• Hulpvragenden in dit forumonderdeel worden enkel geholpen door daartoe bevoegde teamleden.
    Dit is belangrijk, zodat de hulpvragende goed geholpen kan worden zonder (goedbedoelde) aanvullende berichten van andere leden.
    Reageren op andermans discussie is daarom uitgeschakeld.
  • De afgelopen dagen zijn er meerdere fora waarop bestaande accounts worden overgenomen door spammers. De gebruikersnamen en wachtwoorden zijn via een hack of een lek via andere sites buitgemaakt. Via have i been pwned? kan je controleren of jouw gegeven ook zijn buitgemaakt. Wijzig bij twijfel jouw wachtwoord of schakel de twee-staps-verificatie in.

Windows installer pop-up

Status
Niet open voor verdere reacties.
Ik heb 'Ja' geklikt om verder te gaan met ComboFix.
Er wordt op dit moment dus door ComboFix gescand.

Als ComboFix klaar is zal ik het logfile posten.
 
Mooi dat het nu wel lukt.
 
Het log van ComboFix:

ComboFix 17-10-17.01 - Thomas 11-11-2017 15:54:52.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.5589.3299 [GMT 1:00]
Gestart vanuit: d:\thomas\Bureaublad\ComboFix.exe
AV: 360 Total Security *Disabled/Updated* {2B66EE1E-E5C8-C2F7-648F-4E55AC68D37D}
SP: 360 Total Security *Disabled/Updated* {90070FFA-C3F2-CD79-5E3F-7527D7EF99C0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\0922503211MN
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_ctypes.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_elementtree.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_hashlib.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_multiprocessing.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_psutil_windows.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_socket.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_ssl.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\_yappi.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\common.time34.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\hashobjs_ext.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\pyexpat.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\pysqlite2._sqlite.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\python27.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\pythoncom27.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\PyWinTypes27.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\select.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\thumbnails_ext.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\unicodedata.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\usb_ext.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32api.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32com.shell.shell.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32crypt.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32event.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32file.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32gui.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32inet.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32pdh.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32pipe.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32process.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32profile.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32security.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\win32ts.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\windows._lib_cacheinvalidation.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._animate.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._controls_.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._core_.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._gdi_.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._html2.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._misc_.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._windows_.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wx._wizard.pyd
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxbase30u_net_vc90.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxbase30u_vc90.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxmsw30u_adv_vc90.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxmsw30u_core_vc90.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxmsw30u_html_vc90.dll
c:\users\Thomas\AppData\Local\Temp\_MEI45162\wxmsw30u_webview_vc90.dll
c:\windows\security\logs\scecomp.log
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2017-10-11 to 2017-11-11 ))))))))))))))))))))))))))))))
.
.
2017-11-11 15:16 . 2017-11-11 15:16 252232 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2017-11-11 15:11 . 2017-11-11 15:11 -------- d-----w- c:\users\Thijs\AppData\Local\temp
2017-11-11 15:11 . 2017-11-11 15:11 -------- d-----w- c:\users\Public\AppData\Local\temp
2017-11-11 15:11 . 2017-11-11 15:11 -------- d-----w- c:\users\Nienke\AppData\Local\temp
2017-11-11 15:11 . 2017-11-11 15:11 -------- d-----w- c:\users\Karin\AppData\Local\temp
2017-11-11 15:11 . 2017-11-11 15:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-11-09 17:55 . 2015-12-16 18:53 7168 ----a-w- c:\windows\system32\kbdgeoqw.dll
2017-11-07 22:08 . 2017-11-07 22:08 -------- d-----w- c:\users\Thomas\AppData\Local\Disc_Soft_Ltd
2017-11-07 21:39 . 2017-11-07 21:39 47672 ----a-w- c:\windows\system32\drivers\dtliteusbbus.sys
2017-11-07 21:38 . 2017-11-07 21:38 30264 ----a-w- c:\windows\system32\drivers\dtlitescsibus.sys
2017-11-07 21:38 . 2017-11-07 22:01 -------- d-----w- c:\users\Thomas\AppData\Roaming\DAEMON Tools Lite
2017-11-07 21:37 . 2017-11-07 21:39 -------- d-----w- c:\program files\DAEMON Tools Lite
2017-11-07 21:36 . 2017-11-07 21:37 -------- d-----w- c:\programdata\DAEMON Tools Lite
2017-11-06 00:56 . 2017-11-06 00:56 -------- d-----w- c:\users\Thomas\AppData\Local\ESET
2017-11-01 11:58 . 2017-11-01 11:58 51016 ----a-w- c:\windows\system32\DbxSvc.exe
2017-11-01 11:58 . 2017-11-01 11:58 45672 ----a-w- c:\windows\system32\drivers\dbx-dev.sys
2017-11-01 11:58 . 2017-11-01 11:58 45640 ----a-w- c:\windows\system32\drivers\dbx-stable.sys
2017-11-01 11:58 . 2017-11-01 11:58 45640 ----a-w- c:\windows\system32\drivers\dbx-canary.sys
2017-10-29 04:08 . 2017-10-29 04:08 18459880 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
2017-10-26 13:53 . 2017-10-26 13:53 -------- d-----w- c:\users\Thomas\AppData\Local\Smart PC Soft
2017-10-26 13:52 . 2017-10-26 13:52 -------- d-----w- c:\program files (x86)\Smart PC Soft
2017-10-26 13:44 . 2017-10-26 13:44 -------- d-----w- c:\users\Thomas\AppData\Local\PlutoTV
2017-10-26 10:11 . 2017-10-26 10:11 -------- d-----w- c:\users\Thomas\AppData\Local\Opera Software
2017-10-26 10:11 . 2017-10-26 10:11 -------- d-----w- c:\users\Thomas\AppData\Roaming\Opera Software
2017-10-24 14:23 . 2017-10-24 14:23 -------- d-----w- c:\users\Karin\AppData\Roaming\Zeon
2017-10-24 14:22 . 2017-10-24 14:22 -------- d-----w- c:\users\Karin\AppData\Roaming\Nuance
2017-10-23 04:48 . 2017-10-25 04:32 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-10-22 23:37 . 2017-10-22 23:37 18896 ----a-w- c:\program files (x86)\Mozilla Firefox\qipcap64.dll
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-11-09 20:24 . 2015-12-07 21:55 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2017-10-26 09:58 . 2014-01-11 08:32 803328 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2017-10-26 09:58 . 2011-07-22 10:11 144896 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-10-11 07:19 . 2017-10-11 07:19 126925120 -c--a-w- c:\windows\system32\MRT-KB890830.exe
2017-10-11 07:18 . 2013-12-28 02:38 126925120 -c--a-w- c:\windows\system32\MRT.exe
2017-10-04 11:15 . 2017-10-10 16:15 77440 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-09-13 15:33 . 2017-10-11 05:38 631176 ----a-w- c:\windows\system32\winresume.efi
2017-09-13 15:32 . 2017-10-11 05:38 706792 ----a-w- c:\windows\system32\winload.efi
2017-09-13 15:32 . 2017-10-11 05:38 5547752 ----a-w- c:\windows\system32\ntoskrnl.exe
2017-09-13 15:32 . 2017-10-11 05:38 95464 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2017-09-13 15:32 . 2017-10-11 05:38 154856 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2017-09-13 15:31 . 2017-10-11 05:38 1732864 ----a-w- c:\windows\system32\ntdll.dll
2017-09-13 15:28 . 2017-10-11 05:38 448512 ----a-w- c:\windows\system32\wlansec.dll
2017-09-13 15:28 . 2017-10-11 05:38 414208 ----a-w- c:\windows\system32\wlanmsm.dll
2017-09-13 15:28 . 2017-10-11 05:38 118784 ----a-w- c:\windows\system32\wlanhlp.dll
2017-09-13 15:28 . 2017-10-11 05:38 886272 ----a-w- c:\windows\system32\wlansvc.dll
2017-09-13 15:28 . 2017-10-11 05:38 113664 ----a-w- c:\windows\system32\wlanapi.dll
2017-09-13 15:28 . 2017-10-11 05:38 362496 ----a-w- c:\windows\system32\wow64win.dll
2017-09-13 15:28 . 2017-10-11 05:38 215552 ----a-w- c:\windows\system32\winsrv.dll
2017-09-13 15:28 . 2017-10-11 05:38 243712 ----a-w- c:\windows\system32\wow64.dll
2017-09-13 15:28 . 2017-10-11 05:38 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2017-09-13 15:28 . 2017-10-11 05:38 86528 ----a-w- c:\windows\system32\TSpkg.dll
2017-09-13 15:28 . 2017-10-11 05:38 210432 ----a-w- c:\windows\system32\wdigest.dll
2017-09-13 15:28 . 2017-10-11 05:38 503808 ----a-w- c:\windows\system32\srcore.dll
2017-09-13 15:28 . 2017-10-11 05:38 135680 ----a-w- c:\windows\system32\sspicli.dll
2017-09-13 15:28 . 2017-10-11 05:38 28672 ----a-w- c:\windows\system32\sspisrv.dll
2017-09-13 15:28 . 2017-10-11 05:38 50176 ----a-w- c:\windows\system32\srclient.dll
2017-09-13 15:28 . 2017-10-11 05:38 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2017-09-13 15:28 . 2017-10-11 05:38 1212928 ----a-w- c:\windows\system32\rpcrt4.dll
2017-09-13 15:28 . 2017-10-11 05:38 345600 ----a-w- c:\windows\system32\schannel.dll
2017-09-13 15:28 . 2017-10-11 05:38 190464 ----a-w- c:\windows\system32\rpchttp.dll
2017-09-13 15:28 . 2017-10-11 05:38 28160 ----a-w- c:\windows\system32\secur32.dll
2017-09-13 15:28 . 2017-10-11 05:38 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2017-09-13 15:28 . 2017-10-11 05:38 312320 ----a-w- c:\windows\system32\ncrypt.dll
2017-09-13 15:28 . 2017-10-11 05:38 1068544 ----a-w- c:\windows\system32\msctf.dll
2017-09-13 15:28 . 2017-10-11 05:38 316928 ----a-w- c:\windows\system32\msv1_0.dll
2017-09-13 15:28 . 2017-10-11 05:38 60416 ----a-w- c:\windows\system32\msobjs.dll
2017-09-13 15:28 . 2017-10-11 05:38 146432 ----a-w- c:\windows\system32\msaudite.dll
2017-09-13 15:27 . 2017-10-11 05:38 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2017-09-13 15:27 . 2017-10-11 05:38 731648 ----a-w- c:\windows\system32\kerberos.dll
2017-09-13 15:27 . 2017-10-11 05:38 1163264 ----a-w- c:\windows\system32\kernel32.dll
2017-09-13 15:27 . 2017-10-11 05:38 419840 ----a-w- c:\windows\system32\KernelBase.dll
2017-09-13 15:27 . 2017-10-11 05:38 44032 ----a-w- c:\windows\system32\csrsrv.dll
2017-09-13 15:27 . 2017-10-11 05:38 43520 ----a-w- c:\windows\system32\cryptbase.dll
2017-09-13 15:27 . 2017-10-11 05:38 22016 ----a-w- c:\windows\system32\credssp.dll
2017-09-13 15:27 . 2017-10-11 05:38 463872 ----a-w- c:\windows\system32\certcli.dll
2017-09-13 15:27 . 2017-10-11 05:38 880640 ----a-w- c:\windows\system32\advapi32.dll
2017-09-13 15:27 . 2017-10-11 05:38 123904 ----a-w- c:\windows\system32\bcrypt.dll
2017-09-13 15:27 . 2017-10-11 05:38 59904 ----a-w- c:\windows\system32\appidapi.dll
2017-09-13 15:27 . 2017-10-11 05:38 34816 ----a-w- c:\windows\system32\appidsvc.dll
2017-09-13 15:27 . 2017-10-11 05:38 6656 ----a-w- c:\windows\system32\apisetschema.dll
2017-09-13 15:27 . 2017-10-11 05:38 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-13 15:27 . 2017-10-11 05:38 690688 ----a-w- c:\windows\system32\adtschema.dll
2017-09-13 15:13 . 2017-10-11 05:38 4001512 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2017-09-13 15:13 . 2017-10-11 05:38 3945704 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2017-09-13 15:10 . 2017-10-11 05:38 1314112 ----a-w- c:\windows\SysWow64\ntdll.dll
2017-09-13 15:09 . 2017-10-11 05:38 666112 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2017-09-13 15:09 . 2017-10-11 05:38 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2017-09-13 15:09 . 2017-10-11 05:38 275456 ----a-w- c:\windows\SysWow64\KernelBase.dll
2017-09-13 15:09 . 2017-10-11 05:38 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2017-09-13 15:09 . 2017-10-11 05:38 392704 ----a-w- c:\windows\SysWow64\wlansec.dll
2017-09-13 15:09 . 2017-10-11 05:38 428032 ----a-w- c:\windows\SysWow64\wlanmsm.dll
2017-09-13 15:09 . 2017-10-11 05:38 83968 ----a-w- c:\windows\SysWow64\wlanhlp.dll
2017-09-13 15:09 . 2017-10-11 05:38 80896 ----a-w- c:\windows\SysWow64\wlanapi.dll
2017-09-13 15:09 . 2017-10-11 05:38 172032 ----a-w- c:\windows\SysWow64\wdigest.dll
2017-09-13 15:09 . 2017-10-11 05:38 82944 ----a-w- c:\windows\SysWow64\bcrypt.dll
2017-09-13 15:09 . 2017-10-11 05:38 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2017-09-13 15:09 . 2017-10-11 05:38 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2017-09-13 15:09 . 2017-10-11 05:38 254464 ----a-w- c:\windows\SysWow64\schannel.dll
2017-09-13 15:09 . 2017-10-11 05:38 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2017-09-13 15:09 . 2017-10-11 05:38 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2017-09-13 15:09 . 2017-10-11 05:38 261120 ----a-w- c:\windows\SysWow64\msv1_0.dll
2017-09-13 15:09 . 2017-10-11 05:38 223232 ----a-w- c:\windows\SysWow64\ncrypt.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 289096 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.19.0.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2017-10-09 25621648]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2017-10-18 10021040]
"AppEx Accelerator UI"="c:\program files\AMD Quick Stream\AMDQuickStream.exe" [2015-04-05 488640]
"MyDriveConnect.exe"="c:\program files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe" [2017-08-04 1986280]
"Spotify Web Helper"="c:\users\Thomas\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2017-04-19 1446000]
"{9168D391-E9F7-46D5-90C9-99C567C3C6A0}"="c:\windows\system32\msiexec.exe" [2016-11-09 73216]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2017-08-14 4836032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-04-02 340848]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2013-04-25 1075296]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2015-09-24 41360]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2015-09-24 840592]
"QHSafeTray"="c:\program files (x86)\360\Total Security\safemon\QHSafeTray.exe" [2016-08-10 1153448]
"StartCCC"="c:\program files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2015-08-04 767176]
"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2017-11-01 3567928]
"PaperPort PTD"="c:\program files (x86)\Nuance\PaperPort\pptd40nt.exe" [2013-08-15 31048]
"ControlCenter4"="c:\program files (x86)\ControlCenter4\BrCcBoot.exe" [2016-02-03 139776]
"BrStsMon00"="c:\program files (x86)\Browny02\Brother\BrStMonW.exe" [2014-05-22 4513792]
"BrHelp"="c:\program files (x86)\Brother\Brother Help\BrotherHelp.exe" [2013-03-07 1944576]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2017-07-04 1053656]
"IndexSearch"="c:\program files (x86)\Nuance\PaperPort\IndexSearch.exe" [2013-08-15 47432]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2015-07-23 2303152]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Wireless Configuration Utility.lnk - c:\program files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui [2017-9-28 850944]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 dbupdate;Dropbox-update-service (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 360AvFlt;360AvFlt mini-filter driver;c:\windows\system32\DRIVERS\360AvFlt.sys;c:\windows\SYSNATIVE\DRIVERS\360AvFlt.sys [x]
R3 360Camera;360Safe Camera Filter Service;c:\windows\system32\Drivers\360Camera64.sys;c:\windows\SYSNATIVE\Drivers\360Camera64.sys [x]
R3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe;c:\program files (x86)\Browny02\BrYNSvc.exe [x]
R3 dbupdatem;Dropbox-update-service (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R3 dbx;dbx;c:\windows\system32\DRIVERS\dbx.sys;c:\windows\SYSNATIVE\DRIVERS\dbx.sys [x]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppIntegrationService;GamesAppIntegrationService;c:\program files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
R3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
R3 Prot6Flt;Prot6Flt;c:\windows\system32\DRIVERS\Prot6Flt.sys;c:\windows\SYSNATIVE\DRIVERS\Prot6Flt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 RtlWlanu;Realtek Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlanu.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 tap-tb-0901;TunnelBear Adapter V9;c:\windows\system32\DRIVERS\tap-tb-0901.sys;c:\windows\SYSNATIVE\DRIVERS\tap-tb-0901.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 usbrndis6;USB RNDIS6-adapter;c:\windows\system32\DRIVERS\usb80236.sys;c:\windows\SYSNATIVE\DRIVERS\usb80236.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 360Box64;360Box mini-filter driver;c:\windows\system32\DRIVERS\360Box64.sys;c:\windows\SYSNATIVE\DRIVERS\360Box64.sys [x]
S1 360FsFlt;360FsFlt mini-filter driver;c:\windows\system32\DRIVERS\360FsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\360FsFlt.sys [x]
S1 BAPIDRV;BAPIDRV;c:\windows\system32\DRIVERS\BAPIDRV64.sys;c:\windows\SYSNATIVE\DRIVERS\BAPIDRV64.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys;c:\windows\SYSNATIVE\DRIVERS\appexDrv.sys [x]
S2 DbxSvc;DbxSvc;c:\windows\system32\DbxSvc.exe;c:\windows\SYSNATIVE\DbxSvc.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 PDFProFiltSrvPP;PDFProFiltSrvPP;c:\program files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe;c:\program files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [x]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe;c:\program files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [x]
S2 QHActiveDefense;360 Total Security;c:\program files (x86)\360\Total Security\safemon\QHActiveDefense.exe;c:\program files (x86)\360\Total Security\safemon\QHActiveDefense.exe [x]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [x]
S3 360AntiHacker;360Safe Anti Hacker Service;c:\windows\system32\Drivers\360AntiHacker64.sys;c:\windows\SYSNATIVE\Drivers\360AntiHacker64.sys [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
.
.
--- Andere Services/Drivers In Geheugen ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Inhoud van de 'Gedeelde Taken' map
.
2017-11-11 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-10-26 10:03]
.
2017-11-11 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-10-26 10:03]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2017-11-01 11:44 337224 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.19.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2017-10-09 08:33 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2017-10-09 08:33 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2017-10-09 08:33 775064 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2015-07-21 23:02 803488 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2015-07-21 23:02 803488 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2015-07-21 23:02 803488 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-09 11860072]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2015-07-22 500936]
"NUSB3MON"="c:\program files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe" [2012-04-11 97280]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mDefault_Search_URL = www.google.com
mDefault_Page_URL = www.google.com
mStart Page = www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = www.google.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 89.101.251.229 89.101.251.228
FF - ProfilePath - c:\users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\17tu91df.default-1457531331141\
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-363389516-363886808-2250518415-1001_Classes\Wow6432Node\CLSID\{130F8154-E804-4BD5-A07B-35BE69039715}\{A730F6F3-255C-417C-8986-2C578500547E}*Hidden]
"{6D31FCD2-64F7-4E43-8E18-5A2BBA7D13C9}"="AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAkXlKIvX4+0iDncirePgbhQAAAAACAAAAAAAQZgAAAAEAACAAAAB5sl9QzA42WW9dVz6849w9WJwwRLTV34imXFh96J0TAAAAAAAOgAAAAAIAACAAAADxwgtnmUdaFJkLJ7y75ZEZMc1uLk5EJCzKLnb+1KGiZhAAAABs6WlgZVSyeRfMkWJ/vpEeQAAAAA9HJFdEXUELyEqomu9T6s7cNaNIjtNjIA1jdxhTTONmKiDCsENCnAJKIgjMKk2igoqXsx68gApCrggne7fchvk="
"{2338F5D5-2437-4FC3-9005-A01804321264}"="AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAYyNClfxipkWfdBilcY21hQAAAAACAAAAAAAQZgAAAAEAACAAAABO8tD0pe1IbWQXOW/QSfjySVqU3pSH3Aesy9Ucef2RNwAAAAAOgAAAAAIAACAAAACoWdMtIkQ/M6iFDpdQGSfJLjAONHL1u1k7ptywODY2fyAAAAAVCYkh1cN0Bph8N42oArHDR1MvP0YeM6b+vOx+8jGt/EAAAACMJpsi5sIOZAuN7chMPNh5ZtOJr1UrjfRYKjsZGdETuRFXIRkgS+jlh+dvBI80arvtBOvak4pYb/E95baRBYd6"
"{FCCCD80D-2A5E-401E-B64F-D1C2E375B955}"="AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAYyNClfxipkWfdBilcY21hQAAAAACAAAAAAAQZgAAAAEAACAAAABCdKJbIEF0ye/xMpAv0lQeezOE9xj7f3+GBhkHzqturQAAAAAOgAAAAAIAACAAAABOSCv7haQBIIkZEs4CJIDESHhQKoVuXwONH+EUvtFzaBAAAACj5CYl5XkAuGULvhSmvLQ9QAAAAEJB6Nbn+qAltS/sDLy8oEeOP5QcYMzcOm0SElxETxBIfXdc4DT6vZ6SUYzG7enIEYbdGsN4QWc8Zz0Yf34D95U="
.
[HKEY_USERS\S-1-5-21-363389516-363886808-2250518415-1001_Classes\Wow6432Node\CLSID\{130F8154-E804-4BD5-A07B-35BE69039715}\{A730F6F3-255C-417C-8986-2C578500547E}*Hidden\DeltaClock]
"LastSynchronizationClock"=hex(b):80,05,46,7f,55,39,d2,08
"DeltaClock"=hex(b):2b,18,fa,fe,ff,ff,ff,ff
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_27_0_0_183_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_27_0_0_183_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_27_0_0_183_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_27_0_0_183_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_183.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.27"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_183.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_183.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_27_0_0_183.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\360\Total Security\safemon\QHWatchdog.exe
c:\program files\Malwarebytes\Anti-Malware\mbamtray.exe
c:\program files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
.
**************************************************************************
.
Voltooingstijd: 2017-11-11 16:30:55 - machine werd herstart
ComboFix-quarantined-files.txt 2017-11-11 15:30
ComboFix2.txt 2015-12-07 20:42
ComboFix3.txt 2015-12-07 17:01
.
Pre-Run: 57.805.324.288 bytes beschikbaar
Post-Run: 58.266.521.600 bytes beschikbaar
.
- - End Of File - - 5E58A7E92237F21EA6BE4C835261AFEB
A36C5E4F47E84449FF07ED3517B43A31
 
