virus

Yabui · 4 september 2012

Beste,

Ik heb deze week iets verkeerd gedownload waardoor ik een trojan heb. Mijn virusscanner (bullguard) zou die normaal gezien verwijderd hebben.

Toch heb ik nog altijd wat problemen met een virus/spyware/geen idee wat het is. Als ik iets via google zoek word ik doorverwezen naar een compleet andere site (zie bijlage). Bullguard vindt geen virussen of dergelijke maar ik heb het opgezocht op internet en het zou wel degelijk kwaadaardig zijn.

Iemand die weet hoe ik dit kan oplossen?

Alvast bedankt

Hijack bestand :

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:43:13, on 4/09/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16448)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe

C:\Program Files (x86)\Xfire\Xfire.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe

C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [Google Update] "C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [showBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire\Xfire.exe

O4 - Global Startup: vpngui.exe.lnk = ?

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll

O9 - Extra button: PokerStars.be - {878AC5FC-BE78-4bae-896C-7F75B790A71E} - C:\Program Files (x86)\PokerStars.BE\PokerStarsUpdate.exe

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\windows\system32\bglsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll BgGamingMonitor.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

O23 - Service: BullGuard Behavioural Detection (BsBhvScan) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe

O23 - Service: BullGuard scanning service (BsScanner) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe

O23 - Service: BullGuard update service (BsUpdate) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe

O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 11330 bytes

kweezie wabbit · 4 september 2012

Niets verontrustends in dit logje.

Download MVPS Hosts.

Unzip het programma naar een door u bepaalde locatie.

Klik rechts op mvps.bat en kies voor ”uitvoeren als administrator” om mvps.bat op te starten.

Druk op een toets om door te gaan.

Van het bestaande bestand HOSTS op de standaardlocatie C:\windows\system32\drivers\etc wordt een backup gemaakt met de naam HOSTS.MVP

Dan wordt het bestand vervangen door de actuele MVPS Hosts-versie.

Heeft dit iets opgelost?

Yabui · 4 september 2012

Ik wordt niet meer doorverwezen naar die website ! Lijkt me dus in orde.

Bedankt voor je snel antwoord en je hulp !

Yabui · 4 september 2012

Ik was iets te euforisch, ik word toch nog altijd doorverwezen..

kape · 4 september 2012

Download ComboFix van één van deze locaties:

Link 1

Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix. Hier is een handleiding over hoe je ze kan uitschakelen:

Klik hier

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.

3. Dubbelklik op "Combofix.exe" om de tool te starten.

4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

Yabui · 5 september 2012

Scan zojuist uitgevoerd. Ik heb nog niets gemerkt of ik nog wordt doorverwezen , dat zal ik morgen al dan niet opmerken. Alvast bedankt!

ComboFix 12-09-04.02 - Yannick 05/09/2012 1:47.1.4 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.4008.2256 [GMT 2:00]

Gestart vanuit: c:\users\Yannick\Desktop\ComboFix.exe

AV: BullGuard Antivirus *Enabled/Updated* {504FFF66-3028-EB7E-2E60-62B19ADD791C}

FW: BullGuard Firewall *Disabled* {68747E43-7A47-EA26-053F-CB84640E3E67}

SP: BullGuard Antispyware *Enabled/Updated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\vpngui.exe.lnk

c:\programdata\Roaming

c:\programdata\Roaming\Intel\Wireless\Settings\Settings.ini

c:\windows\SysWow64\tmp4290.tmp

c:\windows\SysWow64\tmp42A1.tmp

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-08-04 to 2012-09-04 ))))))))))))))))))))))))))))))

.

2012-09-04 23:54 . 2012-09-04 23:54 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp

2012-09-04 23:54 . 2012-09-04 23:54 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-09-03 23:19 . 2012-09-03 23:19 388096 ----a-r- c:\users\Yannick\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-09-03 23:19 . 2012-09-03 23:19 -------- d-----w- c:\program files (x86)\Trend Micro

2012-09-02 22:11 . 2012-09-02 22:10 100216 ----a-w- c:\windows\SysWow64\BgGamingMonitor.dll

2012-09-02 22:11 . 2012-09-02 22:10 111064 ----a-w- c:\windows\system32\BgGamingMonitor.dll

2012-09-02 22:11 . 2012-09-02 22:10 54624 ----a-w- c:\windows\SysWow64\BGLsp.dll

2012-09-02 22:11 . 2012-09-02 22:10 63840 ----a-w- c:\windows\system32\BGLsp.dll

2012-09-02 21:49 . 2012-09-04 23:36 -------- d-----w- c:\users\Yannick\AppData\Roaming\BullGuard

2012-09-02 21:48 . 2012-09-04 23:53 -------- d-----w- c:\programdata\BullGuard

2012-09-02 21:48 . 2012-09-02 21:48 -------- d-----w- c:\program files\Common Files\BullGuard Ltd

2012-09-02 21:48 . 2012-09-02 21:48 -------- d-----w- c:\program files\BullGuard Ltd

2012-09-02 21:45 . 2012-09-02 21:51 -------- d-----w- c:\users\Yannick\AppData\Roaming\BatteryBar

2012-09-02 21:45 . 2012-09-02 21:45 -------- d-----w- c:\program files\BatteryBar

2012-09-02 00:25 . 2012-09-02 00:25 126976 --sha-r- c:\windows\SysWow64\C_863J.dll

2012-09-01 14:37 . 2012-09-01 14:37 -------- d-----w- c:\program files (x86)\Common Files\Java

2012-09-01 14:36 . 2012-09-01 14:36 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll

2012-09-01 14:36 . 2012-09-01 14:36 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2012-09-01 12:47 . 2012-09-01 12:47 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3AB719B7-4B80-4185-B819-DD1A0AC02225}\offreg.dll

2012-09-01 08:27 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3AB719B7-4B80-4185-B819-DD1A0AC02225}\mpengine.dll

2012-08-30 20:07 . 2012-08-30 20:07 -------- d-----w- c:\users\Yannick\AppData\Roaming\Software Inspection Library

2012-08-30 16:54 . 2012-08-30 16:54 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll

2012-08-30 12:41 . 2012-08-30 12:41 -------- d-----w- c:\users\Yannick\AppData\Roaming\Subtitle Edit

2012-08-30 12:41 . 2012-08-30 12:41 -------- d-----w- c:\program files (x86)\Subtitle Edit

2012-08-30 12:29 . 2012-08-30 12:30 -------- d-----w- c:\program files (x86)\SubSync

2012-08-30 12:29 . 2012-08-30 12:29 249856 ------w- c:\windows\Setup1.exe

2012-08-30 12:29 . 2012-08-30 12:29 73216 ----a-w- c:\windows\ST6UNST.EXE

2012-08-16 22:26 . 2012-09-03 15:28 -------- d-----w- c:\users\Yannick\AppData\Roaming\Xfire

2012-08-16 22:26 . 2012-08-31 17:41 -------- d-----w- c:\programdata\Xfire

2012-08-16 22:26 . 2012-08-16 22:26 -------- d-----w- c:\program files (x86)\Xfire

2012-08-15 23:21 . 2012-06-29 04:55 17809920 ----a-w- c:\windows\system32\mshtml.dll

2012-08-15 23:21 . 2012-06-29 04:09 10925568 ----a-w- c:\windows\system32\ieframe.dll

