CIO Tech Eksperten IT-JOB IT-Kurser Events Podcast Søg
Cookie ikon
Avatar billede gate62 Nybegynder
11. april 2012 - 19:49 Der er 40 kommentarer og
1 løsning

Hjælp til Måske inficeret pc

Hej Eksperter
Jeg sidder lige og hjælper min niece med at få hendes pc lidt på højkant igen.
det er en HP Pavllion G6 notebook
Intel core i5 2410M 2.30 ghz 4GB hukommelse
windows 7 home primium 64bit med servicepack 1
Jeg har fjernet den gamle antivirus program norton og har nu installeret microsoft security essentials istedet, jeg kan se at den er installeret men den åbner ikke når man klikker på den, så jeg har en lumsk anelse om at der er virus på maskinen. har prøvet at rense den med ccleaner og fik fjernet en del, derefter prøvet med malwarebytes anti-malware, men den opdaterer ikke og kan ikke startes, så jeg ved ikke om der var nogen som er friske på lidt hjælp :)
Avatar billede mgn_online Nybegynder
11. april 2012 - 19:57 #1
Jeg kan anbefale disse 2 programmer. Nemlig AVG antivirus Free-edition og superAntispyware. Gratis at hente begge to.

Klaus Mauritzen
Avatar billede f-arn Guru
11. april 2012 - 20:16 #2
Hent og kør DDS

Den laver to logs,(DDS.txt og Attach.txt) gem dem på skrivebordet og kopier indholdet af begge  herind.

OBS - DDS skal gemmes på computeren og ikke køres fra nettet.
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:17 #3
1) Sansynligvis stadig noget Symantec/Norton tilbage ... derfor
http://pctricks.dk/fjern-norton-antivirus-nu-55.html

2) Start MalwareBytes med "Højre Musetast - Kør som Administrator..."

PS: CCleaner er ikke til at fjerne Virus og andet utøj, men til at fjerne diverse midlertidige filer mm. samt oprydning i RegBasen ... meget sundt...

---

... for en go' ordens skyld; stik os/mig en HiJackThis ->
www.spywareinfo.dk/index.htm#/manualer/hijackthis.htm

Bemærk at HiJackThis.exe programmet skal gemmes i en dertil oprettet mappe og IKKE køres direkte fra nettet...

PS: Brug denne version af HJT -> http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe

Mht.: Vista/WIN7 - HøjreMusseTast - "Kør som Administrator..."

------------------
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:17 #4
(Fik ikke opdateret...)
Avatar billede gate62 Nybegynder
11. april 2012 - 20:18 #5
Hej
Jeg kan ikke installere AVG antivirus så det fungerer ordentlig, det er som om computeren ikke vil tillade noget som har med virusfjernelse at gøre. efter en tur med super antispyware fandt den 408 fejl så jeg skal nok prøve med en hijack logfil hvis der er en der har forstand på dem
Avatar billede gate62 Nybegynder
11. april 2012 - 20:21 #6
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:25:53, on 11-04-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Safe mode

Running processes:
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/5
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.avg.com/?hpsrc=tb&ds=AVG
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCON/5
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCON/5
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files (x86)\BrowserCompanion\jsloader.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Hjælp til logon til Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files (x86)\BrowserCompanion\updatebhoWin32.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETVÆRKSTJENESTE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETVÆRKSTJENESTE')
O8 - Extra context menu item: E&ksporter til Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: S&end til OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Sammenkædede OneNote-noter - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Sammenkædede OneNote-noter - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll
O18 - Protocol: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O18 - Protocol: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files (x86)\BrowserCompanion\tdataprotocol.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Tjenesten Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Tjeneste (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: iPod-tjeneste (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15909 bytes
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:22 #7
Du skal under alle omstændigheder ikke instalere flere aktive sikkerhedsprogrammer samtidig...
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:27 #8
*Suk* - alle de sædvanlige Grrr...

Afinstall
* MyWebSearch
* Babylon toolbar
* BrowserCompanion
* Bing Bar

---

Hvorfor i Safe Mode ?
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:28 #9
Gennemfør også #2 !!!
Avatar billede gate62 Nybegynder
11. april 2012 - 20:29 #10
hej larry
jeg kan ikke starte malwarebytes ved at højreklikke som admin, den reagerer slet ikke
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:33 #11
Kør #2 ... efter #8 ...
Avatar billede gate62 Nybegynder
11. april 2012 - 20:41 #12
Så er der afinstalleret i#8
og her er dds log

DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Camilla at 20:37:21 on 2012-04-11
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.45.1030.18.4044.2189 [GMT 2:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Advanced System Protector\advancedsystemprotector.exe
C:\Windows\system32\msiexec.exe
C:\Windows\syswow64\MsiExec.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://isearch.avg.com/?hpsrc=tb&ds=AVG
mWinlogon: Userinit=userinit.exe
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Hjælp til logon til Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - C:\Program Files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
uRun: [Facebook Update] "C:\Users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [Advanced System Protector] "C:\Program Files (x86)\Advanced System Protector\advancedsystemprotector.exe" autolaunch
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Advanced System Protector] "C:\Program Files (x86)\Advanced System Protector\advancedsystemprotector.exe" autolaunch
mRunOnce: [MyWebSearch bar Uninstall] rundll32 C:\PROGRA~2\Uninstall Fun Web Products.dll,O -2
uPolicies-explorer: HideSCAHealth = 1 (0x1)
uPolicies-explorer: NoInstrumentation = 1
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: EnableShellExecuteHooks = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&ksporter til Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: S&end til OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.1.2
TCP: Interfaces\{2F47214C-9A8F-4B52-9798-48198D19B325} : DhcpNameServer = 192.168.1.2
TCP: Interfaces\{CEC59FF9-360E-46CA-A4C3-082B184AD97A} : DhcpNameServer = 192.168.1.2
TCP: Interfaces\{CEC59FF9-360E-46CA-A4C3-082B184AD97A}\35F65667E6461686C6 : DhcpNameServer = 192.168.1.2
TCP: Interfaces\{CEC59FF9-360E-46CA-A4C3-082B184AD97A}\46C696E6B60273 : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{CEC59FF9-360E-46CA-A4C3-082B184AD97A}\65945454C45465F40554E4 : DhcpNameServer = 192.168.37.31
TCP: Interfaces\{CEC59FF9-360E-46CA-A4C3-082B184AD97A}\659454D235F474E4 : DhcpNameServer = 192.168.36.31
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SEH: EasyBits ShellExecute Hook: {e54729e8-bb3d-4270-9d49-7389ea579090} - C:\Windows\SysWow64\EZUPBH~1.DLL
IFEO: a.exe - svchost.exe
IFEO: aAvgApi.exe - svchost.exe
IFEO: AAWTray.exe - svchost.exe
IFEO: About.exe - svchost.exe
IFEO: ackwin32.exe - svchost.exe
{18DF081C-E8AD-4283-A596-FA578C2EBDC3}
BHO-X64: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{95B7759C-8C7F-4BF1-B163-73684A933233}
{9FDDE16B-836F-4806-AB1F-1455CBEFF289}
{AA58ED58-01DD-4d91-8333-CF10577473F7}
{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
{B4F3A835-0E21-4959-BA22-42B3008E02FF}
{DBC80044-A445-435b-BC74-9C25C1C588A9}
{2318C2B1-4965-11d4-9B18-009027A5CD4F}
{95B7759C-8C7F-4BF1-B163-73684A933233}
TB-X64: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun-x64: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
mRun-x64: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [Advanced System Protector] "C:\Program Files (x86)\Advanced System Protector\advancedsystemprotector.exe" autolaunch
mRunOnce-x64: [MyWebSearch bar Uninstall] rundll32 C:\PROGRA~2\Uninstall Fun Web Products.dll,O -2
IE-X64: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
SEH-X64: {E54729E8-BB3D-4270-9D49-7389EA579090}: EasyBits Security Shield Hook - prevents launching insecure programs by kids
IFEO-X64: a.exe - svchost.exe
IFEO-X64: aAvgApi.exe - svchost.exe
IFEO-X64: AAWTray.exe - svchost.exe
IFEO-X64: About.exe - svchost.exe
IFEO-X64: ackwin32.exe - svchost.exe
.
Note: multiple IFEO entries found. Please refer to Attach.txt
.
============= SERVICES / DRIVERS ===============
.
R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-4-3 63928]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe [2011-5-6 514232]
R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\system32\DRIVERS\clwvd.sys --> C:\Windows\system32\DRIVERS\clwvd.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\system32\DRIVERS\IntcDAud.sys --> C:\Windows\system32\DRIVERS\IntcDAud.sys [?]
R3 intelkmd;intelkmd;C:\Windows\system32\DRIVERS\igdpmd64.sys --> C:\Windows\system32\DRIVERS\igdpmd64.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
S2 gupdate;Tjenesten Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-1 136176]
S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Google Update Tjeneste (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-8-1 136176]
S3 Netaapl;Apple Mobile Device Ethernet Service;C:\Windows\system32\DRIVERS\netaapl64.sys --> C:\Windows\system32\DRIVERS\netaapl64.sys [?]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\system32\DRIVERS\RtsPStor.sys --> C:\Windows\system32\DRIVERS\RtsPStor.sys [?]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\system32\DRIVERS\VSTAZL6.SYS --> C:\Windows\system32\DRIVERS\VSTAZL6.SYS [?]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\system32\DRIVERS\VSTCNXT6.SYS --> C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
.
=============== Created Last 30 ================
.
2012-04-11 18:35:09    816648    ----a-w-    C:\Program Files (x86)\Uninstall Fun Web Products.dll
2012-04-11 18:07:46    --------    d-----w-    C:\ProgramData\Systweak
2012-04-11 18:07:44    16896    ----a-w-    C:\Windows\System32\sasnative64.exe
2012-04-11 18:07:44    --------    d-----w-    C:\Program Files (x86)\Advanced System Protector
2012-04-11 18:07:20    --------    d-----w-    C:\Users\Camilla\AppData\Roaming\Systweak
2012-04-11 18:07:16    18816    ----a-w-    C:\Windows\System32\roboot64.exe
2012-04-11 18:07:02    --------    d-----w-    C:\Program Files (x86)\RegClean Pro
2012-04-11 17:46:43    24904    ----a-w-    C:\Windows\System32\drivers\mbam.sys
2012-04-11 17:46:43    --------    d-----w-    C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-04-11 16:29:10    --------    d-----w-    C:\Program Files\CCleaner
2012-04-11 16:25:19    --------    d-----w-    C:\ProgramData\Malwarebytes
2012-04-11 16:08:22    --------    d-----w-    C:\Users\Camilla\AppData\Local\ElevatedDiagnostics
2012-04-11 15:32:51    927800    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{122CF127-C191-4D97-8D3C-18E8F6BFD06C}\gapaengine.dll
2012-04-11 15:32:04    8669240    ----a-w-    C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{48FD67BC-6110-4DF6-A360-3CBFA258CE91}\mpengine.dll
2012-04-11 15:29:59    3968368    ----a-w-    C:\Windows\SysWow64\ntkrnlpa.exe
2012-04-11 15:29:59    3913072    ----a-w-    C:\Windows\SysWow64\ntoskrnl.exe
2012-04-11 15:29:30    81408    ----a-w-    C:\Windows\System32\imagehlp.dll
2012-04-11 15:29:30    23408    ----a-w-    C:\Windows\System32\drivers\fs_rec.sys
2012-04-11 15:29:30    159232    ----a-w-    C:\Windows\SysWow64\imagehlp.dll
2012-04-11 15:29:29    5120    ----a-w-    C:\Windows\SysWow64\wmi.dll
2012-04-11 15:29:29    5120    ----a-w-    C:\Windows\System32\wmi.dll
2012-04-11 15:29:29    220672    ----a-w-    C:\Windows\System32\wintrust.dll
2012-04-11 15:29:29    172544    ----a-w-    C:\Windows\SysWow64\wintrust.dll
2012-04-11 15:24:50    --------    d-----w-    C:\Program Files (x86)\Microsoft Security Client
2012-04-11 15:24:42    --------    d-----w-    C:\Program Files\Microsoft Security Client
2012-04-11 14:27:05    --------    d-----w-    C:\Users\Camilla\AppData\Local\{4B93E3E1-D1F8-4069-AB04-880A3C919157}
2012-04-10 20:59:39    388096    ----a-r-    C:\Users\Camilla\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-04-10 20:59:38    --------    d-----w-    C:\Program Files (x86)\Trend Micro
2012-04-10 20:40:35    --------    d-----w-    C:\Windows\pss
2012-04-10 18:30:57    --------    d-----w-    C:\Program Files (x86)\AVG Secure Search
2012-04-10 17:58:36    --------    d-----w-    C:\Users\Camilla\AppData\Local\{7584F3F4-61CB-4DC4-A011-07A82E373306}
2012-04-08 19:55:10    --------    d-----w-    C:\Program Files (x86)\Audacity
2012-04-08 17:51:24    --------    d-----w-    C:\Users\Camilla\AppData\Roaming\Registry Mechanic
2012-04-08 03:29:41    --------    d-----w-    C:\Users\Camilla\AppData\Local\{EFE92E80-FE90-4FF3-9BD2-965BB6B54C76}
2012-04-07 20:12:37    --------    d-----w-    C:\ProgramData\AVG Secure Search
2012-04-07 20:12:32    --------    d-----w-    C:\Program Files (x86)\Common Files\AVG Secure Search
2012-04-07 20:12:25    --------    d-----w-    C:\Windows\SysWow64\drivers\AVG
2012-04-07 20:12:11    --------    d-----w-    C:\ProgramData\AVG2012
2012-04-07 20:11:19    --------    d-----w-    C:\Program Files (x86)\AVG
2012-04-07 20:05:10    --------    d--h--w-    C:\ProgramData\Common Files
2012-04-07 20:04:47    --------    d-----w-    C:\ProgramData\MFAData
2012-04-07 20:03:49    --------    d-----w-    C:\Program Files (x86)\Common Files\PC Tools
2012-04-04 20:55:19    --------    d-----w-    C:\Program Files (x86)\Common Files\Telespree
2012-04-04 20:54:58    --------    d-----w-    C:\Users\Camilla\AppData\Local\Hewlett-Packard_Developme
2012-04-04 05:53:56    182160    ----a-w-    C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-03-29 05:59:45    --------    d-----w-    C:\Users\Camilla\AppData\Local\{2E46DD58-C3CF-4ABD-8E60-CAE73351D428}
2012-03-28 08:02:18    --------    d-----w-    C:\Users\Camilla\AppData\Local\{0BF7F8A7-0BE9-4CCB-BAAB-B58D0FC93D80}
2012-03-28 08:02:08    --------    d-----w-    C:\Users\Camilla\AppData\Local\{E0EDE7D1-9F17-4011-B30E-D63BA2F85ED2}
2012-03-27 20:01:41    --------    d-----w-    C:\Users\Camilla\AppData\Local\{285CCCCB-CB2D-4AED-B9C1-B2BFDA413091}
2012-03-27 06:53:31    --------    d-----w-    C:\Users\Camilla\AppData\Local\{AA6DAC94-6F79-4BBE-9B45-B92A54C15214}
2012-03-26 18:53:07    --------    d-----w-    C:\Users\Camilla\AppData\Local\{67F03D35-1941-4111-A533-7F0C2A23735D}
2012-03-26 06:52:42    --------    d-----w-    C:\Users\Camilla\AppData\Local\{4DA03C57-B7FB-434E-B141-DC43B5FA090D}
2012-03-24 12:56:00    --------    d-----w-    C:\Users\Camilla\AppData\Local\{C108E099-C3C7-442B-9C22-D64F34FD620A}
2012-03-23 06:56:19    --------    d-----w-    C:\Users\Camilla\AppData\Local\{52E0EF9F-EA30-4310-BC0D-22A241464C6F}
2012-03-22 07:01:28    --------    d-----w-    C:\Users\Camilla\AppData\Local\{39B90A5E-8902-445B-8F75-D5BCF0BF3677}
2012-03-21 06:59:16    --------    d-----w-    C:\Users\Camilla\AppData\Local\{878D9CCF-AAB8-4F0E-8F17-B250636937B0}
2012-03-20 09:03:53    --------    d-----w-    C:\Users\Camilla\AppData\Local\{5586B1BF-903A-436B-AF79-53C265E2BAF8}
2012-03-19 21:03:30    --------    d-----w-    C:\Users\Camilla\AppData\Local\{653A9DD7-5F81-41E2-8E72-E000680DD883}
2012-03-19 08:41:03    --------    d-----w-    C:\Users\Camilla\AppData\Local\{672A4FA4-96EC-43E6-AD2F-70046FC81799}
2012-03-18 19:09:07    --------    d-----w-    C:\Users\Camilla\AppData\Local\{9AC07564-78C6-4D02-814A-29BFD591096D}
2012-03-18 19:08:53    --------    d-----w-    C:\Users\Camilla\AppData\Local\{7150E276-4AF3-479B-AE8B-1096B1AC9479}
2012-03-18 14:22:03    --------    d-----w-    C:\Users\Camilla\AppData\Local\{BB579644-72F1-4187-8CE3-4ACA53B3C787}
2012-03-16 07:02:23    --------    d-----w-    C:\Users\Camilla\AppData\Local\{BFA6D4A8-C9F8-47D7-B66F-2353002A18D7}
2012-03-15 18:50:35    --------    d-----w-    C:\Users\Camilla\AppData\Local\{D4EBD081-6945-4979-BD58-81412EC491C6}
2012-03-15 06:50:12    --------    d-----w-    C:\Users\Camilla\AppData\Local\{4F75825A-5494-4C12-80A2-99E2E54C4000}
2012-03-15 06:50:02    --------    d-----w-    C:\Users\Camilla\AppData\Local\{95A31BA6-1A06-4ECC-86A7-B6DFB0393EAD}
2012-03-14 09:06:32    3145728    ----a-w-    C:\Windows\System32\win32k.sys
2012-03-14 09:06:31    1544192    ----a-w-    C:\Windows\System32\DWrite.dll
2012-03-14 09:06:31    1077248    ----a-w-    C:\Windows\SysWow64\DWrite.dll
2012-03-14 09:05:23    9216    ----a-w-    C:\Windows\System32\rdrmemptylst.exe
2012-03-14 09:05:23    826880    ----a-w-    C:\Windows\SysWow64\rdpcore.dll
2012-03-14 09:05:23    77312    ----a-w-    C:\Windows\System32\rdpwsx.dll
2012-03-14 09:05:23    23552    ----a-w-    C:\Windows\System32\drivers\tdtcp.sys
2012-03-14 09:05:23    210944    ----a-w-    C:\Windows\System32\drivers\rdpwd.sys
2012-03-14 09:05:23    149504    ----a-w-    C:\Windows\System32\rdpcorekmts.dll
2012-03-14 09:05:23    1031680    ----a-w-    C:\Windows\System32\rdpcore.dll
2012-03-14 08:41:27    --------    d-----w-    C:\Users\Camilla\AppData\Local\{D397A702-1192-463A-AC40-77252F71398D}
2012-03-13 19:01:42    --------    d-----w-    C:\Users\Camilla\AppData\Local\{C0B7B274-73F1-4C73-9B25-86A01FB29F6F}
2012-03-13 07:01:17    --------    d-----w-    C:\Users\Camilla\AppData\Local\{3A362A53-0888-4308-9FF1-486E9F5BA6D7}
2012-03-12 18:51:22    --------    d-----w-    C:\Users\Camilla\AppData\Local\{429452A7-C2BC-4D02-AD18-912228D4059D}
.
==================== Find3M  ====================
.
2012-04-11 15:31:12    472808    ----a-w-    C:\Windows\SysWow64\deployJava1.dll
2012-03-06 06:53:37    5559152    ----a-w-    C:\Windows\System32\ntoskrnl.exe
2012-02-28 06:56:48    2311168    ----a-w-    C:\Windows\System32\jscript9.dll
2012-02-28 06:49:56    1390080    ----a-w-    C:\Windows\System32\wininet.dll
2012-02-28 06:48:57    1493504    ----a-w-    C:\Windows\System32\inetcpl.cpl
2012-02-28 06:42:55    2382848    ----a-w-    C:\Windows\System32\mshtml.tlb
2012-02-28 01:18:55    1799168    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2012-02-28 01:11:21    1427456    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2012-02-28 01:11:07    1127424    ----a-w-    C:\Windows\SysWow64\wininet.dll
2012-02-28 01:03:16    2382848    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2012-02-23 08:18:36    279656    ------w-    C:\Windows\System32\MpSigStub.exe
2012-02-15 10:58:02    768848    ----a-w-    C:\Windows\SysWow64\msvcr100.dll
2012-02-15 10:58:00    421200    ----a-w-    C:\Windows\SysWow64\msvcp100.dll
.
============= FINISH: 20:38:34,49 ===============
Avatar billede Computer Hjælp (Gratis) Mester
11. april 2012 - 20:47 #13
<f-arn>: Vil du ta' over her - synes der er mistænkelige elementer ?
Avatar billede gate62 Nybegynder
11. april 2012 - 21:02 #14
sorry glemte lige attach filen
her er den

