program files\BittorrentBar_NL\ldrtbBitt.dll c:\program files\BittorrentBar_NL\OtherAppsContextMenu.xml c:\program files\BittorrentBar_NL\SharedAppsContextMenu.xml c:\program files\BittorrentBar_NL\tbBitt.dll c:\program files\BittorrentBar_NL\toolbar.cfg c:\program files\BittorrentBar_NL\ToolbarContextMenu.xml c:\program files\BittorrentBar_NL\uninstall.exe c:\program files\Conduit c:\program files\Conduit\Community Alerts\Alert.dll c:\program files\Web Assistant c:\program files\Web Assistant\ExtensionUpdaterService.exe c:\program files\Web Assistant\Firefox\chrome.manifest c:\program files\Web Assistant\Firefox\chrome\content\libraries\DataExchangeScript.js c:\program files\Web Assistant\Firefox\chrome\content\main.js c:\program files\Web Assistant\Firefox\chrome\content\main.xul c:\program files\Web Assistant\Firefox\chrome\content\resources\localscript.js c:\program files\Web Assistant\Firefox\chrome\locale\en-US\overlay.dtd c:\program files\Web Assistant\Firefox\chrome\skin\overlay.css c:\program files\Web Assistant\Firefox\defaults\preferences\defaults.js c:\program files\Web Assistant\Firefox\install.rdf c:\program files\Web Assistant\InstallerHelper.dll c:\program files\Web Assistant\libraries\DataExchangeScript.js c:\program files\Web Assistant\resources\localscript.js c:\program files\Web Assistant\source.crx c:\program files\Web Assistant\unins000.dat c:\program files\Web Assistant\unins000.exe c:\users\Jonas\AppData\Local\Conduit c:\users\Jonas\AppData\Local\Conduit\CT2849859\BittorrentBar_NLAutoUpdateHelper.exe c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591} c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\chrome.manifest c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\chrome\bittorrentbar_nl.jar c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\components\ConduitAutoCompleteSearch.js c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\components\ConduitAutoCompleteSearch.xpt c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\alertSettingsComponent.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\appContextMenu.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\fbAlert.js c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\getAppsContextMenu.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\postAppsContextMenu.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\toolbarContextMenu.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\defaults\unsharedAppsContextMenu.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\install.rdf c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\META-INF\manifest.mf c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\META-INF\zigbert.rsa c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\META-INF\zigbert.sf c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Chat.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\DataStructures.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\EBEncryption.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\ExternalLibraryLoader.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\HTTP.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\IO.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Log.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\MainSingleton.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\MD5.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Notifications.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\ObserversAndEvents.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Prefs.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\SearchProtector.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\SearchSuggestIO.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\String.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\TEAEncryption.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Timer.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Twitter.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\URL.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\WebProgress.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\Windows.