Hijack this log - U-cash + pop-ups

ice_in_polo_2 · 27 maart 2013

Eerst een MVPS hosts laten lopen zonder fout en dan ook Hosts expert.

HiJack logje van daarna:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:25:06, on 27/03/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16470)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe

C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe

C:\Users\V&V Projects\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe

C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

C:\Windows\AsScrPro.exe

C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe

Q:\140066.enu\Office14\EXCELC.EXE

Q:\140066.enu\Office14\OffSpon.EXE

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe

C:\Program Files (x86)\Registry Mechanic\upgrade.exe

C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

F2 - REG:system.ini: UserInit=userinit.exe,

O1 - Hosts: ::1 localhost

O1 - Hosts: 199.193.118.246 www.google-analytics.com.

O1 - Hosts: 199.193.118.246 ad-emea.doubleclick.net.

O1 - Hosts: 199.193.118.246 www.statcounter.com.

O1 - Hosts: 199.193.118.246 connect.facebook.net.

O1 - Hosts: 93.115.241.27 www.google-analytics.com.

O1 - Hosts: 93.115.241.27 ad-emea.doubleclick.net.

O1 - Hosts: 93.115.241.27 www.statcounter.com.

O1 - Hosts: 93.115.241.27 connect.facebook.net.

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [boingo Wi-Fi] "C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk"

O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [sSDMonitor] C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe

O4 - HKCU\..\Run: [MyTomTomSA.exe] "C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\V&V Projects\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [spotify] "C:\Users\V&V Projects\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: Download with &Media Finder - C:\Program Files (x86)\Media Finder\hook.html

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/be/Core/Player/2020PlayerAX_Win32.cab

O16 - DPF: {4C2F1F44-159E-4F34-A40F-7C25F0E7160D} (CatcTableEditorCtrl Object) - http://www.airtradecentre.com/cms/atcTableEditor.cab

O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab

O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe

O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: PC Tools Startup and Shutdown Monitor service (PCToolsSSDMonitorSvc) - Unknown owner - C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe

O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe

O23 - Service: TurboBoost - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 15678 bytes

De spam in de mailbox is wel al geminderd van +- 15 mails naar +-5 mails per dag.

De pop'ups blijven wel.

kape · 28 maart 2013

Download TDSSKiller en plaats het op je bureaublad.

Pak de bestanden in tdsskiller.zip uit.

Open de map tdsskiller en dubbelklik op TDSSKiller.exe om de tool te starten.

Windows 7 en Windows Vista gebruikers:

Rechtsklik op TDSSKiller.exe -> Uitvoeren als Administrator om de tool te starten.

Als TDSSKiller bericht geeft van een beschikbare update, dan voer je deze eerst uit.

Klik op de knop "Start Scan" en volg de instructies.

Wanneer de scan klaar is klik je op de knop "Report".

Er opent een kladblokbestand. Post de inhoud van dit bestand.

Herstart de pc als TDSSKiller die optie geeft. (Reboot now)

Wanneer er een herstart nodig was, vind je de logfile in C:\\TDSSKiller.[Version]_[Date]_[Time]_log.txt

Download de Emsisoft Emergency Kit naar het bureaublad en pak het ZIP bestand uit.

Open de map "EmsisoftEmergencyKit" en dubbelklik op "Start.exe"
Klik nu op "Emergency Kit Scanner" u krijg nu een melding dat het is aanbevolen om eerst te updaten sta dit toe door te klikken op "Ja"
Als de update gereed is en de melding "Update process is succesvol afgerond" verschijnt klikt u op "menu" en dan op "Scan PC"
Selecteer de optie "Diep" als deze niet standaard al zo is ingesteld.
Klik Nu op de knop "Scan" en doe verder niets op de computer tijdens het scannen, deze scan kan een geruime tijd in beslag nemen dus wacht dit geduldig af.
Het venster met de waarschuwing over een verhoogd risico kunt u sluiten als de scan gereed is.
Zorg ervoor dat alle gevonden items zijn aangevinkt en druk dan op de knop "verwijder geselecteerde" u zal nu de volgende melding krijgen maar klik hier op "Ja"
Als het verwijderen gereed is klikt u op de knop "View report" en selecteert u het tekstbestand van deze scan met de naam zoals: a2scan_110730-111615.txt
Plaats de inhoud van dit LOG bestand straks in uw volgende bericht.
Herstart nu de computer.

ice_in_polo_2 · 28 maart 2013

TDSS killer:

00:41:08.0441 10340 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

00:41:08.0628 10340 ============================================================

00:41:08.0628 10340 Current date / time: 2013/03/29 00:41:08.0628

00:41:08.0628 10340 SystemInfo:

00:41:08.0628 10340

00:41:08.0628 10340 OS Version: 6.1.7601 ServicePack: 1.0

00:41:08.0628 10340 Product type: Workstation

00:41:08.0628 10340 ComputerName: VV-PROJECTS-PC

00:41:08.0644 10340 UserName: V&V Projects

00:41:08.0644 10340 Windows directory: C:\Windows

00:41:08.0644 10340 System windows directory: C:\Windows

00:41:08.0644 10340 Running under WOW64

00:41:08.0644 10340 Processor architecture: Intel x64

00:41:08.0644 10340 Number of processors: 4

00:41:08.0644 10340 Page size: 0x1000

00:41:08.0644 10340 Boot type: Normal boot

00:41:08.0644 10340 ============================================================

00:41:09.0518 10340 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

00:41:09.0518 10340 ============================================================

00:41:09.0518 10340 \Device\Harddisk0\DR0:

00:41:09.0518 10340 MBR partitions:

00:41:09.0518 10340 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2711676, BlocksNum 0x12A14A08

00:41:09.0549 10340 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x15127000, BlocksNum 0x35730800

00:41:09.0549 10340 ============================================================

00:41:09.0564 10340 C: <-> \Device\Harddisk0\DR0\Partition1

00:41:09.0596 10340 D: <-> \Device\Harddisk0\DR0\Partition2

00:41:09.0596 10340 ============================================================

00:41:09.0596 10340 Initialize success

00:41:09.0596 10340 ============================================================

00:41:12.0731 2208 ============================================================

00:41:12.0731 2208 Scan started

00:41:12.0731 2208 Mode: Manual;