Open de register-editor: menu Start->Uitvoeren->regedit. Navigeer naar HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run en zoek in het rechter venster naar "c:\windows\system32\msiexec.exe". Als deze tekenreekswaarde bestaat, verwijder deze dan.
 
De pop-up is er nog steeds
 
Download
51e2903039553-TDSSKiller_Resized.png
TDSSKiller en (ver)plaats de download naar/op het bureaublad.

  • Dubbelklik op TDSSKiller.exe om de tool te starten. (Indien je TDSSKiller als ZIP bestand hebt gedownload dien je deze eerst uit te pakken).
  • Als er door TDSSkiller een update wordt gevonden klikt u op de knop "Load update"
  • Een nieuwe versie van TDSSkiller zal nu gedownload worden en sla deze op het bureaublad op.
  • Start nu TDSSkiller opnieuw.
  • Klik in het licentiescherm op "Accept" om door te gaan.
  • Vervolgens krijgt u het scherm te zien van het "Kaspersky Security Network Statement" klik hier eveneens op "Accep".
  • Klik op "Change parameters" en zorg dat de onderstaande opties allemaal aangevinkt zijn.

    5247f2ef6060f-TDSSKiller-parameters.jpg

  • Klik op de knop "Start Scan" en volg de instructies.

  • Gebruik nooit de "Delete" of "Quarantaine" optie bij een "Fail signature" melding.
  • Wanneer er een herstart nodig was, vind je de logfile in C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt
  • Post de inhoud van dit logbestand in jouw volgende bericht.
 
Bij Settings mis ik de laatste optie 'Use KSN to scan objects'.
Toch doorgaan?
 
Dat was nog eens een snelle scan. Hieronder het log.