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 26-07-2011 20:41:29
System Uptime: 11-04-2012 20:01:41 (0 hours ago)
.
Motherboard: Hewlett-Packard |  | 1670
Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz | CPU1 | 782/1333mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 681 GiB total, 619,706 GiB free.
D: is FIXED (NTFS) - 17 GiB total, 1,803 GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Description: PDU15_1G 72C2.0
Device ID: WPDBUSENUMROOT\UMB\2&37C186B&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_UDISK&PROD_PDU15_1G_72C2.0&REV_0.00#00000000001719&0#
Manufacturer: UDISK 
Name: Ny enhed
PNP Device ID: WPDBUSENUMROOT\UMB\2&37C186B&0&STORAGE#VOLUME#_??_USBSTOR#DISK&VEN_UDISK&PROD_PDU15_1G_72C2.0&REV_0.00#00000000001719&0#
Service: WUDFRd
.
==== System Restore Points ===================
.
RP63: 04-04-2012 22:51:38 - Installed HP Quick Launch
RP64: 07-04-2012 22:10:43 - Installed AVG 2012
RP65: 07-04-2012 22:11:28 - Installed AVG 2012
RP66: 07-04-2012 22:13:37 - Removed AVG 2012
RP67: 07-04-2012 22:17:13 - Installed AVG 2012
RP68: 07-04-2012 22:20:28 - Installed AVG 2012
RP69: 07-04-2012 22:24:04 - Removed AVG 2012
RP70: 10-04-2012 20:28:30 - Installed AVG 2012
RP71: 10-04-2012 20:29:18 - Installed AVG 2012
RP72: 10-04-2012 20:31:11 - Removed AVG 2012
RP73: 10-04-2012 22:13:07 - Installed AVG 2012
RP74: 10-04-2012 22:13:59 - Installed AVG 2012
RP75: 10-04-2012 22:15:17 - Removed AVG 2012
RP76: 10-04-2012 22:22:15 - Installed AVG 2012
RP77: 10-04-2012 22:29:23 - Installed AVG 2012
RP78: 10-04-2012 22:32:25 - Removed AVG 2012
RP79: 10-04-2012 22:38:54 - Windows Update
RP80: 10-04-2012 22:52:16 - Installed AVG 2012
RP81: 10-04-2012 22:53:17 - Installed AVG 2012
RP82: 10-04-2012 22:54:46 - Removed AVG 2012
RP83: 10-04-2012 22:59:22 - Installed HiJackThis
RP84: 10-04-2012 23:09:32 - Installed AVG 2012
RP85: 10-04-2012 23:11:37 - Installed AVG 2012
RP86: 10-04-2012 23:13:59 - Removed AVG 2012
RP87: 11-04-2012 17:28:54 - Windows Update
RP88: 11-04-2012 17:29:14 - Installed Java(TM) 6 Update 31
RP89: 11-04-2012 17:45:05 - Removed YouTube Downloader Toolbar v5.3.
RP90: 11-04-2012 18:41:10 - Removed Bonjour
RP91: 11-04-2012 20:13:36 - RegClean Pro on, apr 11, 12  20:13
.
==== Image File Execution Options =============
.
IFEO: a.exe - svchost.exe
IFEO: aAvgApi.exe - svchost.exe
IFEO: AAWTray.exe - svchost.exe
IFEO: About.exe - svchost.exe
IFEO: ackwin32.exe - svchost.exe
IFEO: Ad-Aware.exe - svchost.exe
IFEO: adaware.exe - svchost.exe
IFEO: advxdwin.exe - svchost.exe
IFEO: AdwarePrj.exe - svchost.exe
IFEO: agent.exe - svchost.exe
IFEO: agentsvr.exe - svchost.exe
IFEO: agentw.exe - svchost.exe
IFEO: alertsvc.exe - svchost.exe
IFEO: alevir.exe - svchost.exe
IFEO: alogserv.exe - svchost.exe
IFEO: AlphaAV - svchost.exe
IFEO: AlphaAV.exe - svchost.exe
IFEO: AluSchedulerSvc.exe - svchost.exe
IFEO: amon9x.exe - svchost.exe
IFEO: anti-trojan.exe - svchost.exe
IFEO: Anti-Virus Professional.exe - svchost.exe
IFEO: AntispywarXP2009.exe - svchost.exe
IFEO: antivirus.exe - svchost.exe
IFEO: AntivirusPlus - svchost.exe
IFEO: AntivirusPlus.exe - svchost.exe
IFEO: AntivirusPro_2010.exe - svchost.exe
IFEO: AntivirusXP - svchost.exe
IFEO: AntivirusXP.exe - svchost.exe
IFEO: antivirusxppro2009.exe - svchost.exe
IFEO: AntiVirus_Pro.exe - svchost.exe
IFEO: ants.exe - svchost.exe
IFEO: apimonitor.exe - svchost.exe
IFEO: aplica32.exe - svchost.exe
IFEO: apvxdwin.exe - svchost.exe
IFEO: arr.exe - svchost.exe
IFEO: ashAvast.exe - svchost.exe
IFEO: ashBug.exe - svchost.exe
IFEO: ashChest.exe - svchost.exe
IFEO: ashCnsnt.exe - svchost.exe
IFEO: ashDisp.exe - svchost.exe
IFEO: ashLogV.exe - svchost.exe
IFEO: ashMaiSv.exe - svchost.exe
IFEO: ashPopWz.exe - svchost.exe
IFEO: ashQuick.exe - svchost.exe
IFEO: ashServ.exe - svchost.exe
IFEO: ashSimp2.exe - svchost.exe
IFEO: ashSimpl.exe - svchost.exe
IFEO: ashSkPcc.exe - svchost.exe
IFEO: ashSkPck.exe - svchost.exe
IFEO: ashUpd.exe - svchost.exe
IFEO: ashWebSv.exe - svchost.exe
IFEO: aswChLic.exe - svchost.exe
IFEO: aswRegSvr.exe - svchost.exe
IFEO: aswRunDll.exe - svchost.exe
IFEO: aswUpdSv.exe - svchost.exe
IFEO: atcon.exe - svchost.exe
IFEO: atguard.exe - svchost.exe
IFEO: atro55en.exe - svchost.exe
IFEO: atupdater.exe - svchost.exe
IFEO: atwatch.exe - svchost.exe
IFEO: au.exe - svchost.exe
IFEO: aupdate.exe - svchost.exe
IFEO: auto-protect.nav80try.exe - svchost.exe
IFEO: autodown.exe - svchost.exe
IFEO: autotrace.exe - svchost.exe
IFEO: autoupdate.exe - svchost.exe
IFEO: av360.exe - svchost.exe
IFEO: avadmin.exe - svchost.exe
IFEO: avastSvc.exe - svchost.exe
IFEO: avastUI.exe - svchost.exe
IFEO: AVCare.exe - svchost.exe
IFEO: avcenter.exe - svchost.exe
IFEO: avciman.exe - svchost.exe
IFEO: avconfig.exe - svchost.exe
IFEO: avconsol.exe - svchost.exe
IFEO: ave32.exe - svchost.exe
IFEO: AVENGINE.EXE - svchost.exe
IFEO: avgcc32.exe - svchost.exe
IFEO: avgchk.exe - svchost.exe
IFEO: avgcmgr.exe - svchost.exe
IFEO: avgcsrvx.exe - svchost.exe
IFEO: avgctrl.exe - svchost.exe
IFEO: avgdumpx.exe - svchost.exe
IFEO: avgemc.exe - svchost.exe
IFEO: avgiproxy.exe - svchost.exe
IFEO: avgnsx.exe - svchost.exe
IFEO: avgnt.exe - svchost.exe
IFEO: avgrsx.exe - svchost.exe
IFEO: avgscanx.exe - svchost.exe
IFEO: avgserv.exe - svchost.exe
IFEO: avgserv9.exe - svchost.exe
IFEO: avgsrmax.exe - svchost.exe
IFEO: avgtray.exe - svchost.exe
IFEO: avguard.exe - svchost.exe
IFEO: avgui.exe - svchost.exe
IFEO: avgupd.exe - svchost.exe
IFEO: avgw.exe - svchost.exe
IFEO: avgwdsvc.exe - svchost.exe
IFEO: avkpop.exe - svchost.exe
IFEO: avkserv.exe - svchost.exe
IFEO: avkservice.exe - svchost.exe
IFEO: avkwctl9.exe - svchost.exe
IFEO: avltmain.exe - svchost.exe
IFEO: avmailc.exe - svchost.exe
IFEO: avmcdlg.exe - svchost.exe
IFEO: avnotify.exe - svchost.exe
IFEO: avnt.exe - svchost.exe
IFEO: avp32.exe - svchost.exe
IFEO: avpcc.exe - svchost.exe
IFEO: avpdos32.exe - svchost.exe
IFEO: avpm.exe - svchost.exe
IFEO: avptc32.exe - svchost.exe
IFEO: avpupd.exe - svchost.exe
IFEO: avsched32.exe - svchost.exe
IFEO: avshadow.exe - svchost.exe
IFEO: avsynmgr.exe - svchost.exe
IFEO: avupgsvc.exe - svchost.exe
IFEO: AVWEBGRD.EXE - svchost.exe
IFEO: avwin.exe - svchost.exe
IFEO: avwin95.exe - svchost.exe
IFEO: avwinnt.exe - svchost.exe
IFEO: avwsc.exe - svchost.exe
IFEO: avwupd.exe - svchost.exe
IFEO: avwupd32.exe - svchost.exe
IFEO: avwupsrv.exe - svchost.exe
IFEO: avxmonitor9x.exe - svchost.exe
IFEO: avxmonitornt.exe - svchost.exe
IFEO: avxquar.exe - svchost.exe
IFEO: b.exe - svchost.exe
IFEO: backweb.exe - svchost.exe
IFEO: bargains.exe - svchost.exe
IFEO: bdfvcl.exe - svchost.exe
IFEO: bdfvwiz.exe - svchost.exe
