Kees Draaihuis

Als ik mijn laptop opstart dan krijg ik wel het windows-bureaublad achtergrond te zien, ik kan mijn muis zien (en bewegen) maar voor de verdere rest:............helemaal niets. Ik zie geen icoontjes meer, de programma-balk onderin het scherm is niet meer te zien. Helemaal niets. Iemand een idee om mij te helpen?

Kape, bedankt voor je tijd en energie die je hebt gestopt in het helpen van mij. Ik waardeer dat zeer.

Dag Kape, Nee voor zover ik merk, niet echt. Ik heb wel het gevoel dat deze Windows-versie wat trager is dan mijn vorige Windows-7-versie (o.a. het opstarten). En dat juist terwijl ik mijn computer juist helemaal 'leeg' heb gemaakt omdat Windows zo'n 'vervuilend' systeem is wat (naar mijn mening) om de zoveel tijd een keer opgeschoond moet worden. Wat me wel duidelijk is geworden is dat het bijna onmogelijk is om software binnen te halen welke niet besmet is. In de nieuwsgroepen wordt heel vaak aangegeven dat een bepaalde software helemaal 'clean' is, maar volgens mij is dat in veel gevallen dus niet waar. Zelfs de W7-versie die ik gekocht heb blijkt dus besmet te zijn geweest. Ik snap heus wel dat je het beste gewoon alle software in de winkel moet kopen, maar soms wil je ook wel eens een keer eerst iets uit proberen om te kijken of het wel software is die je wil hebben.

Kape, gedaan maar hij vindt nu niets meer, (kan het zijn dat die meldingen gisteren al 'gerepareerd' zijn?) Hieronder het resultaat van vandaag: 10:45:33.0251 0x11d8 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50 10:45:41.0067 0x11d8 ============================================================ 10:45:41.0067 0x11d8 Current date / time: 2014/01/04 10:45:41.0067 10:45:41.0067 0x11d8 SystemInfo: 10:45:41.0067 0x11d8 10:45:41.0067 0x11d8 OS Version: 6.1.7601 ServicePack: 1.0 10:45:41.0067 0x11d8 Product type: Workstation 10:45:41.0067 0x11d8 ComputerName: ZET-PC 10:45:41.0067 0x11d8 UserName: ZET 10:45:41.0067 0x11d8 Windows directory: C:\Windows 10:45:41.0067 0x11d8 System windows directory: C:\Windows 10:45:41.0067 0x11d8 Running under WOW64 10:45:41.0067 0x11d8 Processor architecture: Intel x64 10:45:41.0067 0x11d8 Number of processors: 4 10:45:41.0067 0x11d8 Page size: 0x1000 10:45:41.0067 0x11d8 Boot type: Normal boot 10:45:41.0067 0x11d8 ============================================================ 10:45:45.0045 0x11d8 KLMD registered as C:\Windows\system32\drivers\52950884.sys 10:45:45.0201 0x11d8 System UUID: {6F86ED68-4360-87DA-38C7-F421870C7FC4} 10:45:45.0997 0x11d8 Drive \Device\Harddisk2\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 10:45:46.0012 0x11d8 Drive \Device\Harddisk3\DR3 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040 10:45:46.0028 0x11d8 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040 10:45:46.0043 0x11d8 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 10:45:46.0059 0x11d8 Drive \Device\Harddisk4\DR4 - Size: 0x2BA9F400000 (2794.49 Gb), SectorSize: 0x1000, Cylinders: 0xB21F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 10:45:46.0075 0x11d8 ============================================================ 10:45:46.0075 0x11d8 \Device\Harddisk2\DR2: 10:45:46.0075 0x11d8 MBR partitions: 10:45:46.0075 0x11d8 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x186A0000 10:45:46.0075 0x11d8 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x186A0800, BlocksNum 0x321B6800 10:45:46.0075 0x11d8 \Device\Harddisk3\DR3: 10:45:46.0075 0x11d8 MBR partitions: 10:45:46.0075 0x11d8 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000 10:45:46.0075 0x11d8 \Device\Harddisk0\DR0: 10:45:46.0075 0x11d8 MBR partitions: 10:45:46.0075 0x11d8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 10:45:46.0075 0x11d8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xD6A6000 10:45:46.0075 0x11d8 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xD6D8800, BlocksNum 0xFAEC000 10:45:46.0075 0x11d8 \Device\Harddisk1\DR1: 10:45:46.0075 0x11d8 MBR partitions: 10:45:46.0075 0x11d8 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800 10:45:46.0075 0x11d8 \Device\Harddisk4\DR4: 10:45:46.0075 0x11d8 MBR partitions: 10:45:46.0075 0x11d8 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x2BA9F300 10:45:46.0075 0x11d8 ============================================================ 10:45:46.0090 0x11d8 C: <-> \Device\Harddisk0\DR0\Partition2 10:45:46.0137 0x11d8 E: <-> \Device\Harddisk1\DR1\Partition1 10:45:46.0153 0x11d8 H: <-> \Device\Harddisk0\DR0\Partition3 10:45:46.0168 0x11d8 D: <-> \Device\Harddisk2\DR2\Partition1 10:45:46.0246 0x11d8 F: <-> \Device\Harddisk2\DR2\Partition2 10:45:46.0246 0x11d8 G: <-> \Device\Harddisk3\DR3\Partition1 10:45:46.0948 0x11d8 I: <-> \Device\Harddisk4\DR4\Partition1 10:45:46.0948 0x11d8 ============================================================ 10:45:46.0948 0x11d8 Initialize success 10:45:46.0948 0x11d8 ============================================================ 10:45:55.0263 0x1248 ============================================================ 10:45:55.0263 0x1248 Scan started 10:45:55.0263 0x1248 Mode: Manual; SigCheck; TDLFS; 10:45:55.0263 0x1248 ============================================================ 10:45:55.0263 0x1248 KSN ping started 10:45:58.0399 0x1248 KSN ping finished: true 10:45:59.0631 0x1248 ================ Scan system memory ======================== 10:45:59.0631 0x1248 System memory - ok 10:45:59.0631 0x1248 ================ Scan services ============================= 10:45:59.0881 0x1248 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 10:46:00.0177 0x1248 1394ohci - ok 10:46:00.0286 0x1248 [ 797E1068EE061C5DEE668F0DC6B3C601, 10B70F8AD3B9198E8CA7297865EACA94D576B375D3C078555E98C949FF5D5C2E ] a2acc C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys 10:46:00.0395 0x1248 a2acc - ok 10:46:01.0082 0x1248 [ 6FD8F474D031AE49BBD4CF1098F36C47, C9A949EE6B6526A2AC73825520E45237FB8305034C291E6B8C973CFEF664C92B ] a2AntiMalware C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe 10:46:01.0191 0x1248 a2AntiMalware - ok 10:46:01.0222 0x1248 [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys 10:46:01.0253 0x1248 A2DDA - ok 10:46:01.0285 0x1248 [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys 10:46:01.0300 0x1248 a2injectiondriver - ok 10:46:01.0316 0x1248 [ 0932B29AA1B9372FFE6D3AF8BA2ABA3A, 78312D140FB0383E797F715C9CFE53F25A60CB02A4466F6488B14E5558E609EC ] a2util C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys 10:46:01.0331 0x1248 a2util - ok 10:46:01.0378 0x1248 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 10:46:01.0409 0x1248 ACPI - ok 10:46:01.0425 0x1248 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 10:46:01.0487 0x1248 AcpiPmi - ok 10:46:01.0628 0x1248 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 10:46:01.0659 0x1248 AdobeFlashPlayerUpdateSvc - ok 10:46:01.0737 0x1248 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 10:46:01.0784 0x1248 adp94xx - ok 10:46:01.0831 0x1248 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 10:46:01.0862 0x1248 adpahci - ok 10:46:01.0877 0x1248 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 10:46:01.0909 0x1248 adpu320 - ok 10:46:01.0940 0x1248 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 10:46:01.0987 0x1248 AeLookupSvc - ok 10:46:02.0033 0x1248 [ 50AB05903CBEF298D135A943D4432E3C, CD00C2E03848937078E8DB3AD8E66E96D51099C7CB657AC10BC061741E95AC2A ] AFD C:\Windows\system32\drivers\afd.sys 10:46:02.0096 0x1248 AFD - ok 10:46:02.0111 0x1248 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 10:46:02.0127 0x1248 agp440 - ok 10:46:02.0143 0x1248 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 10:46:02.0189 0x1248 ALG - ok 10:46:02.0205 0x1248 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 10:46:02.0221 0x1248 aliide - ok 10:46:02.0252 0x1248 [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 10:46:02.0299 0x1248 AMD External Events Utility - ok 10:46:02.0299 0x1248 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 10:46:02.0314 0x1248 amdide - ok 10:46:02.0330 0x1248 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 10:46:02.0377 0x1248 AmdK8 - ok 10:46:02.0392 0x1248 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 10:46:02.0423 0x1248 AmdPPM - ok 10:46:02.0439 0x1248 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 10:46:02.0470 0x1248 amdsata - ok 10:46:02.0486 0x1248 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 10:46:02.0517 0x1248 amdsbs - ok 10:46:02.0517 0x1248 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 10:46:02.0533 0x1248 amdxata - ok 10:46:02.0564 0x1248 [ 9C4444FACE3B6A11C613186878A75D8E, 40111E19BD0DD256B4A41E6F0905148762D33BCA0A5308DA7FB0BA641CD9F77F ] AppID C:\Windows\system32\drivers\appid.sys 10:46:02.0595 0x1248 AppID - ok 10:46:02.0626 0x1248 [ B30533293343B79785CC00891BB776A5, CFE4C6CF01083FA2BC7579D8D2862E21388D597D346CB0EF1F3334C9D328E706 ] AppIDSvc C:\Windows\System32\appidsvc.dll 10:46:02.0657 0x1248 AppIDSvc - ok 10:46:02.0673 0x1248 [ 9651B55594F10F65D6D4498B89E5A4C5, 0726F44A81298116E61DCF720383C2E295EA96C79364A19B1ED1C274D20B3D77 ] Appinfo C:\Windows\System32\appinfo.dll 10:46:02.0704 0x1248 Appinfo - ok 10:46:02.0751 0x1248 [ 4D0AA539EFBECC4114031FC1C33F7345, 3D118504FAEE76BA5CE83650409C9BBD472D129B9CDBDBB7C27A5376D76A923F ] AppMgmt C:\Windows\System32\appmgmts.dll 10:46:02.0798 0x1248 AppMgmt - ok 10:46:02.0829 0x1248 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 10:46:02.0845 0x1248 arc - ok 10:46:02.0860 0x1248 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 10:46:02.0876 0x1248 arcsas - ok 10:46:02.0985 0x1248 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 10:46:03.0032 0x1248 aspnet_state - ok 10:46:03.0063 0x1248 [ 9C2BEA3957EFFD45F352F0938DFB3721, 7006CC604C480CF512A29AD03BA17FFA564FDDF34CE768ACBD805611503D5012 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 10:46:03.0079 0x1248 aswMonFlt - ok 10:46:03.0094 0x1248 [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys 10:46:03.0125 0x1248 aswRdr - ok 10:46:03.0157 0x1248 [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys 10:46:03.0172 0x1248 aswRvrt - ok 10:46:03.0250 0x1248 [ 52B5F8FAF7E78C02D26B0B6E3A05F596, 7C45BA507529F822D4397BD5F001EC861C85E9CBB1F75927E48843B15D5C0B8E ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 10:46:03.0281 0x1248 aswSnx - ok 10:46:03.0313 0x1248 [ 251360C2FCA22BAFE0583314B3262F98, 1EB1B4620E3AFA8ACDDE5F1A6EC4AAEDD40AE2FC5C013AF1B13B03C4B60F6CEB ] aswSP C:\Windows\system32\drivers\aswSP.sys 10:46:03.0344 0x1248 aswSP - ok 10:46:03.0359 0x1248 [ AAB5F5336EDBB5D99CC7E1A9F4D8F63F, 01B40475DCA40E7B426DB0578A33DB62D62640F3A7F9F95A6BBF0AD3CF0F2941 ] aswStm C:\Windows\system32\drivers\aswStm.sys 10:46:03.0391 0x1248 aswStm - ok 10:46:03.0406 0x1248 [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys 10:46:03.0453 0x1248 aswVmm - ok 10:46:03.0484 0x1248 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 10:46:03.0562 0x1248 AsyncMac - ok 10:46:03.0578 0x1248 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 10:46:03.0593 0x1248 atapi - ok 10:46:04.0155 0x1248 [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 10:46:04.0545 0x1248 atikmdag - ok 10:46:04.0607 0x1248 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 10:46:04.0701 0x1248 AudioEndpointBuilder - ok 10:46:04.0779 0x1248 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll 10:46:04.0826 0x1248 AudioSrv - ok 10:46:04.0919 0x1248 [ D74884939D53612FD84AC82C59CCFE27, 07BFB34A3748E018C0A674A6253A03FFA522B31AE1942E84B3CC4DDDED9C16A9 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 10:46:04.0951 0x1248 avast! Antivirus - ok 10:46:04.0982 0x1248 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 10:46:05.0029 0x1248 AxInstSV - ok 10:46:05.0075 0x1248 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 10:46:05.0138 0x1248 b06bdrv - ok 10:46:05.0169 0x1248 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 10:46:05.0231 0x1248 b57nd60a - ok 10:46:05.0263 0x1248 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 10:46:05.0294 0x1248 BDESVC - ok 10:46:05.0309 0x1248 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 10:46:05.0356 0x1248 Beep - ok 10:46:05.0450 0x1248 [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE C:\Windows\System32\bfe.dll 10:46:05.0543 0x1248 BFE - ok 10:46:05.0606 0x1248 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 10:46:05.0699 0x1248 BITS - ok 10:46:05.0731 0x1248 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 10:46:05.0762 0x1248 blbdrive - ok 10:46:05.0777 0x1248 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 10:46:05.0809 0x1248 bowser - ok 10:46:05.0824 0x1248 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 10:46:05.0855 0x1248 BrFiltLo - ok 10:46:05.0855 0x1248 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 10:46:05.0887 0x1248 BrFiltUp - ok 10:46:05.0918 0x1248 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 10:46:05.0949 0x1248 Browser - ok 10:46:05.0980 0x1248 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 10:46:06.0027 0x1248 Brserid - ok 10:46:06.0043 0x1248 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 10:46:06.0058 0x1248 BrSerWdm - ok 10:46:06.0074 0x1248 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 10:46:06.0089 0x1248 BrUsbMdm - ok 10:46:06.0105 0x1248 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 10:46:06.0136 0x1248 BrUsbSer - ok 10:46:06.0152 0x1248 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 10:46:06.0183 0x1248 BTHMODEM - ok 10:46:06.0199 0x1248 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 10:46:06.0261 0x1248 bthserv - ok 10:46:06.0277 0x1248 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 10:46:06.0323 0x1248 cdfs - ok 10:46:06.0355 0x1248 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 10:46:06.0401 0x1248 cdrom - ok 10:46:06.0417 0x1248 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 10:46:06.0464 0x1248 CertPropSvc - ok 10:46:06.0479 0x1248 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 10:46:06.0511 0x1248 circlass - ok 10:46:06.0542 0x1248 [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys 10:46:06.0620 0x1248 cleanhlp - ok 10:46:06.0651 0x1248 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys 10:46:06.0698 0x1248 CLFS - ok 10:46:06.0791 0x1248 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 10:46:06.0823 0x1248 clr_optimization_v2.0.50727_32 - ok 10:46:06.0947 0x1248 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 10:46:06.0963 0x1248 clr_optimization_v2.0.50727_64 - ok 10:46:07.0025 0x1248 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 10:46:07.0088 0x1248 clr_optimization_v4.0.30319_32 - ok 10:46:07.0103 0x1248 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 10:46:07.0135 0x1248 clr_optimization_v4.0.30319_64 - ok 10:46:07.0166 0x1248 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 10:46:07.0181 0x1248 CmBatt - ok 10:46:07.0197 0x1248 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 10:46:07.0213 0x1248 cmdide - ok 10:46:07.0244 0x1248 [ 29F5E6D593ED5CAC96B0889FD6CF555B, 1A0807F57DD83CAADED8BF96E6FF3A1DAB8C38E4A377D26D60E55C9B814D40AF ] CNG C:\Windows\system32\Drivers\cng.sys 10:46:07.0306 0x1248 CNG - ok 10:46:07.0322 0x1248 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 10:46:07.0337 0x1248 Compbatt - ok 10:46:07.0353 0x1248 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 10:46:07.0400 0x1248 CompositeBus - ok 10:46:07.0431 0x1248 COMSysApp - ok 10:46:07.0431 0x1248 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 10:46:07.0447 0x1248 crcdisk - ok 10:46:07.0493 0x1248 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll 10:46:07.0540 0x1248 CryptSvc - ok 10:46:07.0587 0x1248 [ 5B0D28D7072499817A56527670F5C4B3, 47BC116DA2FD228AFBBCC942458BDE02ACFBFD0F88CBB610160177448B162BD0 ] CSC C:\Windows\system32\drivers\csc.sys 10:46:07.0649 0x1248 CSC - ok 10:46:07.0712 0x1248 [ 13E7EB404B935ED29D5D63242BC15675, F785B0C56996BFCCA71F0C62FDC7B2E4589A3A26DA3087D335961636AC426222 ] CscService C:\Windows\System32\cscsvc.dll 10:46:07.0790 0x1248 CscService - ok 10:46:07.0852 0x1248 [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] DcomLaunch C:\Windows\system32\rpcss.dll 10:46:07.0915 0x1248 DcomLaunch - ok 10:46:07.0993 0x1248 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 10:46:08.0055 0x1248 defragsvc - ok 10:46:08.0102 0x1248 [ A61E76AA38582730CEFA51B78B3184B2, 1E7B401E9765C18CA17F26D796CC77601FC06220C4B88FE5727215B0446BE8BB ] DfsC C:\Windows\system32\Drivers\dfsc.sys 10:46:08.0149 0x1248 DfsC - ok 10:46:08.0195 0x1248 [ 3249F4E4DBF1BD24B40DFF385F2511D4, BFDF544580127CE07FCF01DE6A011C478F7D5948569B649BB5B0AAD85B2188F2 ] Dhcp C:\Windows\system32\dhcpcore.dll 10:46:08.0242 0x1248 Dhcp - ok 10:46:08.0258 0x1248 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 10:46:08.0305 0x1248 discache - ok 10:46:08.0336 0x1248 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 10:46:08.0351 0x1248 Disk - ok 10:46:08.0383 0x1248 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 10:46:08.0414 0x1248 dmvsc - ok 10:46:08.0461 0x1248 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 10:46:08.0492 0x1248 Dnscache - ok 10:46:08.0523 0x1248 [ 8DA62036CC6192959D675142A3084916, BA97989D8E047872C54BC517697366741AFBB483906185EDED67C7C5854FCB4F ] dot3svc C:\Windows\System32\dot3svc.dll 10:46:08.0570 0x1248 dot3svc - ok 10:46:08.0601 0x1248 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 10:46:08.0663 0x1248 DPS - ok 10:46:08.0695 0x1248 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 10:46:08.0710 0x1248 drmkaud - ok 10:46:08.0757 0x1248 [ 6A0E850DDCB136AA3D2FB7234382DF12, C01863E95F45E1B74AC65C9CD12C8DC769299218255B3C94E3EBF58C4D79FEF3 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 10:46:08.0773 0x1248 dtsoftbus01 - ok 10:46:08.0929 0x1248 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 10:46:08.0960 0x1248 DXGKrnl - ok 10:46:09.0007 0x1248 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 10:46:09.0069 0x1248 EapHost - ok 10:46:09.0303 0x1248 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 10:46:09.0537 0x1248 ebdrv - ok 10:46:09.0568 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] EFS C:\Windows\System32\lsass.exe 10:46:09.0599 0x1248 EFS - ok 10:46:09.0724 0x1248 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 10:46:09.0818 0x1248 ehRecvr - ok 10:46:09.0818 0x1248 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 10:46:09.0865 0x1248 ehSched - ok 10:46:09.0927 0x1248 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 10:46:09.0974 0x1248 elxstor - ok 10:46:09.0989 0x1248 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 10:46:10.0005 0x1248 ErrDev - ok 10:46:10.0052 0x1248 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 10:46:10.0130 0x1248 EventSystem - ok 10:46:10.0145 0x1248 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 10:46:10.0208 0x1248 exfat - ok 10:46:10.0223 0x1248 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 10:46:10.0286 0x1248 fastfat - ok 10:46:10.0348 0x1248 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 10:46:10.0411 0x1248 Fax - ok 10:46:10.0426 0x1248 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 10:46:10.0457 0x1248 fdc - ok 10:46:10.0473 0x1248 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 10:46:10.0520 0x1248 fdPHost - ok 10:46:10.0535 0x1248 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 10:46:10.0567 0x1248 FDResPub - ok 10:46:10.0598 0x1248 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 10:46:10.0629 0x1248 FileInfo - ok 10:46:10.0629 0x1248 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 10:46:10.0691 0x1248 Filetrace - ok 10:46:10.0707 0x1248 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 10:46:10.0723 0x1248 flpydisk - ok 10:46:10.0754 0x1248 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 10:46:10.0801 0x1248 FltMgr - ok 10:46:10.0879 0x1248 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll 10:46:10.0972 0x1248 FontCache - ok 10:46:11.0035 0x1248 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 10:46:11.0066 0x1248 FontCache3.0.0.0 - ok 10:46:11.0081 0x1248 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 10:46:11.0097 0x1248 FsDepends - ok 10:46:11.0113 0x1248 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 10:46:11.0128 0x1248 Fs_Rec - ok 10:46:11.0159 0x1248 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 10:46:11.0191 0x1248 fvevol - ok 10:46:11.0222 0x1248 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 10:46:11.0237 0x1248 gagp30kx - ok 10:46:11.0315 0x1248 [ 030B778F4272DF185E4E2E8EC49D162E, 702E884DC9C56D67A250F2DE4C293A878054F0F0A3BB64944A204445D9D5357F ] gpsvc C:\Windows\System32\gpsvc.dll 10:46:11.0378 0x1248 gpsvc - ok 10:46:11.0425 0x1248 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 10:46:11.0440 0x1248 gupdate - ok 10:46:11.0456 0x1248 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 10:46:11.0471 0x1248 gupdatem - ok 10:46:11.0471 0x1248 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 10:46:11.0503 0x1248 hcw85cir - ok 10:46:11.0549 0x1248 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 10:46:11.0612 0x1248 HdAudAddService - ok 10:46:11.0627 0x1248 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 10:46:11.0659 0x1248 HDAudBus - ok 10:46:11.0674 0x1248 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 10:46:11.0690 0x1248 HidBatt - ok 10:46:11.0721 0x1248 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 10:46:11.0752 0x1248 HidBth - ok 10:46:11.0783 0x1248 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 10:46:11.0799 0x1248 HidIr - ok 10:46:11.0830 0x1248 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 10:46:11.0861 0x1248 hidserv - ok 10:46:11.0893 0x1248 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 10:46:11.0908 0x1248 HidUsb - ok 10:46:11.0924 0x1248 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 10:46:11.0986 0x1248 hkmsvc - ok 10:46:12.0002 0x1248 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 10:46:12.0049 0x1248 HomeGroupListener - ok 10:46:12.0080 0x1248 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 10:46:12.0111 0x1248 HomeGroupProvider - ok 10:46:12.0127 0x1248 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 10:46:12.0158 0x1248 HpSAMD - ok 10:46:12.0205 0x1248 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys 10:46:12.0283 0x1248 HTTP - ok 10:46:12.0298 0x1248 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 10:46:12.0314 0x1248 hwpolicy - ok 10:46:12.0329 0x1248 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 10:46:12.0361 0x1248 i8042prt - ok 10:46:12.0392 0x1248 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 10:46:12.0454 0x1248 iaStorV - ok 10:46:12.0548 0x1248 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 10:46:12.0610 0x1248 idsvc - ok 10:46:12.0626 0x1248 IEEtwCollectorService - ok 10:46:12.0626 0x1248 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 10:46:12.0641 0x1248 iirsp - ok 10:46:12.0704 0x1248 [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT C:\Windows\System32\ikeext.dll 10:46:12.0782 0x1248 IKEEXT - ok 10:46:12.0797 0x1248 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 10:46:12.0813 0x1248 intelide - ok 10:46:12.0829 0x1248 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys 10:46:12.0860 0x1248 intelppm - ok 10:46:12.0891 0x1248 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 10:46:12.0938 0x1248 IPBusEnum - ok 10:46:12.0953 0x1248 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 10:46:12.0985 0x1248 IpFilterDriver - ok 10:46:13.0031 0x1248 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 10:46:13.0094 0x1248 iphlpsvc - ok 10:46:13.0094 0x1248 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 10:46:13.0125 0x1248 IPMIDRV - ok 10:46:13.0125 0x1248 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 10:46:13.0187 0x1248 IPNAT - ok 10:46:13.0203 0x1248 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 10:46:13.0234 0x1248 IRENUM - ok 10:46:13.0250 0x1248 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 10:46:13.0265 0x1248 isapnp - ok 10:46:13.0297 0x1248 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 