17:17:46.0383 3608 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:17:46.0810 3608 ============================================================
17:17:46.0810 3608 Current date / time: 2017/11/11 17:17:46.0810
17:17:46.0810 3608 SystemInfo:
17:17:46.0810 3608
17:17:46.0810 3608 OS Version: 6.1.7601 ServicePack: 1.0
17:17:46.0810 3608 Product type: Workstation
17:17:46.0810 3608 ComputerName: THUIS-PC
17:17:46.0810 3608 UserName: Thomas
17:17:46.0810 3608 Windows directory: C:\Windows
17:17:46.0810 3608 System windows directory: C:\Windows
17:17:46.0810 3608 Running under WOW64
17:17:46.0810 3608 Processor architecture: Intel x64
17:17:46.0810 3608 Number of processors: 4
17:17:46.0810 3608 Page size: 0x1000
17:17:46.0810 3608 Boot type: Normal boot
17:17:46.0810 3608 ============================================================
17:17:48.0385 3608 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:17:48.0391 3608 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:17:48.0705 3608 Drive \Device\Harddisk4\DR4 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:17:49.0072 3608 ============================================================
17:17:49.0072 3608 \Device\Harddisk0\DR0:
17:17:49.0072 3608 MBR partitions:
17:17:49.0072 3608 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0x1F3FE57B
17:17:49.0072 3608 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1F3FE5FA, BlocksNum 0x64D08605
17:17:49.0072 3608 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x84106BFF, BlocksNum 0x64D008C2
17:17:49.0072 3608 \Device\Harddisk1\DR1:
17:17:49.0075 3608 MBR partitions:
17:17:49.0075 3608 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705CB0
17:17:49.0075 3608 \Device\Harddisk4\DR4:
17:17:49.0077 3608 MBR partitions:
17:17:49.0077 3608 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A856E82
17:17:49.0077 3608 ============================================================
17:17:49.0088 3608 C: <-> \Device\Harddisk0\DR0\Partition1
17:17:49.0113 3608 E: <-> \Device\Harddisk0\DR0\Partition3
17:17:49.0137 3608 D: <-> \Device\Harddisk0\DR0\Partition2
17:17:49.0154 3608 J: <-> \Device\Harddisk4\DR4\Partition1
17:17:49.0195 3608 K: <-> \Device\Harddisk1\DR1\Partition1
17:17:49.0196 3608 ============================================================
17:17:49.0196 3608 Initialize success
17:17:49.0196 3608 ============================================================
17:26:16.0115 6884 ============================================================
17:26:16.0115 6884 Scan started
17:26:16.0115 6884 Mode: Manual; SigCheck; TDLFS;
17:26:16.0115 6884 ============================================================
17:26:19.0664 6884 ================ Scan system memory ========================
17:26:19.0665 6884 System memory - ok
17:26:19.0665 6884 ================ Scan services =============================
17:26:19.0806 6884 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:26:19.0866 6884 1394ohci - ok
17:26:19.0925 6884 [ 9CC33FFF3AA4725CC3EE1ABDBDAA4CBC ] 360AntiHacker C:\Windows\system32\Drivers\360AntiHacker64.sys
17:26:19.0950 6884 360AntiHacker - ok
17:26:19.0988 6884 [ 06DC8E24D1846A26FFE978A51B73BBA0 ] 360AvFlt C:\Windows\system32\DRIVERS\360AvFlt.sys
17:26:20.0005 6884 360AvFlt - ok
17:26:20.0024 6884 [ 03882DAC88F6C1CAD9101A9FC426B3EF ] 360Box64 C:\Windows\system32\DRIVERS\360Box64.sys
17:26:20.0044 6884 360Box64 - ok
17:26:20.0071 6884 [ D31541708A595BCA380105D44C2C2AD5 ] 360Camera C:\Windows\system32\Drivers\360Camera64.sys
17:26:20.0087 6884 360Camera - ok
17:26:20.0133 6884 [ A83EC46BA2414BC4150D3151DFCF7955 ] 360FsFlt C:\Windows\system32\DRIVERS\360FsFlt.sys
17:26:20.0155 6884 360FsFlt - ok
17:26:20.0174 6884 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:26:20.0194 6884 ACPI - ok
17:26:20.0218 6884 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:26:20.0283 6884 AcpiPmi - ok
17:26:20.0386 6884 [ 9B112FDA1D5FB7B75627461001AC692A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:26:20.0401 6884 AdobeARMservice - ok
17:26:20.0521 6884 [ EF3FA1EEC533C8B1B12CB3BAEBD0E84F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:26:20.0545 6884 AdobeFlashPlayerUpdateSvc - ok
17:26:20.0573 6884 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:26:20.0597 6884 adp94xx - ok
17:26:20.0612 6884 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:26:20.0633 6884 adpahci - ok
17:26:20.0645 6884 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:26:20.0663 6884 adpu320 - ok
17:26:20.0694 6884 [ 262D7C87D0AC20B96EF9877D3CA478A0 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:26:20.0727 6884 AeLookupSvc - ok
17:26:20.0784 6884 [ 0DC2A9882540DEA4A55B08785E09D8FC ] AFD C:\Windows\system32\drivers\afd.sys
17:26:20.0809 6884 AFD - ok
17:26:20.0826 6884 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:26:20.0842 6884 agp440 - ok
17:26:20.0861 6884 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:26:20.0894 6884 ALG - ok
17:26:20.0920 6884 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:26:20.0934 6884 aliide - ok
17:26:20.0997 6884 [ 606C8F129FE18D6E3EA2FD542D43D72D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:26:21.0062 6884 AMD External Events Utility - ok
17:26:21.0147 6884 [ B12D8F8A42080B955D027EE56F5BD1C3 ] AMD FUEL Service C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
17:26:21.0176 6884 AMD FUEL Service ( UnsignedFile.Multi.Generic ) - warning
17:26:21.0176 6884 AMD FUEL Service - detected UnsignedFile.Multi.Generic (1)
17:26:21.0206 6884 [ 30BFEEE0DFFD5BD79D29157CF080DEED ] amdhub30 C:\Windows\system32\DRIVERS\amdhub30.sys
17:26:21.0221 6884 amdhub30 - ok
17:26:21.0236 6884 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:26:21.0251 6884 amdide - ok
17:26:21.0269 6884 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:26:21.0293 6884 AmdK8 - ok
17:26:21.0324 6884 amdkmdag - ok
17:26:21.0357 6884 [ C0C27A1094F6EA978FB2CAACFDE0E594 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:26:21.0403 6884 amdkmdap - ok
17:26:21.0432 6884 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:26:21.0448 6884 AmdPPM - ok
17:26:21.0468 6884 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:26:21.0485 6884 amdsata - ok
17:26:21.0502 6884 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:26:21.0520 6884 amdsbs - ok
17:26:21.0525 6884 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:26:21.0539 6884 amdxata - ok
17:26:21.0560 6884 [ 321533578132C811EC834A1B741C994C ] amdxhc C:\Windows\system32\DRIVERS\amdxhc.sys
17:26:21.0574 6884 amdxhc - ok
17:26:21.0594 6884 [ F9D46B6B322708BD5AFCC8767EBDC901 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
17:26:21.0608 6884 amd_sata - ok
17:26:21.0617 6884 [ 329CC9C7E20DEEBCD4CD10816193EF14 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
17:26:21.0630 6884 amd_xata - ok
17:26:21.0652 6884 [ C3D487827E48CC5EC17994FEC5BDFF87 ] AODDriver4.3 C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys
17:26:21.0666 6884 AODDriver4.3 - ok
17:26:21.0701 6884 [ C16B5B379A2A79702CC5FF923EAAE3FD ] AppID C:\Windows\system32\drivers\appid.sys
17:26:21.0987 6884 AppID - ok
17:26:22.0011 6884 [ 5152D6B29C61EF59537DBDA92BFE2978 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:26:22.0044 6884 AppIDSvc - ok
17:26:22.0067 6884 [ DE23E052E557580674785CDF45B613F3 ] Appinfo C:\Windows\System32\appinfo.dll
17:26:22.0117 6884 Appinfo - ok
17:26:22.0175 6884 [ CF6E96336D3B247AB48F28CC570B83D8 ] APXACC C:\Windows\system32\DRIVERS\appexDrv.sys
17:26:22.0192 6884 APXACC - ok
17:26:22.0208 6884 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
17:26:22.0224 6884 arc - ok
17:26:22.0232 6884 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:26:22.0249 6884 arcsas - ok
17:26:22.0340 6884 [ 8637F3119057178364D200F2462E625C ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:26:22.0396 6884 aspnet_state - ok
17:26:22.0412 6884 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:26:22.0470 6884 AsyncMac - ok
17:26:22.0499 6884 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:26:22.0513 6884 atapi - ok
17:26:22.0556 6884 [ 738CD83A9C61ADFD00984433DBA3DC78 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:26:22.0580 6884 AtiHDAudioService - ok
17:26:22.0624 6884 [ 67C717EC24FCAAE7B518D9E06AD036AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:26:22.0669 6884 AudioEndpointBuilder - ok
17:26:22.0678 6884 [ 67C717EC24FCAAE7B518D9E06AD036AB ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:26:22.0702 6884 AudioSrv - ok
17:26:22.0743 6884 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:26:22.0788 6884 AxInstSV - ok
17:26:22.0826 6884 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:26:22.0884 6884 b06bdrv - ok
17:26:22.0920 6884 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:26:22.0939 6884 b57nd60a - ok
17:26:22.0989 6884 [ 6BEEB92A07D1C2D4128D52752C34601A ] BAPIDRV C:\Windows\system32\DRIVERS\BAPIDRV64.sys
17:26:23.0008 6884 BAPIDRV - ok
17:26:23.0029 6884 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:26:23.0052 6884 BDESVC - ok
17:26:23.0061 6884 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:26:23.0098 6884 Beep - ok
17:26:23.0145 6884 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:26:23.0182 6884 BFE - ok
17:26:23.0230 6884 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
17:26:23.0279 6884 BITS - ok
17:26:23.0298 6884 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:26:23.0314 6884 blbdrive - ok
17:26:23.0356 6884 [ ABA3984C822E4D3F889699912D85D6C5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:26:23.0577 6884 bowser - ok
17:26:23.0590 6884 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:26:23.0621 6884 BrFiltLo - ok
17:26:23.0642 6884 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:26:23.0672 6884 BrFiltUp - ok
17:26:23.0704 6884 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
17:26:23.0742 6884 BridgeMP - ok
17:26:23.0767 6884 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:26:23.0800 6884 Browser - ok
17:26:23.0825 6884 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:26:23.0867 6884 Brserid - ok
17:26:23.0883 6884 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:26:23.0902 6884 BrSerWdm - ok
17:26:23.0919 6884 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:26:23.0937 6884 BrUsbMdm - ok
17:26:23.0942 6884 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:26:23.0968 6884 BrUsbSer - ok
17:26:24.0084 6884 [ 0471D5669F18C50E552B2BC0CB15E7B3 ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe
17:26:24.0095 6884 BrYNSvc ( UnsignedFile.Multi.Generic ) - warning
17:26:24.0095 6884 BrYNSvc - detected UnsignedFile.Multi.Generic (1)
17:26:24.0113 6884 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:26:24.0132 6884 BTHMODEM - ok
17:26:24.0148 6884 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:26:24.0188 6884 bthserv - ok
17:26:24.0191 6884 catchme - ok
17:26:24.0204 6884 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:26:24.0262 6884 cdfs - ok
17:26:24.0314 6884 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:26:24.0332 6884 cdrom - ok
17:26:24.0357 6884 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:26:24.0420 6884 CertPropSvc - ok
17:26:24.0437 6884 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
17:26:24.0914 6884 circlass - ok
17:26:24.0951 6884 [ 3963FEC1892368DD500E6ED1F5C286CE ] CLFS C:\Windows\system32\CLFS.sys
17:26:24.0972 6884 CLFS - ok
17:26:25.0031 6884 [ F13EC8A783E0CB0D6DC26A3CA848B7B8 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:26:25.0047 6884 clr_optimization_v2.0.50727_32 - ok
17:26:25.0104 6884 [ B4D73F04E9BC076F7CDAC4327DF636BB ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:26:25.0120 6884 clr_optimization_v2.0.50727_64 - ok