IFEO: BDInProcPatch.exe - svchost.exe
IFEO: bdmcon.exe - svchost.exe
IFEO: BDMsnScan.exe - svchost.exe
IFEO: BDSurvey.exe - svchost.exe
IFEO: bd_professional.exe - svchost.exe
IFEO: beagle.exe - svchost.exe
IFEO: belt.exe - svchost.exe
IFEO: bidef.exe - svchost.exe
IFEO: bidserver.exe - svchost.exe
IFEO: bipcp.exe - svchost.exe
IFEO: bipcpevalsetup.exe - svchost.exe
IFEO: bisp.exe - svchost.exe
IFEO: blackd.exe - svchost.exe
IFEO: blackice.exe - svchost.exe
IFEO: blink.exe - svchost.exe
IFEO: blss.exe - svchost.exe
IFEO: bootconf.exe - svchost.exe
IFEO: bootwarn.exe - svchost.exe
IFEO: borg2.exe - svchost.exe
IFEO: bpc.exe - svchost.exe
IFEO: brasil.exe - svchost.exe
IFEO: brastk.exe - svchost.exe
IFEO: brw.exe - svchost.exe
IFEO: bs120.exe - svchost.exe
IFEO: bspatch.exe - svchost.exe
IFEO: bundle.exe - svchost.exe
IFEO: bvt.exe - svchost.exe
IFEO: c.exe - svchost.exe
IFEO: cavscan.exe - svchost.exe
IFEO: ccapp.exe - svchost.exe
IFEO: ccevtmgr.exe - svchost.exe
IFEO: ccpxysvc.exe - svchost.exe
IFEO: cdp.exe - svchost.exe
IFEO: cfd.exe - svchost.exe
IFEO: cfgwiz.exe - svchost.exe
IFEO: cfiadmin.exe - svchost.exe
IFEO: cfiaudit.exe - svchost.exe
IFEO: cfinet.exe - svchost.exe
IFEO: cfinet32.exe - svchost.exe
IFEO: cfp.exe - svchost.exe
IFEO: cfpconfg.exe - svchost.exe
IFEO: cfplogvw.exe - svchost.exe
IFEO: cfpupdat.exe - svchost.exe
IFEO: claw95.exe - svchost.exe
IFEO: claw95cf.exe - svchost.exe
IFEO: clean.exe - svchost.exe
IFEO: cleaner.exe - svchost.exe
IFEO: cleaner3.exe - svchost.exe
IFEO: cleanIELow.exe - svchost.exe
IFEO: cleanpc.exe - svchost.exe
IFEO: click.exe - svchost.exe
IFEO: cmd32.exe - svchost.exe
IFEO: cmdagent.exe - svchost.exe
IFEO: cmesys.exe - svchost.exe
IFEO: cmgrdian.exe - svchost.exe
IFEO: cmon016.exe - svchost.exe
IFEO: connectionmonitor.exe - svchost.exe
IFEO: control - svchost.exe
IFEO: cpd.exe - svchost.exe
IFEO: cpf9x206.exe - svchost.exe
IFEO: cpfnt206.exe - svchost.exe
IFEO: crashrep.exe - svchost.exe
IFEO: csc.exe - svchost.exe
IFEO: cssconfg.exe - svchost.exe
IFEO: cssupdat.exe - svchost.exe
IFEO: cssurf.exe - svchost.exe
IFEO: ctrl.exe - svchost.exe
IFEO: cv.exe - svchost.exe
IFEO: cwnb181.exe - svchost.exe
IFEO: cwntdwmo.exe - svchost.exe
IFEO: d.exe - svchost.exe
IFEO: datemanager.exe - svchost.exe
IFEO: dcomx.exe - svchost.exe
IFEO: defalert.exe - svchost.exe
IFEO: defscangui.exe - svchost.exe
IFEO: defwatch.exe - svchost.exe
IFEO: deloeminfs.exe - svchost.exe
IFEO: deputy.exe - svchost.exe
IFEO: divx.exe - svchost.exe
IFEO: dllcache.exe - svchost.exe
IFEO: dllreg.exe - svchost.exe
IFEO: doors.exe - svchost.exe
IFEO: dop.exe - svchost.exe
IFEO: dpf.exe - svchost.exe
IFEO: dpfsetup.exe - svchost.exe
IFEO: dpps2.exe - svchost.exe
IFEO: driverctrl.exe - svchost.exe
IFEO: drwatson.exe - svchost.exe
IFEO: drweb32.exe - svchost.exe
IFEO: drwebupw.exe - svchost.exe
IFEO: dssagent.exe - svchost.exe
IFEO: dvp95.exe - svchost.exe
IFEO: dvp95_0.exe - svchost.exe
IFEO: ecengine.exe - svchost.exe
IFEO: efpeadm.exe - svchost.exe
IFEO: emsw.exe - svchost.exe
IFEO: ent.exe - svchost.exe
IFEO: esafe.exe - svchost.exe
IFEO: escanhnt.exe - svchost.exe
IFEO: escanv95.exe - svchost.exe
IFEO: espwatch.exe - svchost.exe
IFEO: ethereal.exe - svchost.exe
IFEO: etrustcipe.exe - svchost.exe
IFEO: evpn.exe - svchost.exe
IFEO: exantivirus-cnet.exe - svchost.exe
IFEO: exe.avxw.exe - svchost.exe
IFEO: expert.exe - svchost.exe
IFEO: explore.exe - svchost.exe
IFEO: f-agnt95.exe - svchost.exe
IFEO: f-prot.exe - svchost.exe
IFEO: f-prot95.exe - svchost.exe
IFEO: f-stopw.exe - svchost.exe
IFEO: fact.exe - svchost.exe
IFEO: fameh32.exe - svchost.exe
IFEO: fast.exe - svchost.exe
IFEO: fch32.exe - svchost.exe
IFEO: fih32.exe - svchost.exe
IFEO: findviru.exe - svchost.exe
IFEO: firewall.exe - svchost.exe
IFEO: fixcfg.exe - svchost.exe
IFEO: fixfp.exe - svchost.exe
IFEO: fnrb32.exe - svchost.exe
IFEO: fp-win.exe - svchost.exe
IFEO: fp-win_trial.exe - svchost.exe
IFEO: fprot.exe - svchost.exe
IFEO: frmwrk32.exe - svchost.exe
IFEO: frw.exe - svchost.exe
IFEO: fsaa.exe - svchost.exe
IFEO: fsav.exe - svchost.exe
IFEO: fsav32.exe - svchost.exe
IFEO: fsav530stbyb.exe - svchost.exe
IFEO: fsav530wtbyb.exe - svchost.exe
IFEO: fsav95.exe - svchost.exe
IFEO: fsgk32.exe - svchost.exe
IFEO: fsm32.exe - svchost.exe
IFEO: fsma32.exe - svchost.exe
IFEO: fsmb32.exe - svchost.exe
IFEO: gator.exe - svchost.exe
IFEO: gav.exe - svchost.exe
IFEO: gbmenu.exe - svchost.exe
IFEO: gbn976rl.exe - svchost.exe
IFEO: gbpoll.exe - svchost.exe
IFEO: generics.exe - svchost.exe
IFEO: gmt.exe - svchost.exe
IFEO: guard.exe - svchost.exe
IFEO: guarddog.exe - svchost.exe
IFEO: guardgui.exe - svchost.exe
IFEO: hacktracersetup.exe - svchost.exe
IFEO: hbinst.exe - svchost.exe
IFEO: hbsrv.exe - svchost.exe
IFEO: History.exe - svchost.exe
IFEO: homeav2010.exe - svchost.exe
IFEO: hotactio.exe - svchost.exe
IFEO: hotpatch.exe - svchost.exe
IFEO: htlog.exe - svchost.exe
IFEO: htpatch.exe - svchost.exe
IFEO: hwpe.exe - svchost.exe
IFEO: hxdl.exe - svchost.exe
IFEO: hxiul.exe - svchost.exe
IFEO: iamapp.exe - svchost.exe
IFEO: iamserv.exe - svchost.exe
IFEO: iamstats.exe - svchost.exe
IFEO: ibmasn.exe - svchost.exe
IFEO: ibmavsp.exe - svchost.exe
IFEO: icload95.exe - svchost.exe
IFEO: icloadnt.exe - svchost.exe
IFEO: icmon.exe - svchost.exe
IFEO: icsupp95.exe - svchost.exe
IFEO: icsuppnt.exe - svchost.exe
IFEO: Identity.exe - svchost.exe
IFEO: idle.exe - svchost.exe
IFEO: iedll.exe - svchost.exe
IFEO: iedriver.exe - svchost.exe
IFEO: IEShow.exe - svchost.exe
IFEO: iface.exe - svchost.exe
IFEO: ifw2000.exe - svchost.exe
IFEO: inetlnfo.exe - svchost.exe
IFEO: infus.exe - svchost.exe
IFEO: infwin.exe - svchost.exe
IFEO: init.exe - svchost.exe
IFEO: init32.exe  - svchost.exe
IFEO: install[1].exe - svchost.exe
IFEO: install[2].exe - svchost.exe
IFEO: install[3].exe - svchost.exe
IFEO: install[4].exe - svchost.exe
IFEO: install[5].exe - svchost.exe
IFEO: intdel.exe - svchost.exe
IFEO: intren.exe - svchost.exe
IFEO: iomon98.exe - svchost.exe
IFEO: istsvc.exe - svchost.exe
IFEO: jammer.exe - svchost.exe
IFEO: jdbgmrg.exe - svchost.exe
IFEO: jedi.exe - svchost.exe
IFEO: JsRcGen.exe - svchost.exe
IFEO: kavlite40eng.exe - svchost.exe
IFEO: kavpers40eng.exe - svchost.exe
IFEO: kavpf.exe - svchost.exe
IFEO: kazza.exe - svchost.exe
IFEO: keenvalue.exe - svchost.exe
IFEO: kerio-pf-213-en-win.exe - svchost.exe
IFEO: kerio-wrl-421-en-win.exe - svchost.exe
IFEO: kerio-wrp-421-en-win.exe - svchost.exe
IFEO: killprocesssetup161.exe - svchost.exe
IFEO: ldnetmon.exe - svchost.exe
IFEO: ldpro.exe - svchost.exe
IFEO: ldpromenu.exe - svchost.exe
IFEO: ldscan.exe - svchost.exe
IFEO: licmgr.exe - svchost.exe