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\modules\XML.jsm c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\Plugins\np-mswmp.dll c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\searchplugin\conduit.xml c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\setup.ini c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\extensions\{2d8d9acc-f6d7-4362-8876-a275ca929591}\version.txt c:\users\Jonas\AppData\Roaming\Oxby c:\users\Jonas\AppData\Roaming\Oxby\sieby.exe c:\users\Jonas\AppData\Roaming\Poumko c:\users\Jonas\AppData\Roaming\Poumko\gahae.odg c:\users\Jonas\AppData\Roaming\Ylapf c:\users\Jonas\AppData\Roaming\Ylapf\wiil.goz c:\users\Jonas\AppData\Roaming\Ylapf\wiil.tmp . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-09 to 2012-07-09 )))))))))))))))))))))))))))))) . . 2012-07-09 19:50 . 2012-07-09 19:50 -------- d-----w- c:\users\Jonas\AppData\Local\temp 2012-07-09 19:50 . 2012-07-09 19:50 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-09 19:50 . 2012-07-09 19:50 -------- d-----w- c:\users\Danny\AppData\Local\temp 2012-07-09 17:48 . 2012-07-09 17:48 -------- d-----w- c:\users\Jonas\AppData\Roaming\Ygehze 2012-07-09 17:43 . 2012-07-09 17:43 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\offreg.dll 2012-07-09 13:52 . 2012-07-09 13:52 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-07-08 18:37 . 2012-07-09 12:21 271360 ----a-w- c:\windows\system32\drivers\atksgt.sys 2012-07-08 18:37 . 2012-07-08 18:37 18048 ----a-w- c:\windows\system32\drivers\lirsgt.sys 2012-07-08 10:13 . 2012-07-08 10:13 -------- d-----w- c:\program files\Common Files\SWF Studio 2012-07-07 23:10 . 2012-07-09 22:16 -------- d-----w- c:\users\Jonas\AppData\Roaming\DAEMON Tools Lite 2012-07-07 23:08 . 2012-07-09 22:16 -------- d-----w- c:\programdata\DAEMON Tools Lite 2012-07-07 22:38 . 2012-07-07 22:38 -------- d-----w- c:\users\Jonas\AppData\Local\CRE 2012-07-07 22:37 . 2012-07-09 16:21 -------- d-----w- c:\users\Jonas\AppData\Roaming\BitTorrent 2012-07-07 20:44 . 2012-07-07 22:33 -------- d-----w- c:\users\Jonas\AppData\Roaming\uTorrent 2012-07-07 20:05 . 2012-07-09 13:07 -------- d-----w- c:\users\Jonas\anno 2012-06-21 08:36 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-21 08:36 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-21 08:36 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-21 08:36 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-21 08:35 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-21 08:35 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-21 08:35 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-21 08:35 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-21 08:35 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-20 18:22 . 2012-06-20 18:22 -------- d-----w- c:\programdata\jmhjsleidlvueef 2012-06-13 07:08 . 2012-04-28 03:17 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys 2012-06-13 07:08 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\system32\msi.dll 2012-06-13 07:08 . 2012-05-15 01:05 2343936 ----a-w- c:\windows\system32\win32k.sys 2012-06-13 07:08 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll 2012-06-13 07:08 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll 2012-06-13 07:08 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe 2012-06-13 07:08 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 140288 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-13 07:08 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\system32\crypt32.dll 2012-06-13 07:08 . 2012-04-24 04:36 103936 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-10 14:22 . 2012-06-10 14:22 -------- d-----w- c:\programdata\Lexmark Pro700 Series . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-05 16:03 . 2012-03-29 18:58 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-07-05 16:03 . 2011-05-17 15:17 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-06-09 13:25 . 2012-06-09 13:25 135680 ----a-w- c:\users\Jonas\AppData\Roaming\pkg_0ll.exe 2012-05-30 08:29 . 2012-05-30 08:29 121856 ----a-w- c:\users\Jonas\AppData\Roaming\opret0l.exe 2012-05-08 16:40 . 2012-06-01 07:01 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BC8DF5B6-422F-4E46-8557-5EAB2EC58C80}\mpengine.dll 2012-04-18 18:56 . 2012-04-18 18:56 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-04-18 18:56 . 2012-04-18 18:56 69632 ----a-w- c:\windows\system32\QuickTime.qts 2009-10-26 14:05 . 2009-10-26 14:05 124240 ----a-w- c:\program files\mozilla firefox\plugins\CCMSDK.dll 2009-10-26 14:10 . 2009-10-26 14:10 13136 ----a-w- c:\program files\mozilla firefox\plugins\cgpcfg.dll 2009-10-26 14:08 . 