17:26:25.0177 6884 [ 2BA609641FA64BAB02ACD3C0095672F5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:26:25.0272 6884 clr_optimization_v4.0.30319_32 - ok
17:26:25.0296 6884 [ 7C7502CD2A2CFAB399D0D8DA95DB03E7 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:26:25.0316 6884 clr_optimization_v4.0.30319_64 - ok
17:26:25.0333 6884 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:26:25.0368 6884 CmBatt - ok
17:26:25.0389 6884 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:26:25.0404 6884 cmdide - ok
17:26:25.0477 6884 [ A98CED39AD91B445E2E442A9BD67E8B4 ] CNG C:\Windows\system32\Drivers\cng.sys
17:26:25.0506 6884 CNG - ok
17:26:25.0541 6884 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:26:25.0556 6884 Compbatt - ok
17:26:25.0593 6884 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:26:25.0613 6884 CompositeBus - ok
17:26:25.0619 6884 COMSysApp - ok
17:26:25.0633 6884 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:26:25.0724 6884 crcdisk - ok
17:26:25.0767 6884 [ 48FEDBE324F1EA9417BA1D62AE863011 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:26:25.0796 6884 CryptSvc - ok
17:26:25.0908 6884 [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
17:26:25.0925 6884 dbupdate - ok
17:26:25.0949 6884 [ A1F58FFF448E4099297D6EE0641D4D0E ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
17:26:25.0965 6884 dbupdatem - ok
17:26:25.0992 6884 dbx - ok
17:26:26.0029 6884 [ 779483261FE90416D7FD3DF34F3B0ECF ] DbxSvc C:\Windows\system32\DbxSvc.exe
17:26:26.0045 6884 DbxSvc - ok
17:26:26.0087 6884 [ 3F1A199859B4F3F8357B2A0AF5666A54 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:26:26.0114 6884 DcomLaunch - ok
17:26:26.0142 6884 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:26:26.0194 6884 defragsvc - ok
17:26:26.0250 6884 [ 9B38580063D281A99E68EF5813022A5F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:26:26.0298 6884 DfsC - ok
17:26:26.0318 6884 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:26:26.0352 6884 Dhcp - ok
17:26:26.0455 6884 [ EE9954237F15BE4DD9304D12E4D305ED ] DiagTrack C:\Windows\system32\diagtrack.dll
17:26:26.0539 6884 DiagTrack - ok
17:26:26.0616 6884 [ 87C694B80151B798480E1852BA079E98 ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
17:26:26.0693 6884 Disc Soft Lite Bus Service - ok
17:26:26.0699 6884 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:26:26.0751 6884 discache - ok
17:26:26.0816 6884 [ 616387BBD83372220B09DE95F4E67BBC ] Disk C:\Windows\system32\drivers\disk.sys
17:26:26.0831 6884 Disk - ok
17:26:26.0842 6884 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:26:26.0861 6884 Dnscache - ok
17:26:26.0877 6884 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:26:26.0918 6884 dot3svc - ok
17:26:26.0954 6884 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:26:26.0989 6884 Dot4 - ok
17:26:27.0018 6884 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:26:27.0047 6884 Dot4Print - ok
17:26:27.0081 6884 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:26:27.0100 6884 dot4usb - ok
17:26:27.0106 6884 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:26:27.0146 6884 DPS - ok
17:26:27.0181 6884 [ 26FE888505E5A945B0536AF9A2A27A6F ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:26:27.0200 6884 drmkaud - ok
17:26:27.0258 6884 [ 679FF716052109392D870F6A6C4A3535 ] dtlitescsibus C:\Windows\system32\DRIVERS\dtlitescsibus.sys
17:26:27.0274 6884 dtlitescsibus - ok
17:26:27.0295 6884 [ E23FDD696839A4790682CA66C48D3F2F ] dtliteusbbus C:\Windows\system32\DRIVERS\dtliteusbbus.sys
17:26:27.0309 6884 dtliteusbbus - ok
17:26:27.0361 6884 [ 5CEF80AE869336376F550ECAE91E424A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:26:27.0391 6884 DXGKrnl - ok
17:26:27.0414 6884 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:26:27.0454 6884 EapHost - ok
17:26:27.0518 6884 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:26:27.0604 6884 ebdrv - ok
17:26:27.0642 6884 [ 62056ADD38513A86C4866E912371B56B ] EFS C:\Windows\System32\lsass.exe
17:26:27.0675 6884 EFS - ok
17:26:27.0738 6884 [ 18DD872DD46ACB24E106DC2C9C270466 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
17:26:27.0753 6884 EgisTec Ticket Service - ok
17:26:27.0808 6884 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:26:27.0864 6884 ehRecvr - ok
17:26:27.0877 6884 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:26:27.0909 6884 ehSched - ok
17:26:27.0935 6884 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:26:27.0959 6884 elxstor - ok
17:26:27.0975 6884 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:26:27.0992 6884 ErrDev - ok
17:26:28.0026 6884 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:26:28.0070 6884 EventSystem - ok
17:26:28.0104 6884 [ 7E45F8B117419ABA3BB26579F6E70324 ] exfat C:\Windows\system32\drivers\exfat.sys
17:26:28.0178 6884 exfat - ok
17:26:28.0200 6884 [ 6EDFA237D25433C03F42FBFDB16BDD24 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:26:28.0221 6884 fastfat - ok
17:26:28.0257 6884 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:26:28.0290 6884 Fax - ok
17:26:28.0302 6884 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
17:26:28.0334 6884 fdc - ok
17:26:28.0359 6884 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:26:28.0409 6884 fdPHost - ok
17:26:28.0432 6884 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:26:28.0472 6884 FDResPub - ok
17:26:28.0491 6884 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:26:28.0506 6884 FileInfo - ok
17:26:28.0515 6884 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:26:28.0568 6884 Filetrace - ok
17:26:28.0592 6884 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:26:28.0609 6884 flpydisk - ok
17:26:28.0622 6884 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:26:28.0641 6884 FltMgr - ok
17:26:28.0676 6884 [ B8AFE7A30D34C0E9FDBA81632294547C ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
17:26:28.0691 6884 fltsrv - ok
17:26:28.0738 6884 [ 785F474FB5E67E448E1931C98E8D0ABC ] FontCache C:\Windows\system32\FntCache.dll
17:26:28.0963 6884 FontCache - ok
17:26:29.0009 6884 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:26:29.0024 6884 FontCache3.0.0.0 - ok
17:26:29.0040 6884 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:26:29.0055 6884 FsDepends - ok
17:26:29.0068 6884 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:26:29.0083 6884 Fs_Rec - ok
17:26:29.0099 6884 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:26:29.0120 6884 fvevol - ok
17:26:29.0142 6884 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:26:29.0157 6884 gagp30kx - ok
17:26:29.0245 6884 [ E976643CF97862F3408281E3EEBD5F7C ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
17:26:29.0262 6884 GamesAppIntegrationService - ok
17:26:29.0298 6884 [ A404AE536DD73FC8118A15BFF0BD4FC0 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:26:29.0314 6884 GamesAppService - ok
17:26:29.0371 6884 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:26:29.0383 6884 GEARAspiWDM - ok
17:26:29.0434 6884 [ E4AE497857409127ED57562AF913A903 ] gpsvc C:\Windows\System32\gpsvc.dll
17:26:29.0461 6884 gpsvc - ok
17:26:29.0518 6884 [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
17:26:29.0531 6884 GREGService - ok
17:26:29.0561 6884 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
17:26:29.0573 6884 grmnusb - ok
17:26:29.0662 6884 [ DD7423ABBE2913E70D50E9318AD57EE4 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:26:29.0676 6884 gupdate - ok
17:26:29.0681 6884 [ DD7423ABBE2913E70D50E9318AD57EE4 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:26:29.0695 6884 gupdatem - ok
17:26:29.0740 6884 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:26:29.0755 6884 gusvc - ok
17:26:29.0769 6884 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:26:29.0812 6884 hcw85cir - ok
17:26:29.0844 6884 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:26:29.0884 6884 HdAudAddService - ok
17:26:29.0890 6884 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:26:29.0915 6884 HDAudBus - ok
17:26:29.0920 6884 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:26:29.0943 6884 HidBatt - ok
17:26:29.0964 6884 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:26:29.0994 6884 HidBth - ok
17:26:30.0027 6884 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
17:26:30.0046 6884 HidIr - ok
17:26:30.0068 6884 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
17:26:30.0107 6884 hidserv - ok
17:26:30.0132 6884 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:26:30.0159 6884 HidUsb - ok
17:26:30.0174 6884 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:26:30.0213 6884 hkmsvc - ok
17:26:30.0235 6884 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:26:30.0279 6884 HomeGroupListener - ok
17:26:30.0309 6884 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:26:30.0342 6884 HomeGroupProvider - ok
17:26:30.0359 6884 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:26:30.0591 6884 HpSAMD - ok
17:26:30.0630 6884 [ CF5C9BD985120781200D35FD445D0BD5 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:26:30.0679 6884 HTTP - ok
17:26:30.0696 6884 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:26:30.0711 6884 hwpolicy - ok
17:26:30.0722 6884 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:26:30.0739 6884 i8042prt - ok
17:26:30.0757 6884 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:26:30.0779 6884 iaStorV - ok
17:26:30.0824 6884 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:26:30.0851 6884 IDriverT ( UnsignedFile.Multi.Generic ) - warning
17:26:30.0851 6884 IDriverT - detected UnsignedFile.Multi.Generic (1)
17:26:30.0912 6884 [ C98A5B9D932430AD8EEBD3EF73756EF7 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:26:30.0943 6884 idsvc - ok
17:26:30.0948 6884 IEEtwCollectorService - ok
17:26:30.0970 6884 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:26:30.0985 6884 iirsp - ok
17:26:31.0023 6884 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
17:26:31.0067 6884 IKEEXT - ok
17:26:31.0154 6884 [ 718A4008EE5DA174400396B27509EF82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:26:31.0211 6884 IntcAzAudAddService - ok
17:26:31.0223 6884 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:26:31.0238 6884 intelide - ok
17:26:31.0255 6884 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
17:26:31.0290 6884 intelppm - ok
17:26:31.0328 6884 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:26:31.0368 6884 IPBusEnum - ok
17:26:31.0381 6884 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:26:31.0423 6884 IpFilterDriver - ok
17:26:31.0462 6884 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:26:31.0521 6884 iphlpsvc - ok
17:26:31.0542 6884 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:26:31.0559 6884 IPMIDRV - ok
17:26:31.0576 6884 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:26:31.0615 6884 IPNAT - ok
17:26:31.0621 6884 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:26:31.0641 6884 IRENUM - ok
17:26:31.0656 6884 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:26:31.0671 6884 isapnp - ok
17:26:31.0688 6884 [ 96BB922A0981BC7432C8CF52B5410FE6 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:26:31.0707 6884 iScsiPrt - ok
17:26:31.0717 6884 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:26:31.0732 6884 kbdclass - ok
17:26:31.0750 6884 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:26:31.0784 6884 kbdhid - ok
17:26:31.0807 6884 [ 62056ADD38513A86C4866E912371B56B ] KeyIso C:\Windows\system32\lsass.exe
17:26:31.0824 6884 KeyIso - ok
17:26:31.0854 6884 [ DFE85B031220F8E0271716BBB3C4C8FF ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:26:31.0869 6884 KSecDD - ok
