Ga naar inhoud

Monoceros

Lid
  • Items

    32
  • Registratiedatum

  • Laatst bezocht

Alles dat geplaatst werd door Monoceros

  1. Ik heb een NAS aangeschaft en wil een backup maken met robocopy. In de .bat file heb ik volgend commando : robocopy D:\Videos "Z:\Shared Videos" /MIR /XJ Ik krijg echter de melding "Access is denied." De NAS is gemapt, ik kan files in de Windows Verkenner ernaartoe slepen. Wat moet ik doen om toegang tot de NAS te krijgen vanuit de .bat file ?
  2. Neen, dat verwijdert de balk éénmalig maar die is er terug als ik Firefox opnieuw opstart.
  3. Neen, dat staat ingesteld zoals in jouw vorbeeld.
  4. Plotseling is de Search History kolom aan de linkerkant zichtbaar elke keer als ik Firefox opstart. Geen idee hoe dit is gekomen. Ik vind nergens hoe ik dit kan afzetten zonder dit elke keer te moeten wegklikken.
  5. Klopt : problemen na upgrade. Acer Aspire V3. Ter info : een externe harde schijf toont ie wel.
  6. Dank voor de feedback. Hier de link : http://speccy.piriform.com/results/vcgma2MGXPJDjdbGUtUWPgF De laptop is drie weken geleden gekocht met Windows 8. Daar is nooit iets aan gewijzigd. De drive heeft wel degelijk gewerkt in het begin.
  7. Mijn CD-ROM drive is niet zichtbaar in de Windows Verkenner (ook niet als ik een externe aansluit). Device Status in de Device Manager : "Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)" Heb wat rondgesurft en volgende suggestie geprobeerd, maar dat geeft geen resultaat na heropstarten: reg.exe add "HKLM\System\CurrentControlSet\Services\atapi\Controller0" /f /v EnumDevice1 /t REG_DWORD /d 0x00000001 Wat is de oplossing ?
  8. Ok, heeft ongeveer een uur geduurd. Geen idee wat dit te betekenen had.
  9. Bij het opstarten, log ik in en krijg ik plots een blauw scherm met de melding 'Please wait' en onderaan een blokje met 'Cancel'. De curser is zo'n ronddraaiende cirkel die aanduidt dat ie ergens mee bezig is. Nergens een aanduiding wat ie aan het doen is, op het blokje Cancel kan ik niet drukken (er gebeurt dan niets) ... Dat duurt nu al een half uur. Alt-tab toont in preview een tweede scherm met het bureablad, maar hij switcht niet naar het bureablad. Heb al de kaptop volledig uitgeschakel (3s op knop drukken), maar hij start opnieuw op met dat blauw scherm. Hoe geraak ik hier uit ? Leve de iPad:-)
  10. Helaas verkoopt Conik alleen aan bedrijven.
  11. Is om een installatie aan te sturen. Best rechtstreeks op de serieel poort. - - - Updated - - - Is om een installatie aan te sturen. Best rechtstreeks op de serieel poort. Dank voor de tip ... geen winkel in België ?
  12. Ben op zoek naar een serieel naar bluetooth adapter. Waaar kan ik dat vinden ?
  13. OK, alles is opnieuw in orde : Firefox werkt terug. Norton Internet Security wilde niet 'uninstallen'. Daarom bij Norton een Removal Tool gedownload, waarna Norton wel volledig verwijderd kon worden. Daarna werkte Firefox terug. Heb nu Microsoft Security Essentials geïnstalleerd . Alvast dank voor de uitgebreide hulp bij de zoektocht naar de oorzaak .
  14. 15:47:12.0999 2056 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 15:47:13.0009 2056 ============================================================ 15:47:13.0009 2056 Current date / time: 2013/02/09 15:47:13.0009 15:47:13.0009 2056 SystemInfo: 15:47:13.0009 2056 15:47:13.0009 2056 OS Version: 6.1.7601 ServicePack: 1.0 15:47:13.0009 2056 Product type: Workstation 15:47:13.0009 2056 ComputerName: TOULOURENC 15:47:13.0009 2056 UserName: Marc 15:47:13.0009 2056 Windows directory: C:\Windows 15:47:13.0009 2056 System windows directory: C:\Windows 15:47:13.0009 2056 Running under WOW64 15:47:13.0009 2056 Processor architecture: Intel x64 15:47:13.0009 2056 Number of processors: 4 15:47:13.0009 2056 Page size: 0x1000 15:47:13.0009 2056 Boot type: Normal boot 15:47:13.0009 2056 ============================================================ 15:47:13.0804 2056 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 15:47:13.0809 2056 ============================================================ 15:47:13.0809 2056 \Device\Harddisk0\DR0: 15:47:13.0809 2056 MBR partitions: 15:47:13.0809 2056 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x2328000 15:47:13.0809 2056 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x233B9C5, BlocksNum 0x230F28EB 15:47:13.0809 2056 ============================================================ 15:47:13.0839 2056 C: <-> \Device\Harddisk0\DR0\Partition2 15:47:13.0839 2056 ============================================================ 15:47:13.0839 2056 Initialize success 15:47:13.0839 2056 ============================================================ 15:47:33.0601 4804 ============================================================ 15:47:33.0601 4804 Scan started 15:47:33.0601 4804 Mode: Manual; SigCheck; TDLFS; 15:47:33.0601 4804 ============================================================ 15:47:34.0196 4804 ================ Scan system memory ======================== 15:47:34.0196 4804 System memory - ok 15:47:34.0196 4804 ================ Scan services ============================= 15:47:34.0406 4804 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 15:47:34.0536 4804 1394ohci - ok 15:47:34.0566 4804 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 15:47:34.0576 4804 ACPI - ok 15:47:34.0596 4804 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 15:47:34.0691 4804 AcpiPmi - ok 15:47:34.0746 4804 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys 15:47:34.0771 4804 adfs - ok 15:47:34.0886 4804 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 15:47:34.0901 4804 AdobeARMservice - ok 15:47:35.0016 4804 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 15:47:35.0041 4804 AdobeFlashPlayerUpdateSvc - ok 15:47:35.0081 4804 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 15:47:35.0111 4804 adp94xx - ok 15:47:35.0151 4804 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 15:47:35.0171 4804 adpahci - ok 15:47:35.0181 4804 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 15:47:35.0196 4804 adpu320 - ok 15:47:35.0226 4804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 15:47:35.0381 4804 AeLookupSvc - ok 15:47:35.0471 4804 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe 15:47:35.0546 4804 AESTFilters - ok 15:47:35.0596 4804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 15:47:35.0686 4804 AFD - ok 15:47:35.0716 4804 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 15:47:35.0731 4804 agp440 - ok 15:47:35.0756 4804 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 15:47:35.0831 4804 ALG - ok 15:47:35.0856 4804 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 15:47:35.0871 4804 aliide - ok 15:47:35.0906 4804 [ 3D90CF67DB75823A8480E56BBCD2E028 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 15:47:35.0991 4804 AMD External Events Utility - ok 15:47:36.0001 4804 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 15:47:36.0016 4804 amdide - ok 15:47:36.0046 4804 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 15:47:36.0096 4804 AmdK8 - ok 15:47:36.0251 4804 [ 52679612D742BF74CA1BA6AB86DDF431 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys 15:47:36.0341 4804 amdkmdag - ok 15:47:36.0391 4804 [ 414E0788920A8C856032BE2CBF29F984 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 15:47:36.0436 4804 amdkmdap - ok 15:47:36.0466 4804 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 15:47:36.0516 4804 AmdPPM - ok 15:47:36.0556 4804 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 15:47:36.0576 4804 amdsata - ok 15:47:36.0611 4804 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 15:47:36.0626 4804 amdsbs - ok 15:47:36.0641 4804 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 15:47:36.0651 4804 amdxata - ok 15:47:36.0681 4804 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 15:47:36.0826 4804 AppID - ok 15:47:36.0851 4804 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 15:47:36.0926 4804 AppIDSvc - ok 15:47:36.0961 4804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 15:47:37.0021 4804 Appinfo - ok 15:47:37.0086 4804 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 15:47:37.0101 4804 Apple Mobile Device - ok 15:47:37.0136 4804 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 15:47:37.0201 4804 AppMgmt - ok 15:47:37.0231 4804 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 15:47:37.0251 4804 arc - ok 15:47:37.0261 4804 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 15:47:37.0271 4804 arcsas - ok 15:47:37.0301 4804 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 15:47:37.0351 4804 AsyncMac - ok 15:47:37.0376 4804 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 15:47:37.0381 4804 atapi - ok 15:47:37.0411 4804 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys 15:47:37.0421 4804 AtiHdmiService - ok 15:47:37.0571 4804 [ 52679612D742BF74CA1BA6AB86DDF431 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 15:47:37.0646 4804 atikmdag - ok 15:47:37.0701 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 15:47:37.0791 4804 AudioEndpointBuilder - ok 15:47:37.0796 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 15:47:37.0831 4804 AudioSrv - ok 15:47:37.0866 4804 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 15:47:37.0926 4804 AxInstSV - ok 15:47:37.0971 4804 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 15:47:38.0046 4804 b06bdrv - ok 15:47:38.0086 4804 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 15:47:38.0136 4804 b57nd60a - ok 15:47:38.0261 4804 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe 15:47:38.0286 4804 BBSvc - ok 15:47:38.0296 4804 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe 15:47:38.0306 4804 BBUpdate - ok 15:47:38.0386 4804 [ FB4FDA64F2E8552EAEB5986C3F34462C ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys 15:47:38.0441 4804 BCM43XX - ok 15:47:38.0486 4804 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 15:47:38.0556 4804 BDESVC - ok 15:47:38.0591 4804 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 15:47:38.0681 4804 Beep - ok 15:47:38.0731 4804 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 15:47:38.0786 4804 BFE - ok 15:47:38.0991 4804 [ ED97ADAF00A61F57A2CCBBB1CE58C600 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130107.001\BHDrvx64.sys 15:47:39.0026 4804 BHDrvx64 - ok 15:47:39.0056 4804 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 15:47:39.0121 4804 BITS - ok 15:47:39.0166 4804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 15:47:39.0211 4804 blbdrive - ok 15:47:39.0286 4804 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 15:47:39.0311 4804 Bonjour Service - ok 15:47:39.0336 4804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 15:47:39.0356 4804 bowser - ok 15:47:39.0376 4804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 15:47:39.0416 4804 BrFiltLo - ok 15:47:39.0457 4804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 15:47:39.0482 4804 BrFiltUp - ok 15:47:39.0532 4804 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 15:47:39.0612 4804 BridgeMP - ok 15:47:39.0642 4804 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 15:47:39.0712 4804 Browser - ok 15:47:39.0742 4804 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 15:47:39.0822 4804 Brserid - ok 15:47:39.0842 4804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 15:47:39.0887 4804 BrSerWdm - ok 15:47:39.0922 4804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 15:47:39.0972 4804 BrUsbMdm - ok 15:47:39.0992 4804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 15:47:40.0007 4804 BrUsbSer - ok 15:47:40.0027 4804 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 15:47:40.0062 4804 BTHMODEM - ok 15:47:40.0112 4804 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 15:47:40.0212 4804 bthserv - ok 15:47:40.0247 4804 catchme - ok 15:47:40.0327 4804 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1402000.013\ccSetx64.sys 15:47:40.0347 4804 ccSet_NIS - ok 15:47:40.0372 4804 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 15:47:40.0457 4804 cdfs - ok 15:47:40.0492 4804 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 15:47:40.0542 4804 cdrom - ok 15:47:40.0582 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 15:47:40.0667 4804 CertPropSvc - ok 15:47:40.0702 4804 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 15:47:40.0717 4804 circlass - ok 15:47:40.0737 4804 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 15:47:40.0747 4804 CLFS - ok 15:47:40.0822 4804 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:47:40.0837 4804 clr_optimization_v2.0.50727_32 - ok 15:47:40.0887 4804 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 15:47:40.0902 4804 clr_optimization_v2.0.50727_64 - ok 15:47:40.0952 4804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:47:40.0967 4804 clr_optimization_v4.0.30319_32 - ok 15:47:40.0992 4804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 15:47:41.0002 4804 clr_optimization_v4.0.30319_64 - ok 15:47:41.0032 4804 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 15:47:41.0072 4804 CmBatt - ok 15:47:41.0097 4804 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 15:47:41.0112 4804 cmdide - ok 15:47:41.0162 4804 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 15:47:41.0202 4804 CNG - ok 15:47:41.0227 4804 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 15:47:41.0237 4804 Compbatt - ok 15:47:41.0247 4804 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 15:47:41.0282 4804 CompositeBus - ok 15:47:41.0282 4804 COMSysApp - ok 15:47:41.0307 4804 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 15:47:41.0317 4804 crcdisk - ok 15:47:41.0367 4804 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 15:47:41.0437 4804 CryptSvc - ok 15:47:41.0462 4804 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 15:47:41.0547 4804 CSC - ok 15:47:41.0567 4804 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 15:47:41.0612 4804 CscService - ok 15:47:41.0677 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 15:47:41.0772 4804 DcomLaunch - ok 15:47:41.0817 4804 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 15:47:41.0872 4804 defragsvc - ok 15:47:41.0907 4804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 15:47:41.0982 4804 DfsC - ok 15:47:42.0032 4804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 15:47:42.0097 4804 Dhcp - ok 15:47:42.0122 4804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 15:47:42.0207 4804 discache - ok 15:47:42.0257 4804 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 15:47:42.0277 4804 Disk - ok 15:47:42.0302 4804 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 15:47:42.0357 4804 dmvsc - ok 15:47:42.0387 4804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 15:47:42.0452 4804 Dnscache - ok 15:47:42.0477 4804 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 15:47:42.0547 4804 dot3svc - ok 15:47:42.0572 4804 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 15:47:42.0627 4804 DPS - ok 15:47:42.0642 4804 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 15:47:42.0692 4804 drmkaud - ok 15:47:42.0742 4804 dtpd - ok 15:47:42.0787 4804 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 15:47:42.0822 4804 DXGKrnl - ok 15:47:42.0857 4804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 15:47:42.0932 4804 EapHost - ok 15:47:43.0032 4804 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 15:47:43.0077 4804 ebdrv - ok 15:47:43.0132 4804 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 15:47:43.0157 4804 eeCtrl - ok 15:47:43.0202 4804 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 15:47:43.0267 4804 EFS - ok 15:47:43.0322 4804 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 15:47:43.0407 4804 ehRecvr - ok 15:47:43.0427 4804 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 15:47:43.0442 4804 ehSched - ok 15:47:43.0488 4804 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 15:47:43.0513 4804 elxstor - ok 15:47:43.0528 4804 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 15:47:43.0563 4804 ErrDev - ok 15:47:43.0608 4804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 15:47:43.0698 4804 EventSystem - ok 15:47:43.0743 4804 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 15:47:43.0793 4804 exfat - ok 15:47:43.0813 4804 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 15:47:43.0888 4804 fastfat - ok 15:47:43.0938 4804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 15:47:44.0018 4804 Fax - ok 15:47:44.0028 4804 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 15:47:44.0068 4804 fdc - ok 15:47:44.0108 4804 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 15:47:44.0163 4804 fdPHost - ok 15:47:44.0173 4804 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 15:47:44.0248 4804 FDResPub - ok 15:47:44.0303 4804 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 15:47:44.0323 4804 FileInfo - ok 15:47:44.0333 4804 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 15:47:44.0403 4804 Filetrace - ok 15:47:44.0483 4804 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 15:47:44.0508 4804 FLEXnet Licensing Service - ok 15:47:44.0583 4804 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe 15:47:44.0623 4804 FLEXnet Licensing Service 64 - ok 15:47:44.0643 4804 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 15:47:44.0653 4804 flpydisk - ok 15:47:44.0678 4804 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 15:47:44.0688 4804 FltMgr - ok 15:47:44.0723 4804 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 