2009-10-26 14:08 70488 ----a-w- c:\program files\mozilla firefox\plugins\CgpCore.dll 2009-10-26 14:09 . 2009-10-26 14:09 91480 ----a-w- c:\program files\mozilla firefox\plugins\confmgr.dll 2009-10-26 14:08 . 2009-10-26 14:08 22360 ----a-w- c:\program files\mozilla firefox\plugins\ctxlogging.dll 2009-10-26 14:06 . 2009-10-26 14:06 255312 ----a-w- c:\program files\mozilla firefox\plugins\ctxmui.dll 2009-10-26 14:08 . 2009-10-26 14:08 31064 ----a-w- c:\program files\mozilla firefox\plugins\icafile.dll 2009-10-26 14:09 . 2009-10-26 14:09 40280 ----a-w- c:\program files\mozilla firefox\plugins\icalogon.dll 2009-10-19 16:58 . 2009-10-19 16:58 652640 ----a-w- c:\program files\mozilla firefox\plugins\sslsdk_b.dll 2009-10-26 14:08 . 2009-10-26 14:08 23896 ----a-w- c:\program files\mozilla firefox\plugins\TcpPServ.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="c:\users\Jonas\anno\daemon tools\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] "Iguhogv"="c:\users\Jonas\AppData\Roaming\Ygehze\fuehd.exe" [2012-06-12 319488] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-08-19 7711264] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-14 1541416] "UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-02-25 218408] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2009-07-08 115560] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520] "ConnectionCenter"="c:\program files\Citrix\ICA Client\concentr.exe" [2009-10-26 103768] "MRT"="c:\windows\system32\MRT.exe" [2012-06-14 56731752] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "lxeemon.exe"="c:\program files\Lexmark Pro700 Series\lxeemon.exe" [2011-01-24 770728] "EzPrint"="c:\program files\Lexmark Pro700 Series\ezprint.exe" [2011-01-24 148280] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736] . c:\users\Jonas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x] R2 lxeeCATSCustConnectService;lxeeCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [x] R2 SpyHunter 4 Service;SpyHunter 4 Service;c:\progra~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x] S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 lxee_device;lxee_device;c:\windows\system32\lxeecoms.exe [x] S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [x] S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [x] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - WS2IFSL . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 20:57] . 2012-03-29 c:\windows\Tasks\SpeedyPC Registration3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\UUS3.dll [2011-10-06 16:18] . 2012-03-29 c:\windows\Tasks\SpeedyPC Update Version3.job - c:\program files\Common Files\SpeedyPC Software\UUS3\SpeedyPC_Update3.exe [2011-10-06 16:18] . 2012-07-08 c:\windows\Tasks\SyncBack Backup Jonas Bibliotheken.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . 2012-07-08 c:\windows\Tasks\SyncBack Synchronise Folder RECHTEN.job - c:\program files\2BrightSparks\SyncBack\SyncBack.exe [2009-12-30 11:00] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyOverride = *.local IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\Jonas\AppData\Roaming\Mozilla\Firefox\Profiles\wb6o2362.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: network.proxy.http - 127.0.0.1 FF - prefs.js: network.proxy.http_port - 55758 FF - prefs.js: network.proxy.type - 1 FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} FF - user.js: network.cookie.cookieBehavior - 0 FF - user.js: privacy.clearOnShutdown.cookies - false FF - user.js: security.warn_viewing_mixed - false FF - user.js: security.warn_viewing_mixed.show_once - false FF - user.js: security.warn_submit_insecure - false FF - user.js: security.warn_submit_insecure.show_once - false . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-1ClickDownload - c:\program files\1ClickDownload\uninst.exe AddRemove-BittorrentBar_NL Toolbar - c:\program files\BittorrentBar_NL\uninstall.exe AddRemove-{336D0C35-8A85-403a-B9D2-65C292C39087}_is1 - c:\program files\Web Assistant\unins000.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-07-09 21:52:17 ComboFix-quarantined-files.txt 2012-07-09 19:52 ComboFix2.txt 2012-07-09 17:37 . Pre-Run: 142.454.538.240 bytes beschikbaar Post-Run: 142.451.204.096 bytes beschikbaar . - - End Of File - - BAAE24703095A14351AE2B43D838D8DA

Mag mijn symantec endpoint protection trouwens terug aan?