17:26:31.0908 6884 [ 70D7302DD70B979637179BFD8295C924 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:26:31.0924 6884 KSecPkg - ok
17:26:31.0946 6884 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:26:31.0984 6884 ksthunk - ok
17:26:32.0013 6884 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:26:32.0057 6884 KtmRm - ok
17:26:32.0098 6884 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
17:26:32.0140 6884 LanmanServer - ok
17:26:32.0162 6884 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:26:32.0212 6884 LanmanWorkstation - ok
17:26:32.0261 6884 [ B705C7097F9A0EC941D02DCE7C7D426C ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
17:26:32.0276 6884 Live Updater Service - ok
17:26:32.0295 6884 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:26:32.0352 6884 lltdio - ok
17:26:32.0386 6884 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:26:32.0439 6884 lltdsvc - ok
17:26:32.0444 6884 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:26:32.0495 6884 lmhosts - ok
17:26:32.0520 6884 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:26:32.0537 6884 LSI_FC - ok
17:26:32.0550 6884 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:26:32.0566 6884 LSI_SAS - ok
17:26:32.0578 6884 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:26:32.0594 6884 LSI_SAS2 - ok
17:26:32.0607 6884 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:26:32.0623 6884 LSI_SCSI - ok
17:26:32.0640 6884 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:26:32.0681 6884 luafv - ok
17:26:32.0848 6884 [ FEAF4E98C93BC3512B8108D2F534A3BA ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
17:26:32.0954 6884 MBAMService - ok
17:26:33.0004 6884 [ EAC1189D80DE42C84066BA51DAC1A3C0 ] MBAMSwissArmy C:\Windows\System32\Drivers\mbamswissarmy.sys
17:26:33.0028 6884 MBAMSwissArmy - ok
17:26:33.0053 6884 [ 8135271183EA7C59BD865873C972159D ] MBAMWebProtection C:\Windows\system32\DRIVERS\mwac.sys
17:26:33.0070 6884 MBAMWebProtection - ok
17:26:33.0090 6884 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:26:33.0109 6884 Mcx2Svc - ok
17:26:33.0118 6884 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
17:26:33.0133 6884 megasas - ok
17:26:33.0151 6884 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:26:33.0171 6884 MegaSR - ok
17:26:33.0219 6884 Microsoft SharePoint Workspace Audit Service - ok
17:26:33.0255 6884 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:26:33.0307 6884 MMCSS - ok
17:26:33.0327 6884 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:26:33.0367 6884 Modem - ok
17:26:33.0377 6884 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:26:33.0395 6884 monitor - ok
17:26:33.0412 6884 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:26:33.0427 6884 mouclass - ok
17:26:33.0434 6884 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:26:33.0461 6884 mouhid - ok
17:26:33.0495 6884 [ 072D8646E23ECF8A3F5F0157017B4DB6 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:26:33.0510 6884 mountmgr - ok
17:26:33.0583 6884 [ DE077BA53BE5653E5FA7A6DB85FEFE0B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:26:33.0601 6884 MozillaMaintenance - ok
17:26:33.0617 6884 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:26:33.0633 6884 mpio - ok
17:26:33.0653 6884 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:26:33.0864 6884 mpsdrv - ok
17:26:33.0887 6884 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:26:33.0935 6884 MpsSvc - ok
17:26:33.0967 6884 [ 98DB1790F0A584E0A2528B92B052417F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:26:34.0139 6884 MRxDAV - ok
17:26:34.0177 6884 [ 767C6DF04C5758B9F0790D400541B44F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:26:34.0208 6884 mrxsmb - ok
17:26:34.0241 6884 [ BD55F604FFABC911F8E5500186AE70E5 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:26:34.0263 6884 mrxsmb10 - ok
17:26:34.0294 6884 [ 92EECFB046D4706A4B8D699A4069B6EC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:26:34.0331 6884 mrxsmb20 - ok
17:26:34.0352 6884 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:26:34.0367 6884 msahci - ok
17:26:34.0382 6884 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:26:34.0398 6884 msdsm - ok
17:26:34.0415 6884 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:26:34.0652 6884 MSDTC - ok
17:26:34.0672 6884 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:26:34.0710 6884 Msfs - ok
17:26:34.0721 6884 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:26:34.0775 6884 mshidkmdf - ok
17:26:34.0798 6884 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:26:34.0812 6884 msisadrv - ok
17:26:34.0842 6884 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:26:34.0883 6884 MSiSCSI - ok
17:26:34.0888 6884 msiserver - ok
17:26:34.0912 6884 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:26:34.0955 6884 MSKSSRV - ok
17:26:34.0983 6884 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:26:35.0039 6884 MSPCLOCK - ok
17:26:35.0044 6884 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:26:35.0083 6884 MSPQM - ok
17:26:35.0104 6884 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:26:35.0125 6884 MsRPC - ok
17:26:35.0137 6884 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:26:35.0152 6884 mssmbios - ok
17:26:35.0157 6884 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:26:35.0210 6884 MSTEE - ok
17:26:35.0234 6884 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:26:35.0262 6884 MTConfig - ok
17:26:35.0304 6884 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:26:35.0319 6884 Mup - ok
17:26:35.0337 6884 [ C009123B206C56854F4E88596035231D ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
17:26:35.0351 6884 mwlPSDFilter - ok
17:26:35.0374 6884 [ BF3739EEB9F008B1DEBAC115089A53F8 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
17:26:35.0387 6884 mwlPSDNServ - ok
17:26:35.0430 6884 [ 38DD143D95E7A01B86F219DDA9C28779 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
17:26:35.0444 6884 mwlPSDVDisk - ok
17:26:35.0464 6884 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:26:35.0524 6884 napagent - ok
17:26:35.0566 6884 [ 9FB2A095B1166CB3C9A06651863B3452 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:26:35.0587 6884 NativeWifiP - ok
17:26:35.0648 6884 [ F7309F42555F8AAB7144A51A1F2585B0 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:26:35.0679 6884 NDIS - ok
17:26:35.0697 6884 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:26:35.0736 6884 NdisCap - ok
17:26:35.0751 6884 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:26:35.0789 6884 NdisTapi - ok
17:26:35.0806 6884 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:26:35.0843 6884 Ndisuio - ok
17:26:35.0862 6884 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:26:35.0901 6884 NdisWan - ok
17:26:35.0921 6884 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:26:35.0958 6884 NDProxy - ok
17:26:36.0016 6884 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:26:36.0023 6884 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:26:36.0023 6884 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:26:36.0028 6884 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:26:36.0066 6884 NetBIOS - ok
17:26:36.0108 6884 [ 734837208CAFD6E0959A7A0333C95C9D ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:26:36.0130 6884 NetBT - ok
17:26:36.0139 6884 [ 62056ADD38513A86C4866E912371B56B ] Netlogon C:\Windows\system32\lsass.exe
17:26:36.0155 6884 Netlogon - ok
17:26:36.0187 6884 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:26:36.0266 6884 Netman - ok
17:26:36.0305 6884 [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:26:36.0548 6884 NetMsmqActivator - ok
17:26:36.0552 6884 [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:26:36.0572 6884 NetPipeActivator - ok
17:26:36.0595 6884 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:26:36.0641 6884 netprofm - ok
17:26:36.0708 6884 [ 63DC6C3C280F2C3ECA400780FEB2CED1 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:26:36.0762 6884 netr28ux - ok
17:26:36.0792 6884 [ B72BB9496A126FCFC7FC5945DED9B411 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
17:26:36.0819 6884 netr28x - ok
17:26:36.0852 6884 [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:26:36.0871 6884 NetTcpActivator - ok
17:26:36.0876 6884 [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:26:36.0895 6884 NetTcpPortSharing - ok
17:26:36.0911 6884 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:26:36.0926 6884 nfrd960 - ok
17:26:36.0969 6884 [ 8B301D474B478E9A92823BAB50A7BC49 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:26:37.0004 6884 NlaSvc - ok
17:26:37.0025 6884 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:26:37.0063 6884 Npfs - ok
17:26:37.0099 6884 [ 668B9EFF5CCA4542F435D2CD9CE3C778 ] nsi C:\Windows\system32\nsisvc.dll
17:26:37.0118 6884 nsi - ok
17:26:37.0160 6884 [ BE313E566EEA2A4B7F9AAC9782A567D4 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:26:37.0177 6884 nsiproxy - ok
17:26:37.0235 6884 [ 96FEB18D7FFA4DC10F0C3CC4EF41500E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:26:37.0278 6884 Ntfs - ok
17:26:37.0294 6884 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:26:37.0350 6884 Null - ok
17:26:37.0388 6884 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:26:37.0405 6884 nvraid - ok
17:26:37.0417 6884 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:26:37.0434 6884 nvstor - ok
17:26:37.0448 6884 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:26:37.0465 6884 nv_agp - ok
17:26:37.0482 6884 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:26:37.0498 6884 ohci1394 - ok
17:26:37.0561 6884 [ D30981DA22F2EDB8678AF50B634A9587 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:26:37.0582 6884 ose - ok
17:26:37.0705 6884 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:26:37.0841 6884 osppsvc - ok
17:26:37.0878 6884 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:26:37.0929 6884 p2pimsvc - ok
17:26:37.0964 6884 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:26:37.0986 6884 p2psvc - ok
17:26:38.0003 6884 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
17:26:38.0032 6884 Parport - ok
17:26:38.0060 6884 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:26:38.0075 6884 partmgr - ok
17:26:38.0107 6884 [ 3CD83692C43D87088E85E3C916146FFB ] PcaSvc C:\Windows\System32\pcasvc.dll
17:26:38.0133 6884 PcaSvc - ok
17:26:38.0147 6884 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:26:38.0167 6884 pci - ok
17:26:38.0196 6884 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:26:38.0210 6884 pciide - ok
17:26:38.0226 6884 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:26:38.0245 6884 pcmcia - ok
17:26:38.0250 6884 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:26:38.0265 6884 pcw - ok
17:26:38.0359 6884 [ 1EAE050F8CDC82B12C9F8C58DFB7567A ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
17:26:38.0393 6884 PDFProFiltSrvPP - ok
17:26:38.0423 6884 [ EA4D67448BE493D543F1730D6CD04694 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:26:38.0451 6884 PEAUTH - ok
17:26:38.0521 6884 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:26:38.0549 6884 PerfHost - ok
17:26:38.0600 6884 [ BC5F8C5C7ACCD0B884FCB8B67616F537 ] pla C:\Windows\system32\pla.dll
17:26:38.0658 6884 pla - ok
17:26:38.0704 6884 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:26:38.0726 6884 PlugPlay - ok
17:26:38.0833 6884 [ 840AC13DA861C31665FE805E3B53EAE0 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
17:26:38.0876 6884 PMBDeviceInfoProvider - ok
17:26:38.0948 6884 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:26:38.0964 6884 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