15:47:44.0788 4804 FontCache - ok 15:47:44.0828 4804 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 15:47:44.0833 4804 FontCache3.0.0.0 - ok 15:47:44.0853 4804 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 15:47:44.0868 4804 FsDepends - ok 15:47:44.0903 4804 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 15:47:44.0913 4804 Fs_Rec - ok 15:47:44.0943 4804 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 15:47:44.0963 4804 fvevol - ok 15:47:44.0993 4804 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 15:47:45.0003 4804 gagp30kx - ok 15:47:45.0043 4804 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 15:47:45.0053 4804 GEARAspiWDM - ok 15:47:45.0088 4804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 15:47:45.0138 4804 gpsvc - ok 15:47:45.0183 4804 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:47:45.0193 4804 gupdate - ok 15:47:45.0218 4804 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:47:45.0223 4804 gupdatem - ok 15:47:45.0253 4804 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 15:47:45.0313 4804 hcw85cir - ok 15:47:45.0348 4804 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 15:47:45.0393 4804 HdAudAddService - ok 15:47:45.0438 4804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 15:47:45.0493 4804 HDAudBus - ok 15:47:45.0523 4804 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 15:47:45.0563 4804 HidBatt - ok 15:47:45.0583 4804 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 15:47:45.0608 4804 HidBth - ok 15:47:45.0648 4804 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 15:47:45.0673 4804 HidIr - ok 15:47:45.0693 4804 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 15:47:45.0753 4804 hidserv - ok 15:47:45.0798 4804 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 15:47:45.0818 4804 HidUsb - ok 15:47:45.0843 4804 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 15:47:45.0933 4804 hkmsvc - ok 15:47:45.0978 4804 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 15:47:46.0048 4804 HomeGroupListener - ok 15:47:46.0078 4804 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 15:47:46.0118 4804 HomeGroupProvider - ok 15:47:46.0143 4804 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 15:47:46.0163 4804 HpSAMD - ok 15:47:46.0198 4804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 15:47:46.0283 4804 HTTP - ok 15:47:46.0318 4804 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 15:47:46.0328 4804 hwpolicy - ok 15:47:46.0348 4804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 15:47:46.0358 4804 i8042prt - ok 15:47:46.0393 4804 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 15:47:46.0423 4804 iaStorV - ok 15:47:46.0478 4804 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 15:47:46.0513 4804 idsvc - ok 15:47:46.0618 4804 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130113.001\IDSvia64.sys 15:47:46.0643 4804 IDSVia64 - ok 15:47:46.0673 4804 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 15:47:46.0693 4804 iirsp - ok 15:47:46.0703 4804 iked - ok 15:47:46.0743 4804 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 15:47:46.0828 4804 IKEEXT - ok 15:47:46.0888 4804 [ 4FF8A2082D78255D2EB169F986BCC981 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys 15:47:46.0948 4804 Impcd - ok 15:47:46.0963 4804 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 15:47:46.0978 4804 intelide - ok 15:47:47.0018 4804 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 15:47:47.0063 4804 intelppm - ok 15:47:47.0098 4804 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 15:47:47.0178 4804 IPBusEnum - ok 15:47:47.0208 4804 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:47:47.0233 4804 IpFilterDriver - ok 15:47:47.0298 4804 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 15:47:47.0363 4804 iphlpsvc - ok 15:47:47.0408 4804 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 15:47:47.0448 4804 IPMIDRV - ok 15:47:47.0478 4804 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 15:47:47.0558 4804 IPNAT - ok 15:47:47.0638 4804 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 15:47:47.0668 4804 iPod Service - ok 15:47:47.0683 4804 ipsecd - ok 15:47:47.0708 4804 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 15:47:47.0723 4804 IRENUM - ok 15:47:47.0733 4804 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 15:47:47.0743 4804 isapnp - ok 15:47:47.0758 4804 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 15:47:47.0768 4804 iScsiPrt - ok 15:47:47.0803 4804 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] itecir C:\Windows\system32\DRIVERS\itecir.sys 15:47:47.0818 4804 itecir - ok 15:47:47.0858 4804 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys 15:47:47.0898 4804 k57nd60a - ok 15:47:47.0923 4804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 15:47:47.0938 4804 kbdclass - ok 15:47:47.0953 4804 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 15:47:47.0993 4804 kbdhid - ok 15:47:48.0028 4804 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 15:47:48.0038 4804 KeyIso - ok 15:47:48.0063 4804 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 15:47:48.0073 4804 KSecDD - ok 15:47:48.0088 4804 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 15:47:48.0098 4804 KSecPkg - ok 15:47:48.0113 4804 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 15:47:48.0143 4804 ksthunk - ok 15:47:48.0183 4804 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 15:47:48.0233 4804 KtmRm - ok 15:47:48.0278 4804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 15:47:48.0353 4804 LanmanServer - ok 15:47:48.0408 4804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 15:47:48.0484 4804 LanmanWorkstation - ok 15:47:48.0529 4804 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 15:47:48.0599 4804 lltdio - ok 15:47:48.0624 4804 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 15:47:48.0679 4804 lltdsvc - ok 15:47:48.0709 4804 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 15:47:48.0739 4804 lmhosts - ok 15:47:48.0769 4804 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 15:47:48.0779 4804 LSI_FC - ok 15:47:48.0804 4804 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 15:47:48.0814 4804 LSI_SAS - ok 15:47:48.0829 4804 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 15:47:48.0834 4804 LSI_SAS2 - ok 15:47:48.0854 4804 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 15:47:48.0864 4804 LSI_SCSI - ok 15:47:48.0879 4804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 15:47:48.0959 4804 luafv - ok 15:47:48.0989 4804 MaxImIO - ok 15:47:49.0014 4804 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 15:47:49.0029 4804 Mcx2Svc - ok 15:47:49.0044 4804 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 15:47:49.0054 4804 megasas - ok 15:47:49.0074 4804 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 15:47:49.0084 4804 MegaSR - ok 15:47:49.0134 4804 Microsoft SharePoint Workspace Audit Service - ok 15:47:49.0149 4804 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 15:47:49.0234 4804 MMCSS - ok 15:47:49.0259 4804 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 15:47:49.0334 4804 Modem - ok 15:47:49.0379 4804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 15:47:49.0424 4804 monitor - ok 15:47:49.0464 4804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 15:47:49.0479 4804 mouclass - ok 15:47:49.0494 4804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 15:47:49.0539 4804 mouhid - ok 15:47:49.0574 4804 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 15:47:49.0589 4804 mountmgr - ok 15:47:49.0654 4804 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 15:47:49.0669 4804 MozillaMaintenance - ok 15:47:49.0689 4804 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 15:47:49.0699 4804 mpio - ok 15:47:49.0709 4804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 15:47:49.0744 4804 mpsdrv - ok 15:47:49.0779 4804 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 15:47:49.0859 4804 MpsSvc - ok 15:47:49.0904 4804 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 15:47:49.0954 4804 MRxDAV - ok 15:47:49.0979 4804 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 15:47:50.0044 4804 mrxsmb - ok 15:47:50.0064 4804 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:47:50.0079 4804 mrxsmb10 - ok 15:47:50.0114 4804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:47:50.0124 4804 mrxsmb20 - ok 15:47:50.0139 4804 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 15:47:50.0149 4804 msahci - ok 15:47:50.0164 4804 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 15:47:50.0174 4804 msdsm - ok 15:47:50.0204 4804 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 15:47:50.0244 4804 MSDTC - ok 15:47:50.0284 4804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 15:47:50.0329 4804 Msfs - ok 15:47:50.0349 4804 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 15:47:50.0424 4804 mshidkmdf - ok 15:47:50.0454 4804 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 15:47:50.0464 4804 msisadrv - ok 15:47:50.0494 4804 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 15:47:50.0574 4804 MSiSCSI - ok 15:47:50.0574 4804 msiserver - ok 15:47:50.0604 4804 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 15:47:50.0684 4804 MSKSSRV - ok 15:47:50.0704 4804 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 15:47:50.0759 4804 MSPCLOCK - ok 15:47:50.0759 4804 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 15:47:50.0794 4804 MSPQM - ok 15:47:50.0824 4804 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 15:47:50.0849 4804 MsRPC - ok 15:47:50.0864 4804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 15:47:50.0874 4804 mssmbios - ok 15:47:50.0889 4804 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 15:47:50.0964 4804 MSTEE - ok 15:47:50.0989 4804 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 15:47:50.0999 4804 MTConfig - ok 15:47:51.0014 4804 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 15:47:51.0024 4804 Mup - ok 15:47:51.0044 4804 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 15:47:51.0104 4804 napagent - ok 15:47:51.0144 4804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 15:47:51.0184 4804 NativeWifiP - ok 15:47:51.0269 4804 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130112.007\ENG64.SYS 15:47:51.0289 4804 NAVENG - ok 15:47:51.0339 4804 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130112.007\EX64.SYS 15:47:51.0384 4804 NAVEX15 - ok 15:47:51.0419 4804 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 15:47:51.0439 4804 NDIS - ok 15:47:51.0459 4804 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 15:47:51.0535 4804 NdisCap - ok 15:47:51.0580 4804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 15:47:51.0630 4804 NdisTapi - ok 15:47:51.0650 4804 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 15:47:51.0680 4804 Ndisuio - ok 15:47:51.0695 4804 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 15:47:51.0740 4804 NdisWan - ok 15:47:51.0770 4804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 15:47:51.0795 4804 NDProxy - ok 15:47:51.0850 4804 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 15:47:51.0880 4804 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 15:47:51.0880 4804 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 15:47:51.0925 4804 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 15:47:52.0010 4804 NetBIOS - ok 15:47:52.0035 4804 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 15:47:52.0065 4804 NetBT - ok 15:47:52.0075 4804 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 15:47:52.0085 4804 Netlogon - ok 15:47:52.0125 4804 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 15:47:52.0215 4804 Netman - ok 15:47:52.0245 4804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 15:47:52.0305 4804 netprofm - ok 15:47:52.0340 4804 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 15:47:52.0350 4804 NetTcpPortSharing - ok 15:47:52.0380 4804 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 15:47:52.0385 4804 nfrd960 - ok 15:47:52.0480 4804 [ 4A9258B9597A31DB68EC9740F3A8A70B ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe 15:47:52.0500 4804 NIS - ok 15:47:52.0525 4804 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 15:47:52.0565 4804 NlaSvc - ok 15:47:52.0590 4804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 15:47:52.0640 4804 Npfs - ok 15:47:52.0675 4804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 15:47:52.0755 4804 nsi - ok 15:47:52.0755 4804 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 15:47:52.0795 4804 nsiproxy - ok 15:47:52.0860 4804 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 15:47:52.0910 4804 Ntfs - ok 15:47:52.0930 4804 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 15:47:52.0955 4804 Null - ok 15:47:52.0975 4804 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys 15:47:53.0035 4804 nusb3hub - ok 15:47:53.0070 4804 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys 15:47:53.0085 4804 nusb3xhc - ok 15:47:53.0115 4804 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 15:47:53.0130 4804 nvraid - ok 15:47:53.0145 4804 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 15:47:53.0155 4804 nvstor - ok 15:47:53.0180 4804 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 15:47:53.0190 4804 nv_agp - ok 15:47:53.0205 4804 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 15:47:53.0215 4804 ohci1394 - ok 15:47:53.0270 4804 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:47:53.0285 4804 ose - ok 15:47:53.0325 4804 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:47:53.0345 4804 ose64 - ok 15:47:53.0470 4804 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 15:47:53.0535 4804 osppsvc - ok 15:47:53.0560 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 15:47:53.0625 4804 p2pimsvc - ok 15:47:53.0650 4804 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 15:47:53.0680 4804 p2psvc - ok 15:47:53.0705 4804 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 15:47:53.0720 4804 Parport - ok 15:47:53.0745 4804 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 15:47:53.0755 4804 partmgr - ok 15:47:53.0770 4804 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 15:47:53.0825 4804 PcaSvc - ok 15:47:53.0850 4804 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 15:47:53.0865 4804 pci - ok 15:47:53.0875 4804 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 15:47:53.0885 4804 pciide - ok 15:47:53.0905 4804 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 15:47:53.0915 4804 pcmcia - ok 15:47:53.0925 4804 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 15:47:53.0935 4804 pcw - ok 15:47:53.0950 4804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 15:47:54.0015 4804 PEAUTH - ok 15:47:54.0065 4804 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 15:47:54.0140 4804 PeerDistSvc - ok 15:47:54.0210 4804 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 15:47:54.0255 4804 PerfHost - ok 15:47:54.0320 4804 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 15:47:54.0415 4804 pla - ok 15:47:54.0480 4804 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 15:47:54.0555 4804 PlugPlay - ok 15:47:54.0615 4804 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 15:47:54.0640 4804 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 15:47:54.0640 4804 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 15:47:54.0675 4804 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 15:47:54.0715 4804 PNRPAutoReg - ok 15:47:54.0745 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 15:47:54.0765 4804 PNRPsvc - ok 15:47:54.0800 4804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 15:47:54.0870 4804 PolicyAgent - ok 15:47:54.0910 4804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 15:47:54.0985 4804 Power - ok 15:47:55.0010 4804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 15:47:55.0090 4804 PptpMiniport - ok 15:47:55.0120 4804 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 15:47:55.0145 4804 Processor - ok 15:47:55.0185 4804 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 15:47:55.0265 4804 ProfSvc - ok 15:47:55.0275 4804 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 15:47:55.0295 4804 ProtectedStorage - ok 15:47:55.0320 4804 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 15:47:55.0395 4804 Psched - ok 15:47:55.0445 4804 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 15:47:55.0470 4804 ql2300 - ok 15:47:55.0490 4804 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 15:47:55.0500 4804 ql40xx - ok 15:47:55.0520 4804 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 15:47:55.0535 4804 QWAVE - ok 15:47:55.0550 4804 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 15:47:55.0605 4804 QWAVEdrv - ok 15:47:55.0645 4804 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 15:47:55.0720 4804 RasAcd - ok 15:47:55.0760 4804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 15:47:55.0810 4804 RasAgileVpn - ok 15:47:55.0820 4804 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 15:47:55.0875 4804 RasAuto - ok 15:47:55.0900 4804 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 15:47:55.0970 4804 Rasl2tp - ok 15:47:56.0010 4804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 15:47:56.0045 4804 RasMan - ok 15:47:56.0050 4804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 15:47:56.0125 4804 RasPppoe - ok 15:47:56.0165 4804 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 15:47:56.0240 