Hensyr
-
Items
2.778 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door Hensyr
-
Ik doe regelmatig eens een betaling met PayPal en deze zijn over de hele wereld ook in China en andere aziatische landen, Europa meerbepaald Duistland en België en Amerika. Om mijn PayPal te spijzen gebruik ik mijn eigen bankrekening maar ook mijn Maestro die gelinkt is aan beide rekeningen. Doch onlangs kreeg ik een mail van PayPal dat ik Maestro niet langer kan gebruiken als gelinkte spijzer om betalingen te doen omdat mijn eigen bank het tegenhoud, volgens PayPal zijn zij aan het onderhandelen met mijn bank om dit op te lossen ik hoef dus niks te doen en zal vervolgens een mail krijgen van PayPal als dit euvel opgelost is. Maar nu ik dit verslag hier lees van zoek.exe begin ik me zorgen te maken over een mogelijke poging tot het verzamelen van mijn bankgegevens via PayPal/Maestro. Mijn eigen bank heeft me nog niet op de hoogte gebracht van de mogelijke problemen met mijn Maestro en Paypal en het feit dat mijn eigen bank deze Maestro met PayPal heeft geblokkeerd. Zijn zij op een security break gekomen of niet ik weet het niet. Wordt mijn computer gebruikt voor andere doeleinden zonder dat ik het weet of niet? Feit is wel dat mijn eigen antivirus buiten strijd is gezet van buitenaf. Zijn mijn zorgen gegrond? Graag uw feedback a.u.b. -
Dag kweezie wabbit, Dit is het resuultaat van zoek.exe: Zoek.exe Version 4.0.0.2 Updated 28-May-2013 Tool run by Hendrik on do 30/05/2013 at 2:13:33,64. Microsoft Windows 7 Enterprise N 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== System Restore Info ====================== 30/05/2013 2:16:29 Zoek.exe System Restore Point Created Succesfully. ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe C:\Windows\system32\nvvsvc.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe C:\Windows\system32\CISVC.EXE C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt C:\Windows\system32\IProsetMonitor.exe C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe C:\Program Files\Macrium\Reflect\ReflectService.exe C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE C:\Program Files (x86)\Secunia\PSI\sua.exe C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe C:\Windows\SysWOW64\vmnat.exe C:\Windows\system32\taskhost.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\SysWOW64\vmnetdhcp.exe C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Logitech\SetPointP\SetPoint.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\System32\WUDFHost.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe C:\Program Files (x86)\Nero\Update\NASvc.exe C:\Windows\system32\svchost.exe -k SDRSVC C:\Program Files (x86)\ArcSoft\PhotoImpression 6\Monitor.exe C:\Windows\system32\taskhost.exe D:\My Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\vssvc.exe C:\Windows\System32\svchost.exe -k swprv C:\Windows\system32\SearchFilterHost.exe ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== Suspicious Entrys Found ====================== SYMLINKS found in C:\Program Files\Windows Defender SYMLINKS found in C:\Program Files\Microsoft Security Client ==== Possible Rootkit Infection ====================== C:\Windows\installer\{983db01c-a9ea-34b5-c553-35d95962080b}\L C:\Windows\installer\{983db01c-a9ea-34b5-c553-35d95962080b}\U ==== Symlinks Removed ====================== Reparse point C:\Program Files\Windows Defender\MpAsDesc.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpClient.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpCmdRun.exe succesfully deleted Reparse point C:\Program Files\Windows Defender\MpCommu.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpEvMsg.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpOAV.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpRTP.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MpSvc.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MSASCui.exe succesfully deleted Reparse point C:\Program Files\Windows Defender\MsMpCom.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MsMpLics.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\MsMpRes.dll succesfully deleted Reparse point C:\Program Files\Windows Defender\ar-SA succesfully deleted Reparse point C:\Program Files\Windows Defender\bg-BG succesfully deleted Reparse point C:\Program Files\Windows Defender\cs-CZ succesfully deleted Reparse point C:\Program Files\Windows Defender\da-DK succesfully deleted Reparse point C:\Program Files\Windows Defender\de-DE succesfully deleted Reparse point C:\Program Files\Windows Defender\el-GR succesfully deleted Reparse point C:\Program Files\Windows Defender\en-US succesfully deleted Reparse point C:\Program Files\Windows Defender\es-ES succesfully deleted Reparse point C:\Program Files\Windows Defender\et-EE succesfully deleted Reparse point C:\Program Files\Windows Defender\fi-FI succesfully deleted Reparse point C:\Program Files\Windows Defender\fr-FR succesfully deleted Reparse point C:\Program Files\Windows Defender\he-IL succesfully deleted Reparse point C:\Program Files\Windows Defender\hr-HR succesfully deleted Reparse point C:\Program Files\Windows Defender\hu-HU succesfully deleted Reparse point C:\Program Files\Windows Defender\it-IT succesfully deleted Reparse point C:\Program Files\Windows Defender\ja-JP succesfully deleted Reparse point C:\Program Files\Windows Defender\ko-KR succesfully deleted Reparse point C:\Program Files\Windows Defender\lt-LT succesfully deleted Reparse point C:\Program Files\Windows Defender\lv-LV succesfully deleted Reparse point C:\Program Files\Windows Defender\nb-NO succesfully deleted Reparse point C:\Program Files\Windows Defender\nl-NL succesfully deleted Reparse point C:\Program Files\Windows Defender\pl-PL succesfully deleted Reparse point C:\Program Files\Windows Defender\pt-BR succesfully deleted Reparse point C:\Program Files\Windows Defender\pt-PT succesfully deleted Reparse point C:\Program Files\Windows Defender\ro-RO succesfully deleted Reparse point C:\Program Files\Windows Defender\ru-RU succesfully deleted Reparse point C:\Program Files\Windows Defender\sk-SK succesfully deleted Reparse point C:\Program Files\Windows Defender\sl-SI succesfully deleted Reparse point C:\Program Files\Windows Defender\sr-Latn-CS succesfully deleted Reparse point C:\Program Files\Windows Defender\sv-SE succesfully deleted Reparse point C:\Program Files\Windows Defender\th-TH succesfully deleted Reparse point C:\Program Files\Windows Defender\tr-TR succesfully deleted Reparse point C:\Program Files\Windows Defender\uk-UA succesfully deleted Reparse point C:\Program Files\Windows Defender\zh-CN succesfully deleted Reparse point C:\Program Files\Windows Defender\zh-TW succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\DbgHelp.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\EppManifest.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpAsDesc.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpClient.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpCmdRun.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpCommu.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\mpevmsg.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpOAv.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpRTP.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MpSvc.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MSESysprep.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MsMpCom.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MsMpEng.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MsMpLics.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MsMpRes.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\msseces.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\msseoobe.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\msseooberes.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\MsseWat.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\NisLog.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\NisSrv.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\NisWFP.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\Setup.exe succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\SetupRes.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\shellext.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\sqmapi.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\SymSrv.dll succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\SymSrv.yes succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\Antimalware succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\Backup succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\Drivers succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\en-us succesfully deleted Reparse point C:\Program Files\Microsoft Security Client\nl-nl succesfully deleted ==== Checking Systemdrive for Symlinks ====================== Volume in drive C is System Volume Serial Number is 7A2B-D9D9 Directory of C:\ 14/07/2009 07:08 <JUNCTION> Documents and Settings [C:\Users] 0 File(s) 0 bytes Directory of C:\ProgramData 14/07/2009 07:08 <JUNCTION> Application Data [C:\ProgramData] 14/07/2009 07:08 <JUNCTION> Desktop [C:\Users\Public\Desktop] 14/07/2009 07:08 <JUNCTION> Documents [C:\Users\Public\Documents] 14/07/2009 07:08 <JUNCTION> Favorites [C:\Users\Public\Favorites] 14/07/2009 07:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 14/07/2009 07:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Users 14/07/2009 07:08 <SYMLINKD> All Users [C:\ProgramData] 14/07/2009 07:08 <JUNCTION> Default User [C:\Users\Default] 0 File(s) 0 bytes Directory of C:\Users\All Users 14/07/2009 07:08 <JUNCTION> Application Data [C:\ProgramData] 14/07/2009 07:08 <JUNCTION> Desktop [C:\Users\Public\Desktop] 14/07/2009 07:08 <JUNCTION> Documents [C:\Users\Public\Documents] 14/07/2009 07:08 <JUNCTION> Favorites [C:\Users\Public\Favorites] 14/07/2009 07:08 <JUNCTION> Start Menu [C:\ProgramData\Microsoft\Windows\Start Menu] 14/07/2009 07:08 <JUNCTION> Templates [C:\ProgramData\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Users\Default 14/07/2009 07:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Roaming] 14/07/2009 07:08 <JUNCTION> Local Settings [C:\Users\Default\AppData\Local] 14/07/2009 07:08 <JUNCTION> My Documents [C:\Users\Default\Documents] 14/07/2009 07:08 <JUNCTION> NetHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 14/07/2009 07:08 <JUNCTION> PrintHood [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 14/07/2009 07:08 <JUNCTION> Recent [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Recent] 14/07/2009 07:08 <JUNCTION> SendTo [C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo] 14/07/2009 07:08 <JUNCTION> Start Menu [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu] 14/07/2009 07:08 <JUNCTION> Templates [C:\Users\Default\AppData\Roaming\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Users\Default\AppData\Local 14/07/2009 07:08 <JUNCTION> Application Data [C:\Users\Default\AppData\Local] 14/07/2009 07:08 <JUNCTION> History [C:\Users\Default\AppData\Local\Microsoft\Windows\History] 14/07/2009 07:08 <JUNCTION> Temporary Internet Files [C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Default\Documents 14/07/2009 07:08 <JUNCTION> My Music [C:\Users\Default\Music] 14/07/2009 07:08 <JUNCTION> My Pictures [C:\Users\Default\Pictures] 14/07/2009 07:08 <JUNCTION> My Videos [C:\Users\Default\Videos] 0 File(s) 0 bytes Directory of C:\Users\Hendrik 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Roaming] 12/04/2011 10:00 <JUNCTION> Cookies [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Cookies] 12/04/2011 10:00 <JUNCTION> Local Settings [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> My Documents [C:\Users\Hendrik\Documents] 12/04/2011 10:00 <JUNCTION> NetHood [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 12/04/2011 10:00 <JUNCTION> PrintHood [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 12/04/2011 10:00 <JUNCTION> Recent [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Recent] 12/04/2011 10:00 <JUNCTION> SendTo [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\SendTo] 12/04/2011 10:00 <JUNCTION> Start Menu [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu] 12/04/2011 10:00 <JUNCTION> Templates [C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [C:\Users\Hendrik\AppData\Local] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data 12/04/2011 10:00 <JUNCTION> Application Data [.] 12/04/2011 10:00 <JUNCTION> History [C:\Users\Hendrik\AppData\Local\Microsoft\Windows\History] 12/04/2011 10:00 <JUNCTION> Temporary Internet Files [.] 0 File(s) 0 bytes Directory of C:\Users\Hendrik\AppData\LocalLow 06/03/2013 21:47 <JUNCTION> PlayReady [C:\ProgramData\Microsoft\PlayReady] 0 File(s) 0 bytes Directory of C:\Users\Public\Documents 14/07/2009 07:08 <JUNCTION> My Music [C:\Users\Public\Music] 14/07/2009 07:08 <JUNCTION> My Pictures [C:\Users\Public\Pictures] 14/07/2009 07:08 <JUNCTION> My Videos [C:\Users\Public\Videos] 0 File(s) 0 bytes Directory of C:\Users\UpdatusUser 11/07/2011 22:02 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Roaming] 11/07/2011 22:02 <JUNCTION> Cookies [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Cookies] 11/07/2011 22:02 <JUNCTION> Local Settings [C:\Users\UpdatusUser\AppData\Local] 11/07/2011 22:02 <JUNCTION> My Documents [C:\Users\UpdatusUser\Documents] 11/07/2011 22:02 <JUNCTION> NetHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 11/07/2011 22:02 <JUNCTION> PrintHood [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 11/07/2011 22:02 <JUNCTION> Recent [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Recent] 11/07/2011 22:02 <JUNCTION> SendTo [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\SendTo] 11/07/2011 22:02 <JUNCTION> Start Menu [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu] 11/07/2011 22:02 <JUNCTION> Templates [C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Users\UpdatusUser\AppData\Local 11/07/2011 22:02 <JUNCTION> Application Data [C:\Users\UpdatusUser\AppData\Local] 11/07/2011 22:02 <JUNCTION> History [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\History] 11/07/2011 22:02 <JUNCTION> Temporary Internet Files [C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Users\UpdatusUser\Documents 11/07/2011 22:02 <JUNCTION> My Music [C:\Users\UpdatusUser\Music] 11/07/2011 22:02 <JUNCTION> My Pictures [C:\Users\UpdatusUser\Pictures] 11/07/2011 22:02 <JUNCTION> My Videos [C:\Users\UpdatusUser\Videos] 0 File(s) 0 bytes Directory of C:\Windows\System32\config\systemprofile 11/07/2011 22:07 <JUNCTION> Application Data [C:\Windows\system32\config\systemprofile\AppData\Roaming] 30/05/2013 01:02 <JUNCTION> Cookies [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies] 11/07/2011 22:07 <JUNCTION> Local Settings [C:\Windows\system32\config\systemprofile\AppData\Local] 11/07/2011 22:07 <JUNCTION> My Documents [C:\Windows\system32\config\systemprofile\Documents] 11/07/2011 22:07 <JUNCTION> NetHood [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 11/07/2011 22:07 <JUNCTION> PrintHood [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 11/07/2011 22:07 <JUNCTION> Recent [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Recent] 11/07/2011 22:07 <JUNCTION> SendTo [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\SendTo] 11/07/2011 22:07 <JUNCTION> Start Menu [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu] 11/07/2011 22:07 <JUNCTION> Templates [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Windows\System32\config\systemprofile\AppData\Local 11/07/2011 22:07 <JUNCTION> Application Data [C:\Windows\system32\config\systemprofile\AppData\Local] 11/07/2011 22:07 <JUNCTION> History [C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History] 11/07/2011 22:07 <JUNCTION> Temporary Internet Files [C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Windows\System32\config\systemprofile\Documents 11/07/2011 22:07 <JUNCTION> My Music [C:\Windows\system32\config\systemprofile\Music] 11/07/2011 22:07 <JUNCTION> My Pictures [C:\Windows\system32\config\systemprofile\Pictures] 11/07/2011 22:07 <JUNCTION> My Videos [C:\Windows\system32\config\systemprofile\Videos] 0 File(s) 0 bytes Directory of C:\Windows\SysWOW64\config\systemprofile 11/07/2011 22:07 <JUNCTION> Application Data [C:\Windows\system32\config\systemprofile\AppData\Roaming] 30/05/2013 01:02 <JUNCTION> Cookies [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies] 11/07/2011 22:07 <JUNCTION> Local Settings [C:\Windows\system32\config\systemprofile\AppData\Local] 11/07/2011 22:07 <JUNCTION> My Documents [C:\Windows\system32\config\systemprofile\Documents] 11/07/2011 22:07 <JUNCTION> NetHood [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Network Shortcuts] 11/07/2011 22:07 <JUNCTION> PrintHood [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Printer Shortcuts] 11/07/2011 22:07 <JUNCTION> Recent [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Recent] 11/07/2011 22:07 <JUNCTION> SendTo [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\SendTo] 11/07/2011 22:07 <JUNCTION> Start Menu [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu] 11/07/2011 22:07 <JUNCTION> Templates [C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Templates] 0 File(s) 0 bytes Directory of C:\Windows\SysWOW64\config\systemprofile\AppData\Local 11/07/2011 22:07 <JUNCTION> Application Data [C:\Windows\system32\config\systemprofile\AppData\Local] 11/07/2011 22:07 <JUNCTION> History [C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History] 11/07/2011 22:07 <JUNCTION> Temporary Internet Files [C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files] 0 File(s) 0 bytes Directory of C:\Windows\SysWOW64\config\systemprofile\Documents 11/07/2011 22:07 <JUNCTION> My Music [C:\Windows\system32\config\systemprofile\Music] 11/07/2011 22:07 <JUNCTION> My Pictures [C:\Windows\system32\config\systemprofile\Pictures] 11/07/2011 22:07 <JUNCTION> My Videos [C:\Windows\system32\config\systemprofile\Videos] 0 File(s) 0 bytes Total Files Listed: 0 File(s) 0 bytes 134 Dir(s) 97.992.187.904 bytes free ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== File Information Results ====================== --- c:\windows\sysnative\services.exe --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 328704 Created time: 2009-07-13 23:19:46 Modified time: 2013-05-24 02:02:42 MD5: 24ACB7E5BE595468E3B9AA488B9B4FCB SHA1: A5B16A7D28D2BA79A9CCFC16ED480AD75A757166 ==== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) æTorrent 4500_Help 64 Bit HP CIO Components Installer Acoustica Mixcraft 6 Adobe AIR Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.7) - Nederlands Adobe SendNow Desktop Adobe Shockwave Player 12.0 Apple Mobile Device Support ArcSoft PhotoImpression 6 Audacity 1.3.13 (Unicode) Autodesk Design Review 2013 Autodesk Design Review Browser Add-on v1.2 AVS Screen Capture version 2.0.2 AVS Update Manager 1.0 AVS Video Editor 6 AVS Video Recorder 2.5 AVS4YOU Software Navigator 1.4 Belarc Advisor 8.3 Belkin N600 DB USB Wireless Adapter Bing Bar Bonjour bpd_scan BPDSoftware BPDSoftware_Ini BS.Player FREE BufferChm Canon iP2600 series Canon My Printer Canon Utilities Easy-PhotoPrint EX Canon Utilities Solution Menu CCleaner CDBurnerXP Cobian Backup 11 Gravity CorelDRAW Essential Edition 3 CPUID HWMonitor 1.18 Creative Media Lite Creative Software Update Creative Vado Central muvee Plugin Creative Vado HD Codec Creative ZEN Stone Plus-Gebruikershandleiding Curse Client D3DX10 Defraggler Destinations DeviceDiscovery DivX Setup DocMgr DocProc Driver Genius Professional Edition DWG TrueView 2013 EasyBCD 2.2 Edraw Max 5.1 Epub reader eReg Euro Truck Simulator 2 Fax FBReader for Windows FileASSASSIN Firebird SQL Server - MAGIX Edition Fraps (remove only) Free DWG Viewer 7.1 Free PDF to Word Doc Converter v1.1 Free Screen Video Recorder version 2.5.18.920 Free Studio version 5.2.1 Freemake Video Converter versie 3.0.2 Gebruikersregistratie voor Canon iP2600 series Google Drive Google Toolbar for Internet Explorer Google Update Helper GPBaseService2 GSmartControl HP Customer Participation Program 13.0 HP Document Manager 2.0 HP Imaging Device Functions 13.0 HP Photosmart Essential 3.5 HP Product Detection HP Smart Print 2.0 HP Smart Web Printing 4.51 HP Solution Center 13.0 HP Update HPPhotoSmartDiscLabelContent1 HPPhotosmartEssential HPProductAssistant HPSSupply iCloud ieSpell Image Optimizer 3.0 ImgBurn inSSIDer inSSIDer 3 Intel® Network Connections 18.2.63.0 Intel® Processor ID Utility iTunes J4500 Java 7 Update 21 Java 7 Update 21 (64-bit) Java Auto Updater Junk Mail filter update Logitech SetPoint 6.30 Logitech Unifying-software 2.10 Macrium Reflect - Free Edition Magical Jelly Bean KeyFinder MAGIX Content and Soundpools MAGIX Foto Manager MX Deluxe MAGIX Goya burnR (MSI) MAGIX Music Maker 2013 Soundtrack Edition Update MAGIX Music Maker Soundtrack Edition MAGIX Music Maker Soundtrack Edition (demosongs) MAGIX Music Maker Soundtrack Edition (synthesizer en effecten) MAGIX Music Maker Soundtrack Edition Soundpools MAGIX Slideshow Maker 2 MAGIX Speed burnR (MSI) MAGIX Video deluxe 2013 Premium MAGIX Video deluxe 2013 Premium (Demoproject) MAGIX Video deluxe 2013 Premium (Designelementen) MAGIX Video deluxe 2013 Premium (Digieffects Phenomena) MAGIX Video deluxe 2013 Premium (filmsjablonen) MAGIX Video deluxe 2013 Premium (Fotoshow Maker-stijlen 1) MAGIX Video deluxe 2013 Premium (Fotoshow Maker-stijlen 2) MAGIX Video deluxe 2013 Premium (Individuele menusjablonen) MAGIX Video deluxe 2013 Premium (inleidende video) MAGIX Video deluxe 2013 Premium (Menusjablonen 1) MAGIX Video deluxe 2013 Premium (Menusjablonen 2) MAGIX Video deluxe 2013 Premium (NewBlueFX Video Essentials IV) MAGIX Video deluxe 2013 Premium (Overgangseffecten) MAGIX Video deluxe 2013 Premium (proDAD Adorage 13) MAGIX Video deluxe 2013 Premium (Soundtrack Maker-Stijlen) MAGIX Video deluxe 2013 Premium (titeleffecten) MarketResearch Media Jukebox 14 Mesh Runtime Messenger Companion Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Multi-Targeting Pack Microsoft Antimalware Service NL-NL Language Pack Microsoft Application Error Reporting Microsoft FrontPage Express Microsoft Help Viewer 1.0 Microsoft Image Composite Editor Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office File Validation Add-In Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office Office 64-bit Components 2007 Microsoft Office Outlook Connector Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Professional Plus 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared 64-bit MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Security Client Microsoft Security Client NL-NL Language Pack Microsoft Security Essentials Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft SQL Server 2008 (64-bit) Microsoft SQL Server 2008 Common Files Microsoft SQL Server 2008 Database Engine Services Microsoft SQL Server 2008 Database Engine Shared Microsoft SQL Server 2008 Native Client Microsoft SQL Server 2008 RsFx Driver Microsoft SQL Server 2008 Setup Support Files Microsoft SQL Server Compact 3.5 SP2 x64 ENU Microsoft SQL Server VSS Writer Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU Microsoft XML Parser MobileMe Control Panel Mozilla Firefox 20.0.1 (x86 nl) Mozilla Firefox 21.0 (x86 nl) Mozilla Maintenance Service MPC-HC 1.6.7.7114 (9eb64ec) MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2721691) MSXML 4.0 SP3 Parser (KB2758694) MSXML 4.0 SP3 Parser (KB973685) Nero 12 Nero Audio Pack 1 Nero BackItUp Nero BackItUp Help (CHM) Nero Blu-ray Player Nero Blu-ray Player Help (CHM) Nero Burning ROM Nero Burning ROM Help (CHM) Nero ControlCenter Nero ControlCenter Help (CHM) Nero Core Components Nero Disc Menus Basic Nero Effects Basic Nero Express Nero Express Help (CHM) Nero Kwik Media Nero Kwik Media Help (CHM) Nero Kwik Themes Basic Nero PiP Effects Basic Nero Recode Nero Recode Help (CHM) Nero RescueAgent Nero RescueAgent Help (CHM) Nero SharedVideoCodecs Nero Update Nero Video Nero Video Help (CHM) NirSoft BlueScreenView Nitro PDF Reader 2 NL nLite 1.4.9.1 NVIDIA 3D Vision Controller Driver NVIDIA 3D Vision Controller Driver 275.33 NVIDIA 3D Vision Driver 311.06 NVIDIA Control Panel 311.06 NVIDIA Graphics Driver 311.06 NVIDIA Install Application NVIDIA PhysX NVIDIA PhysX System Software 9.10.0514 NVIDIA Stereoscopic 3D Driver NVIDIA Update 1.11.3 NVIDIA Update Components OCR Software by I.R.I.S. 13.0 Officejet J4500 Series OpenOffice.org 3.4.1 Opera 12.15 OVTScanner_Vista64 PC Speed Up - Volledige uninstall PC Speed Up Extension PC Wizard 2012.2.0 PIXMA Extended Survey Program Prerequisite installer ProductContext RealDownloader RealNetworks - Microsoft Visual C++ 2008 Runtime RealNetworks - Microsoft Visual C++ 2010 Runtime RealPlayer Realtek High Definition Audio Driver RealUpgrade 1.1 Revo Uninstaller 1.94 Scan Secunia PSI (3.0.0.3001) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576) Security Update for Microsoft .NET Framework 4 Extended (KB2416472) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) Security Update for Microsoft .NET Framework 4 Extended (KB2736428) Security Update for Microsoft .NET Framework 4 Extended (KB2742595) Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) Shop for HP Supplies SkypeT 6.3 SmartWebPrinting SolutionCenter Speccy Spotmau PowerSuite Golden 2012 (build 7.0.1) Sql Server Customer Experience Improvement Program Status swMSM TeamViewer 7 Text-To-Speech-Runtime Toolbox tools-freebsd tools-linux tools-netware tools-solaris tools-windows tools-winPre2k TrayApp TUGZip 3.5 Ulead PhotoImpact 12 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition Update Manager Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VC_CRT_x64 VC80CRTRedist - 8.0.50727.6195 Ventrilo Client for Windows x64 VirtualCloneDrive Vita String Ensemble VLC media player 2.0.6 VMware Player VMware Workstation WebReg Welcome App (Start-up experience) Winamp Winamp Applicatie Detect Windows 7 Codec Pack 3.1.0 Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live Messenger Companion Core Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources WinRAR 4.01 (64-bit) World of Warcraft Xvid Video Codec ==== Deleting Services ====================== HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vfzafaaw deleted successfully HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vfzafaaw deleted successfully ==== FireFox Fix ====================== ProfilePath: C:\Users\Hendrik\AppData\Roaming\Mozilla\Firefox\Profiles\opp9rn57.default user.js not found ---- Lines crossrider removed from prefs.js ---- user_pref("extensions.crossrider.bic", "13bf326192e78725655344ac3baff2db"); user_pref("extensions.crossriderapp14987.14987.cookie.EnabledPhishingAddress16.value", "%5B%22http%3A//lotuslogistics.com.vn/sincronizando/iToken-v1.4/bk/atualiza_auto.php%3Fcliente%22%2C%22http%3A//eu.diablo.net.ur-login.in/login.html%3Fapp%3Dwam%26amp%3D3Bref%3Dhttps%3A//www.worldofwarcraft.com/account/%26amp%3D3Beor%3D0%26amp%3D3Bapp%3Dbam/%22%2C%22http%3A//www.cbcmacon.com/info/sais.php%3Fid%3D134706444%26amp%3BlienAct1on%3Daj0ut%26amp%3BadrUtilIdC0mpte%3D77722507%23gerer-mes-lignes%22%2C%22http%3A//www.retebologna.it/acc/%22%2C%22http%3A//x.co/meIk%3F/www.promocoesvisa.com.br/p/vaidevisa/asp/conta/autentica/autentica.html%3Fmail%3DJ3NSQ311K0H%22%2C%22http%3A//www.startrecruitmentservices.com.au/oy/py/8decb53ae62e19a827d4f266f4029cc3/webscr.htm%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efcd8%22%2C%22http%3A//apricotindustries.com/internal/www.irs.com/Tax%2520refund%2520updates/internal_revenue_service.htm%22%2C%22http%3A//paypal.com-us-cgi-bin.robertpaynter.com/2770099434-7v%3D0__u%3D6191756714__c%3D9412746434LIMITED_ACCOUNT-oid%3Dc2664e0b-6b81-497a-8b42-76e3bfa98bd8/%22%2C%22http%3A//aluminiumdiouani.com/Paypal_Virefication/15f54cab9eb264e40fe08300901d5536/webscr.php%3Fcmd%3D_login-run%26dispatch%3D5885d80a13c0db1f1ff80d546411d7f8a8350c132bc41e0934cfc023d4e8f9e5%22%2C%22http%3A//boundrytrade.com/viewproducts.html%22%2C%22http%3A//bazurashop.com/images/_vti_cnf/onlin.html%22%2C%22http%3A//basementltd.org/samples/%22%2C%22http%3A//basementltd.org/samples%22%2C%22http%3A//a.aicomgroup.in/%22%2C%22http%3A//allentechnologieslimited.org/viewproducts.html%22%2C%22http%3A//allproductsamples.com%22%2C%22http%3A//alvinltd.yolasite.com%22%2C%22http%3A//askfrankcurtin.com/wp-content/plugins/wishlist-member/extensions/service.paypal.cgi.bin.webscr.cmd.login.submit.dispatch.c0db1f8e263663d3faee8d4026841ac68a446ffeca3.servicio/paypal/045c1412d9075077ed78466cb9f2c45a/webscr.php%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efcfd72987ca8b6fc0c708382e17007cf0afd72987ca8b6fc0c708382e17007cf0a%22%2C%22http%3A//paypal.com.your.account.had.ben.susspend.sanpetersburgo.com/www.paypal.com/Paypal/%22%2C%22http%3A//www.seodash.com/vere/login.php%3Fcmd%3D_login-run%26dispatch%3D5885d80a13c0db1f1ff80d546411d7f8a8350c132bc41e0934cfc023d4e8f9e5%22%2C%22http%3A//www.startrecruitmentservices.com.au/oy/py/27be2403237316c6624516b44ba83cdc/webscr.htm%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efcd8%22%2C%22http%3A//pastehtml.com/view/c5nr50e1r.html%22%2C%22http%3A//www.bloomsbury.co.ke/wp-content/uploads/filebase/admin/globalsources.htm%22%2C%22http%3A//askfrankcurtin.com/wp-content/plugins/wishlist-member/extensions/service.paypal.cgi.bin.webscr.cmd.login.submit.dispatch.c0db1f8e263663d3faee8d4026841ac68a446ffeca3.servicio/paypal/45aa36d0fc07f8c1e3ed944fbbba2a60/webscr.php%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efc875c7d5ad0cb3a74917fefdbaca933d1875c7d5ad0cb3a74917fefdbaca933d1%22%2C%22http%3A//askfrankcurtin.com/wp-content/plugins/wishlist-member/extensions/service.paypal.cgi.bin.webscr.cmd.login.submit.dispatch.c0db1f8e263663d3faee8d4026841ac68a446ffeca3.servicio/paypal/ccc3e6d83cf07055021783dd8b264f02/webscr.php%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efcfc082b323be0b7e3643dea6a1abc78c9fc082b323be0b7e3643dea6a1abc78c9%22%2C%22http%3A//www.kevej.com/index.php%3Fdo%3D/%22%2C%22http%3A//masterpayments.7host08.com/securepaypal003/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/securepaypal002/secureloginforRon_Steuartk%26amp%3Bronssteu@gmail.com_for_transactionid_4UN65923VN089111H_amount_of_3400.html%22%2C%22http%3A//masterpayments.7host08.com/securepaypal002/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/securepayment1/secureloginforMark%2520El-Zaher%26amp%3Bkerryhawkins1@gmail.com_for_transactionid_4UN65923VN089111H_amountof_8%22%2C%22http%3A//masterpayments.7host08.com/securepayment1/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/paypalpayments002/securelogin_for_tomcatz80@yahoo.com_for_transactionid_4UN65923VN089111H_amount_of_2900.html%22%2C%22http%3A//www.saujannaya.co.in/css/scap/client-login/dbc1df03b8290159b84fa596676f2b64/webscr.php%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f998ca054efbdf2c29878a435fe324eec2511727fbf3e9efca77a7a0bc6aa03550bffdad3978c2e64a77a7a0bc6aa03550bffdad3978c2e64%22%2C%22http%3A//masterpayments.7host08.com/paypalpayments002/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/paypalpayments001/securelogin_for_Wanda_Micek%26amp%3Bholli@centurytel.net_for_transactionid_4UN65923VN089111H_amount_of_2%22%2C%22http%3A//masterpayments.7host08.com/paypalpayments001/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/paypalinfopayments6/secureloginforDr.SaleScott%26amp%3Bscottsale28@gmail.com_for_transactionid_4UN65923VN089111H_amountof_6560.html%22%2C%22http%3A//masterpayments.7host08.com/paypalinfopayments6/securelogin_for_Alice_Hollipeter%26amp%3Bholli@centurytel.net_for_transactionid_4UN65923VN089111H_amountof_5850.html%22%2C%22http%3A//masterpayments.7host08.com/paypalinfopayments6/securelogin.html%22%2C%22http%3A//masterpayments.7host08.com/paypalinfopayments5/securelogin_for_mdennin@live.com_for_transactionid_4UN65923VN089111H_amountof_3460.html%22%2C%22http%3A//masterpayments.7host08.com/paypalinfopayments/secureloginforClaudeAProulx%26amp%3Bclaudeastral@aol.com_for_transactionid_4UN65923VN089111H_amountof_15%22%2C%22http%3A//www.advancedg12.com.br/reboot.php%22%2C%22http%3A//nguyenhatech.com/shop//images/microsoft/Tam-Cadastro.php%22%2C%22http%3A//contatoliniws.net46.net/%22%2C%22http%3A//rockandice.com/media/fidelidadecielo%22%2C%22http%3A//www.paypal.com.uk.cgi.bin.webscr.cmd.login.run.dispatch.5885d80a13c0db1f8e263663d3faee8d7283e7f0184a5674430f290db9e9c84.unculo.com/webscrcmd%3D_validate-account/%22%2C%22http%3A//209.217.249.189/%7Eestado/83617C429A994E009BA0B6DFB9916156/C8AA27305BBB4AD7B769656766711E4B/C8AA27305BBB4AD7B769656766711E4B.html%22%2C%22http%3A//itransfr.com/css/www.paypal.com/ch/cgi-bin/webscr.cmd%3D_profile-credit-card-new-clickthru.php%22%2C%22http%3A//paypal.com.cgi.bin.webscr.cmd.flow.session.lohzumu98pjkwkwudgtj3ie6btlub.online775885d80a13c0db1f8e263663d3faee8d43b1bb6ca3ufquez.login.eez.fintii.com/ae36a1d0af21103b8a63732e23013362/%22%2C%22http%3A//paypal.com.cgi.bin.webscr.cmd.flow.session.lohzumu98pjkwkwudgtj3ie6btlub.online775885d80a13c0db1f8e263663d3faee8d43b1bb6ca3ufquez.login.eez.fintii.com/8bb758cdf26fa223f87c37d05441dc07/%22%5D"); user_pref("extensions.crossriderapp14987.14987.cookie.EnabledPhishingAddress52.value", "%5B%22http%3A//validateemail.ucoz.net/Outlook.html%22%2C%22http%3A//paypal.com-ca-cgi-bin.webscr-cmd.login-run.dispatch.5885d80a13c0db1f8e263663d3faee8d35d0e3.63192f28ea2a5d18e263663d3faee8d35d0e3.63192f28ea2a5d3.doneitnow.com/WoEA8i1Y2r/Pay_EN.php%3Fcmd%3D_home%26dispatch%3D5885d80a13c0d7e633b393e284a5f8a8f8b1f8e263663d3faee8dc18bca4c6f4%22%2C%22http%3A//www.ppis.grudziadz.com/components/hongleong/index.htm%22%2C%22http%3A//celtcapllc.com/wp-content/upgrade/credit/card/activation/secure/center/vbv-us/US-verifiervisa/%22%2C%22http%3A//www.digilution.ph/js/www.open24.ie/permanentsb.html%22%2C%22http%3A//photo-book.ca/wp-includes/Redirect.php%22%2C%22http%3A//www.formchamp.com/goform.php%3Fid%3D38199%22%2C%22http%3A//paypal.com-ca-cgi-bin.webscr-cmd.login-run.dispatch.5885d80a13c0db1f8e263663d3faee8d35d0e3.63192f28ea2a5d18e263663d3faee8d35d0e3.63192f28ea2a5d2.doneitnow.com/16szYhY3eL/Pay_EN.php%3Fcmd%3D_home%26amp%3Bdispatch%3D5885d80a13c0d7e633b393e284a5f8a8f8b1f8e263663d3faee8dc18bca4c6f4%22%2C%22http%3A//paypal.com-ca-cgi-bin.webscr-cmd.login-run.dispatch.5885d80a13c0db1f8e263663d3faee8d35d0e3.63192f28ea2a5d18e263663d3faee8d35d0e3.63192f28ea2a5d4.doneitnow.com/%22%2C%22http%3A//frazz.nazuka.net/e19394a7189f0c95730db43622f71566/%22%2C%22http%3A//paypal.com-ca-cgi-bin.webscr-cmd.login-run.dispatch.5885d80a13c0db1f8e263663d3faee8d35d0e3.63192f28ea2a5d18e263663d3faee8d35d0e3.63192f28ea2a5d2.doneitnow.com/%22%2C%22http%3A//astro5.net/www3.paypal.com.au/%22%2C%22http%3A//frazz.nazuka.net/d1cc377622e0f4aee2b7c6a1b59641f9/%22%2C%22http%3A//frazz.nazuka.net/T2.php%22%2C%22http%3A//www.al-fajir.com/Nets/Sikker%20nettbetaling.htm%22%2C%22http%3A//nifraziik.org/PrivatDaglig+%F8konomiInternet+og+telefonNetbank21891.html/Nordea/Sikker%2520nettbetaling.htm%22%2C%22http%3A//frazz.nazuka.net/b3584b4c10765ee195c9e801fd4ace3e/%22%2C%22http%3A//www.mckenziedentureclinic.com/wp-content/themes/twentyeleven/inc/images/bankwest.html%22%2C%22http%3A//www.bpoaccess.com/modules/mod_newsflases/open-payment-verified-byvisa.html%22%2C%22http%3A//www.jasulove.kr/phpmyadmin/Data/kunde-nets/Nets-danemark/index.php%22%2C%22http%3A//www.al-fajir.com/Nets/Sikker%2520nettbetaling.htm%22%2C%22http%3A//www.dnhe.hu/templates/Nets.php%22%2C%22http%3A//ebas.co.uk.websdsync.fe100.net/%7Ehextonpo/stampa/ebay.dll.scrmn/%3Floginfcc.passwords.update.actions/ebaydllscrnsds433dsawewegegegeewdfdfdfdew%22%2C%22http%3A//www.fildendesenvol.com.br//feijao/indexPRinfo.php%22%2C%22http%3A//www.ce-adobe.fr/paypal_compte.html%22%2C%22http%3A//fasteknic.com/dar/intl_product.html%22%2C%22http%3A//1004bang.net/boardshop/data/theme/index/index.html%22%2C%22http%3A//serviceconnections6473.fav.cc/solutions/ID-Login2.html%22%2C%22http%3A//www.maulinho-jackson.com/wp-includes/images/smilies/tradefile.html%22%2C%22http%3A//www.gedankenquirl.de/www.paypal.co.uk/index.php%3Fcmd%3D_login-submit%26dispatch%3D5885d80a13c0db1f998ca054efbdf2c25fe4a05bcb33bff68c4fe49456517e3e%22%2C%22http%3A//astro5.net/www3.paypal.com.au/index_AU.php%22%2C%22http%3A//informationen.privatkunden.dnsdynamic.com/wp-includes/css/%22%2C%22http%3A//cpc1-slam5-2-0-cust250.2-4.cable.virginmedia.com/webscr/%22%2C%22http%3A//www.trafalgarcarpets.co.uk/wp-includes/theme-compat/IBlogin.htm%22%2C%22http%3A//services098cc.fav.cc/index/ID-Login2.html%22%2C%22http%3A//stmarketingco.page.tl/%22%2C%22http%3A//mailsverifcation.com/%22%2C%22http%3A//blog.temputech.com/%22%2C%22http%3A//nucleargamerz.com/js/product/xhtml.htm%22%2C%22http%3A//petofi.org/MBHolding3/wudong.html%22%2C%22http%3A//viewproduct.worldwide-supply.com/%22%2C%22http%3A//eilersmarketing.com/ALIBABA/aol.html%22%2C%22http%3A//eilersmarketing.com/ALIBABA/gmail.html%22%2C%22http%3A//diavent.net/templates/sys/dansk/secure-code9/dk/%22%2C%22http%3A//diavent.net/templates/sys/dansk/%22%2C%22http%3A//km-101.com/users/done.php%22%2C%22http%3A//www.valkiriaprojects.com/data/swf/files/CBIBSWeb.start.html%22%2C%22http%3A//eilersmarketing.com/ALIBABA/yeah.html%22%2C%22http%3A//eilersmarketing.com/ALIBABA/yahoo.html%22%2C%22http%3A//eilersmarketing.com/ALIBABA/page.html%22%5D"); user_pref("extensions.crossriderapp14987.14987.cookie.EnabledPhishingAddress9.value", "%5B%22http%3A//195.184.82.240/secure-nl/securenl2012/nl-/%22%2C%22http%3A//195.184.82.240/overflow/overflow2012.php%22%2C%22http%3A//abyarplast.com/logs/north/globalsources.html%22%2C%22http%3A//internationaldds.com/%22%2C%22http%3A//globalviewtrade.coolpage.biz/globalpage.html%22%2C%22http%3A//globalcompenterprise.ueuo.com/globalpage.html%22%2C%22http%3A//ganiladiman.netai.net/web.htm%22%2C%22http%3A//flaviamedia.ro/index/index.html%22%2C%22http%3A//evanleemiller.com/alibaba.com/gmail.html%22%2C%22http%3A//completeservices.ta4a.info/alibaba3342/ID-Login2.html%22%2C%22http%3A//albatross.co.il/loby_h/thumbs/getproductrequest.htm%22%2C%22http%3A//lehoapaper.com/Paypal_Virefication/1596578fae650778e27f8ffbd70c4502/%22%2C%22http%3A//admotionsgolf.com//product.online/index.htm%22%2C%22http%3A//web-gizmos.com/%22%2C%22http%3A//www.modernplastics.com/images/ing.nl/default.htm%22%2C%22http%3A//asiapacificflighttraining.com/eail%22%2C%22http%3A//niedozajebania.blackapplehost.com/index.php%22%2C%22http%3A//www.ptshot.com/oldsourceupdate/%22%2C%22http%3A//asiapacificflighttraining.com/mailss%22%2C%22http%3A//unusualhats.hut4.ru/%22%2C%22http%3A//masterstudio.es/wp-includes/js/crop/%22%2C%22http%3A//semdinlihaber.com/folder/new/%22%2C%22http%3A//steamsale.hut2.ru/%22%2C%22http%3A//ilhanpolat.com/account/id/78550375/paypal/pp/update/webscr/6998GSQ64976W84f356Gi6Bn432/profile/webscr/pp/us/www.Paypal.com/webscr.php%3Fcmd%3D_login-run%26dispatch%3D5885d80a13c0db1f1ff80d546411d7f8a8350c132bc41e0934cfc023d4e8f9e5fb78214886cead8bcd4c1677f8e7572cfb78214886cead8bcd4c1677f8e7572c%22%2C%22http%3A//www.albionsections.co.uk/v.html%22%2C%22http%3A//www.targitorunskie.pl/targi_torunskie/bip_bad/files/foto/bofa/update.php%22%2C%22http%3A//****ographicrecordings.com/img/icons/tabs/webscr.php%3Fcmd%3D_login-run%26dispatch%3D5885d80a13c0db1f1ff80d546411d7f84f1036d8f209d3d19ebb6f4eeec8bd0eb8fde1c0e2ec85dcf4341e5b995664adb8fde1c0e2ec85dcf4341e5b995664ad%22%2C%22http%3A//asiapacificflighttraining.com/Mail%22%2C%22http%3A//frizzellministries.org/IT/Processing1.php%3Fcmd%3D_Processing%26dispatch%3D5885d80a13c0db1fb6947b0aeae66fdbfb2119927117e3a6f876e0fd34af43655384086104049c34bf6420a4b5b6f6a65384086104049c34bf6420a4b5b6f6a6%22%2C%22http%3A//irps.hosting.kepno.pl/cmd-login.paypal.login-verification/%22%2C%22http%3A//www.thorciasecurity.com/templates/beez/login.php%22%2C%22http%3A//fluchinfos.com/ManageMyaccounts%26amp%3Bjs%3Deurop_land%26amp%3Band%3D349034902hjks138934%3D9sylfp5wnuqcea7-serv-Einloggen%26amp%3Bsessions%26amp%3Bjsdeuland%26amp%3Bserv/maccadress%3DCHload-70472929/websrc.php%3Fsession.start%22%2C%22http%3A//hotfiles.biz/wp-includes/Text/Diff/Engine/edit.php%22%2C%22http%3A//www.skip2k5.freehostingcloud.com/derp.php%22%2C%22http%3A//199.19.109.163/cart/templates_c/verify/ebverif.php%22%2C%22http%3A//www.brazilistone.co.uk/mgmt/magento/skin/frontend/default/french/images/index.php%3F288533%22%2C%22http%3A//modrebenok.ru/libs/elfinder/files/jcc_fcc/psot.php%22%2C%22http%3A//visonls.cwsurf.de/onlins.php%22%2C%22http%3A//agenelite.com/templates/beez/%22%2C%22http%3A//agenelite.com/templates/beez/Paypal_Virefication/%22%2C%22http%3A//tad.ly/i5wA1s%22%2C%22http%3A//www.preciousadventure.com/secure-code773/security/login.php%22%2C%22http%3A//mokaweb.it/box/.it/secure-code161/paypal/Processing1.php%3Fcmd%3D_Processing%26amp%3Bdispatch%3D5885d80a13c0db1fb6947b0aeae66fdbfb2119927117e3a6f876e0fd34af436573855604262df0f2f585018bdd7da91773855604262df0f2f585018bdd7da917%22%2C%22http%3A//lehoapaper.com/Paypal_Virefication/141f92125cf740c9e5c90203b11737b5/webscr.php%3Fcmd%3D_login-run%26amp%3Bdispatch%3D5885d80a13c0db1f1ff80d546411d7f8a8350c132bc41e0934cfc023d4e8f9e5%22%2C%22http%3A//resourceforge.com/gmpb/data/golden.php%22%2C%22http%3A//www.cjbm-ma.org/includes/www.paypal.fr/index.php%3Fcmd%3D%3Fcmd%3D_login%26amp%3Bdispatch%3D5885d80a13c0db1f8e263663d3faee8d4b3d02051cb40a5393d96fec50118c72%22%2C%22http%3A//www.account-3238.com/account/cgi/web/%22%2C%22http%3A//200.98.161.167/pessoa.php%22%2C%22http%3A//boludo.com.ve/wp-content/plugins/bc-oauth/lib/oauth-php/example/client/notices_var.php%22%2C%22http%3A//www.pronto24.ru/assets/3e713185/jui/css/base/images/xxx/index.htm%22%5D"); ---- Lines crossrider modified from prefs.js ---- ---- Lines OneClickDownload removed from prefs.js ---- user_pref("extensions.OneClickDownload.filter", "1,3"); user_pref("extensions.OneClickDownload.lastUpdate", "{\"hours\":14,\"min\":4}"); ---- Lines OneClickDownload modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- prefs_20133005_0228_.backup ==== Batch Command(s) Run By Tool====================== C:\Windows\system32\appdata deleted ==== Deleting Files \ Folders ====================== "c:\windows\system32\drivers\vfzafaaw.sys" not found "C:\ProgramData\pxyeavitniftjmj" deleted "C:\Windows\tasks\PC SpeedUp Service Deactivator.job" deleted "D:\My Desktop\PC Speed Up.lnk" deleted "C:\Windows\installer\{983db01c-a9ea-34b5-c553-35d95962080b}" deleted "C:\Windows\installer\{983db01c-a9ea-34b5-c553-35d95962080b}\L" deleted "C:\Windows\installer\{983db01c-a9ea-34b5-c553-35d95962080b}\U" deleted "C:\Windows\syswow64\appdata" deleted "C:\Program Files (x86)\PC Speed Up" deleted "C:\Program Files (x86)\Common Files\DVDVideoSoft\bin" deleted "C:\Users\Hendrik\AppData\Roaming\Common" deleted "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Up" deleted ==== Folders Found ====================== ==== Files Found ====================== --- C:\Windows\erdnt\cache64\services.exe --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe File type: ----a-w- File size: 328704 Created time: 2013-05-28 00:04:55 Modified time: 2013-05-24 02:02:42 MD5: 24ACB7E5BE595468E3B9AA488B9B4FCB SHA1: A5B16A7D28D2BA79A9CCFC16ED480AD75A757166 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ar-sa_3152953e7aa3aa88\services.exe.mui --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: ?© Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 15872 Created time: 2011-04-25 18:58:35 Modified time: 2009-07-13 17:04:24 MD5: E9D0900772B52AB3F1B0EA2BB08C4E6C SHA1: FA43DBE4050F3A7FAEA7D3E34D46E91CC7D2BE9B --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_bg-bg_d79276c76b23fbdf\services.exe.mui --- Company: Microsoft Corporation File Description: ?????????? ?? ?????? ? ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ??????????? ??????? Microsoft® Windows® Copyright: © Microsoft Corporation. ?????? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 22:37:20 Modified time: 2009-07-13 16:47:52 MD5: 8C88453F39470BA09029BDFC7A9A6D95 SHA1: 16BED63613284C53904ACCD9AA52DE65FD18092E --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_829bed6258abd80a\services.exe.mui --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. Všechna práva vyhrazena. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 20:38:24 Modified time: 2009-07-13 16:59:38 MD5: 11387BE13068750A0D7A9E4CA9649373 SHA1: 06A7B12E1D8BE55AE7A66212AA15F0165A7CAA27 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_da-dk_1fd5cd894ef1d409\services.exe.mui --- Company: Microsoft Corporation File Description: Tjenester og controllerprogrammer File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operativsystem Copyright: © Microsoft Corporation. Alle rettigheder forbeholdes. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-26 00:02:15 Modified time: 2009-07-13 17:03:04 MD5: 62DAC757CFBD330E4F2A2CF387F672EF SHA1: 2C43A116897E64ECAB6A332EFDED1921AA222B44 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_de-de_1d0162c550c828a3\services.exe.mui --- Company: Microsoft Corporation File Description: Anwendung für Dienste und Controller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Betriebssystem Microsoft® Windows® Copyright: © Microsoft Corporation. Alle Rechte vorbehalten. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 18:38:51 Modified time: 2009-07-13 17:08:26 MD5: F0E13F46C1944FCE489C9A18372C3ED8 SHA1: AEABCB79DA685D623DF50C15760F2C24B969F59F --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_c59790583fdd9131\services.exe.mui --- Company: Microsoft Corporation File Description: ???????? ????????? ??? ??????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ??????????? ??????? Microsoft® Windows® Copyright: © Microsoft Corporation. ?? ????????? ???? ??????? ???????????. Original Filename: services.exe.mui File type: ----a-w- File size: 20992 Created time: 2011-04-25 21:32:15 Modified time: 2009-07-13 16:55:50 MD5: 5FFB6A441A1CA12DF3B280CFCF153DB9 SHA1: 6703EE0BE6063ED563EF4BDFA65740FA383761F9 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2009-07-14 05:41:04 Modified time: 2009-07-14 02:25:40 MD5: 6507BF0DC2D1F5F32493C288EAA59277 SHA1: 6ACBFC90F392748BDDE10CE76A0176F8FA0523D3 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_es-es_c5bd95a23fcd260d\services.exe.mui --- Company: Microsoft Corporation File Description: Aplicación de servicios y controlador File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Reservados todos los derechos. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 19:32:56 Modified time: 2009-07-13 16:59:22 MD5: EBD7B77F4CAF420799840882B179ADC6 SHA1: C27A70DD097B7EE259953C9E9C134FB296EEFBB1 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_et-ee_bf7d613243d3029c\services.exe.mui --- Company: Microsoft Corporation File Description: Teenuste ja kontrolleri rakendus File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operatsioonisüsteem Microsoft® Windows® Copyright: © Microsoft Corporation. Kõik õigused kaitstud. Original Filename: services.exe.mui File type: ----a-w- File size: 16896 Created time: 2011-04-25 22:10:52 Modified time: 2009-07-13 16:55:22 MD5: E0D92FB3A7311468FFAA5EED4F3196E6 SHA1: 51C1008D727CB2F9334DA2A69EA46904A9366B35 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_fi-fi_64d89a4f34e71837\services.exe.mui --- Company: Microsoft Corporation File Description: Palvelu- ja ohjainohjelma File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® -käyttöjärjestelmä Copyright: © Microsoft Corporation. Kaikki oikeudet pidätetään. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 20:00:48 Modified time: 2009-07-13 16:56:04 MD5: 03B4952EC0933EBB9F8DEA9C8A812C29 SHA1: 9E5A1FDEA33A89B0BDA9B6628C15D03CDDD5976D --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_68750ba1329f3c6f\services.exe.mui --- Company: Microsoft Corporation File Description: Applications Services et Contrôleur File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Système d’exploitation Microsoft® Windows® Copyright: © Microsoft Corporation. Tous droits réservés. Original Filename: services.exe.mui File type: ----a-w- File size: 19968 Created time: 2011-04-25 20:18:56 Modified time: 2009-07-13 17:00:48 MD5: 18A525B3727F2AE7E8D440F42FC82C2E SHA1: 9387E5E4575C9D124358DACDE47D166C6CCB3BEA --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_he-il_ac94b343190e3d5d\services.exe.mui --- Company: Microsoft Corporation File Description: ??????? ??????? ???? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 14848 Created time: 2011-04-25 19:25:26 Modified time: 2009-07-13 16:56:16 MD5: 507399F526A76481E3CDA23445955929 SHA1: 5169F71391355DAD5F07E8D08CEDC1D599E1269A --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_hr-hr_aeb1662317c1aa23\services.exe.mui --- Company: Microsoft Corporation File Description: Servisi i aplikacija kontrolera File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacijski sustav Microsoft® Windows® Copyright: © Microsoft Corporation. Sva prava pridržana. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 23:52:24 Modified time: 2009-07-13 17:02:44 MD5: 6CE5201E3CF600E0AF21C1BF2C0DD1D0 SHA1: DFBDEC7ED6DD620F71AB613958A8310DBCC8D142 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_afe58be916ff0b8b\services.exe.mui --- Company: Microsoft Corporation File Description: Szolgáltató és vezérl? alkalmazás File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® operációs rendszer Copyright: © Microsoft Corporation. Minden jog fenntartva. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 19:51:44 Modified time: 2009-07-13 17:06:48 MD5: 4FF00357C23A9DB81045B9B0FB593920 SHA1: B3FC63323C7BF63C0141A5605A2BD21CB3FA804B --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_it-it_529d01e809d121ed\services.exe.mui --- Company: Microsoft Corporation File Description: Applicazione Servizi e Controller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Tutti i diritti riservati. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 19:09:36 Modified time: 2009-07-13 16:59:20 MD5: 2DB09CB5CC5E025D1381123F00AAA71D SHA1: A4A03790722736F2B339117527A9AEF18D58FC21 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_f4c280f4fcec33c8\services.exe.mui --- Company: Microsoft Corporation File Description: ???????????? ???????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 11776 Created time: 2011-04-26 00:15:40 Modified time: 2009-07-13 17:19:58 MD5: 130B7341F5446430B3FFB7DCD9A786E3 SHA1: ADE84F4AB2163587C0101B202C07D094575552F0 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_982c5da9ef5cfade\services.exe.mui --- Company: Microsoft Corporation File Description: ??? ? ???? ?? ???? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 11264 Created time: 2011-04-25 20:50:57 Modified time: 2009-07-13 18:08:24 MD5: 424DA2137012397299C94B7342F3D19E SHA1: 8470CB74EBAF27F4028F875B86F0CE99C34641E9 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_lt-lt_3bf789aae184c67b\services.exe.mui --- Company: Microsoft Corporation File Description: Tarnyb? ir valdiklio taikomosios programos File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacin? sistema Microsoft® Windows® Copyright: © Microsoft Corporation. Visos teis?s ginamos. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 22:03:51 Modified time: 2009-07-13 16:53:44 MD5: 504F8B0A67D4AE3E981C09C1F25CEF75 SHA1: 3D9A54E1285B81B19D7601D1F3A0D5EF67A0EB70 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_lv-lv_3cc4f82ee103076b\services.exe.mui --- Company: Microsoft Corporation File Description: Pakalpojumu un kontrollera lietojumprogramma File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Oper?t?jsist?ma Microsoft® Windows® Copyright: © Microsoft Corporation. Visas ties?bas patur?tas. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 20:11:19 Modified time: 2009-07-13 16:53:54 MD5: AA7C40AA8928D17BEB293741C5ABC200 SHA1: 208965AF401AAE6CEE111C57492FBB4D8A23B6B1 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_nb-no_80bededec782269a\services.exe.mui --- Company: Microsoft Corporation File Description: Program for tjenester og kontroller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativsystemet Microsoft® Windows® Copyright: © Microsoft Corporation. Med enerett. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 21:43:24 Modified time: 2009-07-13 16:56:16 MD5: 06F1D18489683D6A92DC1708DDAB1F57 SHA1: FBC621D373F3027C1325C04B1C0235C40AA7BD49 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_7efe2a1cc8ae306f\services.exe.mui --- Company: Microsoft Corporation File Description: Services en controllertoepassingen File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Besturingssysteem Microsoft® Windows® Copyright: © Microsoft Corporation. Alle rechten voorbehouden. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-12 19:01:40 Modified time: 2009-07-13 16:57:50 MD5: B84CF40C8CF1DA44A95CC37E360EB977 SHA1: 84AEDB6613B24923B8ABC20D2EF77022ED187AD9 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_c53a849eadd09e23\services.exe.mui --- Company: Microsoft Corporation File Description: Us?ugi i aplikacja Kontroler File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: System operacyjny Microsoft® Windows® Copyright: © Microsoft Corporation. Wszelkie prawa zastrze?one. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 22:57:00 Modified time: 2009-07-13 16:50:56 MD5: 00AB3621DF742387F851752C2C8BEABF SHA1: 2751A0FA4CD29C1C7DC1FAF47819417C433E56F6 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pt-br_c78e6f42ac5a3207\services.exe.mui --- Company: Microsoft Corporation File Description: Aplicativo de serviços e controle File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema Operacional Microsoft® Windows® Copyright: © Microsoft Corporation. Todos os direitos reservados. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 23:23:00 Modified time: 2009-07-13 16:50:42 MD5: 50535783545434F9F2AB62A53C706EFA SHA1: CEBAC058D5EA86640EB7F565E275C34B3E20B44B --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_c8703eaeabc9a1e3\services.exe.mui --- Company: Microsoft Corporation File Description: Aplicação de serviços e controlo File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Todos os direitos reservados. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 23:09:21 Modified time: 2009-07-13 16:59:26 MD5: 41DB03418DF56EF7DCCA75086DBEB772 SHA1: FFD023B570C39696795438B328A45901E6FBF31F --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ro-ro_0cab04e692306d3f\services.exe.mui --- Company: Microsoft Corporation File Description: Servicii ?i aplica?ii de control File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistem de operare Microsoft® Windows® Copyright: © Microsoft Corporation. Toate drepturile rezervate. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-28 00:42:34 Modified time: 2009-07-13 17:00:08 MD5: 45DB0782754B0C2AAFE0722AD2BD5B93 SHA1: 625556DBE77F7FE88DE5B24F37197B206E9098E4 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_0f13507290ab300f\services.exe.mui --- Company: Microsoft Corporation File Description: ?????????? ????? ? ???????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ???????????? ??????? Microsoft® Windows® Copyright: © ?????????? ??????????. ??? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 21:53:38 Modified time: 2009-07-13 17:07:56 MD5: EB63EE0FD3C4826F45845C6E83058570 SHA1: BCA9D57025F610088DA97F015D934DEB09F5C012 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_ae2e551f85c52239\services.exe.mui --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. Všetky práva vyhradené. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 18:53:35 Modified time: 2009-07-13 16:51:58 MD5: 4CF36013D04041D604E21CC6F80B73F7 SHA1: 682A5F7A06C5DCD8C6DDE944003A9390EF15C7C7 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sl-si_ad4076d7865f351c\services.exe.mui --- Company: Microsoft Corporation File Description: Program za storitve in krmilnik File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacijski sistem Microsoft® Windows® Copyright: © Microsoft Corporation. Vse pravice pridržane. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 19:18:47 Modified time: 2009-07-13 16:54:14 MD5: 42A149B4C86CD8B535532CEF34F70414 SHA1: 483182505477374583BE0DE4BCC26B44952A0493 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sr-..-cs_4cc9f369ffb79864\services.exe.mui --- Company: Microsoft Corporation File Description: Aplikacija usluga i kontrolera File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativni sistem Microsoft® Windows® Copyright: © Microsoft Corporation. Sva prava zadržana. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 22:18:00 Modified time: 2009-07-13 16:53:38 MD5: D6C519FD0BF69F3265646DAFC3547BA9 SHA1: 49E5F6DC03004779B58FA3D61F8B35782BD5E3D0 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sv-se_ab0e3ae787d43a6a\services.exe.mui --- Company: Microsoft Corporation File Description: Tjänst- och styrenhetsprogram File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativsystemet Microsoft® Windows® Copyright: © Microsoft Corporation. Med ensamrätt. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 21:10:36 Modified time: 2009-07-13 16:59:12 MD5: A4880BDF654678A0C2D3BB1243BC4D45 SHA1: 16767E7DC2F87BE8F11D8149EB65C76FA1F25FED --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_th-th_50185c9a7918f7ab\services.exe.mui --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ?????????????? Microsoft® Windows® Copyright: © Microsoft Corporation ????????????? Original Filename: services.exe.mui File type: ----a-w- File size: 16896 Created time: 2011-04-25 20:29:39 Modified time: 2009-07-13 16:53:46 MD5: A503B769811E6B548E1DF08670E32B04 SHA1: B68027D4732CEBEB95C26C8C324C6ACFC9CA71DF --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_tr-tr_541b852e76903c5b\services.exe.mui --- Company: Microsoft Corporation File Description: Hizmetler ve Denetleyici uygulamas? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® ??letim Sistemi Copyright: © Microsoft Corporation. Tüm haklar? sakl?d?r. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 22:45:26 Modified time: 2009-07-13 16:57:54 MD5: BF100C8718B2AD137ACCD16DAFD107DF SHA1: C1200B55DB1DB18A0C42F7B202DD6C5EDBD5D703 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_uk-ua_effb67d56dc162a7\services.exe.mui --- Company: Microsoft Corporation File Description: ?????????? ?????????? ?? ????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ?????????? ??????? Microsoft® Windows® Copyright: © ?????????? ?????????? (Microsoft Corporation). ??? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 19:44:12 Modified time: 2009-07-13 16:53:38 MD5: F8127D4883A37938A3DD86F0D7EB086A SHA1: F12099DCB741AA376BDAE4B526A902A01516AADF --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_2578a32c26c80e7a\services.exe.mui --- Company: Microsoft Corporation File Description: ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 8704 Created time: 2011-04-25 22:25:21 Modified time: 2009-07-13 18:08:38 MD5: 80715CABC9EC87D30CCBF3E5BF704332 SHA1: BC66A21C49CB2657AE2ABF723A0A56E3B5934661 --- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_zh-tw_2974e0822438eaea\services.exe.mui --- Company: Microsoft Corporation File Description: ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 8704 Created time: 2011-04-25 23:36:45 Modified time: 2009-07-13 18:08:42 MD5: D08F9475A0A87D2D9A6870B61C3092E1 SHA1: 3D47EBC202658E397699BEA466092B3909A78B6D --- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe File type: ----a-w- File size: 328704 Created time: 2009-07-13 23:19:46 Modified time: 2009-07-14 01:39:37 MD5: 24ACB7E5BE595468E3B9AA488B9B4FCB SHA1: A5B16A7D28D2BA79A9CCFC16ED480AD75A757166 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ar-sa_3152953e7aa3aa88_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: ?© Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 15872 Created time: 2011-04-25 19:07:41 Modified time: 2011-04-25 19:05:28 MD5: E9D0900772B52AB3F1B0EA2BB08C4E6C SHA1: FA43DBE4050F3A7FAEA7D3E34D46E91CC7D2BE9B --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_bg-bg_d79276c76b23fbdf_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ?????????? ?? ?????? ? ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ??????????? ??????? Microsoft® Windows® Copyright: © Microsoft Corporation. ?????? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 22:44:11 Modified time: 2011-04-25 22:43:55 MD5: 8C88453F39470BA09029BDFC7A9A6D95 SHA1: 16BED63613284C53904ACCD9AA52DE65FD18092E --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_829bed6258abd80a_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. Všechna práva vyhrazena. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 20:47:11 Modified time: 2011-04-25 20:44:38 MD5: 11387BE13068750A0D7A9E4CA9649373 SHA1: 06A7B12E1D8BE55AE7A66212AA15F0165A7CAA27 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_da-dk_1fd5cd894ef1d409_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Tjenester og controllerprogrammer File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operativsystem Copyright: © Microsoft Corporation. Alle rettigheder forbeholdes. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-26 00:13:46 Modified time: 2011-04-26 00:12:44 MD5: 62DAC757CFBD330E4F2A2CF387F672EF SHA1: 2C43A116897E64ECAB6A332EFDED1921AA222B44 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_de-de_1d0162c550c828a3_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Anwendung für Dienste und Controller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Betriebssystem Microsoft® Windows® Copyright: © Microsoft Corporation. Alle Rechte vorbehalten. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 18:52:00 Modified time: 2011-04-25 18:50:45 MD5: F0E13F46C1944FCE489C9A18372C3ED8 SHA1: AEABCB79DA685D623DF50C15760F2C24B969F59F --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_el-gr_c59790583fdd9131_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ???????? ????????? ??? ??????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ??????????? ??????? Microsoft® Windows® Copyright: © Microsoft Corporation. ?? ????????? ???? ??????? ???????????. Original Filename: services.exe.mui File type: ----a-w- File size: 20992 Created time: 2011-04-25 21:41:47 Modified time: 2011-04-25 21:40:41 MD5: 5FFB6A441A1CA12DF3B280CFCF153DB9 SHA1: 6703EE0BE6063ED563EF4BDFA65740FA383761F9 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2009-07-14 05:42:57 Modified time: 2009-07-14 05:42:51 MD5: 6507BF0DC2D1F5F32493C288EAA59277 SHA1: 6ACBFC90F392748BDDE10CE76A0176F8FA0523D3 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_es-es_c5bd95a23fcd260d_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Aplicación de servicios y controlador File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Reservados todos los derechos. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 19:42:12 Modified time: 2011-04-25 19:40:47 MD5: EBD7B77F4CAF420799840882B179ADC6 SHA1: C27A70DD097B7EE259953C9E9C134FB296EEFBB1 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_et-ee_bf7d613243d3029c_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Teenuste ja kontrolleri rakendus File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operatsioonisüsteem Microsoft® Windows® Copyright: © Microsoft Corporation. Kõik õigused kaitstud. Original Filename: services.exe.mui File type: ----a-w- File size: 16896 Created time: 2011-04-25 22:16:33 Modified time: 2011-04-25 22:16:17 MD5: E0D92FB3A7311468FFAA5EED4F3196E6 SHA1: 51C1008D727CB2F9334DA2A69EA46904A9366B35 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_fi-fi_64d89a4f34e71837_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Palvelu- ja ohjainohjelma File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® -käyttöjärjestelmä Copyright: © Microsoft Corporation. Kaikki oikeudet pidätetään. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 20:09:34 Modified time: 2011-04-25 20:08:31 MD5: 03B4952EC0933EBB9F8DEA9C8A812C29 SHA1: 9E5A1FDEA33A89B0BDA9B6628C15D03CDDD5976D --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_fr-fr_68750ba1329f3c6f_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Applications Services et Contrôleur File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Système d’exploitation Microsoft® Windows® Copyright: © Microsoft Corporation. Tous droits réservés. Original Filename: services.exe.mui File type: ----a-w- File size: 19968 Created time: 2011-04-25 20:28:06 Modified time: 2011-04-25 20:27:15 MD5: 18A525B3727F2AE7E8D440F42FC82C2E SHA1: 9387E5E4575C9D124358DACDE47D166C6CCB3BEA --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_he-il_ac94b343190e3d5d_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ??????? ??????? ???? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 14848 Created time: 2011-04-25 19:31:16 Modified time: 2011-04-25 19:30:26 MD5: 507399F526A76481E3CDA23445955929 SHA1: 5169F71391355DAD5F07E8D08CEDC1D599E1269A --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_hr-hr_aeb1662317c1aa23_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Servisi i aplikacija kontrolera File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacijski sustav Microsoft® Windows® Copyright: © Microsoft Corporation. Sva prava pridržana. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-26 00:00:58 Modified time: 2011-04-26 00:00:41 MD5: 6CE5201E3CF600E0AF21C1BF2C0DD1D0 SHA1: DFBDEC7ED6DD620F71AB613958A8310DBCC8D142 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_hu-hu_afe58be916ff0b8b_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Szolgáltató és vezérl? alkalmazás File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® operációs rendszer Copyright: © Microsoft Corporation. Minden jog fenntartva. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-25 19:59:03 Modified time: 2011-04-25 19:58:00 MD5: 4FF00357C23A9DB81045B9B0FB593920 SHA1: B3FC63323C7BF63C0141A5605A2BD21CB3FA804B --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_it-it_529d01e809d121ed_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Applicazione Servizi e Controller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Tutti i diritti riservati. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 19:17:19 Modified time: 2011-04-25 19:15:48 MD5: 2DB09CB5CC5E025D1381123F00AAA71D SHA1: A4A03790722736F2B339117527A9AEF18D58FC21 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_f4c280f4fcec33c8_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ???????????? ???????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 11776 Created time: 2011-04-26 00:31:20 Modified time: 2011-04-26 00:29:53 MD5: 130B7341F5446430B3FFB7DCD9A786E3 SHA1: ADE84F4AB2163587C0101B202C07D094575552F0 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_982c5da9ef5cfade_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ??? ? ???? ?? ???? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 11264 Created time: 2011-04-25 21:07:22 Modified time: 2011-04-25 21:06:34 MD5: 424DA2137012397299C94B7342F3D19E SHA1: 8470CB74EBAF27F4028F875B86F0CE99C34641E9 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_lt-lt_3bf789aae184c67b_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Tarnyb? ir valdiklio taikomosios programos File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacin? sistema Microsoft® Windows® Copyright: © Microsoft Corporation. Visos teis?s ginamos. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 22:09:36 Modified time: 2011-04-25 22:09:19 MD5: 504F8B0A67D4AE3E981C09C1F25CEF75 SHA1: 3D9A54E1285B81B19D7601D1F3A0D5EF67A0EB70 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_lv-lv_3cc4f82ee103076b_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Pakalpojumu un kontrollera lietojumprogramma File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Oper?t?jsist?ma Microsoft® Windows® Copyright: © Microsoft Corporation. Visas ties?bas patur?tas. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 20:17:14 Modified time: 2011-04-25 20:16:57 MD5: AA7C40AA8928D17BEB293741C5ABC200 SHA1: 208965AF401AAE6CEE111C57492FBB4D8A23B6B1 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_nb-no_80bededec782269a_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Program for tjenester og kontroller File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativsystemet Microsoft® Windows® Copyright: © Microsoft Corporation. Med enerett. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 21:51:54 Modified time: 2011-04-25 21:50:50 MD5: 06F1D18489683D6A92DC1708DDAB1F57 SHA1: FBC621D373F3027C1325C04B1C0235C40AA7BD49 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_nl-nl_7efe2a1cc8ae306f_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services en controllertoepassingen File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Besturingssysteem Microsoft® Windows® Copyright: © Microsoft Corporation. Alle rechten voorbehouden. Original Filename: services.exe.mui File type: ----a-w- File size: 19456 Created time: 2011-04-12 19:07:12 Modified time: 2011-04-12 19:05:57 MD5: B84CF40C8CF1DA44A95CC37E360EB977 SHA1: 84AEDB6613B24923B8ABC20D2EF77022ED187AD9 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pl-pl_c53a849eadd09e23_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Us?ugi i aplikacja Kontroler File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: System operacyjny Microsoft® Windows® Copyright: © Microsoft Corporation. Wszelkie prawa zastrze?one. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 23:07:19 Modified time: 2011-04-25 23:06:18 MD5: 00AB3621DF742387F851752C2C8BEABF SHA1: 2751A0FA4CD29C1C7DC1FAF47819417C433E56F6 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pt-br_c78e6f42ac5a3207_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Aplicativo de serviços e controle File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema Operacional Microsoft® Windows® Copyright: © Microsoft Corporation. Todos os direitos reservados. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 23:33:54 Modified time: 2011-04-25 23:32:54 MD5: 50535783545434F9F2AB62A53C706EFA SHA1: CEBAC058D5EA86640EB7F565E275C34B3E20B44B --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_pt-pt_c8703eaeabc9a1e3_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Aplicação de serviços e controlo File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistema operativo Microsoft® Windows® Copyright: © Microsoft Corporation. Todos os direitos reservados. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-25 23:21:15 Modified time: 2011-04-25 23:20:16 MD5: 41DB03418DF56EF7DCCA75086DBEB772 SHA1: FFD023B570C39696795438B328A45901E6FBF31F --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ro-ro_0cab04e692306d3f_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Servicii ?i aplica?ii de control File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Sistem de operare Microsoft® Windows® Copyright: © Microsoft Corporation. Toate drepturile rezervate. Original Filename: services.exe.mui File type: ----a-w- File size: 18944 Created time: 2011-04-28 01:17:44 Modified time: 2011-04-28 00:52:37 MD5: 45DB0782754B0C2AAFE0722AD2BD5B93 SHA1: 625556DBE77F7FE88DE5B24F37197B206E9098E4 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_ru-ru_0f13507290ab300f_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ?????????? ????? ? ???????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ???????????? ??????? Microsoft® Windows® Copyright: © ?????????? ??????????. ??? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 22:02:04 Modified time: 2011-04-25 22:00:59 MD5: EB63EE0FD3C4826F45845C6E83058570 SHA1: BCA9D57025F610088DA97F015D934DEB09F5C012 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_ae2e551f85c52239_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. Všetky práva vyhradené. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 18:57:03 Modified time: 2011-04-25 18:56:45 MD5: 4CF36013D04041D604E21CC6F80B73F7 SHA1: 682A5F7A06C5DCD8C6DDE944003A9390EF15C7C7 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sl-si_ad4076d7865f351c_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Program za storitve in krmilnik File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operacijski sistem Microsoft® Windows® Copyright: © Microsoft Corporation. Vse pravice pridržane. Original Filename: services.exe.mui File type: ----a-w- File size: 17920 Created time: 2011-04-25 19:24:08 Modified time: 2011-04-25 19:23:51 MD5: 42A149B4C86CD8B535532CEF34F70414 SHA1: 483182505477374583BE0DE4BCC26B44952A0493 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sr-..-cs_4cc9f369ffb79864_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Aplikacija usluga i kontrolera File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativni sistem Microsoft® Windows® Copyright: © Microsoft Corporation. Sva prava zadržana. Original Filename: services.exe.mui File type: ----a-w- File size: 18432 Created time: 2011-04-25 22:23:55 Modified time: 2011-04-25 22:23:39 MD5: D6C519FD0BF69F3265646DAFC3547BA9 SHA1: 49E5F6DC03004779B58FA3D61F8B35782BD5E3D0 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_sv-se_ab0e3ae787d43a6a_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Tjänst- och styrenhetsprogram File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Operativsystemet Microsoft® Windows® Copyright: © Microsoft Corporation. Med ensamrätt. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 21:30:31 Modified time: 2011-04-25 21:28:41 MD5: A4880BDF654678A0C2D3BB1243BC4D45 SHA1: 16767E7DC2F87BE8F11D8149EB65C76FA1F25FED --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_th-th_50185c9a7918f7ab_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ?????????????? Microsoft® Windows® Copyright: © Microsoft Corporation ????????????? Original Filename: services.exe.mui File type: ----a-w- File size: 16896 Created time: 2011-04-25 20:37:05 Modified time: 2011-04-25 20:36:47 MD5: A503B769811E6B548E1DF08670E32B04 SHA1: B68027D4732CEBEB95C26C8C324C6ACFC9CA71DF --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_tr-tr_541b852e76903c5b_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: Hizmetler ve Denetleyici uygulamas? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® ??letim Sistemi Copyright: © Microsoft Corporation. Tüm haklar? sakl?d?r. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 22:55:13 Modified time: 2011-04-25 22:54:03 MD5: BF100C8718B2AD137ACCD16DAFD107DF SHA1: C1200B55DB1DB18A0C42F7B202DD6C5EDBD5D703 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_uk-ua_effb67d56dc162a7_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ?????????? ?????????? ?? ????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: ?????????? ??????? Microsoft® Windows® Copyright: © ?????????? ?????????? (Microsoft Corporation). ??? ????? ????????. Original Filename: services.exe.mui File type: ----a-w- File size: 17408 Created time: 2011-04-25 19:50:17 Modified time: 2011-04-25 19:49:59 MD5: F8127D4883A37938A3DD86F0D7EB086A SHA1: F12099DCB741AA376BDAE4B526A902A01516AADF --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_2578a32c26c80e7a_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 8704 Created time: 2011-04-25 22:35:23 Modified time: 2011-04-25 22:34:14 MD5: 80715CABC9EC87D30CCBF3E5BF704332 SHA1: BC66A21C49CB2657AE2ABF723A0A56E3B5934661 --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_zh-tw_2974e0822438eaea_services.exe.mui_86ea5e71 --- Company: Microsoft Corporation File Description: ?????????? File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe.mui File type: ----a-w- File size: 8704 Created time: 2011-04-25 23:50:28 Modified time: 2011-04-25 23:49:07 MD5: D08F9475A0A87D2D9A6870B61C3092E1 SHA1: 3D47EBC202658E397699BEA466092B3909A78B6D --- C:\Windows\winsxs\Backup\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1_services.exe_abfc33da --- Company: Microsoft Corporation File Description: Services and Controller app File Version: 6.1.7600.16385 (win7_rtm.090713-1255) Product Name: Microsoft® Windows® Operating System Copyright: © Microsoft Corporation. All rights reserved. Original Filename: services.exe File type: ----a-w- File size: 328704 Created time: 2009-07-14 02:59:34 Modified time: 2009-07-14 02:58:23 MD5: 24ACB7E5BE595468E3B9AA488B9B4FCB SHA1: A5B16A7D28D2BA79A9CCFC16ED480AD75A757166 ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-05-29 22:42:46 292233DF74F1CE65A5DAE574052D06A8 49152 ----a-w- C:\Windows\OvtWia.dll 2013-05-29 22:21:56 7ED438C44B90AF7B01609A942C7E7196 212480 ----a-w- C:\Windows\PCDLIB32.DLL 2013-05-27 23:38:55 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-27 23:38:55 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-27 23:38:55 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-27 23:38:55 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-27 23:38:55 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2013-05-25 03:39:12 791858B56C3E819AF28D776EDB426DEB 790994564 ----a-w- C:\Windows\MEMORY.DMP ====== C:\Users\Hendrik\AppData\Local\Temp ==== ====== C:\Windows\SysWOW64 ===== 2013-05-26 20:28:04 8255AD29A44B2E14B2DD99319F92A0AB 95648 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-05-19 15:25:57 AC2EADCDF2ECE022D1DBCEAE3FA9AF25 621056 ------w- C:\Windows\SysWOW64\MJ14.exe 2013-05-16 17:50:02 565D78187494FB5F08B5A52DEB2AEA7A 12872704 ----a-w- C:\Windows\SysWOW64\shell32.dll 2013-05-16 17:50:00 E904178851A6A44BFA97E064EF779E9D 1796096 ----a-w- C:\Windows\SysWOW64\authui.dll 2013-05-16 17:50:00 1F05F5A16881CD928C82D53CEFCF4477 180224 ----a-w- C:\Windows\SysWOW64\shdocvw.dll 2013-05-16 17:12:07 49834B94A8E8383B700EDDEF46C2AE6A 2706432 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2013-05-16 17:12:06 28AEB03752D716BF149DBC93A9ACC17E 391168 ----a-w- C:\Windows\SysWOW64\ieui.dll 2013-05-16 17:12:02 DFDBC397D0DDBD1AFA3CB400D4C003A9 61440 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2013-05-16 17:12:01 5915AA67DECA289F7B4AFB686CDB09E9 71680 ----a-w- C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-05-16 17:12:01 3CC9825BFFE7B7429C8B79B0395ACDA8 33280 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2013-05-16 17:12:01 366D8EA2ADCBA228C9487BC6D2427DDC 109056 ----a-w- C:\Windows\SysWOW64\iesysprep.dll 2013-05-16 17:12:00 52AA8A8DA4175580F365D275EB53DBE3 493056 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2013-05-16 17:11:59 F59A16A9418044C1D505C53DA370B099 2046976 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2013-05-16 17:11:57 65C95886E1B17001ADDF163AC18C5525 1130496 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2013-05-16 17:11:55 0142341520F0A0F2B0E312335B96705B 690688 ----a-w- C:\Windows\SysWOW64\jscript.dll 2013-05-16 17:11:54 C9A062F32FF600C96795B43CD9A53151 2877440 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2013-05-16 17:11:52 5ABB3F36AF17007F33FA275E96A2C95E 1767424 ----a-w- C:\Windows\SysWOW64\wininet.dll 2013-05-16 17:11:52 03180AFD271BFD88813F428421BC4A1A 39424 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2013-05-16 17:11:47 7A468BC721C1D34E60389D3F2F87BBEA 14323712 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2013-05-16 17:11:40 D5E5A86F49ACC11768D8339094C3AFD8 13760512 ----a-w- C:\Windows\SysWOW64\ieframe.dll ====== C:\Windows\SysWOW64\drivers ===== 2013-05-29 22:21:59 6CCD1135320109D6B219F1A6E04AD9F6 22784 ----a-w- C:\Windows\SysWOW64\drivers\afc.sys ====== C:\Windows\Sysnative ===== 2013-05-26 19:30:14 315781E506D97F08E22F164B36EB5C11 108448 ----a-w- C:\Windows\Sysnative\WindowsAccessBridge-64.dll 2013-05-19 15:25:57 AC2EADCDF2ECE022D1DBCEAE3FA9AF25 621056 ------w- C:\Windows\Sysnative\MJ14.exe 2013-05-16 17:50:45 FE90B750AB808FB9DD8FBB428B5FF83B 230400 ----a-w- C:\Windows\Sysnative\wwansvc.dll 2013-05-16 17:50:45 30B1489F2DCD8DC1AB6BB60CA6093615 48640 ----a-w- C:\Windows\Sysnative\wwanprotdim.dll 2013-05-16 17:50:37 943F527DF79E6B400104341AA7023C75 144384 ----a-w- C:\Windows\Sysnative\cdd.dll 2013-05-16 17:50:06 1BFC94665BCA35F9001ADC7BFB167C63 14172672 ----a-w- C:\Windows\Sysnative\shell32.dll 2013-05-16 17:50:03 3EF480BFED1B5947A32585E30A58D4ED 1930752 ----a-w- C:\Windows\Sysnative\authui.dll 2013-05-16 17:50:03 22A0AE97360C1B146FDD9AA55AC0E989 197120 ----a-w- C:\Windows\Sysnative\shdocvw.dll 2013-05-16 17:50:01 E948D1D42DC68923ABD75EEB5BCCD1D3 111448 ----a-w- C:\Windows\Sysnative\consent.exe 2013-05-16 17:49:58 9D2A2369AB4B08A4905FE72DB104498F 70144 ----a-w- C:\Windows\Sysnative\appinfo.dll 2013-05-16 17:48:22 A11523523B31086DD760C0189C763359 3153920 ----a-w- C:\Windows\Sysnative\win32k.sys 2013-05-16 17:12:07 9B2BB51ED6D28860A48CFF46FD6D3DC1 2706432 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2013-05-16 17:12:06 FE6CB2001A8C2A85B617CD3FC85D8242 526336 ----a-w- C:\Windows\Sysnative\ieui.dll 2013-05-16 17:12:05 42758AF68D3C4912C8D8A18088AD2555 51712 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2013-05-16 17:12:02 97588F2871E1FE8E3EB57B17B98DF03B 67072 ----a-w- C:\Windows\Sysnative\iesetup.dll 2013-05-16 17:12:02 168602AB16D30D5D6E091CA609FC7E75 39936 ----a-w- C:\Windows\Sysnative\iernonce.dll 2013-05-16 17:12:01 A197763AA7487807279AB61CD6835CEF 89600 ----a-w- C:\Windows\Sysnative\RegisterIEPKEYs.exe 2013-05-16 17:12:00 EC6E8273B6CB79CA5B7B00CA82D1FCEE 136704 ----a-w- C:\Windows\Sysnative\iesysprep.dll 2013-05-16 17:12:00 7DAA72F6C30D81EE31EC2BDC90054326 603136 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2013-05-16 17:11:59 9D6B9124B582F0FBF275B434CE5A672C 2647552 ----a-w- C:\Windows\Sysnative\iertutil.dll 2013-05-16 17:11:56 E34F0440799F9A0F9DC4265F4ADA75C1 1365504 ----a-w- C:\Windows\Sysnative\urlmon.dll 2013-05-16 17:11:56 772EC073332D1BA2DBEC32C6D063811A 855552 ----a-w- C:\Windows\Sysnative\jscript.dll 2013-05-16 17:11:54 2C96C695B6015042AC867EA419A45C20 3958784 ----a-w- C:\Windows\Sysnative\jscript9.dll 2013-05-16 17:11:52 254502230F2259D255D4149C235173B1 53248 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2013-05-16 17:11:50 27A9000C534AA9BADC9EE74940F50C6D 2242048 ----a-w- C:\Windows\Sysnative\wininet.dll 2013-05-16 17:11:44 C56EF4C50A1FEED0CC9B7AE068CBBBBB 19231232 ----a-w- C:\Windows\Sysnative\mshtml.dll 2013-05-16 17:11:42 7F4F74880E0B586EB7A9E225C34B1296 15404032 ----a-w- C:\Windows\Sysnative\ieframe.dll ====== C:\Windows\Sysnative\drivers ===== 2013-05-16 17:50:38 AF2E16242AA723F68F461B6EAE2EAD3D 983400 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys 2013-05-16 17:50:38 1F04CFB79DD5FB7694468CE3FB3DCC31 265064 ----a-w- C:\Windows\Sysnative\drivers\dxgmms1.sys ====== C:\Windows\Tasks ====== 2013-05-29 23:07:04 F34834A54AD3AC01EAF9D33E17697B33 3350 ----a-w- C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1364749199-3237543244-4035560231-1000 2013-05-25 02:14:44 B8E6D41F2A6A99B1974E2C1053B285AE 3124 ----a-w- C:\Windows\Sysnative\Tasks\{353AAF2B-C217-498C-98F7-38CC7F9E7293} ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-05-24 11:42:08 -------- d-----w- C:\Program Files\Microsoft Games ======= C:\Program Files (x86) ===== 2013-05-29 22:49:32 -------- d-----w- C:\Program Files (x86)\OVT 2013-05-29 22:21:27 -------- d-----w- C:\Program Files (x86)\Common Files\ArcSoft 2013-05-29 22:21:26 -------- d-----w- C:\Program Files (x86)\ArcSoft 2013-05-27 13:32:01 -------- d-----w- C:\Program Files (x86)\MPC-HC 2013-05-25 10:14:27 -------- d-----w- C:\Program Files (x86)\FileASSASSIN 2013-05-24 01:57:17 -------- d-----w- C:\Program Files (x86)\x264 Video Codec 2013-05-19 15:58:21 -------- d-----w- C:\Program Files (x86)\Webteh 2013-05-19 15:25:56 -------- d-----w- C:\Program Files (x86)\J River ======= C: ===== 2013-05-29 21:47:39 9A5ADA74C1E0416CA6F674A041F8ED61 77 ----a-w- C:\ADR_ColdStart.txt 2013-05-25 04:00:39 20E48F216A4627245A8002264FAE03BA 2336 ----a-w- C:\AdwCleaner[s2].txt 2013-05-25 03:57:52 5CBC797FAAD0084DF4A0321486249431 2242 ----a-w- C:\AdwCleaner[R1].txt ====== C:\Users\Hendrik\AppData\Roaming ====== 2013-05-29 22:24:36 -------- d-----w- C:\users\Hendrik\AppData\Local\ArcSoft 2013-05-29 22:22:01 -------- d-----w- C:\users\Hendrik\AppData\Roaming\ArcSoft 2013-05-28 00:35:53 -------- d-----w- C:\users\Hendrik\AppData\Roaming\Media Player Classic 2013-05-28 00:09:01 -------- d-----w- C:\users\UpdatusUser\AppData\Local\temp 2013-05-28 00:09:01 -------- d-----w- C:\users\Public\AppData\Local\temp 2013-05-28 00:09:01 -------- d-----w- C:\users\Default\AppData\Local\temp 2013-05-28 00:09:01 -------- d-----w- C:\users\Default User\AppData\Local\temp 2013-05-28 00:09:01 -------- d-----w- C:\users\AppData\AppData\Local\temp 2013-05-24 01:57:23 -------- d-----w- C:\users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec 2013-05-19 15:58:25 -------- d-----w- C:\users\Hendrik\AppData\Roaming\BSplayer Pro 2013-05-19 15:58:25 -------- d-----w- C:\users\Hendrik\AppData\Roaming\BSplayer 2013-05-19 15:34:38 -------- d-----w- C:\users\Hendrik\AppData\Local\DDMSettings 2013-05-19 15:25:35 -------- d-----w- C:\users\Hendrik\AppData\Roaming\J River ====== C:\Users\Hendrik ====== 2013-05-29 23:01:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect 2013-05-29 22:49:33 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ovt 2013-05-29 22:24:06 -------- d-----w- C:\ProgramData\ArcSoft 2013-05-29 22:21:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoImpression 6 2013-05-28 00:09:01 -------- d-----w- C:\Users\Public\AppData 2013-05-28 00:09:01 -------- d-----w- C:\Users\AppData\AppData 2013-05-27 13:32:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC 2013-05-25 10:14:27 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN 2013-05-19 15:59:18 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player 2013-05-19 15:27:46 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\J. River Media Jukebox 14 ====== C: exe-files == 2013-05-29 23:01:33 E72831417985680AAF432610DE880E53 192512 ----a-w- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\AcStBmhE.exe 2013-05-29 23:01:04 E8D31635B53668D75F01C67275669722 81920 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\uTwainPhotoExe.exe 2013-05-29 23:01:04 4CFFA06DBD22569068F05FD625800F65 81920 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\uTwainFilmExe.exe 2013-05-29 23:00:55 E61D65C33F2ECC93AE0C005DAC76D087 175104 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{063E409E-3D7C-4A4A-95AB-2F124B9224B3}\Setup.exe 2013-05-29 22:22:00 A021285655B6C0B2EB6ECDD9CDF45A44 51712 ----a-w- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACRun.exe 2013-05-29 22:22:00 82AC6AE0F6A7906861429EB852248F98 96768 ----a-w- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACStart.exe 2013-05-29 22:22:00 769DB4F484957CC98153B3C1B5D1162F 109056 ----a-w- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe 2013-05-29 22:22:00 764A17F28192A3EC01ACD1C034405B1C 188728 ----a-w- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe 2013-05-29 22:21:43 944904845529B7D84E9E6DF73406FBB4 60160 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\Modules\SimpleEmail\Sendmail.exe 2013-05-29 22:21:42 1BB52BD6B2F4F75B07AB4C4A334D2050 97024 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\Modules\OrderPrintsOnline\Update.exe 2013-05-29 22:21:33 A19B87F7F263D99393432FDD1A845DA2 65536 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\uTwainExe.exe 2013-05-29 22:21:30 9B13717CBE7AD0DB055136BA81E05E2C 35584 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\TwainEnum.exe 2013-05-29 22:21:30 681202A6A5CDF4CEE504FBC3F3CB48BD 252672 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\PhotoViewer.exe 2013-05-29 22:21:29 9EEA978178A634A54CA6B0BC3C1645FC 167936 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\PhotoImpression.exe 2013-05-29 22:21:29 10FCF11B3AE0AF10E967FABE7476184B 117504 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\Monitor.exe 2013-05-29 22:21:28 BD3CD198FA568B11DF62B76245F799D1 43776 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\InitMediaLib.exe 2013-05-29 22:21:28 AFD801812E74471B8F01AE5391B75AC6 142080 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\MediaPlayer.exe 2013-05-29 22:21:26 8F1810ECD51F9F6B93A636ABD2525532 154112 ----a-w- C:\Program Files (x86)\ArcSoft\PhotoImpression 6\CheckUpdate.exe 2013-05-29 22:21:22 13A3876A7217F84BC045326C7C86E2A6 175104 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{D56401D6-E356-4CA5-97A3-024D666F5E5C}\Setup.exe 2013-05-27 23:38:55 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2013-05-27 23:38:55 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2013-05-27 23:38:55 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2013-05-27 23:38:55 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2013-05-27 23:38:55 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2013-05-27 13:32:02 B4704B8857ED25E38D062369D2E4788A 11386208 ----a-w- C:\Program Files (x86)\MPC-HC\mpc-hc.exe 2013-05-27 13:32:01 B5CF68927816EDDFBC5FF9AA802DC80F 1239392 ----a-w- C:\Program Files (x86)\MPC-HC\unins000.exe 2013-05-26 13:44:32 7B9319D6C9CCE7467D0A0F2773B08E64 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2013-05-26 13:44:32 3ECAC6384B793F4E73C71C822581EE63 54632 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2013-05-26 13:44:32 2C47C653DB966100F841F89FDF97B75D 130408 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2013-05-26 13:44:32 01D20A3F86B8481950C368060898C967 103272 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2013-05-25 10:14:28 0D4D1BA51BF0C1480AEAAF79E0EBE995 69223 ----a-w- C:\Program Files (x86)\FileASSASSIN\uninst.exe 2013-05-24 01:57:31 98C41AB0F6C05B0DEC773EC74526EACC 371561 ----a-w- C:\Program Files (x86)\x264 Video Codec\Uninstall.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:11 46BC5F8AB093CAAD1135003AE7F1ABDD 1918976 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\CurseClient.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs...exe_9e9e83ddf3ed3ead_0005.0001_none_ee6919cf167f23c7\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs...exe_9e9e83ddf3ed3ead_0005.0001_none_ee6919cf167f23c7\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs...exe_9e9e83ddf3ed3ead_0005.0001_none_ee6919cf167f23c7\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs...exe_9e9e83ddf3ed3ead_0005.0001_none_ee6919cf167f23c7\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs...exe_9e9e83ddf3ed3ead_0005.0001_none_ee6919cf167f23c7\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe 2013-05-23 11:02:10 122787B85554A8D7B3D4C0B2B138A1DC 133632 ----a-w- C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Apps\2.0\QNGTC4Y9.75E\YWZ2QVZG.EQN\curs..tion_9e9e83ddf3ed3ead_0005.0001_181b5e0542e9eb6c\ESMODInstaller\Curse.CurseClient.CMODInstaller.exe === C: other files == 2013-05-29 22:21:59 6CCD1135320109D6B219F1A6E04AD9F6 22784 ----a-w- C:\Windows\SysWOW64\drivers\afc.sys 2013-05-28 00:36:37 0F69938F999304C2039FE62C2938C798 56101 ----a-w- C:\Users\Hendrik\AppData\Roaming\J River\Media Jukebox 14\Library Backups\MJ Library Backup (Default - mei).zip ==== Startup Registry Enabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" "Ulead AutoDetector v2"="C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe" "Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" "TkBellExe"="C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe -osboot" "DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" "DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "ArcSoft Connection Service"="C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s" "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonMyPrinter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CanonMyPrinter" "hkey"="HKLM" "command"="C:\\Program Files\\Canon\\MyPrinter\\BJMyPrt.exe /logon" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonSolutionMenu] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CanonSolutionMenu" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Canon\\SolutionMenu\\CNSLMAIN.exe /logon" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EaseUs Tray] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="EaseUs Tray" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\EASEUS\\Todo Backup\\bin\\TrayNotify.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EaseUs Watch] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="EaseUs Watch" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\EASEUS\\Todo Backup\\bin\\EuWatch.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Freecorder FLV Service] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Freecorder FLV Service" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Freecorder\\FLVSrvc.exe\" /run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MediaGet2] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MediaGet2" "hkey"="HKCU" "command"="C:\\Users\\Hendrik\\AppData\\Local\\MediaGet2\\mediaget.exe --minimized" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Pando Media Booster] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Pando Media Booster" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Pando Networks\\Media Booster\\PMB.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Xvid] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Xvid" "hkey"="HKCU" "command"="C:\\Program Files (x86)\\Xvid\\CheckUpdate.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^simplicheck.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\simplicheck.lnk" "backup"="C:\\Windows\\pss\\simplicheck.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\SIMPLI~1\\SIMPLI~1\\SIMPLI~1.EXE -timer" "item"="simplicheck" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Hendrik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Curse Client.lnk] "path"="C:\\Users\\Hendrik\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Curse Client.lnk" "backup"="C:\\Windows\\pss\\Curse Client.lnk.Startup" "backupExtension"=".Startup" "command"="C:\\Users\\Hendrik\\AppData\\Local\\Apps\\2.0\\QNGTC4Y9.75E\\YWZ2QVZG.EQN\\curs..tion_eee711038731a406_0004.0000_2bd39706d04e72c8\\CurseClient.exe " "item"="Curse Client" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Hendrik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip] "path"="C:\\Users\\Hendrik\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CurseClientStartup.ccip" "backup"="C:\\Windows\\pss\\CurseClientStartup.ccip.Startup" "backupExtension"=".Startup" "command"="C:\\Users\\Hendrik\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CurseClientStartup.ccip" "item"="CurseClientStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Hendrik^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3 .lnk] "path"="C:\\Users\\Hendrik\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OpenOffice.org 3.3 .lnk" "backup"="C:\\Windows\\pss\\OpenOffice.org 3.3 .lnk.Startup" "backupExtension"=".Startup" "command"="C:\\PROGRA~2\\OPENOF~1.ORG\\program\\QUICKS~1.EXE " "item"="OpenOffice.org 3.3 " ==== Startup Folders ====================== 2012-11-12 00:51:49 2105 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [15/05/2013 00:11] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/08/2011 23:09] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [19/08/2011 23:09] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Hendrik\AppData\Roaming\Mozilla\Firefox\Profiles\opp9rn57.default - HP Smart Print - %ProfilePath%\extensions\hpwebprint@hpwebprint.com.xpi - Easy YouTube Video Downloader - %ProfilePath%\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi ==== Firefox Plugins ====================== Profilepath: C:\Users\Hendrik\AppData\Roaming\Mozilla\Firefox\Profiles\opp9rn57.default ADC539F67D3198679F480974EE203678 - C:\Windows\SysWOW64\npdeployJava1.dll - Java Deployment Toolkit 7.0.210.11 7ABE33792F2787D599B6963E71B9E8CD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll - Shockwave Flash 66640A55AEFF3819C94E0A8D40D7E0AD - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll - Shockwave for Director / Shockwave for Director F7015E6C5FE1E74C0E029A291E732787 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks RealDownloader Chrome Background Extension Plug-In (32-bit) BF115DE08783E9FA8A9BB83DAA39149B - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks RealDownloader PepperFlashVideoShim Plug-In (32-bit) 395BB0421E1C57D201DCE4D48E05E0BA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks RealDownloader HTML5VideoShim Plug-In (32-bit) A56B8E622037E6D57480F16F4B8F472C - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin 3CB231F12674D3CB0AC1F5EDE9578E85 - C:\Windows\SysWOW64\npwmsdrm.dll - Microsoft® Windows Media Services 15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[06/03/2013 02:26] jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[27/06/2012 13:01] mpfkfpmlciebaiepdediekoemmjaoong - C:\Users\Hendrik\AppData\Local\PC Speed Up Extension\Chrome\PC Speed Up Extension.crx[01/01/2013 00:47] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[06/05/2013 10:12] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Autodesk Design Review 2013.lnk - C:\Program Files (x86)\Autodesk\Autodesk Design Review 2013\DesignReview.exe C:\Users\Public\Desktop\BS.Player FREE.lnk - C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe C:\Users\Public\Desktop\DivX Plus Converter.lnk - C:\Program Files (x86)\DivX\DivX Plus Converter\DivXConverterLauncher.exe C:\Users\Public\Desktop\DivX Plus Player.lnk - C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe C:\Users\Public\Desktop\FileASSASSIN.lnk - C:\Program Files (x86)\FileASSASSIN\FileASSASSIN.exe C:\Users\Public\Desktop\Media Jukebox 14.lnk - C:\Program Files (x86)\J River\Media Jukebox 14\Media Jukebox 14.exe C:\Users\Public\Desktop\Photo Impression 6.lnk - C:\Program Files (x86)\ArcSoft\PhotoImpression 6\PhotoImpression.exe C:\Users\Public\Desktop\Speccy.lnk - C:\Program Files\Speccy\Speccy64.exe C:\Users\Public\Desktop\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Uninstall.lnk - C:\Program Files (x86)\x264 Video Codec\Uninstall.exe C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Filters\FFDShow Audio Decoder Configuration.lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\x264 Video Codec\Filters\FFDShow\ffdshow.ax",configureAudio C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Filters\FFDShow VFW Codec Configuration.lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\x264 Video Codec\Filters\FFDShow\ff_vfw.dll",configureVFW C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Filters\FFDShow Video Decoder Configuration.lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\x264 Video Codec\Filters\FFDShow\ffdshow.ax",configure C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Filters\Haali Media Splitter Settings.lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\x264 Video Codec\Filters\Haali\Splitter.ax",Configure C:\Users\Hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\x264 Video Codec\Filters\VSFilter Configuration.lnk - C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\x264 Video Codec\Filters\vsfilter.dll",DirectVobSub ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk - C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X .lnk - C:\Windows\Installer\{AC76BA86-7AD7-1043-7B44-AA1000000001}\SC_Reader.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect\ArcSoft Connect starten.lnk - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACStart.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect\My ArcSoft Info bekijken.lnk - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACRun.exe ProductInfo.ac C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoImpression 6\PhotoImpression 6 Monitor.lnk - C:\Program Files (x86)\ArcSoft\PhotoImpression 6\Monitor.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoImpression 6\PhotoImpression 6.lnk - C:\Program Files (x86)\ArcSoft\PhotoImpression 6\PhotoImpression.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk\Autodesk Design Review 2013.lnk - C:\Program Files (x86)\Autodesk\Autodesk Design Review 2013\DesignReview.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player\BS.Player FREE.lnk - C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player\Uninstall BS.Player FREE.lnk - C:\Program Files (x86)\Webteh\BSPlayer\uninstall.EXE C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\Program Files\CCleaner\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Check for Updates.lnk - C:\Program Files (x86)\DivX\DivX Control Panel\DivXControlPanelLauncher.exe /start=update C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Plus Converter.lnk - C:\Program Files (x86)\DivX\DivX Plus Converter\DivXConverterLauncher.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Plus Player.lnk - C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\DivX Support.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus\Register.lnk - C:\Program Files (x86)\DivX\DivX Control Panel\DivXControlPanelLauncher.exe /start=registration C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN\FileASSASSIN.lnk - C:\Program Files (x86)\FileASSASSIN\FileASSASSIN.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN\Uninstall.lnk - C:\Program Files (x86)\FileASSASSIN\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Chess.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\FreeCell.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Hearts.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Backgammon.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Checkers.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Internet Spades.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Mahjong.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Minesweeper.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\More Games from Microsoft.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Purble Place.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Solitaire.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\Spider Solitaire.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive\Google Drive.lnk - C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\J. River Media Jukebox 14\Check For Updates.lnk - C:\Program Files (x86)\J River\Media Jukebox 14\PackageInstaller.exe /Update C:\ProgramData\Microsoft\Windows\Start Menu\Programs\J. River Media Jukebox 14\Media Jukebox 14.lnk - C:\Program Files (x86)\J River\Media Jukebox 14\Media Jukebox 14.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\J. River Media Jukebox 14\Uninstall Media Jukebox 14.lnk - C:\Program Files (x86)\J River\Media Jukebox 14\JRMediaUninstall.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC\Changelog.lnk - C:\Program Files (x86)\MPC-HC\Changelog.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC\MPC-HC.lnk - C:\Program Files (x86)\MPC-HC\mpc-hc.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC\Verwijder MPC-HC.lnk - C:\Program Files (x86)\MPC-HC\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ovt\ovtscanner_vista64\Uninstall OVT Scanner.lnk - C:\Windows\SysWOW64\msiexec.exe /x {AE09704D-9051-4C25-B940-77F889F0C93F} C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Speccy.lnk - C:\Program Files\Speccy\Speccy64.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Uninstall Speccy.lnk - C:\Program Files\Speccy\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk - C:\Program Files (x86)\VideoLAN\VLC\Documentation.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk - C:\Program Files (x86)\VideoLAN\VLC\NEWS.txt C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Reset VLC media player preferences and cache files.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe --reset-config --reset-plugins-cache vlc://quit C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk - C:\Program Files (x86)\VideoLAN\VLC\VideoLAN Website.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe -Iskins C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk - C:\Program Files (x86)\VideoLAN\VLC\vlc.exe ==== shortcuts in Quick Launch ====================== C:\Users\Hendrik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BS.Player FREE.lnk - C:\Program Files (x86)\Webteh\BSPlayer\bsplayer.exe C:\Users\Hendrik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Media Jukebox 14.lnk - C:\Program Files (x86)\J River\Media Jukebox 14\Media Jukebox 14.exe C:\Users\Hendrik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Hendrik\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk - C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyOverride"="<local>" "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\users\Hendrik\AppData\Local\Mozilla\Firefox\Profiles\opp9rn57.default\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome Cache found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Hendrik\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temporary Internet Files\Content.IE5\container.dat" not found "C:\Users\Hendrik\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat" not found ==== EOF on do 30/05/2013 at 7:35:07,07 ====================== ik begin me hier toch wel wat zorgen te maken bij het lezen van dit verslag.