17:26:38.0964 6884 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
17:26:38.0993 6884 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:26:39.0021 6884 PNRPAutoReg - ok
17:26:39.0042 6884 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:26:39.0060 6884 PNRPsvc - ok
17:26:39.0101 6884 [ 80D6B0563ED2BF10656B1D4748331082 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:26:39.0147 6884 PolicyAgent - ok
17:26:39.0182 6884 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:26:39.0224 6884 Power - ok
17:26:39.0249 6884 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:26:39.0287 6884 PptpMiniport - ok
17:26:39.0306 6884 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
17:26:39.0331 6884 Processor - ok
17:26:39.0359 6884 [ B6A58491307B4CADA572583D863DC602 ] ProfSvc C:\Windows\system32\profsvc.dll
17:26:39.0394 6884 ProfSvc - ok
17:26:39.0398 6884 Prot6Flt - ok
17:26:39.0438 6884 [ 62056ADD38513A86C4866E912371B56B ] ProtectedStorage C:\Windows\system32\lsass.exe
17:26:39.0455 6884 ProtectedStorage - ok
17:26:39.0464 6884 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:26:39.0503 6884 Psched - ok
17:26:39.0541 6884 [ BC08F7F3C53CBEE68670ED1314E290FD ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:26:39.0555 6884 PxHlpa64 - ok
17:26:39.0662 6884 [ 2DC444DA17A1F4632631ED68A3C1F97D ] QHActiveDefense C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
17:26:39.0689 6884 QHActiveDefense - ok
17:26:39.0726 6884 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:26:39.0768 6884 ql2300 - ok
17:26:39.0786 6884 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:26:39.0802 6884 ql40xx - ok
17:26:39.0814 6884 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:26:39.0839 6884 QWAVE - ok
17:26:39.0855 6884 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:26:39.0909 6884 QWAVEdrv - ok
17:26:39.0928 6884 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:26:39.0981 6884 RasAcd - ok
17:26:39.0999 6884 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:26:40.0055 6884 RasAgileVpn - ok
17:26:40.0076 6884 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:26:40.0116 6884 RasAuto - ok
17:26:40.0130 6884 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:26:40.0182 6884 Rasl2tp - ok
17:26:40.0203 6884 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:26:40.0254 6884 RasMan - ok
17:26:40.0270 6884 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:26:40.0325 6884 RasPppoe - ok
17:26:40.0359 6884 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:26:40.0399 6884 RasSstp - ok
17:26:40.0417 6884 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:26:40.0458 6884 rdbss - ok
17:26:40.0471 6884 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:26:40.0497 6884 rdpbus - ok
17:26:40.0523 6884 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:26:40.0578 6884 RDPCDD - ok
17:26:40.0587 6884 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:26:40.0631 6884 RDPENCDD - ok
17:26:40.0661 6884 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:26:40.0699 6884 RDPREFMP - ok
17:26:40.0797 6884 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:26:40.0846 6884 RdpVideoMiniport - ok
17:26:40.0877 6884 [ FE571E088C2D83619D2D48D4E961BF41 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:26:40.0895 6884 RDPWD - ok
17:26:40.0916 6884 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:26:40.0934 6884 rdyboost - ok
17:26:40.0982 6884 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:26:41.0022 6884 RemoteAccess - ok
17:26:41.0042 6884 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:26:41.0084 6884 RemoteRegistry - ok
17:26:41.0152 6884 RoxLiveShare9 - ok
17:26:41.0167 6884 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:26:41.0227 6884 RpcEptMapper - ok
17:26:41.0253 6884 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:26:41.0270 6884 RpcLocator - ok
17:26:41.0315 6884 [ 3F1A199859B4F3F8357B2A0AF5666A54 ] RpcSs C:\Windows\System32\rpcss.dll
17:26:41.0340 6884 RpcSs - ok
17:26:41.0355 6884 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:26:41.0395 6884 rspndr - ok
17:26:41.0437 6884 [ E50CFB92986DCAB49DE93788FD695813 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:26:41.0459 6884 RTL8167 - ok
17:26:41.0519 6884 [ D74FE7DFA031FA2C6F96A26123814D3D ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
17:26:41.0545 6884 RTL8169 - ok
17:26:41.0559 6884 RtlWlanu - ok
17:26:41.0574 6884 [ 62056ADD38513A86C4866E912371B56B ] SamSs C:\Windows\system32\lsass.exe
17:26:41.0591 6884 SamSs - ok
17:26:41.0612 6884 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:26:41.0628 6884 sbp2port - ok
17:26:41.0640 6884 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:26:41.0683 6884 SCardSvr - ok
17:26:41.0718 6884 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:26:41.0771 6884 scfilter - ok
17:26:41.0838 6884 [ 40686B59C127F0C93B4234E4A1E3472A ] Schedule C:\Windows\system32\schedsvc.dll
17:26:41.0902 6884 Schedule - ok
17:26:41.0924 6884 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:26:41.0962 6884 SCPolicySvc - ok
17:26:41.0985 6884 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:26:42.0015 6884 SDRSVC - ok
17:26:42.0044 6884 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:26:42.0073 6884 secdrv - ok
17:26:42.0106 6884 [ A19623BDD61E66A12AB53992002B4F3A ] seclogon C:\Windows\system32\seclogon.dll
17:26:42.0132 6884 seclogon - ok
17:26:42.0146 6884 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
17:26:42.0187 6884 SENS - ok
17:26:42.0203 6884 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:26:42.0231 6884 SensrSvc - ok
17:26:42.0249 6884 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
17:26:42.0264 6884 Serenum - ok
17:26:42.0278 6884 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
17:26:42.0296 6884 Serial - ok
17:26:42.0310 6884 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:26:42.0326 6884 sermouse - ok
17:26:42.0350 6884 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:26:42.0390 6884 SessionEnv - ok
17:26:42.0401 6884 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:26:42.0476 6884 sffdisk - ok
17:26:42.0500 6884 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:26:42.0755 6884 sffp_mmc - ok
17:26:42.0776 6884 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:26:43.0020 6884 sffp_sd - ok
17:26:43.0035 6884 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:26:43.0063 6884 sfloppy - ok
17:26:43.0096 6884 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:26:43.0152 6884 SharedAccess - ok
17:26:43.0168 6884 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:26:43.0289 6884 ShellHWDetection - ok
17:26:43.0308 6884 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:26:43.0548 6884 SiSRaid2 - ok
17:26:43.0558 6884 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:26:43.0834 6884 SiSRaid4 - ok
17:26:43.0913 6884 [ 52F7E8603E888E3DB0A8B3D1804098E9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:26:43.0936 6884 SkypeUpdate - ok
17:26:43.0964 6884 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:26:44.0104 6884 Smb - ok
17:26:44.0124 6884 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:26:44.0362 6884 SNMPTRAP - ok
17:26:44.0381 6884 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:26:44.0641 6884 spldr - ok
17:26:44.0670 6884 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:26:44.0725 6884 Spooler - ok
17:26:44.0793 6884 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:26:44.0911 6884 sppsvc - ok
17:26:44.0927 6884 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:26:45.0192 6884 sppuinotify - ok
17:26:45.0233 6884 [ 72E6A150A8C8530B201832D1C801CDE6 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:26:45.0272 6884 srv - ok
17:26:45.0297 6884 [ C4F67ABCC5033D334613F28F9E782809 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:26:45.0474 6884 srv2 - ok
17:26:45.0506 6884 [ C53CB62B0E57488AAE41FDA0FF8A0AB9 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:26:45.0542 6884 srvnet - ok
17:26:45.0571 6884 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:26:45.0614 6884 SSDPSRV - ok
17:26:45.0633 6884 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:26:45.0688 6884 SstpSvc - ok
17:26:45.0705 6884 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:26:45.0981 6884 stexstor - ok
17:26:46.0010 6884 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:26:46.0037 6884 StillCam - ok
17:26:46.0085 6884 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:26:46.0274 6884 stisvc - ok
17:26:46.0282 6884 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:26:46.0296 6884 swenum - ok
17:26:46.0381 6884 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:26:46.0532 6884 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
17:26:46.0532 6884 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
17:26:46.0554 6884 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:26:46.0823 6884 swprv - ok
17:26:46.0879 6884 [ 2E730941CC5BF6200A4F56D1E9C24AAD ] SysMain C:\Windows\system32\sysmain.dll
17:26:46.0956 6884 SysMain - ok
17:26:46.0968 6884 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:26:47.0084 6884 TabletInputService - ok
17:26:47.0132 6884 [ 5B4A09AB34D0205C616C4D247AD29F57 ] tap-tb-0901 C:\Windows\system32\DRIVERS\tap-tb-0901.sys
17:26:47.0185 6884 tap-tb-0901 - ok
17:26:47.0209 6884 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:26:47.0346 6884 TapiSrv - ok
17:26:47.0422 6884 [ 7FB36A0A036ADDACE0A868E4A43C1C27 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:26:47.0470 6884 Tcpip - ok
17:26:47.0520 6884 [ 7FB36A0A036ADDACE0A868E4A43C1C27 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:26:47.0563 6884 TCPIP6 - ok
17:26:47.0593 6884 [ 7FE5586314EE7D6AA8483264A089E5AF ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:26:47.0918 6884 tcpipreg - ok
17:26:47.0935 6884 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:26:47.0963 6884 TDPIPE - ok
17:26:47.0990 6884 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:26:48.0134 6884 TDTCP - ok
17:26:48.0167 6884 [ 4DD986720F7CB7A8A5D1226793097B9A ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:26:48.0432 6884 tdx - ok
17:26:48.0465 6884 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:26:48.0480 6884 TermDD - ok
17:26:48.0528 6884 [ 008CD4EBFABCF78D0F19B3778492648C ] TermService C:\Windows\System32\termsrv.dll
17:26:48.0581 6884 TermService - ok
17:26:48.0600 6884 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:26:48.0698 6884 Themes - ok
17:26:48.0710 6884 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:26:48.0751 6884 THREADORDER - ok
17:26:48.0836 6884 [ C390F6F13C90413ABB02F85714F35DF2 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
17:26:48.0940 6884 TomTomHOMEService - ok
17:26:48.0987 6884 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:26:49.0259 6884 TrkWks - ok
17:26:49.0301 6884 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:26:49.0340 6884 TrustedInstaller - ok
17:26:49.0384 6884 [ 2CF58216424757ED29605B4F18EC443C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:26:49.0520 6884 tssecsrv - ok
17:26:49.0551 6884 [ E9981ECE8D894CEF7038FD1D040EB426 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:26:49.0756 6884 TsUsbFlt - ok
17:26:49.0785 6884 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:26:50.0053 6884 TsUsbGD - ok
17:26:50.0091 6884 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:26:50.0345 6884 tunnel - ok
17:26:50.0359 6884 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:26:50.0417 6884 uagp35 - ok