2012-08-14 10:04 . 2012-08-14 10:04 -------- d-----w- c:\program files (x86)\Activision

2012-08-10 10:31 . 2012-08-10 10:31 -------- d-----w- c:\program files (x86)\WAV MP3 Converter 4

2012-08-09 12:50 . 2012-08-09 12:53 -------- d-----w- c:\users\Yannick\AppData\Roaming\Foxit Software

2012-08-09 12:50 . 2012-08-09 12:50 -------- d-----w- c:\program files (x86)\Foxit Software

2012-08-09 10:44 . 2012-08-09 10:44 -------- d-----w- c:\program files (x86)\MSXML 4.0

2012-08-07 12:26 . 2012-08-07 12:26 -------- d-----w- c:\users\Yannick\AppData\Local\Ahead

2012-08-07 12:25 . 2012-08-07 12:25 -------- d-----w- c:\users\Yannick\AppData\Roaming\Ahead

2012-08-07 12:25 . 2012-08-07 12:25 -------- d-----w- c:\programdata\Ahead

2012-08-07 12:21 . 2012-08-07 12:21 -------- d-----w- c:\programdata\Nero

2012-08-07 12:21 . 2012-08-07 12:21 -------- d-----w- c:\program files (x86)\Nero

2012-08-07 12:21 . 2012-08-07 12:24 -------- d-----w- c:\program files (x86)\Common Files\Ahead

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-09-02 22:11 . 2011-09-22 10:32 25160 ----a-w- c:\windows\system32\drivers\NSNetmon.sys

2012-09-02 22:11 . 2011-09-22 10:32 38528 ----a-r- c:\windows\system32\drivers\Afw.sys

2012-09-02 22:09 . 2011-09-22 10:32 256072 ----a-w- c:\windows\system32\drivers\NSKernel.sys

2012-09-02 22:08 . 2011-09-22 10:32 290376 ----a-w- c:\windows\system32\drivers\Trufos.sys

2012-09-02 22:05 . 2011-09-22 10:32 445568 ----a-r- c:\windows\system32\drivers\AfwCore.sys

2012-09-01 14:36 . 2012-03-18 14:31 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll

2012-08-15 23:20 . 2012-02-25 16:00 62134624 ----a-w- c:\windows\system32\MRT.exe

2012-08-14 22:12 . 2012-04-29 12:24 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2012-08-14 22:12 . 2012-02-29 17:57 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2012-07-25 22:51 . 2012-07-25 22:51 42440 ----a-w- c:\windows\SysWow64\xfcodec.dll

2012-07-25 22:51 . 2012-07-25 22:51 28104 ----a-w- c:\windows\system32\xfcodec64.dll

2012-06-25 15:19 . 2012-06-25 15:19 466456 ----a-w- c:\windows\system32\wrap_oal.dll

2012-06-25 15:19 . 2012-06-25 15:19 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll

2012-06-25 15:19 . 2012-06-25 15:19 122904 ----a-w- c:\windows\system32\OpenAL32.dll

2012-06-25 15:19 . 2012-06-25 15:19 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll

2012-06-19 18:28 . 2012-06-19 18:28 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys

2012-06-09 05:43 . 2012-07-13 22:01 14172672 ----a-w- c:\windows\system32\shell32.dll

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Facebook Update"="c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-14 138096]

"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-01 153136]

"ShowBatteryBar"="c:\program files\BatteryBar\ShowBatteryBar.exe" [2009-05-28 89600]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608]

"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]

"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]

.

c:\users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Xfire.lnk - c:\program files (x86)\Xfire\Xfire.exe [2012-7-26 3553224]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain]

@="Service"

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]

@="Service"

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]

R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056]

R3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;d:\i386\AsPrOb64.sys [x]

R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-08-30 114144]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-25 1255736]

S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992]

S1 AFW;Agnitum Firewall Driver;c:\windows\system32\DRIVERS\afw.sys [2012-09-02 38528]

S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]

S1 BdSpy;BdSpy;c:\windows\system32\DRIVERS\BdSpy.sys [2011-09-22 66272]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-19 283200]

S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys [2012-09-02 256072]

S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys [2012-09-02 25160]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]

S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]

S2 BsBackup;BullGuard backup service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]

S2 BsBhvScan;BullGuard Behavioural Detection;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2012-09-02 368480]

S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]

S2 BsFire;BullGuard firewall service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]

S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]

S2 BsMain;BullGuard main service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]

S2 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2012-09-02 201056]

S2 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2012-09-02 379744]

S2 vpnagent;Cisco AnyConnect VPN Agent;c:\program files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2011-09-22 645048]

S3 afwcore;afwcore;c:\windows\system32\DRIVERS\afwcore.sys [2012-09-02 445568]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2010-08-24 76912]

S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-09-22 56344]

S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2010-10-14 1147232]

.

Inhoud van de 'Gedeelde Taken' map

.

2012-09-04 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-29 22:12]

.

2012-09-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000Core.job

- c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-03 11:50]

.

2012-09-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000UA.job

- c:\users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-05-03 11:50]

.

2012-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000Core.job

- c:\users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-01 18:08]

.

2012-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2397497952-1605997979-3693505875-1000UA.job

- c:\users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-01 18:08]

.

2012-09-04 c:\windows\Tasks\vmvsr.job

- c:\windows\system32\rundll32.exe [2009-07-13 01:14]

.

--------- X64 Entries -----------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-07-28 167704]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-07-28 392472]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-07-28 416024]

"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-27 2184520]

"CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-18 767312]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x1

"AppInit_DLLs"=c:\windows\System32\nvinitx.dll

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {{878AC5FC-BE78-4bae-896C-7F75B790A71E} - c:\program files (x86)\PokerStars.BE\PokerStarsUpdate.exe

LSP: c:\windows\system32\BGLsp.dll

TCP: DhcpNameServer = 192.168.1.1

FF - ProfilePath - c:\users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\ur2xp1h6.default\

FF - prefs.js: browser.search.selectedEngine - Yahoo

FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=

.

- - - - ORPHANS VERWIJDERD - - - -

.

AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2012-09-05 01:57:51

ComboFix-quarantined-files.txt 2012-09-04 23:57

.

Pre-Run: 25.604.190.208 bytes beschikbaar

Post-Run: 25.280.856.064 bytes beschikbaar

.

- - End Of File - - D733A039E84812C186A7222C33AC8D19

kape · 5 september 2012

Bekijk het nog even ... en laat daarna je eindbevindingen weten ;-)

Yabui · 5 september 2012

Helaas, het probleem is er nog steeds. Zijn er nog andere alternatieven voor mijn pc te scannen?

kape · 5 september 2012

Download TDSSKiller en plaats het op je bureaublad.

Pak de bestanden in tdsskiller.zip uit.

Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.

Windows 7 en Windows Vista gebruikers:

Rechtsklik op TDSSKiller.exe -> Uitvoeren als Administrator om de tool te starten.

Als TDSSKiller bericht geeft van een beschikbare update, dan voer je deze eerst uit.

Klik op de knop "Start Scan" en volg de instructies.

Wanneer de scan klaar is klik je op de knop "Report".

Er opent een kladblokbestand. Post de inhoud van dit bestand.