10:46:13.0343 0x1248 iScsiPrt - ok 10:46:13.0343 0x1248 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 10:46:13.0359 0x1248 kbdclass - ok 10:46:13.0375 0x1248 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 10:46:13.0390 0x1248 kbdhid - ok 10:46:13.0421 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] KeyIso C:\Windows\system32\lsass.exe 10:46:13.0437 0x1248 KeyIso - ok 10:46:13.0468 0x1248 [ 7E60C7882EB896B1E4991181C3975F93, 044F46566566299FB8D75CA22D159444EC567861A6386E91E49C7B2E20D92AB0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 10:46:13.0499 0x1248 KSecDD - ok 10:46:13.0515 0x1248 [ 6C45E4B6331C614EFB401DA74CCF849E, 147A93CD41A25FAD6D5898A02629F1206B14E16CA4BB62B1B901FBF746A1EF65 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 10:46:13.0546 0x1248 KSecPkg - ok 10:46:13.0562 0x1248 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 10:46:13.0609 0x1248 ksthunk - ok 10:46:13.0640 0x1248 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 10:46:13.0718 0x1248 KtmRm - ok 10:46:13.0765 0x1248 [ 5CE3ADEF1C7203DCC0467E084ACE5643, E8A26479F296451310D42215E3E280C80A18BD6E537A854D1702873AC4162382 ] LanmanServer C:\Windows\system32\srvsvc.dll 10:46:13.0811 0x1248 LanmanServer - ok 10:46:13.0843 0x1248 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 10:46:13.0889 0x1248 LanmanWorkstation - ok 10:46:13.0921 0x1248 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 10:46:13.0967 0x1248 lltdio - ok 10:46:14.0014 0x1248 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 10:46:14.0077 0x1248 lltdsvc - ok 10:46:14.0092 0x1248 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 10:46:14.0123 0x1248 lmhosts - ok 10:46:14.0155 0x1248 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 10:46:14.0186 0x1248 LSI_FC - ok 10:46:14.0186 0x1248 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 10:46:14.0217 0x1248 LSI_SAS - ok 10:46:14.0233 0x1248 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 10:46:14.0248 0x1248 LSI_SAS2 - ok 10:46:14.0264 0x1248 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 10:46:14.0295 0x1248 LSI_SCSI - ok 10:46:14.0311 0x1248 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 10:46:14.0357 0x1248 luafv - ok 10:46:14.0389 0x1248 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 10:46:14.0420 0x1248 Mcx2Svc - ok 10:46:14.0435 0x1248 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 10:46:14.0451 0x1248 megasas - ok 10:46:14.0482 0x1248 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 10:46:14.0513 0x1248 MegaSR - ok 10:46:14.0591 0x1248 [ 7C4C76B39D5525C4A465E0BE32528E19, B7FE3B2AE7E8A936AFC0572A6C4F23327400EAD16B26B6E1193F1C9C3767B3E1 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 10:46:14.0623 0x1248 Microsoft Office Groove Audit Service - ok 10:46:14.0638 0x1248 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 10:46:14.0685 0x1248 MMCSS - ok 10:46:14.0701 0x1248 [ BFFB0C93D9FB43CA42EF11C9240BFF7F, E1E98C55DF9A56316050A21AC5A7D764338DA55F6124B52A52E71B5B0089C3FA ] Modem C:\Windows\system32\drivers\modem.sys 10:46:14.0732 0x1248 Modem - ok 10:46:14.0763 0x1248 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 10:46:14.0794 0x1248 monitor - ok 10:46:14.0810 0x1248 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 10:46:14.0841 0x1248 mouclass - ok 10:46:14.0841 0x1248 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 10:46:14.0872 0x1248 mouhid - ok 10:46:14.0888 0x1248 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 10:46:14.0919 0x1248 mountmgr - ok 10:46:14.0950 0x1248 [ E05FD9D5854A26A13D7F138F02BF2420, 89A6D90B8DB65565C1DAF9A1584C68989A1F4937D705182DA6E3B72E14A30DEA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 10:46:14.0966 0x1248 MozillaMaintenance - ok 10:46:14.0981 0x1248 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 10:46:15.0013 0x1248 mpio - ok 10:46:15.0028 0x1248 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 10:46:15.0059 0x1248 mpsdrv - ok 10:46:15.0122 0x1248 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 10:46:15.0215 0x1248 MpsSvc - ok 10:46:15.0231 0x1248 [ 83A296715A67D696F101130AB44B92A7, 365D984745C38CA6AD2EE038834A02BE03AAAF02BCEB40B4E60E4309C01C3BE2 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 10:46:15.0262 0x1248 MRxDAV - ok 10:46:15.0278 0x1248 [ 631EC673CD9115AA5A3570E7C092A410, 2FD8525D0BAE43C7D0E8858B65EC2E707734CC59CB642617712C2AA62CF10B04 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 10:46:15.0325 0x1248 mrxsmb - ok 10:46:15.0340 0x1248 [ B10A0DF47FB6A1B807617A8EB8CF1045, 6EAD4CD5B6325718143AF46B100E0122C254A7E3EECF87AE8590A783D60DD2D0 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 10:46:15.0387 0x1248 mrxsmb10 - ok 10:46:15.0434 0x1248 [ B7D1933C1835A39B55BB59A2190DC858, B594BDEA0FB8CE1C736A2F8487A7EC5353AFB1B2DF80178F21897EFDD6D6C4C5 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 10:46:15.0481 0x1248 mrxsmb20 - ok 10:46:15.0481 0x1248 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 10:46:15.0512 0x1248 msahci - ok 10:46:15.0512 0x1248 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 10:46:15.0543 0x1248 msdsm - ok 10:46:15.0559 0x1248 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 10:46:15.0605 0x1248 MSDTC - ok 10:46:15.0621 0x1248 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 10:46:15.0668 0x1248 Msfs - ok 10:46:15.0668 0x1248 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 10:46:15.0715 0x1248 mshidkmdf - ok 10:46:15.0730 0x1248 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 10:46:15.0746 0x1248 msisadrv - ok 10:46:15.0777 0x1248 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 10:46:15.0839 0x1248 MSiSCSI - ok 10:46:15.0839 0x1248 msiserver - ok 10:46:15.0871 0x1248 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 10:46:15.0917 0x1248 MSKSSRV - ok 10:46:15.0933 0x1248 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 10:46:15.0980 0x1248 MSPCLOCK - ok 10:46:15.0980 0x1248 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 10:46:16.0027 0x1248 MSPQM - ok 10:46:16.0058 0x1248 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 10:46:16.0105 0x1248 MsRPC - ok 10:46:16.0120 0x1248 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 10:46:16.0136 0x1248 mssmbios - ok 10:46:16.0151 0x1248 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 10:46:16.0183 0x1248 MSTEE - ok 10:46:16.0198 0x1248 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 10:46:16.0229 0x1248 MTConfig - ok 10:46:16.0245 0x1248 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 10:46:16.0261 0x1248 Mup - ok 10:46:16.0307 0x1248 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 10:46:16.0385 0x1248 napagent - ok 10:46:16.0432 0x1248 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 10:46:16.0479 0x1248 NativeWifiP - ok 10:46:16.0541 0x1248 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 10:46:16.0604 0x1248 NDIS - ok 10:46:16.0619 0x1248 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 10:46:16.0666 0x1248 NdisCap - ok 10:46:16.0682 0x1248 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 10:46:16.0729 0x1248 NdisTapi - ok 10:46:16.0729 0x1248 [ 662CBFAA835FFF1A935DD01890AAFC62, 41CD715EF77446E2ECD70A512BF2A5DC8C32C0F38E56F48621461784C28CF914 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 10:46:16.0760 0x1248 Ndisuio - ok 10:46:16.0775 0x1248 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 10:46:16.0822 0x1248 NdisWan - ok 10:46:16.0853 0x1248 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 10:46:16.0885 0x1248 NDProxy - ok 10:46:16.0900 0x1248 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 10:46:16.0947 0x1248 NetBIOS - ok 10:46:16.0978 0x1248 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 10:46:17.0025 0x1248 NetBT - ok 10:46:17.0041 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] Netlogon C:\Windows\system32\lsass.exe 10:46:17.0072 0x1248 Netlogon - ok 10:46:17.0103 0x1248 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 10:46:17.0181 0x1248 Netman - ok 10:46:17.0212 0x1248 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 10:46:17.0243 0x1248 NetMsmqActivator - ok 10:46:17.0259 0x1248 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 10:46:17.0275 0x1248 NetPipeActivator - ok 10:46:17.0306 0x1248 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 10:46:17.0384 0x1248 netprofm - ok 10:46:17.0399 0x1248 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 10:46:17.0415 0x1248 NetTcpActivator - ok 10:46:17.0431 0x1248 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 10:46:17.0446 0x1248 NetTcpPortSharing - ok 10:46:17.0477 0x1248 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 10:46:17.0493 0x1248 nfrd960 - ok 10:46:17.0524 0x1248 [ 843E337C1CDD282545ED7515345E263B, B0E485856FC1C28DA6C453BF60A04F603BA15D7B0D84896E878049198F2FD1C9 ] NlaSvc C:\Windows\System32\nlasvc.dll 10:46:17.0571 0x1248 NlaSvc - ok 10:46:17.0587 0x1248 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 10:46:17.0633 0x1248 Npfs - ok 10:46:17.0649 0x1248 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 10:46:17.0696 0x1248 nsi - ok 10:46:17.0696 0x1248 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 10:46:17.0758 0x1248 nsiproxy - ok 10:46:17.0883 0x1248 [ A6AE4551BF8EED09FA3B6FCDF472F3E1, 8C01E05D5736FBEFDA9A670F8DB9AB44B5730DC90A545B651E7B09321317DEE4 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 10:46:17.0992 0x1248 Ntfs - ok 10:46:18.0008 0x1248 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 10:46:18.0055 0x1248 Null - ok 10:46:18.0070 0x1248 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 10:46:18.0101 0x1248 nvraid - ok 10:46:18.0117 0x1248 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 10:46:18.0148 0x1248 nvstor - ok 10:46:18.0164 0x1248 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 10:46:18.0195 0x1248 nv_agp - ok 10:46:18.0289 0x1248 [ 1F0E05DFF4F5A833168E49BE1256F002, A858267572033C185293B0FD15B2BFDA679D0771A14C0ADF24461B529DBAD8DF ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 10:46:18.0335 0x1248 odserv - ok 10:46:18.0335 0x1248 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 10:46:18.0367 0x1248 ohci1394 - ok 10:46:18.0413 0x1248 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 10:46:18.0445 0x1248 ose - ok 10:46:18.0491 0x1248 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 10:46:18.0538 0x1248 p2pimsvc - ok 10:46:18.0585 0x1248 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 10:46:18.0632 0x1248 p2psvc - ok 10:46:18.0663 0x1248 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 10:46:18.0694 0x1248 Parport - ok 10:46:18.0710 0x1248 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 10:46:18.0725 0x1248 partmgr - ok 10:46:18.0741 0x1248 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll 10:46:18.0788 0x1248 PcaSvc - ok 10:46:18.0803 0x1248 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 10:46:18.0850 0x1248 pci - ok 10:46:18.0850 0x1248 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 10:46:18.0866 0x1248 pciide - ok 10:46:18.0897 0x1248 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 10:46:18.0928 0x1248 pcmcia - ok 10:46:18.0944 0x1248 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 10:46:18.0975 0x1248 pcw - ok 10:46:19.0006 0x1248 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 10:46:19.0084 0x1248 PEAUTH - ok 10:46:19.0178 0x1248 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 10:46:19.0287 0x1248 PeerDistSvc - ok 10:46:19.0365 0x1248 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 10:46:19.0427 0x1248 PerfHost - ok 10:46:19.0537 0x1248 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 10:46:19.0677 0x1248 pla - ok 10:46:19.0739 0x1248 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 10:46:19.0786 0x1248 PlugPlay - ok 10:46:19.0802 0x1248 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 10:46:19.0833 0x1248 PNRPAutoReg - ok 10:46:19.0880 0x1248 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 10:46:19.0911 0x1248 PNRPsvc - ok 10:46:19.0958 0x1248 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 10:46:20.0036 0x1248 PolicyAgent - ok 10:46:20.0083 0x1248 [ B2392DBB9085E39AAB5204BE92FB3AB0, BB7741859C9FB5B3DCA98DDC2869C05AD06DA896F5B0CA821D433C46463F8536 ] Power C:\Windows\system32\umpo.dll 10:46:20.0114 0x1248 Power - ok 10:46:20.0145 0x1248 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 10:46:20.0192 0x1248 PptpMiniport - ok 10:46:20.0223 0x1248 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 10:46:20.0254 0x1248 Processor - ok 10:46:20.0285 0x1248 [ 5CCDC5AECAC81371CCCB77F0556C757F, A7A195C20B7316BDA795B03A1166DAE1892F96F471FBD9595AAACBDF035F42B4 ] ProfSvc C:\Windows\system32\profsvc.dll 10:46:20.0332 0x1248 ProfSvc - ok 10:46:20.0348 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] ProtectedStorage C:\Windows\system32\lsass.exe 10:46:20.0363 0x1248 ProtectedStorage - ok 10:46:20.0395 0x1248 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 10:46:20.0457 0x1248 Psched - ok 10:46:20.0488 0x1248 [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 10:46:20.0504 0x1248 PxHlpa64 - ok 10:46:20.0613 0x1248 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 10:46:20.0722 0x1248 ql2300 - ok 10:46:20.0738 0x1248 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 10:46:20.0769 0x1248 ql40xx - ok 10:46:20.0800 0x1248 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 10:46:20.0847 0x1248 QWAVE - ok 10:46:20.0847 0x1248 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 10:46:20.0894 0x1248 QWAVEdrv - ok 10:46:20.0894 0x1248 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 10:46:20.0941 0x1248 RasAcd - ok 10:46:20.0972 0x1248 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 10:46:21.0003 0x1248 RasAgileVpn - ok 10:46:21.0019 0x1248 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 10:46:21.0065 0x1248 RasAuto - ok 10:46:21.0081 0x1248 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 10:46:21.0128 0x1248 Rasl2tp - ok 10:46:21.0175 0x1248 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 10:46:21.0237 0x1248 RasMan - ok 10:46:21.0253 0x1248 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 10:46:21.0299 0x1248 RasPppoe - ok 10:46:21.0331 0x1248 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 10:46:21.0377 0x1248 RasSstp - ok 10:46:21.0424 0x1248 [ DB854D79B792CBDD51F3072B44D724F0, 0FF84D8ECE098C28596B77F71582BC362FB23C671922544F847B659D52B9F8A9 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 10:46:21.0487 0x1248 rdbss - ok 10:46:21.0502 0x1248 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 10:46:21.0533 0x1248 rdpbus - ok 10:46:21.0549 0x1248 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 10:46:21.0580 0x1248 RDPCDD - ok 10:46:21.0627 0x1248 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 10:46:21.0658 0x1248 RDPDR - ok 10:46:21.0658 0x1248 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 10:46:21.0705 0x1248 RDPENCDD - ok 10:46:21.0721 0x1248 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 10:46:21.0767 0x1248 RDPREFMP - ok 10:46:21.0783 0x1248 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 10:46:21.0830 0x1248 RdpVideoMiniport - ok 10:46:21.0845 0x1248 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 10:46:21.0892 0x1248 RDPWD - ok 10:46:21.0908 0x1248 [ 9500266AFA2548D2812DC59D8C1D7BD3, 25FFD440B02D7D651B57133D94C95EB526F7189F3329060D004F28BA179BF89F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 10:46:21.0955 0x1248 rdyboost - ok 10:46:21.0986 0x1248 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 10:46:22.0033 0x1248 RemoteAccess - ok 10:46:22.0064 0x1248 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 10:46:22.0111 0x1248 RemoteRegistry - ok 10:46:22.0126 0x1248 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 10:46:22.0173 0x1248 RpcEptMapper - ok 10:46:22.0189 0x1248 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 10:46:22.0235 0x1248 RpcLocator - ok 10:46:22.0282 0x1248 [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] RpcSs C:\Windows\system32\rpcss.dll 10:46:22.0313 0x1248 RpcSs - ok 10:46:22.0345 0x1248 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 10:46:22.0391 0x1248 rspndr - ok 10:46:22.0423 0x1248 [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 10:46:22.0469 0x1248 RTL8167 - ok 10:46:22.0485 0x1248 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys 10:46:22.0516 0x1248 s3cap - ok 10:46:22.0532 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] SamSs C:\Windows\system32\lsass.exe 10:46:22.0547 0x1248 SamSs - ok 10:46:22.0641 0x1248 [ AD7231A60287E71E6D754264D55F3386, 4197E6CB06C6BAF9B850879CCB6DDBD5EBE977CA7981237903C0E67ACEC0EE3D ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys 10:46:22.0672 0x1248 SbieDrv - ok 10:46:22.0688 0x1248 [ A9E1788755F2E37E5FC37A8D56845C92, 5FDEC64FAFC7FA9B4EDEAEE3CF0E12CD3D766B2B4D7F3B2307675476F3B87C62 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe 10:46:22.0719 0x1248 SbieSvc - ok 10:46:22.0735 0x1248 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 10:46:22.0750 0x1248 sbp2port - ok 10:46:22.0797 0x1248 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 10:46:22.0844 0x1248 SCardSvr - ok 10:46:22.0859 0x1248 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 10:46:22.0906 0x1248 scfilter - ok 10:46:22.0969 0x1248 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll 10:46:23.0078 0x1248 Schedule - ok 10:46:23.0093 0x1248 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 10:46:23.0140 0x1248 SCPolicySvc - ok 10:46:23.0171 0x1248 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 10:46:23.0218 0x1248 SDRSVC - ok 10:46:23.0249 0x1248 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 10:46:23.0296 0x1248 secdrv - ok 10:46:23.0312 0x1248 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 10:46:23.0359 0x1248 seclogon - ok 10:46:23.0390 0x1248 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 10:46:23.0452 0x1248 SENS - ok 10:46:23.0468 0x1248 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 10:46:23.0499 0x1248 SensrSvc - ok 10:46:23.0515 0x1248 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 10:46:23.0546 0x1248 Serenum - ok 10:46:23.0561 0x1248 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys 10:46:23.0593 0x1248 Serial - ok 10:46:23.0608 0x1248 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 10:46:23.0655 0x1248 sermouse - ok 10:46:23.0686 0x1248 [ F8F5016A8021390DFAF8782687B4F226, BF51874E3448F2800DCC74BDDCFD86D55C95B4B076DFAE61DD821A440BB0405E ] SessionEnv C:\Windows\system32\sessenv.dll 10:46:23.0733 0x1248 SessionEnv - ok 10:46:23.0733 0x1248 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 10:46:23.0764 0x1248 sffdisk - ok 10:46:23.0780 0x1248 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 10:46:23.0811 0x1248 sffp_mmc - ok 10:46:23.0811 0x1248 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 10:46:23.0842 0x1248 sffp_sd - ok 10:46:23.0842 0x1248 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 10:46:23.0873 0x1248 sfloppy - ok 10:46:23.0920 0x1248 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 10:46:23.0998 0x1248 SharedAccess - ok 10:46:24.0045 0x1248 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 10:46:24.0107 0x1248 ShellHWDetection - ok 10:46:24.0123 0x1248 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 10:46:24.0139 0x1248 SiSRaid2 - ok 10:46:24.0154 0x1248 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 10:46:24.0185 0x1248 SiSRaid4 - ok 10:46:24.0201 0x1248 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 10:46:24.0248 0x1248 Smb - ok 10:46:24.0279 0x1248 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 10:46:24.0326 0x1248 SNMPTRAP - ok 10:46:24.0341 0x1248 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 10:46:24.0357 0x1248 spldr - ok 10:46:24.0404 0x1248 [ B98780FA7839BB6B14823C56A7BDA35C, 7EF79A807DE9940A93BDE9E18CD83940773BCA26CA68646C76BC2F96B6DC2E5B ] Spooler C:\Windows\System32\spoolsv.exe 10:46:24.0451 0x1248 Spooler - ok 10:46:24.0653 0x1248 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 10:46:24.0778 0x1248 sppsvc - ok 10:46:24.0809 0x1248 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 10:46:24.0856 0x1248 sppuinotify - ok 10:46:24.0903 0x1248 [ B9413B99DBB704E0F5824775A1118CC7, 75AAA548705764ECFB7A0C96E691AF80DBB824DC2BA8D356D8D157E6768F14C9 ] Spyder2 C:\Windows\system32\DRIVERS\Spyder2.sys 10:46:24.0919 0x1248 Spyder2 - ok 10:46:24.0965 0x1248 [ 20735E269DF367C76EF02DDE9C3FA477, 0D794D191A74406CCD62DCC270F9350981EE935488C61ADF168E98A712EE42B6 ] srv C:\Windows\system32\DRIVERS\srv.sys 10:46:24.0997 0x1248 srv - ok 10:46:25.0028 0x1248 [ 6D1173EDC0D5C02ACE4BEA18F48E0746, BCDF818C079B3E90577AEEE7ECDA4DA2E54F0F393F5FFD26FD0D4793CE14038F ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 10:46:25.0075 0x1248 srv2 - ok 10:46:25.0106 0x1248 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 10:46:25.0137 0x1248 srvnet - ok 10:46:25.0168 0x1248 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 10:46:25.0231 0x1248 SSDPSRV - ok 10:46:25.0246 0x1248 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 10:46:25.0293 0x1248 SstpSvc - ok 10:46:25.0309 0x1248 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 10:46:25.0324 0x1248 stexstor - ok 10:46:25.0387 0x1248 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 10:46:25.0496 0x1248 stisvc - ok 10:46:25.0543 0x1248 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys 10:46:25.0558 0x1248 storflt - ok 10:46:25.0605 0x1248 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys 10:46:25.0621 0x1248 storvsc - ok 10:46:25.0652 0x1248 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 10:46:25.0667 0x1248 swenum - ok 10:46:25.0792 0x1248 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 10:46:25.0839 0x1248 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 ) 10:46:28.0928 0x1248 Detect skipped due to KSN trusted 10:46:28.0928 0x1248 SwitchBoard - ok 10:46:28.0975 0x1248 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 10:46:29.0053 0x1248 swprv - ok 10:46:29.0084 0x1248 [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys 10:46:29.0115 0x1248 Synth3dVsc - ok 10:46:29.0209 0x1248 [ 25E0900D1B452EDEB09B1F9B71195153, 96F47A96AA3510EBC67579806A679D82CF85709A1E041D026378E8F6DC0EB374 ] SysMain C:\Windows\system32\sysmain.dll 10:46:29.0349 0x1248 SysMain - ok 10:46:29.0380 0x1248 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 10:46:29.0411 0x1248 TabletInputService - ok 10:46:29.0443 0x1248 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 10:46:29.0505 0x1248 TapiSrv - ok 10:46:29.0536 0x1248 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 10:46:29.0583 0x1248 TBS - ok 10:46:29.0708 0x1248 [ 75F9106B74585D38C8FF6BB5CAD262D7, 47E849D7CF9D828C45E0FD4522D164086D896E503FA44C523840628AC2AEE086 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 10:46:29.0833 0x1248 Tcpip - ok 10:46:29.0942 0x1248 [ 75F9106B74585D38C8FF6BB5CAD262D7, 47E849D7CF9D828C45E0FD4522D164086D896E503FA44C523840628AC2AEE086 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 10:46:29.0989 0x1248 TCPIP6 - ok 10:46:30.0020 0x1248 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 10:46:30.0035 0x1248 tcpipreg - ok 10:46:30.0051 0x1248 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 10:46:30.0082 0x1248 TDPIPE - ok 10:46:30.0098 0x1248 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 10:46:30.0129 0x1248 TDTCP - ok 10:46:30.0145 0x1248 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 10:46:30.0176 0x1248 tdx - ok 10:46:30.0191 0x1248 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 10:46:30.0223 0x1248 TermDD - ok 10:46:30.0238 0x1248 [ EF4469AB69EB15E5D3754E6AEAFBCD3D, 3609214C3D5181364B544EBF17E9A109952BE1C4C35BE0A8727BFA8F49ECB130 ] terminpt C:\Windows\system32\drivers\terminpt.sys 10:46:30.0254 0x1248 terminpt - ok 10:46:30.0316 0x1248 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll 10:46:30.0394 0x1248 TermService - ok 10:46:30.0425 0x1248 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 10:46:30.0457 0x1248 Themes - ok 10:46:30.0457 0x1248 