17:26:50.0433 6884 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:26:50.0578 6884 udfs - ok
17:26:50.0603 6884 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:26:50.0633 6884 UI0Detect - ok
17:26:50.0665 6884 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:26:50.0681 6884 uliagpkx - ok
17:26:50.0696 6884 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:26:50.0712 6884 umbus - ok
17:26:50.0731 6884 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
17:26:50.0763 6884 UmPass - ok
17:26:50.0800 6884 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:26:50.0844 6884 upnphost - ok
17:26:50.0896 6884 [ F957092C63CD71D85903CA0D8370F473 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:26:50.0902 6884 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
17:26:50.0903 6884 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
17:26:50.0931 6884 [ 07F0B8906E1F39572697474179FCFBF9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
17:26:50.0956 6884 usbccgp - ok
17:26:50.0976 6884 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:26:51.0007 6884 usbcir - ok
17:26:51.0029 6884 [ 5909E0100B410113457CC7B28A1D2926 ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:26:51.0057 6884 usbehci - ok
17:26:51.0082 6884 [ 6DA175C12517CB1482EE8F8BFCB5B727 ] usbhub C:\Windows\system32\drivers\usbhub.sys
17:26:51.0102 6884 usbhub - ok
17:26:51.0133 6884 [ 482AB805ADF84B06A16E6EBC257B6901 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:26:51.0149 6884 usbohci - ok
17:26:51.0171 6884 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:26:51.0190 6884 usbprint - ok
17:26:51.0242 6884 [ 2C42E595E7E381596B9A14F88F5AE027 ] usbrndis6 C:\Windows\system32\DRIVERS\usb80236.sys
17:26:51.0264 6884 usbrndis6 - ok
17:26:51.0295 6884 [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:26:51.0324 6884 usbscan - ok
17:26:51.0357 6884 [ D029DD09E22EB24318A8FC3D8138BA43 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:26:51.0401 6884 USBSTOR - ok
17:26:51.0430 6884 [ B662E4B46E23CF1C0EC1F6A546570210 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:26:51.0457 6884 usbuhci - ok
17:26:51.0507 6884 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
17:26:51.0523 6884 usb_rndisx - ok
17:26:51.0541 6884 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:26:51.0582 6884 UxSms - ok
17:26:51.0595 6884 [ 62056ADD38513A86C4866E912371B56B ] VaultSvc C:\Windows\system32\lsass.exe
17:26:51.0611 6884 VaultSvc - ok
17:26:51.0628 6884 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:26:51.0644 6884 vdrvroot - ok
17:26:51.0661 6884 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:26:51.0721 6884 vds - ok
17:26:51.0743 6884 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:26:51.0762 6884 vga - ok
17:26:51.0810 6884 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:26:51.0849 6884 VgaSave - ok
17:26:51.0863 6884 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:26:51.0925 6884 vhdmp - ok
17:26:51.0937 6884 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:26:51.0952 6884 viaide - ok
17:26:51.0969 6884 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:26:51.0984 6884 volmgr - ok
17:26:52.0020 6884 [ 85C5468BC395819AE2A0C747334BA14C ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:26:52.0040 6884 volmgrx - ok
17:26:52.0076 6884 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:26:52.0096 6884 volsnap - ok
17:26:52.0133 6884 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
17:26:52.0150 6884 vpcbus - ok
17:26:52.0177 6884 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
17:26:52.0193 6884 vpcnfltr - ok
17:26:52.0218 6884 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
17:26:52.0233 6884 vpcusb - ok
17:26:52.0276 6884 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
17:26:52.0295 6884 vpcvmm - ok
17:26:52.0308 6884 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:26:52.0325 6884 vsmraid - ok
17:26:52.0363 6884 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:26:52.0439 6884 VSS - ok
17:26:52.0446 6884 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:26:52.0465 6884 vwifibus - ok
17:26:52.0478 6884 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:26:52.0500 6884 vwififlt - ok
17:26:52.0515 6884 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:26:52.0739 6884 vwifimp - ok
17:26:52.0757 6884 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:26:52.0801 6884 W32Time - ok
17:26:52.0816 6884 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:26:52.0833 6884 WacomPen - ok
17:26:52.0858 6884 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:26:52.0914 6884 WANARP - ok
17:26:52.0918 6884 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:26:52.0957 6884 Wanarpv6 - ok
17:26:53.0005 6884 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:26:53.0042 6884 WatAdminSvc - ok
17:26:53.0074 6884 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:26:53.0299 6884 wbengine - ok
17:26:53.0346 6884 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:26:53.0371 6884 WbioSrvc - ok
17:26:53.0386 6884 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:26:53.0413 6884 wcncsvc - ok
17:26:53.0438 6884 [ BC00873272B3771CCDA38336AF2B4D4B ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:26:53.0456 6884 WcsPlugInService - ok
17:26:53.0469 6884 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
17:26:53.0484 6884 Wd - ok
17:26:53.0505 6884 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:26:53.0536 6884 Wdf01000 - ok
17:26:53.0572 6884 [ C6F7473B55510F0B93961DA03D8E3B38 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:26:53.0613 6884 WdiServiceHost - ok
17:26:53.0617 6884 [ C6F7473B55510F0B93961DA03D8E3B38 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:26:53.0634 6884 WdiSystemHost - ok
17:26:53.0667 6884 [ EE841B6D1F2B9508D3ABAE52AC05A94F ] WebClient C:\Windows\System32\webclnt.dll
17:26:53.0707 6884 WebClient - ok
17:26:53.0730 6884 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:26:53.0774 6884 Wecsvc - ok
17:26:53.0792 6884 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:26:53.0833 6884 wercplsupport - ok
17:26:53.0852 6884 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:26:53.0892 6884 WerSvc - ok
17:26:53.0903 6884 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:26:53.0941 6884 WfpLwf - ok
17:26:53.0958 6884 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:26:53.0972 6884 WIMMount - ok
17:26:53.0987 6884 WinDefend - ok
17:26:53.0995 6884 WinHttpAutoProxySvc - ok
17:26:54.0031 6884 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:26:54.0092 6884 Winmgmt - ok
17:26:54.0156 6884 [ EBDA1B0F15CB9B2CBCC6C94824E4E054 ] WinRM C:\Windows\system32\WsmSvc.dll
17:26:54.0214 6884 WinRM - ok
17:26:54.0291 6884 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:26:54.0310 6884 WinUsb - ok
17:26:54.0360 6884 [ 4B7912EB80820EAC543EE54806EFCAF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:26:54.0390 6884 Wlansvc - ok
17:26:54.0438 6884 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:26:54.0452 6884 wlcrasvc - ok
17:26:54.0558 6884 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:26:54.0619 6884 wlidsvc - ok
17:26:54.0644 6884 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:26:54.0668 6884 WmiAcpi - ok
17:26:54.0691 6884 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:26:54.0711 6884 wmiApSrv - ok
17:26:54.0741 6884 WMPNetworkSvc - ok
17:26:54.0777 6884 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:26:54.0808 6884 WPCSvc - ok
17:26:54.0827 6884 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:26:54.0847 6884 WPDBusEnum - ok
17:26:54.0855 6884 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:26:54.0905 6884 ws2ifsl - ok
17:26:54.0928 6884 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
17:26:54.0952 6884 wscsvc - ok
17:26:54.0986 6884 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
17:26:55.0005 6884 WSDPrintDevice - ok
17:26:55.0029 6884 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
17:26:55.0059 6884 WSDScan - ok
17:26:55.0063 6884 WSearch - ok
17:26:55.0135 6884 [ 88009DB9E1166B6B6713A858C176FECD ] wuauserv C:\Windows\system32\wuaueng.dll
17:26:55.0234 6884 wuauserv - ok
17:26:55.0252 6884 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:26:55.0290 6884 WudfPf - ok
17:26:55.0324 6884 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:26:55.0341 6884 WUDFRd - ok
17:26:55.0380 6884 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:26:55.0413 6884 wudfsvc - ok
17:26:55.0434 6884 [ 04F82965C09CBDF646B487E145060301 ] WwanSvc C:\Windows\System32\wwansvc.dll
17:26:55.0488 6884 WwanSvc - ok
17:26:55.0537 6884 ================ Scan global ===============================
17:26:55.0574 6884 [ 168EA9CD9BD6056BB6F60B57D5304BBE ] C:\Windows\system32\basesrv.dll
17:26:55.0608 6884 [ 66A8A9412337B08E1735204B8ADEE58C ] C:\Windows\system32\winsrv.dll
17:26:55.0617 6884 [ 66A8A9412337B08E1735204B8ADEE58C ] C:\Windows\system32\winsrv.dll
17:26:55.0633 6884 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:26:55.0664 6884 [ 71C85477DF9347FE8E7BC55768473FCA ] C:\Windows\system32\services.exe
17:26:55.0669 6884 [Global] - ok
17:26:55.0669 6884 ================ Scan MBR ==================================
17:26:55.0698 6884 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:26:55.0959 6884 \Device\Harddisk0\DR0 - ok
17:26:56.0249 6884 [ 508F4A6A6A6B3DADC6D881D9948389D2 ] \Device\Harddisk1\DR1
17:26:59.0136 6884 \Device\Harddisk1\DR1 - ok
17:26:59.0144 6884 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
17:26:59.0626 6884 \Device\Harddisk4\DR4 - ok
17:26:59.0629 6884 ================ Scan VBR ==================================
17:26:59.0635 6884 [ A92205E969474C571245C35CE629AD7E ] \Device\Harddisk0\DR0\Partition1
17:26:59.0638 6884 \Device\Harddisk0\DR0\Partition1 - ok
17:26:59.0660 6884 [ E3C841DD87604AD71B920E425BD434D7 ] \Device\Harddisk0\DR0\Partition2
17:26:59.0662 6884 \Device\Harddisk0\DR0\Partition2 - ok
17:26:59.0682 6884 [ 22CF2C902F81402007C8CB4B02488248 ] \Device\Harddisk0\DR0\Partition3
17:26:59.0684 6884 \Device\Harddisk0\DR0\Partition3 - ok
17:26:59.0691 6884 [ 6BB7BE4F2E65C949E2B6D9624BA6BDAA ] \Device\Harddisk1\DR1\Partition1
17:26:59.0697 6884 \Device\Harddisk1\DR1\Partition1 - ok
17:26:59.0702 6884 [ 09E7E3296B183BCF02CAB67864C59A7E ] \Device\Harddisk4\DR4\Partition1
17:26:59.0706 6884 \Device\Harddisk4\DR4\Partition1 - ok
17:26:59.0706 6884 ============================================================
17:26:59.0706 6884 Scan finished
17:26:59.0706 6884 ============================================================
17:26:59.0720 6592 Detected object count: 7
17:26:59.0720 6592 Actual detected object count: 7
17:28:21.0042 6592 AMD FUEL Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0042 6592 AMD FUEL Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0044 6592 BrYNSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0044 6592 BrYNSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0047 6592 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0047 6592 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0049 6592 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0049 6592 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0052 6592 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0052 6592 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0054 6592 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0054 6592 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:21.0056 6592 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
17:28:21.0056 6592 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:28:43.0357 4472 Deinitialize success
 