00:41:12.0731 2208 ============================================================

00:41:13.0698 2208 ================ Scan system memory ========================

00:41:13.0698 2208 System memory - ok

00:41:13.0714 2208 ================ Scan services =============================

00:41:13.0901 2208 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

00:41:13.0917 2208 1394ohci - ok

00:41:13.0948 2208 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys

00:41:13.0948 2208 ACPI - ok

00:41:13.0979 2208 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

00:41:13.0979 2208 AcpiPmi - ok

00:41:14.0057 2208 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

00:41:14.0057 2208 AdobeARMservice - ok

00:41:14.0198 2208 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

00:41:14.0198 2208 AdobeFlashPlayerUpdateSvc - ok

00:41:14.0244 2208 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

00:41:14.0276 2208 adp94xx - ok

00:41:14.0307 2208 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

00:41:14.0307 2208 adpahci - ok

00:41:14.0338 2208 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

00:41:14.0354 2208 adpu320 - ok

00:41:14.0400 2208 [ C0BF554D2277F7A4C735D475ADE2E3B2 ] ADSMService C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe

00:41:14.0400 2208 ADSMService - ok

00:41:14.0432 2208 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

00:41:14.0432 2208 AeLookupSvc - ok

00:41:14.0494 2208 [ 2D00D3DADC1D3326BA788EB071F2726E ] AFBAgent C:\Windows\system32\FBAgent.exe

00:41:14.0556 2208 AFBAgent - ok

00:41:14.0603 2208 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys

00:41:14.0634 2208 AFD - ok

00:41:14.0681 2208 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys

00:41:14.0681 2208 agp440 - ok

00:41:14.0712 2208 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe

00:41:14.0712 2208 ALG - ok

00:41:14.0728 2208 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys

00:41:14.0744 2208 aliide - ok

00:41:14.0775 2208 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys

00:41:14.0775 2208 amdide - ok

00:41:14.0790 2208 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

00:41:14.0806 2208 AmdK8 - ok

00:41:14.0806 2208 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

00:41:14.0822 2208 AmdPPM - ok

00:41:14.0853 2208 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys

00:41:14.0868 2208 amdsata - ok

00:41:14.0900 2208 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

00:41:14.0900 2208 amdsbs - ok

00:41:14.0931 2208 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys

00:41:14.0931 2208 amdxata - ok

00:41:14.0978 2208 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys

00:41:14.0978 2208 AppID - ok

00:41:15.0009 2208 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll

00:41:15.0009 2208 AppIDSvc - ok

00:41:15.0040 2208 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll

00:41:15.0040 2208 Appinfo - ok

00:41:15.0134 2208 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

00:41:15.0134 2208 Apple Mobile Device - ok

00:41:15.0180 2208 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys

00:41:15.0180 2208 arc - ok

00:41:15.0196 2208 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

00:41:15.0196 2208 arcsas - ok

00:41:15.0227 2208 [ 88FBC8BEBFD38566235EAA5E4DBC4E05 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys

00:41:15.0243 2208 AsDsm - ok

00:41:15.0290 2208 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

00:41:15.0305 2208 ASLDRService - ok

00:41:15.0321 2208 [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys

00:41:15.0321 2208 ASMMAP64 - ok

00:41:15.0352 2208 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

00:41:15.0352 2208 AsyncMac - ok

00:41:15.0383 2208 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys

00:41:15.0383 2208 atapi - ok

00:41:15.0461 2208 [ F8633CDD09647A64EE8DB550630427FF ] athr C:\Windows\system32\DRIVERS\athrx.sys

00:41:15.0524 2208 athr - ok

00:41:15.0555 2208 [ 7910158929571214A959D5A6D16DD9C0 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

00:41:15.0555 2208 ATKGFNEXSrv - ok

00:41:15.0602 2208 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

00:41:15.0633 2208 AudioEndpointBuilder - ok

00:41:15.0664 2208 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll

00:41:15.0664 2208 AudioSrv - ok

00:41:15.0742 2208 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll

00:41:15.0758 2208 AxInstSV - ok

00:41:15.0804 2208 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys

00:41:15.0820 2208 b06bdrv - ok

00:41:15.0867 2208 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

00:41:15.0882 2208 b57nd60a - ok

00:41:15.0929 2208 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll

00:41:15.0929 2208 BDESVC - ok

00:41:15.0960 2208 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys

00:41:15.0960 2208 Beep - ok

00:41:16.0007 2208 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll

00:41:16.0038 2208 BFE - ok

00:41:16.0085 2208 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll

00:41:16.0194 2208 BITS - ok

00:41:16.0226 2208 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

00:41:16.0226 2208 blbdrive - ok

00:41:16.0319 2208 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

00:41:16.0350 2208 Bonjour Service - ok

00:41:16.0397 2208 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

00:41:16.0397 2208 bowser - ok

00:41:16.0444 2208 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

00:41:16.0444 2208 BrFiltLo - ok

00:41:16.0460 2208 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

00:41:16.0460 2208 BrFiltUp - ok

00:41:16.0506 2208 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll

00:41:16.0506 2208 Browser - ok

00:41:16.0538 2208 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys

00:41:16.0538 2208 Brserid - ok

00:41:16.0553 2208 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

00:41:16.0553 2208 BrSerWdm - ok

00:41:16.0569 2208 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

00:41:16.0569 2208 BrUsbMdm - ok

00:41:16.0584 2208 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

00:41:16.0584 2208 BrUsbSer - ok

00:41:16.0631 2208 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

00:41:16.0631 2208 BTHMODEM - ok

00:41:16.0662 2208 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll

00:41:16.0678 2208 bthserv - ok

00:41:16.0709 2208 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

00:41:16.0709 2208 cdfs - ok

00:41:16.0756 2208 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys

00:41:16.0756 2208 cdrom - ok

00:41:16.0803 2208 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll

00:41:16.0803 2208 CertPropSvc - ok

00:41:16.0850 2208 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys

00:41:16.0850 2208 circlass - ok

00:41:16.0896 2208 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys

00:41:16.0896 2208 CLFS - ok

00:41:17.0006 2208 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

00:41:17.0006 2208 clr_optimization_v2.0.50727_32 - ok

00:41:17.0068 2208 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

00:41:17.0068 2208 clr_optimization_v2.0.50727_64 - ok

00:41:17.0146 2208 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

00:41:17.0162 2208 clr_optimization_v4.0.30319_32 - ok

00:41:17.0193 2208 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

00:41:17.0193 2208 clr_optimization_v4.0.30319_64 - ok

00:41:17.0240 2208 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

00:41:17.0240 2208 CmBatt - ok

00:41:17.0271 2208 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys

00:41:17.0271 2208 cmdide - ok

00:41:17.0318 2208 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys

00:41:17.0318 2208 CNG - ok

00:41:17.0380 2208 [ F7CA3ACCF5AA0E2182546C5BE42B2E96 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys

00:41:17.0411 2208 CnxtHdAudService - ok

00:41:17.0458 2208 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

00:41:17.0458 2208 Compbatt - ok

00:41:17.0474 2208 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

00:41:17.0474 2208 CompositeBus - ok

00:41:17.0489 2208 COMSysApp - ok

00:41:17.0520 2208 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

00:41:17.0520 2208 crcdisk - ok

00:41:17.0567 2208 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll

00:41:17.0583 2208 CryptSvc - ok

00:41:17.0676 2208 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

00:41:17.0692 2208 cvhsvc - ok

00:41:17.0739 2208 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll

00:41:17.0786 2208 DcomLaunch - ok

00:41:17.0817 2208 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll

00:41:17.0817 2208 defragsvc - ok

00:41:17.0848 2208 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

00:41:17.0864 2208 DfsC - ok

00:41:17.0895 2208 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll

00:41:17.0910 2208 Dhcp - ok

00:41:17.0942 2208 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys

00:41:17.0942 2208 discache - ok

00:41:17.0988 2208 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys

00:41:17.0988 2208 Disk - ok

00:41:18.0035 2208 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll

00:41:18.0035 2208 Dnscache - ok

00:41:18.0082 2208 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll

00:41:18.0082 2208 dot3svc - ok

00:41:18.0129 2208 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys

00:41:18.0144 2208 Dot4 - ok

00:41:18.0176 2208 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys

00:41:18.0176 2208 Dot4Print - ok

00:41:18.0207 2208 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys

00:41:18.0207 2208 dot4usb - ok

00:41:18.0238 2208 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll

00:41:18.0254 2208 DPS - ok

00:41:18.0285 2208 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

00:41:18.0285 2208 drmkaud - ok

00:41:18.0347 2208 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

00:41:18.0378 2208 DXGKrnl - ok

00:41:18.0410 2208 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll

00:41:18.0410 2208 EapHost - ok

00:41:18.0534 2208 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys

00:41:18.0628 2208 ebdrv - ok

00:41:18.0659 2208 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe

00:41:18.0659 2208 EFS - ok

00:41:18.0940 2208 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

00:41:19.0002 2208 ehRecvr - ok

00:41:19.0096 2208 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe

00:41:19.0096 2208 ehSched - ok

00:41:19.0174 2208 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

00:41:19.0190 2208 elxstor - ok

00:41:19.0221 2208 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys

00:41:19.0221 2208 ErrDev - ok

00:41:19.0268 2208 [ 06C94BE9D9E1E6411429433A64A76936 ] ETD C:\Windows\system32\DRIVERS\ETD.sys

00:41:19.0283 2208 ETD - ok

00:41:19.0314 2208 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll

00:41:19.0330 2208 EventSystem - ok

00:41:19.0377 2208 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys

00:41:19.0377 2208 exfat - ok

00:41:19.0424 2208 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys

00:41:19.0424 2208 fastfat - ok

00:41:19.0470 2208 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe

00:41:19.0502 2208 Fax - ok

00:41:19.0517 2208 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys

00:41:19.0517 2208 fdc - ok

00:41:19.0548 2208 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll

00:41:19.0564 2208 fdPHost - ok

00:41:19.0580 2208 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll

00:41:19.0580 2208 FDResPub - ok

00:41:19.0611 2208 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

00:41:19.0611 2208 FileInfo - ok

00:41:19.0626 2208 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

00:41:19.0626 2208 Filetrace - ok

00:41:19.0658 2208 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

00:41:19.0658 2208 flpydisk - ok

00:41:19.0689 2208 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

00:41:19.0704 2208 FltMgr - ok

00:41:19.0751 2208 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll

00:41:19.0798 2208 FontCache - ok

00:41:19.0845 2208 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

00:41:19.0845 2208 FontCache3.0.0.0 - ok

00:41:19.0876 2208 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

00:41:19.0876 2208 FsDepends - ok

00:41:19.0923 2208 [ 2BF3B36B96D015AF666B6AA63AE2E38F ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys

00:41:19.0923 2208 fssfltr - ok

00:41:20.0001 2208 [ 45B52394F9624237F33A8A3D73C0B221 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe

00:41:20.0032 2208 fsssvc - ok

00:41:20.0063 2208 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

00:41:20.0063 2208 Fs_Rec - ok

00:41:20.0110 2208 [ FA169871D8FADCC6539C4E8726610286 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys

00:41:20.0110 2208 FTDIBUS - ok

00:41:20.0126 2208 [ 24237091348D1EFB5635A1CF9649E311 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys

00:41:20.0126 2208 FTSER2K - ok

00:41:20.0188 2208 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

00:41:20.0188 2208 fvevol - ok

00:41:20.0219 2208 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

00:41:20.0219 2208 gagp30kx - ok

00:41:20.0282 2208 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

00:41:20.0282 2208 GEARAspiWDM - ok

00:41:20.0328 2208 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll

00:41:20.0360 2208 gpsvc - ok

00:41:20.0422 2208 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

00:41:20.0438 2208 gupdate - ok

00:41:20.0469 2208 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

00:41:20.0469 2208 gupdatem - ok

00:41:20.0516 2208 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

00:41:20.0516 2208 gusvc - ok

00:41:20.0562 2208 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

00:41:20.0562 2208 hcw85cir - ok

00:41:20.0609 2208 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

00:41:20.0609 2208 HdAudAddService - ok

00:41:20.0640 2208 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

00:41:20.0640 2208 HDAudBus - ok

00:41:20.0672 2208 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys

00:41:20.0672 2208 HECIx64 - ok

00:41:20.0703 2208 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

00:41:20.0703 2208 HidBatt - ok

00:41:20.0703 2208 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

00:41:20.0718 2208 HidBth - ok

00:41:20.0734 2208 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

00:41:20.0750 2208 HidIr - ok

00:41:20.0781 2208 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll

00:41:20.0781 2208 hidserv - ok

00:41:20.0843 2208 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys

00:41:20.0843 2208 HidUsb - ok

00:41:20.0874 2208 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll

00:41:20.0890 2208 hkmsvc - ok

00:41:20.0921 2208 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

00:41:20.0937 2208 HomeGroupListener - ok

00:41:20.0952 2208 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

00:41:20.0968 2208 HomeGroupProvider - ok

00:41:21.0155 2208 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll

00:41:21.0155 2208 hpqcxs08 - ok

00:41:21.0202 2208 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll

00:41:21.0202 2208 hpqddsvc - ok

00:41:21.0233 2208 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

00:41:21.0233 2208 HpSAMD - ok

00:41:21.0311 2208 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL

00:41:21.0342 2208 HPSLPSVC - ok

00:41:21.0405 2208 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys

00:41:21.0436 2208 HTTP - ok

00:41:21.0467 2208 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

00:41:21.0467 2208 hwpolicy - ok

00:41:21.0514 2208 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

00:41:21.0514 2208 i8042prt - ok

00:41:21.0576 2208 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

00:41:21.0576 2208 iaStor - ok

00:41:21.0623 2208 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

00:41:21.0639 2208 iaStorV - ok

00:41:21.0686 2208 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

00:41:21.0717 2208 idsvc - ok

00:41:22.0029 2208 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

00:41:22.0325 2208 igfx - ok

00:41:22.0372 2208 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

00:41:22.0372 2208 iirsp - ok

00:41:22.0419 2208 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll

00:41:22.0450 2208 IKEEXT - ok

00:41:22.0481 2208 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys

00:41:22.0497 2208 Impcd - ok

00:41:22.0528 2208 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys

00:41:22.0544 2208 IntcDAud - ok

00:41:22.0575 2208 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys

00:41:22.0575 2208 intelide - ok

00:41:22.0606 2208 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

00:41:22.0606 2208 intelppm - ok

00:41:22.0637 2208 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll

00:41:22.0637 2208 IPBusEnum - ok

00:41:22.0668 2208 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

00:41:22.0668 2208 IpFilterDriver - ok

00:41:22.0700 2208 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

00:41:22.0731 2208 iphlpsvc - ok

00:41:22.0762 2208 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

00:41:22.0762 2208 IPMIDRV - ok

00:41:22.0793 2208 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys

00:41:22.0793 2208 IPNAT - ok

00:41:22.0840 2208 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

00:41:22.0887 2208 iPod Service - ok

00:41:22.0902 2208 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys

00:41:22.0918 2208 IRENUM - ok

00:41:22.0934 2208 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys

00:41:22.0934 2208 isapnp - ok

00:41:22.0965 2208 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

00:41:22.0965 2208 iScsiPrt - ok

00:41:23.0012 2208 [ DB917B998CBC15A153C00DD6EFC34C13 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys

00:41:23.0012 2208 JMCR - ok

00:41:23.0058 2208 [ DE4B2249D95C7815D06A39EA5FF4EE53 ] JME C:\Windows\system32\DRIVERS\JME.sys

00:41:23.0058 2208 JME - ok

00:41:23.0090 2208 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys

00:41:23.0090 2208 kbdclass - ok

00:41:23.0121 2208 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys

00:41:23.0121 2208 kbdhid - ok

00:41:23.0152 2208 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys

00:41:23.0152 2208 kbfiltr - ok

00:41:23.0168 2208 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe

00:41:23.0168 2208 KeyIso - ok

00:41:23.0199 2208 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

00:41:23.0199 2208 KSecDD - ok

00:41:23.0230 2208 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

00:41:23.0230 2208 KSecPkg - ok

00:41:23.0261 2208 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

00:41:23.0261 2208 ksthunk - ok

00:41:23.0308 2208 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll

00:41:23.0324 2208 KtmRm - ok

00:41:23.0370 2208 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll

00:41:23.0417 2208 LanmanServer - ok

00:41:23.0448 2208 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

00:41:23.0464 2208 LanmanWorkstation - ok

00:41:23.0511 2208 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

00:41:23.0511 2208 lltdio - ok

00:41:23.0542 2208 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll

00:41:23.0558 2208 lltdsvc - ok

00:41:23.0558 2208 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll

00:41:23.0573 2208 lmhosts - ok

00:41:23.0636 2208 [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

00:41:23.0651 2208 LMS - ok

00:41:23.0698 2208 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

00:41:23.0698 2208 LSI_FC - ok

00:41:23.0729 2208 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

00:41:23.0729 2208 LSI_SAS - ok

00:41:23.0729 2208 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

00:41:23.0745 2208 LSI_SAS2 - ok

00:41:23.0776 2208 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

00:41:23.0776 2208 LSI_SCSI - ok

00:41:23.0807 2208 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys

00:41:23.0807 2208 luafv - ok

00:41:23.0838 2208 [ 085435AE1A124361304044029B5CC644 ] ***laby C:\Windows\system32\DRIVERS\***laby.sys