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 10:46:30.0503 0x1248 THREADORDER - ok 10:46:30.0519 0x1248 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 10:46:30.0566 0x1248 TrkWks - ok 10:46:30.0597 0x1248 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 10:46:30.0644 0x1248 TrustedInstaller - ok 10:46:30.0659 0x1248 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 10:46:30.0691 0x1248 tssecsrv - ok 10:46:30.0706 0x1248 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 10:46:30.0722 0x1248 TsUsbFlt - ok 10:46:30.0753 0x1248 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 10:46:30.0769 0x1248 TsUsbGD - ok 10:46:30.0784 0x1248 [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys 10:46:30.0815 0x1248 tsusbhub - ok 10:46:30.0831 0x1248 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 10:46:30.0878 0x1248 tunnel - ok 10:46:30.0893 0x1248 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 10:46:30.0925 0x1248 uagp35 - ok 10:46:30.0956 0x1248 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 10:46:31.0018 0x1248 udfs - ok 10:46:31.0065 0x1248 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 10:46:31.0096 0x1248 UI0Detect - ok 10:46:31.0127 0x1248 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 10:46:31.0159 0x1248 uliagpkx - ok 10:46:31.0174 0x1248 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 10:46:31.0205 0x1248 umbus - ok 10:46:31.0237 0x1248 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 10:46:31.0252 0x1248 UmPass - ok 10:46:31.0299 0x1248 [ BEBC13D55C302339B9350D9FF9EEFCB5, E8513D2D23D7F134BB4E3BFC85F87B802F4F2E411CCF33306023E5F8D54C5CFF ] UmRdpService C:\Windows\System32\umrdp.dll 10:46:31.0346 0x1248 UmRdpService - ok 10:46:31.0393 0x1248 [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys 10:46:31.0408 0x1248 UnlockerDriver5 - ok 10:46:31.0455 0x1248 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 10:46:31.0533 0x1248 upnphost - ok 10:46:31.0564 0x1248 [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 10:46:31.0595 0x1248 usbccgp - ok 10:46:31.0611 0x1248 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 10:46:31.0642 0x1248 usbcir - ok 10:46:31.0642 0x1248 [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 10:46:31.0673 0x1248 usbehci - ok 10:46:31.0720 0x1248 [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 10:46:31.0767 0x1248 usbhub - ok 10:46:31.0783 0x1248 [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 10:46:31.0798 0x1248 usbohci - ok 10:46:31.0814 0x1248 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 10:46:31.0845 0x1248 usbprint - ok 10:46:31.0876 0x1248 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 10:46:31.0907 0x1248 usbscan - ok 10:46:31.0923 0x1248 [ ED08C252A0041F8FC0237BAB585BABDC, DF5948BCD5CEB5B69E1A0096465C069E233DB81F5524D7364FF3FCD1E5B28880 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 10:46:31.0954 0x1248 USBSTOR - ok 10:46:31.0970 0x1248 [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 10:46:32.0001 0x1248 usbuhci - ok 10:46:32.0032 0x1248 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 10:46:32.0079 0x1248 UxSms - ok 10:46:32.0095 0x1248 [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] VaultSvc C:\Windows\system32\lsass.exe 10:46:32.0126 0x1248 VaultSvc - ok 10:46:32.0141 0x1248 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 10:46:32.0157 0x1248 vdrvroot - ok 10:46:32.0204 0x1248 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 10:46:32.0266 0x1248 vds - ok 10:46:32.0282 0x1248 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 10:46:32.0313 0x1248 vga - ok 10:46:32.0313 0x1248 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 10:46:32.0360 0x1248 VgaSave - ok 10:46:32.0360 0x1248 VGPU - ok 10:46:32.0391 0x1248 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 10:46:32.0422 0x1248 vhdmp - ok 10:46:32.0438 0x1248 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 10:46:32.0453 0x1248 viaide - ok 10:46:32.0485 0x1248 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys 10:46:32.0531 0x1248 vmbus - ok 10:46:32.0531 0x1248 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 10:46:32.0563 0x1248 VMBusHID - ok 10:46:32.0578 0x1248 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 10:46:32.0594 0x1248 volmgr - ok 10:46:32.0625 0x1248 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 10:46:32.0672 0x1248 volmgrx - ok 10:46:32.0703 0x1248 [ DF83AA1C4278E2C0E36C0479C1555A9C, EA082BE4E38E22FD0C7D0A98DC227E2E33C0D87964D87276A2F56044656CD6F0 ] volsnap C:\Windows\system32\drivers\volsnap.sys 10:46:32.0734 0x1248 volsnap - ok 10:46:32.0781 0x1248 [ F8C69EB4CC46FD2681B65212CA20DD97, 290CC81B0F1C6EC26AD445442E1705710CFCCCB68D305205AE03A2DE49A6BEB3 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys 10:46:32.0812 0x1248 Vsdatant - ok 10:46:32.0843 0x1248 vsmon - ok 10:46:32.0859 0x1248 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 10:46:32.0890 0x1248 vsmraid - ok 10:46:32.0999 0x1248 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 10:46:33.0140 0x1248 VSS - ok 10:46:33.0155 0x1248 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 10:46:33.0187 0x1248 vwifibus - ok 10:46:33.0218 0x1248 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 10:46:33.0296 0x1248 W32Time - ok 10:46:33.0327 0x1248 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 10:46:33.0358 0x1248 WacomPen - ok 10:46:33.0374 0x1248 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 10:46:33.0421 0x1248 WANARP - ok 10:46:33.0436 0x1248 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 10:46:33.0483 0x1248 Wanarpv6 - ok 10:46:33.0577 0x1248 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 10:46:33.0701 0x1248 wbengine - ok 10:46:33.0733 0x1248 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 10:46:33.0764 0x1248 WbioSrvc - ok 10:46:33.0795 0x1248 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 10:46:33.0842 0x1248 wcncsvc - ok 10:46:33.0857 0x1248 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 10:46:33.0889 0x1248 WcsPlugInService - ok 10:46:33.0904 0x1248 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 10:46:33.0935 0x1248 Wd - ok 10:46:33.0982 0x1248 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 10:46:34.0045 0x1248 Wdf01000 - ok 10:46:34.0076 0x1248 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll 10:46:34.0107 0x1248 WdiServiceHost - ok 10:46:34.0123 0x1248 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll 10:46:34.0154 0x1248 WdiSystemHost - ok 10:46:34.0185 0x1248 [ 1BABAABCB29B03CFA7BC30833963398E, A354415572EEEB6FD7847F0FAF07BB7772E761EA485CFF3FE7837706515E85A0 ] WebClient C:\Windows\System32\webclnt.dll 10:46:34.0216 0x1248 WebClient - ok 10:46:34.0247 0x1248 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 10:46:34.0294 0x1248 Wecsvc - ok 10:46:34.0325 0x1248 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 10:46:34.0357 0x1248 wercplsupport - ok 10:46:34.0388 0x1248 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 10:46:34.0435 0x1248 WerSvc - ok 10:46:34.0466 0x1248 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 10:46:34.0497 0x1248 WfpLwf - ok 10:46:34.0513 0x1248 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 10:46:34.0528 0x1248 WIMMount - ok 10:46:34.0544 0x1248 WinDefend - ok 10:46:34.0575 0x1248 WinHttpAutoProxySvc - ok 10:46:34.0622 0x1248 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 10:46:34.0669 0x1248 Winmgmt - ok 10:46:34.0793 0x1248 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll 10:46:34.0934 0x1248 WinRM - ok 10:46:35.0012 0x1248 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 10:46:35.0043 0x1248 WinUsb - ok 10:46:35.0121 0x1248 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 10:46:35.0215 0x1248 Wlansvc - ok 10:46:35.0246 0x1248 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 10:46:35.0277 0x1248 WmiAcpi - ok 10:46:35.0308 0x1248 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 10:46:35.0355 0x1248 wmiApSrv - ok 10:46:35.0402 0x1248 WMPNetworkSvc - ok 10:46:35.0417 0x1248 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 10:46:35.0449 0x1248 WPCSvc - ok 10:46:35.0464 0x1248 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 10:46:35.0495 0x1248 WPDBusEnum - ok 10:46:35.0511 0x1248 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 10:46:35.0542 0x1248 ws2ifsl - ok 10:46:35.0573 0x1248 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 10:46:35.0605 0x1248 wscsvc - ok 10:46:35.0605 0x1248 WSearch - ok 10:46:35.0761 0x1248 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 10:46:35.0901 0x1248 wuauserv - ok 10:46:35.0932 0x1248 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 10:46:35.0963 0x1248 WudfPf - ok 10:46:35.0995 0x1248 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 10:46:36.0041 0x1248 WUDFRd - ok 10:46:36.0057 0x1248 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 10:46:36.0104 0x1248 wudfsvc - ok 10:46:36.0135 0x1248 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll 10:46:36.0182 0x1248 WwanSvc - ok 10:46:36.0229 0x1248 [ F0814A5318A534E4742F5358DF59F3AD, 4A8877987D9DFAD57AF409D9C35EAF480D5260730E392EF3CFA9725F46640086 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe 10:46:36.0244 0x1248 ZAPrivacyService - ok 10:46:36.0260 0x1248 ================ Scan global =============================== 10:46:36.0275 0x1248 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 10:46:36.0322 0x1248 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 10:46:36.0338 0x1248 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 10:46:36.0369 0x1248 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 10:46:36.0400 0x1248 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 10:46:36.0400 0x1248 [ Global ] - ok 10:46:36.0400 0x1248 ================ Scan MBR ================================== 10:46:36.0416 0x1248 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2 10:46:36.0478 0x1248 \Device\Harddisk2\DR2 - ok 10:46:36.0494 0x1248 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk3\DR3 10:46:36.0556 0x1248 \Device\Harddisk3\DR3 - ok 10:46:36.0572 0x1248 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 10:46:36.0977 0x1248 \Device\Harddisk0\DR0 - ok 10:46:36.0993 0x1248 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1 10:46:37.0071 0x1248 \Device\Harddisk1\DR1 - ok 10:46:37.0071 0x1248 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR4 10:46:37.0945 0x1248 \Device\Harddisk4\DR4 - ok 10:46:37.0945 0x1248 ================ Scan VBR ================================== 10:46:37.0976 0x1248 [ DA5F969B6E853A630938D996DD9B52C1 ] \Device\Harddisk2\DR2\Partition1 10:46:37.0976 0x1248 \Device\Harddisk2\DR2\Partition1 - ok 10:46:37.0991 0x1248 [ 01F12C1A93C783F9F404A96FAEA1D763 ] \Device\Harddisk2\DR2\Partition2 10:46:37.0991 0x1248 \Device\Harddisk2\DR2\Partition2 - ok 10:46:38.0007 0x1248 [ EDAB7B831A00133D112A95B33CC29EED ] \Device\Harddisk3\DR3\Partition1 10:46:38.0007 0x1248 \Device\Harddisk3\DR3\Partition1 - ok 10:46:38.0023 0x1248 [ BD76FB1FB73D04FB87B1FBFA67747315 ] \Device\Harddisk0\DR0\Partition1 10:46:38.0023 0x1248 \Device\Harddisk0\DR0\Partition1 - ok 10:46:38.0023 0x1248 [ EE6B12CBD3A4C3A16A3F9F029B574228 ] \Device\Harddisk0\DR0\Partition2 10:46:38.0023 0x1248 \Device\Harddisk0\DR0\Partition2 - ok 10:46:38.0054 0x1248 [ 1CA2B40367F37ABF2D0C43F202C333C8 ] \Device\Harddisk0\DR0\Partition3 10:46:38.0054 0x1248 \Device\Harddisk0\DR0\Partition3 - ok 10:46:38.0085 0x1248 [ 279899A2090AE2463FC72B1B87E98CA4 ] \Device\Harddisk1\DR1\Partition1 10:46:38.0085 0x1248 \Device\Harddisk1\DR1\Partition1 - ok 10:46:38.0085 0x1248 [ F0F58B385A84D1DF39C14D10FBB42C20 ] \Device\Harddisk4\DR4\Partition1 10:46:38.0085 0x1248 \Device\Harddisk4\DR4\Partition1 - ok 10:46:38.0085 0x1248 Waiting for KSN requests completion. In queue: 91 10:46:39.0099 0x1248 Waiting for KSN requests completion. In queue: 91 10:46:40.0113 0x1248 Waiting for KSN requests completion. In queue: 91 10:46:41.0127 0x1248 Waiting for KSN requests completion. In queue: 91 10:46:42.0344 0x1248 AV detected via SS2: Emsisoft Anti-Malware, C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe ( 8.1.0.33 ), 0x41000 ( enabled : updated ) 10:46:42.0375 0x1248 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2011.263 ), 0x41000 ( enabled : updated ) 10:46:42.0391 0x1248 FW detected via SS2: ZoneAlarm Free Firewall Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 12.0.118.0 ), 0x41010 ( enabled ) 10:46:45.0479 0x1248 ============================================================ 10:46:45.0479 0x1248 Scan finished 10:46:45.0479 0x1248 ============================================================ 10:46:45.0479 0x13bc Detected object count: 0 10:46:45.0479 0x13bc Actual detected object count: 0

Het logje van TDSSKiller: met onderin 2 meldingen. 20:37:37.0327 0x1278 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50 20:37:42.0216 0x1278 ============================================================ 20:37:42.0216 0x1278 Current date / time: 2014/01/03 20:37:42.0216 20:37:42.0216 0x1278 SystemInfo: 20:37:42.0216 0x1278 20:37:42.0216 0x1278 OS Version: 6.1.7601 ServicePack: 1.0 20:37:42.0216 0x1278 Product type: Workstation 20:37:42.0216 0x1278 ComputerName: ZET-PC 20:37:42.0216 0x1278 UserName: ZET 20:37:42.0216 0x1278 Windows directory: C:\Windows 20:37:42.0216 0x1278 System windows directory: C:\Windows 20:37:42.0216 0x1278 Running under WOW64 20:37:42.0216 0x1278 Processor architecture: Intel x64 20:37:42.0216 0x1278 Number of processors: 4 20:37:42.0216 0x1278 Page size: 0x1000 20:37:42.0216 0x1278 Boot type: Normal boot 20:37:42.0216 0x1278 ============================================================ 20:37:43.0512 0x1278 KLMD registered as C:\Windows\system32\drivers\19235080.sys 20:37:43.0639 0x1278 System UUID: {6F86ED68-4360-87DA-38C7-F421870C7FC4} 20:37:44.0096 0x1278 Drive \Device\Harddisk2\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 20:37:49.0712 0x1278 Drive \Device\Harddisk3\DR3 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040 20:37:49.0727 0x1278 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040 20:37:54.0497 0x1278 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 20:37:54.0582 0x1278 Drive \Device\Harddisk4\DR4 - Size: 0x2BA9F400000 (2794.49 Gb), SectorSize: 0x1000, Cylinders: 0xB21F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 20:37:55.0241 0x1278 ============================================================ 20:37:55.0241 0x1278 \Device\Harddisk2\DR2: 20:37:55.0255 0x1278 MBR partitions: 20:37:55.0255 0x1278 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x186A0000 20:37:55.0255 0x1278 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x186A0800, BlocksNum 0x321B6800 20:37:55.0255 0x1278 \Device\Harddisk3\DR3: 20:37:55.0270 0x1278 MBR partitions: 20:37:55.0270 0x1278 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000 20:37:55.0270 0x1278 \Device\Harddisk0\DR0: 20:37:55.0278 0x1278 MBR partitions: 20:37:55.0278 0x1278 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 20:37:55.0278 0x1278 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xD6A6000 20:37:55.0278 0x1278 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xD6D8800, BlocksNum 0xFAEC000 20:37:55.0278 0x1278 \Device\Harddisk1\DR1: 20:37:55.0278 0x1278 MBR partitions: 20:37:55.0278 0x1278 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800 20:37:55.0278 0x1278 \Device\Harddisk4\DR4: 20:37:55.0280 0x1278 MBR partitions: 20:37:55.0280 0x1278 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x2BA9F300 20:37:55.0280 0x1278 ============================================================ 20:37:55.0292 0x1278 C: <-> \Device\Harddisk0\DR0\Partition2 20:37:55.0338 0x1278 E: <-> \Device\Harddisk1\DR1\Partition1 20:37:55.0365 0x1278 H: <-> \Device\Harddisk0\DR0\Partition3 20:37:55.0372 0x1278 D: <-> \Device\Harddisk2\DR2\Partition1 20:37:55.0447 0x1278 F: <-> \Device\Harddisk2\DR2\Partition2 20:37:55.0463 0x1278 G: <-> \Device\Harddisk3\DR3\Partition1 20:37:55.0500 0x1278 I: <-> \Device\Harddisk4\DR4\Partition1 20:37:55.0500 0x1278 ============================================================ 20:37:55.0500 0x1278 Initialize success 20:37:55.0500 0x1278 ============================================================ 20:38:04.0619 0x13bc ============================================================ 20:38:04.0619 0x13bc Scan started 20:38:04.0619 0x13bc Mode: Manual; SigCheck; TDLFS; 20:38:04.0619 0x13bc ============================================================ 20:38:04.0619 0x13bc KSN ping started 20:38:27.0243 0x13bc KSN ping finished: false 20:38:28.0446 0x13bc ================ Scan system memory ======================== 20:38:28.0446 0x13bc System memory - ok 20:38:28.0446 0x13bc ================ Scan services ============================= 20:38:28.0610 0x13bc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 20:38:28.0740 0x13bc 1394ohci - ok 20:38:28.0817 0x13bc [ 797E1068EE061C5DEE668F0DC6B3C601, 10B70F8AD3B9198E8CA7297865EACA94D576B375D3C078555E98C949FF5D5C2E ] a2acc C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys 20:38:28.0846 0x13bc a2acc - ok 20:38:29.0093 0x13bc [ 6FD8F474D031AE49BBD4CF1098F36C47, C9A949EE6B6526A2AC73825520E45237FB8305034C291E6B8C973CFEF664C92B ] a2AntiMalware C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe 20:38:29.0198 0x13bc a2AntiMalware - ok 20:38:29.0219 0x13bc [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys 20:38:29.0238 0x13bc A2DDA - ok 20:38:29.0252 0x13bc [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys 20:38:29.0272 0x13bc a2injectiondriver - ok 20:38:29.0284 0x13bc [ 0932B29AA1B9372FFE6D3AF8BA2ABA3A, 78312D140FB0383E797F715C9CFE53F25A60CB02A4466F6488B14E5558E609EC ] a2util C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys 20:38:29.0302 0x13bc a2util - ok 20:38:29.0328 0x13bc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 20:38:29.0364 0x13bc ACPI - ok 20:38:29.0387 0x13bc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 20:38:29.0424 0x13bc AcpiPmi - ok 20:38:29.0545 0x13bc [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 20:38:29.0569 0x13bc AdobeFlashPlayerUpdateSvc - ok 20:38:29.0615 0x13bc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 20:38:29.0660 0x13bc adp94xx - ok 20:38:29.0701 0x13bc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 20:38:29.0737 0x13bc adpahci - ok 20:38:29.0758 0x13bc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 20:38:29.0786 0x13bc adpu320 - ok 20:38:29.0809 0x13bc [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 20:38:29.0858 0x13bc AeLookupSvc - ok 20:38:29.0909 0x13bc [ 50AB05903CBEF298D135A943D4432E3C, CD00C2E03848937078E8DB3AD8E66E96D51099C7CB657AC10BC061741E95AC2A ] AFD C:\Windows\system32\drivers\afd.sys 20:38:29.0967 0x13bc AFD - ok 20:38:29.0982 0x13bc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 20:38:30.0004 0x13bc agp440 - ok 20:38:30.0015 0x13bc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 20:38:30.0056 0x13bc ALG - ok 20:38:30.0065 0x13bc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 20:38:30.0085 0x13bc aliide - ok 20:38:30.0118 0x13bc [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 20:38:30.0161 0x13bc AMD External Events Utility - ok 20:38:30.0165 0x13bc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 20:38:30.0185 0x13bc amdide - ok 20:38:30.0203 0x13bc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 20:38:30.0239 0x13bc AmdK8 - ok 20:38:30.0254 0x13bc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 20:38:30.0289 0x13bc AmdPPM - ok 20:38:30.0309 0x13bc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 20:38:30.0333 0x13bc amdsata - ok 20:38:30.0365 0x13bc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 20:38:30.0401 0x13bc amdsbs - ok 20:38:30.0436 0x13bc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 20:38:30.0456 0x13bc amdxata - ok 20:38:30.0488 0x13bc [ 9C4444FACE3B6A11C613186878A75D8E, 40111E19BD0DD256B4A41E6F0905148762D33BCA0A5308DA7FB0BA641CD9F77F ] AppID C:\Windows\system32\drivers\appid.sys 20:38:30.0531 0x13bc AppID - ok 20:38:30.0555 0x13bc [ B30533293343B79785CC00891BB776A5, CFE4C6CF01083FA2BC7579D8D2862E21388D597D346CB0EF1F3334C9D328E706 ] AppIDSvc C:\Windows\System32\appidsvc.dll 20:38:30.0598 0x13bc AppIDSvc - ok 20:38:30.0614 0x13bc [ 9651B55594F10F65D6D4498B89E5A4C5, 0726F44A81298116E61DCF720383C2E295EA96C79364A19B1ED1C274D20B3D77 ] Appinfo C:\Windows\System32\appinfo.dll 20:38:30.0660 0x13bc Appinfo - ok 20:38:30.0702 0x13bc [ 4D0AA539EFBECC4114031FC1C33F7345, 3D118504FAEE76BA5CE83650409C9BBD472D129B9CDBDBB7C27A5376D76A923F ] AppMgmt C:\Windows\System32\appmgmts.dll 20:38:30.0751 0x13bc AppMgmt - ok 20:38:30.0781 0x13bc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 20:38:30.0805 0x13bc arc - ok 20:38:30.0813 0x13bc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 20:38:30.0837 0x13bc arcsas - ok 20:38:30.0922 0x13bc [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 20:38:30.0957 0x13bc aspnet_state - ok 20:38:30.0997 0x13bc [ 9C2BEA3957EFFD45F352F0938DFB3721, 7006CC604C480CF512A29AD03BA17FFA564FDDF34CE768ACBD805611503D5012 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 20:38:31.0018 0x13bc aswMonFlt - ok 20:38:31.0034 0x13bc [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys 20:38:31.0054 0x13bc aswRdr - ok 20:38:31.0077 0x13bc [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys 20:38:31.0097 0x13bc aswRvrt - ok 20:38:31.0159 0x13bc [ 52B5F8FAF7E78C02D26B0B6E3A05F596, 7C45BA507529F822D4397BD5F001EC861C85E9CBB1F75927E48843B15D5C0B8E ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 20:38:31.0199 0x13bc aswSnx - ok 20:38:31.0228 0x13bc [ 251360C2FCA22BAFE0583314B3262F98, 1EB1B4620E3AFA8ACDDE5F1A6EC4AAEDD40AE2FC5C013AF1B13B03C4B60F6CEB ] aswSP C:\Windows\system32\drivers\aswSP.sys 20:38:31.0255 0x13bc aswSP - ok 20:38:31.0270 0x13bc [ AAB5F5336EDBB5D99CC7E1A9F4D8F63F, 01B40475DCA40E7B426DB0578A33DB62D62640F3A7F9F95A6BBF0AD3CF0F2941 ] aswStm C:\Windows\system32\drivers\aswStm.sys 20:38:31.0290 0x13bc aswStm - ok 20:38:31.0315 0x13bc [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys 20:38:31.0349 0x13bc aswVmm - ok 20:38:31.0371 0x13bc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 20:38:31.0424 0x13bc AsyncMac - ok 20:38:31.0436 0x13bc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 20:38:31.0455 0x13bc atapi - ok 20:38:31.0768 0x13bc [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 20:38:32.0141 0x13bc atikmdag - ok 20:38:32.0202 0x13bc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 20:38:32.0301 0x13bc AudioEndpointBuilder - ok 20:38:32.0337 0x13bc [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll 20:38:32.0388 0x13bc AudioSrv - ok 20:38:32.0445 0x13bc [ D74884939D53612FD84AC82C59CCFE27, 07BFB34A3748E018C0A674A6253A03FFA522B31AE1942E84B3CC4DDDED9C16A9 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 20:38:32.0464 0x13bc avast! Antivirus - ok 20:38:32.0493 0x13bc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 20:38:32.0544 0x13bc AxInstSV - ok 20:38:32.0597 0x13bc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 20:38:32.0653 0x13bc b06bdrv - ok 20:38:32.0693 0x13bc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 20:38:32.0747 0x13bc b57nd60a - ok 20:38:32.0782 0x13bc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 20:38:32.0814 0x13bc BDESVC - ok 20:38:32.0830 0x13bc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 20:38:32.0882 0x13bc Beep - ok 20:38:32.0946 0x13bc [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE C:\Windows\System32\bfe.dll 20:38:33.0028 0x13bc BFE - ok 20:38:33.0083 0x13bc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 20:38:33.0150 0x13bc BITS - ok 20:38:33.0177 0x13bc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 20:38:33.0205 0x13bc blbdrive - ok 20:38:33.0218 0x13bc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 20:38:33.0253 0x13bc bowser - ok 20:38:33.0257 0x13bc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 20:38:33.0292 0x13bc BrFiltLo - ok 20:38:33.0295 0x13bc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 20:38:33.0320 0x13bc BrFiltUp - ok 20:38:33.0343 0x13bc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 20:38:33.0373 0x13bc Browser - ok 20:38:33.0396 0x13bc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 20:38:33.0457 0x13bc Brserid - ok 20:38:33.0462 0x13bc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 20:38:33.0493 0x13bc BrSerWdm - ok 20:38:33.0497 0x13bc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 20:38:33.0524 0x13bc BrUsbMdm - ok 20:38:33.0529 0x13bc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 20:38:33.0552 0x13bc BrUsbSer - ok 20:38:33.0558 0x13bc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 20:38:33.0591 0x13bc BTHMODEM - ok 20:38:33.0606 0x13bc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 20:38:33.0648 0x13bc bthserv - ok 20:38:33.0662 0x13bc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 20:38:33.0716 0x13bc cdfs - ok 20:38:33.0745 0x13bc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 20:38:33.0780 0x13bc cdrom - ok 20:38:33.0800 0x13bc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 20:38:33.0862 0x13bc CertPropSvc - ok 20:38:33.0867 0x13bc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 20:38:33.0896 0x13bc circlass - ok 20:38:33.0933 0x13bc [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys 20:38:33.0952 0x13bc cleanhlp - ok 20:38:33.0987 0x13bc [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys 20:38:34.0030 0x13bc CLFS - ok 20:38:34.0080 0x13bc [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 20:38:34.0110 0x13bc clr_optimization_v2.0.50727_32 - ok 20:38:34.0143 0x13bc [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 20:38:34.0166 0x13bc clr_optimization_v2.0.50727_64 - ok 20:38:34.0226 0x13bc [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 20:38:34.0281 0x13bc clr_optimization_v4.0.30319_32 - ok 20:38:34.0300 0x13bc [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 20:38:34.0321 0x13bc clr_optimization_v4.0.30319_64 - ok 20:38:34.0358 0x13bc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys 20:38:34.0392 0x13bc CmBatt - ok 20:38:34.0396 0x13bc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 20:38:34.0416 0x13bc cmdide - ok 20:38:34.0448 0x13bc [ 29F5E6D593ED5CAC96B0889FD6CF555B, 1A0807F57DD83CAADED8BF96E6FF3A1DAB8C38E4A377D26D60E55C9B814D40AF ] CNG C:\Windows\system32\Drivers\cng.sys 20:38:34.0505 0x13bc CNG - ok 20:38:34.0520 0x13bc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys 20:38:34.0541 0x13bc Compbatt - ok 20:38:34.0551 0x13bc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 20:38:34.0583 0x13bc CompositeBus - ok 20:38:34.0597 0x13bc COMSysApp - ok 20:38:34.0602 0x13bc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 20:38:34.0623 0x13bc crcdisk - ok 20:38:34.0659 0x13bc [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll 20:38:34.0703 0x13bc CryptSvc - ok 20:38:34.0753 0x13bc [ 5B0D28D7072499817A56527670F5C4B3, 47BC116DA2FD228AFBBCC942458BDE02ACFBFD0F88CBB610160177448B162BD0 ] CSC C:\Windows\system32\drivers\csc.sys 20:38:34.0823 0x13bc CSC - ok 20:38:34.0870 0x13bc [ 13E7EB404B935ED29D5D63242BC15675, F785B0C56996BFCCA71F0C62FDC7B2E4589A3A26DA3087D335961636AC426222 ] CscService C:\Windows\System32\cscsvc.dll 20:38:34.0947 0x13bc CscService - ok 20:38:35.0004 0x13bc [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] DcomLaunch C:\Windows\system32\rpcss.dll 20:38:35.0068 0x13bc DcomLaunch - ok 20:38:35.0095 0x13bc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 20:38:35.0163 0x13bc defragsvc - ok 20:38:35.0203 0x13bc [ A61E76AA38582730CEFA51B78B3184B2, 1E7B401E9765C18CA17F26D796CC77601FC06220C4B88FE5727215B0446BE8BB ] DfsC C:\Windows\system32\Drivers\dfsc.sys 20:38:35.0252 0x13bc DfsC - ok 20:38:35.0286 0x13bc [ 3249F4E4DBF1BD24B40DFF385F2511D4, BFDF544580127CE07FCF01DE6A011C478F7D5948569B649BB5B0AAD85B2188F2 ] Dhcp C:\Windows\system32\dhcpcore.dll 20:38:35.0344 0x13bc Dhcp - ok 20:38:35.0357 0x13bc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 20:38:35.0402 0x13bc discache - ok 20:38:35.0417 0x13bc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 20:38:35.0438 0x13bc Disk - ok 20:38:35.0464 0x13bc [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 20:38:35.0500 0x13bc dmvsc - ok 20:38:35.0533 0x13bc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 20:38:35.0577 0x13bc Dnscache - ok 20:38:35.0602 0x13bc [ 8DA62036CC6192959D675142A3084916, BA97989D8E047872C54BC517697366741AFBB483906185EDED67C7C5854FCB4F ] dot3svc C:\Windows\System32\dot3svc.dll 20:38:35.0654 0x13bc dot3svc - ok 20:38:35.0668 0x13bc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 20:38:35.0718 0x13bc DPS - ok 20:38:35.0752 0x13bc [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 20:38:35.0778 0x13bc drmkaud - ok 20:38:35.0825 0x13bc [ 6A0E850DDCB136AA3D2FB7234382DF12, C01863E95F45E1B74AC65C9CD12C8DC769299218255B3C94E3EBF58C4D79FEF3 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys 20:38:35.0849 0x13bc dtsoftbus01 - ok 20:38:35.0917 0x13bc [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 20:38:35.0960 0x13bc DXGKrnl - ok 20:38:35.0991 0x13bc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 20:38:36.0043 0x13bc EapHost - ok 20:38:36.0215 0x13bc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 20:38:36.0433 0x13bc ebdrv - ok 20:38:36.0457 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] EFS C:\Windows\System32\lsass.exe 20:38:36.0487 0x13bc EFS - ok 20:38:36.0555 0x13bc [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 20:38:36.0628 0x13bc ehRecvr - ok 20:38:36.0638 0x13bc [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 20:38:36.0674 0x13bc ehSched - ok 20:38:36.0718 0x13bc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 20:38:36.0771 0x13bc elxstor - ok 20:38:36.0776 0x13bc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 20:38:36.0798 0x13bc ErrDev - ok 20:38:36.0850 0x13bc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 20:38:36.0906 0x13bc EventSystem - ok 20:38:36.0923 0x13bc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 20:38:36.0987 0x13bc exfat - ok 20:38:37.0001 0x13bc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 20:38:37.0055 0x13bc fastfat - ok 20:38:37.0108 0x13bc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 20:38:37.0181 0x13bc Fax - ok 20:38:37.0188 0x13bc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 20:38:37.0221 0x13bc fdc - ok 20:38:37.0250 0x13bc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 20:38:37.0289 0x13bc fdPHost - ok 20:38:37.0302 0x13bc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 20:38:37.0341 0x13bc FDResPub - ok 20:38:37.0373 0x13bc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 20:38:37.0394 0x13bc FileInfo - ok 20:38:37.0406 0x13bc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 20:38:37.0452 0x13bc Filetrace - ok 20:38:37.0458 0x13bc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 20:38:37.0481 0x13bc flpydisk - ok 20:38:37.0510 0x13bc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 20:38:37.0545 0x13bc FltMgr - ok 20:38:37.0610 0x13bc [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll 20:38:37.0697 0x13bc FontCache - ok 20:38:37.0733 0x13bc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 20:38:37.0755 0x13bc FontCache3.0.0.0 - ok 20:38:37.0765 0x13bc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 20:38:37.0787 0x13bc FsDepends - ok 20:38:37.0792 0x13bc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 20:38:37.0812 0x13bc Fs_Rec - ok 20:38:37.0848 0x13bc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 20:38:37.0885 0x13bc fvevol - ok 20:38:37.0902 0x13bc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 20:38:37.0925 0x13bc gagp30kx - ok 20:38:37.0984 0x13bc [ 030B778F4272DF185E4E2E8EC49D162E, 702E884DC9C56D67A250F2DE4C293A878054F0F0A3BB64944A204445D9D5357F ] gpsvc C:\Windows\System32\gpsvc.dll 20:38:38.0062 0x13bc gpsvc - ok 20:38:38.0103 0x13bc [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:38:38.0123 0x13bc gupdate - ok 20:38:38.0132 0x13bc [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 20:38:38.0151 0x13bc gupdatem - ok 20:38:38.0157 0x13bc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 20:38:38.0188 0x13bc hcw85cir - ok 20:38:38.0235 0x13bc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 20:38:38.0291 0x13bc HdAudAddService - ok 20:38:38.0306 0x13bc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 20:38:38.0344 0x13bc HDAudBus - ok 20:38:38.0350 0x13bc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 20:38:38.0377 0x13bc HidBatt - ok 20:38:38.0391 0x13bc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 20:38:38.0427 0x13bc HidBth - ok 20:38:38.0447 0x13bc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 20:38:38.0472 0x13bc HidIr - ok 20:38:38.0494 0x13bc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 20:38:38.0539 0x13bc hidserv - ok 20:38:38.0567 0x13bc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 20:38:38.0596 0x13bc HidUsb - ok 20:38:38.0621 0x13bc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 20:38:38.0678 0x13bc hkmsvc - ok 20:38:38.0700 0x13bc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 20:38:38.0728 0x13bc HomeGroupListener - ok 20:38:38.0753 0x13bc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 20:38:38.0786 0x13bc HomeGroupProvider - ok 20:38:38.0796 0x13bc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 20:38:38.0819 0x13bc HpSAMD - ok 20:38:38.0860 0x13bc [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys 20:38:38.0951 0x13bc HTTP - ok 20:38:38.0963 0x13bc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 20:38:38.0982 0x13bc hwpolicy - ok 20:38:38.0997 0x13bc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 20:38:39.0023 0x13bc i8042prt - ok 20:38:39.0063 0x13bc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 20:38:39.0107 0x13bc iaStorV - ok 20:38:39.0175 0x13bc [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 20:38:39.0245 0x13bc idsvc - ok 20:38:39.0252 0x13bc IEEtwCollectorService - ok 20:38:39.0259 0x13bc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 20:38:39.0281 0x13bc iirsp - ok 20:38:39.0337 0x13bc [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT C:\Windows\System32\ikeext.dll 20:38:39.0413 0x13bc IKEEXT - ok 20:38:39.0422 0x13bc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 20:38:39.0443 0x13bc intelide - ok 20:38:39.0456 0x13bc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys 20:38:39.0491 0x13bc intelppm - ok 20:38:39.0516 0x13bc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 20:38:39.0569 0x13bc IPBusEnum - ok 20:38:39.0577 0x13bc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 20:38:39.0618 0x13bc IpFilterDriver - ok 20:38:39.0663 0x13bc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 20:38:39.0727 0x13bc iphlpsvc - ok 20:38:39.0736 0x13bc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 20:38:39.0762 0x13bc IPMIDRV - ok 20:38:39.0772 0x13bc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 20:38:39.0825 0x13bc IPNAT - ok 20:38:39.0844 0x13bc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 20:38:39.0877 0x13bc IRENUM - ok 20:38:39.0890 0x13bc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 20:38:39.0910 0x13bc isapnp - ok 20:38:39.0930 0x13bc [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 20:38:39.0967 0x13bc iScsiPrt - ok 20:38:39.0983 0x13bc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 20:38:40.0003 0x13bc kbdclass - ok 20:38:40.0009 0x13bc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 20:38:40.0045 0x13bc kbdhid - ok 20:38:40.0058 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] KeyIso C:\Windows\system32\lsass.exe 20:38:40.0080 0x13bc KeyIso - ok 20:38:40.0096 0x13bc [ 7E60C7882EB896B1E4991181C3975F93, 044F46566566299FB8D75CA22D159444EC567861A6386E91E49C7B2E20D92AB0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 20:38:40.0119 0x13bc KSecDD - ok 20:38:40.0142 0x13bc [ 6C45E4B6331C614EFB401DA74CCF849E, 147A93CD41A25FAD6D5898A02629F1206B14E16CA4BB62B1B901FBF746A1EF65 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 20:38:40.0166 0x13bc KSecPkg - ok 20:38:40.0180 0x13bc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 20:38:40.0227 0x13bc ksthunk - ok 20:38:40.0267 0x13bc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 20:38:40.0340 0x13bc KtmRm - ok 20:38:40.0381 0x13bc [ 5CE3ADEF1C7203DCC0467E084ACE5643, E8A26479F296451310D42215E3E280C80A18BD6E537A854D1702873AC4162382 ] LanmanServer C:\Windows\system32\srvsvc.dll 20:38:40.0429 0x13bc LanmanServer - ok 20:38:40.0462 0x13bc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 20:38:40.0516 0x13bc LanmanWorkstation - ok 20:38:40.0547 0x13bc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 20:38:40.0594 0x13bc lltdio - ok 20:38:40.0626 0x13bc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 20:38:40.0699 0x13bc lltdsvc - ok 20:38:40.0714 0x13bc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 20:38:40.0754 0x13bc lmhosts - ok 20:38:40.0778 0x13bc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 20:38:40.0803 0x13bc LSI_FC - ok 20:38:40.0814 0x13bc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 20:38:40.0838 0x13bc LSI_SAS - ok 20:38:40.0852 0x13bc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 20:38:40.0875 0x13bc LSI_SAS2 - ok 20:38:40.0888 0x13bc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 20:38:40.0913 0x13bc LSI_SCSI - ok 20:38:40.0930 0x13bc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 20:38:40.0984 0x13bc luafv - ok 20:38:41.0003 0x13bc [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 20:38:41.0036 0x13bc Mcx2Svc - ok 20:38:41.0049 0x13bc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 20:38:41.0070 0x13bc megasas - ok 20:38:41.0096 0x13bc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 20:38:41.0131 0x13bc MegaSR - ok 20:38:41.0207 0x13bc [ 7C4C76B39D5525C4A465E0BE32528E19, B7FE3B2AE7E8A936AFC0572A6C4F23327400EAD16B26B6E1193F1C9C3767B3E1 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 20:38:41.0229 0x13bc Microsoft Office Groove Audit Service - ok 20:38:41.0253 0x13bc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 20:38:41.0305 0x13bc MMCSS - ok 20:38:41.0312 0x13bc [ BFFB0C93D9FB43CA42EF11C9240BFF7F, E1E98C55DF9A56316050A21AC5A7D764338DA55F6124B52A52E71B5B0089C3FA ] Modem C:\Windows\system32\drivers\modem.sys 20:38:41.0343 0x13bc Modem - ok 20:38:41.0374 0x13bc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 20:38:41.0407 0x13bc monitor - ok 20:38:41.0430 0x13bc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 20:38:41.0450 0x13bc mouclass - ok 20:38:41.0463 0x13bc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 20:38:41.0487 0x13bc mouhid - ok 20:38:41.0504 0x13bc [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 20:38:41.0526 0x13bc mountmgr - ok 20:38:41.0561 0x13bc [ E05FD9D5854A26A13D7F138F02BF2420, 89A6D90B8DB65565C1DAF9A1584C68989A1F4937D705182DA6E3B72E14A30DEA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 20:38:41.0586 0x13bc MozillaMaintenance - ok 20:38:41.0610 0x13bc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 20:38:41.0638 0x13bc mpio - ok 20:38:41.0646 0x13bc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 20:38:41.0688 0x13bc mpsdrv - ok 20:38:41.0750 0x13bc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 20:38:41.0852 0x13bc MpsSvc - ok 20:38:41.0865 0x13bc [ 83A296715A67D696F101130AB44B92A7, 365D984745C38CA6AD2EE038834A02BE03AAAF02BCEB40B4E60E4309C01C3BE2 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 20:38:41.0896 0x13bc MRxDAV - ok 20:38:41.0920 0x13bc [ 631EC673CD9115AA5A3570E7C092A410, 2FD8525D0BAE43C7D0E8858B65EC2E707734CC59CB642617712C2AA62CF10B04 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 20:38:41.0956 0x13bc mrxsmb - ok 20:38:41.0987 0x13bc [ B10A0DF47FB6A1B807617A8EB8CF1045, 6EAD4CD5B6325718143AF46B100E0122C254A7E3EECF87AE8590A783D60DD2D0 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 20:38:42.0033 0x13bc mrxsmb10 - ok 20:38:42.0057 0x13bc [ B7D1933C1835A39B55BB59A2190DC858, B594BDEA0FB8CE1C736A2F8487A7EC5353AFB1B2DF80178F21897EFDD6D6C4C5 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 20:38:42.0096 0x13bc mrxsmb20 - ok 20:38:42.0110 0x13bc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 20:38:42.0134 0x13bc msahci - ok 20:38:42.0146 0x13bc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 20:38:42.0172 0x13bc msdsm - ok 20:38:42.0188 0x13bc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 20:38:42.0225 0x13bc MSDTC - ok 20:38:42.0250 0x13bc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 20:38:42.0298 0x13bc Msfs - ok 20:38:42.0314 0x13bc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 20:38:42.0363 0x13bc mshidkmdf - ok 20:38:42.0374 0x13bc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 20:38:42.0393 0x13bc msisadrv - ok 20:38:42.0428 0x13bc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 20:38:42.0483 0x13bc MSiSCSI - ok 20:38:42.0488 0x13bc msiserver - ok 20:38:42.0527 0x13bc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 20:38:42.0577 0x13bc MSKSSRV - ok 20:38:42.0588 0x13bc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 20:38:42.0637 0x13bc MSPCLOCK - ok 20:38:42.0643 0x13bc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 20:38:42.0689 0x13bc MSPQM - ok 20:38:42.0716 0x13bc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 20:38:42.0759 0x13bc MsRPC - ok 20:38:42.0780 0x13bc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 20:38:42.0800 0x13bc mssmbios - ok 20:38:42.0812 0x13bc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 20:38:42.0864 0x13bc MSTEE - ok 20:38:42.0871 0x13bc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 20:38:42.0908 0x13bc MTConfig - ok 20:38:42.0928 0x13bc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 20:38:42.0948 0x13bc Mup - ok 20:38:42.0988 0x13bc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 20:38:43.0070 0x13bc napagent - ok 20:38:43.0107 0x13bc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 20:38:43.0159 0x13bc NativeWifiP - ok 20:38:43.0224 0x13bc [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 20:38:43.0293 0x13bc NDIS - ok 20:38:43.0312 0x13bc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 20:38:43.0358 0x13bc NdisCap - ok 20:38:43.0372 0x13bc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 20:38:43.0411 0x13bc NdisTapi - ok 20:38:43.0422 0x13bc [ 662CBFAA835FFF1A935DD01890AAFC62, 41CD715EF77446E2ECD70A512BF2A5DC8C32C0F38E56F48621461784C28CF914 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 20:38:43.0456 0x13bc Ndisuio - ok 20:38:43.0469 0x13bc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 20:38:43.0519 0x13bc NdisWan - ok 20:38:43.0535 0x13bc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 20:38:43.0574 0x13bc NDProxy - ok 20:38:43.0588 0x13bc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 20:38:43.0638 0x13bc NetBIOS - ok 20:38:43.0663 0x13bc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 20:38:43.0712 0x13bc NetBT - ok 20:38:43.0726 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] Netlogon C:\Windows\system32\lsass.exe 20:38:43.0747 0x13bc Netlogon - ok 20:38:43.0784 0x13bc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 20:38:43.0840 0x13bc Netman - ok 20:38:43.0873 0x13bc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:38:43.0913 0x13bc NetMsmqActivator - ok 20:38:43.0923 0x13bc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:38:43.0943 0x13bc NetPipeActivator - ok 20:38:43.0977 0x13bc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 20:38:44.0037 0x13bc netprofm - ok 20:38:44.0048 0x13bc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:38:44.0068 0x13bc NetTcpActivator - ok 20:38:44.0078 0x13bc [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 20:38:44.0098 0x13bc NetTcpPortSharing - ok 20:38:44.0109 0x13bc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 20:38:44.0131 0x13bc nfrd960 - ok 20:38:44.0160 0x13bc [ 843E337C1CDD282545ED7515345E263B, B0E485856FC1C28DA6C453BF60A04F603BA15D7B0D84896E878049198F2FD1C9 ] NlaSvc C:\Windows\System32\nlasvc.dll 20:38:44.0220 0x13bc NlaSvc - ok 20:38:44.0240 0x13bc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 20:38:44.0287 0x13bc Npfs - ok 20:38:44.0311 0x13bc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 20:38:44.0351 0x13bc nsi - ok 20:38:44.0358 0x13bc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 20:38:44.0407 0x13bc nsiproxy - ok 20:38:44.0515 0x13bc [ A6AE4551BF8EED09FA3B6FCDF472F3E1, 8C01E05D5736FBEFDA9A670F8DB9AB44B5730DC90A545B651E7B09321317DEE4 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 20:38:44.0624 0x13bc Ntfs - ok 20:38:44.0641 0x13bc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 20:38:44.0690 0x13bc Null - ok 20:38:44.0708 0x13bc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 20:38:44.0735 0x13bc nvraid - ok 20:38:44.0762 0x13bc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 20:38:44.0790 0x13bc nvstor - ok 20:38:44.0809 0x13bc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 20:38:44.0834 0x13bc nv_agp - ok 20:38:44.0919 0x13bc [ 1F0E05DFF4F5A833168E49BE1256F002, A858267572033C185293B0FD15B2BFDA679D0771A14C0ADF24461B529DBAD8DF ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 20:38:44.0963 0x13bc odserv - ok 20:38:44.0973 0x13bc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 20:38:44.0998 0x13bc ohci1394 - ok 20:38:45.0045 0x13bc [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 20:38:45.0071 0x13bc ose - ok 20:38:45.0117 0x13bc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 20:38:45.0159 0x13bc p2pimsvc - ok 20:38:45.0204 0x13bc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 20:38:45.0235 0x13bc p2psvc - ok 20:38:45.0256 0x13bc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 20:38:45.0289 0x13bc Parport - ok 20:38:45.0306 0x13bc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 20:38:45.0327 0x13bc partmgr - ok 20:38:45.0342 0x13bc [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll 20:38:45.0391 0x13bc PcaSvc - ok 20:38:45.0415 0x13bc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 20:38:45.0446 0x13bc pci - ok 20:38:45.0460 0x13bc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 20:38:45.0479 0x13bc pciide - ok 20:38:45.0506 0x13bc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 20:38:45.0542 0x13bc pcmcia - ok 20:38:45.0556 0x13bc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 20:38:45.0576 0x13bc pcw - ok 20:38:45.0619 0x13bc [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 20:38:45.0703 0x13bc PEAUTH - ok 20:38:45.0789 0x13bc [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 20:38:45.0901 0x13bc PeerDistSvc - ok 20:38:45.0976 0x13bc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 20:38:46.0013 0x13bc PerfHost - ok 20:38:46.0118 0x13bc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 20:38:46.0244 0x13bc pla - ok 20:38:46.0296 0x13bc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 20:38:46.0349 0x13bc PlugPlay - ok 20:38:46.0368 0x13bc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 20:38:46.0401 0x13bc PNRPAutoReg - ok 20:38:46.0444 0x13bc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 20:38:46.0473 0x13bc PNRPsvc - ok 20:38:46.0524 0x13bc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 20:38:46.0579 0x13bc PolicyAgent - ok 20:38:46.0599 0x13bc [ B2392DBB9085E39AAB5204BE92FB3AB0, BB7741859C9FB5B3DCA98DDC2869C05AD06DA896F5B0CA821D433C46463F8536 ] Power C:\Windows\system32\umpo.dll 20:38:46.0631 0x13bc Power - ok 20:38:46.0668 0x13bc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 20:38:46.0719 0x13bc PptpMiniport - ok 20:38:46.0732 0x13bc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 20:38:46.0769 0x13bc Processor - ok 20:38:46.0800 0x13bc [ 5CCDC5AECAC81371CCCB77F0556C757F, A7A195C20B7316BDA795B03A1166DAE1892F96F471FBD9595AAACBDF035F42B4 ] ProfSvc C:\Windows\system32\profsvc.dll 20:38:46.0849 0x13bc ProfSvc - ok 20:38:46.0862 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] ProtectedStorage C:\Windows\system32\lsass.exe 20:38:46.0884 0x13bc ProtectedStorage - ok 20:38:46.0914 