-
IE browser geopend en geprobeerd een bestand te downloaden van Bleepingcomputer site, zonder succes. Bestand wordt vernietigd als zijnde virus bevattend bestand. zie screenshot: [ATTACH=CONFIG]26130[/ATTACH] Nogmaals geprobeerd om Microsoft Security Essentials te starten zonder succes, geen permissie. zie screenshot: [ATTACH=CONFIG]26131[/ATTACH]
-
Combofix gedownload via Firefox browser uit Bleepingcomputer. Log Combofix: ComboFix 13-05-27.02 - Hendrik 28/05/2013 1:41.1.2 - x64 Microsoft Windows 7 Enterprise N 6.1.7601.1.1252.32.1033.18.4094.2376 [GMT 2:00] Gestart vanuit: d:\my desktop\ComboFix.exe SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Hendrik\AppData\Local\bonus.exe c:\windows\SysWow64\frapsvid.dll c:\windows\SysWow64\pt c:\windows\SysWow64\pt\AuthFWSnapIn.Resources.dll c:\windows\SysWow64\pt\AuthFWWizFwk.Resources.dll c:\windows\SysWow64\w3url.dll . . (((((((((((((((((((( Bestanden Gemaakt van 2013-04-27 to 2013-05-27 )))))))))))))))))))))))))))))) . . 2013-05-27 13:32 . 2013-05-27 13:32 -------- d-----w- c:\program files (x86)\MPC-HC 2013-05-26 20:29 . 2013-05-26 20:29 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-05-26 20:28 . 2013-05-26 20:27 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-05-26 20:27 . 2013-05-26 20:27 -------- d-----w- c:\program files (x86)\Java 2013-05-26 19:30 . 2013-05-26 19:30 311200 ----a-w- c:\windows\system32\javaws.exe 2013-05-26 19:30 . 2013-05-26 19:30 188832 ----a-w- c:\windows\system32\javaw.exe 2013-05-26 19:30 . 2013-05-26 19:30 188320 ----a-w- c:\windows\system32\java.exe 2013-05-26 19:30 . 2013-05-26 19:30 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2013-05-26 17:54 . 2013-05-26 18:06 -------- d-----w- C:\TDSSKiller_Quarantine 2013-05-25 10:14 . 2013-05-25 10:14 -------- d-----w- c:\program files (x86)\FileASSASSIN 2013-05-24 11:42 . 2013-05-24 11:43 -------- d-----w- c:\program files\Microsoft Games 2013-05-24 01:57 . 2013-05-24 01:57 -------- d-----w- c:\program files (x86)\x264 Video Codec 2013-05-19 15:58 . 2013-05-19 16:06 -------- d-----w- c:\users\Hendrik\AppData\Roaming\BSplayer 2013-05-19 15:58 . 2013-05-19 15:58 -------- d-----w- c:\users\Hendrik\AppData\Roaming\BSplayer Pro 2013-05-19 15:58 . 2013-05-19 15:58 -------- d-----w- c:\program files (x86)\Webteh 2013-05-19 15:34 . 2013-05-19 15:34 -------- d-----w- c:\users\Hendrik\AppData\Local\DDMSettings 2013-05-19 15:25 . 2010-07-15 21:28 621056 ------w- c:\windows\SysWow64\MJ14.exe 2013-05-19 15:25 . 2010-07-15 21:28 621056 ------w- c:\windows\system32\MJ14.exe 2013-05-19 15:25 . 2013-05-19 15:25 -------- d-----w- c:\program files (x86)\J River 2013-05-19 15:25 . 2013-05-19 15:25 -------- d-----w- c:\users\Hendrik\AppData\Roaming\J River 2013-05-16 17:50 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll 2013-05-16 17:50 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll 2013-05-16 17:50 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys 2013-05-16 17:50 . 2013-04-10 06:01 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2013-05-16 17:50 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll 2013-05-16 17:50 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll 2013-05-16 17:50 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll 2013-05-16 17:50 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll 2013-05-16 17:50 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe 2013-05-16 17:50 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll 2013-05-16 17:49 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll 2013-05-16 17:48 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys 2013-05-16 17:11 . 2013-04-05 06:50 2647552 ----a-w- c:\windows\system32\iertutil.dll 2013-05-14 22:11 . 2013-05-14 22:11 9195912 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-05-26 20:27 . 2012-11-11 21:47 866720 ----a-w- c:\windows\SysWow64\npdeployJava1.dll 2013-05-26 20:27 . 2011-04-17 18:53 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-05-26 19:30 . 2012-09-04 20:46 1092512 ----a-w- c:\windows\system32\npdeployJava1.dll 2013-05-26 19:30 . 2011-05-07 14:06 971680 ----a-w- c:\windows\system32\deployJava1.dll 2013-05-24 02:02 . 2009-07-13 23:19 328704 ----a-w- c:\windows\system32\services.exe 2013-05-24 01:58 . 2013-05-24 01:58 76232 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6E782BA2-D9FE-4D25-A0B4-B445F7208D1E}\offreg.dll ERROR(0x00000005) 2013-05-24 01:57 . 2013-05-24 01:57 225280 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Media Tools\MediaIconsOverlays.dll ERROR(0x00000005) 2013-05-21 21:15 . 2013-05-21 21:17 964552 ------w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41C20D7D-C06E-45AF-BC87-322811CAB5DC}\gapaengine.dll ERROR(0x00000005) 2013-05-18 10:32 . 2011-12-26 12:00 48648 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll ERROR(0x00000005) 2013-05-16 17:35 . 2011-04-12 18:43 75016696 ----a-w- c:\windows\system32\MRT.exe 2013-05-14 22:11 . 2012-04-01 20:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-05-14 22:11 . 2011-05-18 17:08 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-05-13 06:37 . 2013-05-23 09:12 9460464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6E782BA2-D9FE-4D25-A0B4-B445F7208D1E}\mpengine.dll ERROR(0x00000005) 2013-05-13 06:37 . 2013-05-21 21:15 9460464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll ERROR(0x00000005) 2013-05-09 18:00 . 2010-06-24 09:33 22240 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig600.dll ERROR(0x00000005) 2013-05-02 15:29 . 2011-04-12 08:08 278800 ------w- c:\windows\system32\MpSigStub.exe 2013-04-24 18:16 . 2011-05-21 10:37 905296 ------w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll ERROR(0x00000005) 2013-04-13 05:49 . 2013-05-16 17:50 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll 2013-04-13 05:49 . 2013-05-16 17:50 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll 2013-04-13 05:49 . 2013-05-16 17:50 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll 2013-04-13 05:49 . 2013-05-16 17:50 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll 2013-04-13 04:45 . 2013-05-16 17:50 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-04-13 04:45 . 2013-05-16 17:50 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-04-12 23:44 . 2013-01-10 00:21 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll 2013-04-12 23:44 . 2013-01-10 00:21 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll 2013-04-12 14:45 . 2013-04-23 19:52 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-03-23 01:09 . 2013-03-23 01:09 354656 ----a-w- c:\windows\SysWow64\DivXControlPanelApplet.cpl 2013-03-19 06:04 . 2013-04-10 10:57 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-03-19 05:46 . 2013-04-10 10:57 43520 ----a-w- c:\windows\system32\csrsrv.dll 2013-03-19 05:04 . 2013-04-10 10:57 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2013-03-19 05:04 . 2013-04-10 10:57 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2013-03-19 04:47 . 2013-04-10 10:57 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll 2013-03-19 03:06 . 2013-04-10 10:57 112640 ----a-w- c:\windows\system32\smss.exe 2013-03-18 12:05 . 2013-03-18 12:05 815320 ----a-w- c:\windows\system32\ncs2dmix.dll 2013-03-18 12:05 . 2013-03-18 12:05 796888 ----a-w- c:\windows\system32\accesor.dll 2013-03-18 11:59 . 2013-03-18 11:59 220888 ----a-w- c:\windows\system32\ncs2instutility.dll 2013-03-18 11:57 . 2013-03-18 11:57 3345112 ----a-w- c:\windows\system32\ncscolib.dll 2013-03-16 13:15 . 2013-03-16 13:15 226304 ----a-w- c:\windows\system32\elshyph.dll 2013-03-16 13:15 . 2013-03-16 13:15 185344 ----a-w- c:\windows\SysWow64\elshyph.dll 2013-03-16 13:15 . 2013-03-16 13:15 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe 2013-03-16 13:15 . 2013-03-16 13:15 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll 2013-03-16 13:15 . 2013-03-16 13:15 523264 ----a-w- c:\windows\SysWow64\vbscript.dll 2013-03-16 13:15 . 2013-03-16 13:15 158720 ----a-w- c:\windows\SysWow64\msls31.dll 2013-03-16 13:15 . 2013-03-16 13:15 150528 ----a-w- c:\windows\SysWow64\iexpress.exe 2013-03-16 13:15 . 2013-03-16 13:15 138752 ----a-w- c:\windows\SysWow64\wextract.exe 2013-03-16 13:15 . 2013-03-16 13:15 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe 2013-03-16 13:15 . 2013-03-16 13:15 61952 ----a-w- c:\windows\SysWow64\tdc.ocx 2013-03-16 13:15 . 2013-03-16 13:15 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll 2013-03-16 13:15 . 2013-03-16 13:15 38400 ----a-w- c:\windows\SysWow64\imgutil.dll 2013-03-16 13:15 . 2013-03-16 13:15 361984 ----a-w- c:\windows\SysWow64\html.iec 2013-03-16 13:15 . 2013-03-16 13:15 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2013-03-16 13:15 . 2013-03-16 13:15 12800 ----a-w- c:\windows\SysWow64\mshta.exe 2013-03-16 13:15 . 2013-03-16 13:15 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll 2013-03-16 13:15 . 2013-03-16 13:15 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll 2013-03-16 13:15 . 2013-03-16 13:15 197120 ----a-w- c:\windows\system32\msrating.dll 2013-03-16 13:15 . 2013-03-16 13:15 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl 2013-03-16 13:15 . 2013-03-16 13:15 97280 ----a-w- c:\windows\system32\mshtmled.dll 2013-03-16 13:15 . 2013-03-16 13:15 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll 2013-03-16 13:15 . 2013-03-16 13:15 81408 ----a-w- c:\windows\system32\icardie.dll 2013-03-16 13:15 . 2013-03-16 13:15 762368 ----a-w- c:\windows\system32\ieapfltr.dll 2013-03-16 13:15 . 2013-03-16 13:15 599552 ----a-w- c:\windows\system32\vbscript.dll 2013-03-16 13:15 . 2013-03-16 13:15 452096 ----a-w- c:\windows\system32\dxtmsft.dll 2013-03-16 13:15 . 2013-03-16 13:15 441856 ----a-w- c:\windows\system32\html.iec 2013-03-16 13:15 . 2013-03-16 13:15 281600 ----a-w- c:\windows\system32\dxtrans.dll 2013-03-16 13:15 . 2013-03-16 13:15 27648 ----a-w- c:\windows\system32\licmgr10.dll 2013-03-16 13:15 . 2013-03-16 13:15 270848 ----a-w- c:\windows\system32\iedkcs32.dll 2013-03-16 13:15 . 2013-03-16 13:15 247296 ----a-w- c:\windows\system32\webcheck.dll 2013-03-16 13:15 . 2013-03-16 13:15 235008 ----a-w- c:\windows\system32\url.dll 2013-03-16 13:15 . 2013-03-16 13:15 216064 ----a-w- c:\windows\system32\msls31.dll 2013-03-16 13:15 . 2013-03-16 13:15 167424 ----a-w- c:\windows\system32\iexpress.exe 2013-03-16 13:15 . 2013-03-16 13:15 1509376 ----a-w- c:\windows\system32\inetcpl.cpl 2013-03-16 13:15 . 2013-03-16 13:15 144896 ----a-w- c:\windows\system32\wextract.exe 2013-03-16 13:15 . 2013-03-16 13:15 1400416 ----a-w- c:\windows\system32\ieapfltr.dat 2013-03-16 13:15 . 2013-03-16 13:15 102912 ----a-w- c:\windows\system32\inseng.dll 2013-03-16 13:15 . 2013-03-16 13:15 173568 ----a-w- c:\windows\system32\ieUnatt.exe 2013-03-16 13:15 . 2013-03-16 13:15 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2013-03-16 13:15 . 2013-03-16 13:15 77312 ----a-w- c:\windows\system32\tdc.ocx 2013-03-16 13:15 . 2013-03-16 13:15 62976 ----a-w- c:\windows\system32\pngfilt.dll 2013-03-16 13:15 . 2013-03-16 13:15 52224 ----a-w- c:\windows\system32\msfeedsbs.dll 2013-03-16 13:15 . 2013-03-16 13:15 51200 ----a-w- c:\windows\system32\imgutil.dll 2013-03-16 13:15 . 2013-03-16 13:15 48640 ----a-w- c:\windows\system32\mshtmler.dll 2013-03-16 13:15 . 2013-03-16 13:15 149504 ----a-w- c:\windows\system32\occache.dll 2013-03-16 13:15 . 2013-03-16 13:15 13824 ----a-w- c:\windows\system32\mshta.exe 2013-03-16 13:15 . 2013-03-16 13:15 136192 ----a-w- c:\windows\system32\iepeers.dll 2013-03-16 13:15 . 2013-03-16 13:15 135680 ----a-w- c:\windows\system32\IEAdvpack.dll 2013-03-16 13:15 . 2013-03-16 13:15 12800 ----a-w- c:\windows\system32\msfeedssync.exe 2013-03-03 21:51 . 2013-03-03 22:20 258352 ----a-w- c:\windows\SysWow64\unicows.dll 2013-03-01 15:13 . 2013-03-01 15:13 225792 ----a-w- c:\windows\system32\Ncs2Setp.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576] "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528] "Ulead AutoDetector v2"="c:\program files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe" [2006-11-29 90112] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2013-05-10 37960] "TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2013-04-12 295512] "DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2013-04-15 450560] "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-23 270336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [32W_LCD_TV]"(1920x1080@60Hz) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . 2;2 CareMon;CareMon [x] R1 vfzafaaw;vfzafaaw;c:\windows\system32\drivers\vfzafaaw.sys [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560] R3 cbVSCService11;Cobian Backup 11 Volume Shadow Copy Requester;c:\program files (x86)\Cobian Backup 11\cbVSCService11.exe [2012-06-29 67584] R3 cpuz134;cpuz134;c:\program files (x86)\CPUID\PC Wizard 2010\pcwiz_x64.sys [x] R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x] R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848] R3 Media Jukebox 14 Service;Media Jukebox 14 Service;c:\program files (x86)\J River\Media Jukebox 14\JRService.exe [2010-07-15 379400] R3 NisSrv;NisSrv;c:\program files\Microsoft Security Client\NisSrv.exe [2013-01-27 379360] R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [2010-09-01 17976] R3 PSMounter;Macrium Reflect Image Explorer Service;c:\windows\system32\drivers\psmounter.sys [2011-07-01 40600] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456] R3 rt61x64;Linksys Wireless-G PCI Adapter Driver;c:\windows\system32\DRIVERS\WMP54Gv41x64.sys [x] R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2010-09-29 695400] R3 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2012-07-25 1326176] R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-05-10 51712] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-05-16 156912] R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x] R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x] R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\Hendrik\AppData\Local\Temp\tmp8F63.tmp [x] R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976] R4 RsFx0105;RsFx0105 Driver;c:\windows\system32\DRIVERS\RsFx0105.sys [2011-09-22 311144] R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2011-09-22 431464] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2011-05-24 1840128] S2 Intel® PROSet Monitoring Service;Intel® PROSet Monitoring Service;c:\windows\system32\IProsetMonitor.exe [2013-02-23 183048] S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2012-07-13 769432] S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2013-01-20 130008] S2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [2011-06-21 341296] S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [2013-03-06 39056] S2 ReflectService;Macrium Reflect Image Mounting Service;c:\program files\Macrium\Reflect\ReflectService.exe [2011-07-01 301720] S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2012-07-25 681056] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264] S2 supersafer64;supersafer64;c:\windows\SysWOW64\drivers\supersafer64.sys [2011-11-15 238072] S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [2010-11-11 81008] S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-11-11 539248] S3 RTL8192cu;Belkin Wireless Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys [2012-02-01 1041000] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - NAL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{E4066320-E4AE-11CF-B1B0-00AA00BBAD66}] 2009-07-14 01:14 126464 ----a-w- c:\windows\System32\advpack.dll . Inhoud van de 'Gedeelde Taken' map . 2013-05-27 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-01 22:11] . 2013-05-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-19 21:09] . 2013-05-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-19 21:09] . 2013-01-18 c:\windows\Tasks\PC SpeedUp Service Deactivator.job - c:\program files (x86)\PC Speed Up\PCSUSD.exe [2012-12-31 13:13] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}] 2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}] 2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}] 2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}] 2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-09 11860072] "EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2011-06-23 1744152] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService FontCache . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = <local> LSP: d:\vmware workstation\vsocklib.dll Trusted Zone: dexia.be Trusted Zone: secunia.com TCP: DhcpNameServer = 195.130.130.133 195.130.131.133 FF - ProfilePath - c:\users\Hendrik\AppData\Roaming\Mozilla\Firefox\Profiles\opp9rn57.default\ FF - ExtSQL: !HIDDEN! 2011-04-17 14:46; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-Akamai NetSession Interface - c:\users\Hendrik\AppData\Local\Akamai\netsession_win.exe SafeBoot-28923202.sys HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start Toolbar-Locked - (no file) WebBrowser-{1392B8D2-5C05-419F-A8F6-B9F15A596612} - (no file) WebBrowser-{87775FDB-6972-41F9-AE51-8326E38CB206} - (no file) ShellIconOverlayIdentifiers-{1EC23CFF-4C58-458f-924C-8519AEF61B32} - (no file) ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file) ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file) AddRemove-_{ADDBE07D-95B8-4789-9C76-187FFF9624B4} - c:\program files (x86)\Corel\CorelDRAW Essential Edition 3\Programs\MSILauncher {ADDBE07D-95B8-4789-9C76-187FFF9624B4} AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\programdata\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}\bm_installer.exe . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinRing0_1_2_0] "ImagePath"="\??\c:\users\Hendrik\AppData\Local\Temp\tmp8F63.tmp" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.alb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="FotoManager.9.alb" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.eps" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.gif" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.iff" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.pcd" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.png" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.tga" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.tif" . [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="MAGIXviewer.tiff" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Environment*] "Licence0"="04F0D21-79D8-7A25-D702-433F" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe c:\program files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe c:\program files (x86)\Creative\Shared Files\CTDevSrv.exe c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe c:\windows\SysWOW64\vmnat.exe c:\windows\SysWOW64\vmnetdhcp.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqbam08.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe . ************************************************************************** . Voltooingstijd: 2013-05-28 02:08:58 - machine werd herstart ComboFix-quarantined-files.txt 2013-05-28 00:08 . Pre-Run: 98.046.431.232 bytes free Post-Run: 97.470.746.624 bytes free . - - End Of File - - 21B48F86C46B2EAA50E2A5CDFDB5F9D1
-
IE reset handmatig uitgevoerd zonder succes, downloaden van progs blijven "harmfull" en bij "running download" worden deze nog steeds gedeleted. Vervolgens dezelfde reset uitgevoerd via de Fix It tool van Microsoft die je hebt aangegeven met hetzelfde resultaat: downloads worden tegen gehouden als gevaar en vernietigd in IE browser. Dan heb ik eens zitten nadenken over wat je zei dat het niet aan het antivirus prog. kan liggen omdat dan alle browsers dezelfde effecten zouden hebben, en dat bracht mij op het idee dat er mogelijks een meegeleverde antivirus zou kunnen geïnstalleerd zijn met andere software die is gedownload in het verleden. Daardoor heb ik even Revo uninstaller geopend en heb volgende progs verwijderd uit mijn machine: - Simplitec Simplicheck meegeleverd bij Magix product - Security Task Manager van Neuber software meegeleverd zonder te weten bij welke prog. - Pando Media Booster een download versneller ergens voor een of andere download die ik niet meer weet - Akamai NetSession Interface - Akamai NetSession Interface Service ook weer een of andere download organizer of zoiets. Dan heb ik het volgende progje gedownload via Firefox browser: SecurityCheck om te bepalen of er meerdere antivirus programma's draaien maar snap er niets van dit is het logje van SecurityCheck: Results of screen317's Security Check version 0.99.64 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Windows Firewall Disabled! WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` MVPS Hosts File Secunia PSI (3.0.0.3001) Java 7 Update 21 Adobe Flash Player 11.7.700.202 Adobe Reader 10.1.7 Adobe Reader out of Date! Mozilla Firefox 20.0.1 Firefox out of Date! ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: 1% ````````````````````End of Log`````````````````````` Wat die MVPS Hosts File is is mij een raadsel. Nu ga ik eerst even Combofix laten draaien, resultaten in volgend bericht.
-
Alleen in Internet Explorer 10 heb ik dit probleem, ook op andere locaties zoals bij Bleepingcomputer of Betanews. zie screenshots: mbam van Bleepingcomputer: [ATTACH=CONFIG]26114[/ATTACH] mbam van Betanews: [ATTACH=CONFIG]26115[/ATTACH] De downloads doe ik nu via mijn Mozilla Firefox browser, die laat alles door.
-
Spijtig moet ik je melden dat het nog geen soelaas heeft gebracht: geprobeerd om in Internet Explorer nog eens mbam te downloaden en kreeg al meteen de mededeling dat het bestand mogelijk besmet is met een virus, zelfs na toch op "run" te klikken wordt meteen het bestand "deleted" zie screenshots: [ATTACH=CONFIG]26111[/ATTACH] [ATTACH=CONFIG]26112[/ATTACH] Ook kan ik nog steeds niet in de mappen van Microsoft Security Essentials, ook al heb ik als administrator "full control". zie screenshot: [ATTACH=CONFIG]26113[/ATTACH]
-
Beste kweezie wabbit, Waarschijnlijk niet goed gelezen en op delete gedrukt bij het uitvoeren van TDSSKiller. Moest eigenlijk gewoon een scan zijn. logjes van TDSSKiller, was eerst in veilige modus uitgevoerd. 19:52:24.0838 1468 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 19:52:25.0025 1468 ============================================================ 19:52:25.0025 1468 Current date / time: 2013/05/26 19:52:25.0025 19:52:25.0025 1468 SystemInfo: 19:52:25.0025 1468 19:52:25.0025 1468 OS Version: 6.1.7601 ServicePack: 1.0 19:52:25.0025 1468 Product type: Workstation 19:52:25.0025 1468 ComputerName: HENDRIK-PC1 19:52:25.0025 1468 UserName: Hendrik 19:52:25.0025 1468 Windows directory: C:\Windows 19:52:25.0025 1468 System windows directory: C:\Windows 19:52:25.0025 1468 Running under WOW64 19:52:25.0025 1468 Processor architecture: Intel x64 19:52:25.0025 1468 Number of processors: 2 19:52:25.0025 1468 Page size: 0x1000 19:52:25.0025 1468 Boot type: Safe boot with network 19:52:25.0025 1468 ============================================================ 19:52:26.0539 1468 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:52:26.0539 1468 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:52:26.0554 1468 Drive \Device\Harddisk4\DR4 - Size: 0x7D00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:26.0554 1468 Drive \Device\Harddisk5\DR5 - Size: 0x3BA300000 (14.91 Gb), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:26.0554 1468 Drive \Device\Harddisk6\DR6 - Size: 0x39C2A0000 (14.44 Gb), SectorSize: 0x200, Cylinders: 0x75D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:26.0554 1468 Drive \Device\Harddisk7\DR7 - Size: 0x1DD800000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:26.0570 1468 ============================================================ 19:52:26.0570 1468 \Device\Harddisk0\DR0: 19:52:26.0570 1468 MBR partitions: 19:52:26.0570 1468 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x327C1 19:52:26.0570 1468 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1BBCC000 19:52:26.0570 1468 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1BBFF034, BlocksNum 0x2A471678 19:52:26.0585 1468 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x460706EB, BlocksNum 0x47E67D6 19:52:26.0585 1468 \Device\Harddisk1\DR1: 19:52:26.0585 1468 MBR partitions: 19:52:26.0585 1468 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482 19:52:26.0585 1468 \Device\Harddisk4\DR4: 19:52:26.0585 1468 MBR partitions: 19:52:26.0585 1468 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x6, StartLBA 0x2F, BlocksNum 0x3E7D1 19:52:26.0585 1468 \Device\Harddisk5\DR5: 19:52:26.0585 1468 MBR partitions: 19:52:26.0585 1468 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x20, BlocksNum 0x1DD17E0 19:52:26.0585 1468 \Device\Harddisk6\DR6: 19:52:26.0585 1468 MBR partitions: 19:52:26.0585 1468 \Device\Harddisk6\DR6\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x1CDF580 19:52:26.0585 1468 \Device\Harddisk7\DR7: 19:52:26.0585 1468 MBR partitions: 19:52:26.0585 1468 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x1F80, BlocksNum 0xEEA080 19:52:26.0585 1468 ============================================================ 19:52:26.0617 1468 C: <-> \Device\Harddisk0\DR0\Partition2 19:52:26.0726 1468 S: <-> \Device\Harddisk1\DR1\Partition1 19:52:26.0726 1468 E: <-> \Device\Harddisk0\DR0\Partition4 19:52:26.0757 1468 D: <-> \Device\Harddisk0\DR0\Partition3 19:52:26.0773 1468 Y: <-> \Device\Harddisk0\DR0\Partition1 19:52:26.0773 1468 ============================================================ 19:52:26.0773 1468 Initialize success 19:52:26.0773 1468 ============================================================ 19:52:30.0095 1400 Deinitialize success vervolgens scan 1: en hier heb ik waarschijnlijk de fout begaan om delete te kiezen: 19:52:32.0560 1908 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 19:52:32.0669 1908 ============================================================ 19:52:32.0669 1908 Current date / time: 2013/05/26 19:52:32.0669 19:52:32.0669 1908 SystemInfo: 19:52:32.0669 1908 19:52:32.0669 1908 OS Version: 6.1.7601 ServicePack: 1.0 19:52:32.0669 1908 Product type: Workstation 19:52:32.0669 1908 ComputerName: HENDRIK-PC1 19:52:32.0669 1908 UserName: Hendrik 19:52:32.0669 1908 Windows directory: C:\Windows 19:52:32.0669 1908 System windows directory: C:\Windows 19:52:32.0669 1908 Running under WOW64 19:52:32.0669 1908 Processor architecture: Intel x64 19:52:32.0669 1908 Number of processors: 2 19:52:32.0669 1908 Page size: 0x1000 19:52:32.0669 1908 Boot type: Safe boot with network 19:52:32.0669 1908 ============================================================ 19:52:34.0245 1908 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:52:34.0245 1908 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:52:34.0261 1908 Drive \Device\Harddisk4\DR4 - Size: 0x7D00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:34.0261 1908 Drive \Device\Harddisk5\DR5 - Size: 0x3BA300000 (14.91 Gb), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:34.0261 1908 Drive \Device\Harddisk6\DR6 - Size: 0x39C2A0000 (14.44 Gb), SectorSize: 0x200, Cylinders: 0x75D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:34.0261 1908 Drive \Device\Harddisk7\DR7 - Size: 0x1DD800000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:52:34.0261 1908 ============================================================ 19:52:34.0261 1908 \Device\Harddisk0\DR0: 19:52:34.0261 1908 MBR partitions: 19:52:34.0261 1908 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x327C1 19:52:34.0261 1908 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1BBCC000 19:52:34.0261 1908 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1BBFF034, BlocksNum 0x2A471678 19:52:34.0276 1908 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x460706EB, BlocksNum 0x47E67D6 19:52:34.0276 1908 \Device\Harddisk1\DR1: 19:52:34.0276 1908 MBR partitions: 19:52:34.0276 1908 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482 19:52:34.0276 1908 \Device\Harddisk4\DR4: 19:52:34.0276 1908 MBR partitions: 19:52:34.0276 1908 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x6, StartLBA 0x2F, BlocksNum 0x3E7D1 19:52:34.0276 1908 \Device\Harddisk5\DR5: 19:52:34.0276 1908 MBR partitions: 19:52:34.0276 1908 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x20, BlocksNum 0x1DD17E0 19:52:34.0276 1908 \Device\Harddisk6\DR6: 19:52:34.0292 1908 MBR partitions: 19:52:34.0292 1908 \Device\Harddisk6\DR6\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x1CDF580 19:52:34.0292 1908 \Device\Harddisk7\DR7: 19:52:34.0292 1908 MBR partitions: 19:52:34.0292 1908 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x1F80, BlocksNum 0xEEA080 19:52:34.0292 1908 ============================================================ 19:52:34.0323 1908 C: <-> \Device\Harddisk0\DR0\Partition2 19:52:34.0323 1908 S: <-> \Device\Harddisk1\DR1\Partition1 19:52:34.0323 1908 E: <-> \Device\Harddisk0\DR0\Partition4 19:52:34.0354 1908 D: <-> \Device\Harddisk0\DR0\Partition3 19:52:34.0370 1908 Y: <-> \Device\Harddisk0\DR0\Partition1 19:52:34.0370 1908 ============================================================ 19:52:34.0370 1908 Initialize success 19:52:34.0370 1908 ============================================================ 19:53:45.0709 0920 ============================================================ 19:53:45.0709 0920 Scan started 19:53:45.0709 0920 Mode: Manual; 19:53:45.0709 0920 ============================================================ 19:53:46.0364 0920 ================ Scan system memory ======================== 19:53:46.0364 0920 System memory - ok 19:53:46.0364 0920 ================ Scan services ============================= 19:53:46.0535 0920 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 19:53:46.0535 0920 1394ohci - ok 19:53:46.0567 0920 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 19:53:46.0567 0920 ACPI - ok 19:53:46.0598 0920 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 19:53:46.0598 0920 AcpiPmi - ok 19:53:46.0691 0920 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 19:53:46.0707 0920 AdobeARMservice - ok 19:53:46.0816 0920 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 19:53:46.0816 0920 AdobeFlashPlayerUpdateSvc - ok 19:53:46.0863 0920 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 19:53:46.0879 0920 adp94xx - ok 19:53:46.0910 0920 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 19:53:46.0910 0920 adpahci - ok 19:53:46.0910 0920 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 19:53:46.0925 0920 adpu320 - ok 19:53:46.0941 0920 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 19:53:46.0957 0920 AeLookupSvc - ok 19:53:47.0004 0920 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 19:53:47.0004 0920 AFD - ok 19:53:47.0019 0920 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 19:53:47.0035 0920 agp440 - ok 19:53:47.0206 0920 [ C7074BD8D4B8F564859ED373433030AE ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll 19:53:47.0206 0920 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll. md5: C7074BD8D4B8F564859ED373433030AE 19:53:47.0222 0920 Akamai ( HiddenFile.Multi.Generic ) - warning 19:53:47.0222 0920 Akamai - detected HiddenFile.Multi.Generic (1) 19:53:47.0238 0920 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 19:53:47.0238 0920 ALG - ok 19:53:47.0253 0920 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 19:53:47.0253 0920 aliide - ok 19:53:47.0300 0920 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 19:53:47.0300 0920 amdide - ok 19:53:47.0316 0920 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 19:53:47.0316 0920 AmdK8 - ok 19:53:47.0331 0920 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 19:53:47.0331 0920 AmdPPM - ok 19:53:47.0378 0920 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 19:53:47.0409 0920 amdsata - ok 19:53:47.0425 0920 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 19:53:47.0425 0920 amdsbs - ok 19:53:47.0440 0920 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 19:53:47.0440 0920 amdxata - ok 19:53:47.0472 0920 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 19:53:47.0472 0920 AppID - ok 19:53:47.0487 0920 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 19:53:47.0487 0920 AppIDSvc - ok 19:53:47.0518 0920 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll 19:53:47.0518 0920 Appinfo - ok 19:53:47.0550 0920 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 19:53:47.0550 0920 AppMgmt - ok 19:53:47.0565 0920 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 19:53:47.0565 0920 arc - ok 19:53:47.0581 0920 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 19:53:47.0581 0920 arcsas - ok 19:53:47.0706 0920 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 19:53:47.0784 0920 aspnet_state - ok 19:53:47.0815 0920 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 19:53:47.0815 0920 AsyncMac - ok 19:53:47.0830 0920 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 19:53:47.0846 0920 atapi - ok 19:53:47.0877 0920 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 19:53:47.0893 0920 AudioEndpointBuilder - ok 19:53:47.0893 0920 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 19:53:47.0908 0920 AudioSrv - ok 19:53:47.0908 0920 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 19:53:47.0908 0920 AxInstSV - ok 19:53:47.0940 0920 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 19:53:47.0955 0920 b06bdrv - ok 19:53:47.0986 0920 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 19:53:47.0986 0920 b57nd60a - ok 19:53:48.0049 0920 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE 19:53:48.0064 0920 BBSvc - ok 19:53:48.0080 0920 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 19:53:48.0080 0920 BDESVC - ok 19:53:48.0111 0920 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 19:53:48.0111 0920 Beep - ok 19:53:48.0158 0920 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 19:53:48.0174 0920 BFE - ok 19:53:48.0205 0920 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 19:53:48.0330 0920 BITS - ok 19:53:48.0361 0920 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 19:53:48.0361 0920 blbdrive - ok 19:53:48.0470 0920 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 19:53:48.0486 0920 Bonjour Service - ok 19:53:48.0517 0920 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:53:48.0517 0920 bowser - ok 19:53:48.0532 0920 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 19:53:48.0532 0920 BrFiltLo - ok 19:53:48.0548 0920 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 19:53:48.0548 0920 BrFiltUp - ok 19:53:48.0579 0920 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 19:53:48.0579 0920 Browser - ok 19:53:48.0595 0920 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 19:53:48.0610 0920 Brserid - ok 19:53:48.0626 0920 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 19:53:48.0626 0920 BrSerWdm - ok 19:53:48.0642 0920 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 19:53:48.0642 0920 BrUsbMdm - ok 19:53:48.0642 0920 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 19:53:48.0657 0920 BrUsbSer - ok 19:53:48.0673 0920 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 19:53:48.0673 0920 BTHMODEM - ok 19:53:48.0704 0920 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 19:53:48.0704 0920 bthserv - ok 19:53:48.0798 0920 [ 7F771059963775ADD679EFED7B1910C9 ] CareMon C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe 19:53:48.0813 0920 CareMon - ok 19:53:48.0876 0920 [ 58BF7714A312698108A96D0DE2BB6825 ] cbVSCService11 C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe 19:53:48.0876 0920 cbVSCService11 - ok 19:53:48.0891 0920 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:53:48.0891 0920 cdfs - ok 19:53:48.0938 0920 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 19:53:48.0954 0920 cdrom - ok 19:53:48.0985 0920 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 19:53:48.0985 0920 CertPropSvc - ok 19:53:49.0016 0920 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 19:53:49.0016 0920 circlass - ok 19:53:49.0047 0920 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:\Windows\system32\CISVC.EXE 19:53:49.0047 0920 CISVC - ok 19:53:49.0063 0920 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 19:53:49.0063 0920 CLFS - ok 19:53:49.0125 0920 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:53:49.0188 0920 clr_optimization_v2.0.50727_32 - ok 19:53:49.0250 0920 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 19:53:49.0250 0920 clr_optimization_v2.0.50727_64 - ok 19:53:49.0328 0920 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:53:49.0671 0920 clr_optimization_v4.0.30319_32 - ok 19:53:49.0687 0920 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 19:53:49.0858 0920 clr_optimization_v4.0.30319_64 - ok 19:53:49.0874 0920 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 19:53:49.0874 0920 CmBatt - ok 19:53:49.0905 0920 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 19:53:49.0905 0920 cmdide - ok 19:53:49.0936 0920 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 19:53:49.0952 0920 CNG - ok 19:53:49.0968 0920 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 19:53:49.0968 0920 Compbatt - ok 19:53:49.0999 0920 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 19:53:49.0999 0920 CompositeBus - ok 19:53:49.0999 0920 COMSysApp - ok 19:53:50.0046 0920 cpuz134 - ok 19:53:50.0061 0920 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 19:53:50.0061 0920 crcdisk - ok 19:53:50.0092 0920 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:53:50.0108 0920 CryptSvc - ok 19:53:50.0124 0920 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 19:53:50.0139 0920 CSC - ok 19:53:50.0170 0920 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 19:53:50.0186 0920 CscService - ok 19:53:50.0264 0920 [ A5BEA0E5C297F5F3835638A87E512FBA ] CTDevice_Srv C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe 19:53:50.0264 0920 CTDevice_Srv - ok 19:53:50.0295 0920 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:53:50.0311 0920 DcomLaunch - ok 19:53:50.0342 0920 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 19:53:50.0342 0920 defragsvc - ok 19:53:50.0389 0920 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 19:53:50.0389 0920 DfsC - ok 19:53:50.0420 0920 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 19:53:50.0420 0920 Dhcp - ok 19:53:50.0436 0920 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 19:53:50.0451 0920 discache - ok 19:53:50.0467 0920 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 19:53:50.0467 0920 Disk - ok 19:53:50.0514 0920 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:53:50.0514 0920 Dnscache - ok 19:53:50.0529 0920 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 19:53:50.0529 0920 dot3svc - ok 19:53:50.0576 0920 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 19:53:50.0576 0920 Dot4 - ok 19:53:50.0607 0920 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 19:53:50.0607 0920 Dot4Print - ok 19:53:50.0607 0920 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 19:53:50.0607 0920 dot4usb - ok 19:53:50.0638 0920 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 19:53:50.0638 0920 DPS - ok 19:53:50.0685 0920 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 19:53:50.0685 0920 drmkaud - ok 19:53:50.0732 0920 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:53:50.0748 0920 DXGKrnl - ok 19:53:50.0779 0920 [ 416A2007878ED1D6FC5DDDB9E1F6DB3E ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys 19:53:50.0779 0920 e1express - ok 19:53:50.0810 0920 EagleX64 - ok 19:53:50.0841 0920 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 19:53:50.0841 0920 EapHost - ok 19:53:50.0919 0920 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 19:53:50.0982 0920 ebdrv - ok 19:53:50.0997 0920 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 19:53:50.0997 0920 EFS - ok 19:53:51.0091 0920 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 19:53:51.0106 0920 ehRecvr - ok 19:53:51.0122 0920 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 19:53:51.0122 0920 ehSched - ok 19:53:51.0153 0920 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys 19:53:51.0153 0920 ElbyCDIO - ok 19:53:51.0184 0920 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 19:53:51.0184 0920 elxstor - ok 19:53:51.0216 0920 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 19:53:51.0216 0920 ErrDev - ok 19:53:51.0247 0920 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 19:53:51.0247 0920 EventSystem - ok 19:53:51.0278 0920 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 19:53:51.0278 0920 exfat - ok 19:53:51.0356 0920 Fabs - ok 19:53:51.0418 0920 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:53:51.0418 0920 fastfat - ok 19:53:51.0465 0920 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 19:53:51.0481 0920 Fax - ok 19:53:51.0496 0920 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 19:53:51.0496 0920 fdc - ok 19:53:51.0528 0920 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 19:53:51.0528 0920 fdPHost - ok 19:53:51.0543 0920 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 19:53:51.0543 0920 FDResPub - ok 19:53:51.0543 0920 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:53:51.0543 0920 FileInfo - ok 19:53:51.0559 0920 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:53:51.0559 0920 Filetrace - ok 19:53:51.0652 0920 [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 19:53:51.0730 0920 FirebirdServerMAGIXInstance - ok 19:53:51.0730 0920 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 19:53:51.0746 0920 flpydisk - ok 19:53:51.0762 0920 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:53:51.0762 0920 FltMgr - ok 19:53:51.0871 0920 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll 19:53:51.0886 0920 FontCache - ok 19:53:51.0949 0920 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:53:51.0949 0920 FontCache3.0.0.0 - ok 19:53:51.0964 0920 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 19:53:51.0964 0920 FsDepends - ok 19:53:52.0011 0920 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 19:53:52.0011 0920 fssfltr - ok 19:53:52.0089 0920 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 19:53:52.0120 0920 fsssvc - ok 19:53:52.0167 0920 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:53:52.0167 0920 Fs_Rec - ok 19:53:52.0198 0920 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 19:53:52.0198 0920 fvevol - ok 19:53:52.0230 0920 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 19:53:52.0230 0920 gagp30kx - ok 19:53:52.0276 0920 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 19:53:52.0276 0920 GEARAspiWDM - ok 19:53:52.0308 0920 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 19:53:52.0339 0920 gpsvc - ok 19:53:52.0448 0920 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:53:52.0448 0920 gupdate - ok 19:53:52.0464 0920 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:53:52.0464 0920 gupdatem - ok 19:53:52.0510 0920 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 19:53:52.0510 0920 gusvc - ok 19:53:52.0557 0920 [ BA207B48AA3D9D73FD4856400F852458 ] hcmon C:\Windows\system32\drivers\hcmon.sys 19:53:52.0557 0920 hcmon - ok 19:53:52.0573 0920 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 19:53:52.0573 0920 hcw85cir - ok 19:53:52.0620 0920 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 19:53:52.0620 0920 HdAudAddService - ok 19:53:52.0651 0920 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 19:53:52.0651 0920 HDAudBus - ok 19:53:52.0666 0920 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 19:53:52.0666 0920 HidBatt - ok 19:53:52.0666 0920 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 19:53:52.0666 0920 HidBth - ok 19:53:52.0682 0920 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 19:53:52.0698 0920 HidIr - ok 19:53:52.0713 0920 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 19:53:52.0713 0920 hidserv - ok 19:53:52.0744 0920 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 19:53:52.0744 0920 HidUsb - ok 19:53:52.0776 0920 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 19:53:52.0776 0920 hkmsvc - ok 19:53:52.0807 0920 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 19:53:52.0807 0920 HomeGroupListener - ok 19:53:52.0838 0920 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 19:53:52.0838 0920 HomeGroupProvider - ok 19:53:52.0932 0920 [ 08457D8F8149757C70CEA59C71EC5D27 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 19:53:52.0932 0920 hpqcxs08 - ok 19:53:52.0947 0920 [ 75CC8C5146A3FB76221A7606628778D5 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 19:53:52.0947 0920 hpqddsvc - ok 19:53:52.0978 0920 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 19:53:52.0978 0920 HpSAMD - ok 19:53:53.0025 0920 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:53:53.0041 0920 HTTP - ok 19:53:53.0072 0920 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 19:53:53.0072 0920 hwpolicy - ok 19:53:53.0088 0920 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 19:53:53.0088 0920 i8042prt - ok 19:53:53.0119 0920 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 19:53:53.0119 0920 iaStorV - ok 19:53:53.0166 0920 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 19:53:53.0181 0920 idsvc - ok 19:53:53.0212 0920 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 19:53:53.0228 0920 iirsp - ok 19:53:53.0259 0920 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 19:53:53.0290 0920 IKEEXT - ok 19:53:53.0415 0920 [ 718A4008EE5DA174400396B27509EF82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 19:53:53.0462 0920 IntcAzAudAddService - ok 19:53:53.0509 0920 [ 26FBC0AEDE7C6A67781202E0E2ECB6A6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe 19:53:53.0509 0920 Intel® PROSet Monitoring Service - ok 19:53:53.0540 0920 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 19:53:53.0540 0920 intelide - ok 19:53:53.0556 0920 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 19:53:53.0556 0920 intelppm - ok 19:53:53.0587 0920 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 19:53:53.0587 0920 IPBusEnum - ok 19:53:53.0602 0920 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:53:53.0602 0920 IpFilterDriver - ok 19:53:53.0649 0920 [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll 19:53:53.0665 0920 IpHlpSvc - ok 19:53:53.0680 0920 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 19:53:53.0696 0920 IPMIDRV - ok 19:53:53.0712 0920 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 19:53:53.0727 0920 IPNAT - ok 19:53:53.0758 0920 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:53:53.0758 0920 IRENUM - ok 19:53:53.0805 0920 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:53:53.0805 0920 isapnp - ok 19:53:53.0821 0920 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 19:53:53.0821 0920 iScsiPrt - ok 19:53:53.0852 0920 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 19:53:53.0852 0920 kbdclass - ok 19:53:53.0868 0920 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 19:53:53.0868 0920 kbdhid - ok 19:53:53.0899 0920 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 19:53:53.0899 0920 KeyIso - ok 19:53:53.0914 0920 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:53:53.0914 0920 KSecDD - ok 19:53:53.0946 0920 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 19:53:53.0946 0920 KSecPkg - ok 19:53:53.0961 0920 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 19:53:53.0961 0920 ksthunk - ok 19:53:53.0992 0920 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 19:53:53.0992 0920 KtmRm - ok 19:53:54.0039 0920 [ CED526C739D4091F77DDE6C339AB49BE ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys 19:53:54.0039 0920 L8042Kbd - ok 19:53:54.0086 0920 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 19:53:54.0086 0920 LanmanServer - ok 19:53:54.0133 0920 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:53:54.0133 0920 LanmanWorkstation - ok 19:53:54.0242 0920 [ 19EFF704CD16DD0429E128431F1DD631 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe 19:53:54.0258 0920 LBTServ - ok 19:53:54.0304 0920 [ 1074C77A47835E03C15BF92452F9A750 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys 19:53:54.0304 0920 LHidFilt - ok 19:53:54.0336 0920 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 19:53:54.0336 0920 lltdio - ok 19:53:54.0367 0920 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:53:54.0367 0920 lltdsvc - ok 19:53:54.0382 0920 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:53:54.0382 0920 lmhosts - ok 19:53:54.0414 0920 [ 96999C364C649E2866A268F7420A304A ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys 19:53:54.0414 0920 LMouFilt - ok 19:53:54.0460 0920 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 19:53:54.0460 0920 LSI_FC - ok 19:53:54.0476 0920 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 19:53:54.0476 0920 LSI_SAS - ok 19:53:54.0492 0920 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 19:53:54.0492 0920 LSI_SAS2 - ok 19:53:54.0507 0920 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 19:53:54.0507 0920 LSI_SCSI - ok 19:53:54.0523 0920 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 19:53:54.0523 0920 luafv - ok 19:53:54.0570 0920 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 19:53:54.0570 0920 MBAMProtector - ok 19:53:54.0632 0920 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 19:53:54.0632 0920 MBAMScheduler - ok 19:53:54.0663 0920 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 19:53:54.0694 0920 MBAMService - ok 19:53:54.0741 0920 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys 19:53:54.0741 0920 mcdbus - ok 19:53:54.0788 0920 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 19:53:54.0804 0920 Mcx2Svc - ok 19:53:54.0897 0920 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe 19:53:54.0913 0920 MDM - ok 19:53:54.0975 0920 [ 5AC6D44CCB8D5C4ABAC823EAA85D571D ] Media Jukebox 14 Service C:\Program Files (x86)\J River\Media Jukebox 14\JRService.exe 19:53:54.0975 0920 Media Jukebox 14 Service - ok 19:53:54.0991 0920 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 19:53:54.0991 0920 megasas - ok 19:53:55.0022 0920 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 19:53:55.0022 0920 MegaSR - ok 19:53:55.0053 0920 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 19:53:55.0053 0920 MMCSS - ok 19:53:55.0053 0920 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 19:53:55.0053 0920 Modem - ok 19:53:55.0084 0920 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 19:53:55.0084 0920 monitor - ok 19:53:55.0100 0920 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 19:53:55.0100 0920 mouclass - ok 19:53:55.0131 0920 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 19:53:55.0131 0920 mouhid - ok 19:53:55.0147 0920 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 19:53:55.0147 0920 mountmgr - ok 19:53:55.0194 0920 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 19:53:55.0194 0920 MozillaMaintenance - ok 19:53:55.0240 0920 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 19:53:55.0256 0920 MpFilter - ok 19:53:55.0272 0920 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 19:53:55.0272 0920 mpio - ok 19:53:55.0287 0920 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:53:55.0287 0920 mpsdrv - ok 19:53:55.0334 0920 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 19:53:55.0350 0920 MpsSvc - ok 19:53:55.0365 0920 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:53:55.0412 0920 MRxDAV - ok 19:53:55.0443 0920 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:53:55.0443 0920 mrxsmb - ok 19:53:55.0474 0920 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:53:55.0474 0920 mrxsmb10 - ok 19:53:55.0490 0920 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:53:55.0490 0920 mrxsmb20 - ok 19:53:55.0521 0920 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 19:53:55.0521 0920 msahci - ok 19:53:55.0537 0920 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 19:53:55.0552 0920 msdsm - ok 19:53:55.0552 0920 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 19:53:55.0568 0920 MSDTC - ok 19:53:55.0584 0920 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:53:55.0584 0920 Msfs - ok 19:53:55.0599 0920 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 19:53:55.0599 0920 mshidkmdf - ok 19:53:55.0630 0920 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:53:55.0630 0920 msisadrv - ok 19:53:55.0662 0920 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:53:55.0662 0920 MSiSCSI - ok 19:53:55.0662 0920 msiserver - ok 19:53:55.0693 0920 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 19:53:55.0693 0920 MSKSSRV - ok 19:53:55.0724 0920 MsMpSvc - ok 19:53:55.0740 0920 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 19:53:55.0740 0920 MSPCLOCK - ok 19:53:55.0740 0920 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 19:53:55.0740 0920 MSPQM - ok 19:53:55.0771 0920 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:53:55.0771 0920 MsRPC - ok 19:53:55.0786 0920 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 19:53:55.0786 0920 mssmbios - ok 19:53:55.0864 0920 MSSQL$SQLEXPRESS - ok 19:53:55.0958 0920 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE 19:53:55.0958 0920 MSSQLServerADHelper100 - ok 19:53:55.0958 0920 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 19:53:55.0958 0920 MSTEE - ok 19:53:55.0974 0920 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 19:53:55.0974 0920 MTConfig - ok 19:53:56.0005 0920 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 19:53:56.0005 0920 Mup - ok 19:53:56.0036 0920 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 19:53:56.0036 0920 napagent - ok 19:53:56.0067 0920 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:53:56.0083 0920 NativeWifiP - ok 19:53:56.0176 0920 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe 19:53:56.0192 0920 NAUpdate - ok 19:53:56.0254 0920 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 19:53:56.0286 0920 NDIS - ok 19:53:56.0301 0920 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 19:53:56.0301 0920 NdisCap - ok 19:53:56.0332 0920 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:53:56.0332 0920 NdisTapi - ok 19:53:56.0364 0920 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 19:53:56.0364 0920 Ndisuio - ok 19:53:56.0379 0920 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 19:53:56.0379 0920 NdisWan - ok 19:53:56.0410 0920 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 19:53:56.0410 0920 NDProxy - ok 19:53:56.0457 0920 [ B6CBA9A0403E2C1A9EA03C33A4932E89 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 19:53:56.0457 0920 Net Driver HPZ12 - ok 19:53:56.0473 0920 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 19:53:56.0473 0920 NetBIOS - ok 19:53:56.0488 0920 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 19:53:56.0504 0920 NetBT - ok 19:53:56.0520 0920 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 19:53:56.0520 0920 Netlogon - ok 19:53:56.0535 0920 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 19:53:56.0551 0920 Netman - ok 19:53:56.0598 0920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:53:56.0629 0920 NetMsmqActivator - ok 19:53:56.0660 0920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:53:56.0660 0920 NetPipeActivator - ok 19:53:56.0676 0920 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 19:53:56.0676 0920 netprofm - ok 19:53:56.0707 0920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:53:56.0707 0920 NetTcpActivator - ok 19:53:56.0707 0920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:53:56.0707 0920 NetTcpPortSharing - ok 19:53:56.0722 0920 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 19:53:56.0722 0920 nfrd960 - ok 19:53:56.0754 0920 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 19:53:56.0769 0920 NisDrv - ok 19:53:56.0769 0920 NisSrv - ok 19:53:56.0847 0920 [ 0734398D3D99986BB8006E9BB5EAB1E5 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe 19:53:56.0847 0920 NitroReaderDriverReadSpool2 - ok 19:53:56.0878 0920 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 19:53:56.0894 0920 NlaSvc - ok 19:53:56.0925 0920 