IFEO: lnetinfo.exe - svchost.exe
IFEO: loader.exe - svchost.exe
IFEO: localnet.exe - svchost.exe
IFEO: lockdown.exe - svchost.exe
IFEO: lockdown2000.exe - svchost.exe
IFEO: lookout.exe - svchost.exe
IFEO: lordpe.exe - svchost.exe
IFEO: lsetup.exe - svchost.exe
IFEO: luall.exe - svchost.exe
IFEO: luau.exe - svchost.exe
IFEO: lucomserver.exe - svchost.exe
IFEO: luinit.exe - svchost.exe
IFEO: luspt.exe - svchost.exe
IFEO: MalwareRemoval.exe - svchost.exe
IFEO: mapisvc32.exe - svchost.exe
IFEO: mbam.exe - svchost.exe
IFEO: mbamgui.exe - svchost.exe
IFEO: mbamservice.exe - svchost.exe
IFEO: mcagent.exe - svchost.exe
IFEO: mcmnhdlr.exe - svchost.exe
IFEO: mcmpeng.exe - svchost.exe
IFEO: mcmscsvc.exe - svchost.exe
IFEO: mcnasvc.exe - svchost.exe
IFEO: mcproxy.exe - svchost.exe
IFEO: McSACore.exe - svchost.exe
IFEO: mcshell.exe - svchost.exe
IFEO: mcshield.exe - svchost.exe
IFEO: mcsysmon.exe - svchost.exe
IFEO: mctool.exe - svchost.exe
IFEO: mcupdate.exe - svchost.exe
IFEO: mcvsrte.exe - svchost.exe
IFEO: mcvsshld.exe - svchost.exe
IFEO: md.exe - svchost.exe
IFEO: mfin32.exe - svchost.exe
IFEO: mfw2en.exe - svchost.exe
IFEO: mfweng3.02d30.exe - svchost.exe
IFEO: mgavrtcl.exe - svchost.exe
IFEO: mgavrte.exe - svchost.exe
IFEO: mghtml.exe - svchost.exe
IFEO: mgui.exe - svchost.exe
IFEO: minilog.exe - svchost.exe
IFEO: mmod.exe - svchost.exe
IFEO: monitor.exe - svchost.exe
IFEO: moolive.exe - svchost.exe
IFEO: mostat.exe - svchost.exe
IFEO: mpfagent.exe - svchost.exe
IFEO: mpfservice.exe - svchost.exe
IFEO: MPFSrv.exe - svchost.exe
IFEO: mpftray.exe - svchost.exe
IFEO: mrflux.exe - svchost.exe
IFEO: mrt.exe - svchost.exe
IFEO: msa.exe - svchost.exe
IFEO: msapp.exe - svchost.exe
IFEO: MSASCui.exe - svchost.exe
IFEO: msbb.exe - svchost.exe
IFEO: msblast.exe - svchost.exe
IFEO: mscache.exe - svchost.exe
IFEO: msccn32.exe - svchost.exe
IFEO: mscman.exe - svchost.exe
IFEO: msconfig - svchost.exe
IFEO: msdm.exe - svchost.exe
IFEO: msdos.exe - svchost.exe
IFEO: msiexec16.exe - svchost.exe
IFEO: mslaugh.exe - svchost.exe
IFEO: msmgt.exe - svchost.exe
IFEO: msmsgri32.exe - svchost.exe
IFEO: msseces.exe - svchost.exe
IFEO: mssmmc32.exe - svchost.exe
IFEO: mssys.exe - svchost.exe
IFEO: msvxd.exe - svchost.exe
IFEO: mu0311ad.exe - svchost.exe
IFEO: mwatch.exe - svchost.exe
IFEO: n32scanw.exe - svchost.exe
IFEO: nav.exe - svchost.exe
IFEO: navap.navapsvc.exe - svchost.exe
IFEO: navapsvc.exe - svchost.exe
IFEO: navapw32.exe - svchost.exe
IFEO: navdx.exe - svchost.exe
IFEO: navlu32.exe - svchost.exe
IFEO: navnt.exe - svchost.exe
IFEO: navstub.exe - svchost.exe
IFEO: nc2000.exe - svchost.exe
IFEO: ncinst4.exe - svchost.exe
IFEO: ndd32.exe - svchost.exe
IFEO: neomonitor.exe - svchost.exe
IFEO: neowatchlog.exe - svchost.exe
IFEO: netarmor.exe - svchost.exe
IFEO: netd32.exe - svchost.exe
IFEO: netinfo.exe - svchost.exe
IFEO: netmon.exe - svchost.exe
IFEO: netscanpro.exe - svchost.exe
IFEO: netspyhunter-1.2.exe - svchost.exe
IFEO: netutils.exe - svchost.exe
IFEO: nisserv.exe - svchost.exe
IFEO: nisum.exe - svchost.exe
IFEO: nmain.exe - svchost.exe
IFEO: nod32.exe - svchost.exe
IFEO: normist.exe - svchost.exe
IFEO: norton_internet_secu_3.0_407.exe - svchost.exe
IFEO: notstart.exe - svchost.exe
IFEO: npf40_tw_98_nt_me_2k.exe - svchost.exe
IFEO: npfmessenger.exe - svchost.exe
IFEO: nprotect.exe - svchost.exe
IFEO: npscheck.exe - svchost.exe
IFEO: npssvc.exe - svchost.exe
IFEO: nsched32.exe - svchost.exe
IFEO: nssys32.exe - svchost.exe
IFEO: nstask32.exe - svchost.exe
IFEO: nsupdate.exe - svchost.exe
IFEO: nt.exe - svchost.exe
IFEO: ntrtscan.exe - svchost.exe
IFEO: ntvdm.exe - svchost.exe
IFEO: ntxconfig.exe - svchost.exe
IFEO: nui.exe - svchost.exe
IFEO: nupgrade.exe - svchost.exe
IFEO: nvarch16.exe - svchost.exe
IFEO: nvc95.exe - svchost.exe
IFEO: nvsvc32.exe - svchost.exe
IFEO: nwinst4.exe - svchost.exe
IFEO: nwservice.exe - svchost.exe
IFEO: nwtool16.exe - svchost.exe
IFEO: OAcat.exe - svchost.exe
IFEO: OAhlp.exe - svchost.exe
IFEO: OAReg.exe - svchost.exe
IFEO: oasrv.exe - svchost.exe
IFEO: oaui.exe - svchost.exe
IFEO: oaview.exe - svchost.exe
IFEO: ODSW.exe - svchost.exe
IFEO: ollydbg.exe - svchost.exe
IFEO: onsrvr.exe - svchost.exe
IFEO: optimize.exe - svchost.exe
IFEO: ostronet.exe - svchost.exe
IFEO: otfix.exe - svchost.exe
IFEO: outpost.exe - svchost.exe
IFEO: outpostinstall.exe - svchost.exe
IFEO: outpostproinstall.exe - svchost.exe
IFEO: ozn695m5.exe - svchost.exe
IFEO: padmin.exe - svchost.exe
IFEO: panixk.exe - svchost.exe
IFEO: patch.exe - svchost.exe
IFEO: pav.exe - svchost.exe
IFEO: pavcl.exe - svchost.exe
IFEO: PavFnSvr.exe - svchost.exe
IFEO: pavproxy.exe - svchost.exe
IFEO: pavprsrv.exe - svchost.exe
IFEO: pavsched.exe - svchost.exe
IFEO: pavsrv51.exe - svchost.exe
IFEO: pavw.exe - svchost.exe
IFEO: pc.exe - svchost.exe
IFEO: pccwin98.exe - svchost.exe
IFEO: pcfwallicon.exe - svchost.exe
IFEO: pcip10117_0.exe - svchost.exe
IFEO: pcscan.exe - svchost.exe
IFEO: pctsAuxs.exe - svchost.exe
IFEO: pctsGui.exe - svchost.exe
IFEO: pctsSvc.exe - svchost.exe
IFEO: pctsTray.exe - svchost.exe
IFEO: PC_Antispyware2010.exe - svchost.exe
IFEO: pdfndr.exe - svchost.exe
IFEO: pdsetup.exe - svchost.exe
IFEO: PerAvir.exe - svchost.exe
IFEO: periscope.exe - svchost.exe
IFEO: persfw.exe - svchost.exe
IFEO: personalguard - svchost.exe
IFEO: personalguard.exe - svchost.exe
IFEO: perswf.exe - svchost.exe
IFEO: pf2.exe - svchost.exe
IFEO: pfwadmin.exe - svchost.exe
IFEO: pgmonitr.exe - svchost.exe
IFEO: pingscan.exe - svchost.exe
IFEO: platin.exe - svchost.exe
IFEO: pop3trap.exe - svchost.exe
IFEO: poproxy.exe - svchost.exe
IFEO: popscan.exe - svchost.exe
IFEO: portdetective.exe - svchost.exe
IFEO: portmonitor.exe - svchost.exe
IFEO: powerscan.exe - svchost.exe
IFEO: ppinupdt.exe - svchost.exe
IFEO: pptbc.exe - svchost.exe
IFEO: ppvstop.exe - svchost.exe
IFEO: prizesurfer.exe - svchost.exe
IFEO: prmt.exe - svchost.exe
IFEO: prmvr.exe - svchost.exe
IFEO: procdump.exe - svchost.exe
IFEO: processmonitor.exe - svchost.exe
IFEO: procexplorerv1.0.exe - svchost.exe
IFEO: programauditor.exe - svchost.exe
IFEO: proport.exe - svchost.exe
IFEO: protector.exe - svchost.exe
IFEO: protectx.exe - svchost.exe
IFEO: PSANCU.exe - svchost.exe
IFEO: PSANHost.exe - svchost.exe
IFEO: PSANToManager.exe - svchost.exe
IFEO: PsCtrls.exe - svchost.exe
IFEO: PsImSvc.exe - svchost.exe
IFEO: PskSvc.exe - svchost.exe
IFEO: pspf.exe - svchost.exe
IFEO: PSUNMain.exe - svchost.exe
IFEO: purge.exe - svchost.exe
IFEO: qconsole.exe - svchost.exe
IFEO: qh.exe - svchost.exe
IFEO: qserver.exe - svchost.exe
IFEO: Quick Heal.exe - svchost.exe
IFEO: QuickHealCleaner.exe - svchost.exe