4804 RasSstp - ok 15:47:56.0300 4804 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 15:47:56.0350 4804 rdbss - ok 15:47:56.0370 4804 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 15:47:56.0405 4804 rdpbus - ok 15:47:56.0440 4804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 15:47:56.0495 4804 RDPCDD - ok 15:47:56.0525 4804 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 15:47:56.0545 4804 RDPDR - ok 15:47:56.0550 4804 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 15:47:56.0585 4804 RDPENCDD - ok 15:47:56.0595 4804 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 15:47:56.0630 4804 RDPREFMP - ok 15:47:56.0660 4804 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 15:47:56.0680 4804 RDPWD - ok 15:47:56.0705 4804 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 15:47:56.0715 4804 rdyboost - ok 15:47:56.0735 4804 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 15:47:56.0785 4804 RemoteAccess - ok 15:47:56.0820 4804 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 15:47:56.0860 4804 RemoteRegistry - ok 15:47:56.0885 4804 [ E20B1907FC72A3664ECE21E3C20FC63D ] rimspci C:\Windows\system32\DRIVERS\rimspe64.sys 15:47:56.0945 4804 rimspci - ok 15:47:56.0960 4804 [ A6DA2B0C8F5BB3F9F5423CFF8D6A02D9 ] risdpcie C:\Windows\system32\DRIVERS\risdpe64.sys 15:47:57.0025 4804 risdpcie - ok 15:47:57.0035 4804 [ 6A1CD4674505E6791390A1AB71DA1FBE ] rixdpcie C:\Windows\system32\DRIVERS\rixdpe64.sys 15:47:57.0090 4804 rixdpcie - ok 15:47:57.0090 4804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 15:47:57.0155 4804 RpcEptMapper - ok 15:47:57.0190 4804 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 15:47:57.0215 4804 RpcLocator - ok 15:47:57.0235 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 15:47:57.0280 4804 RpcSs - ok 15:47:57.0300 4804 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 15:47:57.0330 4804 rspndr - ok 15:47:57.0350 4804 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 15:47:57.0385 4804 s3cap - ok 15:47:57.0420 4804 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 15:47:57.0435 4804 SamSs - ok 15:47:57.0445 4804 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 15:47:57.0465 4804 sbp2port - ok 15:47:57.0491 4804 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 15:47:57.0536 4804 SCardSvr - ok 15:47:57.0541 4804 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 15:47:57.0586 4804 scfilter - ok 15:47:57.0626 4804 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 15:47:57.0686 4804 Schedule - ok 15:47:57.0716 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 15:47:57.0746 4804 SCPolicySvc - ok 15:47:57.0771 4804 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 15:47:57.0781 4804 sdbus - ok 15:47:57.0806 4804 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 15:47:57.0876 4804 SDRSVC - ok 15:47:57.0901 4804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 15:47:57.0976 4804 secdrv - ok 15:47:58.0001 4804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 15:47:58.0026 4804 seclogon - ok 15:47:58.0041 4804 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 15:47:58.0096 4804 SENS - ok 15:47:58.0121 4804 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 15:47:58.0186 4804 SensrSvc - ok 15:47:58.0196 4804 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 15:47:58.0236 4804 Serenum - ok 15:47:58.0276 4804 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 15:47:58.0321 4804 Serial - ok 15:47:58.0346 4804 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 15:47:58.0386 4804 sermouse - ok 15:47:58.0431 4804 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 15:47:58.0511 4804 SessionEnv - ok 15:47:58.0516 4804 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 15:47:58.0526 4804 sffdisk - ok 15:47:58.0556 4804 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 15:47:58.0601 4804 sffp_mmc - ok 15:47:58.0606 4804 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 15:47:58.0631 4804 sffp_sd - ok 15:47:58.0656 4804 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 15:47:58.0666 4804 sfloppy - ok 15:47:58.0706 4804 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 15:47:58.0746 4804 SharedAccess - ok 15:47:58.0766 4804 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 15:47:58.0796 4804 ShellHWDetection - ok 15:47:58.0821 4804 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 15:47:58.0826 4804 SiSRaid2 - ok 15:47:58.0841 4804 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 15:47:58.0851 4804 SiSRaid4 - ok 15:47:58.0906 4804 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 15:47:58.0926 4804 SkypeUpdate - ok 15:47:58.0941 4804 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 15:47:59.0016 4804 Smb - ok 15:47:59.0076 4804 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 15:47:59.0121 4804 SNMPTRAP - ok 15:47:59.0161 4804 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 15:47:59.0181 4804 spldr - ok 15:47:59.0221 4804 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 15:47:59.0261 4804 Spooler - ok 15:47:59.0336 4804 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 15:47:59.0421 4804 sppsvc - ok 15:47:59.0456 4804 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 15:47:59.0486 4804 sppuinotify - ok 15:47:59.0521 4804 [ D8B882C520FC83547E22014FF5EC66D7 ] Spyder3 C:\Windows\system32\DRIVERS\Spyder3.sys 15:47:59.0581 4804 Spyder3 - ok 15:47:59.0671 4804 [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP C:\Windows\System32\Drivers\NISx64\1402000.013\SRTSP64.SYS 15:47:59.0706 4804 SRTSP - ok 15:47:59.0721 4804 [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX C:\Windows\system32\drivers\NISx64\1402000.013\SRTSPX64.SYS 15:47:59.0726 4804 SRTSPX - ok 15:47:59.0751 4804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 15:47:59.0771 4804 srv - ok 15:47:59.0791 4804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 15:47:59.0826 4804 srv2 - ok 15:47:59.0856 4804 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 15:47:59.0866 4804 srvnet - ok 15:47:59.0911 4804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 15:47:59.0961 4804 SSDPSRV - ok 15:47:59.0991 4804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 15:48:00.0021 4804 SstpSvc - ok 15:48:00.0111 4804 [ DA7702025DFD169B909C4DA3126762CC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe 15:48:00.0166 4804 STacSV - ok 15:48:00.0211 4804 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 15:48:00.0231 4804 stexstor - ok 15:48:00.0266 4804 [ CAF5A9708671B14B9670260735B22C4E ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 15:48:00.0311 4804 STHDA - ok 15:48:00.0361 4804 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 15:48:00.0411 4804 StillCam - ok 15:48:00.0471 4804 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 15:48:00.0501 4804 stisvc - ok 15:48:00.0531 4804 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 15:48:00.0541 4804 storflt - ok 15:48:00.0561 4804 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll 15:48:00.0616 4804 StorSvc - ok 15:48:00.0641 4804 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 15:48:00.0651 4804 storvsc - ok 15:48:00.0681 4804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 15:48:00.0691 4804 swenum - ok 15:48:00.0721 4804 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 15:48:00.0766 4804 swprv - ok 15:48:00.0816 4804 [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS C:\Windows\system32\drivers\NISx64\1402000.013\SYMDS64.SYS 15:48:00.0826 4804 SymDS - ok 15:48:00.0856 4804 [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA C:\Windows\system32\drivers\NISx64\1402000.013\SYMEFA64.SYS 15:48:00.0876 4804 SymEFA - ok 15:48:00.0896 4804 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 15:48:00.0906 4804 SymEvent - ok 15:48:00.0936 4804 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\NISx64\1402000.013\Ironx64.SYS 15:48:00.0956 4804 SymIRON - ok 15:48:00.0976 4804 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\System32\Drivers\NISx64\1402000.013\SYMNETS.SYS 15:48:00.0991 4804 SymNetS - ok 15:48:01.0046 4804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 15:48:01.0111 4804 SysMain - ok 15:48:01.0141 4804 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 15:48:01.0156 4804 TabletInputService - ok 15:48:01.0166 4804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 15:48:01.0236 4804 TapiSrv - ok 15:48:01.0256 4804 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 15:48:01.0291 4804 TBS - ok 15:48:01.0351 4804 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 15:48:01.0391 4804 Tcpip - ok 15:48:01.0421 4804 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 15:48:01.0451 4804 TCPIP6 - ok 15:48:01.0466 4804 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 15:48:01.0471 4804 tcpipreg - ok 15:48:01.0497 4804 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 15:48:01.0562 4804 TDPIPE - ok 15:48:01.0597 4804 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 15:48:01.0632 4804 TDTCP - ok 15:48:01.0662 4804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 15:48:01.0722 4804 tdx - ok 15:48:01.0742 4804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 15:48:01.0752 4804 TermDD - ok 15:48:01.0777 4804 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 15:48:01.0847 4804 TermService - ok 15:48:01.0877 4804 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 15:48:01.0892 4804 Themes - ok 15:48:01.0907 4804 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 15:48:01.0937 4804 THREADORDER - ok 15:48:01.0952 4804 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 15:48:02.0007 4804 TrkWks - ok 15:48:02.0062 4804 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 15:48:02.0122 4804 TrustedInstaller - ok 15:48:02.0132 4804 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 15:48:02.0182 4804 tssecsrv - ok 15:48:02.0222 4804 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 15:48:02.0247 4804 TsUsbFlt - ok 15:48:02.0257 4804 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 15:48:02.0297 4804 TsUsbGD - ok 15:48:02.0332 4804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 15:48:02.0412 4804 tunnel - ok 15:48:02.0442 4804 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 15:48:02.0447 4804 uagp35 - ok 15:48:02.0462 4804 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 15:48:02.0517 4804 udfs - ok 15:48:02.0557 4804 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 15:48:02.0577 4804 UI0Detect - ok 15:48:02.0602 4804 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 15:48:02.0612 4804 uliagpkx - ok 15:48:02.0627 4804 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 15:48:02.0672 4804 umbus - ok 15:48:02.0697 4804 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 15:48:02.0742 4804 UmPass - ok 15:48:02.0777 4804 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 15:48:02.0822 4804 UmRdpService - ok 15:48:02.0852 4804 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 15:48:02.0927 4804 upnphost - ok 15:48:02.0972 4804 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 15:48:02.0997 4804 USBAAPL64 - ok 15:48:03.0047 4804 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 15:48:03.0092 4804 usbaudio - ok 15:48:03.0152 4804 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 15:48:03.0187 4804 usbccgp - ok 15:48:03.0207 4804 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 15:48:03.0232 4804 usbcir - ok 15:48:03.0257 4804 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 15:48:03.0302 4804 usbehci - ok 15:48:03.0352 4804 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 15:48:03.0402 4804 usbhub - ok 15:48:03.0427 4804 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 15:48:03.0462 4804 usbohci - ok 15:48:03.0492 4804 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys 15:48:03.0537 4804 usbprint - ok 15:48:03.0567 4804 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:48:03.0632 4804 USBSTOR - ok 15:48:03.0662 4804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 15:48:03.0697 4804 usbuhci - ok 15:48:03.0742 4804 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 15:48:03.0772 4804 usbvideo - ok 15:48:03.0787 4804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 15:48:03.0882 4804 UxSms - ok 15:48:03.0912 4804 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 15:48:03.0932 4804 VaultSvc - ok 15:48:03.0947 4804 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 15:48:03.0952 4804 vdrvroot - ok 15:48:03.0977 4804 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 15:48:04.0047 4804 vds - ok 15:48:04.0087 4804 [ 00C7DF4F50962BA218AB60D32869100B ] vflt C:\Windows\system32\DRIVERS\vfilter.sys 15:48:04.0112 4804 vflt - ok 15:48:04.0132 4804 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 15:48:04.0157 4804 vga - ok 15:48:04.0172 4804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 15:48:04.0247 4804 VgaSave - ok 15:48:04.0272 4804 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 15:48:04.0282 4804 vhdmp - ok 15:48:04.0297 4804 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 15:48:04.0302 4804 viaide - ok 15:48:04.0327 4804 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 15:48:04.0342 4804 vmbus - ok 15:48:04.0347 4804 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 15:48:04.0382 4804 VMBusHID - ok 15:48:04.0437 4804 [ A99CA064AD11266FE7067A79BF78BBB5 ] vnet C:\Windows\system32\DRIVERS\virtualnet.sys 15:48:04.0497 4804 vnet - ok 15:48:04.0527 4804 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 15:48:04.0542 4804 volmgr - ok 15:48:04.0562 4804 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 15:48:04.0592 4804 volmgrx - ok 15:48:04.0617 4804 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 15:48:04.0632 4804 volsnap - ok 15:48:04.0657 4804 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 15:48:04.0667 4804 vsmraid - ok 15:48:04.0712 4804 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 15:48:04.0782 4804 VSS - ok 15:48:04.0817 4804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 15:48:04.0862 4804 vwifibus - ok 15:48:04.0902 4804 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 15:48:04.0932 4804 vwififlt - ok 15:48:04.0947 4804 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 15:48:04.0992 4804 W32Time - ok 15:48:05.0012 4804 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 15:48:05.0047 4804 WacomPen - ok 15:48:05.0082 4804 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 15:48:05.0152 4804 WANARP - ok 15:48:05.0152 4804 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 15:48:05.0182 4804 Wanarpv6 - ok 15:48:05.0287 4804 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 15:48:05.0327 4804 WatAdminSvc - ok 15:48:05.0367 4804 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 15:48:05.0442 4804 wbengine - ok 15:48:05.0457 4804 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 15:48:05.0492 4804 WbioSrvc - ok 15:48:05.0502 4804 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 15:48:05.0542 4804 wcncsvc - ok 15:48:05.0567 4804 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 15:48:05.0587 4804 WcsPlugInService - ok 15:48:05.0607 4804 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 15:48:05.0617 4804 Wd - ok 15:48:05.0657 4804 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 15:48:05.0692 4804 Wdf01000 - ok 15:48:05.0702 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 15:48:05.0802 4804 WdiServiceHost - ok 15:48:05.0807 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 15:48:05.0827 4804 WdiSystemHost - ok 15:48:05.0862 4804 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 15:48:05.0927 4804 WebClient - ok 15:48:05.0952 4804 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 15:48:06.0032 4804 Wecsvc - ok 15:48:06.0052 4804 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 15:48:06.0087 4804 wercplsupport - ok 15:48:06.0112 4804 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 15:48:06.0142 4804 WerSvc - ok 15:48:06.0162 4804 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 15:48:06.0192 4804 WfpLwf - ok 15:48:06.0202 4804 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 15:48:06.0212 4804 WIMMount - ok 15:48:06.0222 4804 WinDefend - ok 15:48:06.0222 4804 WinHttpAutoProxySvc - ok 15:48:06.0262 4804 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 15:48:06.0292 4804 Winmgmt - ok 15:48:06.0357 4804 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 15:48:06.0422 4804 WinRM - ok 15:48:06.0482 4804 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 15:48:06.0492 4804 WinUsb - ok 15:48:06.0523 4804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 15:48:06.0573 4804 Wlansvc - ok 15:48:06.0708 4804 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 15:48:06.0768 4804 wlidsvc - ok 15:48:06.0778 4804 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 15:48:06.0808 4804 WmiAcpi - ok 15:48:06.0848 4804 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 15:48:06.0888 4804 wmiApSrv - ok 15:48:06.0943 4804 WMPNetworkSvc - ok 15:48:06.0968 4804 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 15:48:06.0998 4804 WPCSvc - ok 15:48:07.0013 4804 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 15:48:07.0038 4804 WPDBusEnum - ok 15:48:07.0063 4804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 15:48:07.0103 4804 ws2ifsl - ok 15:48:07.0138 4804 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll 15:48:07.0188 4804 wscsvc - ok 