Ook na deze scan blijft de pop-up gewoon verschijnen.
 
Kijk eens in C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp of daar geen snelkoppeling staat leidend naar MSIExec.
 
Daar staat alleen de TP-LINK Wireless Configuration Utility
 
Heb je na de scan met ESET ook opgeschoond? Want daar waren nogal wat items gedetecteerd...
 
Download SystemLook.exe voor 32-bit Windows of SystemLook.exe voor 64-bit Windows
  • Download het bestand naar het Bureaublad.

SystemLook.exe opstarten:
  • Windows 2000 en Windows XP: start SystemLook.exe middels dubbelklik op de snelkoppeling.
  • Windows Vista en Windows 7 Windows 8 en Windows 10: start SystemLook.exe middels rechtsklik op de snelkoppeling en dan kiezen voor "Als Administrator uitvoeren".
In het venster dat opent kopieer je onderstaande code:
Code:
:filefind
product.msi
Product.msi
  • Klik op de knop "Look" om de scan te activeren.
  • Als de scan klaar is opent een tekstbestand (SystemLook.txt).
  • Post de inhoud van dit logbestand.
 
De pop-up is er nog steeds

Hier heb je nog 3 dingen die je zou kunnen proberen.

Method 1:
Stop the Windows Installer service and check:
a. In desktop screen press Windows key + Q
b. In the search box type command and find command prompt from the left pane
c. Right-click Command Prompt, and select Run as Administrator.
d. At the Command Prompt window type net stop msiserver and press Enter:
Note: This will effectively stop the Windows Installer service. This service will load-on-demand so manually stopping it does not adversely affect the computer.

Method 2:
Perform a clean boot and check if issue persists.
Refer thr link
How to perform a clean boot to troubleshoot a problem in Windows Vista, Windows 7, or Windows 8:
http://support.microsoft.com/kb/929135
Note: Reset the computer to start as normal. Refer step 3.

Method 3:
Download and run Microsoft Safety Scanner from the link to make sure you computer is not infected by virus:
Refer the link:
Safety Scanner - Windows Defender Security Intelligence
Note: The Microsoft Safety Scanner expires 10 days after being downloaded. To rerun a scan with the latest anti-malware definitions, download and run the Microsoft Safety Scanner again.
Note: Any data files that are infected may only be cleaned by deleting the file entirely, which means there is a potential for data loss.
 
De linken naar de download van SystemLook.exe doen het niet.
 
@aarie25

Method 1:
De Windows Installer-service niet is gestart.

Method 2:
Bij een schoon starten verschijnt de pop-up inderdaad niet.

Method 3:
De scan moet ik nog starten.
 
Heb bij methode 2 ook de troubleshooter gebruikt?
 
De (snelle) scan heeft niets opgeleverd.

Ik heb geen troubleshooter gezien bij methode 2.
Wel heb 'Wat is de volgende stap als ik een opgeschoonde omgeving heb' gelezen maar vond niets dat van toepassing was.
 
Status
Niet open voor verdere reacties.
Steun Ons

Nieuwste berichten

Terug
Bovenaan