IFEO: rapapp.exe - svchost.exe
IFEO: rav7.exe - svchost.exe
IFEO: rav7win.exe - svchost.exe
IFEO: rav8win32eng.exe - svchost.exe
IFEO: ray.exe - svchost.exe
IFEO: rb32.exe - svchost.exe
IFEO: rcsync.exe - svchost.exe
IFEO: realmon.exe - svchost.exe
IFEO: reged.exe - svchost.exe
IFEO: regedt32.exe - svchost.exe
IFEO: rescue.exe - svchost.exe
IFEO: rescue32.exe - svchost.exe
IFEO: rrguard.exe - svchost.exe
IFEO: rscdwld.exe - svchost.exe
IFEO: rshell.exe - svchost.exe
IFEO: rtvscan.exe - svchost.exe
IFEO: rtvscn95.exe - svchost.exe
IFEO: rulaunch.exe - svchost.exe
IFEO: rwg - svchost.exe
IFEO: rwg.exe - svchost.exe
IFEO: SafetyKeeper.exe - svchost.exe
IFEO: safeweb.exe - svchost.exe
IFEO: sahagent.exe - svchost.exe
IFEO: Save.exe - svchost.exe
IFEO: SaveArmor.exe - svchost.exe
IFEO: SaveDefense.exe - svchost.exe
IFEO: SaveKeep.exe - svchost.exe
IFEO: savenow.exe - svchost.exe
IFEO: sbserv.exe - svchost.exe
IFEO: sc.exe - svchost.exe
IFEO: scam32.exe - svchost.exe
IFEO: scan32.exe - svchost.exe
IFEO: scan95.exe - svchost.exe
IFEO: scanpm.exe - svchost.exe
IFEO: scrscan.exe - svchost.exe
IFEO: Secure Veteran.exe - svchost.exe
IFEO: secureveteran.exe - svchost.exe
IFEO: Security Center.exe - svchost.exe
IFEO: SecurityFighter.exe - svchost.exe
IFEO: securitysoldier.exe - svchost.exe
IFEO: serv95.exe - svchost.exe
IFEO: setloadorder.exe - svchost.exe
IFEO: setupvameeval.exe - svchost.exe
IFEO: setup_flowprotector_us.exe - svchost.exe
IFEO: sgssfw32.exe - svchost.exe
IFEO: sh.exe - svchost.exe
IFEO: shellspyinstall.exe - svchost.exe
IFEO: shield.exe - svchost.exe
IFEO: shn.exe - svchost.exe
IFEO: showbehind.exe - svchost.exe
IFEO: signcheck.exe - svchost.exe
IFEO: smart.exe - svchost.exe
IFEO: smartprotector.exe - svchost.exe
IFEO: smc.exe - svchost.exe
IFEO: smrtdefp.exe - svchost.exe
IFEO: sms.exe - svchost.exe
IFEO: smss32.exe - svchost.exe
IFEO: snetcfg.exe - svchost.exe
IFEO: soap.exe - svchost.exe
IFEO: sofi.exe - svchost.exe
IFEO: SoftSafeness.exe - svchost.exe
IFEO: sperm.exe - svchost.exe
IFEO: spf.exe - svchost.exe
IFEO: sphinx.exe - svchost.exe
IFEO: spoler.exe - svchost.exe
IFEO: spoolcv.exe - svchost.exe
IFEO: spoolsv32.exe - svchost.exe
IFEO: spywarexpguard.exe - svchost.exe
IFEO: spyxx.exe - svchost.exe
IFEO: srexe.exe - svchost.exe
IFEO: srng.exe - svchost.exe
IFEO: ss3edit.exe - svchost.exe
IFEO: ssgrate.exe - svchost.exe
IFEO: ssg_4104.exe - svchost.exe
IFEO: st2.exe - svchost.exe
IFEO: start.exe - svchost.exe
IFEO: stcloader.exe - svchost.exe
IFEO: supftrl.exe - svchost.exe
IFEO: support.exe - svchost.exe
IFEO: supporter5.exe - svchost.exe
IFEO: svc.exe - svchost.exe
IFEO: svchostc.exe - svchost.exe
IFEO: svchosts.exe - svchost.exe
IFEO: svshost.exe - svchost.exe
IFEO: sweep95.exe - svchost.exe
IFEO: sweepnet.sweepsrv.sys.swnetsup.exe - svchost.exe
IFEO: symlcsvc.exe - svchost.exe
IFEO: symproxysvc.exe - svchost.exe
IFEO: symtray.exe - svchost.exe
IFEO: system.exe - svchost.exe
IFEO: system32.exe - svchost.exe
IFEO: sysupd.exe - svchost.exe
IFEO: tapinstall.exe - svchost.exe
IFEO: taumon.exe - svchost.exe
IFEO: tbscan.exe - svchost.exe
IFEO: tc.exe - svchost.exe
IFEO: tca.exe - svchost.exe
IFEO: tcm.exe - svchost.exe
IFEO: tds-3.exe - svchost.exe
IFEO: tds2-98.exe - svchost.exe
IFEO: tds2-nt.exe - svchost.exe
IFEO: teekids.exe - svchost.exe
IFEO: tfak.exe - svchost.exe
IFEO: tfak5.exe - svchost.exe
IFEO: tgbob.exe - svchost.exe
IFEO: titanin.exe - svchost.exe
IFEO: titaninxp.exe - svchost.exe
IFEO: TPSrv.exe - svchost.exe
IFEO: trickler.exe - svchost.exe
IFEO: trjscan.exe - svchost.exe
IFEO: trjsetup.exe - svchost.exe
IFEO: trojantrap3.exe - svchost.exe
IFEO: TrustWarrior.exe - svchost.exe
IFEO: tsadbot.exe - svchost.exe
IFEO: tsc.exe - svchost.exe
IFEO: tvmd.exe - svchost.exe
IFEO: tvtmd.exe - svchost.exe
IFEO: undoboot.exe - svchost.exe
IFEO: updat.exe - svchost.exe
IFEO: upgrad.exe - svchost.exe
IFEO: utpost.exe - svchost.exe
IFEO: vbcmserv.exe - svchost.exe
IFEO: vbcons.exe - svchost.exe
IFEO: vbust.exe - svchost.exe
IFEO: vbwin9x.exe - svchost.exe
IFEO: vbwinntw.exe - svchost.exe
IFEO: vcsetup.exe - svchost.exe
IFEO: vet32.exe - svchost.exe
IFEO: vet95.exe - svchost.exe
IFEO: vettray.exe - svchost.exe
IFEO: vfsetup.exe - svchost.exe
IFEO: vir-help.exe - svchost.exe
IFEO: virusmdpersonalfirewall.exe - svchost.exe
IFEO: VisthAux.exe - svchost.exe
IFEO: VisthLic.exe - svchost.exe
IFEO: VisthUpd.exe - svchost.exe
IFEO: vnlan300.exe - svchost.exe
IFEO: vnpc3000.exe - svchost.exe
IFEO: vpc32.exe - svchost.exe
IFEO: vpc42.exe - svchost.exe
IFEO: vpfw30s.exe - svchost.exe
IFEO: vptray.exe - svchost.exe
IFEO: vscan40.exe - svchost.exe
IFEO: vscenu6.02d30.exe - svchost.exe
IFEO: vsched.exe - svchost.exe
IFEO: vsecomr.exe - svchost.exe
IFEO: vshwin32.exe - svchost.exe
IFEO: vsisetup.exe - svchost.exe
IFEO: vsmain.exe - svchost.exe
IFEO: vsmon.exe - svchost.exe
IFEO: vsstat.exe - svchost.exe
IFEO: vswin9xe.exe - svchost.exe
IFEO: vswinntse.exe - svchost.exe
IFEO: vswinperse.exe - svchost.exe
IFEO: w32dsm89.exe - svchost.exe
IFEO: W3asbas.exe - svchost.exe
IFEO: w9x.exe - svchost.exe
IFEO: watchdog.exe - svchost.exe
IFEO: webdav.exe - svchost.exe
IFEO: WebProxy.exe - svchost.exe
IFEO: webscanx.exe - svchost.exe
IFEO: webtrap.exe - svchost.exe
IFEO: wfindv32.exe - svchost.exe
IFEO: whoswatchingme.exe - svchost.exe
IFEO: wimmun32.exe - svchost.exe
IFEO: win-bugsfix.exe - svchost.exe
IFEO: win32.exe - svchost.exe
IFEO: win32us.exe - svchost.exe
IFEO: winactive.exe - svchost.exe
IFEO: winav.exe - svchost.exe
IFEO: windll32.exe - svchost.exe
IFEO: window.exe - svchost.exe
IFEO: windows Police Pro.exe - svchost.exe
IFEO: windows.exe - svchost.exe
IFEO: wininetd.exe - svchost.exe
IFEO: wininitx.exe - svchost.exe
IFEO: winlogin.exe - svchost.exe
IFEO: winmain.exe - svchost.exe
IFEO: winppr32.exe - svchost.exe
IFEO: winrecon.exe - svchost.exe
IFEO: winservn.exe - svchost.exe
IFEO: winssk32.exe - svchost.exe
IFEO: winstart.exe - svchost.exe
IFEO: winstart001.exe - svchost.exe
IFEO: wintsk32.exe - svchost.exe
IFEO: winupdate.exe - svchost.exe
IFEO: wkufind.exe - svchost.exe
IFEO: wnad.exe - svchost.exe
IFEO: wnt.exe - svchost.exe
IFEO: wradmin.exe - svchost.exe
IFEO: wrctrl.exe - svchost.exe
IFEO: wsbgate.exe - svchost.exe
IFEO: wscfxas.exe - svchost.exe
IFEO: wscfxav.exe - svchost.exe
IFEO: wscfxfw.exe - svchost.exe
IFEO: wsctool.exe - svchost.exe
IFEO: wupdater.exe - svchost.exe
IFEO: wupdt.exe - svchost.exe
IFEO: wyvernworksfirewall.exe - svchost.exe
IFEO: xpdeluxe.exe - svchost.exe
IFEO: xpf202en.exe - svchost.exe
IFEO: xp_antispyware.exe - svchost.exe
IFEO: zapro.exe - svchost.exe
IFEO: zapsetup3001.exe - svchost.exe