15:48:07.0193 4804 WSearch - ok 15:48:07.0283 4804 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 15:48:07.0343 4804 wuauserv - ok 15:48:07.0373 4804 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 15:48:07.0433 4804 WudfPf - ok 15:48:07.0493 4804 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 15:48:07.0534 4804 WUDFRd - ok 15:48:07.0579 4804 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 15:48:07.0619 4804 wudfsvc - ok 15:48:07.0654 4804 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 15:48:07.0714 4804 WwanSvc - ok 15:48:07.0754 4804 ================ Scan global =============================== 15:48:07.0779 4804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 15:48:07.0809 4804 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll 15:48:07.0819 4804 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll 15:48:07.0839 4804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 15:48:07.0864 4804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 15:48:07.0869 4804 [Global] - ok 15:48:07.0869 4804 ================ Scan MBR ================================== 15:48:07.0879 4804 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 15:48:08.0174 4804 \Device\Harddisk0\DR0 - ok 15:48:08.0174 4804 ================ Scan VBR ================================== 15:48:08.0174 4804 [ E9308FB37125C004E874A3DBC5D8CD51 ] \Device\Harddisk0\DR0\Partition1 15:48:08.0179 4804 \Device\Harddisk0\DR0\Partition1 - ok 15:48:08.0214 4804 [ 059848088EB4CADDD5F00927D25CE964 ] \Device\Harddisk0\DR0\Partition2 15:48:08.0214 4804 \Device\Harddisk0\DR0\Partition2 - ok 15:48:08.0219 4804 ============================================================ 15:48:08.0219 4804 Scan finished 15:48:08.0219 4804 ============================================================ 15:48:08.0229 2884 Detected object count: 2 15:48:08.0229 2884 Actual detected object count: 2 15:48:28.0181 2884 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 15:48:28.0181 2884 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:48:28.0186 2884 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 15:48:28.0186 2884 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:48:37.0647 5348 ============================================================ 15:48:37.0647 5348 Scan started 15:48:37.0647 5348 Mode: Manual; SigCheck; TDLFS; 15:48:37.0647 5348 ============================================================ 15:48:38.0052 5348 ================ Scan system memory ======================== 15:48:38.0052 5348 System memory - ok 15:48:38.0052 5348 ================ Scan services ============================= 15:48:38.0212 5348 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 15:48:38.0227 5348 1394ohci - ok 15:48:38.0242 5348 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 15:48:38.0252 5348 ACPI - ok 15:48:38.0267 5348 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 15:48:38.0277 5348 AcpiPmi - ok 15:48:38.0307 5348 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys 15:48:38.0317 5348 adfs - ok 15:48:38.0427 5348 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 15:48:38.0437 5348 AdobeARMservice - ok 15:48:38.0512 5348 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 15:48:38.0522 5348 AdobeFlashPlayerUpdateSvc - ok 15:48:38.0542 5348 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 15:48:38.0552 5348 adp94xx - ok 15:48:38.0582 5348 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys 15:48:38.0592 5348 adpahci - ok 15:48:38.0612 5348 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 15:48:38.0617 5348 adpu320 - ok 15:48:38.0647 5348 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 15:48:38.0682 5348 AeLookupSvc - ok 15:48:38.0752 5348 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe 15:48:38.0762 5348 AESTFilters - ok 15:48:38.0807 5348 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 15:48:38.0817 5348 AFD - ok 15:48:38.0842 5348 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 15:48:38.0847 5348 agp440 - ok 15:48:38.0867 5348 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 15:48:38.0877 5348 ALG - ok 15:48:38.0892 5348 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 15:48:38.0897 5348 aliide - ok 15:48:38.0917 5348 [ 3D90CF67DB75823A8480E56BBCD2E028 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 15:48:38.0927 5348 AMD External Events Utility - ok 15:48:38.0937 5348 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 15:48:38.0947 5348 amdide - ok 15:48:38.0957 5348 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 15:48:38.0972 5348 AmdK8 - ok 15:48:39.0082 5348 [ 52679612D742BF74CA1BA6AB86DDF431 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys 15:48:39.0142 5348 amdkmdag - ok 15:48:39.0162 5348 [ 414E0788920A8C856032BE2CBF29F984 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 15:48:39.0172 5348 amdkmdap - ok 15:48:39.0187 5348 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 15:48:39.0197 5348 AmdPPM - ok 15:48:39.0227 5348 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 15:48:39.0237 5348 amdsata - ok 15:48:39.0262 5348 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 15:48:39.0272 5348 amdsbs - ok 15:48:39.0297 5348 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 15:48:39.0302 5348 amdxata - ok 15:48:39.0317 5348 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 15:48:39.0342 5348 AppID - ok 15:48:39.0362 5348 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 15:48:39.0392 5348 AppIDSvc - ok 15:48:39.0407 5348 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 15:48:39.0437 5348 Appinfo - ok 15:48:39.0482 5348 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 15:48:39.0492 5348 Apple Mobile Device - ok 15:48:39.0512 5348 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 15:48:39.0522 5348 AppMgmt - ok 15:48:39.0537 5348 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys 15:48:39.0542 5348 arc - ok 15:48:39.0552 5348 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys 15:48:39.0562 5348 arcsas - ok 15:48:39.0577 5348 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 15:48:39.0607 5348 AsyncMac - ok 15:48:39.0617 5348 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 15:48:39.0627 5348 atapi - ok 15:48:39.0652 5348 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys 15:48:39.0662 5348 AtiHdmiService - ok 15:48:39.0792 5348 [ 52679612D742BF74CA1BA6AB86DDF431 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 15:48:39.0857 5348 atikmdag - ok 15:48:39.0902 5348 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 15:48:39.0932 5348 AudioEndpointBuilder - ok 15:48:39.0942 5348 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 15:48:39.0977 5348 AudioSrv - ok 15:48:39.0982 5348 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 15:48:39.0997 5348 AxInstSV - ok 15:48:40.0022 5348 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 15:48:40.0032 5348 b06bdrv - ok 15:48:40.0052 5348 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 15:48:40.0067 5348 b57nd60a - ok 15:48:40.0132 5348 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe 15:48:40.0142 5348 BBSvc - ok 15:48:40.0157 5348 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe 15:48:40.0167 5348 BBUpdate - ok 15:48:40.0227 5348 [ FB4FDA64F2E8552EAEB5986C3F34462C ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys 15:48:40.0272 5348 BCM43XX - ok 15:48:40.0297 5348 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 15:48:40.0307 5348 BDESVC - ok 15:48:40.0322 5348 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 15:48:40.0357 5348 Beep - ok 15:48:40.0377 5348 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 15:48:40.0412 5348 BFE - ok 15:48:40.0597 5348 [ ED97ADAF00A61F57A2CCBBB1CE58C600 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130107.001\BHDrvx64.sys 15:48:40.0622 5348 BHDrvx64 - ok 15:48:40.0842 5348 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 15:48:40.0877 5348 BITS - ok 15:48:40.0927 5348 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 15:48:40.0937 5348 blbdrive - ok 15:48:41.0167 5348 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 15:48:41.0177 5348 Bonjour Service - ok 15:48:41.0207 5348 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 15:48:41.0212 5348 bowser - ok 15:48:41.0227 5348 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 15:48:41.0237 5348 BrFiltLo - ok 15:48:41.0257 5348 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 15:48:41.0267 5348 BrFiltUp - ok 15:48:41.0282 5348 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 15:48:41.0312 5348 BridgeMP - ok 15:48:41.0347 5348 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 15:48:41.0357 5348 Browser - ok 15:48:41.0377 5348 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 15:48:41.0387 5348 Brserid - ok 15:48:41.0392 5348 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 15:48:41.0407 5348 BrSerWdm - ok 15:48:41.0417 5348 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 15:48:41.0427 5348 BrUsbMdm - ok 15:48:41.0437 5348 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 15:48:41.0447 5348 BrUsbSer - ok 15:48:41.0462 5348 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 15:48:41.0477 5348 BTHMODEM - ok 15:48:41.0507 5348 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 15:48:41.0537 5348 bthserv - ok 15:48:41.0542 5348 catchme - ok 15:48:41.0677 5348 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1402000.013\ccSetx64.sys 15:48:41.0697 5348 ccSet_NIS - ok 15:48:41.0762 5348 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 15:48:41.0807 5348 cdfs - ok 15:48:41.0822 5348 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 15:48:41.0832 5348 cdrom - ok 15:48:41.0842 5348 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 15:48:41.0872 5348 CertPropSvc - ok 15:48:41.0882 5348 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 15:48:41.0897 5348 circlass - ok 15:48:41.0932 5348 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 15:48:41.0942 5348 CLFS - ok 15:48:42.0032 5348 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:48:42.0037 5348 clr_optimization_v2.0.50727_32 - ok 15:48:42.0082 5348 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 15:48:42.0087 5348 clr_optimization_v2.0.50727_64 - ok 15:48:42.0132 5348 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:48:42.0137 5348 clr_optimization_v4.0.30319_32 - ok 15:48:42.0147 5348 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 15:48:42.0157 5348 clr_optimization_v4.0.30319_64 - ok 15:48:42.0177 5348 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 15:48:42.0182 5348 CmBatt - ok 15:48:42.0192 5348 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 15:48:42.0202 5348 cmdide - ok 15:48:42.0227 5348 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 15:48:42.0247 5348 CNG - ok 15:48:42.0257 5348 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 15:48:42.0262 5348 Compbatt - ok 15:48:42.0272 5348 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 15:48:42.0287 5348 CompositeBus - ok 15:48:42.0287 5348 COMSysApp - ok 15:48:42.0302 5348 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 15:48:42.0307 5348 crcdisk - ok 15:48:42.0342 5348 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 15:48:42.0352 5348 CryptSvc - ok 15:48:42.0377 5348 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys 15:48:42.0392 5348 CSC - ok 15:48:42.0412 5348 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll 15:48:42.0427 5348 CscService - ok 15:48:42.0462 5348 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 15:48:42.0497 5348 DcomLaunch - ok 15:48:42.0527 5348 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 15:48:42.0562 5348 defragsvc - ok 15:48:42.0582 5348 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 15:48:42.0612 5348 DfsC - ok 15:48:42.0627 5348 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 15:48:42.0637 5348 Dhcp - ok 15:48:42.0652 5348 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 15:48:42.0682 5348 discache - ok 15:48:42.0692 5348 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys 15:48:42.0702 5348 Disk - ok 15:48:42.0727 5348 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 15:48:42.0737 5348 dmvsc - ok 15:48:42.0762 5348 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 15:48:42.0772 5348 Dnscache - ok 15:48:42.0787 5348 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 15:48:42.0822 5348 dot3svc - ok 15:48:42.0847 5348 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 15:48:42.0882 5348 DPS - ok 15:48:42.0902 5348 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 15:48:42.0917 5348 drmkaud - ok 15:48:42.0937 5348 dtpd - ok 15:48:42.0977 5348 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 15:48:42.0997 5348 DXGKrnl - ok 15:48:43.0012 5348 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 15:48:43.0042 5348 EapHost - ok 15:48:43.0107 5348 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys 15:48:43.0142 5348 ebdrv - ok 15:48:43.0182 5348 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys 15:48:43.0197 5348 eeCtrl - ok 15:48:43.0227 5348 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 15:48:43.0237 5348 EFS - ok 15:48:43.0297 5348 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 15:48:43.0312 5348 ehRecvr - ok 15:48:43.0332 5348 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 15:48:43.0342 5348 ehSched - ok 15:48:43.0372 5348 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys 15:48:43.0387 5348 elxstor - ok 15:48:43.0407 5348 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 15:48:43.0417 5348 ErrDev - ok 15:48:43.0442 5348 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 15:48:43.0472 5348 EventSystem - ok 15:48:43.0497 5348 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 15:48:43.0527 5348 exfat - ok 15:48:43.0552 5348 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 15:48:43.0582 5348 fastfat - ok 15:48:43.0602 5348 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 15:48:43.0617 5348 Fax - ok 15:48:43.0632 5348 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys 15:48:43.0642 5348 fdc - ok 15:48:43.0657 5348 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 15:48:43.0687 5348 fdPHost - ok 15:48:43.0702 5348 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 15:48:43.0727 5348 FDResPub - ok 15:48:43.0757 5348 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 15:48:43.0762 5348 FileInfo - ok 15:48:43.0777 5348 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 15:48:43.0807 5348 Filetrace - ok 15:48:43.0852 5348 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 15:48:43.0862 5348 FLEXnet Licensing Service - ok 15:48:43.0922 5348 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe 15:48:43.0937 5348 FLEXnet Licensing Service 64 - ok 15:48:43.0962 5348 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 15:48:43.0972 5348 flpydisk - ok 15:48:43.0997 5348 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 15:48:44.0007 5348 FltMgr - ok 15:48:44.0042 5348 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 15:48:44.0057 5348 FontCache - ok 15:48:44.0102 5348 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 15:48:44.0112 5348 FontCache3.0.0.0 - ok 15:48:44.0122 5348 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 15:48:44.0132 5348 FsDepends - ok 15:48:44.0152 5348 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 15:48:44.0162 5348 Fs_Rec - ok 15:48:44.0187 5348 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 15:48:44.0197 5348 fvevol - ok 15:48:44.0212 5348 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 15:48:44.0222 5348 gagp30kx - ok 15:48:44.0242 5348 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 15:48:44.0252 5348 GEARAspiWDM - ok 15:48:44.0282 5348 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 15:48:44.0322 5348 gpsvc - ok 15:48:44.0362 5348 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:48:44.0372 5348 gupdate - ok 15:48:44.0377 5348 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:48:44.0382 5348 gupdatem - ok 15:48:44.0412 5348 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 15:48:44.0422 5348 hcw85cir - ok 15:48:44.0447 5348 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 15:48:44.0462 5348 HdAudAddService - ok 15:48:44.0482 5348 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 15:48:44.0492 5348 HDAudBus - ok 15:48:44.0507 5348 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 15:48:44.0517 5348 HidBatt - ok 15:48:44.0537 5348 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys 15:48:44.0547 5348 HidBth - ok 15:48:44.0567 5348 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 15:48:44.0577 5348 HidIr - ok 15:48:44.0597 5348 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 15:48:44.0627 5348 hidserv - ok 15:48:44.0637 5348 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 15:48:44.0642 5348 HidUsb - ok 15:48:44.0667 5348 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 15:48:44.0697 5348 hkmsvc - ok 15:48:44.0712 5348 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 15:48:44.0722 5348 HomeGroupListener - ok 15:48:44.0747 5348 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 15:48:44.0757 5348 HomeGroupProvider - ok 15:48:44.0782 5348 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 15:48:44.0787 5348 HpSAMD - ok 15:48:44.0812 5348 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 15:48:44.0847 5348 HTTP - ok 15:48:44.0857 5348 