00:41:23.0838 2208 ***laby - ok

00:41:23.0885 2208 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

00:41:23.0885 2208 MBAMProtector - ok

00:41:23.0979 2208 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

00:41:23.0979 2208 MBAMScheduler - ok

00:41:24.0026 2208 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

00:41:24.0041 2208 MBAMService - ok

00:41:24.0119 2208 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe

00:41:24.0119 2208 McComponentHostService - ok

00:41:24.0150 2208 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

00:41:24.0166 2208 Mcx2Svc - ok

00:41:24.0197 2208 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

00:41:24.0197 2208 megasas - ok

00:41:24.0213 2208 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

00:41:24.0213 2208 MegaSR - ok

00:41:24.0260 2208 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll

00:41:24.0275 2208 MMCSS - ok

00:41:24.0275 2208 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys

00:41:24.0275 2208 Modem - ok

00:41:24.0306 2208 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys

00:41:24.0306 2208 monitor - ok

00:41:24.0338 2208 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys

00:41:24.0338 2208 mouclass - ok

00:41:24.0369 2208 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

00:41:24.0369 2208 mouhid - ok

00:41:24.0400 2208 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

00:41:24.0400 2208 mountmgr - ok

00:41:24.0447 2208 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys

00:41:24.0447 2208 mpio - ok

00:41:24.0478 2208 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

00:41:24.0478 2208 mpsdrv - ok

00:41:24.0525 2208 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll

00:41:24.0556 2208 MpsSvc - ok

00:41:24.0587 2208 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

00:41:24.0587 2208 MRxDAV - ok

00:41:24.0634 2208 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

00:41:24.0634 2208 mrxsmb - ok

00:41:24.0681 2208 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

00:41:24.0681 2208 mrxsmb10 - ok

00:41:24.0696 2208 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

00:41:24.0696 2208 mrxsmb20 - ok

00:41:24.0743 2208 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys

00:41:24.0743 2208 msahci - ok

00:41:24.0759 2208 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys

00:41:24.0774 2208 msdsm - ok

00:41:24.0806 2208 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe

00:41:24.0806 2208 MSDTC - ok

00:41:24.0852 2208 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys

00:41:24.0852 2208 Msfs - ok

00:41:24.0884 2208 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

00:41:24.0899 2208 mshidkmdf - ok

00:41:24.0930 2208 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

00:41:24.0930 2208 msisadrv - ok

00:41:24.0962 2208 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

00:41:24.0962 2208 MSiSCSI - ok

00:41:24.0977 2208 msiserver - ok

00:41:25.0024 2208 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

00:41:25.0024 2208 MSKSSRV - ok

00:41:25.0040 2208 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

00:41:25.0040 2208 MSPCLOCK - ok

00:41:25.0055 2208 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

00:41:25.0055 2208 MSPQM - ok

00:41:25.0086 2208 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

00:41:25.0086 2208 MsRPC - ok

00:41:25.0118 2208 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

00:41:25.0118 2208 mssmbios - ok

00:41:25.0149 2208 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

00:41:25.0149 2208 MSTEE - ok

00:41:25.0164 2208 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

00:41:25.0164 2208 MTConfig - ok

00:41:25.0196 2208 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys

00:41:25.0211 2208 MTsensor - ok

00:41:25.0227 2208 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys

00:41:25.0227 2208 Mup - ok

00:41:25.0258 2208 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll

00:41:25.0289 2208 napagent - ok

00:41:25.0336 2208 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

00:41:25.0336 2208 NativeWifiP - ok

00:41:25.0399 2208 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys

00:41:25.0431 2208 NDIS - ok

00:41:25.0477 2208 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

00:41:25.0477 2208 NdisCap - ok

00:41:25.0509 2208 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

00:41:25.0509 2208 NdisTapi - ok

00:41:25.0540 2208 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

00:41:25.0540 2208 Ndisuio - ok

00:41:25.0571 2208 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

00:41:25.0587 2208 NdisWan - ok

00:41:25.0602 2208 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

00:41:25.0618 2208 NDProxy - ok

00:41:25.0649 2208 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll

00:41:25.0649 2208 Net Driver HPZ12 - ok

00:41:25.0696 2208 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

00:41:25.0696 2208 NetBIOS - ok

00:41:25.0727 2208 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

00:41:25.0743 2208 NetBT - ok

00:41:25.0774 2208 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe

00:41:25.0774 2208 Netlogon - ok

00:41:25.0805 2208 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll

00:41:25.0836 2208 Netman - ok

00:41:25.0867 2208 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll

00:41:25.0883 2208 netprofm - ok

00:41:25.0914 2208 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

00:41:25.0914 2208 NetTcpPortSharing - ok

00:41:25.0961 2208 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

00:41:25.0961 2208 nfrd960 - ok

00:41:26.0008 2208 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll

00:41:26.0023 2208 NlaSvc - ok

00:41:26.0039 2208 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys

00:41:26.0055 2208 Npfs - ok

00:41:26.0070 2208 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll

00:41:26.0070 2208 nsi - ok

00:41:26.0101 2208 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

00:41:26.0101 2208 nsiproxy - ok

00:41:26.0164 2208 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

00:41:26.0226 2208 Ntfs - ok

00:41:26.0257 2208 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys

00:41:26.0257 2208 Null - ok

00:41:26.0570 2208 [ CE62DFD25E51C471517642405ADDC8BB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys

00:41:26.0882 2208 nvlddmkm - ok

00:41:26.0914 2208 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys

00:41:26.0914 2208 nvraid - ok

00:41:26.0945 2208 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys

00:41:26.0960 2208 nvstor - ok

00:41:26.0992 2208 [ 8B73D0A86BF104A884B3F1DCBFE94126 ] nvsvc C:\Windows\system32\nvvsvc.exe

00:41:27.0007 2208 nvsvc - ok

00:41:27.0101 2208 [ FE29D829BC0044FE699EDC997BB1FE72 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

00:41:27.0163 2208 nvUpdatusService - ok

00:41:27.0194 2208 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

00:41:27.0194 2208 nv_agp - ok

00:41:27.0226 2208 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

00:41:27.0226 2208 ohci1394 - ok

00:41:27.0272 2208 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

00:41:27.0272 2208 ose - ok

00:41:27.0444 2208 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

00:41:27.0569 2208 osppsvc - ok

00:41:27.0616 2208 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

00:41:27.0631 2208 p2pimsvc - ok

00:41:27.0662 2208 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll

00:41:27.0678 2208 p2psvc - ok

00:41:27.0725 2208 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys

00:41:27.0725 2208 Parport - ok

00:41:27.0756 2208 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys

00:41:27.0756 2208 partmgr - ok

00:41:27.0787 2208 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll

00:41:27.0803 2208 PcaSvc - ok

00:41:27.0834 2208 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys

00:41:27.0834 2208 pci - ok

00:41:27.0850 2208 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys

00:41:27.0850 2208 pciide - ok

00:41:27.0881 2208 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

00:41:27.0896 2208 pcmcia - ok

00:41:27.0974 2208 [ C98CD9EE0012DF72206BD519DB9780D4 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe

00:41:27.0990 2208 PCToolsSSDMonitorSvc - ok

00:41:28.0021 2208 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys

00:41:28.0021 2208 pcw - ok

00:41:28.0052 2208 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys

00:41:28.0084 2208 PEAUTH - ok

00:41:28.0162 2208 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe

00:41:28.0177 2208 PerfHost - ok

00:41:28.0271 2208 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll

00:41:28.0333 2208 pla - ok

00:41:28.0380 2208 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

00:41:28.0396 2208 PlugPlay - ok

00:41:28.0442 2208 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll

00:41:28.0442 2208 Pml Driver HPZ12 - ok

00:41:28.0474 2208 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

00:41:28.0474 2208 PNRPAutoReg - ok

00:41:28.0505 2208 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

00:41:28.0520 2208 PNRPsvc - ok

00:41:28.0567 2208 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

00:41:28.0583 2208 PolicyAgent - ok

00:41:28.0614 2208 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll

00:41:28.0630 2208 Power - ok

00:41:28.0661 2208 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

00:41:28.0676 2208 PptpMiniport - ok

00:41:28.0708 2208 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys

00:41:28.0708 2208 Processor - ok

00:41:28.0739 2208 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll

00:41:28.0754 2208 ProfSvc - ok

00:41:28.0770 2208 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

00:41:28.0770 2208 ProtectedStorage - ok

00:41:28.0801 2208 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys

00:41:28.0801 2208 Psched - ok

00:41:28.0879 2208 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys

00:41:28.0926 2208 ql2300 - ok

00:41:28.0942 2208 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys

00:41:28.0942 2208 ql40xx - ok

00:41:28.0973 2208 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll

00:41:28.0988 2208 QWAVE - ok

00:41:29.0020 2208 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

00:41:29.0020 2208 QWAVEdrv - ok

00:41:29.0020 2208 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

00:41:29.0035 2208 RasAcd - ok

00:41:29.0066 2208 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

00:41:29.0066 2208 RasAgileVpn - ok

00:41:29.0098 2208 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll

00:41:29.0113 2208 RasAuto - ok

00:41:29.0129 2208 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

00:41:29.0129 2208 Rasl2tp - ok

00:41:29.0160 2208 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll

00:41:29.0191 2208 RasMan - ok

00:41:29.0222 2208 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

00:41:29.0222 2208 RasPppoe - ok

00:41:29.0254 2208 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

00:41:29.0254 2208 RasSstp - ok

00:41:29.0285 2208 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

00:41:29.0285 2208 rdbss - ok

00:41:29.0316 2208 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

00:41:29.0316 2208 rdpbus - ok

00:41:29.0332 2208 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

00:41:29.0332 2208 RDPCDD - ok

00:41:29.0378 2208 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

00:41:29.0378 2208 RDPENCDD - ok

00:41:29.0394 2208 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

00:41:29.0394 2208 RDPREFMP - ok

00:41:29.0425 2208 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

00:41:29.0442 2208 RDPWD - ok

00:41:29.0489 2208 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

00:41:29.0489 2208 rdyboost - ok

00:41:29.0504 2208 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll

00:41:29.0520 2208 RemoteAccess - ok

00:41:29.0551 2208 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll

00:41:29.0567 2208 RemoteRegistry - ok

00:41:29.0582 2208 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

00:41:29.0582 2208 RpcEptMapper - ok

00:41:29.0613 2208 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe

00:41:29.0613 2208 RpcLocator - ok

00:41:29.0660 2208 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll

00:41:29.0676 2208 RpcSs - ok

00:41:29.0707 2208 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

00:41:29.0707 2208 rspndr - ok

00:41:29.0723 2208 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe

00:41:29.0723 2208 SamSs - ok

00:41:29.0754 2208 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

00:41:29.0754 2208 sbp2port - ok

00:41:29.0785 2208 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll

00:41:29.0801 2208 SCardSvr - ok

00:41:29.0832 2208 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

00:41:29.0832 2208 scfilter - ok

00:41:29.0879 2208 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll

00:41:29.0941 2208 Schedule - ok

00:41:29.0972 2208 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll

00:41:29.0972 2208 SCPolicySvc - ok

00:41:30.0003 2208 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys

00:41:30.0019 2208 sdbus - ok

00:41:30.0035 2208 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll

00:41:30.0050 2208 SDRSVC - ok

00:41:30.0081 2208 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

00:41:30.0081 2208 secdrv - ok

00:41:30.0097 2208 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll

00:41:30.0113 2208 seclogon - ok

00:41:30.0144 2208 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll

00:41:30.0144 2208 SENS - ok

00:41:30.0159 2208 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll

00:41:30.0175 2208 SensrSvc - ok

00:41:30.0206 2208 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

00:41:30.0206 2208 Serenum - ok

00:41:30.0237 2208 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys

00:41:30.0237 2208 Serial - ok

00:41:30.0284 2208 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys

00:41:30.0284 2208 sermouse - ok

00:41:30.0331 2208 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll

00:41:30.0347 2208 SessionEnv - ok

00:41:30.0425 2208 [ 07B31D8074E7FFF90ED8D5608028A54F ] SfCtlCom C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe

00:41:30.0457 2208 SfCtlCom - ok

00:41:30.0488 2208 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

00:41:30.0488 2208 sffdisk - ok

00:41:30.0519 2208 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

00:41:30.0519 2208 sffp_mmc - ok

00:41:30.0535 2208 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

00:41:30.0550 2208 sffp_sd - ok

00:41:30.0582 2208 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys

00:41:30.0582 2208 sfloppy - ok

00:41:30.0628 2208 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys

00:41:30.0660 2208 Sftfs - ok

00:41:30.0722 2208 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

00:41:30.0738 2208 sftlist - ok

00:41:30.0769 2208 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys

00:41:30.0784 2208 Sftplay - ok

00:41:30.0800 2208 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys

00:41:30.0800 2208 Sftredir - ok

00:41:30.0816 2208 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys

00:41:30.0816 2208 Sftvol - ok

00:41:30.0831 2208 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

00:41:30.0847 2208 sftvsa - ok

00:41:30.0878 2208 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll

00:41:30.0909 2208 SharedAccess - ok

00:41:30.0940 2208 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

00:41:30.0972 2208 ShellHWDetection - ok

00:41:31.0003 2208 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys

00:41:31.0003 2208 SiSGbeLH - ok

00:41:31.0018 2208 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys

00:41:31.0018 2208 SiSRaid2 - ok

00:41:31.0050 2208 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys

00:41:31.0050 2208 SiSRaid4 - ok

00:41:31.0096 2208 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

00:41:31.0112 2208 SkypeUpdate - ok

00:41:31.0143 2208 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys

00:41:31.0143 2208 Smb - ok

00:41:31.0190 2208 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe

00:41:31.0206 2208 SNMPTRAP - ok

00:41:31.0284 2208 [ 2114518E55B380A3ACC28B2C27FD499A ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys

00:41:31.0330 2208 SNP2UVC - ok

00:41:31.0362 2208 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys

00:41:31.0362 2208 spldr - ok

00:41:31.0408 2208 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe

00:41:31.0440 2208 Spooler - ok

00:41:31.0550 2208 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe

00:41:31.0659 2208 sppsvc - ok

00:41:31.0675 2208 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll

00:41:31.0675 2208 sppuinotify - ok

00:41:31.0721 2208 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys

00:41:31.0737 2208 srv - ok

00:41:31.0753 2208 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

00:41:31.0768 2208 srv2 - ok

00:41:31.0799 2208 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

00:41:31.0799 2208 srvnet - ok

00:41:31.0831 2208 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

00:41:31.0862 2208 SSDPSRV - ok

00:41:31.0877 2208 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll

00:41:31.0893 2208 SstpSvc - ok

00:41:31.0909 2208 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys

00:41:31.0924 2208 stexstor - ok

00:41:31.0940 2208 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys

00:41:31.0940 2208 StillCam - ok

00:41:31.0987 2208 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll

00:41:32.0018 2208 stisvc - ok

00:41:32.0049 2208 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys

00:41:32.0049 2208 swenum - ok

00:41:32.0096 2208 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll

00:41:32.0127 2208 swprv - ok

00:41:32.0205 2208 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll

00:41:32.0267 2208 SysMain - ok

00:41:32.0299 2208 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

00:41:32.0314 2208 TabletInputService - ok

00:41:32.0345 2208 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll

00:41:32.0361 2208 TapiSrv - ok

00:41:32.0392 2208 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll

00:41:32.0392 2208 TBS - ok

00:41:32.0470 2208 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

00:41:32.0534 2208 Tcpip - ok

00:41:32.0612 2208 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

00:41:32.0627 2208 TCPIP6 - ok

00:41:32.0658 2208 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

00:41:32.0658 2208 tcpipreg - ok

00:41:32.0705 2208 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

00:41:32.0705 2208 TDPIPE - ok

00:41:32.0736 2208 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

00:41:32.0736 2208 TDTCP - ok

00:41:32.0783 2208 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

00:41:32.0783 2208 tdx - ok

00:41:32.0814 2208 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys

00:41:32.0814 2208 TermDD - ok

00:41:32.0846 2208 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll

00:41:32.0877 2208 TermService - ok

00:41:32.0908 2208 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll

00:41:32.0908 2208 Themes - ok

00:41:32.0939 2208 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll

00:41:32.0955 2208 THREADORDER - ok

00:41:32.0986 2208 [ 963C903E5176C5CDCAE321D48635B21F ] TMBMServer C:\Program Files\Trend Micro\BM\TMBMSRV.exe

00:41:33.0017 2208 TMBMServer - ok

00:41:33.0048 2208 [ 803EE35DF92815EA5D41CEE7410C8CC1 ] tmpreflt C:\Windows\system32\DRIVERS\tmpreflt.sys

00:41:33.0048 2208 tmpreflt - ok

00:41:33.0095 2208 [ 3AE913B4FBF06EE49831FF9DB2330830 ] TmProxy C:\Program Files\Trend Micro\Internet Security\TmProxy.exe

00:41:33.0126 2208 TmProxy - ok

00:41:33.0158 2208 [ 21CC12B7F8B44E91D03EAD5B17AAF0B2 ] tmtdi C:\Windows\system32\DRIVERS\tmtdi.sys

00:41:33.0173 2208 tmtdi - ok

00:41:33.0204 2208 [ 9BD32132A3470CEFB3CBEA5FA492BD6F ] tmxpflt C:\Windows\system32\DRIVERS\tmxpflt.sys

00:41:33.0220 2208 tmxpflt - ok

00:41:33.0251 2208 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll

00:41:33.0267 2208 TrkWks - ok

00:41:33.0314 2208 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

00:41:33.0345 2208 TrustedInstaller - ok

00:41:33.0376 2208 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

00:41:33.0376 2208 tssecsrv - ok

00:41:33.0407 2208 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

00:41:33.0423 2208 TsUsbFlt - ok

00:41:33.0454 2208 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

00:41:33.0470 2208 tunnel - ok

00:41:33.0502 2208 [ C45A3E051C65106A28982CAED125F855 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys

00:41:33.0502 2208 TurboB - ok

00:41:33.0533 2208 [ BAEF86EBEAECE76573FA822DEA256F6C ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe

00:41:33.0533 2208 TurboBoost - ok

00:41:33.0580 2208 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys

00:41:33.0580 2208 uagp35 - ok

00:41:33.0611 2208 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

00:41:33.0627 2208 udfs - ok

00:41:33.0658 2208 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe

00:41:33.0658 2208 UI0Detect - ok

00:41:33.0705 2208 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

00:41:33.0705 2208 uliagpkx - ok

00:41:33.0736 2208 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys

00:41:33.0736 2208 umbus - ok

00:41:33.0767 2208 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys

00:41:33.0767 2208 UmPass - ok

00:41:33.0876 2208 [ 41118D920B2B268C0ADC36421248CDCF ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

00:41:33.0954 2208 UNS - ok

00:41:34.0001 2208 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll

00:41:34.0017 2208 upnphost - ok

00:41:34.0048 2208 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys

00:41:34.0063 2208 USBAAPL64 - ok

00:41:34.0095 2208 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

00:41:34.0095 2208 usbccgp - ok

00:41:34.0126 2208 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys

00:41:34.0126 2208 usbcir - ok

00:41:34.0141 2208 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys

00:41:34.0157 2208 usbehci - ok

00:41:34.0188 2208 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

00:41:34.0188 2208 usbhub - ok

00:41:34.0219 2208 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys

00:41:34.0219 2208 usbohci - ok

00:41:34.0251 2208 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

00:41:34.0266 2208 usbprint - ok

00:41:34.0297 2208 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

00:41:34.0297 2208 usbscan - ok

00:41:34.0329 2208 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

00:41:34.0329 2208 USBSTOR - ok

00:41:34.0344 2208 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

00:41:34.0360 2208 usbuhci - ok

00:41:34.0375 2208 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys

00:41:34.0391 2208 usbvideo - ok

00:41:34.0422 2208 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys

00:41:34.0438 2208 usb_rndisx - ok

00:41:34.0453 2208 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll

00:41:34.0469 2208 UxSms - ok

00:41:34.0485 2208 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe

00:41:34.0500 2208 VaultSvc - ok

00:41:34.0532 2208 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

00:41:34.0532 2208 vdrvroot - ok

00:41:34.0564 2208 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe

00:41:34.0595 2208 vds - ok

00:41:34.0642 2208 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

00:41:34.0642 2208 vga - ok

00:41:34.0657 2208 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys

00:41:34.0657 2208 VgaSave - ok

00:41:34.0688 2208 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

00:41:34.0688 2208 vhdmp - ok

00:41:34.0720 2208 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys

00:41:34.0720 2208 viaide - ok

00:41:34.0735 2208 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys

00:41:34.0735 2208 volmgr - ok

00:41:34.0782 2208 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

00:41:34.0782 2208 volmgrx - ok

00:41:34.0798 2208 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys

00:41:34.0813 2208 volsnap - ok

00:41:34.0876 2208 [ B01CE1F5A44126892240D179A6DBD43F ] vsapint C:\Windows\system32\DRIVERS\vsapint.sys