0x13bc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 20:38:46.0964 0x13bc Psched - ok 20:38:46.0997 0x13bc [ 4712CC14E720ECCCC0AA16949D18AAF1, AF0223D118A25CA14EC1AF8A40A793D3CBCBE3576CCACBCD4F9A3D3F10407262 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 20:38:47.0016 0x13bc PxHlpa64 - ok 20:38:47.0119 0x13bc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 20:38:47.0226 0x13bc ql2300 - ok 20:38:47.0251 0x13bc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 20:38:47.0280 0x13bc ql40xx - ok 20:38:47.0317 0x13bc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 20:38:47.0359 0x13bc QWAVE - ok 20:38:47.0368 0x13bc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 20:38:47.0408 0x13bc QWAVEdrv - ok 20:38:47.0415 0x13bc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 20:38:47.0460 0x13bc RasAcd - ok 20:38:47.0489 0x13bc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 20:38:47.0530 0x13bc RasAgileVpn - ok 20:38:47.0550 0x13bc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 20:38:47.0602 0x13bc RasAuto - ok 20:38:47.0615 0x13bc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 20:38:47.0663 0x13bc Rasl2tp - ok 20:38:47.0695 0x13bc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 20:38:47.0760 0x13bc RasMan - ok 20:38:47.0776 0x13bc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 20:38:47.0827 0x13bc RasPppoe - ok 20:38:47.0847 0x13bc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 20:38:47.0898 0x13bc RasSstp - ok 20:38:47.0932 0x13bc [ DB854D79B792CBDD51F3072B44D724F0, 0FF84D8ECE098C28596B77F71582BC362FB23C671922544F847B659D52B9F8A9 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 20:38:47.0976 0x13bc rdbss - ok 20:38:47.0993 0x13bc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 20:38:48.0021 0x13bc rdpbus - ok 20:38:48.0039 0x13bc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 20:38:48.0078 0x13bc RDPCDD - ok 20:38:48.0114 0x13bc [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 20:38:48.0144 0x13bc RDPDR - ok 20:38:48.0152 0x13bc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 20:38:48.0201 0x13bc RDPENCDD - ok 20:38:48.0221 0x13bc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 20:38:48.0264 0x13bc RDPREFMP - ok 20:38:48.0276 0x13bc [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 20:38:48.0306 0x13bc RdpVideoMiniport - ok 20:38:48.0322 0x13bc [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 20:38:48.0366 0x13bc RDPWD - ok 20:38:48.0395 0x13bc [ 9500266AFA2548D2812DC59D8C1D7BD3, 25FFD440B02D7D651B57133D94C95EB526F7189F3329060D004F28BA179BF89F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 20:38:48.0429 0x13bc rdyboost - ok 20:38:48.0460 0x13bc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 20:38:48.0505 0x13bc RemoteAccess - ok 20:38:48.0535 0x13bc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 20:38:48.0589 0x13bc RemoteRegistry - ok 20:38:48.0605 0x13bc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 20:38:48.0648 0x13bc RpcEptMapper - ok 20:38:48.0667 0x13bc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 20:38:48.0695 0x13bc RpcLocator - ok 20:38:48.0736 0x13bc [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] RpcSs C:\Windows\system32\rpcss.dll 20:38:48.0770 0x13bc RpcSs - ok 20:38:48.0803 0x13bc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 20:38:48.0844 0x13bc rspndr - ok 20:38:48.0884 0x13bc [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 20:38:48.0921 0x13bc RTL8167 - ok 20:38:48.0948 0x13bc [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys 20:38:48.0969 0x13bc s3cap - ok 20:38:48.0986 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] SamSs C:\Windows\system32\lsass.exe 20:38:49.0007 0x13bc SamSs - ok 20:38:49.0102 0x13bc [ AD7231A60287E71E6D754264D55F3386, 4197E6CB06C6BAF9B850879CCB6DDBD5EBE977CA7981237903C0E67ACEC0EE3D ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys 20:38:49.0125 0x13bc SbieDrv - ok 20:38:49.0155 0x13bc [ A9E1788755F2E37E5FC37A8D56845C92, 5FDEC64FAFC7FA9B4EDEAEE3CF0E12CD3D766B2B4D7F3B2307675476F3B87C62 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe 20:38:49.0175 0x13bc SbieSvc - ok 20:38:49.0197 0x13bc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 20:38:49.0221 0x13bc sbp2port - ok 20:38:49.0255 0x13bc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 20:38:49.0309 0x13bc SCardSvr - ok 20:38:49.0318 0x13bc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 20:38:49.0368 0x13bc scfilter - ok 20:38:49.0439 0x13bc [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll 20:38:49.0544 0x13bc Schedule - ok 20:38:49.0573 0x13bc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 20:38:49.0611 0x13bc SCPolicySvc - ok 20:38:49.0636 0x13bc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 20:38:49.0684 0x13bc SDRSVC - ok 20:38:49.0711 0x13bc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 20:38:49.0761 0x13bc secdrv - ok 20:38:49.0776 0x13bc [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 20:38:49.0817 0x13bc seclogon - ok 20:38:49.0834 0x13bc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 20:38:49.0889 0x13bc SENS - ok 20:38:49.0919 0x13bc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 20:38:49.0951 0x13bc SensrSvc - ok 20:38:49.0959 0x13bc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 20:38:49.0991 0x13bc Serenum - ok 20:38:50.0018 0x13bc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys 20:38:50.0051 0x13bc Serial - ok 20:38:50.0074 0x13bc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 20:38:50.0104 0x13bc sermouse - ok 20:38:50.0140 0x13bc [ F8F5016A8021390DFAF8782687B4F226, BF51874E3448F2800DCC74BDDCFD86D55C95B4B076DFAE61DD821A440BB0405E ] SessionEnv C:\Windows\system32\sessenv.dll 20:38:50.0177 0x13bc SessionEnv - ok 20:38:50.0184 0x13bc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 20:38:50.0215 0x13bc sffdisk - ok 20:38:50.0223 0x13bc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 20:38:50.0254 0x13bc sffp_mmc - ok 20:38:50.0262 0x13bc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 20:38:50.0288 0x13bc sffp_sd - ok 20:38:50.0297 0x13bc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 20:38:50.0325 0x13bc sfloppy - ok 20:38:50.0367 0x13bc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 20:38:50.0439 0x13bc SharedAccess - ok 20:38:50.0476 0x13bc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 20:38:50.0551 0x13bc ShellHWDetection - ok 20:38:50.0560 0x13bc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 20:38:50.0582 0x13bc SiSRaid2 - ok 20:38:50.0593 0x13bc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 20:38:50.0616 0x13bc SiSRaid4 - ok 20:38:50.0640 0x13bc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 20:38:50.0688 0x13bc Smb - ok 20:38:50.0724 0x13bc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 20:38:50.0759 0x13bc SNMPTRAP - ok 20:38:50.0777 0x13bc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 20:38:50.0796 0x13bc spldr - ok 20:38:50.0841 0x13bc [ B98780FA7839BB6B14823C56A7BDA35C, 7EF79A807DE9940A93BDE9E18CD83940773BCA26CA68646C76BC2F96B6DC2E5B ] Spooler C:\Windows\System32\spoolsv.exe 20:38:50.0886 0x13bc Spooler - ok 20:38:51.0107 0x13bc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 20:38:51.0230 0x13bc sppsvc - ok 20:38:51.0257 0x13bc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 20:38:51.0313 0x13bc sppuinotify - ok 20:38:51.0360 0x13bc [ B9413B99DBB704E0F5824775A1118CC7, 75AAA548705764ECFB7A0C96E691AF80DBB824DC2BA8D356D8D157E6768F14C9 ] Spyder2 C:\Windows\system32\DRIVERS\Spyder2.sys 20:38:51.0381 0x13bc Spyder2 - ok 20:38:51.0433 0x13bc [ 20735E269DF367C76EF02DDE9C3FA477, 0D794D191A74406CCD62DCC270F9350981EE935488C61ADF168E98A712EE42B6 ] srv C:\Windows\system32\DRIVERS\srv.sys 20:38:51.0464 0x13bc srv - ok 20:38:51.0491 0x13bc [ 6D1173EDC0D5C02ACE4BEA18F48E0746, BCDF818C079B3E90577AEEE7ECDA4DA2E54F0F393F5FFD26FD0D4793CE14038F ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 20:38:51.0534 0x13bc srv2 - ok 20:38:51.0554 0x13bc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 20:38:51.0584 0x13bc srvnet - ok 20:38:51.0617 0x13bc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 20:38:51.0670 0x13bc SSDPSRV - ok 20:38:51.0688 0x13bc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 20:38:51.0732 0x13bc SstpSvc - ok 20:38:51.0749 0x13bc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 20:38:51.0770 0x13bc stexstor - ok 20:38:51.0826 0x13bc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 20:38:51.0896 0x13bc stisvc - ok 20:38:51.0920 0x13bc [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys 20:38:51.0939 0x13bc storflt - ok 20:38:51.0963 0x13bc [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys 20:38:51.0984 0x13bc storvsc - ok 20:38:51.0992 0x13bc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 20:38:52.0011 0x13bc swenum - ok 20:38:52.0125 0x13bc [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 20:38:52.0199 0x13bc SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 ) 20:39:02.0271 0x13bc SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 20:39:22.0328 0x13bc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 20:39:22.0413 0x13bc swprv - ok 20:39:22.0447 0x13bc [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys 20:39:22.0471 0x13bc Synth3dVsc - ok 20:39:22.0576 0x13bc [ 25E0900D1B452EDEB09B1F9B71195153, 96F47A96AA3510EBC67579806A679D82CF85709A1E041D026378E8F6DC0EB374 ] SysMain C:\Windows\system32\sysmain.dll 20:39:22.0713 0x13bc SysMain - ok 20:39:22.0737 0x13bc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 20:39:22.0780 0x13bc TabletInputService - ok 20:39:22.0806 0x13bc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 20:39:22.0873 0x13bc TapiSrv - ok 20:39:22.0894 0x13bc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 20:39:22.0946 0x13bc TBS - ok 20:39:23.0073 0x13bc [ 75F9106B74585D38C8FF6BB5CAD262D7, 47E849D7CF9D828C45E0FD4522D164086D896E503FA44C523840628AC2AEE086 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 20:39:23.0198 0x13bc Tcpip - ok 20:39:23.0312 0x13bc [ 75F9106B74585D38C8FF6BB5CAD262D7, 47E849D7CF9D828C45E0FD4522D164086D896E503FA44C523840628AC2AEE086 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 20:39:23.0368 0x13bc TCPIP6 - ok 20:39:23.0398 0x13bc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 20:39:23.0421 0x13bc tcpipreg - ok 20:39:23.0436 0x13bc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 20:39:23.0464 0x13bc TDPIPE - ok 20:39:23.0472 0x13bc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 20:39:23.0504 0x13bc TDTCP - ok 20:39:23.0517 0x13bc [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 20:39:23.0559 0x13bc tdx - ok 20:39:23.0578 0x13bc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 20:39:23.0598 0x13bc TermDD - ok 20:39:23.0613 0x13bc [ EF4469AB69EB15E5D3754E6AEAFBCD3D, 3609214C3D5181364B544EBF17E9A109952BE1C4C35BE0A8727BFA8F49ECB130 ] terminpt C:\Windows\system32\drivers\terminpt.sys 20:39:23.0646 0x13bc terminpt - ok 20:39:23.0707 0x13bc [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll 20:39:23.0787 0x13bc TermService - ok 20:39:23.0808 0x13bc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 20:39:23.0837 0x13bc Themes - ok 20:39:23.0858 0x13bc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 20:39:23.0897 0x13bc THREADORDER - ok 20:39:23.0915 0x13bc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 20:39:23.0960 0x13bc TrkWks - ok 20:39:24.0005 0x13bc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 20:39:24.0057 0x13bc TrustedInstaller - ok 20:39:24.0078 0x13bc [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 20:39:24.0103 0x13bc tssecsrv - ok 20:39:24.0114 0x13bc [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 20:39:24.0140 0x13bc TsUsbFlt - ok 20:39:24.0153 0x13bc [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 20:39:24.0176 0x13bc TsUsbGD - ok 20:39:24.0203 0x13bc [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys 20:39:24.0229 0x13bc tsusbhub - ok 20:39:24.0257 0x13bc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 20:39:24.0299 0x13bc tunnel - ok 20:39:24.0311 0x13bc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 20:39:24.0333 0x13bc uagp35 - ok 20:39:24.0364 0x13bc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 20:39:24.0438 0x13bc udfs - ok 20:39:24.0481 0x13bc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 20:39:24.0512 0x13bc UI0Detect - ok 20:39:24.0543 0x13bc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 20:39:24.0566 0x13bc uliagpkx - ok 20:39:24.0590 0x13bc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 20:39:24.0624 0x13bc umbus - ok 20:39:24.0642 0x13bc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 20:39:24.0672 0x13bc UmPass - ok 20:39:24.0712 0x13bc [ BEBC13D55C302339B9350D9FF9EEFCB5, E8513D2D23D7F134BB4E3BFC85F87B802F4F2E411CCF33306023E5F8D54C5CFF ] UmRdpService C:\Windows\System32\umrdp.dll 20:39:24.0750 0x13bc UmRdpService - ok 20:39:24.0806 0x13bc [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys 20:39:24.0825 0x13bc UnlockerDriver5 - ok 20:39:24.0870 0x13bc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 20:39:24.0923 0x13bc upnphost - ok 20:39:24.0944 0x13bc [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 20:39:24.0971 0x13bc usbccgp - ok 20:39:24.0991 0x13bc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 20:39:25.0024 0x13bc usbcir - ok 20:39:25.0035 0x13bc [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 20:39:25.0068 0x13bc usbehci - ok 20:39:25.0106 0x13bc [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 20:39:25.0157 0x13bc usbhub - ok 20:39:25.0166 0x13bc [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 20:39:25.0189 0x13bc usbohci - ok 20:39:25.0206 0x13bc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 20:39:25.0239 0x13bc usbprint - ok 20:39:25.0267 0x13bc [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 20:39:25.0298 0x13bc usbscan - ok 20:39:25.0314 0x13bc [ ED08C252A0041F8FC0237BAB585BABDC, DF5948BCD5CEB5B69E1A0096465C069E233DB81F5524D7364FF3FCD1E5B28880 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 20:39:25.0340 0x13bc USBSTOR - ok 20:39:25.0357 0x13bc [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 20:39:25.0390 0x13bc usbuhci - ok 20:39:25.0419 0x13bc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 20:39:25.0470 0x13bc UxSms - ok 20:39:25.0484 0x13bc [ F021DAFB1F87616FCEBA159C2ED7042F, 87F4C80B0C490CFE0CE68E17F3D9FC2EC1ECF498C094AE1967F35FE12AEDC478 ] VaultSvc C:\Windows\system32\lsass.exe 20:39:25.0506 0x13bc VaultSvc - ok 20:39:25.0526 0x13bc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 20:39:25.0545 0x13bc vdrvroot - ok 20:39:25.0586 0x13bc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 20:39:25.0668 0x13bc vds - ok 20:39:25.0691 0x13bc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 20:39:25.0716 0x13bc vga - ok 20:39:25.0732 0x13bc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 20:39:25.0778 0x13bc VgaSave - ok 20:39:25.0786 0x13bc VGPU - ok 20:39:25.0805 0x13bc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 20:39:25.0835 0x13bc vhdmp - ok 20:39:25.0845 0x13bc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 20:39:25.0865 0x13bc viaide - ok 20:39:25.0903 0x13bc [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys 20:39:25.0938 0x13bc vmbus - ok 20:39:25.0956 0x13bc [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 20:39:25.0978 0x13bc VMBusHID - ok 20:39:25.0997 0x13bc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 20:39:26.0018 0x13bc volmgr - ok 20:39:26.0049 0x13bc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 20:39:26.0093 0x13bc volmgrx - ok 20:39:26.0122 0x13bc [ DF83AA1C4278E2C0E36C0479C1555A9C, EA082BE4E38E22FD0C7D0A98DC227E2E33C0D87964D87276A2F56044656CD6F0 ] volsnap C:\Windows\system32\drivers\volsnap.sys 20:39:26.0157 0x13bc volsnap - ok 20:39:26.0211 0x13bc [ F8C69EB4CC46FD2681B65212CA20DD97, 290CC81B0F1C6EC26AD445442E1705710CFCCCB68D305205AE03A2DE49A6BEB3 ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys 20:39:26.0240 0x13bc Vsdatant - ok 20:39:26.0279 0x13bc vsmon - ok 20:39:26.0300 0x13bc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 20:39:26.0327 0x13bc vsmraid - ok 20:39:26.0470 0x13bc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 20:39:26.0633 0x13bc VSS - ok 20:39:26.0645 0x13bc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 20:39:26.0670 0x13bc vwifibus - ok 20:39:26.0704 0x13bc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 20:39:26.0782 0x13bc W32Time - ok 20:39:26.0808 0x13bc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 20:39:26.0838 0x13bc WacomPen - ok 20:39:26.0863 0x13bc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 20:39:26.0914 0x13bc WANARP - ok 20:39:26.0937 0x13bc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 20:39:26.0975 0x13bc Wanarpv6 - ok 20:39:27.0073 0x13bc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 20:39:27.0191 0x13bc wbengine - ok 20:39:27.0222 0x13bc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 20:39:27.0264 0x13bc WbioSrvc - ok 20:39:27.0297 0x13bc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 20:39:27.0340 0x13bc wcncsvc - ok 20:39:27.0356 0x13bc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 20:39:27.0381 0x13bc WcsPlugInService - ok 20:39:27.0405 0x13bc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 20:39:27.0425 0x13bc Wd - ok 20:39:27.0482 0x13bc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 20:39:27.0545 0x13bc Wdf01000 - ok 20:39:27.0563 0x13bc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll 20:39:27.0606 0x13bc WdiServiceHost - ok 20:39:27.0619 0x13bc [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll 20:39:27.0647 0x13bc WdiSystemHost - ok 20:39:27.0675 0x13bc [ 1BABAABCB29B03CFA7BC30833963398E, A354415572EEEB6FD7847F0FAF07BB7772E761EA485CFF3FE7837706515E85A0 ] WebClient C:\Windows\System32\webclnt.dll 20:39:27.0713 0x13bc WebClient - ok 20:39:27.0739 0x13bc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 20:39:27.0797 0x13bc Wecsvc - ok 20:39:27.0817 0x13bc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 20:39:27.0858 0x13bc wercplsupport - ok 20:39:27.0880 0x13bc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 20:39:27.0923 0x13bc WerSvc - ok 20:39:27.0955 0x13bc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 20:39:27.0993 0x13bc WfpLwf - ok 20:39:28.0003 0x13bc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 20:39:28.0023 0x13bc WIMMount - ok 20:39:28.0041 0x13bc WinDefend - ok 20:39:28.0063 0x13bc WinHttpAutoProxySvc - ok 20:39:28.0120 0x13bc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 20:39:28.0175 0x13bc Winmgmt - ok 20:39:28.0297 0x13bc [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll 20:39:28.0454 0x13bc WinRM - ok 20:39:28.0521 0x13bc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 20:39:28.0559 0x13bc WinUsb - ok 20:39:28.0633 0x13bc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 20:39:28.0722 0x13bc Wlansvc - ok 20:39:28.0761 0x13bc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 20:39:28.0783 0x13bc WmiAcpi - ok 20:39:28.0827 0x13bc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 20:39:28.0872 0x13bc wmiApSrv - ok 20:39:28.0901 0x13bc WMPNetworkSvc - ok 20:39:28.0933 0x13bc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 20:39:28.0956 0x13bc WPCSvc - ok 20:39:28.0982 0x13bc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 20:39:29.0008 0x13bc WPDBusEnum - ok 20:39:29.0027 0x13bc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 20:39:29.0076 0x13bc ws2ifsl - ok 20:39:29.0094 0x13bc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 20:39:29.0129 0x13bc wscsvc - ok 20:39:29.0138 0x13bc WSearch - ok 20:39:29.0288 0x13bc [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll 20:39:29.0438 0x13bc wuauserv - ok 20:39:29.0455 0x13bc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 20:39:29.0487 0x13bc WudfPf - ok 20:39:29.0525 0x13bc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 20:39:29.0563 0x13bc WUDFRd - ok 20:39:29.0590 0x13bc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 20:39:29.0620 0x13bc wudfsvc - ok 20:39:29.0658 0x13bc [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll 20:39:29.0708 0x13bc WwanSvc - ok 20:39:29.0760 0x13bc [ F0814A5318A534E4742F5358DF59F3AD, 4A8877987D9DFAD57AF409D9C35EAF480D5260730E392EF3CFA9725F46640086 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe 20:39:29.0780 0x13bc ZAPrivacyService - ok 20:39:29.0788 0x13bc ================ Scan global =============================== 20:39:29.0807 0x13bc [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll 20:39:29.0844 0x13bc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 20:39:29.0873 0x13bc [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll 20:39:29.0898 0x13bc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 20:39:29.0930 0x13bc [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe 20:39:29.0938 0x13bc [ Global ] - ok 20:39:29.0938 0x13bc ================ Scan MBR ================================== 20:39:29.0960 0x13bc [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2 20:39:30.0023 0x13bc \Device\Harddisk2\DR2 - ok 20:39:30.0038 0x13bc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk3\DR3 20:39:30.0100 0x13bc \Device\Harddisk3\DR3 - ok 20:39:30.0114 0x13bc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 20:39:30.0516 0x13bc \Device\Harddisk0\DR0 - ok 20:39:30.0535 0x13bc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1 20:39:30.0610 0x13bc \Device\Harddisk1\DR1 - ok 20:39:31.0304 0x13bc [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR4 20:39:31.0520 0x13bc \Device\Harddisk4\DR4 - ok 20:39:31.0520 0x13bc ================ Scan VBR ================================== 20:39:31.0543 0x13bc [ DA5F969B6E853A630938D996DD9B52C1 ] \Device\Harddisk2\DR2\Partition1 20:39:31.0544 0x13bc \Device\Harddisk2\DR2\Partition1 - ok 20:39:31.0554 0x13bc [ 01F12C1A93C783F9F404A96FAEA1D763 ] \Device\Harddisk2\DR2\Partition2 20:39:31.0555 0x13bc \Device\Harddisk2\DR2\Partition2 - ok 20:39:31.0581 0x13bc [ EDAB7B831A00133D112A95B33CC29EED ] \Device\Harddisk3\DR3\Partition1 20:39:31.0582 0x13bc \Device\Harddisk3\DR3\Partition1 - ok 20:39:31.0585 0x13bc [ BD76FB1FB73D04FB87B1FBFA67747315 ] \Device\Harddisk0\DR0\Partition1 20:39:31.0586 0x13bc \Device\Harddisk0\DR0\Partition1 - ok 20:39:31.0605 0x13bc [ EE6B12CBD3A4C3A16A3F9F029B574228 ] \Device\Harddisk0\DR0\Partition2 20:39:31.0606 0x13bc \Device\Harddisk0\DR0\Partition2 - ok 20:39:31.0625 0x13bc [ 1CA2B40367F37ABF2D0C43F202C333C8 ] \Device\Harddisk0\DR0\Partition3 20:39:31.0627 0x13bc \Device\Harddisk0\DR0\Partition3 - ok 20:39:31.0661 0x13bc [ 279899A2090AE2463FC72B1B87E98CA4 ] \Device\Harddisk1\DR1\Partition1 20:39:31.0662 0x13bc \Device\Harddisk1\DR1\Partition1 - ok 20:39:31.0666 0x13bc [ F0F58B385A84D1DF39C14D10FBB42C20 ] \Device\Harddisk4\DR4\Partition1 20:39:31.0668 0x13bc \Device\Harddisk4\DR4\Partition1 - ok 20:39:31.0669 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:32.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:33.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:34.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:35.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:36.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:37.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:38.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:39.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:40.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:41.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:42.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:43.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:44.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:45.0670 0x13bc Waiting for KSN requests completion. In queue: 93 20:39:46.0670 0x13bc Waiting for KSN requests completion. In queue: 38 20:39:47.0670 0x13bc Waiting for KSN requests completion. In queue: 38 20:39:48.0670 0x13bc Waiting for KSN requests completion. In queue: 38 20:39:49.0670 0x13bc Waiting for KSN requests completion. In queue: 38 20:39:50.0671 0x13bc Waiting for KSN requests completion. In queue: 9 20:39:51.0671 0x13bc Waiting for KSN requests completion. In queue: 9 20:39:52.0698 0x13bc AV detected via SS2: Emsisoft Anti-Malware, C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe ( 8.1.0.33 ), 0x41000 ( enabled : updated ) 20:39:52.0714 0x13bc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2011.263 ), 0x41000 ( enabled : updated ) 20:39:52.0731 0x13bc FW detected via SS2: ZoneAlarm Free Firewall Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 12.0.118.0 ), 0x41010 ( enabled ) 20:40:12.0731 0x13bc ============================================================ 20:40:12.0731 0x13bc Scan finished 20:40:12.0731 0x13bc ============================================================ 20:40:12.0736 0x0c0c Detected object count: 1 20:40:12.0737 0x0c0c Actual detected object count: 1 20:43:17.0740 0x0c0c SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user 20:43:17.0741 0x0c0c SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip

Hierbij het resultaat van de Malware-scanner. Ook hier toch weer veel resultaten (ondanks het feit dat ik met een schone lei was begonnen). De bestanden op de I-schijf kan ik me dan daarbij nog wel iets voorstellen, maar ik zie dat er ook Malware-besmettingen zitten in mijn register (WOW6432NODE\SLID\), moet ik me daar zorgen om maken? En ook bij het vers gedownloade Filezilla vind het (niet schadelijke) Malware. Emsisoft Anti-Malware v. 8.1.0.33 © 2003-2013 Emsisoft - Emsisoft Anti-Malware - Best antivirus and firewall to protect from viruses, bots, spyware, keyloggers, trojans, scareware and rootkits ID Object 0 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{2C704DBB-9C46-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 1 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{6E29B981-9C50-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{389B19B9-9A87-11D1-B77F-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 3 I:\F\_Programmas\READER-Blow Up 3.0.0.672\READER-Blow Up 3.0.0.672\X-FORCE\keygen openen in sandboxie.exe Trojan.Generic.6993793 ( 4 I:\C oud\Users\Naam\Desktop\Tumasoft.Preset.Viewer.1.0.2.keymaker.zip Trojan.GenericKD.1428149 ( 5 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{2C704DBC-9C46-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 6 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{6E29B982-9C50-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 7 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{2C704DBD-9C46-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 8 I:\F\_Programmas\_GETEST DEC 2013\Windows 7 dec2013 nog geinstalleerd\Losse extra Software\losse software\Malwarebytes Anti-Malware v1.75.0.1300 Final.exe Trojan.Generic.10028886 ( 9 I:\F\_Programmas\Tumasoft.Preset.Viewer.1.0.2.keymaker.zip Trojan.GenericKD.1428149 ( 10 Value: HKEY_LOCAL_MACHINE\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{855C49A7-9C3C-11D1-B784-00001C1AD1F8}\INPROCSERVER32 -> THREADINGMODEL Find Out Now Spy Software (A) 11 C:\Users\Naam\Desktop\SFInstaller_SFFZ_filezilla_8992693_.exe Application.Win32.InstallAd (A)

Hallo Kape, allereerst natuurlijk de beste wensen. Nou, ik heb ESET laten draaien (14 uur lang) en dit was het 'schokkende' resultaat. Hij vond echt vanalles. Wat me verbaast is dat hij ook iets vond in "C:\zoek-backup|..." en dat is toch een programmaatje wat ik via dit forum heb moeten gebruiken. Kan het zijn dat niet alle bestanden die hieronder vermeldt staan ook schadelijk zijn? En zo ja, hoe kom ik daarachter. En mijn tweede vraag, ik zie er ook zaken bij staan die ik heb geinstalleerd sinds mijn nieuwe installatie deze week. Dus dan moet mijn computer toch flink besmet zijn? Hoe kan het dan dat je hierboven aangeeft dat het allemaal wel redelijk goed er uit ziet? C:\Program Files (x86)\CheckPoint\Install\zatb.exe multiple threats deleted - quarantined C:\Users\NAAM\Desktop\Ae.rar a variant of MSIL/PSW.Agent.NFX trojan deleted - quarantined C:\Users\NAAM\Desktop\DTLite4481-0347.exe multiple threats cleaned by deleting - quarantined C:\zoek_backup\C_PROGRA~2_Check Point Software Technologies LTD\zonealarm\1.8.28.13\zonealarmApp.dll a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined C:\zoek_backup\C_PROGRA~2_Check Point Software Technologies LTD\zonealarm\1.8.28.13\zonealarmEng.dll probably a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined C:\zoek_backup\C_PROGRA~2_Check Point Software Technologies LTD\zonealarm\1.8.28.13\zonealarmsrv.exe a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined C:\zoek_backup\C_PROGRA~2_Check Point Software Technologies LTD\zonealarm\1.8.28.13\bh\zonealarm.dll a variant of Win32/Toolbar.Escort.A application cleaned by deleting - quarantined I:\C oud\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmApp.dll a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined I:\C oud\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmEng.dll probably a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined I:\C oud\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmsrv.exe a variant of Win32/Toolbar.Montiera.A application cleaned by deleting - quarantined I:\C oud\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmTlbr.dll a variant of Win32/Toolbar.Montiera.F application cleaned by deleting - quarantined I:\C oud\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\bh\zonealarm.dll a variant of Win32/Toolbar.Escort.A application cleaned by deleting - quarantined I:\C oud\Sandbox\NAAM\DefaultBox\user\current\AppData\Local\Temp\tsiVi032.dll a variant of Win32/CoinMiner.ID trojan cleaned by deleting - quarantined I:\C oud\Users\NAAM\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 Win32/InstalleRex.L application cleaned by deleting - quarantined I:\C oud\Users\NAAM\Desktop\cbsidlm-cbsi145-Wise_Data_Recovery-ORG-75715872.exe a variant of Win32/CNETInstaller.B application cleaned by deleting - quarantined I:\C oud\Users\NAAM\Desktop\chromepass.zip Win32/PSWTool.ChromePass.A application deleted - quarantined I:\C oud\Users\NAAM\Desktop\chromepass\ChromePass.exe Win32/PSWTool.ChromePass.A application cleaned by deleting - quarantined I:\D oud\Program Files (x86)\Photodex\ProShow Producer\Proshow.Producer.v5.0.3276-patch-REPT.exe a variant of Win32/HackTool.Patcher.AD application cleaned by deleting - quarantined I:\F\Backup LiveMail 05 jan 2013\Backup firefox\Firefox 17.0.1 (nl) - 2013-01-05.pcv a variant of Win32/Toolbar.Visicom.C application deleted - quarantined I:\F\_Programmas\cbsidlm-cbsi145-Wise_Data_Recovery-ORG-75715872.exe a variant of Win32/CNETInstaller.B application cleaned by deleting - quarantined I:\F\_Programmas\chromepass.zip Win32/PSWTool.ChromePass.A application deleted - quarantined I:\F\_Programmas\cpu-z_1.58-setup-en.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined I:\F\_Programmas\FreeScreenVideoRecorder.exe Win32/OpenCandy application cleaned by deleting - quarantined I:\F\_Programmas\chromepass\ChromePass.exe Win32/PSWTool.ChromePass.A application cleaned by deleting - quarantined I:\F\_Programmas\Pliek Windows XP 3.06\Pliek Windows XP 3.06.iso Win32/Adware.ADON application deleted - quarantined I:\F\_Programmas\Portraiture 233 BUILD 2330 FOR ADOBE PHOTOSHOP\Crack\xf-inport.7z a variant of Win32/Keygen.HA application deleted - quarantined I:\F\_Programmas\Proshow Producer 5.0.3276\Proshow Producer 5.0.3276\Patch - REPT\Proshow.Producer.v5.0.3276-patch-REPT.exe a variant of Win32/HackTool.Patcher.AD application cleaned by deleting - quarantined I:\F\_Programmas\_GETEST DEC 2013\Adobe Master Collection CS5\keygen.exe a variant of Win32/Keygen.BH application cleaned by deleting - quarantined I:\F\_Programmas\_GETEST DEC 2013\Adobe Master Collection CS5\Master Collection CS5 Disk 1.iso BAT/HostsChanger.A application deleted - quarantined I:\F\_Programmas\_GETEST DEC 2013\Foxit PDF\FoxitReader514.0104_enu_Setup.exe a variant of Win32/Bundled.Toolbar.Ask application cleaned by deleting - quarantined I:\F\_Programmas\_GETEST DEC 2013\Unlocker v1.9.0 - x86 & x64 - Final\unlocker1.9.0-x64.exe Win32/Adware.ADON application cleaned by deleting - quarantined I:\F\_Programmas\_GETEST DEC 2013\Windows 7 dec2013 nog geinstalleerd\Losse extra Software\Windows 7 Activator\Windows Loader.exe Win32/HackTool.WinActivator.I application cleaned by deleting - quarantined I:\F\_Programmas\_WEBSITES\Websites\X\httpdocs\forms\include\jsfunctions.js JS/Kryptik.AD trojan cleaned by deleting - quarantined

Hierbij het log-bestandje van ZOEK: Zoek.exe v5.0.0.0 Updated 28-December-2013 Tool run by ZET on di 31-12-2013 at 10:28:13,27. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\ZET\Desktop\zoek\zoek.exe [scan all users] [script inserted] ==== System Restore Info ====================== 31-12-2013 10:29:39 Zoek.exe System Restore Point Created Succesfully. ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\PROGRA~2\GUM35D.tmp deleted C:\PROGRA~2\Check Point Software Technologies LTD deleted C:\ProgramData\boost_interprocess deleted C:\Users\ZET\AppData\Local\Programs deleted C:\Users\ZET\AppData\Local\Software deleted C:\Users\ZET\AppData\Local\PackageAware deleted "C:\Users\ZET\AppData\Roaming\Internet Services" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[26-12-2013 21:14] kgdcapepedmpopjkmdbjnmmmfgllnfek - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.28.13\zonealarm.crx[] Google Docs - ZET - Default\Extensions\aohghmighlieiainnegkcijnfilokake Google Drive - ZET - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf YouTube - ZET - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Last updated at time on date - ZET - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Google Search - ZET - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf AdBlock - ZET - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom avast Online Security - ZET - Default\Extensions\gomekmidlodglbbmalcneegieacbdmki New Tab Redirect - ZET - Default\Extensions\icpgjfneehieebagbmdbhnlpiopdcmna ZoneAlarm Chrome Toolbar - ZET - Default\Extensions\kgdcapepedmpopjkmdbjnmmmfgllnfek Google Wallet - ZET - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Gmail - ZET - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Chrome Fix ====================== C:\Users\ZET\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgdcapepedmpopjkmdbjnmmmfgllnfek deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.nl/" "Search Page"="http://www.google.nl" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="http://search.zonealarm.com/?src=nt&tbid=HFA5&Lan=en&gu=118f94d53e1e4d618920c5e6705e3e6b&tu=10G9y00Bh2C01u0&sku=&tstsId=&ver=&" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="http://search.zonealarm.com/?src=nt&tbid=HFA5&Lan=en&gu=118f94d53e1e4d618920c5e6705e3e6b&tu=10G9y00Bh2C01u0&sku=&tstsId=&ver=&" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.google.nl/" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs] "Tabs"="res://ieframe.dll/tabswelcome.htm" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-3850095883-2758723386-658833389-1001\Software\Microsoft\Internet Explorer\Approved Extensions\{2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kgdcapepedmpopjkmdbjnmmmfgllnfek deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\ZET\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Profiles found ==== Empty Chrome Cache ====================== C:\Users\ZET\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== No Java Cache Found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=93 folders=34 6913570 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Users\ZET\AppData\Local\Temp will be emptied at reboot C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\ZET\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on di 31-12-2013 at 10:39:23,92 ======================

Dag Kape, Hierbij het logbestandje. Logfile of random's system information tool 1.09 (written by random/random) Run by ZET at 2013-12-29 18:48:30 Microsoft Windows 7 Ultimate Service Pack 1 System drive C: has 55 GB (50%) free of 110 GB Total RAM: 12286 MB (69% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:48:42, on 29-12-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.16428) Boot mode: Normal Running processes: C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe D:\Program Files (x86)\SABnzbd\SABnzbd.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe d:\Program Files (x86)\QuickTime\QTTask.exe C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files\trend micro\ZET.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Google R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O1 - Hosts: [Ewido.TrackingCookie.Googleadservices] O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe" O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [QuickTime Task] "d:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKCU\..\Run: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - .DEFAULT User Startup: RUN.CMD (User 'Default user') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Sandboxie Service (SbieSvc) - Sandboxie Holdings, LLC - C:\Program Files\Sandboxie\SbieSvc.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) - Check Point Software Technologies, Ltd. - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe -- End of file - 9020 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup "C:\Program Files\Sandboxie\SbieSvc.exe" C:\Windows\system32\svchost.exe -k NetworkService "C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe" -service atieclxx "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files\Sandboxie\SbieCtrl.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe" "taskhost.exe" "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui "C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe" C:\Windows\system32\SearchIndexer.exe /Embedding C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-ae810033-e5d7-4344-b228-45cb722583af -SystemEventPortName:HostProcess-c81e905c-d74d-4840-8b88-7d5bf63f6f88 -IoCancelEventPortName:HostProcess-80558e89-d0ae-4c4c-a49b-adfa8eaec086 -NonStateChangingEventPortName:HostProcess-637d167a-686a-45a4-a8b9-676d9e66503d -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:fd03e180-5f93-4beb-831e-e557c96fe815 -DeviceGroupId:WpdFsGroup C:\Windows\System32\svchost.exe -k secsvcs "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe" C:\Windows\system32\svchost.exe -k imgsvc "taskhost.exe" "D:\Program Files (x86)\SABnzbd\SABnzbd.exe" "D:\Program Files (x86)\SABnzbd\SABnzbd.exe" "C:\Program Files\Sandboxie\SbieSvc.exe" Sandboxie_GuiProxy_00000001,1120 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="2324.0.975669937\1684371587" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,3,12,22 --reduce-gpu-sandbox --gpu-vendor-id=0x1002 --gpu-device-id=0x9442 --gpu-driver-vendor="ATI Technologies Inc." --gpu-driver-version=8.632.1.2000 --ignored=" --type=renderer " /prefetch:822062411 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --instant-process --disable-html-notifications --channel="2324.1.1100140650\1458390922" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2324.2.410725047\1613930434" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2324.3.1465196383\305433153" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="2324.4.299564902\404299903" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="2324.5.1157439389\2134341952" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --extension-process --renderer-print-preview --disable-html-notifications --channel="2324.6.5010933\1543730293" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2324.8.705406114\2113927252" /prefetch:673131151 "d:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "D:\Program Files\Adobe Photoshop CS5 (64 Bit)\Photoshop.exe" "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" "-launchedbycsxs" "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2324.25.594600551\778995175" /prefetch:673131151 "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=nl --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/CookieRetentionPriorityStudy/ExperimentOn/DeferBackgroundExtensionCreation/RateLimited/ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group6 pct:10e stable:pp1 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/OmniboxBundledExperimentV1/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_71/UMA-Uniformity-Trial-10-Percent/group_02/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_12/UMA-Uniformity-Trial-50-Percent/group_01/" --enable-threaded-compositing --renderer-print-preview --disable-html-notifications --channel="2324.27.1688838630\1750148145" /prefetch:673131151 "C:\Users\ZET\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe "C:\Windows\system32\SearchFilterHost.exe" 0 520 524 532 65536 528 ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-26 1372864] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-26 1138536] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-26 1372864] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-26 1138536] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2013-10-16 759496] "DAEMON Tools Lite"=D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-10-28 3675352] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-26 3764024] "ZoneAlarm"=C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [2013-12-16 73832] "AdobeCS5ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992] "SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] "APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-04-21 59720] "GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072] "QuickTime Task"=d:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=0 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 "NoResolveSearch"=1 "NoResolveTrack"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "VIDC.LAGS"=lagarith.dll "VIDC.X264"=x264vfw64.dll "VIDC.XVID"=xvidvfw.dll "VIDC.FFDS"=ff_vfw.dll "msacm.ac3acm"=ac3acm.acm "msacm.l3codecp"=l3codecp.acm ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-12-29 18:48:30 ----D---- C:\rsit 2013-12-29 18:48:30 ----D---- C:\Program Files\trend micro 2013-12-29 16:44:25 ----D---- C:\ProgramData\TEMP 2013-12-29 16:36:22 ----D---- C:\Users\ZET\AppData\Roaming\MPC-HC 2013-12-29 16:35:28 ----A---- C:\Windows\system32\ff_vfw.dll 2013-12-29 16:35:25 ----A---- C:\Windows\SYSWOW64\lagarith.dll 2013-12-29 16:35:25 ----A---- C:\Windows\system32\x264vfw64.dll 2013-12-29 16:35:25 ----A---- C:\Windows\system32\lagarith.dll 2013-12-29 16:35:24 ----A---- C:\Windows\SYSWOW64\xvidvfw.dll 2013-12-29 16:35:24 ----A---- C:\Windows\SYSWOW64\xvidcore.dll 2013-12-29 16:35:24 ----A---- C:\Windows\SYSWOW64\x264vfw.dll 2013-12-29 16:35:24 ----A---- C:\Windows\system32\xvidvfw.dll 2013-12-29 16:35:24 ----A---- C:\Windows\system32\xvidcore.dll 2013-12-29 16:35:23 ----A---- C:\Windows\SYSWOW64\unrar.dll 2013-12-29 16:35:23 ----A---- C:\Windows\system32\unrar64.dll 2013-12-29 16:35:19 ----A---- C:\Windows\SYSWOW64\ff_vfw.dll 2013-12-29 16:35:17 ----D---- C:\Program Files (x86)\K-Lite Codec Pack 2013-12-29 16:32:31 ----D---- C:\ProgramData\Apple Computer 2013-12-29 16:26:39 ----D---- C:\ProgramData\QuickTime 2013-12-29 15:38:09 ----D---- C:\Softwarenetz 2013-12-29 15:08:38 ----A---- C:\Windows\snui.exe 2013-12-29 14:48:27 ----D---- C:\Program Files\Unlocker 2013-12-29 14:25:58 ----D---- C:\ProgramData\Spotnet 2013-12-29 14:25:58 ----D---- C:\Program Files (x86)\Spotnet 2013-12-29 14:18:39 ----D---- C:\Users\ZET\AppData\Roaming\Foxit Software 2013-12-29 13:14:46 ----D---- C:\Users\ZET\AppData\Roaming\Foxit Advanced PDF Editor 2013-12-29 13:14:46 ----D---- C:\ProgramData\Foxit Advanced PDF Editor 2013-12-29 13:14:46 ----D---- C:\ProgramData\Aspell 2013-12-29 13:13:08 ----D---- C:\Users\ZET\AppData\Roaming\Google 2013-12-29 13:06:15 ----D---- C:\ProgramData\Google 2013-12-29 13:06:05 ----D---- C:\Program Files (x86)\GUM35D.tmp 2013-12-29 12:37:34 ----D---- C:\Users\ZET\AppData\Roaming\ePaperPress 2013-12-29 11:19:08 ----D---- C:\Users\ZET\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2013-12-29 11:19:08 ----D---- C:\Users\ZET\AppData\Roaming\Adobe Mini Bridge CS5 2013-12-28 15:34:47 ----D---- C:\ProgramData\Nikon 2013-12-28 15:26:08 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-12-28 15:26:06 ----D---- C:\Windows\system32\Macromed 2013-12-28 15:11:46 ----D---- C:\Program Files (x86)\Microsoft Works 2013-12-28 15:11:10 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 2013-12-28 15:10:54 ----D---- C:\Windows\PCHEALTH 2013-12-28 15:08:46 ----D---- C:\Program Files\Microsoft Office 2013-12-28 15:08:26 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8 2013-12-28 15:07:36 ----D---- C:\Program Files (x86)\Microsoft Office 2013-12-28 15:06:35 ----RHD---- C:\MSOCache 2013-12-28 14:41:47 ----D---- C:\ProgramData\Microsoft Help 2013-12-28 14:33:25 ----D---- C:\ProgramData\boost_interprocess 2013-12-28 14:32:51 ----D---- C:\ProgramData\Printer Icons 2013-12-28 14:26:36 ----D---- C:\Windows\system32\appmgmt 2013-12-28 14:17:54 ----D---- C:\Users\ZET\AppData\Roaming\Nikon 2013-12-28 14:17:47 ----D---- C:\Program Files (x86)\Nikon 2013-12-28 13:39:48 ----D---- C:\Program Files\Common Files\Nikon 2013-12-28 13:38:07 ----H---- C:\ProgramData\PKP_DLbx.DAT 2013-12-28 13:38:07 ----D---- C:\ProgramData\Ultima_T15 2013-12-28 13:38:07 ----D---- C:\ProgramData\EnterNHelp 2013-12-28 13:36:29 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI 2013-12-28 13:33:29 ----D---- C:\Program Files (x86)\Microsoft.NET 2013-12-28 13:13:13 ----D---- C:\Users\ZET\AppData\Roaming\Apple Computer 2013-12-28 13:08:05 ----D---- C:\Windows\WICCodecs 2013-12-28 12:55:36 ----A---- C:\Windows\SurCode.INI 2013-12-28 12:55:35 ----D---- C:\Users\ZET\AppData\Roaming\PACE Anti-Piracy 2013-12-28 12:55:35 ----D---- C:\ProgramData\PACE Anti-Piracy 2013-12-28 12:55:35 ----D---- C:\Program Files\Common Files\PACE Anti-Piracy 2013-12-28 12:38:38 ----D---- C:\ProgramData\Apple 2013-12-28 12:38:38 ----D---- C:\Program Files (x86)\Apple Software Update 2013-12-28 12:30:03 ----D---- C:\Users\ZET\AppData\Roaming\dvdcss 2013-12-28 12:26:23 ----D---- C:\Users\ZET\AppData\Roaming\vlc 2013-12-28 12:01:07 ----D---- C:\Users\ZET\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1 2013-12-28 11:56:28 ----D---- C:\ProgramData\regid.1986-12.com.adobe 2013-12-28 11:45:18 ----D---- C:\ProgramData\ALM 2013-12-28 11:36:01 ----D---- C:\Program Files (x86)\Adobe Media Player 2013-12-28 11:35:46 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys 2013-12-28 11:35:46 ----N---- C:\Windows\system32\drivers\cdralw2k.sys 2013-12-28 11:35:46 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys 2013-12-28 11:35:46 ----D---- C:\Program Files (x86)\My Company Name 2013-12-28 11:34:16 ----D---- C:\Program Files\Common Files\Adobe 2013-12-28 11:34:15 ----D---- C:\Program Files\Adobe 2013-12-28 11:33:43 ----D---- C:\Windows\SYSWOW64\Macromed 2013-12-28 11:33:37 ----D---- C:\Program Files (x86)\Adobe 2013-12-28 11:27:07 ----D---- C:\Users\ZET\AppData\Roaming\Macromedia 2013-12-28 11:27:06 ----D---- C:\ProgramData\Adobe 2013-12-27 13:34:50 ----RD---- C:\Sandbox 2013-12-27 13:34:29 ----D---- C:\Users\ZET\AppData\Roaming\WinRAR 2013-12-27 13:24:08 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys 2013-12-27 13:24:05 ----D---- C:\Users\ZET\AppData\Roaming\DAEMON Tools Lite 2013-12-27 13:23:31 ----D---- C:\ProgramData\DAEMON Tools Lite 2013-12-27 13:20:50 ----A---- C:\Windows\Sandboxie.ini 2013-12-27 13:20:41 ----D---- C:\Program Files\Sandboxie 2013-12-26 21:20:22 ----D---- C:\Users\ZET\AppData\Roaming\Thunderbird 2013-12-26 21:20:22 ----D---- C:\Users\ZET\AppData\Roaming\Mozilla 2013-12-26 21:20:17 ----D---- C:\ProgramData\Mozilla 2013-12-26 21:20:16 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2013-12-26 21:20:13 ----D---- C:\Program Files (x86)\Mozilla Thunderbird 2013-12-26 21:16:54 ----D---- C:\Users\ZET\AppData\Roaming\Malwarebytes 2013-12-26 21:16:41 ----D---- C:\ProgramData\Malwarebytes 2013-12-26 21:16:39 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-12-26 21:16:39 ----A---- C:\Windows\system32\drivers\mbam.sys 2013-12-26 21:15:46 ----D---- C:\Program Files (x86)\Check Point Software Technologies LTD 2013-12-26 21:15:44 ----D---- C:\Program Files (x86)\Mozilla Firefox 2013-12-26 21:15:43 ----D---- C:\Users\ZET\AppData\Roaming\Check Point Software Technologies LTD 2013-12-26 21:15:39 ----D---- C:\Program Files (x86)\CheckPoint 2013-12-26 21:15:17 ----D---- C:\ProgramData\CheckPoint 2013-12-26 21:15:03 ----SHD---- C:\Windows\Installer 2013-12-26 21:14:58 ----D---- C:\Users\ZET\AppData\Roaming\AVAST Software 2013-12-26 21:14:16 ----A---- C:\Windows\system32\drivers\aswstm.sys 2013-12-26 21:14:15 ----A---- C:\Windows\system32\drivers\aswVmm.sys 2013-12-26 21:14:15 ----A---- C:\Windows\system32\drivers\aswSnx.sys 2013-12-26 21:14:15 ----A---- C:\Windows\system32\drivers\aswRvrt.sys 2013-12-26 21:14:14 ----A---- C:\Windows\system32\drivers\aswSP.sys 2013-12-26 21:14:14 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys 2013-12-26 21:14:13 ----A---- C:\Windows\system32\drivers\aswRdr2.sys 2013-12-26 21:14:12 ----A---- C:\Windows\system32\aswBoot.exe 2013-12-26 21:14:10 ----A---- C:\Windows\avastSS.scr 2013-12-26 21:13:43 ----D---- C:\Program Files\AVAST Software 2013-12-26 21:13:19 ----D---- C:\ProgramData\AVAST Software 2013-12-26 21:10:47 ----D---- C:\Program Files (x86)\Google 2013-12-26 21:04:14 ----A---- C:\Windows\system32\wups2.dll 2013-12-26 21:04:14 ----A---- C:\Windows\system32\wucltux.dll 2013-12-26 21:04:14 ----A---- C:\Windows\system32\wuauclt.exe 2013-12-26 21:04:13 ----A---- C:\Windows\system32\wuaueng.dll 2013-12-26 21:04:03 ----A---- C:\Windows\system32\wups.dll 2013-12-26 21:04:03 ----A---- C:\Windows\system32\wudriver.dll 2013-12-26 21:04:03 ----A---- C:\Windows\system32\wuapi.dll 2013-12-26 21:03:56 ----A---- C:\Windows\system32\wuwebv.dll 2013-12-26 21:03:56 ----A---- C:\Windows\system32\wuapp.exe 2013-12-26 21:01:02 ----D---- C:\Users\ZET\AppData\Roaming\Adobe 2013-12-26 21:00:52 ----D---- C:\Users\ZET\AppData\Roaming\Identities 2013-12-26 21:00:36 ----SD---- C:\Users\ZET\AppData\Roaming\Microsoft 2013-12-26 21:00:36 ----D---- C:\Users\ZET\AppData\Roaming\Media Center Programs 2013-12-26 20:58:51 ----SHD---- C:\Recovery 2013-12-26 20:58:51 ----SHD---- C:\ProgramData\Sjablonen 2013-12-26 20:58:51 ----SHD---- C:\ProgramData\Menu Start 2013-12-26 20:58:51 ----SHD---- C:\ProgramData\Favorieten 2013-12-26 20:58:51 ----SHD---- C:\ProgramData\Documenten 2013-12-26 20:58:51 ----SHD---- C:\ProgramData\Bureaublad 2013-12-26 20:51:20 ----D---- C:\Windows\Prefetch 2013-12-26 20:50:30 ----ASH---- C:\pagefile.sys 2013-12-26 20:50:28 ----SHD---- C:\System Volume Information 2013-12-26 20:49:30 ----D---- C:\Windows\Panther 2013-12-18 18:33:23 ----A---- C:\Windows\SYSWOW64\elshyph.dll 2013-12-18 18:33:23 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2013-12-18 18:33:22 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-12-18 18:33:22 ----A---- C:\Windows\SYSWOW64\jsIntl.dll 2013-12-18 18:33:22 ----A---- C:\Windows\system32\elshyph.