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 15:48:44.0862 5348 hwpolicy - ok 15:48:44.0877 5348 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 15:48:44.0887 5348 i8042prt - ok 15:48:44.0902 5348 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 15:48:44.0917 5348 iaStorV - ok 15:48:44.0982 5348 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 15:48:45.0012 5348 idsvc - ok 15:48:45.0097 5348 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130113.001\IDSvia64.sys 15:48:45.0122 5348 IDSVia64 - ok 15:48:45.0162 5348 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys 15:48:45.0182 5348 iirsp - ok 15:48:45.0182 5348 iked - ok 15:48:45.0357 5348 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 15:48:45.0407 5348 IKEEXT - ok 15:48:45.0457 5348 [ 4FF8A2082D78255D2EB169F986BCC981 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys 15:48:45.0472 5348 Impcd - ok 15:48:45.0492 5348 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 15:48:45.0502 5348 intelide - ok 15:48:45.0522 5348 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 15:48:45.0527 5348 intelppm - ok 15:48:45.0552 5348 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 15:48:45.0587 5348 IPBusEnum - ok 15:48:45.0602 5348 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:48:45.0627 5348 IpFilterDriver - ok 15:48:45.0672 5348 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 15:48:45.0702 5348 iphlpsvc - ok 15:48:45.0732 5348 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 15:48:45.0747 5348 IPMIDRV - ok 15:48:45.0752 5348 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 15:48:45.0782 5348 IPNAT - ok 15:48:45.0822 5348 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 15:48:45.0852 5348 iPod Service - ok 15:48:45.0857 5348 ipsecd - ok 15:48:45.0867 5348 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 15:48:45.0877 5348 IRENUM - ok 15:48:45.0892 5348 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 15:48:45.0902 5348 isapnp - ok 15:48:45.0917 5348 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 15:48:45.0927 5348 iScsiPrt - ok 15:48:45.0952 5348 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] itecir C:\Windows\system32\DRIVERS\itecir.sys 15:48:45.0962 5348 itecir - ok 15:48:45.0987 5348 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys 15:48:45.0997 5348 k57nd60a - ok 15:48:46.0017 5348 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 15:48:46.0027 5348 kbdclass - ok 15:48:46.0032 5348 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 15:48:46.0042 5348 kbdhid - ok 15:48:46.0052 5348 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 15:48:46.0062 5348 KeyIso - ok 15:48:46.0092 5348 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 15:48:46.0102 5348 KSecDD - ok 15:48:46.0117 5348 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 15:48:46.0127 5348 KSecPkg - ok 15:48:46.0132 5348 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 15:48:46.0162 5348 ksthunk - ok 15:48:46.0202 5348 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 15:48:46.0237 5348 KtmRm - ok 15:48:46.0262 5348 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 15:48:46.0292 5348 LanmanServer - ok 15:48:46.0332 5348 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 15:48:46.0387 5348 LanmanWorkstation - ok 15:48:46.0422 5348 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 15:48:46.0447 5348 lltdio - ok 15:48:46.0497 5348 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 15:48:46.0552 5348 lltdsvc - ok 15:48:46.0568 5348 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 15:48:46.0598 5348 lmhosts - ok 15:48:46.0623 5348 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 15:48:46.0633 5348 LSI_FC - ok 15:48:46.0643 5348 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 15:48:46.0653 5348 LSI_SAS - ok 15:48:46.0663 5348 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 15:48:46.0673 5348 LSI_SAS2 - ok 15:48:46.0688 5348 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 15:48:46.0698 5348 LSI_SCSI - ok 15:48:46.0713 5348 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 15:48:46.0743 5348 luafv - ok 15:48:46.0748 5348 MaxImIO - ok 15:48:46.0778 5348 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 15:48:46.0793 5348 Mcx2Svc - ok 15:48:46.0813 5348 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys 15:48:46.0823 5348 megasas - ok 15:48:46.0843 5348 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 15:48:46.0858 5348 MegaSR - ok 15:48:46.0903 5348 Microsoft SharePoint Workspace Audit Service - ok 15:48:46.0918 5348 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 15:48:46.0973 5348 MMCSS - ok 15:48:46.0983 5348 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 15:48:47.0013 5348 Modem - ok 15:48:47.0038 5348 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 15:48:47.0048 5348 monitor - ok 15:48:47.0058 5348 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 15:48:47.0063 5348 mouclass - ok 15:48:47.0073 5348 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 15:48:47.0083 5348 mouhid - ok 15:48:47.0093 5348 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 15:48:47.0098 5348 mountmgr - ok 15:48:47.0128 5348 [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 15:48:47.0138 5348 MozillaMaintenance - ok 15:48:47.0153 5348 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 15:48:47.0163 5348 mpio - ok 15:48:47.0178 5348 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 15:48:47.0208 5348 mpsdrv - ok 15:48:47.0228 5348 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 15:48:47.0263 5348 MpsSvc - ok 15:48:47.0283 5348 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 15:48:47.0293 5348 MRxDAV - ok 15:48:47.0318 5348 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 15:48:47.0328 5348 mrxsmb - ok 15:48:47.0338 5348 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:48:47.0348 5348 mrxsmb10 - ok 15:48:47.0373 5348 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:48:47.0383 5348 mrxsmb20 - ok 15:48:47.0408 5348 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 15:48:47.0413 5348 msahci - ok 15:48:47.0433 5348 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 15:48:47.0438 5348 msdsm - ok 15:48:47.0473 5348 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 15:48:47.0498 5348 MSDTC - ok 15:48:47.0518 5348 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 15:48:47.0563 5348 Msfs - ok 15:48:47.0573 5348 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 15:48:47.0603 5348 mshidkmdf - ok 15:48:47.0613 5348 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 15:48:47.0623 5348 msisadrv - ok 15:48:47.0648 5348 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 15:48:47.0678 5348 MSiSCSI - ok 15:48:47.0678 5348 msiserver - ok 15:48:47.0693 5348 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 15:48:47.0718 5348 MSKSSRV - ok 15:48:47.0723 5348 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 15:48:47.0753 5348 MSPCLOCK - ok 15:48:47.0758 5348 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 15:48:47.0783 5348 MSPQM - ok 15:48:47.0803 5348 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 15:48:47.0813 5348 MsRPC - ok 15:48:47.0823 5348 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 15:48:47.0833 5348 mssmbios - ok 15:48:47.0848 5348 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 15:48:47.0878 5348 MSTEE - ok 15:48:47.0883 5348 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 15:48:47.0893 5348 MTConfig - ok 15:48:47.0918 5348 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 15:48:47.0923 5348 Mup - ok 15:48:47.0948 5348 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 15:48:47.0978 5348 napagent - ok 15:48:47.0988 5348 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 15:48:48.0003 5348 NativeWifiP - ok 15:48:48.0073 5348 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130112.007\ENG64.SYS 15:48:48.0088 5348 NAVENG - ok 15:48:48.0138 5348 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\VirusDefs\20130112.007\EX64.SYS 15:48:48.0178 5348 NAVEX15 - ok 15:48:48.0213 5348 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 15:48:48.0233 5348 NDIS - ok 15:48:48.0253 5348 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 15:48:48.0283 5348 NdisCap - ok 15:48:48.0308 5348 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 15:48:48.0333 5348 NdisTapi - ok 15:48:48.0343 5348 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 15:48:48.0373 5348 Ndisuio - ok 15:48:48.0388 5348 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 15:48:48.0418 5348 NdisWan - ok 15:48:48.0428 5348 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 15:48:48.0458 5348 NDProxy - ok 15:48:48.0493 5348 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 15:48:48.0498 5348 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 15:48:48.0498 5348 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 15:48:48.0513 5348 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 15:48:48.0558 5348 NetBIOS - ok 15:48:48.0568 5348 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 15:48:48.0598 5348 NetBT - ok 15:48:48.0613 5348 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 15:48:48.0623 5348 Netlogon - ok 15:48:48.0648 5348 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 15:48:48.0683 5348 Netman - ok 15:48:48.0698 5348 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 15:48:48.0728 5348 netprofm - ok 15:48:48.0753 5348 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 15:48:48.0758 5348 NetTcpPortSharing - ok 15:48:48.0783 5348 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 15:48:48.0788 5348 nfrd960 - ok 15:48:48.0883 5348 [ 4A9258B9597A31DB68EC9740F3A8A70B ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe 15:48:48.0903 5348 NIS - ok 15:48:48.0918 5348 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 15:48:48.0933 5348 NlaSvc - ok 15:48:48.0943 5348 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 15:48:48.0973 5348 Npfs - ok 15:48:48.0993 5348 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 15:48:49.0023 5348 nsi - ok 15:48:49.0028 5348 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 15:48:49.0053 5348 nsiproxy - ok 15:48:49.0113 5348 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 15:48:49.0153 5348 Ntfs - ok 15:48:49.0173 5348 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 15:48:49.0203 5348 Null - ok 15:48:49.0228 5348 [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys 15:48:49.0233 5348 nusb3hub - ok 15:48:49.0263 5348 [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys 15:48:49.0273 5348 nusb3xhc - ok 15:48:49.0303 5348 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 15:48:49.0323 5348 nvraid - ok 15:48:49.0338 5348 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 15:48:49.0353 5348 nvstor - ok 15:48:49.0368 5348 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 15:48:49.0378 5348 nv_agp - ok 15:48:49.0398 5348 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 15:48:49.0408 5348 ohci1394 - ok 15:48:49.0458 5348 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:48:49.0473 5348 ose - ok 15:48:49.0503 5348 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:48:49.0513 5348 ose64 - ok 15:48:49.0633 5348 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 15:48:49.0708 5348 osppsvc - ok 15:48:49.0733 5348 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 15:48:49.0743 5348 p2pimsvc - ok 15:48:49.0768 5348 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 15:48:49.0783 5348 p2psvc - ok 15:48:49.0808 5348 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys 15:48:49.0828 5348 Parport - ok 15:48:49.0858 5348 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 15:48:49.0868 5348 partmgr - ok 15:48:49.0878 5348 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 15:48:49.0898 5348 PcaSvc - ok 15:48:49.0908 5348 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 15:48:49.0923 5348 pci - ok 15:48:49.0938 5348 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 15:48:49.0948 5348 pciide - ok 15:48:49.0963 5348 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 15:48:49.0978 5348 pcmcia - ok 15:48:49.0988 5348 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 15:48:49.0998 5348 pcw - ok 15:48:50.0013 5348 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 15:48:50.0048 5348 PEAUTH - ok 15:48:50.0093 5348 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 15:48:50.0123 5348 PeerDistSvc - ok 15:48:50.0188 5348 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 15:48:50.0208 5348 PerfHost - ok 15:48:50.0253 5348 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 15:48:50.0303 5348 pla - ok 15:48:50.0333 5348 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 15:48:50.0348 5348 PlugPlay - ok 15:48:50.0373 5348 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 15:48:50.0378 5348 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 15:48:50.0378 5348 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 15:48:50.0388 5348 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 15:48:50.0398 5348 PNRPAutoReg - ok 15:48:50.0413 5348 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 15:48:50.0428 5348 PNRPsvc - ok 15:48:50.0458 5348 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 15:48:50.0488 5348 PolicyAgent - ok 15:48:50.0518 5348 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 15:48:50.0553 5348 Power - ok 15:48:50.0573 5348 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 15:48:50.0603 5348 PptpMiniport - ok 15:48:50.0618 5348 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys 15:48:50.0628 5348 Processor - ok 15:48:50.0663 5348 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 15:48:50.0673 5348 ProfSvc - ok 15:48:50.0688 5348 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 15:48:50.0698 5348 ProtectedStorage - ok 15:48:50.0703 5348 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 15:48:50.0733 5348 Psched - ok 15:48:50.0768 5348 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 15:48:50.0798 5348 ql2300 - ok 15:48:50.0818 5348 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 15:48:50.0823 5348 ql40xx - ok 15:48:50.0848 5348 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 15:48:50.0863 5348 QWAVE - ok 15:48:50.0878 5348 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 15:48:50.0888 5348 QWAVEdrv - ok 15:48:50.0913 5348 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 15:48:50.0943 5348 RasAcd - ok 15:48:50.0968 5348 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 15:48:50.0998 5348 RasAgileVpn - ok 15:48:51.0008 5348 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 15:48:51.0038 5348 RasAuto - ok 15:48:51.0048 5348 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 15:48:51.0078 5348 Rasl2tp - ok 15:48:51.0098 5348 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 15:48:51.0128 5348 RasMan - ok 15:48:51.0153 5348 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 15:48:51.0183 5348 RasPppoe - ok 15:48:51.0193 5348 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 15:48:51.0223 5348 RasSstp - ok 15:48:51.0238 5348 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 15:48:51.0268 5348 rdbss - ok 15:48:51.0278 5348 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 15:48:51.0293 5348 rdpbus - ok 15:48:51.0298 5348 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 15:48:51.0328 5348 RDPCDD - ok 15:48:51.0353 5348 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 15:48:51.0363 5348 RDPDR - ok 15:48:51.0368 5348 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 15:48:51.0393 5348 RDPENCDD - ok 15:48:51.0408 5348 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 15:48:51.0433 5348 RDPREFMP - ok 15:48:51.0473 5348 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 15:48:51.0478 5348 RDPWD - ok 15:48:51.0508 5348 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 15:48:51.0518 5348 rdyboost - ok 15:48:51.0593 5348 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 15:48:51.0653 5348 RemoteAccess - ok 15:48:51.0683 5348 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 15:48:51.0713 5348 RemoteRegistry - ok 15:48:51.0758 5348 [ E20B1907FC72A3664ECE21E3C20FC63D ] rimspci C:\Windows\system32\DRIVERS\rimspe64.sys 15:48:51.0768 5348 rimspci - ok 15:48:51.0778 5348 [ A6DA2B0C8F5BB3F9F5423CFF8D6A02D9 ] risdpcie C:\Windows\system32\DRIVERS\risdpe64.sys 15:48:51.0793 5348 risdpcie - ok 15:48:51.0813 5348 [ 6A1CD4674505E6791390A1AB71DA1FBE ] rixdpcie C:\Windows\system32\DRIVERS\rixdpe64.sys 15:48:51.0823 5348 rixdpcie - ok 15:48:51.0833 5348 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 15:48:51.0893 5348 RpcEptMapper - ok 15:48:51.0903 5348 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 15:48:51.0918 5348 RpcLocator - ok 15:48:51.0938 5348 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 15:48:51.0968 5348 RpcSs - ok 15:48:51.0983 5348 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 15:48:52.0013 5348 rspndr - ok 15:48:52.0038 5348 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 15:48:52.0043 5348 s3cap - ok 15:48:52.0063 5348 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 15:48:52.0073 5348 SamSs - ok 15:48:52.0083 5348 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 15:48:52.0093 5348 sbp2port - ok 15:48:52.0118 5348 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 15:48:52.0148 5348 SCardSvr - ok 15:48:52.0158 