00:41:34.0954 2208 vsapint - ok

00:41:35.0000 2208 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

00:41:35.0000 2208 vsmraid - ok

00:41:35.0063 2208 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe

00:41:35.0141 2208 VSS - ok

00:41:35.0156 2208 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys

00:41:35.0172 2208 vwifibus - ok

00:41:35.0172 2208 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

00:41:35.0188 2208 vwififlt - ok

00:41:35.0203 2208 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys

00:41:35.0203 2208 vwifimp - ok

00:41:35.0250 2208 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll

00:41:35.0281 2208 W32Time - ok

00:41:35.0312 2208 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys

00:41:35.0312 2208 WacomPen - ok

00:41:35.0359 2208 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

00:41:35.0359 2208 WANARP - ok

00:41:35.0375 2208 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

00:41:35.0375 2208 Wanarpv6 - ok

00:41:35.0468 2208 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

00:41:35.0515 2208 WatAdminSvc - ok

00:41:35.0578 2208 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe

00:41:35.0640 2208 wbengine - ok

00:41:35.0671 2208 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

00:41:35.0687 2208 WbioSrvc - ok

00:41:35.0718 2208 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll

00:41:35.0749 2208 wcncsvc - ok

00:41:35.0765 2208 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

00:41:35.0780 2208 WcsPlugInService - ok

00:41:35.0812 2208 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys

00:41:35.0812 2208 Wd - ok

00:41:35.0858 2208 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

00:41:35.0890 2208 Wdf01000 - ok

00:41:35.0905 2208 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll

00:41:35.0921 2208 WdiServiceHost - ok

00:41:35.0936 2208 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll

00:41:35.0936 2208 WdiSystemHost - ok

00:41:35.0983 2208 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll

00:41:36.0014 2208 WebClient - ok

00:41:36.0046 2208 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll

00:41:36.0077 2208 Wecsvc - ok

00:41:36.0092 2208 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll

00:41:36.0108 2208 wercplsupport - ok

00:41:36.0139 2208 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll

00:41:36.0139 2208 WerSvc - ok

00:41:36.0186 2208 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

00:41:36.0186 2208 WfpLwf - ok

00:41:36.0233 2208 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys

00:41:36.0233 2208 WimFltr - ok

00:41:36.0264 2208 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys

00:41:36.0264 2208 WIMMount - ok

00:41:36.0280 2208 WinDefend - ok

00:41:36.0295 2208 WinHttpAutoProxySvc - ok

00:41:36.0358 2208 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

00:41:36.0373 2208 Winmgmt - ok

00:41:36.0467 2208 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll

00:41:36.0545 2208 WinRM - ok

00:41:36.0592 2208 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

00:41:36.0607 2208 WinUsb - ok

00:41:36.0638 2208 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll

00:41:36.0685 2208 Wlansvc - ok

00:41:36.0716 2208 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

00:41:36.0716 2208 WmiAcpi - ok

00:41:36.0748 2208 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

00:41:36.0748 2208 wmiApSrv - ok

00:41:36.0794 2208 WMPNetworkSvc - ok

00:41:36.0826 2208 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll

00:41:36.0841 2208 WPCSvc - ok

00:41:36.0872 2208 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

00:41:36.0872 2208 WPDBusEnum - ok

00:41:36.0888 2208 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

00:41:36.0888 2208 ws2ifsl - ok

00:41:36.0919 2208 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll

00:41:36.0935 2208 wscsvc - ok

00:41:36.0935 2208 WSearch - ok

00:41:37.0028 2208 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll

00:41:37.0106 2208 wuauserv - ok

00:41:37.0138 2208 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

00:41:37.0138 2208 WudfPf - ok

00:41:37.0169 2208 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

00:41:37.0184 2208 WUDFRd - ok

00:41:37.0216 2208 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

00:41:37.0231 2208 wudfsvc - ok

00:41:37.0262 2208 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll

00:41:37.0278 2208 WwanSvc - ok

00:41:37.0325 2208 ================ Scan global ===============================

00:41:37.0356 2208 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

00:41:37.0387 2208 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

00:41:37.0418 2208 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

00:41:37.0450 2208 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

00:41:37.0481 2208 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

00:41:37.0496 2208 [Global] - ok

00:41:37.0496 2208 ================ Scan MBR ==================================

00:41:37.0512 2208 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

00:41:37.0824 2208 \Device\Harddisk0\DR0 - ok

00:41:37.0824 2208 ================ Scan VBR ==================================

00:41:37.0840 2208 [ FA48911E0777948720A8922330266CD5 ] \Device\Harddisk0\DR0\Partition1

00:41:37.0840 2208 \Device\Harddisk0\DR0\Partition1 - ok

00:41:37.0886 2208 [ CAE4C3BE9B02E7EA9F830C12DAAC9A30 ] \Device\Harddisk0\DR0\Partition2

00:41:37.0886 2208 \Device\Harddisk0\DR0\Partition2 - ok

00:41:37.0886 2208 ============================================================

00:41:37.0886 2208 Scan finished

00:41:37.0886 2208 ============================================================

00:41:37.0902 8112 Detected object count: 0

00:41:37.0902 8112 Actual detected object count: 0

ice_in_polo_2 · 29 maart 2013

Emsisoft Emergency Kit - Versie 3.0

Laatste Update: 29-3-2013 0:50:18

Scaninstellingen:

Scantype: Diepe scan

Objecten: Rootkits, Geheugen, Sporen, C:\, D:\, Q:\

Detecteer riskware: Uit

Scan archieven: Aan

ADS Scan: Aan

Bestandsextensiefilter: Uit

Geavanceerde cache: Aan

Directe schijftoegang: Uit

Scan gestart: 29-3-2013 0:52:57

Gescand 492807

Gevonden 0

Scan geëindigd: 29-3-2013 2:16:15

Scantijd: 1:23:18

kape · 29 maart 2013

Weer niets fout te detecteren ... nog steeds pop-ups nu ?

ice_in_polo_2 · 29 maart 2013

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 23:11:32, on 29/03/2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16470)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe

C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe

C:\Users\V&V Projects\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe

C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

C:\Windows\AsScrPro.exe

C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe

Q:\140066.enu\Office14\EXCELC.EXE

Q:\140066.enu\Office14\OffSpon.EXE

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe

C:\Program Files (x86)\Registry Mechanic\upgrade.exe

C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com