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\msrating.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\msls31.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-12-18 18:33:21 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\wextract.exe 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\url.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\licmgr10.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\inseng.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\iexpress.exe 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\icardie.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2013-12-18 18:33:20 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\webcheck.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\pngfilt.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\occache.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\mshta.exe 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-12-18 18:33:19 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\mshtmler.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\imgutil.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\iepeers.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2013-12-18 18:33:18 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll 2013-12-18 18:33:18 ----A---- C:\Windows\system32\jsIntl.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\wininet.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\urlmon.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\SetIEInstalledDate.exe 2013-12-18 18:33:17 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-12-18 18:33:17 ----A---- C:\Windows\system32\msrating.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\msls31.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\msfeedssync.exe 2013-12-18 18:33:17 ----A---- C:\Windows\system32\msfeedsbs.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\jsproxy.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\jscript9diag.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\iertutil.dll 2013-12-18 18:33:17 ----A---- C:\Windows\system32\IEAdvpack.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\mshtmler.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\jscript9.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\ieui.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\iesysprep.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\iesetup.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\iernonce.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\ieframe.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\ieapfltr.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\ieapfltr.dat 2013-12-18 18:33:16 ----A---- C:\Windows\system32\ie4uinit.exe 2013-12-18 18:33:16 ----A---- C:\Windows\system32\icardie.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\dxtrans.dll 2013-12-18 18:33:16 ----A---- C:\Windows\system32\dxtmsft.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\wextract.exe 2013-12-18 18:33:15 ----A---- C:\Windows\system32\webcheck.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\vbscript.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\url.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\mshtmlmedia.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\mshtmled.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\msfeeds.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\licmgr10.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\inseng.dll 2013-12-18 18:33:15 ----A---- C:\Windows\system32\iexpress.exe 2013-12-18 18:33:15 ----A---- C:\Windows\system32\iedkcs32.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\pngfilt.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\occache.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\MshtmlDac.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\mshtml.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\mshta.exe 2013-12-18 18:33:14 ----A---- C:\Windows\system32\jscript.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\imgutil.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\ieUnatt.exe 2013-12-18 18:33:14 ----A---- C:\Windows\system32\iepeers.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\ieetwproxystub.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2013-12-18 18:33:14 ----A---- C:\Windows\system32\ieetwcollector.exe 2013-12-18 18:31:26 ----A---- C:\Windows\SYSWOW64\fsutil.exe 2013-12-18 18:31:26 ----A---- C:\Windows\SYSWOW64\esent.dll 2013-12-18 18:31:26 ----A---- C:\Windows\system32\fsutil.exe 2013-12-18 18:31:26 ----A---- C:\Windows\system32\esent.dll 2013-12-18 18:31:26 ----A---- C:\Windows\system32\drivers\nvstor.sys 2013-12-18 18:31:26 ----A---- C:\Windows\system32\drivers\nvraid.sys 2013-12-18 18:31:26 ----A---- C:\Windows\system32\drivers\iaStorV.sys 2013-12-18 18:31:26 ----A---- C:\Windows\system32\drivers\amdxata.sys 2013-12-18 18:31:26 ----A---- C:\Windows\system32\drivers\amdsata.sys 2013-12-18 18:31:15 ----A---- C:\Windows\winhlp32.exe 2013-12-18 18:31:15 ----A---- C:\Windows\SYSWOW64\ftsrch.dll 2013-12-18 18:31:15 ----A---- C:\Windows\SYSWOW64\ftlx041e.dll 2013-12-18 18:31:15 ----A---- C:\Windows\SYSWOW64\ftlx0411.dll 2013-12-18 18:31:15 ----A---- C:\Windows\system32\ftsrch.dll 2013-12-18 18:31:15 ----A---- C:\Windows\system32\ftlx041e.dll 2013-12-18 18:31:15 ----A---- C:\Windows\system32\ftlx0411.dll 2013-12-18 18:31:08 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll 2013-12-18 18:31:08 ----A---- C:\Windows\system32\WMPhoto.dll 2013-12-18 18:31:00 ----A---- C:\Windows\SYSWOW64\tzres.dll 2013-12-18 18:31:00 ----A---- C:\Windows\system32\tzres.dll 2013-12-18 18:30:42 ----A---- C:\Windows\system32\win32k.sys 2013-12-18 18:30:34 ----A---- C:\Windows\system32\authui.dll 2013-12-18 18:30:33 ----A---- C:\Windows\SYSWOW64\SmartcardCredentialProvider.dll 2013-12-18 18:30:33 ----A---- C:\Windows\SYSWOW64\credui.dll 2013-12-18 18:30:33 ----A---- C:\Windows\SYSWOW64\authui.dll 2013-12-18 18:30:33 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll 2013-12-18 18:30:33 ----A---- C:\Windows\system32\credui.dll 2013-12-18 18:30:24 ----A---- C:\Windows\SYSWOW64\imagehlp.dll 2013-12-18 18:30:24 ----A---- C:\Windows\system32\imagehlp.dll 2013-12-18 18:30:17 ----A---- C:\Windows\SYSWOW64\wscript.exe 2013-12-18 18:30:17 ----A---- C:\Windows\SYSWOW64\scrrun.dll 2013-12-18 18:30:17 ----A---- C:\Windows\SYSWOW64\cscript.exe 2013-12-18 18:30:17 ----A---- C:\Windows\system32\wscript.exe 2013-12-18 18:30:17 ----A---- C:\Windows\system32\scrrun.dll 2013-12-18 18:30:17 ----A---- C:\Windows\system32\cscript.exe 2013-12-18 18:30:10 ----A---- C:\Windows\SYSWOW64\msieftp.dll 2013-12-18 18:30:10 ----A---- C:\Windows\system32\msieftp.dll 2013-12-18 18:30:02 ----A---- C:\Windows\SYSWOW64\mswsock.dll 2013-12-18 18:30:02 ----A---- C:\Windows\system32\mswsock.dll 2013-12-18 18:30:02 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-12-18 18:30:02 ----A---- C:\Windows\system32\drivers\netio.sys 2013-12-18 18:30:02 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2013-12-18 18:29:55 ----A---- C:\Windows\system32\drivers\portcls.sys 2013-12-18 18:29:55 ----A---- C:\Windows\system32\drivers\drmk.sys 2013-12-18 18:29:25 ----A---- C:\Windows\system32\wow64.dll 2013-12-18 18:29:25 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-12-18 18:29:25 ----A---- C:\Windows\system32\csrsrv.dll 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\user.exe 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\appidapi.dll 2013-12-18 18:29:24 ----A---- C:\Windows\SYSWOW64\apisetschema.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\tdh.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\smss.exe 2013-12-18 18:29:24 ----A---- C:\Windows\system32\ntdll.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\drivers\appid.sys 2013-12-18 18:29:24 ----A---- C:\Windows\system32\appidsvc.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\appidpolicyconverter.exe 2013-12-18 18:29:24 ----A---- C:\Windows\system32\appidcertstorecheck.exe 2013-12-18 18:29:24 ----A---- C:\Windows\system32\appidapi.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\apisetschema.dll 2013-12-18 18:29:24 ----A---- C:\Windows\system32\advapi32.dll 2013-12-18 18:29:23 ----A---- C:\Windows\SYSWOW64\tdh.dll 2013-12-18 18:29:23 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-12-18 18:29:23 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-12-18 18:29:23 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2013-12-18 18:29:23 ----A---- C:\Windows\SYSWOW64\advapi32.dll 2013-12-18 18:29:12 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2013-12-18 18:29:12 ----A---- C:\Windows\system32\gdi32.dll 2013-12-18 18:29:05 ----A---- C:\Windows\system32\drivers\dxgmms1.sys 2013-12-18 18:29:05 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2013-12-18 18:29:05 ----A---- C:\Windows\system32\cdd.dll 2013-12-18 18:28:59 ----A---- C:\Windows\system32\drivers\afd.sys 2013-12-18 18:28:46 ----A---- C:\Windows\system32\winsrv.dll 2013-12-18 18:28:46 ----A---- C:\Windows\system32\KernelBase.dll 2013-12-18 18:28:46 ----A---- C:\Windows\system32\kernel32.dll 2013-12-18 18:28:46 ----A---- C:\Windows\system32\conhost.exe 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-12-18 18:28:44 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll 2013-12-18 18:28:44 ----A---- C:\Windows\SYSWOW64\KernelBase.dll 2013-12-18 18:28:44 ----A---- C:\Windows\SYSWOW64\kernel32.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-12-18 18:28:43 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-12-18 18:28:30 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2013-12-18 18:28:30 ----A---- C:\Windows\SYSWOW64\secur32.dll 2013-12-18 18:28:30 ----A---- C:\Windows\SYSWOW64\schannel.dll 2013-12-18 18:28:30 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\sspisrv.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\sspicli.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\secur32.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\schannel.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\ncrypt.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\lsass.exe 2013-12-18 18:28:30 ----A---- C:\Windows\system32\lsasrv.dll 2013-12-18 18:28:30 ----A---- C:\Windows\system32\drivers\ksecpkg.sys 2013-12-18 18:28:30 ----A---- C:\Windows\system32\drivers\ksecdd.sys 2013-12-18 18:28:30 ----A---- C:\Windows\system32\drivers\cng.sys 2013-12-18 18:28:19 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-12-18 18:28:19 ----A---- C:\Windows\system32\crypt32.dll 2013-12-18 18:27:38 ----A---- C:\Windows\SYSWOW64\shdocvw.dll 2013-12-18 18:27:38 ----A---- C:\Windows\system32\shdocvw.dll 2013-12-18 18:27:37 ----A---- C:\Windows\SYSWOW64\shell32.dll 2013-12-18 18:27:36 ----A---- C:\Windows\system32\shell32.dll 2013-12-18 18:27:22 ----A---- C:\Windows\system32\drivers\usbcir.sys 2013-12-18 18:27:15 ----A---- C:\Windows\system32\drivers\Wdf01000.sys 2013-12-18 18:27:09 ----A---- C:\Windows\system32\comctl32.dll 2013-12-18 18:27:08 ----A---- C:\Windows\SYSWOW64\comctl32.dll 2013-12-18 18:26:42 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2013-12-18 18:26:42 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2013-12-18 18:26:42 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2013-12-18 18:26:42 ----A---- C:\Windows\system32\wintrust.dll 2013-12-18 18:26:42 ----A---- C:\Windows\system32\cryptsvc.dll 2013-12-18 18:26:42 ----A---- C:\Windows\system32\cryptnet.dll 2013-12-18 18:26:25 ----A---- C:\Windows\system32\drivers\hidparse.sys 2013-12-18 18:26:25 ----A---- C:\Windows\system32\drivers\hidclass.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbuhci.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbport.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbohci.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbhub.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbehci.sys 2013-12-18 18:26:11 ----A---- C:\Windows\system32\drivers\usbd.sys 2013-12-18 18:26:10 ----A---- C:\Windows\system32\drivers\usbccgp.sys 2013-12-18 18:26:03 ----A---- C:\Windows\SYSWOW64\nshwfp.dll 2013-12-18 18:26:03 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL 2013-12-18 18:26:03 ----A---- C:\Windows\system32\nshwfp.dll 2013-12-18 18:26:03 ----A---- C:\Windows\system32\IKEEXT.DLL 2013-12-18 18:26:03 ----A---- C:\Windows\system32\FWPUCLNT.DLL 2013-12-18 18:26:03 ----A---- C:\Windows\system32\BFE.DLL 2013-12-18 18:25:57 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2013-12-18 18:25:43 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-12-18 18:25:43 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-12-18 18:25:25 ----A---- C:\Windows\system32\drivers\ataport.sys 2013-12-18 18:25:18 ----A---- C:\Windows\system32\scavengeui.dll 2013-12-18 18:25:11 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2013-12-18 18:25:11 ----A---- C:\Windows\system32\rpcrt4.dll 2013-12-18 18:24:57 ----A---- C:\Windows\system32\atmfd.dll 2013-12-18 18:24:56 ----A---- C:\Windows\SYSWOW64\lpk.dll 2013-12-18 18:24:56 ----A---- C:\Windows\SYSWOW64\fontsub.dll 2013-12-18 18:24:56 ----A---- C:\Windows\SYSWOW64\dciman32.dll 2013-12-18 18:24:56 ----A---- C:\Windows\SYSWOW64\atmlib.dll 2013-12-18 18:24:56 ----A---- C:\Windows\SYSWOW64\atmfd.dll 2013-12-18 18:24:56 ----A---- C:\Windows\system32\lpk.dll 2013-12-18 18:24:56 ----A---- C:\Windows\system32\fontsub.dll 2013-12-18 18:24:56 ----A---- C:\Windows\system32\dciman32.dll 2013-12-18 18:24:56 ----A---- C:\Windows\system32\atmlib.dll 2013-12-18 18:24:48 ----A---- C:\Windows\SYSWOW64\wmploc.DLL 2013-12-18 18:24:47 ----A---- C:\Windows\SYSWOW64\wmp.dll 2013-12-18 18:24:47 ----A---- C:\Windows\system32\wmploc.DLL 2013-12-18 18:24:47 ----A---- C:\Windows\system32\wmp.dll 2013-12-18 18:24:35 ----A---- C:\Windows\SYSWOW64\WebClnt.dll 2013-12-18 18:24:35 ----A---- C:\Windows\SYSWOW64\davclnt.dll 2013-12-18 18:24:35 ----A---- C:\Windows\system32\WebClnt.dll 2013-12-18 18:24:35 ----A---- C:\Windows\system32\drivers\mrxdav.sys 2013-12-18 18:24:35 ----A---- C:\Windows\system32\davclnt.dll 2013-12-18 18:24:29 ----A---- C:\Windows\SYSWOW64\qedit.dll 2013-12-18 18:24:29 ----A---- C:\Windows\system32\qedit.dll 2013-12-18 18:24:07 ----A---- C:\Windows\system32\drivers\ntfs.sys 2013-12-18 18:24:00 ----A---- C:\Windows\SYSWOW64\win32spl.dll 2013-12-18 18:24:00 ----A---- C:\Windows\system32\win32spl.dll 2013-12-18 18:23:36 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll 2013-12-18 18:23:36 ----A---- C:\Windows\system32\WindowsCodecs.dll 2013-12-18 18:23:21 ----A---- C:\Windows\SYSWOW64\DWrite.dll 2013-12-18 18:23:21 ----A---- C:\Windows\system32\DWrite.dll 2013-12-18 18:23:04 ----A---- C:\Windows\SYSWOW64\d3d11.dll 2013-12-18 18:23:04 ----A---- C:\Windows\system32\d3d11.dll 2013-12-18 18:22:32 ----A---- C:\Windows\system32\usp10.dll 2013-12-18 18:22:31 ----A---- C:\Windows\SYSWOW64\usp10.dll 2013-12-18 18:22:12 ----A---- C:\Windows\system32\wwansvc.dll 2013-12-18 18:22:12 ----A---- C:\Windows\system32\wwanprotdim.dll 2013-12-18 18:22:04 ----A---- C:\Windows\system32\certutil.exe 2013-12-18 18:22:04 ----A---- C:\Windows\system32\certenc.dll 2013-12-18 18:22:03 ----A---- C:\Windows\SYSWOW64\certutil.exe 2013-12-18 18:22:03 ----A---- C:\Windows\SYSWOW64\certenc.dll 2013-12-18 18:21:38 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll 2013-12-18 18:21:38 ----A---- C:\Windows\system32\cryptdlg.dll 2013-12-18 18:21:28 ----A---- C:\Windows\system32\drivers\usb8023.sys 2013-12-18 18:21:22 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL 2013-12-18 18:21:22 ----A---- C:\Windows\system32\WMVDECOD.DLL 2013-12-18 18:21:16 ----A---- C:\Windows\system32\drivers\fvevol.sys 2013-12-18 18:20:44 ----A---- C:\Windows\system32\consent.exe 2013-12-18 18:20:44 ----A---- C:\Windows\system32\appinfo.dll 2013-12-18 18:20:03 ----A---- C:\Windows\system32\taskhost.exe 2013-12-18 18:19:05 ----A---- C:\Windows\SYSWOW64\tcpmib.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\rpcss.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\nlasvc.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\nlaapi.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\netlogon.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\ncsi.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\gpsvc.dll 2013-12-18 18:19:05 ----A---- C:\Windows\system32\drivers\dfsc.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\svchost.exe 2013-12-18 18:19:04 ----A---- C:\Windows\system32\SessEnv.dll 2013-12-18 18:19:04 ----A---- C:\Windows\system32\rdpdd.dll 2013-12-18 18:19:04 ----A---- C:\Windows\system32\profsvc.dll 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\storport.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\srv2.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\srv.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\rdbss.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\drivers\mrxsmb.sys 2013-12-18 18:19:04 ----A---- C:\Windows\system32\cscdll.dll 2013-12-18 18:19:04 ----A---- C:\Windows\system32\cscapi.dll 2013-12-18 18:19:03 ----A---- C:\Windows\SYSWOW64\netlogon.dll 2013-12-18 18:19:02 ----A---- C:\Windows\SYSWOW64\sscore.dll 2013-12-18 18:19:02 ----A---- C:\Windows\system32\wpnpinst.exe 2013-12-18 18:19:02 ----A---- C:\Windows\system32\umrdp.dll 2013-12-18 18:19:02 ----A---- C:\Windows\system32\umpo.dll 2013-12-18 18:19:02 ----A---- C:\Windows\system32\srvsvc.dll 2013-12-18 18:19:02 ----A---- C:\Windows\system32\RDVGHelper.exe 2013-12-18 18:19:02 ----A---- C:\Windows\system32\rdpshell.exe 2013-12-18 18:19:02 ----A---- C:\Windows\system32\rdpinit.exe 2013-12-18 18:19:02 ----A---- C:\Windows\system32\PrintBrmUi.exe 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\tcpmonui.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\nlaapi.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\ncsi.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\gpprefcl.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\dot3msm.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\dot3gpclnt.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\dot3dlg.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\dot3api.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\Display.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\cscobj.dll 2013-12-18 18:19:01 ----A---- C:\Windows\SYSWOW64\appmgmts.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\tcpmonui.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\tcpmib.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\spoolsv.exe 2013-12-18 18:19:01 ----A---- C:\Windows\system32\localspl.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\inetpp.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\gpprefcl.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\drivers\ndisuio.sys 2013-12-18 18:19:01 ----A---- C:\Windows\system32\drivers\csc.sys 2013-12-18 18:19:01 ----A---- C:\Windows\system32\dot3svc.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\dot3msm.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\dot3gpclnt.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\Display.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\cscsvc.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\cscobj.