5348 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 15:48:52.0188 5348 scfilter - ok 15:48:52.0213 5348 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 15:48:52.0248 5348 Schedule - ok 15:48:52.0268 5348 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 15:48:52.0298 5348 SCPolicySvc - ok 15:48:52.0323 5348 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys 15:48:52.0333 5348 sdbus - ok 15:48:52.0358 5348 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 15:48:52.0368 5348 SDRSVC - ok 15:48:52.0388 5348 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 15:48:52.0418 5348 secdrv - ok 15:48:52.0423 5348 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 15:48:52.0448 5348 seclogon - ok 15:48:52.0458 5348 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 15:48:52.0488 5348 SENS - ok 15:48:52.0498 5348 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 15:48:52.0503 5348 SensrSvc - ok 15:48:52.0523 5348 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys 15:48:52.0528 5348 Serenum - ok 15:48:52.0543 5348 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys 15:48:52.0553 5348 Serial - ok 15:48:52.0568 5348 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys 15:48:52.0578 5348 sermouse - ok 15:48:52.0598 5348 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 15:48:52.0628 5348 SessionEnv - ok 15:48:52.0633 5348 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 15:48:52.0643 5348 sffdisk - ok 15:48:52.0658 5348 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 15:48:52.0668 5348 sffp_mmc - ok 15:48:52.0673 5348 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 15:48:52.0683 5348 sffp_sd - ok 15:48:52.0688 5348 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 15:48:52.0698 5348 sfloppy - ok 15:48:52.0723 5348 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 15:48:52.0753 5348 SharedAccess - ok 15:48:52.0783 5348 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 15:48:52.0813 5348 ShellHWDetection - ok 15:48:52.0828 5348 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 15:48:52.0838 5348 SiSRaid2 - ok 15:48:52.0858 5348 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 15:48:52.0868 5348 SiSRaid4 - ok 15:48:52.0893 5348 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 15:48:52.0898 5348 SkypeUpdate - ok 15:48:52.0908 5348 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 15:48:52.0938 5348 Smb - ok 15:48:52.0953 5348 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 15:48:52.0963 5348 SNMPTRAP - ok 15:48:52.0973 5348 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 15:48:52.0983 5348 spldr - ok 15:48:53.0013 5348 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 15:48:53.0028 5348 Spooler - ok 15:48:53.0108 5348 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 15:48:53.0183 5348 sppsvc - ok 15:48:53.0193 5348 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 15:48:53.0223 5348 sppuinotify - ok 15:48:53.0238 5348 [ D8B882C520FC83547E22014FF5EC66D7 ] Spyder3 C:\Windows\system32\DRIVERS\Spyder3.sys 15:48:53.0248 5348 Spyder3 - ok 15:48:53.0323 5348 [ 3510E7021D2637A67FBCB5105EAE945D ] SRTSP C:\Windows\System32\Drivers\NISx64\1402000.013\SRTSP64.SYS 15:48:53.0358 5348 SRTSP - ok 15:48:53.0373 5348 [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX C:\Windows\system32\drivers\NISx64\1402000.013\SRTSPX64.SYS 15:48:53.0378 5348 SRTSPX - ok 15:48:53.0403 5348 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 15:48:53.0413 5348 srv - ok 15:48:53.0428 5348 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 15:48:53.0438 5348 srv2 - ok 15:48:53.0453 5348 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 15:48:53.0463 5348 srvnet - ok 15:48:53.0488 5348 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 15:48:53.0518 5348 SSDPSRV - ok 15:48:53.0528 5348 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 15:48:53.0558 5348 SstpSvc - ok 15:48:53.0639 5348 [ DA7702025DFD169B909C4DA3126762CC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe 15:48:53.0659 5348 STacSV - ok 15:48:53.0684 5348 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys 15:48:53.0699 5348 stexstor - ok 15:48:53.0734 5348 [ CAF5A9708671B14B9670260735B22C4E ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 15:48:53.0754 5348 STHDA - ok 15:48:53.0779 5348 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 15:48:53.0794 5348 StillCam - ok 15:48:53.0829 5348 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 15:48:53.0869 5348 stisvc - ok 15:48:53.0889 5348 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 15:48:53.0904 5348 storflt - ok 15:48:53.0924 5348 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll 15:48:53.0934 5348 StorSvc - ok 15:48:53.0949 5348 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys 15:48:53.0964 5348 storvsc - ok 15:48:53.0999 5348 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 15:48:54.0009 5348 swenum - ok 15:48:54.0039 5348 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 15:48:54.0084 5348 swprv - ok 15:48:54.0119 5348 [ 777217682DA76337E8E6EC8AC4412B9B ] SymDS C:\Windows\system32\drivers\NISx64\1402000.013\SYMDS64.SYS 15:48:54.0129 5348 SymDS - ok 15:48:54.0159 5348 [ 64D1AF3D04E70A681154FFF1893848F6 ] SymEFA C:\Windows\system32\drivers\NISx64\1402000.013\SYMEFA64.SYS 15:48:54.0179 5348 SymEFA - ok 15:48:54.0199 5348 [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS 15:48:54.0209 5348 SymEvent - ok 15:48:54.0239 5348 [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON C:\Windows\system32\drivers\NISx64\1402000.013\Ironx64.SYS 15:48:54.0249 5348 SymIRON - ok 15:48:54.0259 5348 [ 1605EBD8CB86AFC4430116065995279A ] SymNetS C:\Windows\System32\Drivers\NISx64\1402000.013\SYMNETS.SYS 15:48:54.0274 5348 SymNetS - ok 15:48:54.0329 5348 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 15:48:54.0374 5348 SysMain - ok 15:48:54.0384 5348 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 15:48:54.0399 5348 TabletInputService - ok 15:48:54.0409 5348 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 15:48:54.0444 5348 TapiSrv - ok 15:48:54.0454 5348 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 15:48:54.0484 5348 TBS - ok 15:48:54.0544 5348 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 15:48:54.0594 5348 Tcpip - ok 15:48:54.0614 5348 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 15:48:54.0644 5348 TCPIP6 - ok 15:48:54.0659 5348 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 15:48:54.0664 5348 tcpipreg - ok 15:48:54.0689 5348 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 15:48:54.0699 5348 TDPIPE - ok 15:48:54.0729 5348 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 15:48:54.0739 5348 TDTCP - ok 15:48:54.0749 5348 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 15:48:54.0774 5348 tdx - ok 15:48:54.0784 5348 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 15:48:54.0794 5348 TermDD - ok 15:48:54.0824 5348 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 15:48:54.0854 5348 TermService - ok 15:48:54.0869 5348 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 15:48:54.0884 5348 Themes - ok 15:48:54.0904 5348 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 15:48:54.0929 5348 THREADORDER - ok 15:48:54.0944 5348 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 15:48:54.0974 5348 TrkWks - ok 15:48:55.0014 5348 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 15:48:55.0044 5348 TrustedInstaller - ok 15:48:55.0059 5348 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 15:48:55.0084 5348 tssecsrv - ok 15:48:55.0104 5348 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 15:48:55.0114 5348 TsUsbFlt - ok 15:48:55.0134 5348 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 15:48:55.0139 5348 TsUsbGD - ok 15:48:55.0159 5348 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 15:48:55.0189 5348 tunnel - ok 15:48:55.0199 5348 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 15:48:55.0209 5348 uagp35 - ok 15:48:55.0224 5348 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 15:48:55.0254 5348 udfs - ok 15:48:55.0284 5348 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 15:48:55.0294 5348 UI0Detect - ok 15:48:55.0314 5348 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 15:48:55.0319 5348 uliagpkx - ok 15:48:55.0339 5348 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 15:48:55.0349 5348 umbus - ok 15:48:55.0359 5348 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys 15:48:55.0369 5348 UmPass - ok 15:48:55.0389 5348 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll 15:48:55.0399 5348 UmRdpService - ok 15:48:55.0409 5348 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 15:48:55.0444 5348 upnphost - ok 15:48:55.0464 5348 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 15:48:55.0474 5348 USBAAPL64 - ok 15:48:55.0509 5348 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 15:48:55.0534 5348 usbaudio - ok 15:48:55.0564 5348 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 15:48:55.0584 5348 usbccgp - ok 15:48:55.0604 5348 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 15:48:55.0619 5348 usbcir - ok 15:48:55.0629 5348 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 15:48:55.0639 5348 usbehci - ok 15:48:55.0659 5348 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 15:48:55.0674 5348 usbhub - ok 15:48:55.0694 5348 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 15:48:55.0709 5348 usbohci - ok 15:48:55.0719 5348 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys 15:48:55.0739 5348 usbprint - ok 15:48:55.0754 5348 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:48:55.0764 5348 USBSTOR - ok 15:48:55.0779 5348 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 15:48:55.0789 5348 usbuhci - ok 15:48:55.0819 5348 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 15:48:55.0834 5348 usbvideo - ok 15:48:55.0859 5348 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 15:48:55.0899 5348 UxSms - ok 15:48:55.0914 5348 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 15:48:55.0919 5348 VaultSvc - ok 15:48:55.0924 5348 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 15:48:55.0934 5348 vdrvroot - ok 15:48:55.0954 5348 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 15:48:55.0989 5348 vds - ok 15:48:56.0004 5348 [ 00C7DF4F50962BA218AB60D32869100B ] vflt C:\Windows\system32\DRIVERS\vfilter.sys 15:48:56.0014 5348 vflt - ok 15:48:56.0034 5348 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 15:48:56.0044 5348 vga - ok 15:48:56.0059 5348 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 15:48:56.0084 5348 VgaSave - ok 15:48:56.0099 5348 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 15:48:56.0109 5348 vhdmp - ok 15:48:56.0124 5348 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 15:48:56.0129 5348 viaide - ok 15:48:56.0154 5348 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys 15:48:56.0164 5348 vmbus - ok 15:48:56.0174 5348 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 15:48:56.0184 5348 VMBusHID - ok 15:48:56.0204 5348 [ A99CA064AD11266FE7067A79BF78BBB5 ] vnet C:\Windows\system32\DRIVERS\virtualnet.sys 15:48:56.0214 5348 vnet - ok 15:48:56.0229 5348 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 15:48:56.0234 5348 volmgr - ok 15:48:56.0249 5348 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 15:48:56.0259 5348 volmgrx - ok 15:48:56.0269 5348 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 15:48:56.0284 5348 volsnap - ok 15:48:56.0299 5348 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 15:48:56.0309 5348 vsmraid - ok 15:48:56.0364 5348 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 15:48:56.0419 5348 VSS - ok 15:48:56.0429 5348 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 15:48:56.0439 5348 vwifibus - ok 15:48:56.0454 5348 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 15:48:56.0469 5348 vwififlt - ok 15:48:56.0484 5348 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 15:48:56.0514 5348 W32Time - ok 15:48:56.0529 5348 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys 15:48:56.0539 5348 WacomPen - ok 15:48:56.0549 5348 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 15:48:56.0579 5348 WANARP - ok 15:48:56.0584 5348 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 15:48:56.0609 5348 Wanarpv6 - ok 15:48:56.0669 5348 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 15:48:56.0704 5348 WatAdminSvc - ok 15:48:56.0829 5348 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 15:48:56.0864 5348 wbengine - ok 15:48:56.0904 5348 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 15:48:56.0919 5348 WbioSrvc - ok 15:48:57.0029 5348 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 15:48:57.0069 5348 wcncsvc - ok 15:48:57.0074 5348 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 15:48:57.0089 5348 WcsPlugInService - ok 15:48:57.0109 5348 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys 15:48:57.0119 5348 Wd - ok 15:48:57.0159 5348 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 15:48:57.0194 5348 Wdf01000 - ok 15:48:57.0204 5348 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 15:48:57.0224 5348 WdiServiceHost - ok 15:48:57.0224 5348 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 15:48:57.0239 5348 WdiSystemHost - ok 15:48:57.0264 5348 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 15:48:57.0279 5348 WebClient - ok 15:48:57.0294 5348 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 15:48:57.0324 5348 Wecsvc - ok 15:48:57.0339 5348 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 15:48:57.0369 5348 wercplsupport - ok 15:48:57.0379 5348 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 15:48:57.0409 5348 WerSvc - ok 15:48:57.0429 5348 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 15:48:57.0459 5348 WfpLwf - ok 15:48:57.0469 5348 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 15:48:57.0479 5348 WIMMount - ok 15:48:57.0489 5348 WinDefend - ok 15:48:57.0494 5348 WinHttpAutoProxySvc - ok 15:48:57.0529 5348 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 15:48:57.0559 5348 Winmgmt - ok 15:48:57.0614 5348 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 15:48:57.0674 5348 WinRM - ok 15:48:57.0699 5348 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 15:48:57.0714 5348 WinUsb - ok 15:48:57.0744 5348 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 15:48:57.0764 5348 Wlansvc - ok 15:48:57.0879 5348 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 15:48:57.0929 5348 wlidsvc - ok 15:48:57.0939 5348 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 15:48:57.0949 5348 WmiAcpi - ok 15:48:57.0974 5348 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 15:48:57.0984 5348 wmiApSrv - ok 15:48:58.0009 5348 WMPNetworkSvc - ok 15:48:58.0029 5348 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 15:48:58.0044 5348 WPCSvc - ok 15:48:58.0059 5348 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 15:48:58.0074 5348 WPDBusEnum - ok 15:48:58.0099 5348 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 15:48:58.0139 5348 ws2ifsl - ok 15:48:58.0154 5348 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll 15:48:58.0169 5348 wscsvc - ok 15:48:58.0174 5348 WSearch - ok 15:48:58.0234 5348 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 15:48:58.0269 5348 wuauserv - ok 15:48:58.0299 5348 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 15:48:58.0309 5348 WudfPf - ok 15:48:58.0334 5348 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 15:48:58.0344 5348 WUDFRd - ok 15:48:58.0379 5348 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 15:48:58.0389 5348 wudfsvc - ok 15:48:58.0414 5348 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 15:48:58.0429 5348 WwanSvc - ok 15:48:58.0434 5348 ================ Scan global =============================== 15:48:58.0454 5348 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 15:48:58.0484 5348 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll 15:48:58.0494 5348 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll 15:48:58.0524 5348 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 15:48:58.0539 5348 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 15:48:58.0544 5348 [Global] - ok 15:48:58.0544 5348 ================ Scan MBR ================================== 15:48:58.0559 5348 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 15:48:58.0840 5348 \Device\Harddisk0\DR0 - ok 15:48:58.0840 5348 ================ Scan VBR ================================== 15:48:58.0845 5348 [ E9308FB37125C004E874A3DBC5D8CD51 ] \Device\Harddisk0\DR0\Partition1 15:48:58.0845 5348 \Device\Harddisk0\DR0\Partition1 - ok 15:48:58.0880 5348 [ 059848088EB4CADDD5F00927D25CE964 ] \Device\Harddisk0\DR0\Partition2 15:48:58.0885 5348 \Device\Harddisk0\DR0\Partition2 - ok 15:48:58.0885 5348 ============================================================ 15:48:58.0885 5348 Scan finished 15:48:58.0885 5348 ============================================================ 15:48:58.0895 3800 Detected object count: 2 15:48:58.0895 3800 Actual detected object count: 2 15:49:02.0315 3800 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 15:49:02.0315 3800 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:49:02.0315 3800 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user 15:49:02.0315 3800 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip - - - Updated - - - Als dat de volgende vraag zou zijn : Firefox werkt nog steeds niet.