IFEO: zatutor.exe - svchost.exe
IFEO: zonalm2601.exe - svchost.exe
IFEO: zonealarm.exe - svchost.exe
IFEO: _avp32.exe - svchost.exe
IFEO: _avpcc.exe - svchost.exe
IFEO: _avpm.exe - svchost.exe
IFEO: ~1.exe - svchost.exe
IFEO: ~2.exe - svchost.exe
IFEO-X64: a.exe - svchost.exe
IFEO-X64: aAvgApi.exe - svchost.exe
IFEO-X64: AAWTray.exe - svchost.exe
IFEO-X64: About.exe - svchost.exe
IFEO-X64: ackwin32.exe - svchost.exe
IFEO-X64: Ad-Aware.exe - svchost.exe
IFEO-X64: adaware.exe - svchost.exe
IFEO-X64: advxdwin.exe - svchost.exe
IFEO-X64: AdwarePrj.exe - svchost.exe
IFEO-X64: agent.exe - svchost.exe
IFEO-X64: agentsvr.exe - svchost.exe
IFEO-X64: agentw.exe - svchost.exe
IFEO-X64: alertsvc.exe - svchost.exe
IFEO-X64: alevir.exe - svchost.exe
IFEO-X64: alogserv.exe - svchost.exe
IFEO-X64: AlphaAV - svchost.exe
IFEO-X64: AlphaAV.exe - svchost.exe
IFEO-X64: AluSchedulerSvc.exe - svchost.exe
IFEO-X64: amon9x.exe - svchost.exe
IFEO-X64: anti-trojan.exe - svchost.exe
IFEO-X64: Anti-Virus Professional.exe - svchost.exe
IFEO-X64: AntispywarXP2009.exe - svchost.exe
IFEO-X64: antivirus.exe - svchost.exe
IFEO-X64: AntivirusPlus - svchost.exe
IFEO-X64: AntivirusPlus.exe - svchost.exe
IFEO-X64: AntivirusPro_2010.exe - svchost.exe
IFEO-X64: AntivirusXP - svchost.exe
IFEO-X64: AntivirusXP.exe - svchost.exe
IFEO-X64: antivirusxppro2009.exe - svchost.exe
IFEO-X64: AntiVirus_Pro.exe - svchost.exe
IFEO-X64: ants.exe - svchost.exe
IFEO-X64: apimonitor.exe - svchost.exe
IFEO-X64: aplica32.exe - svchost.exe
IFEO-X64: apvxdwin.exe - svchost.exe
IFEO-X64: arr.exe - svchost.exe
IFEO-X64: ashAvast.exe - svchost.exe
IFEO-X64: ashBug.exe - svchost.exe
IFEO-X64: ashChest.exe - svchost.exe
IFEO-X64: ashCnsnt.exe - svchost.exe
IFEO-X64: ashDisp.exe - svchost.exe
IFEO-X64: ashLogV.exe - svchost.exe
IFEO-X64: ashMaiSv.exe - svchost.exe
IFEO-X64: ashPopWz.exe - svchost.exe
IFEO-X64: ashQuick.exe - svchost.exe
IFEO-X64: ashServ.exe - svchost.exe
IFEO-X64: ashSimp2.exe - svchost.exe
IFEO-X64: ashSimpl.exe - svchost.exe
IFEO-X64: ashSkPcc.exe - svchost.exe
IFEO-X64: ashSkPck.exe - svchost.exe
IFEO-X64: ashUpd.exe - svchost.exe
IFEO-X64: ashWebSv.exe - svchost.exe
IFEO-X64: aswChLic.exe - svchost.exe
IFEO-X64: aswRegSvr.exe - svchost.exe
IFEO-X64: aswRunDll.exe - svchost.exe
IFEO-X64: aswUpdSv.exe - svchost.exe
IFEO-X64: atcon.exe - svchost.exe
IFEO-X64: atguard.exe - svchost.exe
IFEO-X64: atro55en.exe - svchost.exe
IFEO-X64: atupdater.exe - svchost.exe
IFEO-X64: atwatch.exe - svchost.exe
IFEO-X64: au.exe - svchost.exe
IFEO-X64: aupdate.exe - svchost.exe
IFEO-X64: auto-protect.nav80try.exe - svchost.exe
IFEO-X64: autodown.exe - svchost.exe
IFEO-X64: autotrace.exe - svchost.exe
IFEO-X64: autoupdate.exe - svchost.exe
IFEO-X64: av360.exe - svchost.exe
IFEO-X64: avadmin.exe - svchost.exe
IFEO-X64: avastSvc.exe - svchost.exe
IFEO-X64: avastUI.exe - svchost.exe
IFEO-X64: AVCare.exe - svchost.exe
IFEO-X64: avcenter.exe - svchost.exe
IFEO-X64: avciman.exe - svchost.exe
IFEO-X64: avconfig.exe - svchost.exe
IFEO-X64: avconsol.exe - svchost.exe
IFEO-X64: ave32.exe - svchost.exe
IFEO-X64: AVENGINE.EXE - svchost.exe
IFEO-X64: avgcc32.exe - svchost.exe
IFEO-X64: avgchk.exe - svchost.exe
IFEO-X64: avgcmgr.exe - svchost.exe
IFEO-X64: avgcsrvx.exe - svchost.exe
IFEO-X64: avgctrl.exe - svchost.exe
IFEO-X64: avgdumpx.exe - svchost.exe
IFEO-X64: avgemc.exe - svchost.exe
IFEO-X64: avgiproxy.exe - svchost.exe
IFEO-X64: avgnsx.exe - svchost.exe
IFEO-X64: avgnt.exe - svchost.exe
IFEO-X64: avgrsx.exe - svchost.exe
IFEO-X64: avgscanx.exe - svchost.exe
IFEO-X64: avgserv.exe - svchost.exe
IFEO-X64: avgserv9.exe - svchost.exe
IFEO-X64: avgsrmax.exe - svchost.exe
IFEO-X64: avgtray.exe - svchost.exe
IFEO-X64: avguard.exe - svchost.exe
IFEO-X64: avgui.exe - svchost.exe
IFEO-X64: avgupd.exe - svchost.exe
IFEO-X64: avgw.exe - svchost.exe
IFEO-X64: avgwdsvc.exe - svchost.exe
IFEO-X64: avkpop.exe - svchost.exe
IFEO-X64: avkserv.exe - svchost.exe
IFEO-X64: avkservice.exe - svchost.exe
IFEO-X64: avkwctl9.exe - svchost.exe
IFEO-X64: avltmain.exe - svchost.exe
IFEO-X64: avmailc.exe - svchost.exe
IFEO-X64: avmcdlg.exe - svchost.exe
IFEO-X64: avnotify.exe - svchost.exe
IFEO-X64: avnt.exe - svchost.exe
IFEO-X64: avp32.exe - svchost.exe
IFEO-X64: avpcc.exe - svchost.exe
IFEO-X64: avpdos32.exe - svchost.exe
IFEO-X64: avpm.exe - svchost.exe
IFEO-X64: avptc32.exe - svchost.exe
IFEO-X64: avpupd.exe - svchost.exe
IFEO-X64: avsched32.exe - svchost.exe
IFEO-X64: avshadow.exe - svchost.exe
IFEO-X64: avsynmgr.exe - svchost.exe
IFEO-X64: avupgsvc.exe - svchost.exe
IFEO-X64: AVWEBGRD.EXE - svchost.exe
IFEO-X64: avwin.exe - svchost.exe
IFEO-X64: avwin95.exe - svchost.exe
IFEO-X64: avwinnt.exe - svchost.exe
IFEO-X64: avwsc.exe - svchost.exe
IFEO-X64: avwupd.exe - svchost.exe
IFEO-X64: avwupd32.exe - svchost.exe
IFEO-X64: avwupsrv.exe - svchost.exe
IFEO-X64: avxmonitor9x.exe - svchost.exe
IFEO-X64: avxmonitornt.exe - svchost.exe
IFEO-X64: avxquar.exe - svchost.exe
IFEO-X64: b.exe - svchost.exe
IFEO-X64: backweb.exe - svchost.exe
IFEO-X64: bargains.exe - svchost.exe
IFEO-X64: bdfvcl.exe - svchost.exe
IFEO-X64: bdfvwiz.exe - svchost.exe
IFEO-X64: BDInProcPatch.exe - svchost.exe
IFEO-X64: bdmcon.exe - svchost.exe
IFEO-X64: BDMsnScan.exe - svchost.exe
IFEO-X64: BDSurvey.exe - svchost.exe
IFEO-X64: bd_professional.exe - svchost.exe
IFEO-X64: beagle.exe - svchost.exe
IFEO-X64: belt.exe - svchost.exe
IFEO-X64: bidef.exe - svchost.exe
IFEO-X64: bidserver.exe - svchost.exe
IFEO-X64: bipcp.exe - svchost.exe
IFEO-X64: bipcpevalsetup.exe - svchost.exe
IFEO-X64: bisp.exe - svchost.exe
IFEO-X64: blackd.exe - svchost.exe
IFEO-X64: blackice.exe - svchost.exe
IFEO-X64: blink.exe - svchost.exe
IFEO-X64: blss.exe - svchost.exe
IFEO-X64: bootconf.exe - svchost.exe
IFEO-X64: bootwarn.exe - svchost.exe
IFEO-X64: borg2.exe - svchost.exe
IFEO-X64: bpc.exe - svchost.exe
IFEO-X64: brasil.exe - svchost.exe
IFEO-X64: brastk.exe - svchost.exe
IFEO-X64: brw.exe - svchost.exe
IFEO-X64: bs120.exe - svchost.exe
IFEO-X64: bspatch.exe - svchost.exe
IFEO-X64: bundle.exe - svchost.exe
IFEO-X64: bvt.exe - svchost.exe
IFEO-X64: c.exe - svchost.exe
IFEO-X64: cavscan.exe - svchost.exe
IFEO-X64: ccapp.exe - svchost.exe
IFEO-X64: ccevtmgr.exe - svchost.exe
IFEO-X64: ccpxysvc.exe - svchost.exe
IFEO-X64: cdp.exe - svchost.exe
IFEO-X64: cfd.exe - svchost.exe
IFEO-X64: cfgwiz.exe - svchost.exe
IFEO-X64: cfiadmin.exe - svchost.exe
IFEO-X64: cfiaudit.exe - svchost.exe
IFEO-X64: cfinet.exe - svchost.exe
IFEO-X64: cfinet32.exe - svchost.exe
IFEO-X64: cfp.exe - svchost.exe
IFEO-X64: cfpconfg.exe - svchost.exe
IFEO-X64: cfplogvw.exe - svchost.exe
IFEO-X64: cfpupdat.exe - svchost.exe