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\CscMig.dll 2013-12-18 18:19:01 ----A---- C:\Windows\system32\appmgmts.dll 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\svchost.exe 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\SessEnv.dll 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\gpprnext.dll 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\gpapi.dll 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\cscdll.dll 2013-12-18 18:19:00 ----A---- C:\Windows\SYSWOW64\cscapi.dll 2013-12-18 18:19:00 ----A---- C:\Windows\system32\sysmain.dll 2013-12-18 18:19:00 ----A---- C:\Windows\system32\gpprnext.dll 2013-12-18 18:19:00 ----A---- C:\Windows\system32\drivers\vwifimp.sys 2013-12-18 18:19:00 ----A---- C:\Windows\system32\drivers\vwififlt.sys 2013-12-18 18:19:00 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS 2013-12-18 18:19:00 ----A---- C:\Windows\system32\drivers\rdyboost.sys 2013-12-18 18:18:59 ----A---- C:\Windows\system32\drivers\volsnap.sys 2013-12-18 18:18:35 ----A---- C:\Windows\SYSWOW64\Wpc.dll 2013-12-18 18:18:35 ----A---- C:\Windows\SYSWOW64\gameux.dll 2013-12-18 18:18:35 ----A---- C:\Windows\system32\Wpc.dll 2013-12-18 18:18:35 ----A---- C:\Windows\system32\gameux.dll 2013-12-18 18:18:18 ----A---- C:\Windows\SYSWOW64\dpnet.dll 2013-12-18 18:18:18 ----A---- C:\Windows\system32\dpnet.dll 2013-12-18 18:17:48 ----A---- C:\Windows\SYSWOW64\dnscmmc.dll 2013-12-18 18:17:48 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll 2013-12-18 18:17:48 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll 2013-12-18 18:17:48 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll 2013-12-18 18:17:48 ----A---- C:\Windows\system32\dnscmmc.dll 2013-12-18 18:17:48 ----A---- C:\Windows\system32\dhcpcsvc6.dll 2013-12-18 18:17:48 ----A---- C:\Windows\system32\dhcpcore6.dll 2013-12-18 18:17:48 ----A---- C:\Windows\system32\dhcpcore.dll 2013-12-18 18:17:18 ----A---- C:\Windows\SYSWOW64\msxml6.dll 2013-12-18 18:17:18 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2013-12-18 18:17:18 ----A---- C:\Windows\system32\msxml6.dll 2013-12-18 18:17:18 ----A---- C:\Windows\system32\msxml3.dll 2013-12-18 18:16:54 ----A---- C:\Windows\SYSWOW64\netevent.dll 2013-12-18 18:16:54 ----A---- C:\Windows\SYSWOW64\netcorehc.dll 2013-12-18 18:16:54 ----A---- C:\Windows\system32\netevent.dll 2013-12-18 18:16:54 ----A---- C:\Windows\system32\netcorehc.dll 2013-12-18 18:16:54 ----A---- C:\Windows\system32\iphlpsvc.dll 2013-12-18 18:16:54 ----A---- C:\Windows\system32\drivers\tcpipreg.sys 2013-12-18 18:16:45 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2013-12-18 18:16:45 ----A---- C:\Windows\system32\kerberos.dll 2013-12-18 18:16:12 ----A---- C:\Windows\SYSWOW64\srclient.dll 2013-12-18 18:16:12 ----A---- C:\Windows\system32\srcore.dll 2013-12-18 18:16:00 ----A---- C:\Windows\system32\OxpsConverter.exe 2013-12-18 18:15:34 ----A---- C:\Windows\SYSWOW64\synceng.dll 2013-12-18 18:15:33 ----A---- C:\Windows\system32\synceng.dll 2013-12-18 18:15:26 ----A---- C:\Windows\system32\wow64cpu.dll 2013-12-18 18:15:25 ----A---- C:\Windows\system32\wow64win.dll 2013-12-18 18:15:25 ----A---- C:\Windows\system32\ntvdm64.dll 2013-12-18 18:15:03 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2013-12-18 18:15:03 ----A---- C:\Windows\system32\msxml3r.dll 2013-12-18 18:14:56 ----A---- C:\Windows\system32\drivers\RNDISMP.sys 2013-12-18 18:14:56 ----A---- C:\Windows\system32\drivers\ndis.sys 2013-12-18 18:14:39 ----A---- C:\Windows\SYSWOW64\qdvd.dll 2013-12-18 18:14:39 ----A---- C:\Windows\system32\qdvd.dll 2013-12-18 18:14:22 ----A---- C:\Windows\SYSWOW64\netapi32.dll 2013-12-18 18:14:22 ----A---- C:\Windows\SYSWOW64\browcli.dll 2013-12-18 18:14:22 ----A---- C:\Windows\system32\netapi32.dll 2013-12-18 18:14:22 ----A---- C:\Windows\system32\browser.dll 2013-12-18 18:14:22 ----A---- C:\Windows\system32\browcli.dll 2013-12-18 18:14:16 ----A---- C:\Windows\SYSWOW64\msi.dll 2013-12-18 18:14:16 ----A---- C:\Windows\system32\msi.dll 2013-12-18 18:14:08 ----A---- C:\Windows\SYSWOW64\cdosys.dll 2013-12-18 18:14:08 ----A---- C:\Windows\system32\cdosys.dll 2013-12-18 18:13:29 ----A---- C:\Windows\system32\drivers\partmgr.sys 2013-12-18 18:13:24 ----A---- C:\Windows\system32\drivers\rdpwd.sys 2013-12-18 18:13:18 ----A---- C:\Windows\system32\WUDFx.dll 2013-12-18 18:13:18 ----A---- C:\Windows\system32\WUDFSvc.dll 2013-12-18 18:13:18 ----A---- C:\Windows\system32\WUDFPlatform.dll 2013-12-18 18:13:18 ----A---- C:\Windows\system32\WUDFHost.exe 2013-12-18 18:13:18 ----A---- C:\Windows\system32\WUDFCoinstaller.dll 2013-12-18 18:13:18 ----A---- C:\Windows\system32\drivers\WUDFRd.sys 2013-12-18 18:13:18 ----A---- C:\Windows\system32\drivers\WUDFPf.sys 2013-12-18 18:13:09 ----A---- C:\Windows\system32\Wdfres.dll 2013-12-18 18:13:09 ----A---- C:\Windows\system32\drivers\WdfLdr.sys 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2013-12-18 18:12:30 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2013-12-18 18:12:30 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll 2013-12-18 18:12:30 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll 2013-12-18 18:12:30 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll 2013-12-18 18:12:30 ----A---- C:\Windows\system32\XpsPrint.dll 2013-12-18 18:12:30 ----A---- C:\Windows\system32\XpsGdiConverter.dll 2013-12-18 18:12:30 ----A---- C:\Windows\system32\msmpeg2vdec.dll 2013-12-18 18:12:30 ----A---- C:\Windows\system32\d2d1.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d3d10core.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d3d10.dll 2013-12-18 18:12:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\WindowsCodecsExt.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\FntCache.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\dxgi.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\d3d10warp.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\d3d10core.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\d3d10_1core.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\d3d10_1.dll 2013-12-18 18:12:29 ----A---- C:\Windows\system32\d3d10.dll 2013-12-18 18:12:28 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll 2013-12-18 18:12:28 ----A---- C:\Windows\SYSWOW64\dxgi.dll 2013-12-18 18:12:28 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll 2013-12-18 18:12:28 ----A---- C:\Windows\system32\UIAnimation.dll 2013-12-18 18:12:28 ----A---- C:\Windows\system32\d3d10level9.dll 2013-12-18 18:12:07 ----A---- C:\Windows\system32\rdrmemptylst.exe 2013-12-18 18:12:07 ----A---- C:\Windows\system32\rdpwsx.dll 2013-12-18 18:12:07 ----A---- C:\Windows\system32\rdpcorekmts.dll 2013-12-18 18:11:28 ----A---- C:\Windows\SYSWOW64\msvcrt.dll 2013-12-18 18:11:28 ----A---- C:\Windows\system32\msvcrt.dll 2013-12-18 18:11:23 ----A---- C:\Windows\SYSWOW64\wmi.dll 2013-12-18 18:11:23 ----A---- C:\Windows\system32\wmi.dll 2013-12-18 18:11:23 ----A---- C:\Windows\system32\drivers\fs_rec.sys 2013-12-18 18:11:17 ----A---- C:\Windows\splwow64.exe 2013-12-18 18:10:25 ----A---- C:\Windows\SYSWOW64\ntshrui.dll 2013-12-18 18:10:25 ----A---- C:\Windows\system32\ntshrui.dll 2013-12-18 18:10:05 ----A---- C:\Windows\SYSWOW64\quartz.dll 2013-12-18 18:10:05 ----A---- C:\Windows\system32\quartz.dll 2013-12-18 18:09:54 ----A---- C:\Windows\SYSWOW64\rdpcore.dll 2013-12-18 18:09:54 ----A---- C:\Windows\system32\rdpcore.dll 2013-12-18 18:09:54 ----A---- C:\Windows\system32\drivers\tdtcp.sys 2013-12-18 18:09:40 ----A---- C:\Windows\SYSWOW64\EncDec.dll 2013-12-18 18:09:40 ----A---- C:\Windows\system32\EncDec.dll 2013-12-18 18:09:31 ----A---- C:\Windows\system32\drivers\modem.sys 2013-12-18 18:08:43 ----A---- C:\Windows\SYSWOW64\tsgqec.dll 2013-12-18 18:08:43 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll 2013-12-18 18:08:43 ----A---- C:\Windows\SYSWOW64\mstscax.dll 2013-12-18 18:08:43 ----A---- C:\Windows\SYSWOW64\mstsc.exe 2013-12-18 18:08:43 ----A---- C:\Windows\SYSWOW64\aaclient.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\TSWbPrxy.exe 2013-12-18 18:08:43 ----A---- C:\Windows\system32\rdpudd.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\rdpendp_winip.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\rdpcorets.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\mstsc.exe 2013-12-18 18:08:43 ----A---- C:\Windows\system32\MsRdpWebAccess.dll 2013-12-18 18:08:43 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys 2013-12-18 18:08:42 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll 2013-12-18 18:08:42 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\wksprtPS.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\wksprt.exe 2013-12-18 18:08:42 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2013-12-18 18:08:42 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\tsgqec.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\mstscax.dll 2013-12-18 18:08:42 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys 2013-12-18 18:08:42 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys 2013-12-18 18:08:42 ----A---- C:\Windows\system32\drivers\terminpt.sys 2013-12-18 18:08:42 ----A---- C:\Windows\system32\aaclient.dll 2013-12-18 18:08:34 ----A---- C:\Windows\system32\webio.dll 2013-12-18 18:08:33 ----A---- C:\Windows\SYSWOW64\webio.dll 2013-12-18 18:08:28 ----A---- C:\Windows\SYSWOW64\packager.dll 2013-12-18 18:08:28 ----A---- C:\Windows\system32\packager.dll 2013-12-18 18:08:23 ----A---- C:\Windows\SYSWOW64\psisdecd.dll 2013-12-18 18:08:23 ----A---- C:\Windows\system32\psisdecd.dll 2013-12-18 18:08:04 ----A---- C:\Windows\SYSWOW64\oleaut32.dll 2013-12-18 18:08:04 ----A---- C:\Windows\SYSWOW64\oleacc.dll 2013-12-18 18:08:04 ----A---- C:\Windows\system32\oleaut32.dll 2013-12-18 18:08:04 ----A---- C:\Windows\system32\oleacc.dll 2013-12-18 18:07:59 ----A---- C:\Windows\SYSWOW64\xmllite.dll 2013-12-18 18:07:59 ----A---- C:\Windows\system32\xmllite.dll 2013-12-18 18:07:54 ----A---- C:\Windows\SYSWOW64\odbctrac.dll 2013-12-18 18:07:54 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\SYSWOW64\odbccu32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\SYSWOW64\odbccr32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\SYSWOW64\odbccp32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\system32\odbctrac.dll 2013-12-18 18:07:54 ----A---- C:\Windows\system32\odbccu32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\system32\odbccr32.dll 2013-12-18 18:07:54 ----A---- C:\Windows\system32\odbccp32.dll 2013-12-18 18:07:39 ----A---- C:\Windows\SYSWOW64\drvinst.exe 2013-12-18 18:07:39 ----A---- C:\Windows\SYSWOW64\devrtl.dll 2013-12-18 18:07:39 ----A---- C:\Windows\SYSWOW64\devobj.dll 2013-12-18 18:07:39 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll 2013-12-18 18:07:39 ----A---- C:\Windows\system32\umpnpmgr.dll 2013-12-18 18:07:34 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\tquery.dll 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\mssvp.dll 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\mssrch.dll 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\mssphtb.dll 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\mssph.dll 2013-12-18 18:07:33 ----A---- C:\Windows\SYSWOW64\msscntrs.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\tquery.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\SearchProtocolHost.exe 2013-12-18 18:07:33 ----A---- C:\Windows\system32\SearchIndexer.exe 2013-12-18 18:07:33 ----A---- C:\Windows\system32\SearchFilterHost.exe 2013-12-18 18:07:33 ----A---- C:\Windows\system32\mssvp.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\mssrch.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\mssphtb.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\mssph.dll 2013-12-18 18:07:33 ----A---- C:\Windows\system32\msscntrs.dll 2013-12-18 18:07:21 ----A---- C:\Windows\SYSWOW64\inetcomm.dll 2013-12-18 18:07:21 ----A---- C:\Windows\system32\inetcomm.dll 2013-12-18 18:07:17 ----A---- C:\Windows\system32\drivers\Diskdump.sys 2013-12-18 18:07:09 ----A---- C:\Windows\system32\drivers\srvnet.sys 2013-12-18 18:06:27 ----A---- C:\Windows\SYSWOW64\explorer.exe 2013-12-18 18:06:26 ----A---- C:\Windows\explorer.exe 2013-12-18 18:06:22 ----A---- C:\Windows\system32\drivers\bowser.sys 2013-12-18 18:06:13 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe 2013-12-18 18:06:13 ----A---- C:\Windows\SYSWOW64\dnsapi.dll 2013-12-18 18:06:13 ----A---- C:\Windows\system32\dnsrslvr.dll 2013-12-18 18:06:13 ----A---- C:\Windows\system32\dnscacheugc.exe 2013-12-18 18:06:13 ----A---- C:\Windows\system32\dnsapi.dll 2013-12-18 18:06:08 ----A---- C:\Windows\SYSWOW64\prevhost.exe 2013-12-18 18:06:08 ----A---- C:\Windows\system32\prevhost.exe 2013-12-18 18:06:00 ----A---- C:\Windows\SYSWOW64\mfc42u.dll 2013-12-18 18:06:00 ----A---- C:\Windows\SYSWOW64\mfc42.dll 2013-12-18 18:06:00 ----A---- C:\Windows\system32\mfc42u.dll 2013-12-18 18:06:00 ----A---- C:\Windows\system32\mfc42.dll 2013-12-18 18:05:55 ----A---- C:\Windows\system32\winresume.exe 2013-12-18 18:05:55 ----A---- C:\Windows\system32\winload.exe 2013-12-18 18:05:55 ----A---- C:\Windows\system32\kdusb.dll 2013-12-18 18:05:55 ----A---- C:\Windows\system32\kdcom.dll 2013-12-18 18:05:55 ----A---- C:\Windows\system32\kd1394.dll 2013-12-18 18:05:38 ----A---- C:\Windows\SYSWOW64\KBDINDEV.DLL 2013-12-18 18:05:38 ----A---- C:\Windows\SYSWOW64\KBDINBEN.DLL 2013-12-18 18:05:38 ----A---- C:\Windows\system32\KBDINEN.DLL 2013-12-18 18:05:38 ----A---- C:\Windows\system32\KBDINDEV.DLL 2013-12-18 18:05:38 ----A---- C:\Windows\system32\KBDINBEN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINTEL.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINTAM.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINPUN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINORI.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINMAR.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINMAL.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINKAN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINHIN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINGUJ.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINBE2.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINBE1.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\SYSWOW64\KBDINASA.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINTEL.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINTAM.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINPUN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINORI.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINMAR.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINMAL.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINKAN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINHIN.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINGUJ.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINBE2.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINBE1.DLL 2013-12-18 18:05:37 ----A---- C:\Windows\system32\KBDINASA.DLL 2013-12-18 18:05:26 ----A---- C:\Windows\system32\FXSCOVER.exe 2013-12-18 18:04:46 ----A---- C:\Windows\SYSWOW64\sbe.dll 2013-12-18 18:04:46 ----A---- C:\Windows\SYSWOW64\CPFilters.dll 2013-12-18 18:04:46 ----A---- C:\Windows\system32\sbe.dll 2013-12-18 18:04:46 ----A---- C:\Windows\system32\CPFilters.dll 2013-12-18 18:02:08 ----A---- C:\Windows\system32\mrt.exe 2013-12-18 18:02:07 ----A---- C:\Windows\system32\delnext.exe 2013-12-18 18:02:07 ----A---- C:\Windows\system32\cmdow.exe 2013-12-18 18:02:04 ----D---- C:\Windows\SoftwareDistribution ======List of files/folders modified in the last 1 month====== 2013-12-29 18:48:39 ----D---- C:\Windows\Temp 2013-12-29 18:48:30 ----RD---- C:\Program Files 2013-12-29 16:44:25 ----HD---- C:\ProgramData 2013-12-29 16:35:30 ----D---- C:\Windows\System32 2013-12-29 16:35:25 ----D---- C:\Windows\SysWOW64 2013-12-29 16:35:17 ----RD---- C:\Program Files (x86) 2013-12-29 16:32:33 ----D---- C:\Windows 2013-12-29 14:23:43 ----D---- C:\Windows\inf 2013-12-29 14:23:43 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-12-29 13:17:38 ----D---- C:\Windows\system32\config 2013-12-29 13:07:30 ----D---- C:\Windows\winsxs 2013-12-29 12:37:47 ----ASD---- C:\ProgramData\Microsoft 2013-12-29 10:43:15 ----D---- C:\Windows\system32\drivers 2013-12-29 10:43:13 ----D---- C:\Windows\system32\drivers\UMDF 2013-12-28 17:24:37 ----D---- C:\Windows\system32\wdi 2013-12-28 15:48:36 ----RSD---- C:\Windows\assembly 2013-12-28 15:48:36 ----D---- C:\Windows\Microsoft.NET 2013-12-28 15:26:11 ----D---- C:\Windows\Tasks 2013-12-28 15:26:11 ----D---- C:\Windows\system32\Tasks 2013-12-28 15:25:35 ----D---- C:\Windows\ShellNew 2013-12-28 15:25:26 ----A---- C:\Windows\win.ini 2013-12-28 15:18:17 ----D---- C:\Windows\system32\catroot 2013-12-28 15:18:10 ----RSD---- C:\Windows\Fonts 2013-12-28 15:18:09 ----D---- C:\Windows\system32\DriverStore 2013-12-28 15:16:41 ----D---- C:\Windows\system32\NDF 2013-12-28 15:11:26 ----D---- C:\Program Files (x86)\MSBuild 2013-12-28 15:11:10 ----D---- C:\Program Files (x86)\Common Files 2013-12-28 15:09:59 ----AD---- C:\Program Files\Common Files\Microsoft Shared 2013-12-28 15:00:36 ----D---- C:\Program Files\Common Files 2013-12-28 13:37:11 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-12-28 13:37:11 ----D---- C:\Windows\system32\nl-NL 2013-12-28 13:35:03 ----D---- C:\Windows\system32\LogFiles 2013-12-28 13:33:29 ----D---- C:\Windows\SYSWOW64\en-US 2013-12-28 13:33:29 ----D---- C:\Windows\system32\en-US 2013-12-28 13:32:01 ----D---- C:\Windows\Logs 2013-12-28 13:08:05 ----HD---- C:\Windows\system32\GroupPolicy 2013-12-28 13:08:05 ----D---- C:\Windows\SYSWOW64\GroupPolicy 2013-12-28 13:08:01 ----D---- C:\Windows\system32\catroot2 2013-12-28 12:39:38 ----D---- C:\Program Files\Internet Explorer 2013-12-28 11:55:02 ----D---- C:\Windows\system32\drivers\etc 2013-12-27 19:21:14 ----D---- C:\Windows\rescache 2013-12-26 21:10:14 ----D---- C:\Windows\system32\CodeIntegrity 2013-12-26 21:03:43 ----D---- C:\Windows\system32\restore 2013-12-26 21:00:46 ----SHD---- C:\$Recycle.Bin 2013-12-26 21:00:36 ----RD---- C:\Users 2013-12-26 20:58:51 ----D---- C:\Windows\system32\Recovery 2013-12-26 20:58:51 ----D---- C:\Program Files\Windows NT 2013-12-26 20:58:08 ----D---- C:\Windows\debug 2013-12-26 20:54:56 ----D---- C:\Windows\system32\sysprep 2013-12-26 20:51:14 ----D---- C:\Windows\CSC 2013-12-18 18:33:39 ----D---- C:\Windows\SYSWOW64\wbem 2013-12-18 18:33:39 ----D---- C:\Windows\SYSWOW64\migration 2013-12-18 18:33:39 ----D---- C:\Program Files (x86)\Internet Explorer 2013-12-18 18:33:38 ----D---- C:\Windows\system32\wbem 2013-12-18 18:33:38 ----D---- C:\Windows\system32\migration 2013-12-18 18:33:38 ----D---- C:\Windows\PolicyDefinitions 2013-12-18 18:31:19 ----D---- C:\Windows\nl-NL 2013-12-18 18:29:36 ----D---- C:\Windows\AppPatch 2013-12-18 18:25:08 ----D---- C:\Program Files\Windows Defender 2013-12-18 18:25:08 ----D---- C:\Program Files (x86)\Windows Defender 2013-12-18 18:24:54 ----D---- C:\Program Files (x86)\Windows Media Player 2013-12-18 18:24:53 ----D---- C:\Program Files\Windows Media Player 2013-12-18 18:23:34 ----D---- C:\Program Files\Windows Journal 2013-12-18 18:13:14 ----D---- C:\Windows\system32\drivers\nl-NL 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\zh-TW 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\zh-HK 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\zh-CN 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\tr-TR 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\sv-SE 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\ru-RU 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\pt-PT 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\pt-BR 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\pl-PL 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\nb-NO 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\ko-KR 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\ja-JP 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\it-IT 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\hu-HU 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\fr-FR 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\fi-FI 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\es-ES 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\el-GR 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\de-DE 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\da-DK 2013-12-18 18:12:40 ----D---- C:\Windows\SYSWOW64\cs-CZ 2013-12-18 18:12:40 ----D---- C:\Windows\system32\zh-TW 2013-12-18 18:12:40 ----D---- C:\Windows\system32\zh-HK 2013-12-18 18:12:40 ----D---- C:\Windows\system32\zh-CN 2013-12-18 18:12:40 ----D---- C:\Windows\system32\tr-TR 2013-12-18 18:12:40 ----D---- C:\Windows\system32\sv-SE 2013-12-18 18:12:40 ----D---- C:\Windows\system32\ru-RU 2013-12-18 18:12:40 ----D---- C:\Windows\system32\pt-PT 2013-12-18 18:12:40 ----D---- C:\Windows\system32\pt-BR 2013-12-18 18:12:40 ----D---- C:\Windows\system32\pl-PL 2013-12-18 18:12:40 ----D---- C:\Windows\system32\nb-NO 2013-12-18 18:12:40 ----D---- C:\Windows\system32\ko-KR 2013-12-18 18:12:40 ----D---- C:\Windows\system32\ja-JP 2013-12-18 18:12:40 ----D---- C:\Windows\system32\it-IT 2013-12-18 18:12:40 ----D---- C:\Windows\system32\hu-HU 2013-12-18 18:12:40 ----D---- C:\Windows\system32\fr-FR 2013-12-18 18:12:40 ----D---- C:\Windows\system32\fi-FI 2013-12-18 18:12:40 ----D---- C:\Windows\system32\es-ES 2013-12-18 18:12:40 ----D---- C:\Windows\system32\el-GR 2013-12-18 18:12:40 ----D---- C:\Windows\system32\de-DE 2013-12-18 18:12:40 ----D---- C:\Windows\system32\da-DK 2013-12-18 18:12:40 ----D---- C:\Windows\system32\cs-CZ 2013-12-18 18:10:08 ----D---- C:\Windows\ehome 2013-12-18 18:09:47 ----D---- C:\Program Files\Common Files\System 2013-12-18 18:05:58 ----D---- C:\Windows\system32\Boot 2013-12-18 18:01:50 ----D---- C:\Windows\Setup ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-26 65776] R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-26 207904] R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2013-12-18 213848] R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-26 92544] R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-26 1034464] R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-26 422216] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2013-12-18 516096] R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-27 283064] R1 Vsdatant;Zone Alarm Firewall Driver; C:\Windows\system32\DRIVERS\vsdatant.sys [2013-10-23 454168] R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-26 78648] R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-26 79672] R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 6037504] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392] R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2013-10-16 200552] S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168] S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-12-18 19456] S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656] S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688] S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960] S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2013-12-18 29696] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-12-18 57856] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-12-18 30208] S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248] S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys [] S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552] S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 203264] R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-26 50344] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-12-18 27136] R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2013-10-16 186056] R2 vsmon;TrueVector Internet Monitor; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2013-12-16 2445816] R2 ZAPrivacyService;ZoneAlarm Privacy Service; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [2013-10-15 50704] R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2013-12-18 27136] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-26 116648] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-28 257416] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-26 116648] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-12-18 111616] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-12-06 119408] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2013-12-18 27136] S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2013-12-18 27136] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] -----------------EOF-----------------

Dag Hensyr, 'Gegeven' is een groot woord, ik heb 'm op Marktplaats gekocht waarbij aangegeven is dat het om een legale versie gaat. Ik heb nog nagevraagd waarom deze versie goedkoper was dan een winkelversie maar de verkoopster gaf aan dat het ging om een studentenversie die door studenten tegen een veel lagere prijs gekocht kan worden. Dus ik heb nu een besmette computer? Ik heb het exe-bestandje er af gegooit met Malwarebytes, en een nieuwe scan geeft aan dat het bestandje niet meer aanwezig is. Maar ik kan dus nu toch besmet zijn?

Dag beste mensen, een vraagje, ik heb vandaag mijn computer opnieuw willen installeren. Direct na de installatie van Windows 7 heb ik als eerste een virusscanner, een firewall en Malwarebytes geinstalleerd. Voor de zekerheid heb ik ze ook laten lopen en Malwarebytes vond al heel snel een Trojan.loader genaamd "Windows7Loader.exe". Ik heb 'm via Malwarebytes verwijderd en mijn computer opnieuw opgestart. Maar toch maak ik me een beetje zorgen, want tijdens de installatie van Windows7 zag ik op een gegeven ogenblik iets op mijn scherm met "Windows7Loader". Ik ging er vanuit dat dat bij de installatie hoorde, maar omdat Malwarebytes daarna aangaf dat het om een trojan gaat, ben ik toch bang dat mijn computer nu geinfecteerd is. Hoe kan ik dit nu weten? Want zowel Avast Antivirus alsook Malwarebytes geven nu geen meldingen op mijn C-Schijf als ik ze daarop laat controleren. Bij voorbaat dank.