  15. Nu vanop de iPad, want ook Internet Explorer werkt niet meer na herstarten na ComboFix : ' illegal operation attempte on a registry key that has been marked for deletion.' Ook Office werkt niet meer : dezelfde melding. - - - Updated - - - Ook Windows Explorer werkt nu niet meer. - - - Updated - - - OK, werkt terug na heropstarten. Firefox nog niet. Hierondder de log van ComboFix. - - - Updated - - - ComboFix 13-02-07.02 - Marc 09/02/2013 15:15:16.1.4 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.32.1033.18.8181.5324 [GMT 1:00] Gestart vanuit: c:\users\Marc\Desktop\ComboFix.exe AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\Setup.exe c:\program files (x86)\version.txt c:\users\Marc\AppData\Local\Temp\_MEI35202\_ctypes.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\_elementtree.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\_hashlib.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\_socket.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\_ssl.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\pyexpat.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\pysqlite2._sqlite.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\python26.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\pythoncom26.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\PyWinTypes26.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\select.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\unicodedata.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32api.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32com.shell.shell.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32crypt.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32event.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32file.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32inet.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32pdh.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32process.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32profile.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32security.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\win32ts.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\windows._cacheinvalidation.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._controls_.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._core_.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._gdi_.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._html2.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._misc_.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._windows_.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wx._wizard.pyd c:\users\Marc\AppData\Local\Temp\_MEI35202\wxbase293u_net_vc.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\wxbase293u_vc.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\wxmsw293u_adv_vc.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\wxmsw293u_core_vc.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\wxmsw293u_html_vc.dll c:\users\Marc\AppData\Local\Temp\_MEI35202\wxmsw293u_webview_vc.dll . . (((((((((((((((((((( Bestanden Gemaakt van 2013-01-09 to 2013-02-09 )))))))))))))))))))))))))))))) . . 2013-02-09 14:21 . 2013-02-09 14:21 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{47F187DC-3DB0-463E-A0B4-6259BE791C3A}\offreg.dll 2013-02-09 14:20 . 2013-02-09 14:20 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-02-08 20:10 . 2013-02-08 20:04 24064 ----a-w- c:\windows\zoek-delete.exe 2013-02-08 20:10 . 2013-02-09 14:22 -------- d-----w- c:\users\Marc\AppData\Local\Temp 2013-02-08 17:12 . 2013-02-08 17:12 388096 ----a-r- c:\users\Marc\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2013-02-08 17:12 . 2013-02-08 17:12 -------- d-----w- c:\program files (x86)\Trend Micro 2013-02-07 09:15 . 2013-02-07 09:15 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service 2013-01-26 13:25 . 2013-01-26 13:25 -------- d-----w- c:\program files (x86)\Common Files\Skype 2013-01-26 13:25 . 2013-01-26 13:25 -------- d-----r- c:\program files (x86)\Skype 2013-01-23 17:29 . 2013-01-26 20:10 -------- d-----w- c:\windows\system32\drivers\NISx64\1402010.016 . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-02-08 14:51 . 2012-04-06 16:44 697712 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-02-08 14:51 . 2011-12-27 18:35 74096 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-01-30 10:53 . 2010-11-21 03:27 273840 ------w- c:\windows\system32\MpSigStub.exe 2013-01-09 23:35 . 2011-12-24 15:04 67599240 ----a-w- c:\windows\system32\MRT.exe 2012-12-16 17:11 . 2012-12-20 23:34 46080 ----a-w- c:\windows\system32\atmlib.dll 2012-12-16 14:45 . 2012-12-20 23:34 367616 ----a-w- c:\windows\system32\atmfd.dll 2012-12-16 14:13 . 2012-12-20 23:34 295424 ----a-w- c:\windows\SysWow64\atmfd.dll 2012-12-16 14:13 . 2012-12-20 23:34 34304 ----a-w- c:\windows\SysWow64\atmlib.dll 2012-12-07 13:20 . 2013-01-09 17:47 441856 ----a-w- c:\windows\system32\Wpc.dll 2012-12-07 13:15 . 2013-01-09 17:47 2746368 ----a-w- c:\windows\system32\gameux.dll 2012-12-07 12:26 . 2013-01-09 17:47 308736 ----a-w- c:\windows\SysWow64\Wpc.dll 2012-12-07 12:20 . 2013-01-09 17:47 2576384 ----a-w- c:\windows\SysWow64\gameux.dll 2012-12-07 11:20 . 2013-01-09 17:47 30720 ----a-w- c:\windows\system32\usk.rs 2012-12-07 11:20 . 2013-01-09 17:47 43520 ----a-w- c:\windows\system32\csrr.rs 2012-12-07 11:20 . 2013-01-09 17:47 23552 ----a-w- c:\windows\system32\oflc.rs 2012-12-07 11:20 . 2013-01-09 17:47 45568 ----a-w- c:\windows\system32\oflc-nz.rs 2012-12-07 11:20 . 2013-01-09 17:47 44544 ----a-w- c:\windows\system32\pegibbfc.rs 2012-12-07 11:20 . 2013-01-09 17:47 20480 ----a-w- c:\windows\system32\pegi-fi.rs 2012-12-07 11:20 . 2013-01-09 17:47 20480 ----a-w- c:\windows\system32\pegi-pt.rs 2012-12-07 11:19 . 2013-01-09 17:47 20480 ----a-w- c:\windows\system32\pegi.rs 2012-12-07 11:19 . 2013-01-09 17:47 46592 ----a-w- c:\windows\system32\fpb.rs 2012-12-07 11:19 . 2013-01-09 17:47 40960 ----a-w- c:\windows\system32\cob-au.rs 2012-12-07 11:19 . 2013-01-09 17:47 21504 ----a-w- c:\windows\system32\grb.rs 2012-12-07 11:19 . 2013-01-09 17:47 15360 ----a-w- c:\windows\system32\djctq.rs 2012-12-07 11:19 . 2013-01-09 17:47 55296 ----a-w- c:\windows\system32\cero.rs 2012-12-07 11:19 . 2013-01-09 17:47 51712 ----a-w- c:\windows\system32\esrb.rs 2012-12-07 10:46 . 2013-01-09 17:47 43520 ----a-w- c:\windows\SysWow64\csrr.rs 2012-12-07 10:46 . 2013-01-09 17:47 30720 ----a-w- c:\windows\SysWow64\usk.rs 2012-12-07 10:46 . 2013-01-09 17:47 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs 2012-12-07 10:46 . 2013-01-09 17:47 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs 2012-12-07 10:46 . 2013-01-09 17:47 23552 ----a-w- c:\windows\SysWow64\oflc.rs 2012-12-07 10:46 . 2013-01-09 17:47 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs 2012-12-07 10:46 . 2013-01-09 17:47 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs 2012-12-07 10:46 . 2013-01-09 17:47 46592 ----a-w- c:\windows\SysWow64\fpb.rs 2012-12-07 10:46 . 2013-01-09 17:47 20480 ----a-w- c:\windows\SysWow64\pegi.rs 2012-12-07 10:46 . 2013-01-09 17:47 21504 ----a-w- c:\windows\SysWow64\grb.rs 2012-12-07 10:46 . 2013-01-09 17:47 40960 ----a-w- c:\windows\SysWow64\cob-au.rs 2012-12-07 10:46 . 2013-01-09 17:47 15360 ----a-w- c:\windows\SysWow64\djctq.rs 2012-12-07 10:46 . 2013-01-09 17:47 55296 ----a-w- c:\windows\SysWow64\cero.rs 2012-12-07 10:46 . 2013-01-09 17:47 51712 ----a-w- c:\windows\SysWow64\esrb.rs 2012-11-30 05:45 . 2013-01-09 17:46 362496 ----a-w- c:\windows\system32\wow64win.dll 2012-11-30 05:45 . 2013-01-09 17:46 243200 ----a-w- c:\windows\system32\wow64.dll 2012-11-30 05:45 . 2013-01-09 17:46 13312 ----a-w- c:\windows\system32\wow64cpu.dll 2012-11-30 05:45 . 2013-01-09 17:46 215040 ----a-w- c:\windows\system32\winsrv.dll 2012-11-30 05:43 . 2013-01-09 17:46 16384 ----a-w- c:\windows\system32\ntvdm64.dll 2012-11-30 05:41 . 2013-01-09 17:46 424448 ----a-w- c:\windows\system32\KernelBase.dll 2012-11-30 05:41 . 2013-01-09 17:46 1161216 ----a-w- c:\windows\system32\kernel32.dll 2012-11-30 05:38 . 2013-01-09 17:46 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2012-11-30 05:38 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll 2012-11-30 04:54 . 2013-01-09 17:46 5120 ----a-w- c:\windows\SysWow64\wow32.dll 2012-11-30 04:53 . 2013-01-09 17:46 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll 2012-11-30 04:45 . 2013-01-09 17:46 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll 2012-11-30 04:45 . 2013-01-09 17:46 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-18 911160] "GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2012-12-17 16328976] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584] "iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-12-17 59872] "ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-12-17 59872] "com.apple.dav.bookmarks.daemon"="c:\program files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe" [2012-12-17 59872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352] "HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2010-03-12 49208] "AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544] . c:\users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dropbox.lnk - c:\users\Marc\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-1-20 28539272] EvernoteClipper.lnk - c:\program files (x86)\Evernote\Evernote\EvernoteClipper.exe [2012-5-9 1014112] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Spyder3Utility.lnk - c:\program files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe [2010-7-26 7667970] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\BASHDefs\20130107.001\BHDrvx64.sys [2012-10-23 1384608] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 MaxImIO;MaxIm Port I/O;c:\windows\system32\Drivers\maximio.sys [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536] R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe [2012-02-10 240408] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168] R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2012-09-07 1038088] R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-09-30 80384] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-09-30 180736] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] R3 Spyder3;Datacolor Spyder3;c:\windows\system32\DRIVERS\Spyder3.sys [2010-03-30 15360] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760] R3 vnet;Shrew Soft Virtual Adapter;c:\windows\system32\DRIVERS\virtualnet.sys [2010-09-02 17408] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-12-24 1255736] S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1402000.013\SYMDS64.SYS [2012-10-04 493216] S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1402000.013\SYMEFA64.SYS [2012-10-04 1133216] S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1402000.013\ccSetx64.sys [2012-10-04 168096] S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\Definitions\IPSDefs\20130113.001\IDSvia64.sys [2012-10-19 513184] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1402000.013\Ironx64.SYS [2012-09-07 224416] S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1402000.013\SYMNETS.SYS [2012-09-07 432800] S1 vflt;Shrew Soft Lightweight Filter;c:\windows\system32\DRIVERS\vfilter.sys [2010-09-02 21504] S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe [2009-03-03 89600] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-22 202752] S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe [2012-02-10 193816] S2 dtpd;ShrewSoft DNS Proxy Daemon;c:\program files\ShrewSoft\VPN Client\dtpd.exe [2010-10-08 56592] S2 iked;ShrewSoft IKE Daemon;c:\program files\ShrewSoft\VPN Client\iked.exe [2010-10-08 957712] S2 ipsecd;ShrewSoft IPSEC Daemon;c:\program files\ShrewSoft\VPN Client\ipsecd.exe [2010-10-08 697616] S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe [2012-10-11 143928] S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimspe64.sys [2009-07-02 60416] S2 risdpcie;risdpcie;c:\windows\system32\DRIVERS\risdpe64.sys [2009-07-01 80896] S2 rixdpcie;rixdpcie;c:\windows\system32\DRIVERS\rixdpe64.sys [2009-07-04 55808] S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-12 151040] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-10 270848] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - WS2IFSL . Inhoud van de 'Gedeelde Taken' map . 2013-02-09 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-06 14:51] . 2013-02-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-27 18:55] . 2013-02-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-27 18:55] . 2013-02-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1469895408-1050253506-2644504703-1000Core.job - c:\users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-13 11:15] . 2013-02-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1469895408-1050253506-2644504703-1000UA.job - c:\users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe [2013-01-13 11:15] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}] 2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}] 2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}] 2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay] @="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}" [HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}] 2012-12-17 18:50 755816 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-21 487424] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.be/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204 IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000 IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105 TCP: DhcpNameServer = 192.168.1.1 TCP: Interfaces\{6F26C1D4-78BD-483C-ADBB-B79799001B3C}: NameServer = 10.0.1.4,10.0.1.2 FF - ProfilePath - c:\users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\12y7ck12.default-1360262548365\ FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.com FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q= FF - ExtSQL: 2013-01-26 21:10; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\coFFPlgn FF - ExtSQL: 2013-01-26 21:10; {BBDA0591-3099-440a-AA10-41764D9DB4DB}; c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.1.2\IPSFFPlgn . - - - - ORPHANS VERWIJDERD - - - - . ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - c:\users\Marc\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll Wow6432Node-HKCU-Run-MobileDocuments - c:\program files (x86)\Common Files\Apple\Internet Services\ubd.exe Wow6432Node-HKCU-Run-AdobeBridge - (no file) Wow6432Node-HKLM-Run-<NO NAME> - (no file) AddRemove-BabylonToolbar - c:\program files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\NIS] "ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\20.2.0.19\diMaster.dll\" /prefetch:1" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_149_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_149_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_149.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe . ************************************************************************** . Voltooingstijd: 2013-02-09 15:26:10 - machine werd herstart ComboFix-quarantined-files.txt 2013-02-09 14:26 . Pre-Run: 62.841.544.704 bytes free Post-Run: 62.740.905.984 bytes free . - - End Of File - - C3B5C2757EEF59D57EF42EF2DBB758BF
  16. Klein probleem : ik krijg de melding dat Norton Internet Security nog ingeschakeld is. Als ik dit echter tracht op te starten, gebeurt er niets (ik krijg niet het menu van Norton). Ook de Uninstall werkt niet. Van Combofix krijg ik echter de melding dat dit tot onvoorspelbare schade en mogelijk systeemschade kan leiden. - - - Updated - - - Ik krijg de melding dat Microsoft Essentials geïnstalleerd is als 'conflicting software'. Maar ... ik heb Essentials uitgeschakeld.