Herstart de pc als TDSSKiller die optie geeft. (Reboot now)

Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt

Yabui · 5 september 2012

Grrr, weer niets gevonden

00:01:35.0743 4140 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48

00:01:35.0996 4140 ============================================================

00:01:35.0996 4140 Current date / time: 2012/09/06 00:01:35.0996

00:01:35.0996 4140 SystemInfo:

00:01:35.0996 4140

00:01:35.0996 4140 OS Version: 6.1.7601 ServicePack: 1.0

00:01:35.0996 4140 Product type: Workstation

00:01:35.0997 4140 ComputerName: YANNICK-PC

00:01:35.0997 4140 UserName: Yannick

00:01:35.0997 4140 Windows directory: C:\Windows

00:01:35.0998 4140 System windows directory: C:\Windows

00:01:35.0999 4140 Running under WOW64

00:01:35.0999 4140 Processor architecture: Intel x64

00:01:36.0001 4140 Number of processors: 4

00:01:36.0001 4140 Page size: 0x1000

00:01:36.0001 4140 Boot type: Normal boot

00:01:36.0001 4140 ============================================================

00:01:39.0188 4140 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

00:01:39.0190 4140 Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

00:01:39.0257 4140 ============================================================

00:01:39.0258 4140 \Device\Harddisk0\DR0:

00:01:39.0260 4140 MBR partitions:

00:01:39.0260 4140 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000

00:01:39.0260 4140 \Device\Harddisk1\DR1:

00:01:39.0262 4140 MBR partitions:

00:01:39.0262 4140 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

00:01:39.0262 4140 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94DC800

00:01:39.0263 4140 ============================================================

00:01:39.0267 4140 C: <-> \Device\Harddisk1\DR1\Partition2

00:01:39.0348 4140 E: <-> \Device\Harddisk0\DR0\Partition1

00:01:39.0348 4140 ============================================================

00:01:39.0348 4140 Initialize success

00:01:39.0348 4140 ============================================================

00:01:56.0704 2516 ============================================================

00:01:56.0704 2516 Scan started

00:01:56.0704 2516 Mode: Manual;

00:01:56.0704 2516 ============================================================

00:01:56.0797 2516 ================ Scan system memory ========================

00:01:56.0797 2516 System memory - ok

00:01:56.0799 2516 ================ Scan services =============================

00:01:56.0940 2516 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

00:01:56.0952 2516 1394ohci - ok

00:01:56.0991 2516 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys

00:01:57.0016 2516 ACPI - ok

00:01:57.0030 2516 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

00:01:57.0041 2516 AcpiPmi - ok

00:01:57.0070 2516 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

00:01:57.0089 2516 AdobeARMservice - ok

00:01:57.0245 2516 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

00:01:57.0253 2516 AdobeFlashPlayerUpdateSvc - ok

00:01:57.0304 2516 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

00:01:57.0315 2516 adp94xx - ok

00:01:57.0341 2516 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys

00:01:57.0354 2516 adpahci - ok

00:01:57.0381 2516 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

00:01:57.0391 2516 adpu320 - ok

00:01:57.0451 2516 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

00:01:57.0454 2516 AeLookupSvc - ok

00:01:57.0495 2516 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys

00:01:57.0506 2516 AFD - ok

00:01:57.0515 2516 [ 7C0604FFC4366EE890BEB8DBB97B2169 ] AFW C:\Windows\system32\DRIVERS\afw.sys

00:01:57.0518 2516 AFW - ok

00:01:57.0534 2516 [ C1E054C08FD8876313ACC17683B3D1A6 ] afwcore C:\Windows\system32\DRIVERS\afwcore.sys

00:01:57.0542 2516 afwcore - ok

00:01:57.0551 2516 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys

00:01:57.0555 2516 agp440 - ok

00:01:57.0563 2516 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe

00:01:57.0567 2516 ALG - ok

00:01:57.0575 2516 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys

00:01:57.0579 2516 aliide - ok

00:01:57.0585 2516 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys

00:01:57.0588 2516 amdide - ok

00:01:57.0596 2516 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

00:01:57.0601 2516 AmdK8 - ok

00:01:57.0608 2516 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys

00:01:57.0613 2516 AmdPPM - ok

00:01:57.0622 2516 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys

00:01:57.0626 2516 amdsata - ok

00:01:57.0639 2516 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

00:01:57.0646 2516 amdsbs - ok

00:01:57.0653 2516 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys

00:01:57.0655 2516 amdxata - ok

00:01:57.0665 2516 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys

00:01:57.0670 2516 AppID - ok

00:01:57.0678 2516 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll

00:01:57.0681 2516 AppIDSvc - ok

00:01:57.0688 2516 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll

00:01:57.0691 2516 Appinfo - ok

00:01:57.0705 2516 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys

00:01:57.0710 2516 arc - ok

00:01:57.0719 2516 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys

00:01:57.0723 2516 arcsas - ok

00:01:57.0732 2516 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

00:01:57.0736 2516 ASLDRService - ok

00:01:57.0741 2516 [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys

00:01:57.0750 2516 ASMMAP64 - ok

00:01:57.0755 2516 ASUSProcObsrv - ok

00:01:57.0765 2516 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

00:01:57.0767 2516 AsyncMac - ok

00:01:57.0775 2516 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys

00:01:57.0777 2516 atapi - ok

00:01:57.0785 2516 [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

00:01:57.0790 2516 ATKGFNEXSrv - ok

00:01:57.0797 2516 [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys

00:01:57.0806 2516 ATKWMIACPIIO - ok

00:01:57.0830 2516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

00:01:57.0845 2516 AudioEndpointBuilder - ok

00:01:57.0866 2516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll

00:01:57.0875 2516 AudioSrv - ok

00:01:57.0885 2516 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll

00:01:57.0890 2516 AxInstSV - ok

00:01:57.0909 2516 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

00:01:57.0921 2516 b06bdrv - ok

00:01:57.0933 2516 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

00:01:57.0941 2516 b57nd60a - ok

00:01:57.0954 2516 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll

00:01:57.0959 2516 BDESVC - ok

00:01:57.0969 2516 [ 73F7E3E94E6122F0CB2968DB7F6A6855 ] BdSpy C:\Windows\system32\DRIVERS\BdSpy.sys

00:01:57.0973 2516 BdSpy - ok

00:01:57.0982 2516 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys

00:01:57.0990 2516 Beep - ok

00:01:58.0018 2516 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll

00:01:58.0038 2516 BFE - ok

00:01:58.0068 2516 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll

00:01:58.0091 2516 BITS - ok

00:01:58.0102 2516 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

00:01:58.0106 2516 blbdrive - ok

00:01:58.0117 2516 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

00:01:58.0122 2516 bowser - ok

00:01:58.0131 2516 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys

00:01:58.0134 2516 BrFiltLo - ok

00:01:58.0143 2516 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys

00:01:58.0147 2516 BrFiltUp - ok

00:01:58.0157 2516 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys

00:01:58.0176 2516 BridgeMP - ok

00:01:58.0187 2516 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll

00:01:58.0193 2516 Browser - ok

00:01:58.0210 2516 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys

00:01:58.0220 2516 Brserid - ok

00:01:58.0230 2516 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

00:01:58.0235 2516 BrSerWdm - ok

00:01:58.0244 2516 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

00:01:58.0248 2516 BrUsbMdm - ok

00:01:58.0257 2516 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

00:01:58.0262 2516 BrUsbSer - ok

00:01:58.0274 2516 [ 03481999118BB36F7BF4979BD436DA38 ] BsBackup C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll

00:01:58.0279 2516 BsBackup - ok

00:01:58.0296 2516 [ E37928809E692067388D16D610E2BF9F ] BsBhvScan C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe

00:01:58.0307 2516 BsBhvScan - ok

00:01:58.0321 2516 [ 751B210E8F2DAAC70FFCED2EA3DC4EE0 ] BsFileScan C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll

00:01:58.0329 2516 BsFileScan - ok

00:01:58.0351 2516 [ F7555FDC76244BDC08555CB9E22D0600 ] BsFire C:\Program Files\BullGuard Ltd\BullGuard\BsFire.dll

00:01:58.0368 2516 BsFire - ok

00:01:58.0389 2516 [ 73DC84EF5B24B159B7F6C2792D9C9C53 ] BsMailProxy C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy\BsMailProxy.dll

00:01:58.0403 2516 BsMailProxy - ok

00:01:58.0417 2516 [ F91A7F531EDF7BA4A80CB2178ECE54BB ] BsMain C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll

00:01:58.0426 2516 BsMain - ok

00:01:58.0438 2516 [ ABA92E74E5917DD1765D3D005A54325A ] BsScanner C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe

00:01:58.0445 2516 BsScanner - ok

00:01:58.0463 2516 [ 75EE63DA5FD88F04F2E5705A44A4179C ] BsUpdate C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe

00:01:58.0474 2516 BsUpdate - ok

00:01:58.0485 2516 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

00:01:58.0490 2516 BTHMODEM - ok

00:01:58.0506 2516 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll

00:01:58.0512 2516 bthserv - ok

00:01:58.0517 2516 catchme - ok

00:01:58.0542 2516 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

00:01:58.0547 2516 cdfs - ok

00:01:58.0588 2516 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

00:01:58.0596 2516 cdrom - ok

00:01:58.0621 2516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll

00:01:58.0629 2516 CertPropSvc - ok

00:01:58.0650 2516 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys

00:01:58.0653 2516 circlass - ok

00:01:58.0680 2516 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

00:01:58.0691 2516 CLFS - ok

00:01:58.0748 2516 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

00:01:58.0756 2516 clr_optimization_v2.0.50727_32 - ok

00:01:58.0778 2516 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

00:01:58.0797 2516 clr_optimization_v2.0.50727_64 - ok

00:01:58.0831 2516 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

00:01:58.0850 2516 clr_optimization_v4.0.30319_32 - ok

00:01:58.0875 2516 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

00:01:58.0887 2516 clr_optimization_v4.0.30319_64 - ok

00:01:58.0901 2516 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

00:01:58.0904 2516 CmBatt - ok

00:01:58.0915 2516 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys

00:01:58.0931 2516 cmdide - ok

00:01:58.0968 2516 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys

00:01:58.0998 2516 CNG - ok

00:01:59.0016 2516 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

00:01:59.0018 2516 Compbatt - ok

00:01:59.0038 2516 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys

00:01:59.0042 2516 CompositeBus - ok

00:01:59.0050 2516 COMSysApp - ok

00:01:59.0062 2516 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

00:01:59.0066 2516 crcdisk - ok

00:01:59.0091 2516 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll

00:01:59.0109 2516 CryptSvc - ok

00:01:59.0124 2516 [ 44BDDEB03C84A1C993C992FFB5700357 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys

00:01:59.0128 2516 CVirtA - ok

00:01:59.0241 2516 [ 66257CB4E4FB69887CDDC71663741435 ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

00:01:59.0281 2516 CVPND - ok

00:01:59.0296 2516 [ CC8E52DAA9826064BA464DBE531F2BB5 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys

00:01:59.0301 2516 CVPNDRVA - ok

00:01:59.0321 2516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll

00:01:59.0334 2516 DcomLaunch - ok

00:01:59.0346 2516 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll

00:01:59.0354 2516 defragsvc - ok

00:01:59.0362 2516 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

00:01:59.0367 2516 DfsC - ok

00:01:59.0380 2516 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll

00:01:59.0389 2516 Dhcp - ok

00:01:59.0397 2516 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys

00:01:59.0400 2516 discache - ok

00:01:59.0410 2516 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys

00:01:59.0414 2516 Disk - ok

00:01:59.0423 2516 [ 05CB5910B3CA6019FC3CCA815EE06FFB ] DNE C:\Windows\system32\DRIVERS\dne64x.sys

00:01:59.0426 2516 DNE - ok

00:01:59.0437 2516 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll

00:01:59.0443 2516 Dnscache - ok

00:01:59.0455 2516 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll

00:01:59.0463 2516 dot3svc - ok

00:01:59.0474 2516 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll

00:01:59.0478 2516 DPS - ok

00:01:59.0485 2516 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

00:01:59.0489 2516 drmkaud - ok

00:01:59.0501 2516 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys

00:01:59.0506 2516 dtsoftbus01 - ok

00:01:59.0534 2516 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

00:01:59.0550 2516 DXGKrnl - ok

00:01:59.0560 2516 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll

00:01:59.0565 2516 EapHost - ok

00:01:59.0638 2516 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys

00:01:59.0700 2516 ebdrv - ok

00:01:59.0709 2516 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe

00:01:59.0713 2516 EFS - ok

00:01:59.0735 2516 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

00:01:59.0750 2516 ehRecvr - ok

00:01:59.0758 2516 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe

00:01:59.0763 2516 ehSched - ok

00:01:59.0784 2516 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys

00:01:59.0799 2516 elxstor - ok

00:01:59.0810 2516 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys

00:01:59.0813 2516 ErrDev - ok

00:01:59.0839 2516 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll

00:01:59.0849 2516 EventSystem - ok

00:01:59.0872 2516 [ 0D9297A4DF2E3D0DD16E80911976ECB7 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe

00:01:59.0904 2516 EvtEng - ok

00:01:59.0917 2516 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys

00:01:59.0937 2516 exfat - ok

00:01:59.0950 2516 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys

00:01:59.0972 2516 fastfat - ok

00:01:59.0999 2516 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe

00:02:00.0017 2516 Fax - ok

00:02:00.0027 2516 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys

00:02:00.0031 2516 fdc - ok

00:02:00.0040 2516 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll

00:02:00.0044 2516 fdPHost - ok

00:02:00.0053 2516 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll

00:02:00.0057 2516 FDResPub - ok

00:02:00.0067 2516 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

00:02:00.0071 2516 FileInfo - ok

00:02:00.0081 2516 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

00:02:00.0085 2516 Filetrace - ok

00:02:00.0094 2516 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys

00:02:00.0098 2516 flpydisk - ok

00:02:00.0114 2516 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

00:02:00.0122 2516 FltMgr - ok

00:02:00.0160 2516 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll

00:02:00.0187 2516 FontCache - ok

00:02:00.0197 2516 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

00:02:00.0203 2516 FontCache3.0.0.0 - ok

00:02:00.0212 2516 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

00:02:00.0217 2516 FsDepends - ok

00:02:00.0231 2516 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

00:02:00.0243 2516 Fs_Rec - ok

00:02:00.0256 2516 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

00:02:00.0263 2516 fvevol - ok

00:02:00.0274 2516 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

00:02:00.0289 2516 gagp30kx - ok

00:02:00.0322 2516 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll

00:02:00.0361 2516 gpsvc - ok

00:02:00.0379 2516 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

00:02:00.0384 2516 hcw85cir - ok

00:02:00.0425 2516 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

00:02:00.0435 2516 HdAudAddService - ok

00:02:00.0456 2516 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

00:02:00.0464 2516 HDAudBus - ok

00:02:00.0501 2516 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys

00:02:00.0509 2516 HidBatt - ok

00:02:00.0545 2516 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys

00:02:00.0561 2516 HidBth - ok

00:02:00.0580 2516 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys

00:02:00.0585 2516 HidIr - ok

00:02:00.0597 2516 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll

00:02:00.0613 2516 hidserv - ok

00:02:00.0626 2516 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

00:02:00.0641 2516 HidUsb - ok

00:02:00.0651 2516 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll

00:02:00.0663 2516 hkmsvc - ok

00:02:00.0696 2516 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

00:02:00.0706 2516 HomeGroupListener - ok

00:02:00.0719 2516 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

00:02:00.0727 2516 HomeGroupProvider - ok

00:02:00.0739 2516 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

00:02:00.0745 2516 HpSAMD - ok

00:02:00.0793 2516 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys

00:02:00.0824 2516 HTTP - ok

00:02:00.0838 2516 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

00:02:00.0841 2516 hwpolicy - ok

00:02:00.0853 2516 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys

00:02:00.0858 2516 i8042prt - ok

00:02:00.0925 2516 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

00:02:00.0933 2516 iaStor - ok

00:02:00.0978 2516 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

00:02:00.0997 2516 iaStorV - ok

00:02:01.0042 2516 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

00:02:01.0062 2516 idsvc - ok

00:02:01.0314 2516 [ 10BB0DC3361C9420CC1B0B2128BB89DB ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

00:02:01.0559 2516 igfx - ok

00:02:01.0576 2516 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys

00:02:01.0581 2516 iirsp - ok

00:02:01.0610 2516 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll

00:02:01.0632 2516 IKEEXT - ok

00:02:01.0651 2516 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys

00:02:01.0660 2516 IntcDAud - ok

00:02:01.0676 2516 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys

00:02:01.0681 2516 intelide - ok

00:02:01.0692 2516 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

00:02:01.0694 2516 intelppm - ok

00:02:01.0706 2516 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll

00:02:01.0713 2516 IPBusEnum - ok

00:02:01.0722 2516 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

00:02:01.0727 2516 IpFilterDriver - ok

00:02:01.0747 2516 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

00:02:01.0763 2516 iphlpsvc - ok

00:02:01.0781 2516 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

00:02:01.0786 2516 IPMIDRV - ok

00:02:01.0797 2516 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

00:02:01.0802 2516 IPNAT - ok

00:02:01.0811 2516 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys

00:02:01.0815 2516 IRENUM - ok

00:02:01.0825 2516 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys

00:02:01.0829 2516 isapnp - ok

00:02:01.0844 2516 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

00:02:01.0853 2516 iScsiPrt - ok

00:02:01.0863 2516 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

00:02:01.0866 2516 kbdclass - ok

00:02:01.0875 2516 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys

00:02:01.0879 2516 kbdhid - ok

00:02:01.0887 2516 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe

00:02:01.0891 2516 KeyIso - ok

00:02:01.0900 2516 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

00:02:01.0905 2516 KSecDD - ok

00:02:01.0916 2516 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

00:02:01.0921 2516 KSecPkg - ok

00:02:01.0930 2516 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

00:02:01.0934 2516 ksthunk - ok

00:02:01.0951 2516 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll

00:02:01.0964 2516 KtmRm - ok

00:02:01.0975 2516 [ A4A9CA24E54E81C6C3E469EAEB4B3F42 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys

00:02:01.0979 2516 L1C - ok

00:02:01.0995 2516 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll

00:02:02.0006 2516 LanmanServer - ok

00:02:02.0023 2516 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

00:02:02.0031 2516 LanmanWorkstation - ok

00:02:02.0044 2516 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

00:02:02.0048 2516 lltdio - ok

00:02:02.0064 2516 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll

00:02:02.0076 2516 lltdsvc - ok

00:02:02.0099 2516 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll

00:02:02.0103 2516 lmhosts - ok

00:02:02.0135 2516 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

00:02:02.0145 2516 LSI_FC - ok

00:02:02.0164 2516 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

00:02:02.0169 2516 LSI_SAS - ok

00:02:02.0186 2516 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

00:02:02.0194 2516 LSI_SAS2 - ok

00:02:02.0206 2516 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

00:02:02.0212 2516 LSI_SCSI - ok

00:02:02.0227 2516 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys

00:02:02.0231 2516 luafv - ok

00:02:02.0247 2516 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

00:02:02.0256 2516 Mcx2Svc - ok

00:02:02.0266 2516 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys

00:02:02.0271 2516 megasas - ok

00:02:02.0293 2516 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

00:02:02.0302 2516 MegaSR - ok

00:02:02.0316 2516 [ 1C6E73FC46B509EFF9D0086AA37132DF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys

00:02:02.0319 2516 MEIx64 - ok

00:02:02.0341 2516 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll

00:02:02.0346 2516 MMCSS - ok

00:02:02.0355 2516 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys

00:02:02.0362 2516 Modem - ok

00:02:02.0377 2516 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys

00:02:02.0378 2516 monitor - ok

00:02:02.0403 2516 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

00:02:02.0407 2516 mouclass - ok

00:02:02.0428 2516 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

00:02:02.0434 2516 mouhid - ok

00:02:02.0459 2516 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

00:02:02.0465 2516 mountmgr - ok

00:02:02.0485 2516 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

00:02:02.0492 2516 MozillaMaintenance - ok

00:02:02.0506 2516 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys

00:02:02.0515 2516 mpio - ok

00:02:02.0528 2516 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

00:02:02.0533 2516 mpsdrv - ok

00:02:02.0587 2516 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll

00:02:02.0610 2516 MpsSvc - ok

00:02:02.0624 2516 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

00:02:02.0634 2516 MRxDAV - ok

00:02:02.0646 2516 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

00:02:02.0653 2516 mrxsmb - ok

00:02:02.0669 2516 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

00:02:02.0678 2516 mrxsmb10 - ok

00:02:02.0688 2516 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

00:02:02.0701 2516 mrxsmb20 - ok

00:02:02.0720 2516 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys

00:02:02.0723 2516 msahci - ok

00:02:02.0737 2516 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys

00:02:02.0753 2516 msdsm - ok

00:02:02.0787 2516 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe

00:02:02.0795 2516 MSDTC - ok

00:02:02.0820 2516 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys

00:02:02.0830 2516 Msfs - ok

00:02:02.0838 2516 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

00:02:02.0841 2516 mshidkmdf - ok

00:02:02.0849 2516 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

00:02:02.0851 2516 msisadrv - ok

00:02:02.0861 2516 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

00:02:02.0868 2516 MSiSCSI - ok

00:02:02.0875 2516 msiserver - ok

00:02:02.0884 2516 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

00:02:02.0888 2516 MSKSSRV - ok

00:02:02.0894 2516 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

00:02:02.0897 2516 MSPCLOCK - ok

00:02:02.0904 2516 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

00:02:02.0907 2516 MSPQM - ok

00:02:02.0920 2516 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

00:02:02.0942 2516 MsRPC - ok

00:02:02.0953 2516 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

00:02:02.0955 2516 mssmbios - ok

00:02:02.0961 2516 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

00:02:02.0965 2516 MSTEE - ok

00:02:02.0972 2516 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys

00:02:02.0975 2516 MTConfig - ok

00:02:02.0983 2516 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys

00:02:02.0986 2516 Mup - ok

00:02:03.0002 2516 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll

00:02:03.0016 2516 napagent - ok

00:02:03.0029 2516 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

00:02:03.0038 2516 NativeWifiP - ok

00:02:03.0062 2516 [ 6D8FCDD5BB3B676EF58FA234073492C6 ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe

00:02:03.0083 2516 NBService - ok

00:02:03.0110 2516 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys

00:02:03.0130 2516 NDIS - ok

00:02:03.0139 2516 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

00:02:03.0143 2516 NdisCap - ok

00:02:03.0150 2516 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

00:02:03.0153 2516 NdisTapi - ok

00:02:03.0161 2516 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

00:02:03.0165 2516 Ndisuio - ok

00:02:03.0176 2516 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

00:02:03.0181 2516 NdisWan - ok

00:02:03.0189 2516 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

00:02:03.0202 2516 NDProxy - ok

00:02:03.0210 2516 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

00:02:03.0213 2516 NetBIOS - ok

00:02:03.0224 2516 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

00:02:03.0231 2516 NetBT - ok

00:02:03.0238 2516 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe

00:02:03.0240 2516 Netlogon - ok

00:02:03.0253 2516 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

00:02:03.0263 2516 Netman - ok

00:02:03.0280 2516 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll

00:02:03.0292 2516 netprofm - ok

00:02:03.0324 2516 [ F1814E62EB6E50472AFC9903525ECEC1 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys

00:02:03.0342 2516 netr28x - ok

00:02:03.0350 2516 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

00:02:03.0355 2516 NetTcpPortSharing - ok

00:02:03.0363 2516 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

00:02:03.0367 2516 nfrd960 - ok

00:02:03.0380 2516 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll

00:02:03.0389 2516 NlaSvc - ok

00:02:03.0404 2516 [ 060DAF68493AD7ADF104413E5A62AFA8 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe

00:02:03.0410 2516 NMIndexingService - ok

00:02:03.0422 2516 [ 510755C17F4AA13605412961F58884B5 ] NovaShieldFilterDriver C:\Windows\system32\DRIVERS\NSKernel.sys

00:02:03.0427 2516 NovaShieldFilterDriver - ok

00:02:03.0435 2516 [ 440469E8505744CCAA3BA294306258AE ] NovaShieldTDIDriver C:\Windows\system32\DRIVERS\NSNetmon.sys

00:02:03.0438 2516 NovaShieldTDIDriver - ok

00:02:03.0445 2516 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys

00:02:03.0456 2516 Npfs - ok

00:02:03.0463 2516 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll

00:02:03.0467 2516 nsi - ok

00:02:03.0475 2516 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

00:02:03.0478 2516 nsiproxy - ok

00:02:03.0522 2516 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

00:02:03.0555 2516 Ntfs - ok

00:02:03.0562 2516 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys

00:02:03.0569 2516 Null - ok

00:02:03.0911 2516 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys

00:02:04.0348 2516 nvlddmkm - ok

00:02:04.0376 2516 [ 715D45ED30003FC70CFA0D9C6DD0B538 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys

00:02:04.0378 2516 nvpciflt - ok

00:02:04.0389 2516 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys

00:02:04.0399 2516 nvraid - ok

00:02:04.0413 2516 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys

00:02:04.0430 2516 nvstor - ok

00:02:04.0469 2516 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc C:\Windows\system32\nvvsvc.exe

00:02:04.0488 2516 nvsvc - ok

00:02:04.0523 2516 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

00:02:04.0565 2516 nvUpdatusService - ok

00:02:04.0581 2516 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

00:02:04.0618 2516 nv_agp - ok

00:02:04.0638 2516 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

00:02:04.0649 2516 odserv - ok

00:02:04.0658 2516 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

00:02:04.0662 2516 ohci1394 - ok

00:02:04.0672 2516 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

00:02:04.0677 2516 ose - ok

00:02:04.0692 2516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

00:02:04.0702 2516 p2pimsvc - ok

00:02:04.0718 2516 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll

00:02:04.0730 2516 p2psvc - ok

00:02:04.0739 2516 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys

00:02:04.0743 2516 Parport - ok

00:02:04.0751 2516 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys

00:02:04.0756 2516 partmgr - ok

00:02:04.0766 2516 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll

00:02:04.0774 2516 PcaSvc - ok

00:02:04.0786 2516 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys

00:02:04.0792 2516 pci - ok

00:02:04.0799 2516 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys

00:02:04.0803 2516 pciide - ok

00:02:04.0813 2516 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

00:02:04.0820 2516 pcmcia - ok

00:02:04.0827 2516 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys

00:02:04.0830 2516 pcw - ok

00:02:04.0849 2516 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys

00:02:04.0864 2516 PEAUTH - ok

00:02:04.0936 2516 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe

00:02:04.0941 2516 PerfHost - ok

00:02:04.0987 2516 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll

00:02:05.0023 2516 pla - ok

00:02:05.0042 2516 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

00:02:05.0056 2516 PlugPlay - ok

00:02:05.0068 2516 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

00:02:05.0076 2516 PNRPAutoReg - ok

00:02:05.0091 2516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

00:02:05.0098 2516 PNRPsvc - ok

00:02:05.0119 2516 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

00:02:05.0132 2516 PolicyAgent - ok

00:02:05.0148 2516 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll

00:02:05.0156 2516 Power - ok

00:02:05.0166 2516 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

00:02:05.0172 2516 PptpMiniport - ok

00:02:05.0181 2516 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys

00:02:05.0187 2516 Processor - ok

00:02:05.0199 2516 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll

00:02:05.0207 2516 ProfSvc - ok

00:02:05.0217 2516 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

00:02:05.0222 2516 ProtectedStorage - ok

00:02:05.0232 2516 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys

00:02:05.0239 2516 Psched - ok

00:02:05.0281 2516 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys

00:02:05.0316 2516 ql2300 - ok

00:02:05.0329 2516 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

00:02:05.0335 2516 ql40xx - ok

00:02:05.0348 2516 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll

00:02:05.0358 2516 QWAVE - ok

00:02:05.0368 2516 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

00:02:05.0373 2516 QWAVEdrv - ok

00:02:05.0381 2516 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

00:02:05.0385 2516 RasAcd - ok

00:02:05.0395 2516 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

00:02:05.0399 2516 RasAgileVpn - ok

00:02:05.0409 2516 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll

00:02:05.0416 2516 RasAuto - ok

00:02:05.0428 2516 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

00:02:05.0434 2516 Rasl2tp - ok

00:02:05.0449 2516 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll

00:02:05.0461 2516 RasMan - ok

00:02:05.0472 2516 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

00:02:05.0478 2516 RasPppoe - ok

00:02:05.0488 2516 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

00:02:05.0492 2516 RasSstp - ok

00:02:05.0507 2516 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

00:02:05.0516 2516 rdbss - ok

00:02:05.0526 2516 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys

00:02:05.0530 2516 rdpbus - ok

00:02:05.0540 2516 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

00:02:05.0543 2516 RDPCDD - ok

00:02:05.0556 2516 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

00:02:05.0559 2516 RDPENCDD - ok

00:02:05.0574 2516 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

00:02:05.0577 2516 RDPREFMP - ok

00:02:05.0590 2516 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

00:02:05.0613 2516 RDPWD - ok

00:02:05.0626 2516 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

00:02:05.0633 2516 rdyboost - ok

00:02:05.0651 2516 [ A448D11593938F061073F72BC172D466 ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe

00:02:05.0687 2516 RegSrvc - ok

00:02:05.0710 2516 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll

00:02:05.0730 2516 RemoteAccess - ok

00:02:05.0754 2516 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll

00:02:05.0765 2516 RemoteRegistry - ok

00:02:05.0801 2516 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

00:02:05.0811 2516 RpcEptMapper - ok

00:02:05.0838 2516 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe

00:02:05.0843 2516 RpcLocator - ok

00:02:05.0887 2516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll

00:02:05.0900 2516 RpcSs - ok

00:02:05.0923 2516 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

00:02:05.0930 2516 rspndr - ok

00:02:05.0952 2516 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe

00:02:05.0955 2516 SamSs - ok

00:02:05.0984 2516 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

00:02:05.0989 2516 sbp2port - ok

00:02:06.0002 2516 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll

00:02:06.0030 2516 SCardSvr - ok

00:02:06.0040 2516 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

00:02:06.0046 2516 scfilter - ok

00:02:06.0087 2516 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll

00:02:06.0130 2516 Schedule - ok

00:02:06.0166 2516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll

00:02:06.0169 2516 SCPolicySvc - ok

00:02:06.0184 2516 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll

00:02:06.0191 2516 SDRSVC - ok

00:02:06.0202 2516 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

00:02:06.0218 2516 secdrv - ok

00:02:06.0227 2516 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll

00:02:06.0235 2516 seclogon - ok

00:02:06.0264 2516 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll

00:02:06.0285 2516 SENS - ok

00:02:06.0331 2516 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll

00:02:06.0338 2516 SensrSvc - ok

00:02:06.0364 2516 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys

00:02:06.0370 2516 Serenum - ok

00:02:06.0379 2516 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys

00:02:06.0385 2516 Serial - ok

00:02:06.0393 2516 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys

00:02:06.0397 2516 sermouse - ok

00:02:06.0420 2516 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll

00:02:06.0427 2516 SessionEnv - ok

00:02:06.0435 2516 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

00:02:06.0438 2516 sffdisk - ok

00:02:06.0445 2516 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

00:02:06.0449 2516 sffp_mmc - ok

00:02:06.0456 2516 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

00:02:06.0459 2516 sffp_sd - ok

00:02:06.0466 2516 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

00:02:06.0470 2516 sfloppy - ok

00:02:06.0483 2516 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll

00:02:06.0492 2516 SharedAccess - ok

00:02:06.0507 2516 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

00:02:06.0519 2516 ShellHWDetection - ok

00:02:06.0527 2516 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

00:02:06.0530 2516 SiSRaid2 - ok

00:02:06.0541 2516 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

00:02:06.0546 2516 SiSRaid4 - ok

00:02:06.0555 2516 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys

00:02:06.0560 2516 Smb - ok

00:02:06.0575 2516 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe

00:02:06.0580 2516 SNMPTRAP - ok

00:02:06.0588 2516 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys

00:02:06.0597 2516 spldr - ok

00:02:06.0617 2516 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe

00:02:06.0633 2516 Spooler - ok

00:02:06.0706 2516 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe

00:02:06.0770 2516 sppsvc - ok

00:02:06.0781 2516 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll

00:02:06.0786 2516 sppuinotify - ok

00:02:06.0802 2516 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys

00:02:06.0813 2516 srv - ok

00:02:06.0829 2516 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

00:02:06.0838 2516 srv2 - ok

00:02:06.0847 2516 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

00:02:06.0853 2516 srvnet - ok

00:02:06.0863 2516 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

00:02:06.0870 2516 SSDPSRV - ok

00:02:06.0878 2516 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll

00:02:06.0884 2516 SstpSvc - ok

00:02:06.0890 2516 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys

00:02:06.0895 2516 stexstor - ok

00:02:06.0915 2516 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll

00:02:06.0931 2516 stisvc - ok

00:02:06.0942 2516 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys

00:02:06.0944 2516 swenum - ok

00:02:06.0961 2516 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll

00:02:06.0975 2516 swprv - ok

00:02:07.0017 2516 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll

00:02:07.0055 2516 SysMain - ok

00:02:07.0063 2516 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

00:02:07.0070 2516 TabletInputService - ok

00:02:07.0082 2516 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll

00:02:07.0092 2516 TapiSrv - ok

00:02:07.0100 2516 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll

00:02:07.0107 2516 TBS - ok

00:02:07.0151 2516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

00:02:07.0188 2516 Tcpip - ok

00:02:07.0230 2516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

00:02:07.0257 2516 TCPIP6 - ok

00:02:07.0270 2516 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

00:02:07.0273 2516 tcpipreg - ok

00:02:07.0284 2516 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

00:02:07.0287 2516 TDPIPE - ok

00:02:07.0295 2516 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

00:02:07.0298 2516 TDTCP - ok

00:02:07.0308 2516 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

00:02:07.0312 2516 tdx - ok

00:02:07.0320 2516 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

00:02:07.0323 2516 TermDD - ok

00:02:07.0345 2516 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll

00:02:07.0363 2516 TermService - ok

00:02:07.0372 2516 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll

00:02:07.0377 2516 Themes - ok

00:02:07.0386 2516 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll

00:02:07.0389 2516 THREADORDER - ok

00:02:07.0397 2516 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll

00:02:07.0404 2516 TrkWks - ok

00:02:07.0417 2516 [ D5F502C6B2E4FA6B125C01448E7A01AB ] Trufos C:\Windows\system32\DRIVERS\Trufos.sys