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:53:56.0925 0920 Npfs - ok 19:53:56.0941 0920 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 19:53:56.0941 0920 nsi - ok 19:53:56.0956 0920 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:53:56.0956 0920 nsiproxy - ok 19:53:57.0019 0920 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 19:53:57.0066 0920 Ntfs - ok 19:53:57.0081 0920 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 19:53:57.0081 0920 Null - ok 19:53:57.0268 0920 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 19:53:57.0456 0920 nvlddmkm - ok 19:53:57.0487 0920 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:53:57.0487 0920 nvraid - ok 19:53:57.0502 0920 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:53:57.0502 0920 nvstor - ok 19:53:57.0580 0920 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe 19:53:57.0596 0920 nvsvc - ok 19:53:57.0690 0920 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 19:53:57.0705 0920 nvUpdatusService - ok 19:53:57.0736 0920 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:53:57.0736 0920 nv_agp - ok 19:53:57.0799 0920 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 19:53:57.0799 0920 odserv - ok 19:53:57.0830 0920 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 19:53:57.0830 0920 ohci1394 - ok 19:53:57.0861 0920 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:53:57.0861 0920 ose - ok 19:53:57.0892 0920 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 19:53:57.0892 0920 p2pimsvc - ok 19:53:57.0924 0920 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 19:53:57.0924 0920 p2psvc - ok 19:53:57.0970 0920 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 19:53:57.0970 0920 Parport - ok 19:53:58.0002 0920 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:53:58.0002 0920 partmgr - ok 19:53:58.0017 0920 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 19:53:58.0033 0920 PcaSvc - ok 19:53:58.0048 0920 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 19:53:58.0048 0920 pci - ok 19:53:58.0080 0920 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 19:53:58.0080 0920 pciide - ok 19:53:58.0095 0920 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 19:53:58.0095 0920 pcmcia - ok 19:53:58.0126 0920 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 19:53:58.0126 0920 pcw - ok 19:53:58.0142 0920 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:53:58.0142 0920 PEAUTH - ok 19:53:58.0189 0920 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 19:53:58.0220 0920 PeerDistSvc - ok 19:53:58.0282 0920 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 19:53:58.0282 0920 PerfHost - ok 19:53:58.0314 0920 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 19:53:58.0360 0920 pla - ok 19:53:58.0392 0920 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:53:58.0392 0920 PlugPlay - ok 19:53:58.0407 0920 [ 35CCB20B0D730B7764D049463E4B2AC5 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 19:53:58.0407 0920 Pml Driver HPZ12 - ok 19:53:58.0423 0920 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 19:53:58.0423 0920 PNRPAutoReg - ok 19:53:58.0438 0920 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 19:53:58.0438 0920 PNRPsvc - ok 19:53:58.0470 0920 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:53:58.0470 0920 PolicyAgent - ok 19:53:58.0501 0920 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 19:53:58.0501 0920 Power - ok 19:53:58.0516 0920 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 19:53:58.0516 0920 PptpMiniport - ok 19:53:58.0532 0920 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 19:53:58.0532 0920 Processor - ok 19:53:58.0563 0920 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 19:53:58.0563 0920 ProfSvc - ok 19:53:58.0579 0920 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 19:53:58.0579 0920 ProtectedStorage - ok 19:53:58.0610 0920 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 19:53:58.0610 0920 Psched - ok 19:53:58.0672 0920 [ FB46E9A827A8799EBD7BFA9128C91F37 ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys 19:53:58.0672 0920 PSI - ok 19:53:58.0688 0920 [ 838E03C9DA764467EDD9B99D1EFB809C ] PSMounter C:\Windows\system32\drivers\psmounter.sys 19:53:58.0688 0920 PSMounter - ok 19:53:58.0750 0920 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 19:53:58.0782 0920 ql2300 - ok 19:53:58.0797 0920 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 19:53:58.0797 0920 ql40xx - ok 19:53:58.0828 0920 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 19:53:58.0828 0920 QWAVE - ok 19:53:58.0844 0920 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:53:58.0844 0920 QWAVEdrv - ok 19:53:58.0860 0920 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:53:58.0860 0920 RasAcd - ok 19:53:58.0875 0920 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 19:53:58.0875 0920 RasAgileVpn - ok 19:53:58.0891 0920 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 19:53:58.0891 0920 RasAuto - ok 19:53:58.0922 0920 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 19:53:58.0922 0920 Rasl2tp - ok 19:53:58.0938 0920 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 19:53:58.0938 0920 RasMan - ok 19:53:58.0953 0920 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:53:58.0953 0920 RasPppoe - ok 19:53:58.0969 0920 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 19:53:58.0969 0920 RasSstp - ok 19:53:58.0984 0920 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:53:59.0000 0920 rdbss - ok 19:53:59.0000 0920 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 19:53:59.0000 0920 rdpbus - ok 19:53:59.0016 0920 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 19:53:59.0016 0920 RDPCDD - ok 19:53:59.0047 0920 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 19:53:59.0047 0920 RDPDR - ok 19:53:59.0047 0920 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 19:53:59.0047 0920 RDPENCDD - ok 19:53:59.0062 0920 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 19:53:59.0062 0920 RDPREFMP - ok 19:53:59.0109 0920 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 19:53:59.0109 0920 RdpVideoMiniport - ok 19:53:59.0140 0920 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 19:53:59.0140 0920 RDPWD - ok 19:53:59.0187 0920 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 19:53:59.0187 0920 rdyboost - ok 19:53:59.0265 0920 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 19:53:59.0265 0920 RealNetworks Downloader Resolver Service - ok 19:53:59.0343 0920 [ BE9861E1A18E01C38338FEACD75C5EAD ] ReflectService C:\Program Files\Macrium\Reflect\ReflectService.exe 19:53:59.0343 0920 ReflectService - ok 19:53:59.0390 0920 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:53:59.0406 0920 RemoteAccess - ok 19:53:59.0421 0920 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:53:59.0421 0920 RemoteRegistry - ok 19:53:59.0437 0920 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 19:53:59.0452 0920 RpcEptMapper - ok 19:53:59.0468 0920 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 19:53:59.0468 0920 RpcLocator - ok 19:53:59.0499 0920 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 19:53:59.0499 0920 RpcSs - ok 19:53:59.0546 0920 [ C9FE05A63C500ABE3AFA5786504C4D36 ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys 19:53:59.0562 0920 RsFx0105 - ok 19:53:59.0593 0920 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 19:53:59.0593 0920 rspndr - ok 19:53:59.0593 0920 rt61x64 - ok 19:53:59.0640 0920 [ 2FF8305CDEE3A4B3DAB53CD50BE73F88 ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys 19:53:59.0640 0920 RTL8192cu - ok 19:53:59.0718 0920 [ A332DB1DAC07E95667A57AAEEC236C37 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys 19:53:59.0733 0920 RTL8192su - ok 19:53:59.0764 0920 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 19:53:59.0764 0920 s3cap - ok 19:53:59.0780 0920 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 19:53:59.0780 0920 SamSs - ok 19:53:59.0811 0920 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:53:59.0811 0920 sbp2port - ok 19:53:59.0842 0920 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:53:59.0842 0920 SCardSvr - ok 19:53:59.0858 0920 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 19:53:59.0858 0920 scfilter - ok 19:53:59.0905 0920 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 19:53:59.0920 0920 Schedule - ok 19:53:59.0952 0920 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 19:53:59.0952 0920 SCPolicySvc - ok 19:53:59.0983 0920 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:53:59.0983 0920 SDRSVC - ok 19:54:00.0061 0920 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 19:54:00.0061 0920 SeaPort - ok 19:54:00.0076 0920 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 19:54:00.0076 0920 secdrv - ok 19:54:00.0092 0920 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 19:54:00.0092 0920 seclogon - ok 19:54:00.0170 0920 [ 9044795E9D1A912D5F1B8DF6211850FD ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe 19:54:00.0201 0920 Secunia PSI Agent - ok 19:54:00.0217 0920 [ 8B1A72E4FB63A9C068B08E1F9B70482A ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe 19:54:00.0232 0920 Secunia Update Agent - ok 19:54:00.0264 0920 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 19:54:00.0264 0920 SENS - ok 19:54:00.0279 0920 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 19:54:00.0279 0920 SensrSvc - ok 19:54:00.0295 0920 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 19:54:00.0295 0920 Serenum - ok 19:54:00.0326 0920 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 19:54:00.0326 0920 Serial - ok 19:54:00.0342 0920 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 19:54:00.0342 0920 sermouse - ok 19:54:00.0373 0920 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 19:54:00.0373 0920 SessionEnv - ok 19:54:00.0404 0920 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 19:54:00.0404 0920 sffdisk - ok 19:54:00.0420 0920 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 19:54:00.0420 0920 sffp_mmc - ok 19:54:00.0420 0920 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 19:54:00.0420 0920 sffp_sd - ok 19:54:00.0435 0920 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 19:54:00.0435 0920 sfloppy - ok 19:54:00.0482 0920 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:54:00.0482 0920 SharedAccess - ok 19:54:00.0498 0920 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:54:00.0513 0920 ShellHWDetection - ok 19:54:00.0544 0920 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 19:54:00.0544 0920 SiSRaid2 - ok 19:54:00.0544 0920 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 19:54:00.0544 0920 SiSRaid4 - ok 19:54:00.0622 0920 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 19:54:00.0622 0920 SkypeUpdate - ok 19:54:00.0622 0920 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 19:54:00.0622 0920 Smb - ok 19:54:00.0654 0920 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:54:00.0654 0920 SNMPTRAP - ok 19:54:00.0654 0920 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 19:54:00.0654 0920 spldr - ok 19:54:00.0700 0920 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 19:54:00.0716 0920 Spooler - ok 19:54:00.0794 0920 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 19:54:00.0856 0920 sppsvc - ok 19:54:00.0872 0920 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 19:54:00.0872 0920 sppuinotify - ok 19:54:00.0966 0920 [ 45E65FB17A4CD5FACBD3CA16C8334C82 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE 19:54:00.0981 0920 SQLAgent$SQLEXPRESS - ok 19:54:01.0059 0920 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe 19:54:01.0059 0920 SQLBrowser - ok 19:54:01.0122 0920 [ F92E5F93BE572B512DA3C016B675EDE0 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 19:54:01.0122 0920 SQLWriter - ok 19:54:01.0153 0920 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 19:54:01.0153 0920 srv - ok 19:54:01.0168 0920 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:54:01.0184 0920 srv2 - ok 19:54:01.0200 0920 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:54:01.0200 0920 srvnet - ok 19:54:01.0215 0920 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:54:01.0215 0920 SSDPSRV - ok 19:54:01.0231 0920 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:54:01.0231 0920 SstpSvc - ok 19:54:01.0309 0920 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 19:54:01.0309 0920 Stereo Service - ok 19:54:01.0340 0920 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 19:54:01.0340 0920 stexstor - ok 19:54:01.0356 0920 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 19:54:01.0387 0920 stisvc - ok 19:54:01.0418 0920 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 19:54:01.0418 0920 storflt - ok 19:54:01.0449 0920 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll 19:54:01.0449 0920 StorSvc - ok 19:54:01.0496 0920 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 19:54:01.0496 0920 storvsc - ok 19:54:01.0558 0920 [ 1C377DCD8EFBBCD8EC5CDAF2C3E9DF86 ] supersafer64 C:\Windows\SysWOW64\drivers\supersafer64.sys 19:54:01.0558 0920 supersafer64 - ok 19:54:01.0590 0920 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 19:54:01.0590 0920 swenum - ok 19:54:01.0605 0920 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 19:54:01.0621 0920 swprv - ok 19:54:01.0621 0920 Synth3dVsc - ok 19:54:01.0668 0920 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 19:54:01.0699 0920 SysMain - ok 19:54:01.0730 0920 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:54:01.0730 0920 TabletInputService - ok 19:54:01.0746 0920 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 19:54:01.0761 0920 TapiSrv - ok 19:54:01.0761 0920 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 19:54:01.0777 0920 TBS - ok 19:54:01.0824 0920 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:54:01.0855 0920 Tcpip - ok 19:54:01.0902 0920 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 19:54:01.0917 0920 TCPIP6 - ok 19:54:01.0948 0920 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:54:01.0948 0920 tcpipreg - ok 19:54:01.0980 0920 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 19:54:01.0980 0920 TDPIPE - ok 19:54:02.0026 0920 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 19:54:02.0026 0920 TDTCP - ok 19:54:02.0042 0920 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:54:02.0042 0920 tdx - ok 19:54:02.0058 0920 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 19:54:02.0058 0920 TermDD - ok 19:54:02.0089 0920 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 19:54:02.0120 0920 TermService - ok 19:54:02.0136 0920 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 19:54:02.0136 0920 Themes - ok 19:54:02.0167 0920 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 19:54:02.0167 0920 THREADORDER - ok 19:54:02.0182 0920 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 19:54:02.0182 0920 TrkWks - ok 19:54:02.0229 0920 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:54:02.0229 0920 TrustedInstaller - ok 19:54:02.0260 0920 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 19:54:02.0260 0920 tssecsrv - ok 19:54:02.0292 0920 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 19:54:02.0292 0920 TsUsbFlt - ok 19:54:02.0307 0920 tsusbhub - ok 19:54:02.0338 0920 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 19:54:02.0338 0920 tunnel - ok 19:54:02.0338 0920 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 19:54:02.0354 0920 uagp35 - ok 19:54:02.0370 0920 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:54:02.0370 0920 udfs - ok 19:54:02.0432 0920 [ 215462AE7E6A897D675E84DD1E3B3B56 ] ufad-ws60 D:\VMWare Workstation\vmware-ufad.exe 19:54:02.0432 0920 ufad-ws60 - ok 19:54:02.0463 0920 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:54:02.0463 0920 UI0Detect - ok 19:54:02.0494 0920 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:54:02.0494 0920 uliagpkx - ok 19:54:02.0510 0920 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 19:54:02.0510 0920 umbus - ok 19:54:02.0541 0920 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 19:54:02.0541 0920 UmPass - ok 19:54:02.0557 0920 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 19:54:02.0572 0920 UmRdpService - ok 19:54:02.0572 0920 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 19:54:02.0588 0920 upnphost - ok 19:54:02.0635 0920 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 19:54:02.0635 0920 USBAAPL64 - ok 19:54:02.0682 0920 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 19:54:02.0682 0920 usbccgp - ok 19:54:02.0713 0920 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 19:54:02.0713 0920 usbcir - ok 19:54:02.0744 0920 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 19:54:02.0744 0920 usbehci - ok 19:54:02.0791 0920 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 19:54:02.0791 0920 usbhub - ok 19:54:02.0806 0920 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 19:54:02.0806 0920 usbohci - ok 19:54:02.0822 0920 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 19:54:02.0822 0920 usbprint - ok 19:54:02.0853 0920 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 19:54:02.0853 0920 usbscan - ok 19:54:02.0884 0920 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 19:54:02.0884 0920 USBSTOR - ok 19:54:02.0916 0920 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 19:54:02.0916 0920 usbuhci - ok 19:54:02.0931 0920 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 19:54:02.0931 0920 UxSms - ok 19:54:02.0931 0920 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 19:54:02.0931 0920 VaultSvc - ok 19:54:02.0962 0920 [ D119C47F337B5B5A80E259563703A922 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys 19:54:02.0962 0920 VBoxNetAdp - ok 19:54:02.0994 0920 VBoxNetFlt - ok 19:54:03.0009 0920 [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone C:\Windows\system32\DRIVERS\VClone.sys 19:54:03.0009 0920 VClone - ok 19:54:03.0040 0920 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 19:54:03.0040 0920 vdrvroot - ok 19:54:03.0056 0920 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 19:54:03.0072 0920 vds - ok 19:54:03.0087 0920 vfzafaaw - ok 19:54:03.0103 0920 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 19:54:03.0103 0920 vga - ok 19:54:03.0103 0920 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 19:54:03.0103 0920 VgaSave - ok 19:54:03.0118 0920 VGPU - ok 19:54:03.0150 0920 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 19:54:03.0150 0920 vhdmp - ok 19:54:03.0165 0920 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 19:54:03.0165 0920 viaide - ok 19:54:03.0212 0920 [ 6FC9B272B838EE8F5FA0E4A7E971154A ] VMAuthdService D:\VMWare Workstation\vmware-authd.exe 19:54:03.0212 0920 VMAuthdService - ok 19:54:03.0243 0920 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 19:54:03.0243 0920 vmbus - ok 19:54:03.0274 0920 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 19:54:03.0274 0920 VMBusHID - ok 19:54:03.0290 0920 [ B49CB94DB99519F9DC7F77D2D1F215B5 ] vmci C:\Windows\system32\drivers\vmci.sys 19:54:03.0290 0920 vmci - ok 19:54:03.0321 0920 [ 1AF6462718E5AB0ED55014A6EF3790EF ] vmkbd C:\Windows\system32\drivers\VMkbd.sys 19:54:03.0321 0920 vmkbd - ok 19:54:03.0337 0920 [ 9D54F1339E78C95BF3D9939EBCB66378 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys 19:54:03.0337 0920 VMnetAdapter - ok 19:54:03.0352 0920 [ FB54EF3AA613D2832FD3812E7CB2FC75 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys 19:54:03.0352 0920 VMnetBridge - ok 19:54:03.0368 0920 VMnetDHCP - ok 19:54:03.0399 0920 [ 163B05050FCD9635242EC5206C19A182 ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys 19:54:03.0399 0920 VMnetuserif - ok 19:54:03.0446 0920 [ 415B167695C4B5960A13098622EF3D80 ] vmusb C:\Windows\system32\Drivers\vmusb.sys 19:54:03.0446 0920 vmusb - ok 19:54:03.0508 0920 [ F22098DBDD13C1221C274496B3E18DA7 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe 19:54:03.0508 0920 VMUSBArbService - ok 19:54:03.0524 0920 VMware NAT Service - ok 19:54:03.0540 0920 [ F2A8EE62D7161E1598CDD269BF22A03D ] vmx86 C:\Windows\system32\drivers\vmx86.sys 19:54:03.0540 0920 vmx86 - ok 19:54:03.0571 0920 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:54:03.0571 0920 volmgr - ok 19:54:03.0586 0920 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:54:03.0586 0920 volmgrx - ok 19:54:03.0633 0920 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:54:03.0633 0920 volsnap - ok 19:54:03.0664 0920 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 19:54:03.0664 0920 vsmraid - ok 19:54:03.0711 0920 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 19:54:03.0742 0920 VSS - ok 19:54:03.0774 0920 [ E61C910E2DDF4797C1B1F9239636E894 ] vstor2-ws60 D:\VMWare Workstation\vstor2-ws60.sys 19:54:03.0774 0920 vstor2-ws60 - ok 19:54:03.0789 0920 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 19:54:03.0789 0920 vwifibus - ok 19:54:03.0805 0920 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys 19:54:03.0805 0920 VWiFiFlt - ok 19:54:03.0820 0920 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 19:54:03.0820 0920 vwifimp - ok 19:54:03.0852 0920 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 19:54:03.0852 0920 W32Time - ok 19:54:03.0883 0920 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 19:54:03.0883 0920 WacomPen - ok 19:54:03.0930 0920 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 19:54:03.0930 0920 WANARP - ok 19:54:03.0945 0920 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:54:03.0945 0920 Wanarpv6 - ok 19:54:03.0992 0920 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 19:54:04.0023 0920 wbengine - ok 19:54:04.0039 0920 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 19:54:04.0039 0920 WbioSrvc - ok 19:54:04.0086 0920 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:54:04.0086 0920 wcncsvc - ok 19:54:04.0101 0920 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:54:04.0101 0920 WcsPlugInService - ok 19:54:04.0117 0920 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 19:54:04.0117 0920 Wd - ok 19:54:04.0164 0920 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:54:04.0179 0920 Wdf01000 - ok 19:54:04.0195 0920 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 19:54:04.0195 0920 WdiServiceHost - ok 19:54:04.0195 0920 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 19:54:04.0195 0920 WdiSystemHost - ok 19:54:04.0210 0920 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 19:54:04.0210 0920 WebClient - ok 19:54:04.0226 0920 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:54:04.0226 0920 Wecsvc - ok 19:54:04.0242 0920 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:54:04.0242 0920 wercplsupport - ok 19:54:04.0257 0920 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 19:54:04.0257 0920 WerSvc - ok 19:54:04.0273 0920 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 19:54:04.0273 0920 WfpLwf - ok 19:54:04.0288 0920 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 19:54:04.0288 0920 WIMMount - ok 19:54:04.0320 0920 WinDefend - ok 19:54:04.0335 0920 WinHttpAutoProxySvc - ok 19:54:04.0366 0920 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:54:04.0382 0920 Winmgmt - ok 19:54:04.0476 0920 WinRing0_1_2_0 - ok 19:54:04.0522 0920 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 19:54:04.0554 0920 WinRM - ok 19:54:04.0600 0920 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 19:54:04.0616 0920 Wlansvc - ok 19:54:04.0694 0920 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 19:54:04.0694 0920 wlcrasvc - ok 19:54:04.0788 0920 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 19:54:04.0834 0920 wlidsvc - ok 19:54:04.0866 0920 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 19:54:04.0866 0920 WmiAcpi - ok 19:54:04.0897 0920 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:54:04.0897 0920 wmiApSrv - ok 19:54:04.0944 0920 WMPNetworkSvc - ok 19:54:04.0944 0920 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 19:54:04.0959 0920 WPCSvc - ok 19:54:05.0022 0920 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:54:05.0022 0920 WPDBusEnum - ok 19:54:05.0053 0920 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:54:05.0053 0920 ws2ifsl - ok 19:54:05.0068 0920 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 19:54:05.0068 0920 wscsvc - ok 19:54:05.0068 0920 WSearch - ok 19:54:05.0146 0920 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 19:54:05.0193 0920 wuauserv - ok 19:54:05.0224 0920 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 19:54:05.0224 0920 WudfPf - ok 19:54:05.0256 0920 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 19:54:05.0256 0920 WUDFRd - ok 19:54:05.0271 0920 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:54:05.0287 0920 wudfsvc - ok 19:54:05.0318 0920 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll 19:54:05.0365 0920 WwanSvc - ok 19:54:05.0427 0920 ================ Scan global =============================== 19:54:05.0458 0920 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 19:54:05.0490 0920 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 19:54:05.0490 0920 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 19:54:05.0521 0920 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 19:54:05.0568 0920 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 19:54:05.0568 0920 [Global] - ok 19:54:05.0568 0920 ================ Scan MBR ================================== 19:54:05.0583 0920 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 19:54:05.0895 0920 \Device\Harddisk0\DR0 - ok 19:54:05.0895 0920 [ 180DBDE3AF7EA48B3DB3AC27B1DDF401 ] \Device\Harddisk1\DR1 19:54:06.0051 0920 \Device\Harddisk1\DR1 - ok 19:54:06.0067 0920 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4 19:54:06.0098 0920 \Device\Harddisk4\DR4 - ok 19:54:06.0098 0920 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5 19:54:06.0114 0920 \Device\Harddisk5\DR5 - ok 19:54:06.0114 0920 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk6\DR6 19:54:06.0114 0920 \Device\Harddisk6\DR6 - ok 19:54:06.0129 0920 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk7\DR7 19:54:06.0192 0920 \Device\Harddisk7\DR7 - ok 19:54:06.0192 0920 ================ Scan VBR ================================== 19:54:06.0192 0920 [ 0B8D39F4568B2EA71ACCAF392E173D4F ] \Device\Harddisk0\DR0\Partition1 19:54:06.0192 0920 \Device\Harddisk0\DR0\Partition1 - ok 19:54:06.0207 0920 [ 0B0987402C3B44004204DAAD998FA73D ] \Device\Harddisk0\DR0\Partition2 19:54:06.0207 0920 \Device\Harddisk0\DR0\Partition2 - ok 19:54:06.0223 0920 [ B91761B93EA1EBC52ABD870111EEA952 ] \Device\Harddisk0\DR0\Partition3 19:54:06.0223 0920 \Device\Harddisk0\DR0\Partition3 - ok 19:54:06.0238 0920 [ 677C5344816A67907DFE1FE5BA505CD7 ] \Device\Harddisk0\DR0\Partition4 19:54:06.0238 0920 \Device\Harddisk0\DR0\Partition4 - ok 19:54:06.0254 0920 [ C011B465FFEB6613C0C73DA055C7FCFC ] \Device\Harddisk1\DR1\Partition1 19:54:06.0254 0920 \Device\Harddisk1\DR1\Partition1 - ok 19:54:06.0254 0920 [ A9C320CDA51E245E95D79B2D9CD5B025 ] \Device\Harddisk4\DR4\Partition1 19:54:06.0254 0920 \Device\Harddisk4\DR4\Partition1 - ok 19:54:06.0254 0920 [ C17B078931AA91F198DB71548A363FF3 ] \Device\Harddisk5\DR5\Partition1 19:54:06.0254 0920 \Device\Harddisk5\DR5\Partition1 - ok 19:54:06.0270 0920 [ AD753F66D7124B0C228AC5B9AD03ACD4 ] \Device\Harddisk6\DR6\Partition1 19:54:06.0270 0920 \Device\Harddisk6\DR6\Partition1 - ok 19:54:06.0270 0920 [ 6466998B754071A59125F12143C9B511 ] \Device\Harddisk7\DR7\Partition1 19:54:06.0270 0920 \Device\Harddisk7\DR7\Partition1 - ok 19:54:06.0270 0920 ============================================================ 19:54:06.0270 0920 Scan finished 19:54:06.0270 0920 ============================================================ 19:54:06.0285 1512 Detected object count: 1 19:54:06.0285 1512 Actual detected object count: 1 19:54:57.0890 1512 c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll - copied to quarantine 19:54:57.0906 1512 HKLM\SYSTEM\ControlSet001\services\Akamai - will be deleted on reboot 19:54:57.0921 1512 HKLM\SYSTEM\ControlSet002\services\Akamai - will be deleted on reboot 19:54:58.0108 1512 c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll - will be deleted on reboot 19:54:58.0108 1512 Akamai ( HiddenFile.Multi.Generic ) - User select action: Delete 19:55:04.0177 0488 Deinitialize success ik heb dus de Akamai/netsession gedeleted, ik weet niet of dit nu goed of slecht was. nadien nog een scan gedaan in normal boot. scan 2: 19:58:40.0978 2232 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 19:58:41.0134 2232 ============================================================ 19:58:41.0134 2232 Current date / time: 2013/05/26 19:58:41.0134 19:58:41.0134 2232 SystemInfo: 19:58:41.0134 2232 19:58:41.0134 2232 OS Version: 6.1.7601 ServicePack: 1.0 19:58:41.0134 2232 Product type: Workstation 19:58:41.0134 2232 ComputerName: HENDRIK-PC1 19:58:41.0149 2232 UserName: Hendrik 19:58:41.0149 2232 Windows directory: C:\Windows 19:58:41.0149 2232 System windows directory: C:\Windows 19:58:41.0149 2232 Running under WOW64 19:58:41.0149 2232 Processor architecture: Intel x64 19:58:41.0149 2232 Number of processors: 2 19:58:41.0149 2232 Page size: 0x1000 19:58:41.0149 2232 Boot type: Normal boot 19:58:41.0149 2232 ============================================================ 19:59:00.0134 2232 BG loaded 19:59:01.0195 2232 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:59:01.0195 2232 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:59:01.0211 2232 Drive \Device\Harddisk4\DR4 - Size: 0x7D00000 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:59:01.0226 2232 Drive \Device\Harddisk5\DR5 - Size: 0x39C2A0000 (14.44 Gb), SectorSize: 0x200, Cylinders: 0x75D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:59:01.0226 2232 Drive \Device\Harddisk6\DR6 - Size: 0x1DD800000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:59:01.0226 2232 Drive \Device\Harddisk7\DR7 - Size: 0x3BA300000 (14.91 Gb), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 19:59:01.0226 2232 ============================================================ 19:59:01.0226 2232 \Device\Harddisk0\DR0: 19:59:01.0226 2232 MBR partitions: 19:59:01.0226 2232 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x327C1 19:59:01.0226 2232 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1BBCC000 19:59:01.0226 2232 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1BBFF034, BlocksNum 0x2A471678 19:59:03.0254 2232 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x460706EB, BlocksNum 0x47E67D6 19:59:03.0254 2232 \Device\Harddisk1\DR1: 19:59:03.0254 2232 MBR partitions: 19:59:03.0254 2232 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482 19:59:03.0254 2232 \Device\Harddisk4\DR4: 19:59:03.0254 2232 MBR partitions: 19:59:03.0254 2232 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x6, StartLBA 0x2F, BlocksNum 0x3E7D1 19:59:03.0254 2232 \Device\Harddisk5\DR5: 19:59:03.0254 2232 MBR partitions: 19:59:03.0254 2232 \Device\Harddisk5\DR5\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0x1CDF580 19:59:03.0254 2232 \Device\Harddisk6\DR6: 19:59:03.0270 2232 MBR partitions: 19:59:03.0270 2232 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x1F80, BlocksNum 0xEEA080 19:59:03.0270 2232 \Device\Harddisk7\DR7: 19:59:03.0270 2232 MBR partitions: 19:59:03.0270 2232 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x20, BlocksNum 0x1DD17E0 19:59:03.0270 2232 ============================================================ 19:59:03.0488 2232 C: <-> \Device\Harddisk0\DR0\Partition2 19:59:03.0629 2232 S: <-> \Device\Harddisk1\DR1\Partition1 19:59:03.0629 2232 E: <-> \Device\Harddisk0\DR0\Partition4 19:59:04.0846 2232 D: <-> \Device\Harddisk0\DR0\Partition3 19:59:04.0877 2232 Y: <-> \Device\Harddisk0\DR0\Partition1 19:59:04.0877 2232 ============================================================ 19:59:04.0877 2232 Initialize success 19:59:04.0877 2232 ============================================================ 20:01:58.0840 4108 ============================================================ 20:01:58.0840 4108 Scan started 20:01:58.0840 4108 Mode: Manual; SigCheck; TDLFS; 20:01:58.0840 4108 ============================================================ 20:03:16.0544 4108 ================ Scan system memory ======================== 20:03:16.0544 4108 System memory - ok 20:03:16.0544 4108 ================ Scan services ============================= 20:03:16.0825 4108 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 20:03:16.0965 4108 1394ohci - ok 20:03:17.0012 4108 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 20:03:17.0043 4108 ACPI - ok 20:03:17.0121 4108 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 20:03:17.0230 4108 AcpiPmi - ok 20:03:17.0464 4108 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 20:03:17.0480 4108 AdobeARMservice - ok 20:03:17.0620 4108 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 20:03:17.0636 4108 AdobeFlashPlayerUpdateSvc - ok 20:03:17.0683 4108 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 20:03:17.0714 4108 adp94xx - ok 20:03:17.0745 4108 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 20:03:17.0761 4108 adpahci - ok 20:03:17.0776 4108 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 20:03:17.0792 4108 adpu320 - ok 20:03:17.0823 4108 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 20:03:18.0026 4108 AeLookupSvc - ok 20:03:18.0151 4108 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 20:03:18.0213 4108 AFD - ok 20:03:18.0276 4108 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 20:03:18.0291 4108 agp440 - ok 20:03:18.0338 4108 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 20:03:18.0432 4108 ALG - ok 20:03:18.0478 4108 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 20:03:18.0494 4108 aliide - ok 20:03:18.0541 4108 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 20:03:18.0556 4108 amdide - ok 20:03:18.0603 4108 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 20:03:18.0650 4108 AmdK8 - ok 20:03:18.0697 4108 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 20:03:18.0759 4108 AmdPPM - ok 20:03:18.0837 4108 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 20:03:18.0868 4108 amdsata - ok 20:03:19.0009 4108 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 20:03:19.0024 4108 amdsbs - ok 20:03:19.0102 4108 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 20:03:19.0118 4108 amdxata - ok 20:03:19.0165 4108 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 20:03:19.0711 4108 AppID - ok 20:03:19.0726 4108 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 20:03:19.0789 4108 AppIDSvc - ok 20:03:19.0929 4108 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll 20:03:20.0070 4108 Appinfo - ok 20:03:20.0085 4108 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 20:03:20.0288 4108 AppMgmt - ok 20:03:20.0397 4108 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 20:03:20.0413 4108 arc - ok 20:03:20.0491 4108 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 20:03:20.0506 4108 arcsas - ok 20:03:20.0834 4108 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 20:03:21.0130 4108 aspnet_state - ok 20:03:21.0208 4108 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 20:03:21.0302 4108 AsyncMac - ok 20:03:21.0333 4108 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 20:03:21.0333 4108 atapi - ok 20:03:21.0411 4108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 20:03:21.0520 4108 AudioEndpointBuilder - ok 20:03:21.0552 4108 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 20:03:21.0583 4108 AudioSrv - ok 20:03:21.0661 4108 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 20:03:21.0832 4108 AxInstSV - ok 20:03:21.0973 4108 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 20:03:22.0020 4108 b06bdrv - ok 20:03:22.0113 4108 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 20:03:22.0378 4108 b57nd60a - ok 20:03:22.0706 4108 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE 20:03:22.0722 4108 BBSvc - ok 20:03:22.0753 4108 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 20:03:23.0034 4108 BDESVC - ok 20:03:23.0096 4108 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 20:03:23.0158 4108 Beep - ok 20:03:23.0190 4108 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 20:03:23.0252 4108 BFE - ok 20:03:23.0330 4108 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 20:03:23.0392 4108 BITS - ok 20:03:23.0470 4108 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 20:03:23.0517 4108 blbdrive - ok 20:03:23.0689 4108 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 20:03:23.0720 4108 Bonjour Service - ok 20:03:23.0876 4108 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 20:03:23.0938 4108 bowser - ok 20:03:24.0001 4108 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 20:03:24.0048 4108 BrFiltLo - ok 20:03:24.0063 4108 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 20:03:24.0126 4108 BrFiltUp - ok 20:03:24.0188 4108 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 20:03:24.0438 4108 Browser - ok 20:03:24.0484 4108 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 20:03:24.0562 4108 Brserid - ok 20:03:24.0578 4108 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 20:03:24.0625 4108 BrSerWdm - ok 20:03:24.0656 4108 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 20:03:24.0718 4108 BrUsbMdm - ok 20:03:24.0765 4108 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 20:03:24.0796 4108 BrUsbSer - ok 20:03:24.0828 4108 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 20:03:24.0999 4108 BTHMODEM - ok 20:03:25.0062 4108 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 20:03:25.0592 4108 bthserv - ok 20:03:25.0779 4108 [ 7F771059963775ADD679EFED7B1910C9 ] CareMon C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe 20:03:25.0795 4108 CareMon - ok 20:03:25.0935 4108 [ 58BF7714A312698108A96D0DE2BB6825 ] cbVSCService11 C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe 20:03:25.0966 4108 cbVSCService11 ( UnsignedFile.Multi.Generic ) - warning 20:03:25.0966 4108 cbVSCService11 - detected UnsignedFile.Multi.Generic (1) 20:03:25.0998 4108 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 20:03:26.0154 4108 cdfs - ok 20:03:26.0325 4108 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 20:03:26.0356 4108 cdrom - ok 20:03:26.0403 4108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 20:03:26.0575 4108 CertPropSvc - ok 20:03:26.0606 4108 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 20:03:26.0668 4108 circlass - ok 20:03:26.0809 4108 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:\Windows\system32\CISVC.EXE 20:03:26.0871 4108 CISVC - ok 20:03:26.0902 4108 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 20:03:26.0918 4108 CLFS - ok 20:03:27.0074 4108 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:03:27.0214 4108 clr_optimization_v2.0.50727_32 - ok 20:03:27.0324 4108 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:03:27.0339 4108 clr_optimization_v2.0.50727_64 - ok 20:03:27.0417 4108 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:03:28.0104 4108 clr_optimization_v4.0.30319_32 - ok 20:03:28.0135 4108 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:03:28.0962 4108 clr_optimization_v4.0.30319_64 - ok 20:03:29.0086 4108 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 20:03:29.0133 4108 CmBatt - ok 20:03:29.0164 4108 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 20:03:29.0180 4108 cmdide - ok 20:03:29.0274 4108 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 20:03:29.0305 4108 CNG - ok 20:03:29.0367 4108 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 20:03:29.0383 4108 Compbatt - ok 20:03:29.0508 4108 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 20:03:29.0539 4108 CompositeBus - ok 20:03:29.0555 4108 COMSysApp - ok 20:03:29.0617 4108 cpuz134 - ok 20:03:29.0695 4108 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 20:03:29.0711 4108 crcdisk - ok 20:03:29.0742 4108 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 20:03:29.0789 4108 CryptSvc - ok 20:03:29.0835 4108 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 20:03:29.0945 4108 CSC - ok 20:03:30.0054 4108 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 20:03:30.0210 4108 CscService - ok 20:03:30.0397 4108 [ A5BEA0E5C297F5F3835638A87E512FBA ] CTDevice_Srv C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe 20:03:30.0459 4108 CTDevice_Srv ( UnsignedFile.Multi.Generic ) - warning 20:03:30.0459 4108 CTDevice_Srv - detected UnsignedFile.Multi.Generic (1) 20:03:30.0506 4108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 20:03:30.0600 4108 DcomLaunch - ok 20:03:30.0647 4108 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 20:03:30.0818 4108 defragsvc - ok 20:03:30.0881 4108 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 20:03:31.0052 4108 DfsC - ok 20:03:31.0177 4108 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 20:03:31.0224 4108 Dhcp - ok 20:03:31.0255 4108 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 20:03:31.0317 4108 discache - ok 20:03:31.0380 4108 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 20:03:31.0395 4108 Disk - ok 20:03:31.0520 4108 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 20:03:31.0692 4108 Dnscache - ok 20:03:31.0785 4108 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 20:03:31.0910 4108 dot3svc - ok 20:03:32.0004 4108 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 20:03:32.0066 4108 Dot4 - ok 20:03:32.0097 4108 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 20:03:32.0191 4108 Dot4Print - ok 20:03:32.0207 4108 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 20:03:32.0253 4108 dot4usb - ok 20:03:32.0316 4108 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 20:03:32.0378 4108 DPS - ok 20:03:32.0487 4108 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 20:03:32.0503 4108 drmkaud - ok 20:03:32.0675 4108 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 20:03:32.0706 4108 DXGKrnl - ok 20:03:32.0784 4108 [ 416A2007878ED1D6FC5DDDB9E1F6DB3E ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys 20:03:32.0924 4108 e1express - ok 20:03:32.0987 4108 EagleX64 - ok 20:03:33.0049 4108 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 20:03:33.0127 4108 EapHost - ok 20:03:33.0252 4108 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 20:03:33.0423 4108 ebdrv - ok 20:03:33.0455 4108 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 20:03:33.0533 4108 EFS - ok 20:03:33.0923 4108 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 20:03:34.0047 4108 ehRecvr - ok 20:03:34.0094 4108 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 20:03:34.0297 4108 ehSched - ok 20:03:34.0391 4108 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys 20:03:34.0531 4108 ElbyCDIO - ok 20:03:34.0640 4108 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 20:03:34.0687 4108 elxstor - ok 20:03:34.0718 4108 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 20:03:34.0781 4108 ErrDev - ok 20:03:34.0843 4108 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 20:03:35.0155 4108 EventSystem - ok 20:03:35.0186 4108 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 20:03:35.0280 4108 exfat - ok 20:03:35.0389 4108 Fabs - ok 20:03:35.0467 4108 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 20:03:35.0545 4108 fastfat - ok 20:03:35.0607 4108 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 20:03:35.0701 4108 Fax - ok 20:03:35.0732 4108 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 20:03:35.0763 4108 fdc - ok 20:03:35.0826 4108 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 20:03:35.0935 4108 fdPHost - ok 20:03:35.0935 4108 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 20:03:35.0982 4108 FDResPub - ok 20:03:35.0997 4108 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 20:03:36.0013 4108 FileInfo - ok 20:03:36.0044 4108 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 20:03:36.0231 4108 Filetrace - ok 20:03:36.0325 4108 [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 20:03:36.0419 4108 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning 20:03:36.0419 4108 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1) 20:03:36.0450 4108 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 20:03:36.0528 4108 flpydisk - ok 20:03:36.0559 4108 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 20:03:36.0575 4108 FltMgr - ok 20:03:36.0777 4108 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll 20:03:36.0965 4108 FontCache - ok 20:03:37.0074 4108 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:03:37.0089 4108 FontCache3.0.0.0 - ok 20:03:37.0152 4108 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 20:03:37.0167 4108 FsDepends - ok 20:03:37.0323 4108 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 20:03:37.0339 4108 fssfltr - ok 20:03:37.0526 4108 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 20:03:37.0604 4108 fsssvc - ok 20:03:37.0760 4108 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 20:03:37.0776 4108 Fs_Rec - ok 20:03:37.0823 4108 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 20:03:37.0854 4108 fvevol - ok 20:03:37.0947 4108 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 20:03:37.0963 4108 gagp30kx - ok 20:03:38.0072 4108 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 20:03:38.0088 4108 GEARAspiWDM - ok 20:03:38.0150 4108 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 20:03:38.0275 4108 gpsvc - ok 20:03:38.0681 4108 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:03:38.0696 4108 gupdate - ok 20:03:38.0774 4108 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:03:38.0790 4108 gupdatem - ok 20:03:39.0024 4108 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 20:03:39.0039 4108 gusvc - ok 20:03:39.0086 4108 [ BA207B48AA3D9D73FD4856400F852458 ] hcmon C:\Windows\system32\drivers\hcmon.sys 20:03:39.0102 4108 hcmon - ok 20:03:39.0149 4108 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 20:03:39.0258 4108 hcw85cir - ok 20:03:39.0336 4108 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 20:03:39.0383 4108 HdAudAddService - ok 20:03:39.0445 4108 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 20:03:39.0476 4108 HDAudBus - ok 20:03:39.0492 4108 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 20:03:39.0539 4108 HidBatt - ok 20:03:39.0539 4108 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 20:03:39.0585 4108 HidBth - ok 20:03:39.0617 4108 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 20:03:39.0648 4108 HidIr - ok 20:03:39.0679 4108 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 20:03:39.0741 4108 hidserv - ok 20:03:39.0804 4108 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 20:03:39.0804 4108 HidUsb - ok 20:03:39.0851 4108 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 20:03:40.0022 4108 hkmsvc - ok 20:03:40.0085 4108 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 20:03:40.0147 4108 HomeGroupListener - ok 20:03:40.0241 4108 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 20:03:40.0334 4108 HomeGroupProvider - ok 20:03:40.0506 4108 [ 08457D8F8149757C70CEA59C71EC5D27 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 20:03:40.0537 4108 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning 20:03:40.0537 4108 hpqcxs08 - detected UnsignedFile.Multi.Generic (1) 20:03:40.0631 4108 [ 75CC8C5146A3FB76221A7606628778D5 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 20:03:40.0646 4108 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning 20:03:40.0646 4108 hpqddsvc - detected UnsignedFile.Multi.Generic (1) 20:03:40.0709 4108 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 20:03:40.0724 4108 HpSAMD - ok 20:03:40.0802 4108 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 20:03:41.0021 4108 HTTP - ok 20:03:41.0052 4108 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 20:03:41.0067 4108 hwpolicy - ok 20:03:41.0114 4108 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 20:03:41.0145 4108 i8042prt - ok 20:03:41.0177 4108 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 20:03:41.0192 4108 iaStorV - ok 20:03:41.0239 4108 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:03:41.0286 4108 idsvc - ok 20:03:41.0379 4108 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 20:03:41.0395 4108 iirsp - ok 20:03:41.0551 4108 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 20:03:41.0691 4108 IKEEXT - ok 20:03:41.0832 4108 [ 718A4008EE5DA174400396B27509EF82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 20:03:41.0879 4108 IntcAzAudAddService - ok 20:03:42.0097 4108 [ 26FBC0AEDE7C6A67781202E0E2ECB6A6 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe 20:03:42.0409 4108 Intel® PROSet Monitoring Service - ok 20:03:42.0440 4108 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 20:03:42.0705 4108 intelide - ok 20:03:42.0752 4108 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 20:03:42.0783 4108 intelppm - ok 20:03:42.0893 4108 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 20:03:43.0049 4108 IPBusEnum - ok 20:03:43.0220 4108 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:03:43.0329 4108 IpFilterDriver - ok 20:03:43.0392 4108 [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc C:\Windows\System32\iphlpsvc.dll 20:03:43.0517 4108 IpHlpSvc - ok 20:03:43.0548 4108 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 20:03:43.0595 4108 IPMIDRV - ok 20:03:43.0704 4108 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 20:03:43.0766 4108 IPNAT - ok 20:03:43.0797 4108 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 20:03:43.0844 4108 IRENUM - ok 20:03:43.0985 4108 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 20:03:44.0000 4108 isapnp - ok 20:03:44.0031 4108 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 20:03:44.0047 4108 iScsiPrt - ok 20:03:44.0078 4108 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 20:03:44.0078 4108 kbdclass - ok 20:03:44.0109 4108 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 20:03:44.0141 4108 kbdhid - ok 20:03:44.0172 4108 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 20:03:44.0187 4108 KeyIso - ok 20:03:44.0219 4108 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 20:03:44.0234 4108 KSecDD - ok 20:03:44.0297 4108 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 20:03:44.0312 4108 KSecPkg - ok 20:03:44.0359 4108 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 20:03:44.0421 4108 ksthunk - ok 20:03:44.0562 4108 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 20:03:44.0640 4108 KtmRm - ok 20:03:44.0733 4108 [ CED526C739D4091F77DDE6C339AB49BE ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys 20:03:44.0749 4108 L8042Kbd - ok 20:03:44.0796 4108 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 20:03:44.0952 4108 LanmanServer - ok 20:03:45.0045 4108 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 20:03:45.0170 4108 LanmanWorkstation - ok 20:03:45.0389 4108 [ 19EFF704CD16DD0429E128431F1DD631 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe 20:03:45.0389 4108 LBTServ - ok 20:03:45.0576 4108 [ 1074C77A47835E03C15BF92452F9A750 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys 20:03:45.0591 4108 LHidFilt - ok 20:03:45.0623 4108 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 20:03:45.0685 4108 lltdio - ok 20:03:45.0794 4108 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 20:03:45.0841 4108 lltdsvc - ok 20:03:45.0857 4108 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 20:03:45.0997 4108 lmhosts - ok 20:03:46.0028 4108 [ 96999C364C649E2866A268F7420A304A ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys 20:03:46.0044 4108 LMouFilt - ok 20:03:46.0106 4108 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 20:03:46.0122 4108 LSI_FC - ok 20:03:46.0137 4108 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 20:03:46.0153 4108 LSI_SAS - ok 20:03:46.0169 4108 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 20:03:46.0169 4108 LSI_SAS2 - ok 20:03:46.0184 4108 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 20:03:46.0200 4108 LSI_SCSI - ok 20:03:46.0215 4108 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 20:03:46.0278 4108 luafv - ok 20:03:46.0356 4108 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 20:03:46.0371 4108 MBAMProtector - ok 20:03:46.0824 4108 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 20:03:46.0839 4108 MBAMScheduler - ok 20:03:46.0902 4108 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 20:03:46.0933 4108 MBAMService - ok 20:03:47.0120 4108 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys 20:03:47.0136 4108 mcdbus - ok 20:03:47.0339 4108 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 20:03:47.0417 4108 Mcx2Svc - ok 20:03:47.0666 4108 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe 20:03:47.0713 4108 MDM ( UnsignedFile.Multi.Generic ) - warning 20:03:47.0713 4108 MDM - detected UnsignedFile.Multi.Generic (1) 20:03:47.0916 4108 [ 5AC6D44CCB8D5C4ABAC823EAA85D571D ] Media Jukebox 14 Service C:\Program Files (x86)\J River\Media Jukebox 14\JRService.exe 20:03:47.0931 4108 Media Jukebox 14 Service - ok 20:03:47.0947 4108 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 20:03:47.0947 4108 megasas - ok 20:03:48.0025 4108 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 20:03:48.0056 4108 MegaSR - ok 20:03:48.0119 4108 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 20:03:48.0212 4108 MMCSS - ok 20:03:48.0228 4108 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 20:03:48.0275 4108 Modem - ok 20:03:48.0337 4108 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 20:03:48.0399 4108 monitor - ok 20:03:48.0446 4108 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 20:03:48.0446 4108 mouclass - ok 20:03:48.0462 4108 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 20:03:48.0493 4108 mouhid - ok 20:03:48.0524 4108 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 20:03:48.0524 4108 mountmgr - ok 20:03:48.0743 4108 [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 20:03:48.0758 4108 MozillaMaintenance - ok 20:03:48.0930 4108 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 20:03:48.0961 4108 MpFilter - ok 20:03:48.0992 4108 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 20:03:49.0023 4108 mpio - ok 20:03:49.0070 4108 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 20:03:49.0164 4108 mpsdrv - ok 20:03:49.0226 4108 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 20:03:49.0320 4108 MpsSvc - ok 20:03:49.0382 4108 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 20:03:49.0507 4108 MRxDAV - ok 20:03:49.0554 4108 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 20:03:49.0632 4108 mrxsmb - ok 20:03:49.0663 4108 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:03:49.0725 4108 mrxsmb10 - ok 20:03:49.0741 4108 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:03:49.0788 4108 mrxsmb20 - ok 20:03:49.0881 4108 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 20:03:49.0897 4108 msahci - ok 20:03:50.0006 4108 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 20:03:50.0037 4108 msdsm - ok 20:03:50.0069 4108 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 20:03:50.0131 4108 MSDTC - ok 20:03:50.0193 4108 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 20:03:50.0256 4108 Msfs - ok 20:03:50.0303 4108 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 20:03:50.0396 4108 mshidkmdf - ok 20:03:50.0427 4108 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 20:03:50.0443 4108 msisadrv - ok 20:03:50.0490 4108 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 20:03:50.0630 4108 MSiSCSI - ok 20:03:50.0646 4108 msiserver - ok 20:03:50.0724 4108 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 20:03:50.0786 4108 MSKSSRV - ok 20:03:50.0973 4108 MsMpSvc - ok 20:03:51.0005 4108 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 20:03:51.0083 4108 MSPCLOCK - ok 20:03:51.0098 4108 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 20:03:51.0192 4108 MSPQM - ok 20:03:51.0254 4108 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 20:03:51.0285 4108 MsRPC - ok 20:03:51.0301 4108 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 20:03:51.0317 4108 mssmbios - ok 20:03:51.0473 4108 MSSQL$SQLEXPRESS - ok 20:03:51.0956 4108 [ 7A2A8C975356858EB38466A6B1592E8D ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE 20:03:52.0003 4108 MSSQLServerADHelper100 - ok 20:03:52.0143 4108 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 20:03:52.0268 4108 MSTEE - ok 20:03:52.0284 4108 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 20:03:52.0409 4108 MTConfig - ok 20:03:52.0549 4108 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 20:03:52.0565 4108 Mup - ok 20:03:52.0674 4108 [ 73A40E29F61E5D142C8F42B28A351190 ] NAL C:\Windows\system32\Drivers\iqvw64e.sys 20:03:52.0689 4108 NAL - ok 20:03:52.0736 4108 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 20:03:52.0830 4108 napagent - ok 20:03:52.0877 4108 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 20:03:52.0923 4108 NativeWifiP - ok 20:03:53.0142 4108 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe 20:03:53.0235 4108 NAUpdate - ok 20:03:53.0407 4108 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 20:03:53.0454 4108 NDIS - ok 20:03:53.0485 4108 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 20:03:53.0594 4108 NdisCap - ok 20:03:53.0610 4108 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 20:03:53.0766 4108 NdisTapi - ok 20:03:53.0797 4108 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 20:03:53.0984 4108 Ndisuio - ok 20:03:54.0015 4108 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 20:03:54.0062 4108 NdisWan - ok 20:03:54.0125 4108 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 20:03:54.0249 4108 NDProxy - ok 20:03:54.0405 4108 [ B6CBA9A0403E2C1A9EA03C33A4932E89 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 20:03:54.0483 4108 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 20:03:54.0483 4108 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 20:03:54.0655 4108 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 20:03:54.0717 4108 NetBIOS - ok 20:03:54.0795 4108 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 20:03:54.0858 4108 NetBT - ok 20:03:54.0889 4108 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 20:03:54.0889 4108 Netlogon - ok 20:03:55.0014 4108 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 20:03:55.0092 4108 Netman - ok 20:03:55.0295 4108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:03:55.0357 4108 NetMsmqActivator - ok 20:03:55.0373 4108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:03:55.0388 4108 NetPipeActivator - ok 20:03:55.0482 4108 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 20:03:55.0529 4108 netprofm - ok 20:03:55.0591 4108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:03:55.0607 4108 NetTcpActivator - ok 20:03:55.0607 4108 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:03:55.0622 4108 NetTcpPortSharing - ok 20:03:55.0685 4108 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 20:03:55.0700 4108 nfrd960 - ok 20:03:55.0747 4108 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 20:03:55.0747 4108 NisDrv - ok 20:03:55.0763 4108 NisSrv - ok 20:03:55.0825 4108 [ 0734398D3D99986BB8006E9BB5EAB1E5 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe 20:03:55.0841 4108 NitroReaderDriverReadSpool2 - ok 20:03:55.0903 4108 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 20:03:55.0981 4108 NlaSvc - ok 20:03:56.0043 4108 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 20:03:56.0324 4108 Npfs - ok 20:03:56.0371 4108 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 20:03:56.0636 4108 nsi - ok 20:03:56.0652 4108 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 20:03:56.0699 4108 nsiproxy - ok 20:03:56.0823 4108 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 20:03:56.0886 4108 Ntfs - ok 20:03:56.0948 4108 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 20:03:56.0995 4108 Null - ok 20:03:57.0276 4108 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 20:03:57.0416 4108 nvlddmkm - ok 20:03:57.0479 4108 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 20:03:57.0494 4108 nvraid - ok 20:03:57.0557 4108 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 20:03:57.0572 4108 nvstor - ok 20:03:57.0697 4108 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe 20:03:57.0728 4108 nvsvc - ok 20:03:58.0040 4108 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 20:03:58.0103 4108 nvUpdatusService - ok 20:03:58.0165 4108 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 20:03:58.0181 4108 nv_agp - ok 20:03:58.0399 4108 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 20:03:58.0430 4108 odserv - ok 20:03:58.0493 4108 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 20:03:58.0649 4108 ohci1394 - ok 20:03:58.0695 4108 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 20:03:58.0711 4108 ose - ok 20:03:58.0898 4108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 20:03:58.0976 4108 p2pimsvc - ok 20:03:59.0007 4108 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 20:03:59.0148 4108 p2psvc - ok 20:03:59.0179 4108 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 20:03:59.0319 4108 Parport - ok 20:03:59.0444 4108 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 20:03:59.0460 4108 partmgr - ok 20:03:59.0553 4108 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 20:03:59.0647 4108 PcaSvc - ok 20:03:59.0663 4108 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 20:03:59.0663 4108 pci - ok 20:03:59.0803 4108 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 20:03:59.0819 4108 pciide - ok 20:03:59.0850 4108 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 20:03:59.0865 4108 pcmcia - ok 20:03:59.0881 4108 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 20:03:59.0897 4108 pcw - ok 20:03:59.0943 4108 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 20:04:00.0006 4108 PEAUTH - ok 20:04:00.0068 4108 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 20:04:00.0162 4108 PeerDistSvc - ok 20:04:00.0318 4108 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 20:04:00.0474 4108 PerfHost - ok 20:04:00.0521 4108 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 20:04:00.0630 4108 pla - ok 20:04:00.0661 4108 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 20:04:00.0755 4108 PlugPlay - ok 20:04:00.0817 4108 [ 35CCB20B0D730B7764D049463E4B2AC5 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 20:04:00.0833 4108 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 20:04:00.0833 4108 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 20:04:00.0895 4108 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 20:04:01.0020 4108 PNRPAutoReg - ok 20:04:01.0035 4108 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 20:04:01.0051 4108 PNRPsvc - ok 20:04:01.0160 4108 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 20:04:01.0254 4108 PolicyAgent - ok 20:04:01.0285 4108 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 20:04:01.0379 4108 Power - ok 20:04:01.0441 4108 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 20:04:01.0550 4108 PptpMiniport - ok 20:04:01.0566 4108 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 20:04:01.0691 4108 Processor - ok 20:04:01.0753 4108 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 20:04:01.0815 4108 ProfSvc - ok 20:04:01.0862 4108 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 20:04:01.0878 4108 ProtectedStorage - ok 20:04:01.0925 4108 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 20:04:02.0003 4108 Psched - ok 20:04:02.0143 4108 [ FB46E9A827A8799EBD7BFA9128C91F37 ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys 20:04:02.0159 4108 PSI - ok 20:04:02.0190 4108 [ 838E03C9DA764467EDD9B99D1EFB809C ] PSMounter C:\Windows\system32\drivers\psmounter.sys 20:04:02.0205 4108 PSMounter - ok 20:04:02.0299 4108 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 20:04:02.0361 4108 ql2300 - ok 20:04:02.0377 4108 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 20:04:02.0393 4108 ql40xx - ok 20:04:02.0439 4108 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 20:04:02.0455 4108 QWAVE - ok 20:04:02.0502 4108 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 20:04:02.0658 4108 QWAVEdrv - ok 20:04:02.0673 4108 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 20:04:02.0720 4108 RasAcd - ok 20:04:02.0751 4108 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 20:04:02.0876 4108 RasAgileVpn - ok 20:04:02.0923 4108 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 20:04:03.0001 4108 RasAuto - ok 20:04:03.0063 4108 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 20:04:03.0188 4108 Rasl2tp - ok 20:04:03.0219 4108 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 20:04:03.0313 4108 RasMan - ok 20:04:03.0407 4108 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 20:04:03.0578 4108 RasPppoe - ok 20:04:03.0609 4108 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 20:04:03.0656 4108 RasSstp - ok 20:04:03.0750 4108 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 20:04:03.0812 4108 rdbss - ok 20:04:03.0843 4108 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 20:04:03.0875 4108 rdpbus - ok 20:04:03.0875 4108 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 20:04:03.0921 4108 RDPCDD - ok 20:04:03.0999 4108 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 20:04:04.0046 4108 RDPDR - ok 20:04:04.0093 4108 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 20:04:04.0187 4108 RDPENCDD - ok 20:04:04.0233 4108 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 20:04:04.0374 4108 RDPREFMP - ok 20:04:04.0467 4108 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 20:04:04.0530 4108 RdpVideoMiniport - ok 20:04:04.0577 4108 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 20:04:04.0608 4108 RDPWD - ok 20:04:04.0670 4108 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 20:04:04.0686 4108 rdyboost - ok 20:04:04.0826 4108 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 20:04:04.0842 4108 RealNetworks Downloader Resolver Service - ok 20:04:05.0029 4108 [ BE9861E1A18E01C38338FEACD75C5EAD ] ReflectService C:\Program Files\Macrium\Reflect\ReflectService.exe 20:04:05.0045 4108 ReflectService - ok 20:04:05.0107 4108 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 20:04:05.0185 4108 RemoteAccess - ok 20:04:05.0232 4108 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 20:04:05.0372 4108 RemoteRegistry - ok 20:04:05.0403 4108 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 20:04:05.0497 4108 RpcEptMapper - ok 20:04:05.0544 4108 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 20:04:05.0591 4108 RpcLocator - ok 20:04:05.0653 4108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 20:04:05.0700 4108 RpcSs - ok 20:04:05.0825 4108 [ C9FE05A63C500ABE3AFA5786504C4D36 ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys 20:04:05.0840 4108 RsFx0105 - ok 20:04:05.0903 4108 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 20:04:05.0965 4108 rspndr - ok 20:04:05.0981 4108 rt61x64 - ok 20:04:06.0043 4108 [ 2FF8305CDEE3A4B3DAB53CD50BE73F88 ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys 20:04:06.0074 4108 RTL8192cu - ok 20:04:06.0168 4108 [ A332DB1DAC07E95667A57AAEEC236C37 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys 20:04:06.0215 4108 RTL8192su - ok 20:04:06.0246 4108 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 20:04:06.0293 4108 s3cap - ok 20:04:06.0308 4108 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 20:04:06.0324 4108 SamSs - ok 20:04:06.0371 4108 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 20:04:06.0386 4108 sbp2port - ok 20:04:06.0433 4108 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 20:04:06.0542 4108 SCardSvr - ok 20:04:06.0573 4108 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 20:04:06.0729 4108 scfilter - ok 20:04:06.0792 4108 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 20:04:06.0854 4108 Schedule - ok 20:04:06.0885 4108 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 20:04:06.0917 4108 SCPolicySvc - ok 20:04:06.0963 4108 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 20:04:07.0041 4108 SDRSVC - ok 20:04:07.0182 4108 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 20:04:07.0197 4108 SeaPort - ok 20:04:07.0260 4108 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 20:04:07.0447 4108 secdrv - ok 20:04:07.0478 4108 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 20:04:07.0556 4108 seclogon - ok 20:04:07.0697 4108 [ 9044795E9D1A912D5F1B8DF6211850FD ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe 20:04:07.0775 4108 Secunia PSI Agent - ok 20:04:07.0806 4108 [ 8B1A72E4FB63A9C068B08E1F9B70482A ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe 20:04:07.0821 4108 Secunia Update Agent - ok 20:04:07.0884 4108 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 20:04:07.0946 4108 SENS - ok 20:04:07.0962 4108 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 20:04:08.0055 4108 SensrSvc - ok 20:04:08.0071 4108 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 20:04:08.0180 4108 Serenum - ok 20:04:08.0258 4108 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 20:04:08.0305 4108 Serial - ok 20:04:08.0352 4108 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 20:04:08.0430 4108 sermouse - ok 20:04:08.0461 4108 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 20:04:08.0539 4108 SessionEnv - ok 20:04:08.0633 4108 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 20:04:08.0757 4108 sffdisk - ok 20:04:08.0773 4108 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 20:04:08.0835 4108 sffp_mmc - ok 20:04:08.0898 4108 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 20:04:08.0945 4108 sffp_sd - ok 20:04:08.0976 4108 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 20:04:09.0038 4108 sfloppy - ok 20:04:09.0101 4108 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 20:04:09.0179 4108 SharedAccess - ok 20:04:09.0257 4108 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 20:04:09.0350 4108 ShellHWDetection - ok 20:04:09.0381 4108 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 20:04:09.0397 4108 SiSRaid2 - ok 20:04:09.0397 4108 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 20:04:09.0413 4108 SiSRaid4 - ok 20:04:09.0506 4108 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 20:04:09.0522 4108 SkypeUpdate - ok 20:04:09.0553 4108 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 20:04:09.0600 4108 Smb - ok 20:04:09.0678 4108 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 20:04:09.0740 4108 SNMPTRAP - ok 20:04:09.0771 4108 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 20:04:09.0771 4108 spldr - ok 20:04:09.0959 4108 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 20:04:09.0990 4108 Spooler - ok 20:04:10.0083 4108 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 20:04:10.0193 4108 sppsvc - ok 20:04:10.0239 4108 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 20:04:10.0349 4108 sppuinotify - ok 20:04:10.0770 4108 [ 45E65FB17A4CD5FACBD3CA16C8334C82 ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE 20:04:10.0785 4108 SQLAgent$SQLEXPRESS - ok 20:04:11.0019 4108 [ B54B48F6D92423440C264E91225C5FF1 ] SQLBrowser C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe 20:04:11.0035 4108 SQLBrowser - ok 20:04:11.0238 4108 [ F92E5F93BE572B512DA3C016B675EDE0 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 20:04:11.0253 4108 SQLWriter - ok 20:04:11.0300 4108 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 20:04:11.0503 4108 srv - ok 20:04:11.0534 4108 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 20:04:11.0628 4108 srv2 - ok 20:04:11.0659 4108 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 20:04:11.0721 4108 srvnet - ok 20:04:11.0784 4108 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 20:04:11.0924 4108 SSDPSRV - ok 20:04:11.0971 4108 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 20:04:12.0143 4108 SstpSvc - ok 20:04:12.0533 4108 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 20:04:12.0548 4108 Stereo Service - ok 20:04:12.0642 4108 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 20:04:12.0657 4108 stexstor - ok 20:04:12.0813 4108 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 20:04:12.0876 4108 stisvc - ok 20:04:12.0923 4108 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 20:04:12.0938 4108 storflt - ok 20:04:13.0016 4108 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll 20:04:13.0157 4108 StorSvc - ok 20:04:13.0172 4108 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 20:04:13.0203 4108 storvsc - ok 20:04:13.0344 4108 [ 1C377DCD8EFBBCD8EC5CDAF2C3E9DF86 ] supersafer64 C:\Windows\SysWOW64\drivers\supersafer64.sys 20:04:13.0359 4108 supersafer64 - ok 20:04:13.0422 4108 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 20:04:13.0437 4108 swenum - ok 20:04:13.0515 4108 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 20:04:13.0703 4108 swprv - ok 20:04:13.0781 4108 Synth3dVsc - ok 20:04:13.0843 4108 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 20:04:13.0937 4108 SysMain - ok 20:04:13.0983 4108 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 20:04:14.0046 4108 TabletInputService - ok 20:04:14.0077 4108 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 20:04:14.0311 4108 TapiSrv - ok 20:04:14.0342 4108 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 20:04:14.0467 4108 TBS - ok 20:04:14.0529 4108 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 20:04:14.0607 4108 Tcpip - ok 20:04:14.0763 4108 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 20:04:14.0795 4108 TCPIP6 - ok 20:04:14.0919 4108 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 20:04:14.0951 4108 tcpipreg - ok 20:04:14.0982 4108 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 20:04:14.0997 4108 TDPIPE - ok 20:04:15.0091 4108 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 20:04:15.0153 4108 TDTCP - ok 20:04:15.0185 4108 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 20:04:15.0263 4108 tdx - ok 20:04:15.0325 4108 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 20:04:15.0341 4108 TermDD - ok 20:04:15.0403 4108 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 20:04:15.0497 4108 TermService - ok 20:04:15.0528 4108 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 20:04:15.0590 4108 Themes - ok 20:04:15.0621 4108 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 20:04:15.0653 4108 THREADORDER - ok 20:04:15.0668 4108 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 20:04:15.0715 4108 TrkWks - ok 20:04:15.0824 4108 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 20:04:15.0933 4108 TrustedInstaller - ok 20:04:15.0965 4108 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 20:04:16.0074 4108 tssecsrv - ok 20:04:16.0308 4108 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 20:04:16.0417 4108 TsUsbFlt - ok 20:04:16.0448 4108 tsusbhub - ok 20:04:16.0495 4108 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 20:04:16.0557 4108 tunnel - ok 20:04:16.0604 4108 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 20:04:16.0620 4108 uagp35 - ok 20:04:16.0635 4108 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 20:04:16.0682 4108 udfs - ok 20:04:16.0776 4108 [ 215462AE7E6A897D675E84DD1E3B3B56 ] ufad-ws60 D:\VMWare Workstation\vmware-ufad.exe 20:04:16.0791 4108 ufad-ws60 - ok 20:04:16.0838 4108 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 20:04:16.0885 4108 UI0Detect - ok 20:04:16.0947 4108 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 20:04:16.0963 4108 uliagpkx - ok 20:04:17.0088 4108 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 20:04:17.0166 4108 umbus - ok 20:04:17.0213 4108 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 20:04:17.0275 4108 UmPass - ok 20:04:17.0291 4108 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 20:04:17.0322 4108 UmRdpService - ok 20:04:17.0384 4108 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 20:04:17.0525 4108 upnphost - ok 20:04:17.0603 4108 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 20:04:17.0634 4108 USBAAPL64 - ok 20:04:17.0727 4108 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 20:04:17.0774 4108 usbccgp - ok 20:04:17.0883 4108 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 20:04:18.0008 4108 usbcir - ok 20:04:18.0024 4108 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 20:04:18.0055 4108 usbehci - ok 20:04:18.0117 4108 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 20:04:18.0164 4108 usbhub - ok 20:04:18.0195 4108 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 20:04:18.0242 4108 usbohci - ok 20:04:18.0273 4108 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 20:04:18.0351 4108 usbprint - ok 20:04:18.0429 4108 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 20:04:18.0617 4108 usbscan - ok 20:04:18.0679 4108 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:04:18.0726 4108 USBSTOR - ok 20:04:18.0866 4108 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 20:04:19.0022 4108 usbuhci - ok 20:04:19.0085 4108 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 20:04:19.0178 4108 UxSms - ok 20:04:19.0209 4108 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 20:04:19.0209 4108 VaultSvc - ok 20:04:19.0256 4108 [ D119C47F337B5B5A80E259563703A922 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys 20:04:19.0272 4108 VBoxNetAdp - ok 20:04:19.0319 4108 VBoxNetFlt - ok 20:04:19.0381 4108 [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone C:\Windows\system32\DRIVERS\VClone.sys 20:04:19.0459 4108 VClone - ok 20:04:19.0506 4108 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 20:04:19.0521 4108 vdrvroot - ok 20:04:19.0584 4108 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 20:04:19.0662 4108 vds - ok 20:04:19.0662 4108 vfzafaaw - ok 20:04:19.0677 4108 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 20:04:19.0740 4108 vga - ok 20:04:19.0802 4108 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 20:04:20.0005 4108 VgaSave - ok 20:04:20.0021 4108 VGPU - ok 20:04:20.0067 4108 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 20:04:20.0083 4108 vhdmp - ok 20:04:20.0114 4108 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 20:04:20.0114 4108 viaide - ok 20:04:20.0270 4108 [ 6FC9B272B838EE8F5FA0E4A7E971154A ] VMAuthdService D:\VMWare Workstation\vmware-authd.exe 20:04:20.0286 4108 VMAuthdService - ok 20:04:20.0333 4108 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 20:04:20.0348 4108 vmbus - ok 20:04:20.0395 4108 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 20:04:20.0426 4108 VMBusHID - ok 20:04:20.0457 4108 [ B49CB94DB99519F9DC7F77D2D1F215B5 ] vmci C:\Windows\system32\drivers\vmci.sys 20:04:20.0473 4108 vmci - ok 20:04:20.0567 4108 [ 1AF6462718E5AB0ED55014A6EF3790EF ] vmkbd C:\Windows\system32\drivers\VMkbd.sys 20:04:20.0567 4108 vmkbd - ok 20:04:20.0598 4108 [ 9D54F1339E78C95BF3D9939EBCB66378 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys 20:04:20.0598 4108 VMnetAdapter - ok 20:04:20.0754 4108 [ FB54EF3AA613D2832FD3812E7CB2FC75 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys 20:04:20.0754 4108 VMnetBridge - ok 20:04:20.0769 4108 VMnetDHCP - ok 20:04:20.0801 4108 [ 163B05050FCD9635242EC5206C19A182 ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys 20:04:20.0801 4108 VMnetuserif - ok 20:04:20.0925 4108 [ 415B167695C4B5960A13098622EF3D80 ] vmusb C:\Windows\system32\Drivers\vmusb.sys 20:04:20.0925 4108 vmusb - ok 20:04:21.0191 4108 [ F22098DBDD13C1221C274496B3E18DA7 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe 20:04:21.0206 4108 VMUSBArbService - ok 20:04:21.0331 4108 VMware NAT Service - ok 20:04:21.0393 4108 [ F2A8EE62D7161E1598CDD269BF22A03D ] vmx86 C:\Windows\system32\drivers\vmx86.sys 20:04:21.0409 4108 vmx86 - ok 20:04:21.0659 4108 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 20:04:21.0674 4108 volmgr - ok 20:04:21.0705 4108 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 20:04:21.0721 4108 volmgrx - ok 20:04:21.0846 4108 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 20:04:21.0877 4108 volsnap - ok 20:04:21.0971 4108 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 20:04:22.0002 4108 vsmraid - ok 20:04:22.0064 4108 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 20:04:22.0158 4108 VSS - ok 20:04:22.0376 4108 [ E61C910E2DDF4797C1B1F9239636E894 ] vstor2-ws60 D:\VMWare Workstation\vstor2-ws60.sys 20:04:22.0392 4108 vstor2-ws60 - ok 20:04:22.0532 4108 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 20:04:22.0688 4108 vwifibus - ok 20:04:22.0751 4108 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys 20:04:22.0782 4108 VWiFiFlt - ok 20:04:22.0844 4108 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 20:04:22.0844 4108 vwifimp - ok 20:04:22.0938 4108 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 20:04:23.0063 4108 W32Time - ok 20:04:23.0078 4108 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 20:04:23.0094 4108 WacomPen - ok 20:04:23.0203 4108 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 20:04:23.0281 4108 WANARP - ok 20:04:23.0281 4108 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 20:04:23.0312 4108 Wanarpv6 - ok 20:04:23.0421 4108 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 20:04:23.0577 4108 wbengine - ok 20:04:23.0702 4108 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 20:04:23.0780 4108 WbioSrvc - ok 20:04:23.0811 4108 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 20:04:24.0186 4108 wcncsvc - ok 20:04:24.0248 4108 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 20:04:24.0295 4108 WcsPlugInService - ok 20:04:24.0342 4108 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 20:04:24.0342 4108 Wd - ok 20:04:24.0404 4108 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 20:04:24.0435 4108 Wdf01000 - ok 20:04:24.0498 4108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 20:04:24.0638 4108 WdiServiceHost - ok 20:04:24.0638 4108 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 20:04:24.0654 4108 WdiSystemHost - ok 20:04:24.0701 4108 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 20:04:24.0732 4108 WebClient - ok 20:04:24.0747 4108 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 20:04:24.0825 4108 Wecsvc - ok 20:04:24.0872 4108 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 20:04:24.0966 4108 wercplsupport - ok 20:04:25.0013 4108 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 20:04:25.0106 4108 WerSvc - ok 20:04:25.0169 4108 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 20:04:25.0231 4108 WfpLwf - ok 20:04:25.0247 4108 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 20:04:25.0262 4108 WIMMount - ok 20:04:25.0309 4108 WinDefend - ok 20:04:25.0325 4108 WinHttpAutoProxySvc - ok 20:04:25.0434 4108 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 20:04:25.0527 4108 Winmgmt - ok 20:04:25.0886 4108 WinRing0_1_2_0 - ok 20:04:25.0949 4108 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 20:04:26.0011 4108 WinRM - ok 20:04:26.0073 4108 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 20:04:26.0105 4108 Wlansvc - ok 20:04:26.0261 4108 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 20:04:26.0276 4108 wlcrasvc - ok 20:04:26.0448 4108 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 20:04:26.0479 4108 wlidsvc - ok 20:04:26.0541 4108 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 20:04:26.0635 4108 WmiAcpi - ok 20:04:26.0666 4108 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 20:04:26.0744 4108 wmiApSrv - ok 20:04:26.0760 4108 WMPNetworkSvc - ok 20:04:26.0822 4108 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 20:04:27.0103 4108 WPCSvc - ok 20:04:27.0181 4108 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 20:04:27.0197 4108 WPDBusEnum - ok 20:04:27.0321 4108 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 20:04:27.0509 4108 ws2ifsl - ok 20:04:27.0540 4108 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 20:04:27.0587 4108 wscsvc - ok 20:04:27.0587 4108 WSearch - ok 20:04:27.0711 4108 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 20:04:27.0758 4108 wuauserv - ok 20:04:27.0852 4108 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 20:04:27.0899 4108 WudfPf - ok 20:04:27.0945 4108 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 20:04:28.0023 4108 WUDFRd - ok 20:04:28.0055 4108 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 20:04:28.0117 4108 wudfsvc - ok 20:04:28.0320 4108 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll 20:04:28.0398 4108 WwanSvc - ok 20:04:28.0491 4108 ================ Scan global =============================== 20:04:28.0507 4108 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 20:04:28.0554 4108 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:04:28.0601 4108 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll 20:04:28.0741 4108 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 20:04:28.0788 4108 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 20:04:28.0788 4108 [Global] - ok 20:04:28.0788 4108 ================ Scan MBR ================================== 20:04:28.0881 4108 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 20:04:30.0036 4108 \Device\Harddisk0\DR0 - ok 20:04:30.0036 4108 [ 180DBDE3AF7EA48B3DB3AC27B1DDF401 ] \Device\Harddisk1\DR1 20:04:30.0239 4108 \Device\Harddisk1\DR1 - ok 20:04:30.0254 4108 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4 20:04:30.0889 4108 \Device\Harddisk4\DR4 - ok 20:04:30.0889 4108 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR5 20:04:31.0009 4108 \Device\Harddisk5\DR5 - ok 20:04:31.0029 4108 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk6\DR6 20:04:31.0589 4108 \Device\Harddisk6\DR6 - ok 20:04:31.0589 4108 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk7\DR7 20:04:31.0729 4108 \Device\Harddisk7\DR7 - ok 20:04:31.0729 4108 ================ Scan VBR ================================== 20:04:31.0760 4108 [ 0B8D39F4568B2EA71ACCAF392E173D4F ] \Device\Harddisk0\DR0\Partition1 20:04:31.0760 4108 \Device\Harddisk0\DR0\Partition1 - ok 20:04:31.0776 4108 [ 0B0987402C3B44004204DAAD998FA73D ] \Device\Harddisk0\DR0\Partition2 20:04:31.0776 4108 \Device\Harddisk0\DR0\Partition2 - ok 20:04:31.0791 4108 [ B91761B93EA1EBC52ABD870111EEA952 ] \Device\Harddisk0\DR0\Partition3 20:04:31.0791 4108 \Device\Harddisk0\DR0\Partition3 - ok 20:04:31.0807 4108 [ 677C5344816A67907DFE1FE5BA505CD7 ] \Device\Harddisk0\DR0\Partition4 20:04:31.0807 4108 \Device\Harddisk0\DR0\Partition4 - ok 20:04:31.0823 4108 [ C011B465FFEB6613C0C73DA055C7FCFC ] \Device\Harddisk1\DR1\Partition1 20:04:31.0823 4108 \Device\Harddisk1\DR1\Partition1 - ok 20:04:31.0823 4108 [ A9C320CDA51E245E95D79B2D9CD5B025 ] \Device\Harddisk4\DR4\Partition1 20:04:31.0823 4108 \Device\Harddisk4\DR4\Partition1 - ok 20:04:31.0823 4108 [ AD753F66D7124B0C228AC5B9AD03ACD4 ] \Device\Harddisk5\DR5\Partition1 20:04:31.0838 4108 \Device\Harddisk5\DR5\Partition1 - ok 20:04:31.0838 4108 [ 6466998B754071A59125F12143C9B511 ] \Device\Harddisk6\DR6\Partition1 20:04:31.0838 4108 \Device\Harddisk6\DR6\Partition1 - ok 20:04:31.0838 4108 [ C17B078931AA91F198DB71548A363FF3 ] \Device\Harddisk7\DR7\Partition1 20:04:31.0838 4108 \Device\Harddisk7\DR7\Partition1 - ok 20:04:31.0838 4108 ================ Scan active images ======================== 20:04:31.0854 4108 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\crashdmp.sys - ok 20:04:31.0854 4108 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\Dumpata.sys - ok 20:04:31.0854 4108 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\dumpfve.sys - ok 20:04:31.0854 4108 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] C:\Windows\System32\drivers\msahci.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\msahci.sys - ok 20:04:31.0854 4108 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\cdrom.sys - ok 20:04:31.0854 4108 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\null.sys - ok 20:04:31.0854 4108 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys 20:04:31.0854 4108 C:\Windows\System32\drivers\beep.sys - ok 20:04:31.0869 4108 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\vga.sys - ok 20:04:31.0869 4108 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\videoprt.sys - ok 20:04:31.0869 4108 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\watchdog.sys - ok 20:04:31.0869 4108 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\msfs.sys - ok 20:04:31.0869 4108 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\npfs.sys - ok 20:04:31.0869 4108 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys 20:04:31.0869 4108 C:\Windows\System32\drivers\RDPCDD.sys - ok 20:04:31.0885 4108 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\RDPENCDD.sys - ok 20:04:31.0885 4108 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\RDPREFMP.sys - ok 20:04:31.0885 4108 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\tdi.sys - ok 20:04:31.0885 4108 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\tdx.sys - ok 20:04:31.0885 4108 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\afd.sys - ok 20:04:31.0885 4108 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\netbt.sys - ok 20:04:31.0885 4108 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys 20:04:31.0885 4108 C:\Windows\System32\drivers\pacer.sys - ok 20:04:31.0901 4108 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\vwififlt.sys - ok 20:04:31.0901 4108 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\wfplwf.sys - ok 20:04:31.0901 4108 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\ws2ifsl.sys - ok 20:04:31.0901 4108 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\netbios.sys - ok 20:04:31.0901 4108 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\serial.sys - ok 20:04:31.0901 4108 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys 20:04:31.0901 4108 C:\Windows\System32\drivers\termdd.sys - ok 20:04:31.0916 4108 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\wanarp.sys - ok 20:04:31.0916 4108 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\mssmbios.sys - ok 20:04:31.0916 4108 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\nsiproxy.sys - ok 20:04:31.0916 4108 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\rdbss.sys - ok 20:04:31.0916 4108 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\csc.sys - ok 20:04:31.0916 4108 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\discache.sys - ok 20:04:31.0916 4108 [ A05FC7ECA0966EBB70E4D17B855A853B ] C:\Windows\System32\drivers\ElbyCDIO.sys 20:04:31.0916 4108 C:\Windows\System32\drivers\ElbyCDIO.sys - ok 20:04:31.0932 4108 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys 20:04:31.0932 4108 C:\Windows\System32\drivers\blbdrive.sys - ok 20:04:31.0932 4108 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys 20:04:31.0932 4108 C:\Windows\System32\drivers\dfsc.sys - ok 20:04:31.0932 4108 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys 20:04:31.0932 4108 C:\Windows\System32\drivers\intelppm.sys - ok 20:04:31.0932 4108 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys 20:04:31.0932 4108 C:\Windows\System32\drivers\tunnel.sys - ok 20:04:31.0932 4108 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll 20:04:31.0932 4108 C:\Windows\System32\ntdll.dll - ok 20:04:31.0932 4108 [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe 20:04:31.0932 4108 C:\Windows\System32\smss.exe - ok 20:04:31.0947 4108 [ FCBA1C22727939E7CFF9EB08FE9692AB ] C:\Windows\System32\drivers\nvlddmkm.sys 20:04:31.0947 4108 C:\Windows\System32\drivers\nvlddmkm.sys - ok 20:04:31.0947 4108 [ 115BE147638F62321DFE754D3193099C ] C:\Windows\System32\drivers\nvBridge.kmd 20:04:31.0947 4108 C:\Windows\System32\drivers\nvBridge.kmd - ok 20:04:31.0947 4108 [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys 20:04:31.0947 4108 C:\Windows\System32\drivers\dxgkrnl.sys - ok 20:04:31.0947 4108 [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys 20:04:31.0947 4108 C:\Windows\System32\drivers\dxgmms1.sys - ok 20:04:31.0947 4108 [ 416A2007878ED1D6FC5DDDB9E1F6DB3E ] C:\Windows\System32\drivers\e1e6032e.sys 20:04:31.0947 4108 C:\Windows\System32\drivers\e1e6032e.sys - ok 20:04:31.0947 4108 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys 20:04:31.0947 4108 C:\Windows\System32\drivers\usbport.sys - ok 20:04:31.0963 4108 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\usbuhci.sys - ok 20:04:31.0963 4108 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\usbehci.sys - ok 20:04:31.0963 4108 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\hdaudbus.sys - ok 20:04:31.0963 4108 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\1394ohci.sys - ok 20:04:31.0963 4108 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\i8042prt.sys - ok 20:04:31.0963 4108 [ CED526C739D4091F77DDE6C339AB49BE ] C:\Windows\System32\drivers\L8042Kbd.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\L8042Kbd.sys - ok 20:04:31.0963 4108 [ CB624C0035412AF0DEBEC78C41F5CA1B ] C:\Windows\System32\drivers\serenum.sys 20:04:31.0963 4108 C:\Windows\System32\drivers\serenum.sys - ok 20:04:31.0979 4108 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\agilevpn.sys - ok 20:04:31.0979 4108 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\CompositeBus.sys - ok 20:04:31.0979 4108 [ E403AACF8C7BB11375122D2464560311 ] C:\Windows\System32\drivers\GEARAspiWDM.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok 20:04:31.0979 4108 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\kbdclass.sys - ok 20:04:31.0979 4108 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\ndistapi.sys - ok 20:04:31.0979 4108 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys 20:04:31.0979 4108 C:\Windows\System32\drivers\rasl2tp.sys - ok 20:04:31.0994 4108 [ 1AF6462718E5AB0ED55014A6EF3790EF ] C:\Windows\System32\drivers\VMkbd.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\VMkbd.sys - ok 20:04:31.0994 4108 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\ndiswan.sys - ok 20:04:31.0994 4108 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\raspppoe.sys - ok 20:04:31.0994 4108 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\raspptp.sys - ok 20:04:31.0994 4108 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\rassstp.sys - ok 20:04:31.0994 4108 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys 20:04:31.0994 4108 C:\Windows\System32\drivers\rdpbus.sys - ok 20:04:32.0010 4108 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys 20:04:32.0010 4108 C:\Windows\System32\drivers\mouclass.sys - ok 20:04:32.0010 4108 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe 20:04:32.0010 4108 C:\Windows\System32\autochk.exe - ok 20:04:32.0010 4108 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys 20:04:32.0010 4108 C:\Windows\System32\drivers\fastfat.sys - ok 20:04:32.0010 4108 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys 20:04:32.0010 4108 C:\Windows\System32\drivers\ks.sys - ok 20:04:32.0010 4108 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys 20:04:32.0010 4108 C:\Windows\System32\drivers\swenum.sys - ok 20:04:32.0010 4108 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys 20:04:32.0010 4108 C:\Windows\System32\drivers\umbus.sys - ok 20:04:32.0025 4108 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll 20:04:32.0025 4108 C:\Windows\System32\Wldap32.dll - ok 20:04:32.0025 4108 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll 20:04:32.0025 4108 C:\Windows\System32\clbcatq.dll - ok 20:04:32.0025 4108 [ 27A9000C534AA9BADC9EE74940F50C6D ] C:\Windows\System32\wininet.dll 20:04:32.0025 4108 C:\Windows\System32\wininet.dll - ok 20:04:32.0025 4108 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys 20:04:32.0025 4108 C:\Windows\System32\drivers\usbhub.sys - ok 20:04:32.0025 4108 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll 20:04:32.0025 4108 C:\Windows\System32\usp10.dll - ok 20:04:32.0025 4108 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll 20:04:32.0025 4108 C:\Windows\System32\msvcrt.dll - ok 20:04:32.0041 4108 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll 20:04:32.0041 4108 C:\Windows\System32\msctf.dll - ok 20:04:32.0041 4108 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll 20:04:32.0041 4108 C:\Windows\System32\setupapi.dll - ok 20:04:32.0041 4108 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll 20:04:32.0041 4108 C:\Windows\System32\difxapi.dll - ok 20:04:32.0041 4108 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll 20:04:32.0041 4108 C:\Windows\System32\advapi32.dll - ok 20:04:32.0041 4108 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll 20:04:32.0041 4108 C:\Windows\System32\ole32.dll - ok 20:04:32.0041 4108 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll 20:04:32.0041 4108 C:\Windows\System32\oleaut32.dll - ok 20:04:32.0057 4108 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll 20:04:32.0057 4108 C:\Windows\System32\psapi.dll - ok 20:04:32.0057 4108 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll 20:04:32.0057 4108 C:\Windows\System32\imm32.dll - ok 20:04:32.0057 4108 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll 20:04:32.0057 4108 C:\Windows\System32\comdlg32.dll - ok 20:04:32.0057 4108 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll 20:04:32.0057 4108 C:\Windows\System32\nsi.dll - ok 20:04:32.0057 4108 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll 20:04:32.0057 4108 C:\Windows\System32\rpcrt4.dll - ok 20:04:32.0057 4108 [ E34F0440799F9A0F9DC4265F4ADA75C1 ] C:\Windows\System32\urlmon.dll 20:04:32.0057 4108 C:\Windows\System32\urlmon.dll - ok 20:04:32.0072 4108 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll 20:04:32.0072 4108 C:\Windows\System32\imagehlp.dll - ok 20:04:32.0072 4108 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll 20:04:32.0072 4108 C:\Windows\System32\normaliz.dll - ok 20:04:32.0072 4108 [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll 20:04:32.0072 4108 C:\Windows\System32\shell32.dll - ok 20:04:32.0072 4108 [ 9D6B9124B582F0FBF275B434CE5A672C ] C:\Windows\System32\iertutil.dll 20:04:32.0072 4108 C:\Windows\System32\iertutil.dll - ok 20:04:32.0072 4108 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll 20:04:32.0072 4108 C:\Windows\System32\sechost.dll - ok 20:04:32.0072 4108 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll 20:04:32.0072 4108 C:\Windows\System32\ws2_32.dll - ok 20:04:32.0088 4108 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll 20:04:32.0088 4108 C:\Windows\System32\user32.dll - ok 20:04:32.0088 4108 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll 20:04:32.0088 4108 C:\Windows\System32\shlwapi.dll - ok 20:04:32.0088 4108 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll 20:04:32.0088 4108 C:\Windows\System32\gdi32.dll - ok 20:04:32.0088 4108 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll 20:04:32.0088 4108 C:\Windows\System32\kernel32.dll - ok 20:04:32.0088 4108 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll 20:04:32.0088 4108 C:\Windows\System32\lpk.dll - ok 20:04:32.0103 4108 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll 20:04:32.0103 4108 C:\Windows\System32\crypt32.dll - ok 20:04:32.0103 4108 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys 20:04:32.0103 4108 C:\Windows\System32\drivers\ndproxy.sys - ok 20:04:32.0103 4108 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys 20:04:32.0103 4108 C:\Windows\System32\drivers\drmk.sys - ok 20:04:32.0103 4108 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll 20:04:32.0103 4108 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok 20:04:32.0103 4108 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll 20:04:32.0103 4108 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok 20:04:32.0103 4108 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll 20:04:32.0103 4108 C:\Windows\System32\cfgmgr32.dll - ok 20:04:32.0119 4108 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys 20:04:32.0119 4108 C:\Windows\System32\drivers\ksthunk.sys - ok 20:04:32.0119 4108 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys 20:04:32.0119 4108 C:\Windows\System32\drivers\portcls.sys - ok 20:04:32.0119 4108 [ 718A4008EE5DA174400396B27509EF82 ] C:\Windows\System32\drivers\RTKVHD64.sys 20:04:32.0119 4108 C:\Windows\System32\drivers\RTKVHD64.sys - ok 20:04:32.0119 4108 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll 20:04:32.0119 4108 C:\Windows\System32\devobj.dll - ok 20:04:32.0119 4108 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll 20:04:32.0119 4108 C:\Windows\System32\wintrust.dll - ok 20:04:32.0135 4108 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll 20:04:32.0135 4108 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok 20:04:32.0135 4108 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll 20:04:32.0135 4108 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok 20:04:32.0135 4108 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll 20:04:32.0135 4108 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok 20:04:32.0135 4108 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll 20:04:32.0135 4108 C:\Windows\System32\comctl32.dll - ok 20:04:32.0135 4108 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll 20:04:32.0135 4108 C:\Windows\System32\KernelBase.dll - ok 20:04:32.0135 4108 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 20:04:32.0135 4108 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok 20:04:32.0150 4108 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll 20:04:32.0150 4108 C:\Windows\System32\msasn1.dll - ok 20:04:32.0150 4108 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys 20:04:32.0150 4108 C:\Windows\System32\drivers\usbd.sys - ok 20:04:32.0150 4108 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS 20:04:32.0150 4108 C:\Windows\System32\drivers\USBSTOR.SYS - ok 20:04:32.0150 4108 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll 20:04:32.0150 4108 C:\Windows\SysWOW64\normaliz.dll - ok 20:04:32.0150 4108 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys 20:04:32.0150 4108 C:\Windows\System32\drivers\dxapi.sys - ok 20:04:32.0150 4108 [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys 20:04:32.0150 4108 C:\Windows\System32\win32k.sys - ok 20:04:32.0166 4108 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe 20:04:32.0166 4108 C:\Windows\System32\csrss.exe - ok 20:04:32.0166 4108 [ 2FF8305CDEE3A4B3DAB53CD50BE73F88 ] C:\Windows\System32\drivers\rtwlanu.sys 20:04:32.0166 4108 C:\Windows\System32\drivers\rtwlanu.sys - ok 20:04:32.0166 4108 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys 20:04:32.0166 4108 C:\Windows\System32\drivers\usbccgp.sys - ok 20:04:32.0166 4108 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys 20:04:32.0166 4108 C:\Windows\System32\drivers\vwifibus.sys - ok 20:04:32.0166 4108 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys 20:04:32.0166 4108 C:\Windows\System32\drivers\usbscan.sys - ok 20:04:32.0166 4108 [ B42ED0320C6E41102FDE0005154849BB ] C:\Windows\System32\drivers\Dot4.sys 20:04:32.0166 4108 C:\Windows\System32\drivers\Dot4.sys - ok 20:04:32.0181 4108 [ E9F5969233C5D89F3C35E3A66A52A361 ] C:\Windows\System32\drivers\Dot4Prt.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\Dot4Prt.sys - ok 20:04:32.0181 4108 [ FD05A02B0370BC3000F402E543CA5814 ] C:\Windows\System32\drivers\Dot4usb.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\Dot4usb.sys - ok 20:04:32.0181 4108 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\usbprint.sys - ok 20:04:32.0181 4108 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\hidparse.sys - ok 20:04:32.0181 4108 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\hidclass.sys - ok 20:04:32.0181 4108 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys 20:04:32.0181 4108 C:\Windows\System32\drivers\hidusb.sys - ok 20:04:32.0197 4108 [ 1074C77A47835E03C15BF92452F9A750 ] C:\Windows\System32\drivers\LHidFilt.Sys 20:04:32.0197 4108 C:\Windows\System32\drivers\LHidFilt.Sys - ok 20:04:32.0197 4108 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys 20:04:32.0197 4108 C:\Windows\System32\drivers\mouhid.sys - ok 20:04:32.0197 4108 [ 96999C364C649E2866A268F7420A304A ] C:\Windows\System32\drivers\LMouFilt.Sys 20:04:32.0197 4108 C:\Windows\System32\drivers\LMouFilt.Sys - ok 20:04:32.0197 4108 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll 20:04:32.0197 4108 C:\Windows\System32\basesrv.dll - ok 20:04:32.0197 4108 [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll 20:04:32.0197 4108 C:\Windows\System32\csrsrv.dll - ok 20:04:32.0197 4108 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll 20:04:32.0197 4108 C:\Windows\System32\winsrv.dll - ok 20:04:32.0213 4108 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys 20:04:32.0213 4108 C:\Windows\System32\drivers\monitor.sys - ok 20:04:32.0213 4108 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll 20:04:32.0213 4108 C:\Windows\System32\sxssrv.dll - ok 20:04:32.0213 4108 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll 20:04:32.0213 4108 C:\Windows\System32\tsddd.dll - ok 20:04:32.0213 4108 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe 20:04:32.0213 4108 C:\Windows\System32\wininit.exe - ok 20:04:32.0213 4108 [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll 20:04:32.0213 4108 C:\Windows\System32\cdd.dll - ok 20:04:32.0213 4108 [ 8FFB391FFC48DFFF4BE4C1B2A6AA6F5A ] C:\Windows\System32\KBDBE.DLL 20:04:32.0213 4108 C:\Windows\System32\KBDBE.DLL - ok 20:04:32.0228 4108 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll 20:04:32.0228 4108 C:\Windows\System32\profapi.dll - ok 20:04:32.0228 4108 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll 20:04:32.0228 4108 C:\Windows\System32\RpcRtRemote.dll - ok 20:04:32.0228 4108 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL 20:04:32.0228 4108 C:\Windows\System32\KBDUS.DLL - ok 20:04:32.0228 4108 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll 20:04:32.0228 4108 C:\Windows\System32\WlS0WndH.dll - ok 20:04:32.0228 4108 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll 20:04:32.0228 4108 C:\Windows\System32\sxs.dll - ok 20:04:32.0228 4108 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll 20:04:32.0228 4108 C:\Windows\System32\cryptbase.dll - ok 20:04:32.0228 4108 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll 20:04:32.0228 4108 C:\Windows\System32\apphelp.dll - ok 20:04:32.0244 4108 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe 20:04:32.0244 4108 C:\Windows\System32\lsass.exe - ok 20:04:32.0244 4108 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe 20:04:32.0244 4108 C:\Windows\System32\lsm.exe - ok 20:04:32.0244 4108 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe 20:04:32.0244 4108 C:\Windows\System32\services.exe - ok 20:04:32.0244 4108 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll 20:04:32.0244 4108 C:\Windows\System32\lsasrv.dll - ok 20:04:32.0244 4108 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll 20:04:32.0244 4108 C:\Windows\System32\sspicli.dll - ok 20:04:32.0244 4108 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll 20:04:32.0244 4108 C:\Windows\System32\sspisrv.dll - ok 20:04:32.0259 4108 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll 20:04:32.0259 4108 C:\Windows\System32\samsrv.dll - ok 20:04:32.0259 4108 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll 20:04:32.0259 4108 C:\Windows\System32\scesrv.dll - ok 20:04:32.0259 4108 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll 20:04:32.0259 4108 C:\Windows\System32\scext.dll - ok 20:04:32.0259 4108 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll 20:04:32.0259 4108 C:\Windows\System32\secur32.dll - ok 20:04:32.0275 4108 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll 20:04:32.0275 4108 C:\Windows\System32\sysntfy.dll - ok 20:04:32.0275 4108 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll 20:04:32.0275 4108 C:\Windows\System32\wmsgapi.dll - ok 20:04:32.0275 4108 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll 20:04:32.0275 4108 C:\Windows\System32\cryptdll.dll - ok 20:04:32.0275 4108 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll 20:04:32.0275 4108 C:\Windows\System32\srvcli.dll - ok 20:04:32.0275 4108 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll 20:04:32.0275 4108 C:\Windows\System32\wevtapi.dll - ok 20:04:32.0275 4108 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll 20:04:32.0275 4108 C:\Windows\System32\authz.dll - ok 20:04:32.0291 4108 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll 20:04:32.0291 4108 C:\Windows\System32\cngaudit.dll - ok 20:04:32.0291 4108 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll 20:04:32.0291 4108 C:\Windows\System32\ncrypt.dll - ok 20:04:32.0291 4108 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll 20:04:32.0291 4108 C:\Windows\System32\bcrypt.dll - ok 20:04:32.0291 4108 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll 20:04:32.0291 4108 C:\Windows\System32\msprivs.dll - ok 20:04:32.0291 4108 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll 20:04:32.0291 4108 C:\Windows\System32\netjoin.dll - ok 20:04:32.0291 4108 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe 20:04:32.0291 4108 C:\Windows\System32\winlogon.exe - ok 20:04:32.0306 4108 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll 20:04:32.0306 4108 C:\Windows\System32\negoexts.dll - ok 20:04:32.0306 4108 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll 20:04:32.0306 4108 C:\Windows\System32\winsta.dll - ok 20:04:32.0306 4108 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll 20:04:32.0306 4108 C:\Windows\System32\kerberos.dll - ok 20:04:32.0306 4108 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll 20:04:32.0306 4108 C:\Windows\System32\cryptsp.dll - ok 20:04:32.0306 4108 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll 20:04:32.0306 4108 C:\Windows\System32\mswsock.dll - ok 20:04:32.0306 4108 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll 20:04:32.0306 4108 C:\Windows\System32\atmfd.dll - ok 20:04:32.0322 4108 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll 20:04:32.0322 4108 C:\Windows\System32\msv1_0.dll - ok 20:04:32.0322 4108 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll 20:04:32.0322 4108 C:\Windows\System32\wship6.dll - ok 20:04:32.0322 4108 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll 20:04:32.0322 4108 C:\Windows\System32\netlogon.dll - ok 20:04:32.0322 4108 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll 20:04:32.0322 4108 C:\Windows\System32\dnsapi.dll - ok 20:04:32.0322 4108 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll 20:04:32.0322 4108 C:\Windows\System32\logoncli.dll - ok 20:04:32.0322 4108 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll 20:04:32.0322 4108 C:\Windows\System32\schannel.dll - ok 20:04:32.0322 4108 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll 20:04:32.0322 4108 C:\Windows\System32\wdigest.dll - ok 20:04:32.0337 4108 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll 20:04:32.0337 4108 C:\Windows\System32\pku2u.dll - ok 20:04:32.0337 4108 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll 20:04:32.0337 4108 C:\Windows\System32\rsaenh.dll - ok 20:04:32.0337 4108 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll 20:04:32.0337 4108 C:\Windows\System32\TSpkg.dll - ok 20:04:32.0337 4108 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL 20:04:32.0337 4108 C:\Windows\System32\LIVESSP.DLL - ok 20:04:32.0337 4108 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll 20:04:32.0337 4108 C:\Windows\System32\bcryptprimitives.dll - ok 20:04:32.0337 4108 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll 20:04:32.0337 4108 C:\Windows\System32\credssp.dll - ok 20:04:32.0353 4108 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll 20:04:32.0353 4108 C:\Windows\System32\efslsaext.dll - ok 20:04:32.0353 4108 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll 20:04:32.0353 4108 C:\Windows\System32\scecli.dll - ok 20:04:32.0353 4108 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll 20:04:32.0353 4108 C:\Windows\System32\ubpm.dll - ok 20:04:32.0353 4108 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe 20:04:32.0353 4108 C:\Windows\System32\svchost.exe - ok 20:04:32.0353 4108 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll 20:04:32.0353 4108 C:\Windows\System32\umpnpmgr.dll - ok 20:04:32.0353 4108 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll 20:04:32.0353 4108 C:\Windows\System32\devrtl.dll - ok 20:04:32.0353 4108 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll 20:04:32.0353 4108 C:\Windows\System32\gpapi.dll - ok 20:04:32.0369 4108 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll 20:04:32.0369 4108 C:\Windows\System32\SPInf.dll - ok 20:04:32.0369 4108 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll 20:04:32.0369 4108 C:\Windows\System32\userenv.dll - ok 20:04:32.0369 4108 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll 20:04:32.0369 4108 C:\Windows\System32\umpo.dll - ok 20:04:32.0369 4108 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll 20:04:32.0369 4108 C:\Windows\System32\pcwum.dll - ok 20:04:32.0369 4108 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll 20:04:32.0369 4108 C:\Windows\System32\powrprof.dll - ok 20:04:32.0369 4108 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys 20:04:32.0369 4108 C:\Windows\System32\drivers\luafv.sys - ok 20:04:32.0369 4108 [ 0BB97D43299910CBFBA59C461B99B910 ] C:\Windows\System32\drivers\mbam.sys 20:04:32.0369 4108 C:\Windows\System32\drivers\mbam.sys - ok 20:04:32.0384 4108 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] C:\Windows\System32\nvvsvc.exe 20:04:32.0384 4108 C:\Windows\System32\nvvsvc.exe - ok 20:04:32.0384 4108 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll 20:04:32.0384 4108 C:\Windows\System32\wtsapi32.dll - ok 20:04:32.0384 4108 [ 5A19667A580B1CE886EAF968B9743F45 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 20:04:32.0384 4108 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok 20:04:32.0384 4108 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll 20:04:32.0384 4108 C:\Windows\SysWOW64\ntdll.dll - ok 20:04:32.0384 4108 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll 20:04:32.0384 4108 C:\Windows\System32\wow64.dll - ok 20:04:32.0384 4108 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll 20:04:32.0384 4108 C:\Windows\System32\wow64win.dll - ok 20:04:32.0400 4108 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll 20:04:32.0400 4108 C:\Windows\System32\wow64cpu.dll - ok 20:04:32.0400 4108 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll 20:04:32.0400 4108 C:\Windows\SysWOW64\kernel32.dll - ok 20:04:32.0400 4108 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll 20:04:32.0400 4108 C:\Windows\SysWOW64\KernelBase.dll - ok 20:04:32.0400 4108 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll 20:04:32.0400 4108 C:\Windows\SysWOW64\msvcrt.dll - ok 20:04:32.0400 4108 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll 20:04:32.0400 4108 C:\Windows\SysWOW64\setupapi.dll - ok 20:04:32.0400 4108 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll 20:04:32.0400 4108 C:\Windows\SysWOW64\version.dll - ok 20:04:32.0415 4108 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\cfgmgr32.dll - ok 20:04:32.0415 4108 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\advapi32.dll - ok 20:04:32.0415 4108 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\cryptbase.dll - ok 20:04:32.0415 4108 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\rpcrt4.dll - ok 20:04:32.0415 4108 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\sechost.dll - ok 20:04:32.0415 4108 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\sspicli.dll - ok 20:04:32.0415 4108 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll 20:04:32.0415 4108 C:\Windows\SysWOW64\gdi32.dll - ok 20:04:32.0431 4108 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\user32.dll - ok 20:04:32.0431 4108 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\lpk.dll - ok 20:04:32.0431 4108 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\usp10.dll - ok 20:04:32.0431 4108 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\oleaut32.dll - ok 20:04:32.0431 4108 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\ole32.dll - ok 20:04:32.0431 4108 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll 20:04:32.0431 4108 C:\Windows\SysWOW64\devobj.dll - ok 20:04:32.0431 4108 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv 20:04:32.0431 4108 C:\Windows\SysWOW64\winspool.drv - ok 20:04:32.0447 4108 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll 20:04:32.0447 4108 C:\Windows\SysWOW64\imm32.dll - ok 20:04:32.0447 4108 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll 20:04:32.0447 4108 C:\Windows\SysWOW64\msctf.dll - ok 20:04:32.0447 4108 [ 557C69A479F00DE9AB885A1A9C28889A ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll 20:04:32.0447 4108 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok 20:04:32.0447 4108 [ BDA164FB03B649BBEE46F5CB5A6770B1 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll 20:04:32.0447 4108 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok 20:04:32.0447 4108 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll 20:04:32.0447 4108 C:\Windows\SysWOW64\crypt32.dll - ok 20:04:32.0462 4108 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll 20:04:32.0462 4108 C:\Windows\SysWOW64\wintrust.dll - ok 20:04:32.0462 4108 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll 20:04:32.0462 4108 C:\Windows\SysWOW64\msasn1.dll - ok 20:04:32.0462 4108 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll 20:04:32.0462 4108 C:\Windows\System32\RpcEpMap.dll - ok 20:04:32.0462 4108 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll 20:04:32.0462 4108 C:\Windows\System32\rpcss.dll - ok 20:04:32.0462 4108 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll 20:04:32.0462 4108 C:\Windows\SysWOW64\ntmarta.dll - ok 20:04:32.0462 4108 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL 20:04:32.0462 4108 C:\Windows\System32\WSHTCPIP.DLL - ok 20:04:32.0478 4108 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll 20:04:32.0478 4108 C:\Windows\SysWOW64\Wldap32.dll - ok 20:04:32.0478 4108 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll 20:04:32.0478 4108 C:\Windows\System32\FirewallAPI.dll - ok 20:04:32.0478 4108 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll 20:04:32.0478 4108 C:\Windows\SysWOW64\devrtl.dll - ok 20:04:32.0478 4108 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll 20:04:32.0478 4108 C:\Windows\System32\version.dll - ok 20:04:32.0478 4108 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll 20:04:32.0478 4108 C:\Windows\System32\wevtsvc.dll - ok 20:04:32.0478 4108 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll 20:04:32.0478 4108 C:\Windows\SysWOW64\SPInf.dll - ok 20:04:32.0478 4108 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe 20:04:32.0493 4108 C:\Windows\System32\LogonUI.exe - ok 20:04:32.0493 4108 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll 20:04:32.0493 4108 C:\Windows\System32\audiosrv.dll - ok 20:04:32.0493 4108 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll 20:04:32.0493 4108 C:\Windows\System32\FntCache.dll - ok 20:04:32.0493 4108 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll 20:04:32.0493 4108 C:\Windows\System32\MMDevAPI.dll - ok 20:04:32.0493 4108 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll 20:04:32.0493 4108 C:\Windows\System32\avrt.dll - ok 20:04:32.0493 4108 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll 20:04:32.0493 4108 C:\Windows\System32\mmcss.dll - ok 20:04:32.0493 4108 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll 20:04:32.0493 4108 C:\Windows\System32\propsys.dll - ok 20:04:32.0509 4108 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll 20:04:32.0509 4108 C:\Windows\System32\adtschema.dll - ok 20:04:32.0509 4108 [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll 20:04:32.0509 4108 C:\Windows\System32\authui.dll - ok 20:04:32.0509 4108 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll 20:04:32.0509 4108 C:\Windows\System32\wlansvc.dll - ok 20:04:32.0509 4108 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll 20:04:32.0509 4108 C:\Windows\System32\cryptui.dll - ok 20:04:32.0509 4108 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll 20:04:32.0509 4108 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok 20:04:32.0509 4108 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe 20:04:32.0509 4108 C:\Windows\System32\audiodg.exe - ok 20:04:32.0525 4108 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll 20:04:32.0525 4108 C:\Windows\System32\samlib.dll - ok 20:04:32.0525 4108 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll 20:04:32.0525 4108 C:\Windows\System32\shacct.dll - ok 20:04:32.0525 4108 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll 20:04:32.0525 4108 C:\Windows\System32\uxtheme.dll - ok 20:04:32.0525 4108 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll 20:04:32.0525 4108 C:\Windows\System32\ntmarta.dll - ok 20:04:32.0525 4108 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll 20:04:32.0525 4108 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok 20:04:32.0525 4108 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll 20:04:32.0525 4108 C:\Windows\System32\cscsvc.dll - ok 20:04:32.0540 4108 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll 20:04:32.0540 4108 C:\Windows\System32\gpsvc.dll - ok 20:04:32.0540 4108 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll 20:04:32.0540 4108 C:\Windows\System32\profsvc.dll - ok 20:04:32.0540 4108 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll 20:04:32.0540 4108 C:\Windows\System32\nlaapi.dll - ok 20:04:32.0540 4108 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll 20:04:32.0540 4108 C:\Windows\System32\dsrole.dll - ok 20:04:32.0540 4108 [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll 20:04:32.0540 4108 C:\Windows\System32\PeerDist.dll - ok 20:04:32.0540 4108 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll 20:04:32.0540 4108 C:\Windows\System32\slc.dll - ok 20:04:32.0556 4108 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll 20:04:32.0556 4108 C:\Windows\System32\taskschd.dll - ok 20:04:32.0556 4108 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll 20:04:32.0556 4108 C:\Windows\System32\atl.dll - ok 20:04:32.0556 4108 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll 20:04:32.0556 4108 C:\Windows\System32\dui70.dll - ok 20:04:32.0556 4108 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll 20:04:32.0556 4108 C:\Windows\System32\themeservice.dll - ok 20:04:32.0556 4108 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll 20:04:32.0556 4108 C:\Windows\System32\duser.dll - ok 20:04:32.0556 4108 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll 20:04:32.0556 4108 C:\Windows\System32\winmm.dll - ok 20:04:32.0556 4108 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll 20:04:32.0556 4108 C:\Windows\System32\SndVolSSO.dll - ok 20:04:32.0571 4108 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll 20:04:32.0571 4108 C:\Windows\System32\hid.dll - ok 20:04:32.0571 4108 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv 20:04:32.0571 4108 C:\Windows\System32\wdmaud.drv - ok 20:04:32.0571 4108 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll 20:04:32.0571 4108 C:\Windows\System32\dwmapi.dll - ok 20:04:32.0571 4108 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll 20:04:32.0571 4108 C:\Windows\System32\ksuser.dll - ok 20:04:32.0571 4108 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll 20:04:32.0571 4108 C:\Windows\System32\AudioSes.dll - ok 20:04:32.0571 4108 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll 20:04:32.0571 4108 C:\Windows\System32\xmllite.dll - ok 20:04:32.0587 4108 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll 20:04:32.0587 4108 C:\Windows\System32\midimap.dll - ok 20:04:32.0587 4108 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll 20:04:32.0587 4108 C:\Windows\System32\msacm32.dll - ok 20:04:32.0587 4108 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv 20:04:32.0587 4108 C:\Windows\System32\msacm32.drv - ok 20:04:32.0587 4108 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll 20:04:32.0587 4108 C:\Windows\System32\AudioEng.dll - ok 20:04:32.0587 4108 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll 20:04:32.0587 4108 C:\Windows\System32\AUDIOKSE.dll - ok 20:04:32.0587 4108 [ A663EED94D922E7B92AC0FD5E5F696C4 ] C:\Windows\System32\RtkAPO64.dll 20:04:32.0587 4108 C:\Windows\System32\RtkAPO64.dll - ok 20:04:32.0603 4108 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll 20:04:32.0603 4108 C:\Windows\System32\WMALFXGFXDSP.dll - ok 20:04:32.0603 4108 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll 20:04:32.0603 4108 C:\Windows\System32\mfplat.dll - ok 20:04:32.0603 4108 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll 20:04:32.0603 4108 C:\Windows\System32\mstask.dll - ok 20:04:32.0603 4108 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys 20:04:32.0603 4108 C:\Windows\System32\drivers\lltdio.sys - ok 20:04:32.0603 4108 [ 8AB4374464C6548FA30E498811D2B324 ] C:\Windows\System32\drivers\vmnet.sys 20:04:32.0603 4108 C:\Windows\System32\drivers\vmnet.sys - ok 20:04:32.0603 4108 [ FB54EF3AA613D2832FD3812E7CB2FC75 ] C:\Windows\System32\drivers\vmnetbridge.sys 20:04:32.0603 4108 C:\Windows\System32\drivers\vmnetbridge.sys - ok 20:04:32.0603 4108 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll 20:04:32.0603 4108 C:\Windows\System32\uxsms.dll - ok 20:04:32.0618 4108 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys 20:04:32.0618 4108 C:\Windows\System32\drivers\fltMgr.sys - ok 20:04:32.0618 4108 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll 20:04:32.0618 4108 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok 20:04:32.0618 4108 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL 20:04:32.0618 4108 C:\Windows\System32\PSHED.DLL - ok 20:04:32.0618 4108 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys 20:04:32.0618 4108 C:\Windows\System32\drivers\nwifi.sys - ok 20:04:32.0618 4108 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys 20:04:32.0618 4108 C:\Windows\System32\drivers\ndisuio.sys - ok 20:04:32.0618 4108 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys 20:04:32.0618 4108 C:\Windows\System32\drivers\rspndr.sys - ok 20:04:32.0634 4108 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL 20:04:32.0634 4108 C:\Windows\System32\IPHLPAPI.DLL - ok 20:04:32.0634 4108 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll 20:04:32.0634 4108 C:\Windows\System32\lmhsvc.dll - ok 20:04:32.0634 4108 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll 20:04:32.0634 4108 C:\Windows\System32\nsisvc.dll - ok 20:04:32.0634 4108 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll 20:04:32.0634 4108 C:\Windows\System32\dhcpcore.dll - ok 20:04:32.0634 4108 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll 20:04:32.0634 4108 C:\Windows\System32\nrpsrv.dll - ok 20:04:32.0634 4108 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll 20:04:32.0634 4108 C:\Windows\System32\winnsi.dll - ok 20:04:32.0634 4108 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll 20:04:32.0634 4108 C:\Windows\System32\dhcpcore6.dll - ok 20:04:32.0649 4108 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll 20:04:32.0649 4108 C:\Windows\System32\dnsrslvr.dll - ok 20:04:32.0649 4108 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll 20:04:32.0649 4108 C:\Windows\System32\eapphost.dll - ok 20:04:32.0649 4108 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll 20:04:32.0649 4108 C:\Windows\System32\eapsvc.dll - ok 20:04:32.0649 4108 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll 20:04:32.0649 4108 C:\Windows\System32\keyiso.dll - ok 20:04:32.0649 4108 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll 20:04:32.0649 4108 C:\Windows\System32\umb.dll - ok 20:04:32.0649 4108 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll 20:04:32.0649 4108 C:\Windows\System32\wlanmsm.dll - ok 20:04:32.0665 4108 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL 20:04:32.0665 4108 C:\Windows\System32\FWPUCLNT.DLL - ok 20:04:32.0665 4108 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll 20:04:32.0665 4108 C:\Windows\System32\dhcpcsvc.dll - ok 20:04:32.0665 4108 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll 20:04:32.0665 4108 C:\Windows\System32\dnsext.dll - ok 20:04:32.0665 4108 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll 20:04:32.0665 4108 C:\Windows\System32\dhcpcsvc6.dll - ok 20:04:32.0665 4108 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll 20:04:32.0665 4108 C:\Windows\System32\wlansec.dll - ok 20:04:32.0665 4108 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll 20:04:32.0665 4108 C:\Windows\System32\onex.dll - ok 20:04:32.0665 4108 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll 20:04:32.0665 4108 C:\Windows\System32\eappcfg.dll - ok 20:04:32.0681 4108 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll 20:04:32.0681 4108 C:\Windows\System32\eappprxy.dll - ok 20:04:32.0681 4108 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll 20:04:32.0681 4108 C:\Windows\System32\l2gpstore.dll - ok 20:04:32.0681 4108 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll 20:04:32.0681 4108 C:\Windows\System32\WinSCard.dll - ok 20:04:32.0681 4108 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll 20:04:32.0681 4108 C:\Windows\System32\wlanutil.dll - ok 20:04:32.0681 4108 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll 20:04:32.0681 4108 C:\Windows\System32\wlgpclnt.dll - ok 20:04:32.0681 4108 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll 20:04:32.0681 4108 C:\Windows\System32\netprofm.dll - ok 20:04:32.0681 4108 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll 20:04:32.0681 4108 C:\Windows\System32\MPSSVC.dll - ok 20:04:32.0696 4108 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll 20:04:32.0696 4108 C:\Windows\System32\VaultCredProvider.dll - ok 20:04:32.0696 4108 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll 20:04:32.0696 4108 C:\Windows\System32\winbrand.dll - ok 20:04:32.0696 4108 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll 20:04:32.0696 4108 C:\Windows\System32\SmartcardCredentialProvider.dll - ok 20:04:32.0696 4108 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll 20:04:32.0696 4108 C:\Windows\System32\BioCredProv.dll - ok 20:04:32.0696 4108 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll 20:04:32.0696 4108 C:\Windows\System32\winbio.dll - ok 20:04:32.0696 4108 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll 20:04:32.0696 4108 C:\Windows\System32\credui.dll - ok 20:04:32.0712 4108 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll 20:04:32.0712 4108 C:\Windows\System32\vaultcli.dll - ok 20:04:32.0712 4108 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll 20:04:32.0712 4108 C:\Windows\System32\netapi32.dll - ok 20:04:32.0712 4108 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll 20:04:32.0712 4108 C:\Windows\System32\netutils.dll - ok 20:04:32.0712 4108 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll 20:04:32.0712 4108 C:\Windows\System32\samcli.dll - ok 20:04:32.0712 4108 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll 20:04:32.0712 4108 C:\Windows\System32\wkscli.dll - ok 20:04:32.0712 4108 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL 20:04:32.0712 4108 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok 20:04:32.0727 4108 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll 20:04:32.0727 4108 C:\Windows\System32\certCredProvider.dll - ok 20:04:32.0727 4108 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll 20:04:32.0727 4108 C:\Windows\System32\rasplap.dll - ok 20:04:32.0727 4108 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll 20:04:32.0727 4108 C:\Windows\System32\rasapi32.dll - ok 20:04:32.0727 4108 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll 20:04:32.0727 4108 C:\Windows\System32\rasman.dll - ok 20:04:32.0727 4108 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll 20:04:32.0727 4108 C:\Windows\System32\rtutils.dll - ok 20:04:32.0727 4108 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll 20:04:32.0727 4108 C:\Windows\System32\oleacc.dll - ok 20:04:32.0727 4108 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll 20:04:32.0727 4108 C:\Windows\System32\UXInit.dll - ok 20:04:32.0743 4108 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll 20:04:32.0743 4108 C:\Windows\System32\UIAutomationCore.dll - ok 20:04:32.0743 4108 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll 20:04:32.0743 4108 C:\Windows\System32\msimg32.dll - ok 20:04:32.0743 4108 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll 20:04:32.0743 4108 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok 20:04:32.0743 4108 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll 20:04:32.0743 4108 C:\Windows\System32\msxml6.dll - ok 20:04:32.0743 4108 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll 20:04:32.0743 4108 C:\Windows\System32\WindowsCodecs.dll - ok 20:04:32.0743 4108 [ FEDB2BF1346168EBC6FE517386540182 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll 20:04:32.0743 4108 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok 20:04:32.0759 4108 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll 20:04:32.0759 4108 C:\Windows\System32\shsvcs.dll - ok 20:04:32.0759 4108 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll 20:04:32.0759 4108 C:\Windows\System32\schedsvc.dll - ok 20:04:32.0759 4108 [ 39EF7D1A9A3954D66B907C5CB5E20E64 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 20:04:32.0759 4108 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok 20:04:32.0759 4108 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll 20:04:32.0759 4108 C:\Windows\System32\ktmw32.dll - ok 20:04:32.0759 4108 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll 20:04:32.0759 4108 C:\Windows\System32\taskcomp.dll - ok 20:04:32.0759 4108 [ E9ADE601D6F90079E6D87EE0B88C890B ] C:\Windows\System32\nvsvc64.dll 20:04:32.0759 4108 C:\Windows\System32\nvsvc64.dll - ok 20:04:32.0774 4108 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll 20:04:32.0774 4108 C:\Windows\System32\mscms.dll - ok 20:04:32.0774 4108 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll 20:04:32.0774 4108 C:\Windows\System32\fveapi.dll - ok 20:04:32.0774 4108 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll 20:04:32.0774 4108 C:\Windows\System32\fvecerts.dll - ok 20:04:32.0774 4108 [ A4A923207A306DC77FA9155BF59DE849 ] C:\Windows\System32\nvapi64.dll 20:04:32.0774 4108 C:\Windows\System32\nvapi64.dll - ok 20:04:32.0774 4108 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll 20:04:32.0774 4108 C:\Windows\System32\tbs.dll - ok 20:04:32.0774 4108 [ 77CE18C15582C129CF5594E2CD8A3DAC ] C:\Windows\System32\nvsvcr.dll 20:04:32.0774 4108 C:\Windows\System32\nvsvcr.dll - ok 20:04:32.0774 4108 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll 20:04:32.0774 4108 C:\Windows\System32\imageres.dll - ok 20:04:32.0790 4108 [ 56C729C0B6E9C1B73176E057E12CD720 ] C:\Windows\System32\nvcpl.dll 20:04:32.0790 4108 C:\Windows\System32\nvcpl.dll - ok 20:04:32.0790 4108 [ 401B576AD78849284CE918CA79DC3AF7 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll 20:04:32.0790 4108 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok 20:04:32.0790 4108 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll 20:04:32.0790 4108 C:\Windows\System32\wiarpc.dll - ok 20:04:32.0790 4108 [ 3220C3D0A1BFE56B55ACE801B6CD2C17 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll 20:04:32.0790 4108 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok 20:04:32.0790 4108 [ 0B4BFE53C6CE1DC7D83DD92BC2F7C080 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll 20:04:32.0790 4108 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok 20:04:32.0790 4108 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll 20:04:32.0790 4108 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok 20:04:32.0805 4108 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv 20:04:32.0805 4108 C:\Windows\System32\winspool.drv - ok 20:04:32.0805 4108 [ 3571AE135A605787EA4B63DDB96E9359 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll 20:04:32.0805 4108 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok 20:04:32.0805 4108 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe 20:04:32.0805 4108 C:\Windows\System32\wlanext.exe - ok 20:04:32.0805 4108 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe 20:04:32.0805 4108 C:\Windows\System32\conhost.exe - ok 20:04:32.0805 4108 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys 20:04:32.0805 4108 C:\Windows\System32\drivers\http.sys - ok 20:04:32.0805 4108 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe 20:04:32.0805 4108 C:\Windows\System32\spoolsv.exe - ok 20:04:32.0805 4108 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll 20:04:32.0821 4108 C:\Windows\System32\netcfgx.dll - ok 20:04:32.0821 4108 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe 20:04:32.0821 4108 C:\Windows\System32\taskeng.exe - ok 20:04:32.0821 4108 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL 20:04:32.0821 4108 C:\Windows\System32\BFE.DLL - ok 20:04:32.0821 4108 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys 20:04:32.0821 4108 C:\Windows\System32\drivers\srvnet.sys - ok 20:04:32.0821 4108 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys 20:04:32.0821 4108 C:\Windows\System32\drivers\vwifimp.sys - ok 20:04:32.0821 4108 [ C07D5582F2107ACAB4564E1DAE977C64 ] C:\Windows\ehome\ehprivjob.exe 20:04:32.0821 4108 C:\Windows\ehome\ehprivjob.exe - ok 20:04:32.0821 4108 [ 9E0FF5DDD8B908DA5611445C35D6CD24 ] C:\Windows\System32\slcext.dll 20:04:32.0821 4108 C:\Windows\System32\slcext.dll - ok 20:04:32.0837 4108 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll 20:04:32.0837 4108 C:\Windows\System32\sppc.dll - ok 20:04:32.0837 4108 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\bowser.sys - ok 20:04:32.0837 4108 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\mpsdrv.sys - ok 20:04:32.0837 4108 [ DC722758B8261E1ABAFD31A3C0A66380 ] C:\Windows\System32\drivers\mrxdav.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\mrxdav.sys - ok 20:04:32.0837 4108 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\mrxsmb.sys - ok 20:04:32.0837 4108 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\mrxsmb10.sys - ok 20:04:32.0837 4108 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys 20:04:32.0837 4108 C:\Windows\System32\drivers\mrxsmb20.sys - ok 20:04:32.0852 4108 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys 20:04:32.0852 4108 C:\Windows\System32\drivers\srv2.sys - ok 20:04:32.0852 4108 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll 20:04:32.0852 4108 C:\Windows\System32\sppcext.dll - ok 20:04:32.0852 4108 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] C:\Windows\System32\WebClnt.dll 20:04:32.0852 4108 C:\Windows\System32\WebClnt.dll - ok 20:04:32.0852 4108 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll 20:04:32.0852 4108 C:\Windows\System32\wfapigp.dll - ok 20:04:32.0852 4108 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll 20:04:32.0852 4108 C:\Windows\System32\davhlpr.dll - ok 20:04:32.0852 4108 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys 20:04:32.0852 4108 C:\Windows\System32\drivers\srv.sys - ok 20:04:32.0868 4108 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll 20:04:32.0868 4108 C:\Windows\System32\wkssvc.dll - ok 20:04:32.0868 4108 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll 20:04:32.0868 4108 C:\Windows\System32\browser.dll - ok 20:04:32.0868 4108 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll 20:04:32.0868 4108 C:\Windows\System32\netmsg.dll - ok 20:04:32.0868 4108 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll 20:04:32.0868 4108 C:\Windows\System32\srvsvc.dll - ok 20:04:32.0868 4108 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll 20:04:32.0868 4108 C:\Windows\System32\winhttp.dll - ok 20:04:32.0868 4108 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll 20:04:32.0868 4108 C:\Windows\System32\webio.dll - ok 20:04:32.0883 4108 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll 20:04:32.0883 4108 C:\Windows\System32\TSChannel.dll - ok 20:04:32.0883 4108 [ 3BDCBB29D727C49DC3E3256253467281 ] C:\Windows\System32\wmdrmsdk.dll 20:04:32.0883 4108 C:\Windows\System32\wmdrmsdk.dll - ok 20:04:32.0883 4108 [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe 20:04:32.0883 4108 C:\Windows\System32\lpksetup.exe - ok 20:04:32.0883 4108 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll 20:04:32.0883 4108 C:\Windows\ehome\ehtrace.dll - ok 20:04:32.0883 4108 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll 20:04:32.0883 4108 C:\Windows\System32\dpx.dll - ok 20:04:32.0883 4108 [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll 20:04:32.0883 4108 C:\Windows\System32\comsvcs.dll - ok 20:04:32.0883 4108 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll 20:04:32.0883 4108 C:\Windows\System32\clusapi.dll - ok 20:04:32.0899 4108 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll 20:04:32.0899 4108 C:\Windows\System32\sscore.dll - ok 20:04:32.0899 4108 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll 20:04:32.0899 4108 C:\Windows\System32\resutils.dll - ok 20:04:32.0899 4108 [ BA207B48AA3D9D73FD4856400F852458 ] C:\Windows\System32\drivers\hcmon.sys 20:04:32.0899 4108 C:\Windows\System32\drivers\hcmon.sys - ok 20:04:32.0899 4108 [ B49CB94DB99519F9DC7F77D2D1F215B5 ] C:\Windows\System32\drivers\vmci.sys 20:04:32.0899 4108 C:\Windows\System32\drivers\vmci.sys - ok 20:04:32.0899 4108 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll 20:04:32.0899 4108 C:\Program Files\Bonjour\mdnsNSP.dll - ok 20:04:32.0899 4108 [ F2A8EE62D7161E1598CDD269BF22A03D ] C:\Windows\System32\drivers\vmx86.sys 20:04:32.0899 4108 C:\Windows\System32\drivers\vmx86.sys - ok 20:04:32.0899 4108 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL 20:04:32.0899 4108 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok 20:04:32.0915 4108 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll 20:04:32.0915 4108 C:\Windows\System32\rasadhlp.dll - ok 20:04:32.0915 4108 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 20:04:32.0915 4108 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok 20:04:32.0915 4108 [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll 20:04:32.0915 4108 C:\Windows\SysWOW64\shell32.dll - ok 20:04:32.0915 4108 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll 20:04:32.0915 4108 C:\Windows\SysWOW64\shlwapi.dll - ok 20:04:32.0915 4108 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll 20:04:32.0915 4108 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok 20:04:32.0915 4108 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe 20:04:32.0915 4108 C:\Program Files\Bonjour\mDNSResponder.exe - ok 20:04:32.0930 4108 [ 7F771059963775ADD679EFED7B1910C9 ] C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe 20:04:32.0930 4108 C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe - ok 20:04:32.0930 4108 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll 20:04:32.0930 4108 C:\Windows\SysWOW64\psapi.dll - ok 20:04:32.0930 4108 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll 20:04:32.0930 4108 C:\Windows\SysWOW64\profapi.dll - ok 20:04:32.0930 4108 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] C:\Windows\System32\CISVC.EXE 20:04:32.0930 4108 C:\Windows\System32\CISVC.EXE - ok 20:04:32.0930 4108 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll 20:04:32.0930 4108 C:\Windows\SysWOW64\clbcatq.dll - ok 20:04:32.0930 4108 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll 20:04:32.0930 4108 C:\Windows\SysWOW64\cryptsp.dll - ok 20:04:32.0946 4108 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll 20:04:32.0946 4108 C:\Windows\System32\Query.dll - ok 20:04:32.0946 4108 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll 20:04:32.0946 4108 C:\Windows\SysWOW64\rsaenh.dll - ok 20:04:32.0946 4108 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll 20:04:32.0946 4108 C:\Windows\SysWOW64\RpcRtRemote.dll - ok 20:04:32.0946 4108 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll 20:04:32.0946 4108 C:\Windows\System32\cryptsvc.dll - ok 20:04:32.0946 4108 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll 20:04:32.0946 4108 C:\Windows\System32\cryptnet.dll - ok 20:04:32.0946 4108 [ A5BEA0E5C297F5F3835638A87E512FBA ] C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe 20:04:32.0946 4108 C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe - ok 20:04:32.0946 4108 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll 20:04:32.0946 4108 C:\Windows\System32\dps.dll - ok 20:04:32.0961 4108 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll 20:04:32.0961 4108 C:\Windows\System32\fdPHost.dll - ok 20:04:32.0961 4108 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll 20:04:32.0961 4108 C:\Windows\System32\fdWSD.dll - ok 20:04:32.0961 4108 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll 20:04:32.0961 4108 C:\Windows\System32\FDResPub.dll - ok 20:04:32.0961 4108 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL 20:04:32.0961 4108 C:\Windows\System32\IKEEXT.DLL - ok 20:04:32.0961 4108 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll 20:04:32.0961 4108 C:\Windows\System32\mlang.dll - ok 20:04:32.0961 4108 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe 20:04:32.0961 4108 C:\Windows\SysWOW64\svchost.exe - ok 20:04:32.0961 4108 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll 20:04:32.0961 4108 C:\Windows\System32\WSDApi.dll - ok 20:04:32.0977 4108 [ 75CC8C5146A3FB76221A7606628778D5 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 20:04:32.0977 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok 20:04:32.0977 4108 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll 20:04:32.0977 4108 C:\Windows\System32\webservices.dll - ok 20:04:32.0977 4108 [ E14CF5255C46E1556E344CD720F34F25 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll 20:04:32.0977 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok 20:04:32.0977 4108 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll 20:04:32.0977 4108 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok 20:04:32.0977 4108 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll 20:04:32.0977 4108 C:\Windows\System32\vpnikeapi.dll - ok 20:04:32.0977 4108 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll 20:04:32.0977 4108 C:\Windows\System32\fdSSDP.dll - ok 20:04:32.0993 4108 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll 20:04:32.0993 4108 C:\Windows\System32\ssdpapi.dll - ok 20:04:32.0993 4108 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll 20:04:32.0993 4108 C:\Windows\System32\fundisc.dll - ok 20:04:32.0993 4108 [ 26FBC0AEDE7C6A67781202E0E2ECB6A6 ] C:\Windows\System32\IPROSetMonitor.exe 20:04:32.0993 4108 C:\Windows\System32\IPROSetMonitor.exe - ok 20:04:32.0993 4108 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll 20:04:32.0993 4108 C:\Windows\System32\msvcp100.dll - ok 20:04:32.0993 4108 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll 20:04:32.0993 4108 C:\Windows\System32\msvcr100.dll - ok 20:04:32.0993 4108 [ 65085456FD9A74D7F1A999520C299ECB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 20:04:32.0993 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok 20:04:33.0008 4108 [ EF39CCCC9AD927A25334AE0B41A8A343 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll 20:04:33.0008 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok 20:04:33.0008 4108 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll 20:04:33.0008 4108 C:\Windows\System32\httpapi.dll - ok 20:04:33.0008 4108 [ 9275F02BEA644F43A459E316A932658F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll 20:04:33.0008 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok 20:04:33.0008 4108 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL 20:04:33.0008 4108 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok 20:04:33.0008 4108 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll 20:04:33.0008 4108 C:\Windows\SysWOW64\nsi.dll - ok 20:04:33.0008 4108 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll 20:04:33.0008 4108 C:\Windows\SysWOW64\winnsi.dll - ok 20:04:33.0024 4108 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll 20:04:33.0024 4108 C:\Windows\SysWOW64\ws2_32.dll - ok 20:04:33.0024 4108 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll 20:04:33.0024 4108 C:\Windows\SysWOW64\wtsapi32.dll - ok 20:04:33.0024 4108 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll 20:04:33.0024 4108 C:\Windows\SysWOW64\userenv.dll - ok 20:04:33.0024 4108 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 20:04:33.0024 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok 20:04:33.0024 4108 [ 80D8679BF84A9383BFF33E07D5D9FC35 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll 20:04:33.0024 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok 20:04:33.0024 4108 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll 20:04:33.0024 4108 C:\Windows\SysWOW64\mpr.dll - ok 20:04:33.0039 4108 [ 7CF1B716372B89568AE4C0FE769F5869 ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe 20:04:33.0039 4108 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe - ok 20:04:33.0039 4108 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll 20:04:33.0039 4108 C:\Windows\SysWOW64\apphelp.dll - ok 20:04:33.0039 4108 [ BEC27CF5564827EAB7F08C98EE55B1CC ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\pdm.dll 20:04:33.0039 4108 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\pdm.dll - ok 20:04:33.0039 4108 [ BFC68382466436FAE8B7A27966FB98CB ] C:\Windows\AppPatch\acwow64.dll 20:04:33.0039 4108 C:\Windows\AppPatch\acwow64.dll - ok 20:04:33.0039 4108 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll 20:04:33.0039 4108 C:\Windows\System32\localspl.dll - ok 20:04:33.0039 4108 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll 20:04:33.0039 4108 C:\Windows\System32\spoolss.dll - ok 20:04:33.0055 4108 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll 20:04:33.0055 4108 C:\Windows\System32\PrintIsolationProxy.dll - ok 20:04:33.0055 4108 [ E89BD978F9482502DD00702A93CD84B9 ] C:\Windows\System32\CNMLM97.DLL 20:04:33.0055 4108 C:\Windows\System32\CNMLM97.DLL - ok 20:04:33.0055 4108 [ C3C0D8F2345F7E4E4053196BABC43939 ] C:\Windows\System32\hpmpw081.dll 20:04:33.0055 4108 C:\Windows\System32\hpmpw081.dll - ok 20:04:33.0055 4108 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll 20:04:33.0055 4108 C:\Windows\System32\dbghelp.dll - ok 20:04:33.0055 4108 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll 20:04:33.0055 4108 C:\Windows\SysWOW64\winsta.dll - ok 20:04:33.0055 4108 [ 51566E7356AB787C487BD2BCE0AF8F0F ] C:\Windows\System32\hpmpm081.dll 20:04:33.0055 4108 C:\Windows\System32\hpmpm081.dll - ok 20:04:33.0071 4108 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll 20:04:33.0071 4108 C:\Windows\System32\FXSMON.dll - ok 20:04:33.0071 4108 [ F2F107A7427C2FAB1E412B5890F1BD50 ] C:\Windows\System32\hppmopjl.dll 20:04:33.0071 4108 C:\Windows\System32\hppmopjl.dll - ok 20:04:33.0071 4108 [ 5805393B6EBB441BD0BF30B311F4ED56 ] C:\Windows\System32\nitrolocalmon2.dll 20:04:33.0071 4108 C:\Windows\System32\nitrolocalmon2.dll - ok 20:04:33.0071 4108 [ 27F995E727DEF2B492260C18943EDA9F ] C:\Windows\System32\hpz3l5mu.dll 20:04:33.0071 4108 C:\Windows\System32\hpz3l5mu.dll - ok 20:04:33.0071 4108 [ 3D811BF538D6F359735D757C94F484B6 ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\msdbg2.dll 20:04:33.0071 4108 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\msdbg2.dll - ok 20:04:33.0071 4108 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll 20:04:33.0071 4108 C:\Windows\System32\hpz3lw71.dll - ok 20:04:33.0086 4108 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll 20:04:33.0086 4108 C:\Windows\System32\tcpmon.dll - ok 20:04:33.0086 4108 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll 20:04:33.0086 4108 C:\Windows\System32\snmpapi.dll - ok 20:04:33.0086 4108 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll 20:04:33.0086 4108 C:\Windows\System32\wsnmp32.dll - ok 20:04:33.0086 4108 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll 20:04:33.0086 4108 C:\Windows\System32\usbmon.dll - ok 20:04:33.0086 4108 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll 20:04:33.0086 4108 C:\Windows\System32\WSDMon.dll - ok 20:04:33.0086 4108 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll 20:04:33.0086 4108 C:\Windows\System32\fdPnp.dll - ok 20:04:33.0086 4108 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll 20:04:33.0086 4108 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok 20:04:33.0102 4108 [ 00000000000000000000000000000000 ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe 20:04:33.0102 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe - ok 20:04:33.0102 4108 [ 8D65C7A54AA8DF75DF533BE789DD19F1 ] C:\Windows\System32\spool\prtprocs\x64\CNMPD97.DLL 20:04:33.0102 4108 C:\Windows\System32\spool\prtprocs\x64\CNMPD97.DLL - ok 20:04:33.0102 4108 [ 647C11534C7AF0C5FF599D930476511F ] C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\csm.dll 20:04:33.0102 4108 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\csm.dll - ok 20:04:33.0102 4108 [ C41F9D769538AAD740A3D3D8AD428A6D ] C:\Windows\System32\spool\prtprocs\x64\hpcpp104.dll 20:04:33.0102 4108 C:\Windows\System32\spool\prtprocs\x64\hpcpp104.dll - ok 20:04:33.0102 4108 [ 74847AA7A032CCC65888F810F94AF4D1 ] C:\Windows\System32\spool\prtprocs\x64\hpzpp5mu.dll 20:04:33.0102 4108 C:\Windows\System32\spool\prtprocs\x64\hpzpp5mu.dll - ok 20:04:33.0117 4108 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll 20:04:33.0117 4108 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok 20:04:33.0117 4108 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll 20:04:33.0117 4108 C:\Windows\System32\win32spl.dll - ok 20:04:33.0117 4108 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll 20:04:33.0117 4108 C:\Windows\System32\inetpp.dll - ok 20:04:33.0117 4108 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll 20:04:33.0117 4108 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok 20:04:33.0117 4108 [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll 20:04:33.0117 4108 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok 20:04:33.0133 4108 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll 20:04:33.0133 4108 C:\Windows\System32\cscapi.dll - ok 20:04:33.0133 4108 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll 20:04:33.0133 4108 C:\Windows\System32\ntprint.dll - ok 20:04:33.0133 4108 [ 2963F58E3D6DA587F9C3C0172F00D0FE ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlos.dll 20:04:33.0133 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlos.dll - ok 20:04:33.0133 4108 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll 20:04:33.0133 4108 C:\Windows\System32\pdh.dll - ok 20:04:33.0133 4108 [ 759B3E957B35C2426B81B81FF62E9AB7 ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\opends60.dll 20:04:33.0133 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\opends60.dll - ok 20:04:33.0133 4108 [ 83398851164292684C34F7FC9A236C2D ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\batchparser.dll 20:04:33.0133 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\batchparser.dll - ok 20:04:33.0149 4108 [ AAAF7B5CD55363C7F9F8E00C084E9B27 ] C:\Program Files\Microsoft SQL Server\100\Shared\instapi10.dll 20:04:33.0149 4108 C:\Program Files\Microsoft SQL Server\100\Shared\instapi10.dll - ok 20:04:33.0149 4108 [ 628A063EE2F27748E6DF45FCB5DC69AD ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlboot.dll 20:04:33.0149 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlboot.dll - ok 20:04:33.0149 4108 [ 162100E0BC8377710F9D170631921C03 ] C:\Windows\System32\drivers\NisDrvWFP.sys 20:04:33.0149 4108 C:\Windows\System32\drivers\NisDrvWFP.sys - ok 20:04:33.0149 4108 [ 0AACD86588F78EC58D31B1D6DC15A512 ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\Resources\1033\sqlevn70.rll 20:04:33.0149 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok 20:04:33.0149 4108 [ 0734398D3D99986BB8006E9BB5EAB1E5 ] C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe 20:04:33.0149 4108 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe - ok 20:04:33.0164 4108 [ B6CBA9A0403E2C1A9EA03C33A4932E89 ] C:\Windows\System32\HPZinw12.dll 20:04:33.0164 4108 C:\Windows\System32\HPZinw12.dll - ok 20:04:33.0164 4108 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll 20:04:33.0164 4108 C:\Windows\System32\browcli.dll - ok 20:04:33.0164 4108 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll 20:04:33.0164 4108 C:\Windows\System32\mscoree.dll - ok 20:04:33.0164 4108 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll 20:04:33.0164 4108 C:\Windows\System32\wsock32.dll - ok 20:04:33.0164 4108 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll 20:04:33.0164 4108 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok 20:04:33.0164 4108 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys 20:04:33.0164 4108 C:\Windows\System32\drivers\PEAuth.sys - ok 20:04:33.0180 4108 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll 20:04:33.0180 4108 C:\Windows\System32\nlasvc.dll - ok 20:04:33.0180 4108 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll 20:04:33.0180 4108 C:\Windows\System32\pcasvc.dll - ok 20:04:33.0180 4108 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll 20:04:33.0180 4108 C:\Windows\System32\aepic.dll - ok 20:04:33.0180 4108 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll 20:04:33.0180 4108 C:\Windows\System32\ncsi.dll - ok 20:04:33.0180 4108 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll 20:04:33.0180 4108 C:\Windows\System32\sfc.dll - ok 20:04:33.0180 4108 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll 20:04:33.0180 4108 C:\Windows\System32\sfc_os.dll - ok 20:04:33.0195 4108 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll 20:04:33.0195 4108 C:\Windows\System32\security.dll - ok 20:04:33.0195 4108 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll 20:04:33.0195 4108 C:\Windows\System32\dssenh.dll - ok 20:04:33.0195 4108 [ 35CCB20B0D730B7764D049463E4B2AC5 ] C:\Windows\System32\HPZipm12.dll 20:04:33.0195 4108 C:\Windows\System32\HPZipm12.dll - ok 20:04:33.0195 4108 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL 20:04:33.0195 4108 C:\Windows\System32\IPSECSVC.DLL - ok 20:04:33.0195 4108 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll 20:04:33.0195 4108 C:\Windows\System32\psbase.dll - ok 20:04:33.0195 4108 [ 35BA5AA671887FE8A62B88A9A6229FD5 ] C:\Windows\System32\pstorsvc.dll 20:04:33.0195 4108 C:\Windows\System32\pstorsvc.dll - ok 20:04:33.0195 4108 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll 20:04:33.0195 4108 C:\Windows\System32\FwRemoteSvr.dll - ok 20:04:33.0211 4108 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe 20:04:33.0211 4108 C:\Windows\System32\dllhost.exe - ok 20:04:33.0211 4108 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll 20:04:33.0211 4108 C:\Windows\System32\IDStore.dll - ok 20:04:33.0211 4108 [ D1D5DAB39DCB4BE0359943738D87409B ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe 20:04:33.0211 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok 20:04:33.0211 4108 [ 89525CC2DBAD44F7199B9CC188B3F9C5 ] C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe 20:04:33.0211 4108 C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe - ok 20:04:33.0211 4108 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll 20:04:33.0211 4108 C:\Windows\SysWOW64\msvcr100.dll - ok 20:04:33.0211 4108 [ BE9861E1A18E01C38338FEACD75C5EAD ] C:\Program Files\Macrium\Reflect\ReflectService.exe 20:04:33.0211 4108 C:\Program Files\Macrium\Reflect\ReflectService.exe - ok 20:04:33.0227 4108 [ CC781378E7EDA615D2CDCA3B17829FA4 ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE 20:04:33.0227 4108 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok 20:04:33.0227 4108 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll 20:04:33.0227 4108 C:\Windows\SysWOW64\winhttp.dll - ok 20:04:33.0227 4108 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll 20:04:33.0227 4108 C:\Windows\SysWOW64\webio.dll - ok 20:04:33.0227 4108 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll 20:04:33.0227 4108 C:\Windows\SysWOW64\msxml6.dll - ok 20:04:33.0227 4108 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll 20:04:33.0227 4108 C:\Windows\SysWOW64\SensApi.dll - ok 20:04:33.0227 4108 [ 8B1A72E4FB63A9C068B08E1F9B70482A ] C:\Program Files (x86)\Secunia\PSI\sua.exe 20:04:33.0227 4108 C:\Program Files (x86)\Secunia\PSI\sua.exe - ok 20:04:33.0242 4108 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys 20:04:33.0242 4108 C:\Windows\System32\drivers\secdrv.sys - ok 20:04:33.0242 4108 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll 20:04:33.0242 4108 C:\Windows\System32\seclogon.dll - ok 20:04:33.0242 4108 [ 78741A4568C0094D590388A2DEE2B14D ] C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlscriptupgrade.dll 20:04:33.0242 4108 C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlscriptupgrade.dll - ok 20:04:33.0242 4108 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll 20:04:33.0242 4108 C:\Windows\SysWOW64\netapi32.dll - ok 20:04:33.0242 4108 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll 20:04:33.0242 4108 C:\Windows\SysWOW64\netutils.dll - ok 20:04:33.0242 4108 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll 20:04:33.0242 4108 C:\Windows\SysWOW64\srvcli.dll - ok 20:04:33.0258 4108 [ 7C15061CD0372487903B07B9BB03AFAD ] C:\Program Files (x86)\Skype\Updater\Updater.exe 20:04:33.0258 4108 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok 20:04:33.0258 4108 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll 20:04:33.0258 4108 C:\Windows\SysWOW64\samcli.dll - ok 20:04:33.0258 4108 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll 20:04:33.0258 4108 C:\Windows\SysWOW64\secur32.dll - ok 20:04:33.0258 4108 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll 20:04:33.0258 4108 C:\Windows\SysWOW64\wkscli.dll - ok 20:04:33.0258 4108 [ F92E5F93BE572B512DA3C016B675EDE0 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 20:04:33.0258 4108 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok 20:04:33.0258 4108 [ A1C238B70EE4BB4A6E5F4155FFF895F3 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll 20:04:33.0258 4108 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll - ok 20:04:33.0273 4108 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll 20:04:33.0273 4108 C:\Windows\System32\wiaservc.dll - ok 20:04:33.0273 4108 [ 1C377DCD8EFBBCD8EC5CDAF2C3E9DF86 ] C:\Windows\SysWOW64\drivers\supersafer64.sys 20:04:33.0273 4108 C:\Windows\SysWOW64\drivers\supersafer64.sys - ok 20:04:33.0273 4108 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys 20:04:33.0273 4108 C:\Windows\System32\drivers\tcpipreg.sys - ok 20:04:33.0273 4108 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll 20:04:33.0273 4108 C:\Windows\System32\sysmain.dll - ok 20:04:33.0273 4108 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll 20:04:33.0273 4108 C:\Windows\System32\wiatrace.dll - ok 20:04:33.0289 4108 [ 163B05050FCD9635242EC5206C19A182 ] C:\Windows\System32\drivers\vmnetuserif.sys 20:04:33.0289 4108 C:\Windows\System32\drivers\vmnetuserif.sys - ok 20:04:33.0289 4108 [ F22098DBDD13C1221C274496B3E18DA7 ] C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe 20:04:33.0289 4108 C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe - ok 20:04:33.0289 4108 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll 20:04:33.0289 4108 C:\Windows\System32\wsdchngr.dll - ok 20:04:33.0289 4108 [ 500DD3817153F2DC0DD0B421B63EB4C6 ] C:\Windows\System32\hpwwiax4.dll 20:04:33.0289 4108 C:\Windows\System32\hpwwiax4.dll - ok 20:04:33.0289 4108 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll 20:04:33.0289 4108 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok 20:04:33.0289 4108 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll 20:04:33.0289 4108 C:\Windows\SysWOW64\shfolder.dll - ok 20:04:33.0305 4108 [ 94108996405446AE95F56606FD702A43 ] C:\Windows\SysWOW64\vmnat.exe 20:04:33.0305 4108 C:\Windows\SysWOW64\vmnat.exe - ok 20:04:33.0305 4108 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll 20:04:33.0305 4108 C:\Windows\SysWOW64\dnsapi.dll - ok 20:04:33.0305 4108 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll 20:04:33.0305 4108 C:\Windows\SysWOW64\mswsock.dll - ok 20:04:33.0305 4108 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll 20:04:33.0305 4108 C:\Windows\SysWOW64\dhcpcsvc.dll - ok 20:04:33.0305 4108 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll 20:04:33.0305 4108 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok 20:04:33.0305 4108 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL 20:04:33.0305 4108 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok 20:04:33.0320 4108 [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll 20:04:33.0320 4108 C:\Windows\System32\w32time.dll - ok 20:04:33.0320 4108 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll 20:04:33.0320 4108 C:\Windows\System32\wbem\WMIsvc.dll - ok 20:04:33.0320 4108 [ E61C910E2DDF4797C1B1F9239636E894 ] D:\VMWare Workstation\vstor2-ws60.sys 20:04:33.0320 4108 D:\VMWare Workstation\vstor2-ws60.sys - ok 20:04:33.0320 4108 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll 20:04:33.0320 4108 C:\Windows\System32\wbemcomn.dll - ok 20:04:33.0320 4108 [ 7961AAD46149CD5510DD405FA5DE1D3F ] C:\Windows\System32\vmictimeprovider.dll 20:04:33.0320 4108 C:\Windows\System32\vmictimeprovider.dll - ok 20:04:33.0336 4108 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll 20:04:33.0336 4108 C:\Windows\System32\wbem\WinMgmtR.dll - ok 20:04:33.0336 4108 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll 20:04:33.0336 4108 C:\Windows\System32\wbem\WmiDcPrv.dll - ok 20:04:33.0336 4108 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll 20:04:33.0336 4108 C:\Windows\System32\wbem\fastprox.dll - ok 20:04:33.0336 4108 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll 20:04:33.0336 4108 C:\Windows\System32\ntdsapi.dll - ok 20:04:33.0336 4108 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll 20:04:33.0336 4108 C:\Windows\System32\wbem\wbemprox.dll - ok 20:04:33.0336 4108 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe 20:04:33.0336 4108 C:\Windows\System32\taskhost.exe - ok 20:04:33.0351 4108 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll 20:04:33.0351 4108 C:\Windows\System32\aeevts.dll - ok 20:04:33.0351 4108 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll 20:04:33.0351 4108 C:\Windows\System32\vssapi.dll - ok 20:04:33.0351 4108 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll 20:04:33.0351 4108 C:\Windows\System32\vsstrace.dll - ok 20:04:33.0351 4108 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe 20:04:33.0351 4108 C:\Windows\System32\AtBroker.exe - ok 20:04:33.0351 4108 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll 20:04:33.0351 4108 C:\Windows\System32\mpr.dll - ok 20:04:33.0351 4108 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll 20:04:33.0351 4108 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok 20:04:33.0367 4108 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll 20:04:33.0367 4108 C:\Windows\System32\es.dll - ok 20:04:33.0367 4108 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe 20:04:33.0367 4108 C:\Windows\System32\dwm.exe - ok 20:04:33.0367 4108 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe 20:04:33.0367 4108 C:\Windows\System32\userinit.exe - ok 20:04:33.0367 4108 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 20:04:33.0367 4108 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok 20:04:33.0367 4108 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL 20:04:33.0367 4108 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok 20:04:33.0367 4108 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll 20:04:33.0367 4108 C:\Windows\System32\SensApi.dll - ok 20:04:33.0383 4108 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll 20:04:33.0383 4108 C:\Windows\System32\wer.dll - ok 20:04:33.0383 4108 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll 20:04:33.0383 4108 C:\Windows\System32\iphlpsvc.dll - ok 20:04:33.0383 4108 [ 7523E7D2AB0C49585C0C199264B2BD73 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 20:04:33.0383 4108 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok 20:04:33.0383 4108 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll 20:04:33.0383 4108 C:\Windows\System32\npmproxy.dll - ok 20:04:33.0383 4108 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll 20:04:33.0383 4108 C:\Windows\System32\sqmapi.dll - ok 20:04:33.0383 4108 [ 8BB18290BAA79BFB99475223E0585CA5 ] C:\Windows\SysWOW64\vmnetdhcp.exe 20:04:33.0383 4108 C:\Windows\SysWOW64\vmnetdhcp.exe - ok 20:04:33.0383 4108 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll 20:04:33.0383 4108 C:\Windows\System32\wdscore.dll - ok 20:04:33.0398 4108 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll 20:04:33.0398 4108 C:\Windows\System32\hnetcfg.dll - ok 20:04:33.0398 4108 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll 20:04:33.0398 4108 C:\Windows\System32\nci.dll - ok 20:04:33.0398 4108 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll 20:04:33.0398 4108 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok 20:04:33.0398 4108 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll 20:04:33.0398 4108 C:\Windows\SysWOW64\uxtheme.dll - ok 20:04:33.0398 4108 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll 20:04:33.0398 4108 C:\Windows\System32\esent.dll - ok 20:04:33.0398 4108 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe 20:04:33.0398 4108 C:\Windows\explorer.exe - ok 20:04:33.0414 4108 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll 20:04:33.0414 4108 C:\Windows\System32\HotStartUserAgent.dll - ok 20:04:33.0414 4108 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll 20:04:33.0414 4108 C:\Windows\System32\PlaySndSrv.dll - ok 20:04:33.0414 4108 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll 20:04:33.0414 4108 C:\Windows\System32\ExplorerFrame.dll - ok 20:04:33.0414 4108 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll 20:04:33.0414 4108 C:\Windows\System32\MsCtfMonitor.dll - ok 20:04:33.0414 4108 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll 20:04:33.0414 4108 C:\Windows\System32\msutb.dll - ok 20:04:33.0414 4108 [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll 20:04:33.0414 4108 C:\Windows\System32\dxva2.dll - ok 20:04:33.0414 4108 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll 20:04:33.0414 4108 C:\Windows\System32\sti.dll - ok 20:04:33.0429 4108 [ 06C6EF27F6236406013E00B547DE95F4 ] C:\Windows\System32\AcSignIcon.dll 20:04:33.0429 4108 C:\Windows\System32\AcSignIcon.dll - ok 20:04:33.0429 4108 [ 85ED13922DF97474AF9979CA456C6748 ] C:\Windows\System32\mfc100u.dll 20:04:33.0429 4108 C:\Windows\System32\mfc100u.dll - ok 20:04:33.0429 4108 [ 5E2F28A979A0CE9B43F1815A593617C5 ] C:\Windows\System32\mfc100enu.dll 20:04:33.0429 4108 C:\Windows\System32\mfc100enu.dll - ok 20:04:33.0429 4108 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll 20:04:33.0429 4108 C:\Windows\System32\EhStorShell.dll - ok 20:04:33.0429 4108 [ DBA8142819F06A4A401259011EF59530 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll 20:04:33.0429 4108 C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok 20:04:33.0429 4108 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll 20:04:33.0429 4108 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok 20:04:33.0445 4108 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll 20:04:33.0445 4108 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok 20:04:33.0445 4108 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll 20:04:33.0445 4108 C:\Windows\System32\cscui.dll - ok 20:04:33.0445 4108 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll 20:04:33.0445 4108 C:\Windows\System32\cscdll.dll - ok 20:04:33.0445 4108 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll 20:04:33.0445 4108 C:\Windows\System32\ntshrui.dll - ok 20:04:33.0445 4108 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll 20:04:33.0445 4108 C:\Windows\System32\IconCodecService.dll - ok 20:04:33.0445 4108 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll 20:04:33.0445 4108 C:\Windows\System32\dwmredir.dll - ok 20:04:33.0461 4108 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll 20:04:33.0461 4108 C:\Windows\System32\dwmcore.dll - ok 20:04:33.0461 4108 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll 20:04:33.0461 4108 C:\Windows\System32\d3d10_1.dll - ok 20:04:33.0461 4108 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll 20:04:33.0461 4108 C:\Windows\System32\d3d10_1core.dll - ok 20:04:33.0461 4108 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll 20:04:33.0461 4108 C:\Windows\System32\dxgi.dll - ok 20:04:33.0461 4108 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll 20:04:33.0461 4108 C:\Windows\System32\d3d11.dll - ok 20:04:33.0461 4108 [ 58F0F6D94BF8DB65F6D76CCCB14F272A ] C:\Windows\System32\nvwgf2umx.dll 20:04:33.0461 4108 C:\Windows\System32\nvwgf2umx.dll - ok 20:04:33.0476 4108 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll 20:04:33.0476 4108 C:\Windows\System32\NapiNSP.dll - ok 20:04:33.0476 4108 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll 20:04:33.0476 4108 C:\Windows\System32\pnrpnsp.dll - ok 20:04:33.0476 4108 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll 20:04:33.0476 4108 C:\Windows\System32\winrnr.dll - ok 20:04:33.0476 4108 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll 20:04:33.0476 4108 C:\Windows\System32\msxml3.dll - ok 20:04:33.0476 4108 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE 20:04:33.0476 4108 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok 20:04:33.0476 4108 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll 20:04:33.0476 4108 C:\Windows\System32\p2pcollab.dll - ok 20:04:33.0492 4108 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL 20:04:33.0492 4108 C:\Windows\System32\QAGENTRT.DLL - ok 20:04:33.0492 4108 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll 20:04:33.0492 4108 C:\Windows\System32\fveui.dll - ok 20:04:33.0492 4108 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll 20:04:33.0492 4108 C:\Windows\System32\tcpipcfg.dll - ok 20:04:33.0492 4108 [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll 20:04:33.0492 4108 C:\Windows\System32\lltdres.dll - ok 20:04:33.0492 4108 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll 20:04:33.0492 4108 C:\Windows\System32\rascfg.dll - ok 20:04:33.0492 4108 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll 20:04:33.0492 4108 C:\Windows\System32\sstpsvc.dll - ok 20:04:33.0507 4108 [ 88D9ED9DFFF408EDADF6178E7D9C7E1C ] D:\VMWare Workstation\vmnetBridge.dll 20:04:33.0507 4108 D:\VMWare Workstation\vmnetBridge.dll - ok 20:04:33.0507 4108 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll 20:04:33.0507 4108 C:\Windows\System32\ndiscapCfg.dll - ok 20:04:33.0507 4108 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll 20:04:33.0507 4108 C:\Windows\System32\mprapi.dll - ok 20:04:33.0507 4108 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll 20:04:33.0507 4108 C:\Windows\System32\mprmsg.dll - ok 20:04:33.0507 4108 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:04:33.0507 4108 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok 20:04:33.0523 4108 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll 20:04:33.0523 4108 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok 20:04:33.0523 4108 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll 20:04:33.0523 4108 C:\Windows\SysWOW64\imagehlp.dll - ok 20:04:33.0523 4108 [ B04ABC47319CB3C808A3A5525F2F3F2F ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe 20:04:33.0523 4108 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok 20:04:33.0523 4108 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll 20:04:33.0523 4108 C:\Windows\SysWOW64\msi.dll - ok 20:04:33.0523 4108 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll 20:04:33.0523 4108 C:\Windows\SysWOW64\msvcp100.dll - ok 20:04:33.0523 4108 [ 5ABB3F36AF17007F33FA275E96A2C95E ] C:\Windows\SysWOW64\wininet.dll 20:04:33.0523 4108 C:\Windows\SysWOW64\wininet.dll - ok 20:04:33.0539 4108 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 20:04:33.0539 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok 20:04:33.0539 4108 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 20:04:33.0539 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok 20:04:33.0539 4108 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 20:04:33.0539 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok 20:04:33.0539 4108 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 20:04:33.0539 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok 20:04:33.0539 4108 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 20:04:33.0539 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok 20:04:33.0554 4108 [ F59A16A9418044C1D505C53DA370B099 ] C:\Windows\SysWOW64\iertutil.dll 20:04:33.0554 4108 C:\Windows\SysWOW64\iertutil.dll - ok 20:04:33.0554 4108 [ 0EDAACBC028C1B50A57899E64EE60E9B ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll 20:04:33.0554 4108 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok 20:04:33.0554 4108 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll 20:04:33.0554 4108 C:\Windows\SysWOW64\cscapi.dll - ok 20:04:33.0554 4108 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll 20:04:33.0554 4108 C:\Windows\SysWOW64\dbghelp.dll - ok 20:04:33.0554 4108 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe 20:04:33.0554 4108 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok 20:04:33.0570 4108 [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe 20:04:33.0570 4108 C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok 20:04:33.0570 4108 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll 20:04:33.0570 4108 C:\Windows\SysWOW64\mstask.dll - ok 20:04:33.0570 4108 [ 1290853C52D8BD47683FED043D79BC21 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll 20:04:33.0570 4108 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok 20:04:33.0570 4108 [ 7A468BC721C1D34E60389D3F2F87BBEA ] C:\Windows\SysWOW64\mshtml.dll 20:04:33.0570 4108 C:\Windows\SysWOW64\mshtml.dll - ok 20:04:33.0570 4108 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 20:04:33.0570 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok 20:04:33.0570 4108 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 20:04:33.0570 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok 20:04:33.0585 4108 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll 20:04:33.0585 4108 C:\Windows\SysWOW64\wship6.dll - ok 20:04:33.0585 4108 [ AA6D2D76D9E629F7E47F7EA6F4DE7E66 ] C:\Program Files\Internet Explorer\sqmapi.dll 20:04:33.0585 4108 C:\Program Files\Internet Explorer\sqmapi.dll - ok 20:04:33.0585 4108 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll 20:04:33.0585 4108 C:\Windows\System32\wlaninst.dll - ok 20:04:33.0585 4108 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll 20:04:33.0585 4108 C:\Windows\System32\wwaninst.dll - ok 20:04:33.0585 4108 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll 20:04:33.0585 4108 C:\Windows\System32\spfileq.dll - ok 20:04:33.0601 4108 [ 65C95886E1B17001ADDF163AC18C5525 ] C:\Windows\SysWOW64\urlmon.dll 20:04:33.0601 4108 C:\Windows\SysWOW64\urlmon.dll - ok 20:04:33.0601 4108 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll 20:04:33.0601 4108 C:\Windows\SysWOW64\taskschd.dll - ok 20:04:33.0601 4108 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll 20:04:33.0601 4108 C:\Windows\SysWOW64\ncrypt.dll - ok 20:04:33.0601 4108 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll 20:04:33.0601 4108 C:\Windows\SysWOW64\bcrypt.dll - ok 20:04:33.0617 4108 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll 20:04:33.0617 4108 C:\Windows\SysWOW64\bcryptprimitives.dll - ok 20:04:33.0617 4108 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll 20:04:33.0617 4108 C:\Windows\SysWOW64\gpapi.dll - ok 20:04:33.0617 4108 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll 20:04:33.0617 4108 C:\Windows\SysWOW64\cryptnet.dll - ok 20:04:33.0617 4108 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll 20:04:33.0617 4108 C:\Windows\SysWOW64\credssp.dll - ok 20:04:33.0632 4108 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll 20:04:33.0632 4108 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok 20:04:33.0632 4108 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL 20:04:33.0632 4108 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok 20:04:33.0632 4108 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll 20:04:33.0632 4108 C:\Windows\SysWOW64\rasadhlp.dll - ok 20:04:33.0632 4108 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL 20:04:33.0632 4108 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok 20:04:33.0632 4108 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll 20:04:33.0632 4108 C:\Windows\SysWOW64\xmllite.dll - ok 20:04:33.0632 4108 [ A1FA08852EDF01BB92D4BD87E8F75685 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll 20:04:33.0632 4108 C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok 20:04:33.0648 4108 [ 59893040D368399B8420D7089A560642 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 20:04:33.0648 4108 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok 20:04:33.0648 4108 [ 7F4E9F6A38F43B66CF6F1C663E293E74 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll 20:04:33.0648 4108 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok 20:04:33.0648 4108 [ 3F0AA87E945516B370A76FF398716DBF ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll 20:04:33.0648 4108 C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU64.dll - ok 20:04:33.0648 4108 [ 255EAB0CFA32DE75E1622C2F6D4D1FFE ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll 20:04:33.0648 4108 C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok 20:04:33.0663 4108 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe 20:04:33.0663 4108 C:\Windows\System32\wermgr.exe - ok 20:04:33.0663 4108 [ 26D652191B51854E66084DDAEE69EC65 ] C:\Windows\System32\verifier.dll 20:04:33.0663 4108 C:\Windows\System32\verifier.dll - ok 20:04:33.0663 4108 [ 9D2A2369AB4B08A4905FE72DB104498F ] C:\Windows\System32\appinfo.dll 20:04:33.0663 4108 C:\Windows\System32\appinfo.dll - ok 20:04:33.0663 4108 [ 08457D8F8149757C70CEA59C71EC5D27 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 20:04:33.0663 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok 20:04:33.0663 4108 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll 20:04:33.0663 4108 C:\Windows\System32\wdi.dll - ok 20:04:33.0663 4108 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll 20:04:33.0663 4108 C:\Windows\System32\wpdbusenum.dll - ok 20:04:33.0679 4108 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll 20:04:33.0679 4108 C:\Windows\System32\diagperf.dll - ok 20:04:33.0679 4108 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll 20:04:33.0679 4108 C:\Windows\System32\Apphlpdm.dll - ok 20:04:33.0679 4108 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll 20:04:33.0679 4108 C:\Windows\System32\perftrack.dll - ok 20:04:33.0679 4108 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll 20:04:33.0679 4108 C:\Windows\System32\pnpts.dll - ok 20:04:33.0679 4108 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll 20:04:33.0679 4108 C:\Windows\System32\comres.dll - ok 20:04:33.0679 4108 [ FF365358A01E77197C225521DD4B7F35 ] C:\Windows\System32\pots.dll 20:04:33.0679 4108 C:\Windows\System32\pots.dll - ok 20:04:33.0695 4108 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll 20:04:33.0695 4108 C:\Windows\System32\PortableDeviceApi.dll - ok 20:04:33.0695 4108 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll 20:04:33.0695 4108 C:\Windows\System32\tdh.dll - ok 20:04:33.0695 4108 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll 20:04:33.0695 4108 C:\Windows\System32\wbem\wbemcore.dll - ok 20:04:33.0695 4108 [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll 20:04:33.0695 4108 C:\Windows\System32\lpksetupproxyserv.dll - ok 20:04:33.0695 4108 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll 20:04:33.0695 4108 C:\Windows\SysWOW64\sxs.dll - ok 20:04:33.0695 4108 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll 20:04:33.0695 4108 C:\Windows\System32\radardt.dll - ok 20:04:33.0710 4108 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll 20:04:33.0710 4108 C:\Windows\System32\wbem\esscli.dll - ok 20:04:33.0710 4108 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll 20:04:33.0710 4108 C:\Windows\System32\PortableDeviceConnectApi.dll - ok 20:04:33.0710 4108 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll 20:04:33.0710 4108 C:\Windows\System32\wbem\wbemsvc.dll - ok 20:04:33.0710 4108 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll 20:04:33.0710 4108 C:\Windows\System32\wbem\wmiutils.dll - ok 20:04:33.0710 4108 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys 20:04:33.0710 4108 C:\Windows\System32\drivers\WUDFRd.sys - ok 20:04:33.0710 4108 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll 20:04:33.0710 4108 C:\Windows\System32\wbem\repdrvfs.dll - ok 20:04:33.0726 4108 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll 20:04:33.0726 4108 C:\Windows\System32\wdiasqmmodule.dll - ok 20:04:33.0726 4108 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys 20:04:33.0726 4108 C:\Windows\System32\drivers\WUDFPf.sys - ok 20:04:33.0726 4108 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll 20:04:33.0726 4108 C:\Windows\System32\WUDFSvc.dll - ok 20:04:33.0726 4108 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe 20:04:33.0726 4108 C:\Windows\System32\runonce.exe - ok 20:04:33.0726 4108 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll 20:04:33.0726 4108 C:\Windows\System32\WUDFPlatform.dll - ok 20:04:33.0726 4108 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll 20:04:33.0726 4108 C:\Windows\System32\dimsjob.dll - ok 20:04:33.0741 4108 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll 20:04:33.0741 4108 C:\Windows\System32\FXSRESM.dll - ok 20:04:33.0741 4108 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll 20:04:33.0741 4108 C:\Windows\System32\pautoenr.dll - ok 20:04:33.0741 4108 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll 20:04:33.0741 4108 C:\Windows\System32\certcli.dll - ok 20:04:33.0741 4108 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll 20:04:33.0741 4108 C:\Windows\System32\CertEnroll.dll - ok 20:04:33.0741 4108 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe 20:04:33.0741 4108 C:\Windows\SysWOW64\runonce.exe - ok 20:04:33.0741 4108 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe 20:04:33.0741 4108 C:\Windows\System32\WUDFHost.exe - ok 20:04:33.0741 4108 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe 20:04:33.0741 4108 C:\Windows\servicing\TrustedInstaller.exe - ok 20:04:33.0757 4108 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll 20:04:33.0757 4108 C:\Windows\System32\wbem\WmiPrvSD.dll - ok 20:04:33.0757 4108 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll 20:04:33.0757 4108 C:\Windows\System32\ncobjapi.dll - ok 20:04:33.0757 4108 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll 20:04:33.0757 4108 C:\Windows\System32\wbem\wbemess.dll - ok 20:04:33.0757 4108 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll 20:04:33.0757 4108 C:\Windows\SysWOW64\propsys.dll - ok 20:04:33.0757 4108 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe 20:04:33.0757 4108 C:\Windows\SysWOW64\cmd.exe - ok 20:04:33.0773 4108 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll 20:04:33.0773 4108 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok 20:04:33.0773 4108 [ 95772FEED0A16D7E6E94DEE43F535330 ] C:\Windows\System32\vnetlib64.dll 20:04:33.0773 4108 C:\Windows\System32\vnetlib64.dll - ok 20:04:33.0773 4108 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll 20:04:33.0773 4108 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok 20:04:33.0773 4108 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll 20:04:33.0773 4108 C:\Windows\System32\WUDFx.dll - ok 20:04:33.0773 4108 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll 20:04:33.0773 4108 C:\Windows\System32\newdev.dll - ok 20:04:33.0773 4108 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll 20:04:33.0773 4108 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok 20:04:33.0773 4108 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL 20:04:33.0773 4108 C:\Windows\System32\WMVCORE.DLL - ok 20:04:33.0788 4108 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL 20:04:33.0788 4108 C:\Windows\System32\WMASF.DLL - ok 20:04:33.0788 4108 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll 20:04:33.0788 4108 C:\Windows\System32\PortableDeviceClassExtension.dll - ok 20:04:33.0788 4108 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll 20:04:33.0788 4108 C:\Windows\System32\PortableDeviceTypes.dll - ok 20:04:33.0788 4108 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll 20:04:33.0788 4108 C:\Windows\SysWOW64\winbrand.dll - ok 20:04:33.0788 4108 [ D5E5A86F49ACC11768D8339094C3AFD8 ] C:\Windows\SysWOW64\ieframe.dll 20:04:33.0788 4108 C:\Windows\SysWOW64\ieframe.dll - ok 20:04:33.0788 4108 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 20:04:33.0788 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok 20:04:33.0804 4108 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 20:04:33.0804 4108 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok 20:04:33.0804 4108 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe 20:04:33.0804 4108 C:\Windows\System32\wbem\WmiPrvSE.exe - ok 20:04:33.0804 4108 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll 20:04:33.0804 4108 C:\Windows\System32\wbem\NCProv.dll - ok 20:04:33.0804 4108 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll 20:04:33.0804 4108 C:\Windows\System32\aelupsvc.dll - ok 20:04:33.0804 4108 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll 20:04:33.0804 4108 C:\Windows\System32\wbem\cimwin32.dll - ok 20:04:33.0804 4108 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll 20:04:33.0804 4108 C:\Windows\System32\framedynos.dll - ok 20:04:33.0819 4108 [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll 20:04:33.0819 4108 C:\Windows\SysWOW64\shdocvw.dll - ok 20:04:33.0819 4108 [ 44FD8D339E505DB83737D8CCF66071D3 ] C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe 20:04:33.0819 4108 C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe - ok 20:04:33.0819 4108 [ EFF5FAFFCDC6C1C7E793E2A4390FF7CC ] C:\Windows\System32\ncs2instutility.dll 20:04:33.0819 4108 C:\Windows\System32\ncs2instutility.dll - ok 20:04:33.0819 4108 [ 8B3AD4971ECF89620F72B1C3A89485D8 ] C:\Program Files\Intel\NCS2\WMIProv\NCS2Team.dll 20:04:33.0819 4108 C:\Program Files\Intel\NCS2\WMIProv\NCS2Team.dll - ok 20:04:33.0819 4108 [ 07908734A8D542F40FB750DC3611A2C1 ] C:\Program Files\Intel\NCS2\Agent\teamagent.dll 20:04:33.0819 4108 C:\Program Files\Intel\NCS2\Agent\teamagent.dll - ok 20:04:33.0819 4108 [ CFDC6288D2EE251D2FB11D7A4471C580 ] C:\Windows\System32\ncscolib.dll 20:04:33.0819 4108 C:\Windows\System32\ncscolib.dll - ok 20:04:33.0819 4108 [ BE01E4E2CE26ECD16F300C51C77647AC ] C:\Program Files\Intel\NCS2\Agent\coreagnt.dll 20:04:33.0819 4108 C:\Program Files\Intel\NCS2\Agent\coreagnt.dll - ok 20:04:33.0835 4108 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Hendrik\AppData\Local\Temp\DFC28DE4-1718-4DC1-BC2A-1C5BC1E3B286.exe 20:04:33.0835 4108 C:\Users\Hendrik\AppData\Local\Temp\DFC28DE4-1718-4DC1-BC2A-1C5BC1E3B286.exe - ok 20:04:33.0835 4108 [ C7AD65673BF4F92E0697743AFF898826 ] C:\Program Files\Intel\NCS2\Agent\Rule.dll 20:04:33.0835 4108 C:\Program Files\Intel\NCS2\Agent\Rule.dll - ok 20:04:33.0835 4108 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll 20:04:33.0835 4108 C:\Windows\SysWOW64\sfc.dll - ok 20:04:33.0835 4108 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll 20:04:33.0835 4108 C:\Windows\SysWOW64\sfc_os.dll - ok 20:04:33.0835 4108 [ 73A40E29F61E5D142C8F42B28A351190 ] C:\Windows\System32\drivers\iqvw64e.sys 20:04:33.0835 4108 C:\Windows\System32\drivers\iqvw64e.sys - ok 20:04:33.0851 4108 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL 20:04:33.0851 4108 C:\Windows\System32\wmploc.DLL - ok 20:04:33.0851 4108 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll 20:04:33.0851 4108 C:\Windows\System32\themeui.dll - ok 20:04:33.0851 4108 [ 42758AF68D3C4912C8D8A18088AD2555 ] C:\Windows\System32\ie4uinit.exe 20:04:33.0851 4108 C:\Windows\System32\ie4uinit.exe - ok 20:04:33.0851 4108 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl 20:04:33.0851 4108 C:\Windows\System32\timedate.cpl - ok 20:04:33.0851 4108 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll 20:04:33.0851 4108 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok 20:04:33.0851 4108 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll 20:04:33.0851 4108 C:\Windows\System32\srclient.dll - ok 20:04:33.0866 4108 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll 20:04:33.0866 4108 C:\Windows\System32\spp.dll - ok 20:04:33.0866 4108 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll 20:04:33.0866 4108 C:\Windows\System32\sxsstore.dll - ok 20:04:33.0866 4108 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll 20:04:33.0866 4108 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok 20:04:33.0866 4108 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll 20:04:33.0866 4108 C:\Windows\System32\actxprxy.dll - ok 20:04:33.0866 4108 [ 7B71300BD0E9E0994A302A3E351AD311 ] C:\Program Files\Intel\NCS2\Agent\VlanAgent.dll 20:04:33.0866 4108 C:\Program Files\Intel\NCS2\Agent\VlanAgent.dll - ok 20:04:33.0866 4108 [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll 20:04:33.0866 4108 C:\Windows\System32\shdocvw.dll - ok 20:04:33.0882 4108 [ 0464F693C59CC02CF261DE7E4D33E5B7 ] C:\Windows\System32\wbem\WmiPerfClass.dll 20:04:33.0882 4108 C:\Windows\System32\wbem\WmiPerfClass.dll - ok 20:04:33.0882 4108 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll 20:04:33.0882 4108 C:\Windows\System32\linkinfo.dll - ok 20:04:33.0882 4108 [ CEA304830B4770BDA3572B87D0841848 ] C:\Program Files\Internet Explorer\iexplore.exe 20:04:33.0882 4108 C:\Program Files\Internet Explorer\iexplore.exe - ok 20:04:33.0882 4108 [ 458F4590F80563EB2A0A72709BFC2BD9 ] C:\Windows\System32\mspaint.exe 20:04:33.0882 4108 C:\Windows\System32\mspaint.exe - ok 20:04:33.0882 4108 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe 20:04:33.0882 4108 C:\Windows\System32\calc.exe - ok 20:04:33.0882 4108 [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe 20:04:33.0882 4108 C:\Windows\System32\notepad.exe - ok 20:04:33.0882 4108 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll 20:04:33.0882 4108 C:\Windows\System32\msiltcfg.dll - ok 20:04:33.0897 4108 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll 20:04:33.0897 4108 C:\Windows\System32\msi.dll - ok 20:04:33.0897 4108 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe 20:04:33.0897 4108 C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe - ok 20:04:33.0897 4108 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe 20:04:33.0897 4108 C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\xlicons.exe - ok 20:04:33.0897 4108 [ CF0EAB8F01B8E4835E8596F7FB6627DC ] S:\World of Warcraft\Wow-64.exe 20:04:33.0897 4108 S:\World of Warcraft\Wow-64.exe - ok 20:04:33.0897 4108 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll 20:04:33.0897 4108 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok 20:04:33.0897 4108 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll 20:04:33.0897 4108 C:\Windows\System32\msftedit.dll - ok 20:04:33.0913 4108 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll 20:04:33.0913 4108 C:\Windows\System32\msls31.dll - ok 20:04:33.0913 4108 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll 20:04:33.0913 4108 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok 20:04:33.0913 4108 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll 20:04:33.0913 4108 C:\Windows\System32\gameux.dll - ok 20:04:33.0913 4108 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll 20:04:33.0913 4108 C:\Windows\System32\DeviceCenter.dll - ok 20:04:33.0913 4108 [ 023FAC742820932580B68DB91E0D7B6A ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 20:04:33.0913 4108 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok 20:04:33.0913 4108 [ E1DCEE9E3EC0522DF24397BE1A64E449 ] C:\Windows\System32\dfshim.dll 20:04:33.0913 4108 C:\Windows\System32\dfshim.dll - ok 20:04:33.0929 4108 [ 20437681A7678D440BBEE38C0453B852 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll 20:04:33.0929 4108 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll - ok 20:04:33.0929 4108 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll 20:04:33.0929 4108 C:\Windows\System32\dsound.dll - ok 20:04:33.0929 4108 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll 20:04:33.0929 4108 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok 20:04:33.0929 4108 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll 20:04:33.0929 4108 C:\Windows\System32\opengl32.dll - ok 20:04:33.0929 4108 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll 20:04:33.0929 4108 C:\Windows\System32\ddraw.dll - ok 20:04:33.0929 4108 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll 20:04:33.0929 4108 C:\Windows\System32\glu32.dll - ok 20:04:33.0929 4108 [ B53C24F5BCC9A67CCAE683118EDBA29B ] C:\Program Files\Logitech\SetPointP\SetPoint.exe 20:04:33.0929 4108 C:\Program Files\Logitech\SetPointP\SetPoint.exe - ok 20:04:33.0944 4108 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll 20:04:33.0944 4108 C:\Windows\System32\dciman32.dll - ok 20:04:33.0944 4108 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll 20:04:33.0944 4108 C:\Windows\servicing\CbsApi.dll - ok 20:04:33.0944 4108 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll 20:04:33.0944 4108 C:\Windows\System32\msvcr100_clr0400.dll - ok 20:04:33.0944 4108 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll 20:04:33.0944 4108 C:\Windows\System32\oledlg.dll - ok 20:04:33.0944 4108 [ E986D1068AEF099CA3BE2AEAB4C8D643 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe 20:04:33.0944 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok 20:04:33.0944 4108 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 20:04:33.0944 4108 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok 20:04:33.0944 4108 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll 20:04:33.0944 4108 C:\Windows\System32\RtkCfg64.dll - ok 20:04:33.0960 4108 [ 72860972F8196EBB3C896F53D2B95470 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe 20:04:33.0960 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe - ok 20:04:33.0960 4108 [ 63E7360560644692AEAE515AF834CF83 ] C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe 20:04:33.0960 4108 C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe - ok 20:04:33.0960 4108 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll 20:04:33.0960 4108 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok 20:04:33.0960 4108 [ 73944FA7AB935D8BB7B56CE1D4721860 ] C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\u32Comm.dll 20:04:33.0960 4108 C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\u32Comm.dll - ok 20:04:33.0960 4108 [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe 20:04:33.0960 4108 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok 20:04:33.0960 4108 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll 20:04:33.0960 4108 C:\Windows\SysWOW64\comdlg32.dll - ok 20:04:33.0975 4108 [ 7F2691FD961C9A704DA221745CCE6295 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe 20:04:33.0975 4108 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok 20:04:33.0975 4108 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll 20:04:33.0975 4108 C:\Windows\SysWOW64\sti.dll - ok 20:04:33.0975 4108 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll 20:04:33.0975 4108 C:\Windows\SysWOW64\wiatrace.dll - ok 20:04:33.0975 4108 [ 8589642CE8603B6111F11FD38496F6FC ] C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\DetMethod.dll 20:04:33.0975 4108 C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\DetMethod.dll - ok 20:04:33.0975 4108 [ 9CC775039F97621927B06352F0B7346B ] C:\Windows\System32\PortableDeviceWiaCompat.dll 20:04:33.0975 4108 C:\Windows\System32\PortableDeviceWiaCompat.dll - ok 20:04:33.0975 4108 [ F9AC06AF509168D081482B279CD755F0 ] C:\Program Files\Logitech\SetPointP\khalwrapper.dll 20:04:33.0975 4108 C:\Program Files\Logitech\SetPointP\khalwrapper.dll - ok 20:04:33.0991 4108 [ 8008A696DFC6798D01FF32524EF854CB ] C:\Program Files\Logitech\SetPointP\KemUtil.dll 20:04:33.0991 4108 C:\Program Files\Logitech\SetPointP\KemUtil.dll - ok 20:04:33.0991 4108 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll 20:04:33.0991 4108 C:\Windows\SysWOW64\mfc42.dll - ok 20:04:33.0991 4108 [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll 20:04:33.0991 4108 C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok 20:04:33.0991 4108 [ 36FDB8C775B1F7D2069B8C8D0CD09084 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe 20:04:33.0991 4108 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok 20:04:33.0991 4108 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll 20:04:33.0991 4108 C:\Windows\SysWOW64\odbc32.dll - ok 20:04:33.0991 4108 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll 20:04:33.0991 4108 C:\Windows\SysWOW64\msvcp60.dll - ok 20:04:34.0007 4108 [ C6235EF491612EF3BFAFACEC7FC0C254 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe 20:04:34.0007 4108 C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe - ok 20:04:34.0007 4108 [ B810BFFBB9A3985145A9EBC96266C958 ] C:\Program Files\Logitech\SetPointP\KemXML.dll 20:04:34.0007 4108 C:\Program Files\Logitech\SetPointP\KemXML.dll - ok 20:04:34.0007 4108 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\32809118.sys 20:04:34.0007 4108 C:\Windows\System32\drivers\32809118.sys - ok 20:04:34.0007 4108 [ 19CBB3A3F42E4ADB64EE508564824051 ] C:\Program Files\Logitech\SetPointP\kemutb.dll 20:04:34.0007 4108 C:\Program Files\Logitech\SetPointP\kemutb.dll - ok 20:04:34.0007 4108 [ AD88BC833CAB0A3AC68D8A604D797E9A ] C:\Program Files\Logitech\SetPointP\KemWnd.dll 20:04:34.0007 4108 C:\Program Files\Logitech\SetPointP\KemWnd.dll - ok 20:04:34.0022 4108 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll 20:04:34.0022 4108 C:\Windows\System32\stobject.dll - ok 20:04:34.0022 4108 [ 60D409B1A02529C9A6EEFD868BDFEE95 ] C:\Program Files\Logitech\SetPointP\SetPointCOM.dll 20:04:34.0022 4108 C:\Program Files\Logitech\SetPointP\SetPointCOM.dll - ok 20:04:34.0022 4108 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll 20:04:34.0022 4108 C:\Windows\System32\HelpPaneProxy.dll - ok 20:04:34.0022 4108 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll 20:04:34.0022 4108 C:\Windows\SysWOW64\shsvcs.dll - ok 20:04:34.0022 4108 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll 20:04:34.0022 4108 C:\Windows\System32\batmeter.dll - ok 20:04:34.0022 4108 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll 20:04:34.0022 4108 C:\Windows\SysWOW64\slc.dll - ok 20:04:34.0022 4108 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll 20:04:34.0022 4108 C:\Windows\SysWOW64\odbcint.dll - ok 20:04:34.0038 4108 [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL 20:04:34.0038 4108 C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok 20:04:34.0038 4108 [ 0C7E1CB7457944298F63C4759E657E08 ] C:\Windows\System32\DreamScene.dll 20:04:34.0038 4108 C:\Windows\System32\DreamScene.dll - ok 20:04:34.0038 4108 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll 20:04:34.0038 4108 C:\Windows\SysWOW64\msiltcfg.dll - ok 20:04:34.0038 4108 [ 8C004F92FB604B10497A465A1B3F153B ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll 20:04:34.0038 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll - ok 20:04:34.0038 4108 [ 5352704918DC7F1143AC476946B68CAC ] C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor_Res.dll 20:04:34.0038 4108 C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor_Res.dll - ok 20:04:34.0038 4108 [ B6C9109A0EC582A21402B6CC2FC02D89 ] C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll 20:04:34.0038 4108 C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll - ok 20:04:34.0053 4108 [ CED48CA71D6EFC0C302680C4DFE6038E ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc 20:04:34.0053 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc - ok 20:04:34.0053 4108 [ 3DDA39A3E40CF44621CAD76B146F841D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll 20:04:34.0053 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll - ok 20:04:34.0053 4108 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll 20:04:34.0053 4108 C:\Windows\System32\d3d9.dll - ok 20:04:34.0053 4108 [ D2A18A49B8A5E13C0AFBF344DB47FD24 ] C:\Program Files\Logitech\SetPointP\WebBrowserSupport.dll 20:04:34.0053 4108 C:\Program Files\Logitech\SetPointP\WebBrowserSupport.dll - ok 20:04:34.0053 4108 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll 20:04:34.0053 4108 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok 20:04:34.0053 4108 [ C619430B484E85187B6C7E8CA0BD2635 ] C:\Program Files\Logitech\SetPointP\Macros\MacroAppSwitch.dll 20:04:34.0053 4108 C:\Program Files\Logitech\SetPointP\Macros\MacroAppSwitch.dll - ok 20:04:34.0069 4108 [ 047BC099DADCDAF19EAC25B79A3B088A ] C:\Program Files\Logitech\SetPointP\Macros\MacroMedia.dll 20:04:34.0069 4108 C:\Program Files\Logitech\SetPointP\Macros\MacroMedia.dll - ok 20:04:34.0069 4108 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll 20:04:34.0069 4108 C:\Windows\System32\d3d8thk.dll - ok 20:04:34.0069 4108 [ 4816280C198CDE9C1F7F5E28BBB7C0FB ] C:\Program Files\Logitech\SetPointP\Macros\MacroEmail.dll 20:04:34.0069 4108 C:\Program Files\Logitech\SetPointP\Macros\MacroEmail.dll - ok 20:04:34.0069 4108 [ 1A6DB2F89A7492D45EE4E5FAC5CEE4FD ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALAPI.dll 20:04:34.0069 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALAPI.dll - ok 20:04:34.0069 4108 [ 5776257DD72A07CE18239BA6129CBB01 ] C:\Program Files\Logitech\SetPointP\KemMon.dll 20:04:34.0069 4108 C:\Program Files\Logitech\SetPointP\KemMon.dll - ok 20:04:34.0069 4108 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll 20:04:34.0069 4108 C:\Windows\System32\slwga.dll - ok 20:04:34.0085 4108 [ 5EFB30F030B913DAAE7218B5815EBE54 ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll 20:04:34.0085 4108 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok 20:04:34.0085 4108 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll 20:04:34.0085 4108 C:\Windows\System32\prnfldr.dll - ok 20:04:34.0085 4108 [ F273D5F339F528A7B0C000F1AB82EA34 ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe 20:04:34.0085 4108 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok 20:04:34.0085 4108 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll 20:04:34.0085 4108 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok 20:04:34.0085 4108 [ 56D1D4BA99D1A18CDFE35D65F1752B52 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe 20:04:34.0085 4108 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok 20:04:34.0085 4108 [ 81800928E0F713DF31F3393CC26F4013 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe 20:04:34.0085 4108 C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe - ok 20:04:34.0100 4108 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe 20:04:34.0100 4108 C:\Windows\System32\rundll32.exe - ok 20:04:34.0100 4108 [ 52C66C4AA985D962855056C5D9C644BB ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll 20:04:34.0100 4108 C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll - ok 20:04:34.0100 4108 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll 20:04:34.0100 4108 C:\Windows\System32\DXP.dll - ok 20:04:34.0100 4108 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll 20:04:34.0100 4108 C:\Windows\System32\Syncreg.dll - ok 20:04:34.0100 4108 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll 20:04:34.0100 4108 C:\Windows\ehome\ehSSO.dll - ok 20:04:34.0100 4108 [ 9CECDDA4EDD0D37499B862DC14C1B65C ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll 20:04:34.0100 4108 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok 20:04:34.0116 4108 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll 20:04:34.0116 4108 C:\Windows\System32\netshell.dll - ok 20:04:34.0116 4108 [ 9076F0BDDBD999A1027B99764EC46DF9 ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe 20:04:34.0116 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe - ok 20:04:34.0116 4108 [ 6063D3802397125CFE5A16A1CCF03021 ] C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.dll 20:04:34.0116 4108 C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.dll - ok 20:04:34.0116 4108 [ 7C2DB8DAA8403C8807AA8F524804F9CB ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALITCH.dll 20:04:34.0116 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALITCH.dll - ok 20:04:34.0116 4108 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll 20:04:34.0116 4108 C:\Windows\System32\AltTab.dll - ok 20:04:34.0116 4108 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll 20:04:34.0116 4108 C:\Windows\System32\ActionCenter.dll - ok 20:04:34.0131 4108 [ A1B824342C87A6D18FEB291F0E754D35 ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMW.dll 20:04:34.0131 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMW.dll - ok 20:04:34.0131 4108 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll 20:04:34.0131 4108 C:\Windows\System32\pnidui.dll - ok 20:04:34.0131 4108 [ 11868EDEDECEFF6B42587E486D309532 ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALHPP.dll 20:04:34.0131 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALHPP.dll - ok 20:04:34.0131 4108 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL 20:04:34.0131 4108 C:\Windows\System32\QUTIL.DLL - ok 20:04:34.0131 4108 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll 20:04:34.0131 4108 C:\Windows\System32\WPDShServiceObj.dll - ok 20:04:34.0147 4108 [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll 20:04:34.0147 4108 C:\Windows\System32\cscobj.dll - ok 20:04:34.0147 4108 [ 1DED79E792B6C5928D7E73457C0B4ACD ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMOU.dll 20:04:34.0147 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMOU.dll - ok 20:04:34.0147 4108 [ FAA19FAAF4CD974465D8FC05EF9FAE11 ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALHID.dll 20:04:34.0147 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALHID.dll - ok 20:04:34.0147 4108 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll 20:04:34.0147 4108 C:\Windows\SysWOW64\cabinet.dll - ok 20:04:34.0147 4108 [ F70A554333BCFAF67D20F1EC4D6A44B6 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll 20:04:34.0147 4108 C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll - ok 20:04:34.0147 4108 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll 20:04:34.0147 4108 C:\Windows\System32\srchadmin.dll - ok 20:04:34.0163 4108 [ AAD88B9ED362FA6ED48EE5AFD3A6869A ] C:\Program Files\Common Files\LogiShrd\KHAL3\KHALUSB.dll 20:04:34.0163 4108 C:\Program Files\Common Files\LogiShrd\KHAL3\KHALUSB.dll - ok 20:04:34.0163 4108 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll 20:04:34.0163 4108 C:\Windows\SysWOW64\riched20.dll - ok 20:04:34.0163 4108 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl 20:04:34.0163 4108 C:\Windows\System32\bthprops.cpl - ok 20:04:34.0163 4108 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll 20:04:34.0163 4108 C:\Windows\SysWOW64\ExplorerFrame.dll - ok 20:04:34.0163 4108 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll 20:04:34.0163 4108 C:\Windows\SysWOW64\duser.dll - ok 20:04:34.0178 4108 [ 7F4F74880E0B586EB7A9E225C34B1296 ] C:\Windows\System32\ieframe.dll 20:04:34.0178 4108 C:\Windows\System32\ieframe.dll - ok 20:04:34.0178 4108 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll 20:04:34.0178 4108 C:\Windows\SysWOW64\dui70.dll - ok 20:04:34.0178 4108 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll 20:04:34.0178 4108 C:\Windows\SysWOW64\netprofm.dll - ok 20:04:34.0178 4108 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll 20:04:34.0178 4108 C:\Windows\SysWOW64\nlaapi.dll - ok 20:04:34.0178 4108 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll 20:04:34.0178 4108 C:\Windows\SysWOW64\npmproxy.dll - ok 20:04:34.0178 4108 [ 7CD104D7791EC5DC4EE6FA1AE57325D4 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtCore4.dll 20:04:34.0178 4108 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtCore4.dll - ok 20:04:34.0178 4108 [ 119F7FB221A2CDC1205F27B791F52703 ] C:\Program Files\Common Files\LogiShrd\CDDRV3\LDConfig.exe 20:04:34.0178 4108 C:\Program Files\Common Files\LogiShrd\CDDRV3\LDConfig.exe - ok 20:04:34.0194 4108 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 20:04:34.0194 4108 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok 20:04:34.0194 4108 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll 20:04:34.0194 4108 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok 20:04:34.0194 4108 [ 5C481EFF4F0E62C45473E471E444FA7C ] C:\Program Files\Logitech\SetPointP\KGame.dll 20:04:34.0194 4108 C:\Program Files\Logitech\SetPointP\KGame.dll - ok 20:04:34.0194 4108 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll 20:04:34.0194 4108 C:\Windows\System32\FXSST.dll - ok 20:04:34.0194 4108 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe 20:04:34.0194 4108 C:\Windows\System32\SearchIndexer.exe - ok 20:04:34.0209 4108 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll 20:04:34.0209 4108 C:\Windows\System32\FXSAPI.dll - ok 20:04:34.0209 4108 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe 20:04:34.0209 4108 C:\Windows\System32\FXSSVC.exe - ok 20:04:34.0209 4108 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll 20:04:34.0209 4108 C:\Windows\System32\tquery.dll - ok 20:04:34.0209 4108 [ 966D8AC2491FF009B6BB3F335F6EF8A5 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtGui4.dll 20:04:34.0209 4108 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtGui4.dll - ok 20:04:34.0209 4108 [ 045E0BFE691DC54DEAFB333DF08A48EB ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll 20:04:34.0209 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll - ok 20:04:34.0209 4108 [ 85141EB77ABDE26E8619BC591F8DFCFB ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc 20:04:34.0209 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc - ok 20:04:34.0209 4108 [ 4046783139B577A68FF77CED93FD6D12 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll 20:04:34.0209 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll - ok 20:04:34.0225 4108 [ 8D58C34EA1304DAB6D8B16925265B5AA ] C:\Program Files\Common Files\LogiShrd\sp6\LU\***nchr.exe 20:04:34.0225 4108 C:\Program Files\Common Files\LogiShrd\sp6\LU\***nchr.exe - ok 20:04:34.0225 4108 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll 20:04:34.0225 4108 C:\Windows\System32\mssrch.dll - ok 20:04:34.0225 4108 [ 737499C6B765184E5E7FCACDDB459CED ] C:\Program Files\Logitech\SetPointP\LCabHandler.dll 20:04:34.0225 4108 C:\Program Files\Logitech\SetPointP\LCabHandler.dll - ok 20:04:34.0225 4108 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll 20:04:34.0225 4108 C:\Windows\System32\msidle.dll - ok 20:04:34.0225 4108 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll 20:04:34.0225 4108 C:\Windows\System32\mssprxy.dll - ok 20:04:34.0225 4108 [ C0F4A57BA5E09A28AE3D2F67ED219EEA ] C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe 20:04:34.0225 4108 C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\pptico.exe - ok 20:04:34.0241 4108 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll 20:04:34.0241 4108 C:\Windows\System32\netman.dll - ok 20:04:34.0241 4108 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll 20:04:34.0241 4108 C:\Windows\SysWOW64\mssprxy.dll - ok 20:04:34.0241 4108 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll 20:04:34.0241 4108 C:\Windows\System32\rasdlg.dll - ok 20:04:34.0241 4108 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui 20:04:34.0241 4108 C:\Windows\System32\en-US\tquery.dll.mui - ok 20:04:34.0241 4108 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll 20:04:34.0241 4108 C:\Windows\System32\dot3api.dll - ok 20:04:34.0241 4108 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll 20:04:34.0241 4108 C:\Windows\System32\wlanhlp.dll - ok 20:04:34.0256 4108 [ 5331DC9D1C88840326F68C2C531A82A7 ] C:\Program Files\Common Files\LogiShrd\Unifying\LU.1\***nchr.exe 20:04:34.0256 4108 C:\Program Files\Common Files\LogiShrd\Unifying\LU.1\***nchr.exe - ok 20:04:34.0256 4108 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll 20:04:34.0256 4108 C:\Windows\System32\wlanapi.dll - ok 20:04:34.0256 4108 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe 20:04:34.0256 4108 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok 20:04:34.0256 4108 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll 20:04:34.0256 4108 C:\Windows\System32\WWanAPI.dll - ok 20:04:34.0256 4108 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll 20:04:34.0256 4108 C:\Windows\System32\wwapi.dll - ok 20:04:34.0256 4108 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL 20:04:34.0256 4108 C:\Windows\System32\QAGENT.DLL - ok 20:04:34.0272 4108 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll 20:04:34.0272 4108 C:\Program Files\Windows Media Player\wmpnssci.dll - ok 20:04:34.0272 4108 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe 20:04:34.0272 4108 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok 20:04:34.0272 4108 [ 235D42833F2F89083FA70B9787899846 ] C:\Program Files\Common Files\LogiShrd\Unifying\LU.1\LogitechUpdate.exe 20:04:34.0272 4108 C:\Program Files\Common Files\LogiShrd\Unifying\LU.1\LogitechUpdate.exe - ok 20:04:34.0272 4108 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll 20:04:34.0272 4108 C:\Windows\SysWOW64\winmm.dll - ok 20:04:34.0272 4108 [ B67F316DE1EEFB0DADC1AF30633A9D83 ] C:\Program Files\CCleaner\CCleaner64.exe 20:04:34.0272 4108 C:\Program Files\CCleaner\CCleaner64.exe - ok 20:04:34.0272 4108 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll 20:04:34.0272 4108 C:\Windows\System32\drmv2clt.dll - ok 20:04:34.0287 4108 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll 20:04:34.0287 4108 C:\Windows\System32\wmdrmdev.dll - ok 20:04:34.0287 4108 [ 62B10D2A98770F2E0D729966C422C65E ] C:\Users\Public\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key 20:04:34.0287 4108 C:\Users\Public\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok 20:04:34.0287 4108 [ 22E04A8AE1ABA831026F8F3328F85995 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll 20:04:34.0287 4108 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll - ok 20:04:34.0287 4108 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll 20:04:34.0287 4108 C:\Windows\System32\wmp.dll - ok 20:04:34.0287 4108 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll 20:04:34.0287 4108 C:\Windows\System32\upnp.dll - ok 20:04:34.0287 4108 [ AF7038413C6506180FAE58B0194A2F23 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll 20:04:34.0287 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll - ok 20:04:34.0303 4108 [ 00E86A80CA56510D2C9F09E8C6CC25C6 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll 20:04:34.0303 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll - ok 20:04:34.0303 4108 [ B0A41262968DD6FCE3933527892D4A24 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll 20:04:34.0303 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll - ok 20:04:34.0303 4108 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll 20:04:34.0303 4108 C:\Windows\System32\ssdpsrv.dll - ok 20:04:34.0303 4108 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll 20:04:34.0303 4108 C:\Windows\SysWOW64\msimg32.dll - ok 20:04:34.0303 4108 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll 20:04:34.0303 4108 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok 20:04:34.0319 4108 [ 3C69CE161C7007E9AD53A325492D446A ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll 20:04:34.0319 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll - ok 20:04:34.0319 4108 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll 20:04:34.0319 4108 C:\Windows\SysWOW64\WindowsCodecs.dll - ok 20:04:34.0319 4108 [ E5E697AB8431EE8144030F81F66D9853 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll 20:04:34.0319 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll - ok 20:04:34.0319 4108 [ 97C6AE7F9BE52FC348CB2E2B72C7D27D ] C:\Program Files\Internet Explorer\ieproxy.dll 20:04:34.0319 4108 C:\Program Files\Internet Explorer\ieproxy.dll - ok 20:04:34.0319 4108 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll 20:04:34.0319 4108 C:\Windows\SysWOW64\msxml3.dll - ok 20:04:34.0319 4108 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll 20:04:34.0319 4108 C:\Windows\System32\wmpps.dll - ok 20:04:34.0334 4108 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL 20:04:34.0334 4108 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok 20:04:34.0334 4108 [ ADE3384FBF2314072424F01F45E17067 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtXml4.dll 20:04:34.0334 4108 C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtXml4.dll - ok 20:04:34.0334 4108 [ 479268EE20B9EB00B2300EF211D05B7B ] C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll 20:04:34.0334 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll - ok 20:04:34.0334 4108 [ 55C5164E03D707AEFC8B7C97B7074564 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_net_source.dll 20:04:34.0334 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_net_source.dll - ok 20:04:34.0334 4108 [ FA54697620A923BACA6FE897B971BB28 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_parser_sdp.dll 20:04:34.0334 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_parser_sdp.dll - ok 20:04:34.0334 4108 [ A5013F152486A54234133DFA5DA4FC3B ] C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll 20:04:34.0334 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok 20:04:34.0350 4108 [ 09EF4EBE20AAE0992F612AFF38CE4984 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll 20:04:34.0350 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll - ok 20:04:34.0350 4108 [ 9D32CCC9FA270046A92E0255BC1CA7F7 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll 20:04:34.0350 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll - ok 20:04:34.0350 4108 [ 07DE0D8B45B87C4DFFF2F2EFE56F10E0 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll 20:04:34.0350 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll - ok 20:04:34.0350 4108 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll 20:04:34.0350 4108 C:\Windows\System32\thumbcache.dll - ok 20:04:34.0350 4108 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll 20:04:34.0350 4108 C:\Windows\SysWOW64\wsock32.dll - ok 20:04:34.0350 4108 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll 20:04:34.0350 4108 C:\Windows\System32\networkexplorer.dll - ok 20:04:34.0365 4108 [ 979C780C57D5099DFA4F00E23EDB64D5 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_mux_mp2.dll 20:04:34.0365 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_mux_mp2.dll - ok 20:04:34.0365 4108 [ F12FF2ECB2F6F7D9C5062D67D8334AE9 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe 20:04:34.0365 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe - ok 20:04:34.0365 4108 [ CE2E76F684D2AB30CB03CCEC73FFA269 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mp2v.dll 20:04:34.0365 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mp2v.dll - ok 20:04:34.0365 4108 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll 20:04:34.0365 4108 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok 20:04:34.0365 4108 [ 85D6E8F735865B502D65D1D91A79E3F3 ] C:\Windows\System32\browserchoice.exe 20:04:34.0365 4108 C:\Windows\System32\browserchoice.exe - ok 20:04:34.0365 4108 [ 95A53EF79DF3A45643917EE485A9DB93 ] C:\Program Files\Defraggler\Defraggler64.exe 20:04:34.0365 4108 C:\Program Files\Defraggler\Defraggler64.exe - ok 20:04:34.0381 4108 [ 4EBBC2B0AD7F9075AE9D6835D2A62B6E ] C:\Windows\System32\sc.exe 20:04:34.0381 4108 C:\Windows\System32\sc.exe - ok 20:04:34.0381 4108 [ 0335B80F0C3F3D2BE9E1F34292A33D98 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe 20:04:34.0381 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe - ok 20:04:34.0381 4108 [ CC5F431CA0A6C8C7C2825671497A5280 ] C:\Program Files\Autodesk\DWG TrueView 2013\dwgviewr.exe 20:04:34.0381 4108 C:\Program Files\Autodesk\DWG TrueView 2013\dwgviewr.exe - ok 20:04:34.0381 4108 [ FCE0F4575E9D27AF0085A19E454E2C45 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mpa.dll 20:04:34.0381 4108 C:\Program Files (x86)\DivX\DivX Media Server\mc_enc_mpa.dll - ok 20:04:34.0381 4108 [ D488B2C96355F6D403D4A73454C2BC9C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll 20:04:34.0381 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll - ok 20:04:34.0381 4108 [ 479F6FAB897B1C134A267AE3D75E1411 ] C:\Windows\SysWOW64\HPZipr12.dll 20:04:34.0381 4108 C:\Windows\SysWOW64\HPZipr12.dll - ok 20:04:34.0397 4108 [ CB1D5B1B0F2A12626A1030414424F887 ] C:\Windows\System32\HPZidr12.dll 20:04:34.0397 4108 C:\Windows\System32\HPZidr12.dll - ok 20:04:34.0397 4108 [ 32A4207A0FE8FB66895348933A5CBB39 ] C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll 20:04:34.0397 4108 C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll - ok 20:04:34.0397 4108 [ 0D5D2F40E79700EB836FE834F79A8D36 ] C:\Windows\Installer\{5783F2D7-B028-0409-0100-0060B0CE6BBA}\Aoem162_icon.exe 20:04:34.0397 4108 C:\Windows\Installer\{5783F2D7-B028-0409-0100-0060B0CE6BBA}\Aoem162_icon.exe - ok 20:04:34.0397 4108 [ AE528EF45B2ACE8DEEF9F16AC880E557 ] C:\Program Files\Ventrilo\Ventrilo.exe 20:04:34.0397 4108 C:\Program Files\Ventrilo\Ventrilo.exe - ok 20:04:34.0397 4108 [ 71F836CC05397F8847E2FEC8D61BD832 ] C:\Program Files\CPUID\HWMonitor\HWMonitor.exe 20:04:34.0397 4108 C:\Program Files\CPUID\HWMonitor\HWMonitor.exe - ok 20:04:34.0397 4108 [ 3DB5A1EACE7F3049ECC49FA64461E254 ] C:\Windows\System32\rstrui.exe 20:04:34.0397 4108 C:\Windows\System32\rstrui.exe - ok 20:04:34.0412 4108 [ CBBAF06C2AC8882D239C8DC5BFA197FD ] C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll 20:04:34.0412 4108 C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll - ok 20:04:34.0412 4108 [ 78C4C974E3B49763D1535E6B7B131973 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxm08.dll 20:04:34.0412 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxm08.dll - ok 20:04:34.0412 4108 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll 20:04:34.0412 4108 C:\Windows\System32\PhotoMetadataHandler.dll - ok 20:04:34.0412 4108 [ 09A42CCAEC19241EE23CECD871BC2939 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll 20:04:34.0412 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll - ok 20:04:34.0412 4108 [ 2CBECE0C6E6FD071B073C317EB7EAE28 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll 20:04:34.0412 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll - ok 20:04:34.0428 4108 [ 347A39B69AC03B8F56D8807B989F5CA8 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll 20:04:34.0428 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll - ok 20:04:34.0428 4108 [ 883008A9B5BFF94A153D99DBA54CB5C1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe 20:04:34.0428 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe - ok 20:04:34.0428 4108 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll 20:04:34.0428 4108 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok 20:04:34.0428 4108 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll 20:04:34.0428 4108 C:\Windows\SysWOW64\dwmapi.dll - ok 20:04:34.0428 4108 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL 20:04:34.0428 4108 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok 20:04:34.0428 4108 [ 7721CE64FB3675AD6C20ED1FDDA639A0 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll 20:04:34.0428 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll - ok 20:04:34.0443 4108 [ 4B614E6AACC77A2C4588173A070F31EF ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc 20:04:34.0443 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc - ok 20:04:34.0443 4108 [ BECB2F793D826583C6D42BEE2680B807 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll 20:04:34.0443 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqssm08.dll - ok 20:04:34.0443 4108 [ 8F19F3D8CE050B0CA400344F050A261E ] C:\Program Files\Speccy\Speccy64.exe 20:04:34.0443 4108 C:\Program Files\Speccy\Speccy64.exe - ok 20:04:34.0443 4108 [ B4FEBBAC47297242F04EF7F14FE6DF99 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll 20:04:34.0443 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll - ok 20:04:34.0443 4108 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll 20:04:34.0443 4108 C:\Windows\SysWOW64\linkinfo.dll - ok 20:04:34.0443 4108 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll 20:04:34.0443 4108 C:\Windows\SysWOW64\ntshrui.dll - ok 20:04:34.0443 4108 [ EC915B78C0ABEDEEC2EB752C7CFD1663 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc 20:04:34.0443 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc - ok 20:04:34.0459 4108 [ B28AD85B8C199CB573621FCE54D7E19C ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE 20:04:34.0459 4108 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok 20:04:34.0459 4108 [ 9F372BF6410DED44E36EB97AA87910EB ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll 20:04:34.0459 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSplh08.dll - ok 20:04:34.0459 4108 [ A79BC50108A4686BBB279452343BD4B6 ] C:\Windows\SysWOW64\HPZidr12.dll 20:04:34.0459 4108 C:\Windows\SysWOW64\HPZidr12.dll - ok 20:04:34.0459 4108 [ CC190B07E357BCD40C2AFB57B9A67B7F ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll 20:04:34.0459 4108 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll - ok 20:04:34.0459 4108 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll 20:04:34.0459 4108 C:\Windows\System32\webcheck.dll - ok 20:04:34.0475 4108 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll 20:04:34.0475 4108 C:\Windows\System32\SyncCenter.dll - ok 20:04:34.0475 4108 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll 20:04:34.0475 4108 C:\Windows\System32\imapi2.dll - ok 20:04:34.0475 4108 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll 20:04:34.0475 4108 C:\Windows\System32\hgcpl.dll - ok 20:04:34.0475 4108 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe 20:04:34.0475 4108 C:\Windows\System32\SearchProtocolHost.exe - ok 20:04:34.0475 4108 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll 20:04:34.0475 4108 C:\Windows\System32\msshooks.dll - ok 20:04:34.0475 4108 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe 20:04:34.0475 4108 C:\Windows\System32\SearchFilterHost.exe - ok 20:04:34.0490 4108 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll 20:04:34.0490 4108 C:\Windows\System32\mssph.dll - ok 20:04:34.0490 4108 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll 20:04:34.0490 4108 C:\Windows\System32\mapi32.dll - ok 20:04:34.0490 4108 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll 20:04:34.0490 4108 C:\Windows\System32\NaturalLanguage6.dll - ok 20:04:34.0490 4108 [ F76074CE653E49AC6BDFE19289691AA6 ] C:\Windows\System32\NlsData0013.dll 20:04:34.0490 4108 C:\Windows\System32\NlsData0013.dll - ok 20:04:34.0490 4108 [ AE9300B1F0D6095597F64F03E1C38BB4 ] C:\Windows\System32\NlsLexicons0013.dll 20:04:34.0490 4108 C:\Windows\System32\NlsLexicons0013.dll - ok 20:04:34.0490 4108 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll 20:04:34.0490 4108 C:\Windows\System32\ELSCore.dll - ok 20:04:34.0506 4108 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll 20:04:34.0506 4108 C:\Windows\System32\elsTrans.dll - ok 20:04:34.0506 4108 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll 20:04:34.0506 4108 C:\Windows\System32\elslad.dll - ok 20:04:34.0506 4108 [ 28943370E3AF1D34D77D22911F891213 ] C:\Windows\System32\NlsData0003.dll 20:04:34.0506 4108 C:\Windows\System32\NlsData0003.dll - ok 20:04:34.0506 4108 [ 4F0429B763D05E721C0DD50693B7EFBE ] C:\Windows\System32\NlsLexicons0003.dll 20:04:34.0506 4108 C:\Windows\System32\NlsLexicons0003.dll - ok 20:04:34.0506 4108 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll 20:04:34.0506 4108 C:\Windows\System32\NlsData0000.dll - ok 20:04:34.0506 4108 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll 20:04:34.0506 4108 C:\Windows\System32\NlsData0009.dll - ok 20:04:34.0521 4108 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll 20:04:34.0521 4108 C:\Windows\System32\NlsLexicons0009.dll - ok 20:04:34.0521 4108 [ 9BDB62D5C4B3AE8807CB61F7503784E7 ] C:\Windows\System32\NlsData0018.dll 20:04:34.0521 4108 C:\Windows\System32\NlsData0018.dll - ok 20:04:34.0521 4108 [ 3A84190D1D472A3BB9CC4AF141326F13 ] C:\Windows\System32\NlsLexicons0018.dll 20:04:34.0521 4108 C:\Windows\System32\NlsLexicons0018.dll - ok 20:04:34.0521 4108 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll 20:04:34.0521 4108 C:\Windows\System32\NlsData000c.dll - ok 20:04:34.0521 4108 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll 20:04:34.0521 4108 C:\Windows\System32\NlsLexicons000c.dll - ok 20:04:34.0537 4108 [ 3E876771ACA0358E6CC5D0D813A4085D ] C:\Windows\System32\NlsData0026.dll 20:04:34.0537 4108 C:\Windows\System32\NlsData0026.dll - ok 20:04:34.0537 4108 [ 925E7FF3C0A2C6BD98892E968F6CB142 ] C:\Windows\System32\NlsLexicons0026.dll 20:04:34.0537 4108 C:\Windows\System32\NlsLexicons0026.dll - ok 20:04:34.0537 4108 [ 164647BBD819458CE5AA8A8C097B83AC ] C:\Windows\System32\NlsData0007.dll 20:04:34.0537 4108 C:\Windows\System32\NlsData0007.dll - ok 20:04:34.0537 4108 [ 37A2FBCBD0AF846BEF609CBEB61EEA68 ] C:\Windows\System32\NlsLexicons0007.dll 20:04:34.0537 4108 C:\Windows\System32\NlsLexicons0007.dll - ok 20:04:34.0537 4108 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:04:34.0537 4108 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok 20:04:34.0537 4108 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll 20:04:34.0537 4108 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok 20:04:34.0553 4108 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll 20:04:34.0553 4108 C:\Windows\SysWOW64\mscoree.dll - ok 20:04:34.0553 4108 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:04:34.0553 4108 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok 20:04:34.0553 4108 [ B3009DCDBCC5EFA49FA52562E9860E3C ] C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe 20:04:34.0553 4108 C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe - ok 20:04:34.0553 4108 [ C1539A3CA66E6F634130BDA66A6AF5DE ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_nl.dll 20:04:34.0553 4108 C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_nl.dll - ok 20:04:34.0553 4108 [ E0E4A1F81A7D69C595A8A9DDAD084C19 ] C:\Program Files (x86)\Nero\Update\NASvc.exe 20:04:34.0553 4108 C:\Program Files (x86)\Nero\Update\NASvc.exe - ok 20:04:34.0553 4108 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll 20:04:34.0553 4108 C:\Windows\SysWOW64\cryptdll.dll - ok 20:04:34.0568 4108 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll 20:04:34.0568 4108 C:\Windows\System32\qmgr.dll - ok 20:04:34.0568 4108 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll 20:04:34.0568 4108 C:\Windows\System32\bitsperf.dll - ok 20:04:34.0568 4108 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll 20:04:34.0568 4108 C:\Windows\System32\bitsigd.dll - ok 20:04:34.0568 4108 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe 20:04:34.0568 4108 C:\Windows\System32\sppsvc.exe - ok 20:04:34.0568 4108 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll 20:04:34.0568 4108 C:\Windows\System32\qmgrprxy.dll - ok 20:04:34.0584 4108 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll 20:04:34.0584 4108 C:\Windows\SysWOW64\qmgrprxy.dll - ok 20:04:34.0584 4108 [ B29280AA00BC34FEECDC0426B11B9DAC ] C:\Windows\SysWOW64\RstrtMgr.dll 20:04:34.0584 4108 C:\Windows\SysWOW64\RstrtMgr.dll - ok 20:04:34.0584 4108 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys 20:04:34.0584 4108 C:\Windows\System32\drivers\spsys.sys - ok 20:04:34.0584 4108 [ 39F03455A7C449FFFB2BC4BBDE480EB5 ] C:\Program Files (x86)\Nero\Update\NASvcPS.dll 20:04:34.0584 4108 C:\Program Files (x86)\Nero\Update\NASvcPS.dll - ok 20:04:34.0584 4108 [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll 20:04:34.0584 4108 C:\Windows\System32\wecsvc.dll - ok 20:04:34.0584 4108 [ BCB1310604AA415C4508708975B3931E ] C:\Windows\System32\WsmSvc.dll 20:04:34.0584 4108 C:\Windows\System32\WsmSvc.dll - ok 20:04:34.0584 4108 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll 20:04:34.0584 4108 C:\Windows\System32\wscsvc.dll - ok 20:04:34.0599 4108 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll 20:04:34.0599 4108 C:\Windows\System32\wuapi.dll - ok 20:04:34.0599 4108 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll 20:04:34.0599 4108 C:\Windows\System32\wuaueng.dll - ok 20:04:34.0599 4108 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll 20:04:34.0599 4108 C:\Windows\System32\cabinet.dll - ok 20:04:34.0599 4108 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll 20:04:34.0599 4108 C:\Windows\System32\mspatcha.dll - ok 20:04:34.0599 4108 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll 20:04:34.0599 4108 C:\Windows\System32\wups.dll - ok 20:04:34.0599 4108 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll 20:04:34.0599 4108 C:\Windows\System32\sppwinob.dll - ok 20:04:34.0615 4108 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll 20:04:34.0615 4108 C:\Windows\System32\sppobjs.dll - ok 20:04:34.0615 4108 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll 20:04:34.0615 4108 C:\Windows\System32\wups2.dll - ok 20:04:34.0615 4108 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe 20:04:34.0615 4108 C:\Windows\System32\wbem\WMIADAP.exe - ok 20:04:34.0615 4108 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll 20:04:34.0615 4108 C:\Windows\System32\loadperf.dll - ok 20:04:34.0615 4108 [ 061A78FEFA0457FD64F62DF791939466 ] C:\Windows\System32\NlsData000a.dll 20:04:34.0615 4108 C:\Windows\System32\NlsData000a.dll - ok 20:04:34.0615 4108 [ CDDF26D22DF0C095BC3DF44BBCDC426C ] C:\Windows\System32\NlsLexicons000a.dll 20:04:34.0615 4108 C:\Windows\System32\NlsLexicons000a.dll - ok 20:04:34.0631 4108 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll 20:04:34.0631 4108 C:\Windows\System32\wscinterop.dll - ok 20:04:34.0631 4108 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll 20:04:34.0631 4108 C:\Windows\System32\wscapi.dll - ok 20:04:34.0631 4108 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl 20:04:34.0631 4108 C:\Windows\System32\wscui.cpl - ok 20:04:34.0631 4108 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll 20:04:34.0631 4108 C:\Windows\System32\werconcpl.dll - ok 20:04:34.0631 4108 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll 20:04:34.0631 4108 C:\Windows\System32\wercplsupport.dll - ok 20:04:34.0631 4108 [ B79515AFF098E5A56DFBD316152534DE ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL 20:04:34.0631 4108 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok 20:04:34.0631 4108 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll 20:04:34.0631 4108 C:\Windows\System32\hcproviders.dll - ok 20:04:34.0646 4108 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll 20:04:34.0646 4108 C:\Windows\System32\schedcli.dll - ok 20:04:34.0646 4108 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll 20:04:34.0646 4108 C:\Windows\System32\wbem\wmipcima.dll - ok 20:04:34.0646 4108 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll 20:04:34.0646 4108 C:\Windows\System32\wmi.dll - ok 20:04:34.0646 4108 [ CDEBD55FFBDA3889AA2A8CE52B9DC097 ] C:\Windows\System32\sdclt.exe 20:04:34.0646 4108 C:\Windows\System32\sdclt.exe - ok 20:04:34.0646 4108 [ 8CE1C165396F2453012B3E23ADD9DF76 ] C:\Windows\System32\ReAgent.dll 20:04:34.0646 4108 C:\Windows\System32\ReAgent.dll - ok 20:04:34.0646 4108 [ 11C405A2DCF38E098316FD904A4FB662 ] C:\Windows\System32\sdengin2.dll 20:04:34.0646 4108 C:\Windows\System32\sdengin2.dll - ok 20:04:34.0662 4108 [ 6EA4234DC55346E0709560FE7C2C1972 ] C:\Windows\System32\sdrsvc.dll 20:04:34.0662 4108 C:\Windows\System32\sdrsvc.dll - ok 20:04:34.0662 4108 [ E7FBBF3193E248EE05CBC9562810C44A ] C:\Windows\System32\sxshared.dll 20:04:34.0662 4108 C:\Windows\System32\sxshared.dll - ok 20:04:34.0662 4108 [ 55BA6C87FFB2C478E1C9351FA631CC1A ] C:\Windows\System32\sxproxy.dll 20:04:34.0662 4108 C:\Windows\System32\sxproxy.dll - ok 20:04:34.0662 4108 [ A42FBC61385A5F5F444209EE94D89F27 ] C:\Windows\System32\NlsData0021.dll 20:04:34.0662 4108 C:\Windows\System32\NlsData0021.dll - ok 20:04:34.0662 4108 [ E5283AFD7590ECC37F8D62C4D6F1FB48 ] C:\Windows\System32\NlsLexicons0021.dll 20:04:34.0662 4108 C:\Windows\System32\NlsLexicons0021.dll - ok 20:04:34.0662 4108 [ 534D84434D9DB1D1E1E865F64E52AA8E ] C:\Windows\System32\twext.dll 20:04:34.0662 4108 C:\Windows\System32\twext.dll - ok 20:04:34.0677 4108 [ 0B1C3C977F5C7261E6C569C3CF40D6D1 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll 20:04:34.0677 4108 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll - ok 20:04:34.0677 4108 [ 93522C00D1F58DC015959FFF3D719C85 ] C:\Program Files\WinRAR\RarExt.dll 20:04:34.0677 4108 C:\Program Files\WinRAR\RarExt.dll - ok 20:04:34.0677 4108 [ 18B15BE16F4DB063E1C70325BB0093CE ] C:\Program Files\WinRAR\Formats\tar.fmt 20:04:34.0677 4108 C:\Program Files\WinRAR\Formats\tar.fmt - ok 20:04:34.0677 4108 [ E77A82B3D25D366BA85671B2F1071996 ] C:\Program Files (x86)\Google\Drive\contextmenu64.dll 20:04:34.0677 4108 C:\Program Files (x86)\Google\Drive\contextmenu64.dll - ok 20:04:34.0677 4108 [ 9F87943E4AEB051E37C8E157D14DD4F2 ] C:\Program Files\Defraggler\DefragglerShell64.dll 20:04:34.0677 4108 C:\Program Files\Defraggler\DefragglerShell64.dll - ok 20:04:34.0677 4108 [ A10B048B681C38E26CA90CD1BC123604 ] C:\Windows\System32\syncui.dll 20:04:34.0677 4108 C:\Windows\System32\syncui.dll - ok 20:04:34.0693 4108 [ 8699D17DFCFCD327784034DB6BD3A422 ] C:\Windows\System32\synceng.dll 20:04:34.0693 4108 C:\Windows\System32\synceng.dll - ok 20:04:34.0693 4108 [ 3A2218F24636D344739A134747DC2C8F ] C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll 20:04:34.0693 4108 C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll - ok 20:04:34.0693 4108 [ 8B22B0CF8912F810B28AFBFC8B42727F ] C:\Windows\System32\acppage.dll 20:04:34.0693 4108 C:\Windows\System32\acppage.dll - ok 20:04:34.0693 4108 [ BBAAE027C176402E221CADBFCAEB5407 ] C:\Windows\System32\zipfldr.dll 20:04:34.0693 4108 C:\Windows\System32\zipfldr.dll - ok 20:04:34.0693 4108 [ 6441D2FFB14B613C1D44D709BC7F8FFA ] C:\Windows\System32\sendmail.dll 20:04:34.0693 4108 C:\Windows\System32\sendmail.dll - ok 20:04:34.0693 4108 [ C8994E2703410F8DFE19DE5BF82994C0 ] C:\Windows\System32\mydocs.dll 20:04:34.0693 4108 C:\Windows\System32\mydocs.dll - ok 20:04:34.0709 4108 [ A943D670747778C7597987A4B5B9A679 ] C:\Windows\System32\WFS.exe 20:04:34.0709 4108 C:\Windows\System32\WFS.exe - ok 20:04:34.0709 4108 [ 21B62252D283FBF75A5F67849EBD9B2E ] C:\Windows\System32\WFSR.dll 20:04:34.0709 4108 C:\Windows\System32\WFSR.dll - ok 20:04:34.0709 4108 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll 20:04:34.0709 4108 C:\Windows\System32\drprov.dll - ok 20:04:34.0709 4108 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll 20:04:34.0709 4108 C:\Windows\System32\ntlanman.dll - ok 20:04:34.0709 4108 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll 20:04:34.0709 4108 C:\Windows\System32\davclnt.dll - ok 20:04:34.0709 4108 [ 4715F8F8CDBFFF2728BA38B789A1D7C7 ] C:\Windows\System32\wpdshext.dll 20:04:34.0709 4108 C:\Windows\System32\wpdshext.dll - ok 20:04:34.0724 4108 [ 03AB2A2E426C2AD400AC8315226347F8 ] C:\Windows\System32\EhStorAPI.dll 20:04:34.0724 4108 C:\Windows\System32\EhStorAPI.dll - ok 20:04:34.0724 4108 [ 9F3B8F2F7A282CA8D8790CE4A7D5C856 ] C:\Program Files (x86)\FileASSASSIN\FileASSASSIN.exe 20:04:34.0724 4108 C:\Program Files (x86)\FileASSASSIN\FileASSASSIN.exe - ok 20:04:34.0724 4108 ============================================================ 20:04:34.0724 4108 Scan finished 20:04:34.0724 4108 ============================================================ 20:04:34.0724 1292 Detected object count: 8 20:04:34.0724 1292 Actual detected object count: 8 20:06:37.0496 1292 C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe - copied to quarantine 20:06:37.0496 1292 cbVSCService11 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:37.0621 1292 C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe - copied to quarantine 20:06:37.0621 1292 CTDevice_Srv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:37.0824 1292 C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe - copied to quarantine 20:06:37.0824 1292 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:38.0027 1292 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - copied to quarantine 20:06:38.0027 1292 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:38.0058 1292 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine 20:06:38.0058 1292 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:38.0292 1292 C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe - copied to quarantine 20:06:38.0292 1292 MDM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:38.0526 1292 C:\Windows\system32\HPZinw12.dll - copied to quarantine 20:06:38.0526 1292 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:06:38.0557 1292 C:\Windows\system32\HPZipm12.dll - copied to quarantine 20:06:38.0557 1292 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 20:08:58.0661 1612 Deinitialize success Het is inderdaad raar dat Secunia PSI geen update deed met Java. Ik dacht eerst dat dit aan het feit lag dat ik Secunia PSI niet mee laat opstarten met Windows. Maar toen ik bij Secunia PSI ging gaan kijken staat die niet eens in de lijst. Dus heb ik getracht het programma toe te voegen maar dat wordt geweigerd! Ik krijg een melding dat het om een fake path gaat = "C:\fakepath\java.exe" en een popup venster om de website van Secunia PSI "https://*.secunia.com" in Internet Explorer als een trusted website aan te geven. Nadat ik dit dan had gedaan heeft Secunia mij toch toegestaan het pad in te geven en kreeg ik de melding dat het zal nagekeken worden en na een paar dagen na een nieuwe scan zal toegevoegd worden aan de lijst. Tot zover Secunia PSI
-
Dag Jion, Hier is het eerste mbam logje dat mij ernaar verwees dat er een rootkit aanwezig was. log database vernieuwd: 2013/05/24 02:06:18 +0200 HENDRIK-PC1 Hendrik MESSAGE Starting database refresh 2013/05/24 02:06:46 +0200 HENDRIK-PC1 Hendrik MESSAGE Database refreshed successfully Scanlog Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free anti-malware download Databaseversie: v2013.05.23.12 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16576 Hendrik :: HENDRIK-PC1 [administrator] 24/05/2013 18:43:07 mbam-log-2013-05-24 (18-43-07).txt Scan type: Volledige scan (C:\|D:\|E:\|F:\|H:\|J:\|K:\|M:\|N:\|P:\|R:\|S:\|Y:\|Z:\|) Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM | P2P Uitgeschakelde scan opties: Objecten gescand: 1218613 Verstreken tijd: 5 uur/uren, 5 minuut/minuten, 23 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 5 C:\$Recycle.Bin\S-1-5-21-1364749199-3237543244-4035560231-1000\$RF05C975A (Rootkit.0Access.ED) -> Succesvol in quarantaine geplaatst en verwijderd. D:\My Downloads\Microsoft.Office.2007.Enterprise.Keygen.Only-MiCROSOFT\MSOffice crack keygen\keygen.rar (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd. D:\My Downloads\Microsoft.Office.2007.Enterprise.Keygen.Only-MiCROSOFT\MSOffice crack keygen\mo2007ek.zip (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd. M:\Microsoft.Office.2007.Enterprise.Keygen.Only-MiCROSOFT\MSOffice crack keygen\keygen.rar (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd. M:\Microsoft.Office.2007.Enterprise.Keygen.Only-MiCROSOFT\MSOffice crack keygen\mo2007ek.zip (RiskWare.Tool.CK) -> Succesvol in quarantaine geplaatst en verwijderd. (einde) Tweede mbam log na herstart. log database vernieuwd: 2013/05/25 00:53:52 +0200 HENDRIK-PC1 Hendrik MESSAGE Starting database refresh 2013/05/25 00:53:54 +0200 HENDRIK-PC1 Hendrik MESSAGE Database refreshed successfully 2013/05/25 07:39:07 +0200 HENDRIK-PC1 Hendrik MESSAGE Protection stopped 2013/05/25 07:39:37 +0200 HENDRIK-PC1 Hendrik MESSAGE Starting database refresh 2013/05/25 07:39:40 +0200 HENDRIK-PC1 Hendrik MESSAGE Database refreshed successfully tweede scan log: Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free anti-malware download Databaseversie: v2013.05.25.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16576 Hendrik :: HENDRIK-PC1 [administrator] 25/05/2013 7:39:55 mbam-log-2013-05-25 (07-39-55).txt Scan type: Volledige scan (C:\|D:\|E:\|F:\|H:\|J:\|K:\|M:\|N:\|P:\|R:\|S:\|Y:\|Z:\|) Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM | P2P Uitgeschakelde scan opties: Objecten gescand: 1216955 Verstreken tijd: 4 uur/uren, 18 minuut/minuten, 53 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) En dan het HiJackThis programma uitgevoerd als Administrator van uit de locatie: Computer/System(C:)/Program Files (x86)/Trend Micro/HiJackThis het logfile: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:18:19, on 25/05/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16576) Boot mode: Normal Running processes: C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door MSN and Bing F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: EspressoBHO - {FD6C6509-FE36-44B0-A917-6C2A0DDBDF88} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\Espresso.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [ulead AutoDetector v2] C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe" -osboot O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files (x86)\ieSpell\iespell.dll/SPELLOPTION.HTM O8 - Extra context menu item: Check &Spelling - res://C:\Program Files (x86)\ieSpell\iespell.dll/SPELLCHECK.HTM O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files (x86)\ieSpell\Merriam Webster.HTM O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files (x86)\ieSpell\wikipedia.HTM O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files (x86)\ieSpell\iespell.dll O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files (x86)\ieSpell\iespell.dll O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files (x86)\ieSpell\iespell.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\LaunchEspresso.exe O9 - Extra 'Tools' menuitem: HP Smart Print 2.0 - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print 2.0\LaunchEspresso.exe O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: d:\vmware workstation\vsocklib.dll O10 - Unknown file in Winsock LSP: d:\vmware workstation\vsocklib.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.dexia.be O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect119b.cab O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CareMon - Unknown owner - C:\Program Files (x86)\Spotmau\PowerSuite Golden Edition\PowerSuite 2012\PcCheck\CareMon.exe O23 - Service: Cobian Backup 11 Volume Shadow Copy Requester (cbVSCService11) - CobianSoft, Luis Cobian - C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing) O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTDevSrv.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® PROSet Monitoring Service - Unknown owner - C:\Windows\system32\IProsetMonitor.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Media Jukebox 14 Service - J. River, Inc. - C:\Program Files (x86)\J River\Media Jukebox 14\JRService.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Microsoft Antimalware Service (MsMpSvc) - Unknown owner - C:\Program Files\Microsoft Security Client\MsMpEng.exe O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @C:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243 (NisSrv) - Unknown owner - C:\Program Files\Microsoft Security Client\NisSrv.exe O23 - Service: NitroPDFReaderDriverCreatorReadSpool2 (NitroReaderDriverReadSpool2) - Nitro PDF Software - C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Program Files\Macrium\Reflect\ReflectService.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: VMware Agent Service (ufad-ws60) - VMware, Inc. - D:\VMWare Workstation\vmware-ufad.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - D:\VMWare Workstation\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\Windows\system32\vmnetdhcp.exe O23 - Service: VMware USB Arbitration Service (VMUSBArbService) - VMware, Inc. - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe O23 - Service: VMware NAT Service - VMware, Inc. - C:\Windows\system32\vmnat.exe O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 15755 bytes Als noot wil ik er nog aan toevoegen dat ik een hoop bestanden/mappen niet meer kan openen en ik een melding krijg dat ofwel de path niet bestaat of verzet is geweest of geen permisie heb. Zo weet ik perfect waar mijn Antivirus programma zit maar ik kan er niet aan. in bijlage zie je een paar screenshots: [ATTACH=CONFIG]26067[/ATTACH] [ATTACH=CONFIG]26068[/ATTACH] [ATTACH=CONFIG]26069[/ATTACH] en bij het downloaden van gelijk welk bestand via mijn Internet Explorer wordt iedere download als een virus aanzien: [ATTACH=CONFIG]26070[/ATTACH] [ATTACH=CONFIG]26071[/ATTACH] hopelijk hebben jullie wat aan die screenshots. alvast bedankt! Hensyr
-
hallo beste vrienden, Ja hij is er terug, en deze keer met een hardnekkig probleem dat ik zelf niet opgelost krijg zonder jullie professionele hulp. Welke computer Speccy verslag:http://speccy.piriform.com/results/nYyGveqngM2G3Vj5CJgo3MR Windows 7 Enterprise 64 bit Wat doet er zich momenteel voor: 1) mijn antivirus programma is niet meer toegankelijk en is verdwenen uit mijn "notifications taskbar" 2) een hoop mappen zijn niet meer toegankelijk "no permissions" 3) in mijn Internet Explorer wordt elke download als een virus aanzien en wordt de file verwijdert zonder de tab opties weer te geven. (gelukkig kan ik wel nog Mozilla Firefox gebruiken). Ondertussen had ik al verschillende pogingen ondernomen om dit eerst zelf op te zoeken en op te lossen maar tevergeefs. Graag jullie voorstellen a.u.b.
-
Hoi Juisterr, De laptop maakt verbinding via draadloos internet. Echter na het heropstarten van de modem lijkt mij het probleem niet te zijn opgelost. Het is niet alleen met IE dat deze laptop gewoon tergend traag is maar ook met andere applicaties.
-
Beste Juisterr, De vraag heb ik doorgegeven aan mijn schoonbroer en dit is het antwoord dat ik van hem heb gekregen in mail: "Niet echt ,blijft dezelfde kuren vertonen. Geen internet ,pas na heropstart BBox opnieuw internet. Soms start hij vlot op , maar regelmatig lijken enkele zaken niet op te starten en dan is “geduld” ,het enige redmiddel. Voorbeeld : internet explorer -> bij opvragen van de eerste pagina wachttijd 2 a 3 minuten Vanaf volgende pagina’s begint alles daarna vlot te verlopen. Aldus mijn schoonbroer. Wat zou er nog meer aan de hand kunnen zijn dan?
-
BSOD tijdens uitzending motor races in America
Hensyr reageerde op Hensyr's topic in Archief Windows Algemeen
Misschien kan dit de reden zijn: Onlangs kreeg ik van mijn echtgenote te horen dat er een geur uit haar pc kwam. De geur was van verbrande elektriciteit een typische geur. Het bleek de fan van de voeding te zijn die niet meer draaide, vastgelopen zeg maar. Omdat zij de hele dag op haar pc zit 7/7 en hem niet kan missen heb ik de fan van de voeding ontkoppeld en hem verwisseld met de fan van mijn voeding die exact dezelfde computer is maar dan met een ander besturings programma. Haar fan heb ik eerst gedemonteerd en de motor gekuist waardoor die terug ietsjes losser kwam en wonder boven wonder draait die weer, weliswaar niet vlot en snel zoals het hoort. Wat me nu wel is opgevallen is dat ik de aan uit knop regelmatig tijdens het starten van de computer moet indrukken tot die helemaal doorstart. Heel vervelend. Misschien is de koeling nu dus niet effectief genoeg en heb ik daarom die dubbele trap gekregen. Kan dit een mogelijkheid zijn? In ieder geval moet ik aan een nieuwe fan zien te geraken voor de pc helemaal doordraait. -
hier is het logje van zoek.exe: Zoek.exe Version 4.0.0.2 Updated 17-April-2013 Tool run by Gebruiker on ma 22/04/2013 at 21:48:35,07. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3455685969-1536446686-1321643906-1004\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Approved Extensions\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} deleted successfully HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Approved Extensions\{F3FEE66E-E034-436a-86E4-9690573BEE8A} deleted successfully ==== Deleting Files \ Folders ====================== "C:\Program Files\Mozilla Firefox\searchplugins\BearShareWebSearch.xml" deleted "C:\Windows\system32\roboot.exe" deleted "C:\Users\Public\Desktop\YTD Video Downloader.lnk" deleted "C:\Windows\system32\appdata" deleted "C:\Program Files\Softonic_Netherlands" deleted "C:\found.000" deleted "C:\found.001" deleted "C:\Users\Gebruiker\AppData\Roaming\DefaultTab" deleted "C:\Users\Gebruiker\AppData\Roaming\Systweak" deleted "C:\ProgramData\APN" deleted "C:\ProgramData\boost_interprocess" deleted "C:\Users\Gebruiker\AppData\Local\PackageAware" deleted "C:\Users\Gebruiker\AppData\Local\Conduit" deleted "C:\Users\Gebruiker\AppData\LocalLow\DataMngr" deleted "C:\Users\Gebruiker\AppData\LocalLow\Conduit" deleted "C:\Users\Gebruiker\AppData\LocalLow\ConduitEngine" deleted "C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions icmlaeflemplmjndnaapfdbbnpncnbda - D:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[07/03/2013 00:29] YouTube - game account - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo AVG Safe Search - game account - Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla avast WebRep - Gebruiker - Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.be/" "Search Bar"="http://www.bing.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.be/" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} Unknown Url="Not_Found" {afdbddaa-5d3f-42ee-b79c-185a7020515b} Unknown Url="Not_Found" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-3455685969-1536446686-1321643906-1004\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} deleted successfully HKEY_USERS\S-1-5-21-3455685969-1536446686-1321643906-1004\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== shortcuts on Users Desktops ====================== C:\Users\Gebruiker\Desktop\inSSIDer.lnk - C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{65A5E87D-7A3F-4819-807D-B86990D5F369}\_FD15B99E6CE000CD03B943.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\avast Free Antivirus.lnk - C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe C:\Users\Public\Desktop\Defraggler.lnk - C:\Program Files\Defraggler\Defraggler.exe C:\Users\Public\Desktop\inSSIDer 3.lnk - C:\Windows\Installer\{5BB0D82A-4EED-477B-858E-1D5B01560BF5}\Icon.ico C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - D:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Users\Public\Desktop\SeaTools for Windows.lnk - C:\Windows\Installer\{98613C99-1399-416C-A07C-1EE1C585D872}\Icon98613C992.exe C:\Users\Public\Desktop\Speccy.lnk - C:\Program Files\Speccy\Speccy.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Gebruiker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MetaGeek\inSSIDer.lnk - C:\Users\Gebruiker\AppData\Roaming\Microsoft\Installer\{65A5E87D-7A3F-4819-807D-B86990D5F369}\_31C4DF10F97CAD109B0094.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast Free Antivirus.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\Uninstall CCleaner.lnk - C:\Program Files\CCleaner\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Defraggler.lnk - C:\Program Files\Defraggler\Defraggler.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Uninstall Defraggler.lnk - C:\Program Files\Defraggler\uninst.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune\HD Tune Manual.lnk - C:\Program Files\HD Tune\hdtune.html C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune\HD Tune on the Web.lnk - C:\Program Files\HD Tune\HDTune.url C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune\HD Tune.lnk - C:\Program Files\HD Tune\HDTune.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune\Uninstall HD Tune.lnk - C:\Program Files\HD Tune\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek\inSSIDer 3.lnk - C:\Windows\Installer\{5BB0D82A-4EED-477B-858E-1D5B01560BF5}\Icon.ico C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Seagate\SeaTools for Windows\SeaTools for Windows.lnk - C:\Windows\Installer\{98613C99-1399-416C-A07C-1EE1C585D872}\Icon98613C992.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Speccy.lnk - C:\Program Files\Speccy\Speccy.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy\Uninstall Speccy.lnk - C:\Program Files\Speccy\uninst.exe ==== Empty IE Cache ====================== C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\game account\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\game account\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Q-Force\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Q-Force\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\users\game account\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted - - - Updated - - - Van zodra ik even ter plaatse kan zijn ga ik de laptop eens ontmantelen en grondig ontstoffen.
-
BSOD tijdens uitzending motor races in America
Hensyr plaatste een topic in Archief Windows Algemeen
Beste forum leden, Zo net keek ik nog via Yelo op mijn pc naar de grote moto race van Amerika rechtstreeks uitgezonden. We zaten in de zevende ronde en oeps Blue Screen Of Death deed een geweldige crash zo erg zelfs dat mijn eigen computer het niet meer kon aanzien en er dan maar meteen een einde aan maakte. Via BlueScreenView het volgende logje kunnen maken: ================================================== Dumpbestand : 042213-24928-01.dmp Crash-tijd : 22/04/2013 0:56:26 Bug-Check-tekst : UNEXPECTED_KERNEL_MODE_TRAP Bug-Check-code : 0x0000007f Parameter 1 : 00000000`00000008 Parameter 2 : 00000000`80050031 Parameter 3 : 00000000`000406f8 Parameter 4 : fffff800`030b7447 Veroorzaakt door stuurprogramma: ntoskrnl.exe Veroorzaakt door adres: ntoskrnl.exe+75c00 Bestandsbeschrijving: NT Kernel & System Productnaam : Microsoft® Windows® Operating System Bedrijf : Microsoft Corporation Bestandsversie : 6.1.7601.18113 (win7sp1_gdr.130318-1533) Processor : x64 Crash-adres : ntoskrnl.exe+75c00 Stack-adres 1 : Stack-adres 2 : Stack-adres 3 : Computernaam : Volledig pad : C:\Windows\Minidump\042213-24928-01.dmp Aantal Processors : 2 'Major'-versie : 15 'Minor'-versie : 7601 Dumpbestandsgrootte: 288.824 ================================================== Weet hier iemand raad mee? Groetjes, Hensyr - - - Updated - - - Dit is ook het Speccy verslag: http://speccy.piriform.com/results/HCg11rFJo7Hnzg0C21S14w8 mocht dit nodig zijn - - - Updated - - - Beter met een link werken zeker: http://speccy.piriform.com/results/HCg11rFJo7Hnzg0C21S14w8 voor het Speccy verslag -
Bedankt hiervoor. Ondertussen heb ik op de link geklikt en op eBay bleek er een probleem te zijn dat deze verkoper niet naar het buitenland verstuurd via eBay Maar diezelfde verkoper heeft wel een winkel in Duitsland Dortmund en daar heb ik het dan weer wel kunnen bestellen. Dit is de link: CBO-DO - Ihr Onlineshop für neue und gebrauchte Computerartikel , Computer , PC , Hardware - Medion Retention Modul CPU Kühler Halterung für MD5000 MD8080 Medion Retention Modul CPU Kühler Halterung für MD5000 MD8080 MD 10022 Ondertussen is mijn pakje op reis vertrokken hoop ik. Hartelijke dank voor uw medewerking.
-
Beste forum leden, Op mijn Medion computer is de Lotes retention bracket/socket gebroken waardoor de aluminium koeling + fan los zijn gekomen van de cpu Het is zwart plastic rechthoekig kadertje voorzien van twee metalen beugels die de headsink vast houden, merk Lotes en aan de binnenkant staat ook nog eens PAT.T Het moederbord is een MD8088 (van Medion) CPU = Intel Pentium 4 3GHZ/512/888 Ik vermoed dat het om een Lotes 478 1U gaat maar ben het niet echt zeker. Kunnen jullie me helpen om een nieuwe te vinden?
-
Bedankt alvast voor deze uitleg, ik stuur meteen een mail naar mijn schoonbroer. Ik heb hem alvast ook de link naar dit forum meegegeven dan kan deze het ook volgen. De log stuurt hij me per mail en ik plaats ze hier verder. Tot later
-
Bericht naar de experten toe: na het hernieuwen van de Normal.dot file is het probleem nog steeds hangende, maar het sluit wel uit dat het niet aan het bron sjabloon ligt. Verder kan er nog eens gekeken worden naar de add ins bij Word. Sommige add ins kunnen ervoor zorgen dat Word plotseling kan crashen bron hiervoor aangehaald: Hard-Disabled Add-ins Hard-disabling occurs when the add-in causes the application (Word) to close unexpectedly. The problem was so serious that Word crashed. Once an add-in has been ‘hard-disabled’ by Word 2007, it will appear in the Disabled Application Add-ins list. To see which add-ins have been hard-disabled, click on the Office Button | Word Options | Add-Ins, and scroll down to “Disabled Application Add-ins”. To manually restore a hard-disabled add-in, first enable the add-in by selecting “Disabled Items” in the Manage menu, clicking Go, selecting the add-in to re-enable, and clicking the Enable button. Then load it by selecting “COM Add-Ins” in the Manage menu, clicking Go, and placing a check in the box next to the Add-In. Each hard-disable add-in will have an entry in the DisabledItems registry key at: HKEY_CURRENT_USER\Software\Microsoft\Office\12.0\Word\Resiliency\DisabledItems The entry name is some sort of hash/random binary value, rather than the name of the add-in. You can look at the hex of each and identify the specific add-in, but programatically re-enabling them is most easily done by deleting the entire Resiliency key. This makes it an ‘all or nothing’ situation. Disabling adds a binary value for each addin with a name that’s randomly generated. The Resiliency key exists if there is at least one disabled item, but if you re-enable the addin then the Resiliency key and DisabledItems subkey are both deleted. So the presence of the Resiliency key serves as a general test for the existence of disabled items. You can re-enable the addin by deleting the specific binary reg value, or by removing the whole key. http://help.lockergnome.com/office/Outlook-constantly-disabled–ftopict876175.html van: Fixing Word 2007 add-in issues with a registry merge | Ardamis
-
Beste forum vrienden, Het is niet bij mij zelf maar bij mijn zuster dat de laptop staat, ik weet dat dit niet optimaal zal verlopen maar we kunnen het toch proberen he. Ik stuur per mail zowieso een link naar mijn schoonbroer zodat hij dit topic ook meteen kan volgen als ik niet meteen beschikbaar ben. Betreft: een oude (5jaar minstens) laptop die regelmatig (niet altijd) vast loopt en tot 10 minuten nodig heeft om te ontwaren waar die mee bezig is gevolgen: starten van de laptop traag openen van programma's traag openen van browser IE traag opstart volgorde enorm traag op het allerlaatste doet hij pas het draadloos wifi werken met als gevolg dat programma's die connectie nodig hebben tijdens de opstart voor problemen zorgen. (zouden er eigenlijk van tussen moeten vind ik persoonlijk, maar soit) Het rare van dit alles is dat dit niet altijd gebeurd! Soms start de laptop heel goed op en werken alle programma's redelijk goed en dan kan het plots verkeerd gaan lopen. Wanneer dan bijgevolg een gebrek aan geduld een herstart van de laptop wordt gegenereerd is het hek helemaal van de dam en krijg je een lesje van verdraagzaamheid en geduld die zolang duurt dat je dan maar de hele laptop opbergt tot een volgende keer. Alvast een paar dingen gedaan omdat het internet ook traag was, de router op een ander kanaal gezet. Ccleaner eens uitgevoerd mbam laten scannen eerst gewoon en nadien via Chameleon speccy log gegenereerd en een HiJackthis log Speccy: http://speccy.piriform.com/results/aGTj6OHHowkXSuVROdMQDiw mbam: Malwarebytes Anti-Malware 1.75.0.1300 Malwarebytes : Free anti-malware download Databaseversie: v2013.04.15.10 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 Gebruiker :: LTSEBASTIAAN [administrator] 15/04/2013 23:19:59 mbam-log-2013-04-15 (23-19-59).txt Scan type: Snelle scan Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 261308 Verstreken tijd: 11 minuut/minuten, 43 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) en tenslotte hijackthis log: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:43:55, on 15/04/2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16476) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\system32\Dwm.exe D:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Windows\System32\rundll32.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Users\Gebruiker\Desktop\HijackThis.exe C:\Program Files\Internet Explorer\IELowutil.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe O1 - Hosts: ::1 localhost O3 - Toolbar: (no name) - !{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - (no file) O3 - Toolbar: (no name) - !{F3FEE66E-E034-436a-86E4-9690573BEE8A} - (no file) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [avast] "D:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'SYSTEEM') O4 - HKUS\S-1-5-18\..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f (User 'SYSTEEM') O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [DeleteEngineAfterUpdate] reg DELETE HKCU\Software\AppDataLow\Software\ConduitEngine /f (User 'Default user') O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file) O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing) O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! Antivirus - AVAST Software - D:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- End of file - 5490 bytes Graag jullie reactie a.u.b. Groetjes, Hensyr
-
Even weg geweest, sorry dat je even moest wachten. We gaan stap voor stap naar Normal.dot gaan Ga naar "Start", vervolgens naar "Deze computer" Zie voorbeeld: [ATTACH=CONFIG]25285[/ATTACH] Je ziet nu een nieuw venster met uw harde schijf C staan zie voorbeeld: [ATTACH=CONFIG]25284[/ATTACH] Open de harde schijf C door er rechts op te klikken en vervolgens te kiezen voor openen Een nieuw venster gaat open en daar kan het zijn dat je een tekst te zien krijgt die je vermeld dat de bestanden verborgen zijn. Zie voorbeeld: [ATTACH=CONFIG]25286[/ATTACH] In dat geval kan je klikken op de optie "de inhoud van dit station (of map) weergeven" Je bent nu in het venster "Boot (C:)" zie voorbeeld: [ATTACH=CONFIG]25287[/ATTACH] Hier zie je de map "Documents and Settings", open deze map Je bent nu in het venster Documents and Settings (adres= C:\Documents and Settings\) Hier zie je een map die de gebruikersnaam of accountnaam heeft waarmee je bent ingelogd als je Windows start Voorbeeld: Renate Open deze map. Zie voorbeeld: (in mijn geval is dat hier nu Dirk) [ATTACH=CONFIG]25288[/ATTACH] Je ziet nu het venster Renate (of de accountnaam waarmee je bent ingelogd op Windows) adres = C:\Documents and Settings\Renate Helemaal bovenaan in dit venster ga je naar "Extra" Klik op "Extra" en vervolgens op "Mapopties" zie voorbeeld: [ATTACH=CONFIG]25289[/ATTACH] Een nieuw venstertje genaamd "mapopties" gaat nu open met drie tab bladen [ATTACH=CONFIG]25290[/ATTACH] Ga naar de tab "Weergave" Schuif het schuifbalkje naar beneden tot je de tekst in de lijst ziet: "Verborgen bestanden en mappen" Klik op het tweede bolletje "Verborgen bestanden en mappen weergeven" Klik op "Toepassen" en vervolgens op "OK" [ATTACH=CONFIG]25291[/ATTACH] Het venstertje sluit en je bent nu terug op het venster genaamd "Renate" of je gebruikersnaam/accountnaam adres= C:\Documents and Settings\Renate Je ziet nu heel wat meer verborgen bestanden staan waaronder het bestand "Application Data" Open het bestand "Application Data" [ATTACH=CONFIG]25292[/ATTACH] Je bent nu in het venster "Application Data" adres= C:\Documents and Settings\Renate\Application Data In dit venster zie je de map "Microsoft" Open de map "Microsoft", we zijn nu heel dicht bij hoor. [ATTACH=CONFIG]25293[/ATTACH] Je bent nu in het venster "Microsoft" adres= C:\Documents and Settings\Renate\Application Data\Microsoft In dit venster zie je de map "Sjablonen" [ATTACH=CONFIG]25294[/ATTACH] Open de map "Sjablonen" en tadaaa hier komt ie dan, Je bent nu in het venster "Sjablonen" adres: C:\Documents and Settings\Renate\Application Data\Microsoft\Sjablonen In dit venster zie je een bestandje genaamd: "Normal" met de afbeelding van een bloknote zie afbeelding: [ATTACH=CONFIG]25283[/ATTACH] Klik er rechts op en selecteer "naam wijzigen" [ATTACH=CONFIG]25295[/ATTACH] Verander nu de bestandsnaam Normal naar "oudnormal" [ATTACH=CONFIG]25296[/ATTACH] Sluit nu uw vensters en open je nu eens een blanco word document. Heeft dit geholpen?
-
Neen, dit was een manier om uit te zoeken wat er loos is met je Word applicatie, het probleem is daarbij niet opgelost. Maar blijkbaar is/of kan je Normal.dotm corrupt zijn. Wat is de taak van het bestand Normal.dotm: het is een standaard sjabloon voor het opmaken van een nieuw Word document dat via de stijlen en macro's die je gebruikt kan aangepast worden, telkens je dan een nieuw Word document opent zal het dan openen met de nieuwe stijlen. Om je Normal.dotm terug in zijn beginwaarden te krijgen (zoals een nieuwe installatie van Microsoft Word 2007) kan je het bestand eenvoudig her noemen of verwijderen (dat laatste zou ik niet doen als ik jou was) maar wel her noemen. De volgende keer dat je Word opstart zal het een nieuw proper Normal.dotm bestand maken. Vraag 1: had je op deze computer (Windows XP) een eerdere versie staan van Microsoft Office? (zoals Office 2003 of eerdere versie) Doe nog eens de volgende bewerking: Sluit alle openstaande vensters! (desnoods copy paste dit bericht en print het af) Ga terug naar het Run venstertje (door op de Windows toets "toets met vlaggetje" op je toetsenbord te drukken en de letter R) Nu heb je terug het Run venstertje Typ daarin het volgende (of copy paste) : %appdata%\Microsoft\Templates en druk op enter (zie screenshot): [ATTACH=CONFIG]25175[/ATTACH] LET OP! de backslash is \ en niet /. Dit doe je door de toets Alt Gr en \ toets in te drukken op je toetsenbord. De map Templates zou nu moeten geopend zijn! Kijk of je daarin het bestand Normal.dotm ziet staan. OPGELET! het bestand moet Normal.dotm zijn en niet Normal.dot zonder de m Klik rechts op Normal.dotm en selecteer Naam Wijzigen en wijzig dit in Oudnormal.dotm en druk op enter. Als je antwoord op vraag 1 beantwoord word met JA (er was vroeger een eerdere versie van Microsoft Office aanwezig op dit systeem) dan volgende opmerking: Hoogstwaarschijnlijk zal er dan ook nog een kopij van het vroegere Normal.dot (zonder m) aanwezig zijn in de map Templates die nu openstaat (maar veranderd van naam in bijvoorbeeld Normal11.dot veroorzaakt door de nieuwe installatie van Microsoft Office 2007) Doe dan het volgende: (alleen als je antwoord op vraag 1 met JA beantwoord werd), selecteer het bestand Normal11.dot door er gewoon 1 keer op te klikken. Druk nu op de toetsen CTRL en C Druk nu op de toetsen CTRL en V Je moet nu een "kopie van Normal11.dot" zien. Verander de naam van deze kopie in Normal.dot door er rechts op te klikken en te kiezen voor "Naam Wijzigen". Het gevolg van deze laatste bewerking stelt Word 2007 in staat een nieuw proper Normal.dotm bestand te maken van een nieuwe installatie Microsoft Word 2007 maar ook met de stijlen en macro's die je toen gebruikte in Word 2003 of een eerdere versie. Sluit alle openstaande vensters. Open nu je Microsoft Word op de normale manier. Blijft het word document nu open en bewerkbaar?
-
Om dit in Windows XP uit te voeren en het RUN venster te krijgen druk je de toets "met het vlaggetje" (Windows toets op je toetsenbord) in samen met de "R" toets. Dan kom je direct in het RUN venstertje Typ daarin het commando: winword.exe /a en druk vervolgens op "OK" of enter toets blijft nu je word programma openstaan?
-
De speedtest van mijn echtgenote is op de 2.4 GHz band genomen op kanaal 1 Mijn buur zit op kanaal 6 maar op mijn computer ben ik beter af op kanaal 11 op de 2.4 GHz band Momenteel heb ik het kanaal 11 genomen op de 2.4 GHz frequentie, dat is volgens de speedtesten het betere resultaat. het signaal zit nog steeds op een gemiddelde van -67 en -73 dBm gebruik makend van het 802.11 n protocol ook de 5 GHz frequentie staat terug aan met een signaal schommelend tussen -71 en -73 dBm ook gebruikmakend van het 802.11 n protocol, ik heb dit terug aangezet omdat mijn echtgenote dagelijks in de wereld van World of Warcraft duikt en dat gun ik haar met plezier temeer zij zwaar gehandicapt is en WOW meer een toevluchtsoord is geworden waar zij werkelijk inkruipt zonder lichamelijke beperkingen. Link score op inSSIDer op het moment van dit schrijven schommelt tussen 73 en 96, het is nu wel al laat op de avond en het is zondag, het kan daaraan liggen dat het nu redelijk goed scoort maar gedurende de dag is het heel veel erger gesteld. Dan zakt het signaal heel snel naar beneden en schiet het terug omhoog alsof de kaart getekend wordt voor de Franse Pyrineën tijdens de ronde van Frankrijk hehe Al bij al heeft deze topic mij heel veel bijgebracht en heb ik een hoop testen uitgevoerd om tot het resultaat te komen dat ik nu heb. Ik ben tevreden als het om mijn internet pagina's laden gaat, dit gaat zeer vlot en dat wou ik uiteindelijk bereiken. Maar dit heeft mij er dan ook toe gebracht een zeer kritisch oog te werpen op de diensten van Telenet, een snelle verbinding ja tot aan de modem en daar stopt het dan, de rest is door de consument zelf op te lossen. Gevolg: ik raad draadloos niet aan voor de vaste desktop maar is altijd wel een schone oplossing voor wie draadloos door het huis loopt met een laptop. Ondertussen zit ik terug in de bergtoppen en ben net een snelle afdaling en bergoprit begonnen zie screenshot: [ATTACH=CONFIG]25111[/ATTACH] De oplossingen die u mij heeft aangeboden weet ik erg te waarderen en ik ben tevreden met het resultaat zoals het nu is. Toch zal ik het eens met mijn echtgenote moeten hebben over een lichte renovatie in de muren om daar een paar utp kabels in weg te moffelen zeg maar, de verbinding met kabel was dan ook verbluffend mooi te noemen. Mocht u toch nog enkele raadgevingen hebben, dan lees ik die hier wel. Hartelijke dank u en groetjes, Hensyr
-
soms kan het zijn dat er een add-on conflicteerd in Word. om dit uit te sluiten als mogelijke oorzaak mag je eens het volgende doen: ga naar Start en schrijf in het zoekvenstertje: Run er verschijnt bovenaan je zoekresultaat de applicatie Run (zie screenshot) [ATTACH=CONFIG]25075[/ATTACH] klik nu op deze Run, er verschijnt dan een nieuw venstertje (zie screenshot) [ATTACH=CONFIG]25076[/ATTACH] Typ daarin het volgende: winword.exe /a (opgelet: er zit een spatie tussen exe en /) en druk op enter (zie screenshot) [ATTACH=CONFIG]25077[/ATTACH] Deze opdracht zorgt ervoor dat Word in veilige modus wordt geopend. Blijft Word nu wel openstaan zonder onverwacht af te sluiten, dan mag je er vanuit gaan dat het add-on gerelateerd zal zijn. laat het ons weten