  17. Zoek.exe Version 4.0.0.1 Updated 04-February-2013 Tool run by Marc on vr 08/02/2013 at 21:04:36,95. Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64 Running in: Normal Mode No Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ShrewSoft\VPN Client\dtpd.exe C:\Program Files\ShrewSoft\VPN Client\iked.exe C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\IDT\WDM\sttray64.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe C:\Users\Marc\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE C:\Program Files (x86)\Firestorm-Release\Firestorm-Release.exe C:\Program Files (x86)\Firestorm-Release\SLPlugin.exe C:\Program Files (x86)\Firestorm-Release\SLPlugin.exe C:\Program Files (x86)\Firestorm-Release\SLVoice.exe C:\Program Files\Microsoft Office\Office14\EXCEL.EXE C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Firestorm-Release\SLPlugin.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\taskhost.exe C:\Users\Marc\AppData\Local\Temp\Temp1_zoek.zip\zoek.exe C:\Users\Marc\AppData\Local\Temp\RarSFX0\zoek.com C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\mshta.exe ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully ==== FireFox Fix ====================== Deleted from C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\12y7ck12.default-1360262548365\prefs.js: Added to C:\Users\Marc\AppData\Roaming\Mozilla\Firefox\Profiles\12y7ck12.default-1360262548365\prefs.js: user_pref("browser.startup.homepage", "Google"); user_pref("browser.search.defaulturl", "Google="); user_pref("browser.newtab.url", "Google"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "Google="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); ==== Deleting Files \ Folders ====================== "C:\user.js" deleted "C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml" deleted "C:\user.js" deleted "C:\Windows\syswow64\appdata" deleted "C:\Program Files (x86)\BabylonToolbar" deleted "C:\Users\Marc\AppData\Roaming\Babylon" deleted "C:\ProgramData\Babylon" deleted "C:\Users\Marc\AppData\Local\Babylon" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-02-07 11:02:25 2A66E81AE941E54A237490FC35D387C8 1945 ----a-w- C:\Windows\epplauncher.mif ====== C:\Users\Marc\AppData\Local\Temp ==== 2013-01-30 23:58:57 F655170EB3DC3CBB3F564077C670A7E1 897448 ----a-w- C:\Users\Marc\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe ====== C:\Windows\SysWOW64 ===== ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== ====== C:\Windows\Sysnative\drivers ===== ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\Program Files (x86) ===== 2013-02-08 17:12:29 -------- d-----w- C:\Program Files (x86)\Trend Micro 2013-02-07 09:15:11 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service 2013-01-26 13:25:07 -------- d-----w- C:\Program Files (x86)\Common Files\Skype 2013-01-26 13:25:07 -------- d-----r- C:\Program Files (x86)\Skype ======= C: ===== ====== C:\Users\Marc\AppData\Roaming ====== ====== C:\Users\Marc ====== ====== C: exe-files == 2013-02-07 10:59:03 B2FB415A7171B20E127AB4EB2EDB12B4 13541864 ----a-w- C:\Users\Marc\Downloads\mseinstall.exe 2013-02-07 09:15:13 F59814FBEF50A58BFC0E0F14B2805245 105758 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe 2013-02-07 09:15:11 51A84B690DF519DCF656F780243D953E 115608 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 2013-02-07 09:14:49 E2F3451289DDFF1A474A3EC7958A50AA 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-1469895408-1050253506-2644504703-1000\$IWN9396.exe 2013-02-07 09:14:28 181AC7211DB54E793845E8C7216C1A8B 20300952 ----a-w- C:\Users\Marc\Downloads\Firefox Setup 18.0.2.exe 2013-02-06 23:08:28 F9B44C27FD2E8B5BB4099E5958769FFF 271768 ----a-w- C:\Users\Marc\AppData\Local\Temp\MozUpdater-5\updater.exe 2013-02-01 22:26:52 3BB272D71D7E168D9350F277B5D78C4D 150024 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\reporter.exe 2013-02-01 21:40:12 09E411E1DC92D813F49DFEEB4039CBCA 79384 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe === C: other files == 2013-02-08 14:12:28 FF13BC0EAD656E2DE88BD245BA3D2BF7 1214976 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxmsw293u_adv_vc.dll 2013-02-08 14:12:28 D4E7C1546CF3131B7D84B39F8DA9E321 59904 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\mfcm90.dll 2013-02-08 14:12:28 B9030D821E099C79DE1C9125B790E2DA 1162744 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\mfc90u.dll 2013-02-08 14:12:28 699EFC4D6FE0A2FE24D7049608F2D543 593408 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxmsw293u_html_vc.dll 2013-02-08 14:12:28 462DDCC5EB88F34AED991416F8E354B2 1156600 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\mfc90.dll 2013-02-08 14:12:28 3D01C7F884349A6170A1E0D3CF812333 81920 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxmsw293u_webview_vc.dll 2013-02-08 14:12:28 371226B8346F29011137C7AA9E93F2F6 59904 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\mfcm90u.dll 2013-02-08 14:12:28 2B9A6B7B7A3997C12841A5D869F022A4 4555264 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxmsw293u_core_vc.dll 2013-02-08 14:12:28 29CD1F3E9148FCD542DEC355A41776AF 152576 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxbase293u_net_vc.dll 2013-02-08 14:12:27 9E6AD2917D6FD7730FF37B50F7053183 1972224 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\wxbase293u_vc.dll 2013-02-08 14:12:27 30F3D3E322C5339004415D7BC8BF246E 2149888 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\python26.dll 2013-02-08 14:12:26 ABC5DCAC962AE8AF7AF214DD0D6D4FF6 110592 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\PyWinTypes26.dll 2013-02-08 14:12:26 9CFCB3CA3D83B4EAA133F0644A2C6F31 23040 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\psapi.dll 2013-02-08 14:12:26 65EE7A7C20134DED91485AEF23C882D4 354304 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\pythoncom26.dll 2013-02-08 14:12:25 B921FB870C9AC0D509B2CCABBBBE95F3 989696 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\kernel32.dll 2013-02-08 14:12:25 08B99916C98E15F6C28D24D73E53B45A 8461312 ----a-w- C:\Users\Marc\AppData\Local\Temp\_MEI34962\shell32.dll 2013-02-01 22:26:50 3679D1D208D98AD2DC38F0747C7FD026 4734984 ----a-w- C:\Users\Marc\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll 2013-02-01 22:26:50 295F4D938E73290B95C95204E9B12608 202248 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\gtpo3d_host.dll 2013-02-01 22:26:46 BB08208DAF66A6BF01A9B1E68C820BC3 320520 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkax.dll 2013-02-01 22:26:46 9D3C4180BDB7D8C7AFC0861BF24360F0 324616 ----a-w- C:\Users\Marc\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll 2013-02-01 22:26:46 7003564D5EE047C04E4B2494098EC6B5 148488 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkremoting.dll 2013-02-01 22:26:44 AF62DA72F956AA698947199C0832E54B 10138632 ----a-w- C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkplugin.dll 2013-02-01 21:40:00 44BFEC5C9C82A2EE9871D88FD3B9A0E2 3734536 ----a-w- C:\Users\Marc\AppData\Roaming\Mozilla\plugins\Google Talk Plugin Extras\d3dx9_36.dll ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Run] "MobileDocuments"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe" "OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "com.apple.dav.bookmarks.daemon"="C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe" "Google Update"="C:\Users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe /c" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "HP Software Update"="C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe" "AdobeCS4ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe -launchedbylogin" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "MobileDocuments"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe" "OfficeSyncProcess"="C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" "GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" "ApplePhotoStreams"="C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" "com.apple.dav.bookmarks.daemon"="C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe" "Google Update"="C:\Users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe /c" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BCSSync"="C:\Program Files\Microsoft Office\Office14\BCSSync.exe /DelayServices" "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe" ==== Startup Folders ====================== 2012-06-15 17:50:14 1050 ----a-w- C:\users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk 2012-06-10 18:11:29 1131 ----a-w- C:\users\Marc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk 2011-12-26 16:26:25 1333 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Spyder3Utility.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [08/02/2013 15:51] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27/12/2011 19:55] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27/12/2011 19:55] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1469895408-1050253506-2644504703-1000Core.job --a------ C:\Users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe [16/09/2012 12:15] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1469895408-1050253506-2644504703-1000UA.job --a------ C:\Users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe [16/09/2012 12:15] ==== Firefox Extensions ====================== AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\Exts\Chrome.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" "Default_Page_URL"="Dell Official Site - The Power To Do More | Dell" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" "Start Page"="Google" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_USERS\S-1-5-21-1469895408-1050253506-2644504703-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_CLASSES_ROOT\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully HKEY_CLASSES_ROOT\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-help deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk deleted successfully ==== HijackThis Entries ====================== F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\coIEPlg.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\coIEPlg.dll O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{6F26C1D4-78BD-483C-ADBB-B79799001B3C}: NameServer = 10.0.1.4,10.0.1.2 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ShrewSoft DNS Proxy Daemon (dtpd) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\dtpd.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: ShrewSoft IKE Daemon (iked) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\iked.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ShrewSoft IPSEC Daemon (ipsecd) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Marc\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marc\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\users\Marc\AppData\Local\Mozilla\Firefox\Profiles\12y7ck12.default-1360262548365\Cache emptied successfully ==== Empty Chrome Cache ====================== No Chrome User Data found ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Marc\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\Marc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
  18. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:15:15, on 8/02/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe C:\Users\Marc\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe C:\Program Files (x86)\Google\Drive\googledrivesync.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe C:\Users\Marc\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Dell Official Site - The Power To Do More | Dell R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\coIEPlg.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll" (file missing) O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\coIEPlg.dll O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\Marc\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Marc\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe O4 - Global Startup: Spyder3Utility.lnk = C:\Program Files (x86)\Datacolor\Spyder3Pro\Utility\Spyder3Utility.exe O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{6F26C1D4-78BD-483C-ADBB-B79799001B3C}: NameServer = 10.0.1.4,10.0.1.2 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ShrewSoft DNS Proxy Daemon (dtpd) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\dtpd.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: ShrewSoft IKE Daemon (iked) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\iked.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: ShrewSoft IPSEC Daemon (ipsecd) - Unknown owner - C:\Program Files\ShrewSoft\VPN Client\ipsecd.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\20.2.0.19\ccSvcHst.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14432 bytes
  19. Ik krijg plots geen toegang meer tot internet via Firefox : "Unable to connect". Heb Firefox verwijderd, gedownload en opnieuw geïnstalleerd, maar nog steeds hetzelfde probleem. Met Internet Explorer geen probleem. Windows Firewall gecontroleerd en daar staat Firefox tussen de toegelaten programma's. Wat kan er aan de hand zijn ?
  20. Geprobeerd, maar krijg dan de melding "Update not applicable to your computer."
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.