00:02:07.0423 2516 Trufos - ok

00:02:07.0443 2516 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

00:02:07.0449 2516 TrustedInstaller - ok

00:02:07.0472 2516 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

00:02:07.0476 2516 tssecsrv - ok

00:02:07.0494 2516 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

00:02:07.0501 2516 TsUsbFlt - ok

00:02:07.0515 2516 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys

00:02:07.0522 2516 TsUsbGD - ok

00:02:07.0545 2516 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

00:02:07.0550 2516 tunnel - ok

00:02:07.0568 2516 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

00:02:07.0589 2516 uagp35 - ok

00:02:07.0611 2516 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

00:02:07.0620 2516 udfs - ok

00:02:07.0671 2516 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe

00:02:07.0676 2516 UI0Detect - ok

00:02:07.0693 2516 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

00:02:07.0707 2516 uliagpkx - ok

00:02:07.0729 2516 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys

00:02:07.0742 2516 umbus - ok

00:02:07.0752 2516 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys

00:02:07.0756 2516 UmPass - ok

00:02:07.0776 2516 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll

00:02:07.0798 2516 upnphost - ok

00:02:07.0820 2516 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

00:02:07.0824 2516 usbccgp - ok

00:02:07.0851 2516 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys

00:02:07.0855 2516 usbcir - ok

00:02:07.0866 2516 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys

00:02:07.0869 2516 usbehci - ok

00:02:07.0885 2516 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

00:02:07.0893 2516 usbhub - ok

00:02:07.0901 2516 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys

00:02:07.0905 2516 usbohci - ok

00:02:07.0915 2516 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

00:02:07.0919 2516 usbprint - ok

00:02:07.0952 2516 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

00:02:07.0957 2516 usbscan - ok

00:02:08.0006 2516 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

00:02:08.0026 2516 USBSTOR - ok

00:02:08.0040 2516 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

00:02:08.0044 2516 usbuhci - ok

00:02:08.0087 2516 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys

00:02:08.0102 2516 usbvideo - ok

00:02:08.0111 2516 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll

00:02:08.0132 2516 UxSms - ok

00:02:08.0139 2516 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe

00:02:08.0142 2516 VaultSvc - ok

00:02:08.0149 2516 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

00:02:08.0152 2516 vdrvroot - ok

00:02:08.0168 2516 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe

00:02:08.0182 2516 vds - ok

00:02:08.0188 2516 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

00:02:08.0191 2516 vga - ok

00:02:08.0197 2516 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys

00:02:08.0200 2516 VgaSave - ok

00:02:08.0211 2516 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

00:02:08.0217 2516 vhdmp - ok

00:02:08.0222 2516 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys

00:02:08.0225 2516 viaide - ok

00:02:08.0232 2516 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys

00:02:08.0236 2516 volmgr - ok

00:02:08.0248 2516 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

00:02:08.0256 2516 volmgrx - ok

00:02:08.0266 2516 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys

00:02:08.0272 2516 volsnap - ok

00:02:08.0290 2516 [ 3B98AB9849754CB88265111422441DF7 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe

00:02:08.0303 2516 vpnagent - ok

00:02:08.0309 2516 [ 13E6D95E7AC67ABB7A1196557EF8849F ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys

00:02:08.0313 2516 vpnva - ok

00:02:08.0321 2516 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

00:02:08.0326 2516 vsmraid - ok

00:02:08.0361 2516 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe

00:02:08.0402 2516 VSS - ok

00:02:08.0411 2516 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys

00:02:08.0415 2516 vwifibus - ok

00:02:08.0426 2516 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

00:02:08.0431 2516 vwififlt - ok

00:02:08.0449 2516 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll

00:02:08.0462 2516 W32Time - ok

00:02:08.0476 2516 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys

00:02:08.0481 2516 WacomPen - ok

00:02:08.0491 2516 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

00:02:08.0496 2516 WANARP - ok

00:02:08.0504 2516 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

00:02:08.0507 2516 Wanarpv6 - ok

00:02:08.0544 2516 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

00:02:08.0575 2516 WatAdminSvc - ok

00:02:08.0619 2516 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe

00:02:08.0657 2516 wbengine - ok

00:02:08.0671 2516 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

00:02:08.0681 2516 WbioSrvc - ok

00:02:08.0699 2516 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll

00:02:08.0712 2516 wcncsvc - ok

00:02:08.0721 2516 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

00:02:08.0728 2516 WcsPlugInService - ok

00:02:08.0738 2516 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys

00:02:08.0742 2516 Wd - ok

00:02:08.0765 2516 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

00:02:08.0782 2516 Wdf01000 - ok

00:02:08.0792 2516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll

00:02:08.0798 2516 WdiServiceHost - ok

00:02:08.0805 2516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll

00:02:08.0810 2516 WdiSystemHost - ok

00:02:08.0825 2516 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll

00:02:08.0836 2516 WebClient - ok

00:02:08.0849 2516 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll

00:02:08.0859 2516 Wecsvc - ok

00:02:08.0872 2516 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll

00:02:08.0878 2516 wercplsupport - ok

00:02:08.0889 2516 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll

00:02:08.0895 2516 WerSvc - ok

00:02:08.0904 2516 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

00:02:08.0907 2516 WfpLwf - ok

00:02:08.0916 2516 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys

00:02:08.0920 2516 WIMMount - ok

00:02:08.0926 2516 WinDefend - ok

00:02:08.0941 2516 WinHttpAutoProxySvc - ok

00:02:08.0965 2516 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

00:02:08.0973 2516 Winmgmt - ok

00:02:09.0026 2516 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll

00:02:09.0073 2516 WinRM - ok

00:02:09.0115 2516 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll

00:02:09.0139 2516 Wlansvc - ok

00:02:09.0200 2516 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

00:02:09.0262 2516 wlidsvc - ok

00:02:09.0276 2516 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys

00:02:09.0277 2516 WmiAcpi - ok

00:02:09.0322 2516 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

00:02:09.0335 2516 wmiApSrv - ok

00:02:09.0351 2516 WMPNetworkSvc - ok

00:02:09.0378 2516 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll

00:02:09.0386 2516 WPCSvc - ok

00:02:09.0414 2516 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

00:02:09.0420 2516 WPDBusEnum - ok

00:02:09.0440 2516 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

00:02:09.0443 2516 ws2ifsl - ok

00:02:09.0484 2516 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll

00:02:09.0492 2516 wscsvc - ok

00:02:09.0548 2516 WSearch - ok

00:02:09.0667 2516 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll

00:02:09.0728 2516 wuauserv - ok

00:02:09.0743 2516 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

00:02:09.0752 2516 WudfPf - ok

00:02:09.0794 2516 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

00:02:09.0813 2516 WUDFRd - ok

00:02:09.0825 2516 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

00:02:09.0835 2516 wudfsvc - ok

00:02:09.0852 2516 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll

00:02:09.0865 2516 WwanSvc - ok

00:02:09.0887 2516 ================ Scan global ===============================

00:02:09.0900 2516 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

00:02:09.0912 2516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

00:02:09.0931 2516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll

00:02:09.0941 2516 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

00:02:09.0955 2516 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

00:02:09.0964 2516 [Global] - ok

00:02:09.0965 2516 ================ Scan MBR ==================================

00:02:09.0969 2516 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

00:02:09.0980 2516 \Device\Harddisk0\DR0 - ok

00:02:09.0986 2516 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1

00:02:10.0081 2516 \Device\Harddisk1\DR1 - ok

00:02:10.0084 2516 ================ Scan VBR ==================================

00:02:10.0088 2516 [ 8397D6020769503B6B53E88EC47F6C5B ] \Device\Harddisk0\DR0\Partition1

00:02:10.0091 2516 \Device\Harddisk0\DR0\Partition1 - ok

00:02:10.0096 2516 [ EB55CCF85C55764C8F79A8FF5F830B4B ] \Device\Harddisk1\DR1\Partition1

00:02:10.0100 2516 \Device\Harddisk1\DR1\Partition1 - ok

00:02:10.0105 2516 [ AD82CC29DDA228C2B447722FB7FF0F83 ] \Device\Harddisk1\DR1\Partition2

00:02:10.0107 2516 \Device\Harddisk1\DR1\Partition2 - ok

00:02:10.0108 2516 ============================================================

00:02:10.0108 2516 Scan finished

00:02:10.0108 2516 ============================================================

00:02:10.0123 1268 Detected object count: 0

00:02:10.0123 1268 Actual detected object count: 0

Inloggen

virus

Aanbevolen berichten

Link naar reactie

Delen op andere sites

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Link naar reactie

Delen op andere sites

Welkom op PC Helpforum

Leden statistieken

OVER ONS

SITEMAP

Belangrijke informatie