IFEO-X64: claw95.exe - svchost.exe
IFEO-X64: claw95cf.exe - svchost.exe
IFEO-X64: clean.exe - svchost.exe
IFEO-X64: cleaner.exe - svchost.exe
IFEO-X64: cleaner3.exe - svchost.exe
IFEO-X64: cleanIELow.exe - svchost.exe
IFEO-X64: cleanpc.exe - svchost.exe
IFEO-X64: click.exe - svchost.exe
IFEO-X64: cmd32.exe - svchost.exe
IFEO-X64: cmdagent.exe - svchost.exe
IFEO-X64: cmesys.exe - svchost.exe
IFEO-X64: cmgrdian.exe - svchost.exe
IFEO-X64: cmon016.exe - svchost.exe
IFEO-X64: connectionmonitor.exe - svchost.exe
IFEO-X64: control - svchost.exe
IFEO-X64: cpd.exe - svchost.exe
IFEO-X64: cpf9x206.exe - svchost.exe
IFEO-X64: cpfnt206.exe - svchost.exe
IFEO-X64: crashrep.exe - svchost.exe
IFEO-X64: csc.exe - svchost.exe
IFEO-X64: cssconfg.exe - svchost.exe
IFEO-X64: cssupdat.exe - svchost.exe
IFEO-X64: cssurf.exe - svchost.exe
IFEO-X64: ctrl.exe - svchost.exe
IFEO-X64: cv.exe - svchost.exe
IFEO-X64: cwnb181.exe - svchost.exe
IFEO-X64: cwntdwmo.exe - svchost.exe
IFEO-X64: d.exe - svchost.exe
IFEO-X64: datemanager.exe - svchost.exe
IFEO-X64: dcomx.exe - svchost.exe
IFEO-X64: defalert.exe - svchost.exe
IFEO-X64: defscangui.exe - svchost.exe
IFEO-X64: defwatch.exe - svchost.exe
IFEO-X64: deloeminfs.exe - svchost.exe
IFEO-X64: deputy.exe - svchost.exe
IFEO-X64: divx.exe - svchost.exe
IFEO-X64: dllcache.exe - svchost.exe
IFEO-X64: dllreg.exe - svchost.exe
IFEO-X64: doors.exe - svchost.exe
IFEO-X64: dop.exe - svchost.exe
IFEO-X64: dpf.exe - svchost.exe
IFEO-X64: dpfsetup.exe - svchost.exe
IFEO-X64: dpps2.exe - svchost.exe
IFEO-X64: driverctrl.exe - svchost.exe
IFEO-X64: drwatson.exe - svchost.exe
IFEO-X64: drweb32.exe - svchost.exe
IFEO-X64: drwebupw.exe - svchost.exe
IFEO-X64: dssagent.exe - svchost.exe
IFEO-X64: dvp95.exe - svchost.exe
IFEO-X64: dvp95_0.exe - svchost.exe
IFEO-X64: ecengine.exe - svchost.exe
IFEO-X64: efpeadm.exe - svchost.exe
IFEO-X64: emsw.exe - svchost.exe
IFEO-X64: ent.exe - svchost.exe
IFEO-X64: esafe.exe - svchost.exe
IFEO-X64: escanhnt.exe - svchost.exe
IFEO-X64: escanv95.exe - svchost.exe
IFEO-X64: espwatch.exe - svchost.exe
IFEO-X64: ethereal.exe - svchost.exe
IFEO-X64: etrustcipe.exe - svchost.exe
IFEO-X64: evpn.exe - svchost.exe
IFEO-X64: exantivirus-cnet.exe - svchost.exe
IFEO-X64: exe.avxw.exe - svchost.exe
IFEO-X64: expert.exe - svchost.exe
IFEO-X64: explore.exe - svchost.exe
IFEO-X64: f-agnt95.exe - svchost.exe
IFEO-X64: f-prot.exe - svchost.exe
IFEO-X64: f-prot95.exe - svchost.exe
IFEO-X64: f-stopw.exe - svchost.exe
IFEO-X64: fact.exe - svchost.exe
IFEO-X64: fameh32.exe - svchost.exe
IFEO-X64: fast.exe - svchost.exe
IFEO-X64: fch32.exe - svchost.exe
IFEO-X64: fih32.exe - svchost.exe
IFEO-X64: findviru.exe - svchost.exe
IFEO-X64: firewall.exe - svchost.exe
IFEO-X64: fixcfg.exe - svchost.exe
IFEO-X64: fixfp.exe - svchost.exe
IFEO-X64: fnrb32.exe - svchost.exe
IFEO-X64: fp-win.exe - svchost.exe
IFEO-X64: fp-win_trial.exe - svchost.exe
IFEO-X64: fprot.exe - svchost.exe
IFEO-X64: frmwrk32.exe - svchost.exe
IFEO-X64: frw.exe - svchost.exe
IFEO-X64: fsaa.exe - svchost.exe
IFEO-X64: fsav.exe - svchost.exe
IFEO-X64: fsav32.exe - svchost.exe
IFEO-X64: fsav530stbyb.exe - svchost.exe
IFEO-X64: fsav530wtbyb.exe - svchost.exe
IFEO-X64: fsav95.exe - svchost.exe
IFEO-X64: fsgk32.exe - svchost.exe
IFEO-X64: fsm32.exe - svchost.exe
IFEO-X64: fsma32.exe - svchost.exe
IFEO-X64: fsmb32.exe - svchost.exe
IFEO-X64: gator.exe - svchost.exe
IFEO-X64: gav.exe - svchost.exe
IFEO-X64: gbmenu.exe - svchost.exe
IFEO-X64: gbn976rl.exe - svchost.exe
IFEO-X64: gbpoll.exe - svchost.exe
IFEO-X64: generics.exe - svchost.exe
IFEO-X64: gmt.exe - svchost.exe
IFEO-X64: guard.exe - svchost.exe
IFEO-X64: guarddog.exe - svchost.exe
IFEO-X64: guardgui.exe - svchost.exe
IFEO-X64: hacktracersetup.exe - svchost.exe
IFEO-X64: hbinst.exe - svchost.exe
IFEO-X64: hbsrv.exe - svchost.exe
IFEO-X64: History.exe - svchost.exe
IFEO-X64: homeav2010.exe - svchost.exe
IFEO-X64: hotactio.exe - svchost.exe
IFEO-X64: hotpatch.exe - svchost.exe
IFEO-X64: htlog.exe - svchost.exe
IFEO-X64: htpatch.exe - svchost.exe
IFEO-X64: hwpe.exe - svchost.exe
IFEO-X64: hxdl.exe - svchost.exe
IFEO-X64: hxiul.exe - svchost.exe
IFEO-X64: iamapp.exe - svchost.exe
IFEO-X64: iamserv.exe - svchost.exe
IFEO-X64: iamstats.exe - svchost.exe
IFEO-X64: ibmasn.exe - svchost.exe
IFEO-X64: ibmavsp.exe - svchost.exe
IFEO-X64: icload95.exe - svchost.exe
IFEO-X64: icloadnt.exe - svchost.exe
IFEO-X64: icmon.exe - svchost.exe
IFEO-X64: icsupp95.exe - svchost.exe
IFEO-X64: icsuppnt.exe - svchost.exe
IFEO-X64: Identity.exe - svchost.exe
IFEO-X64: idle.exe - svchost.exe
IFEO-X64: iedll.exe - svchost.exe
IFEO-X64: iedriver.exe - svchost.exe
IFEO-X64: IEShow.exe - svchost.exe
IFEO-X64: iface.exe - svchost.exe
IFEO-X64: ifw2000.exe - svchost.exe
IFEO-X64: inetlnfo.exe - svchost.exe
IFEO-X64: infus.exe - svchost.exe
IFEO-X64: infwin.exe - svchost.exe
IFEO-X64: init.exe - svchost.exe
IFEO-X64: init32.exe  - svchost.exe
IFEO-X64: install[1].exe - svchost.exe
IFEO-X64: install[2].exe - svchost.exe
IFEO-X64: install[3].exe - svchost.exe
IFEO-X64: install[4].exe - svchost.exe
IFEO-X64: install[5].exe - svchost.exe
IFEO-X64: intdel.exe - svchost.exe
IFEO-X64: intren.exe - svchost.exe
IFEO-X64: iomon98.exe - svchost.exe
IFEO-X64: istsvc.exe - svchost.exe
IFEO-X64: jammer.exe - svchost.exe
IFEO-X64: jdbgmrg.exe - svchost.exe
IFEO-X64: jedi.exe - svchost.exe
IFEO-X64: JsRcGen.exe - svchost.exe
IFEO-X64: kavlite40eng.exe - svchost.exe
IFEO-X64: kavpers40eng.exe - svchost.exe
IFEO-X64: kavpf.exe - svchost.exe
IFEO-X64: kazza.exe - svchost.exe
IFEO-X64: keenvalue.exe - svchost.exe
IFEO-X64: kerio-pf-213-en-win.exe - svchost.exe
IFEO-X64: kerio-wrl-421-en-win.exe - svchost.exe
IFEO-X64: kerio-wrp-421-en-win.exe - svchost.exe
IFEO-X64: killprocesssetup161.exe - svchost.exe
IFEO-X64: ldnetmon.exe - svchost.exe
IFEO-X64: ldpro.exe - svchost.exe
IFEO-X64: ldpromenu.exe - svchost.exe
IFEO-X64: ldscan.exe - svchost.exe
IFEO-X64: licmgr.exe - svchost.exe
IFEO-X64: lnetinfo.exe - svchost.exe
IFEO-X64: loader.exe - svchost.exe
IFEO-X64: localnet.exe - svchost.exe
IFEO-X64: lockdown.exe - svchost.exe
IFEO-X64: lockdown2000.exe - svchost.exe
IFEO-X64: lookout.exe - svchost.exe
IFEO-X64: lordpe.exe - svchost.exe
IFEO-X64: lsetup.exe - svchost.exe
IFEO-X64: luall.exe - svchost.exe
IFEO-X64: luau.exe - svchost.exe
IFEO-X64: lucomserver.exe - svchost.exe
IFEO-X64: luinit.exe - svchost.exe
IFEO-X64: luspt.exe - svchost.exe
IFEO-X64: MalwareRemoval.exe - svchost.exe
IFEO-X64: mapisvc32.exe - svchost.exe
IFEO-X64: mbam.exe - svchost.exe
IFEO-X64: mbamgui.exe - svchost.exe
IFEO-X64: mbamservice.exe - svchost.exe
IFEO-X64: mcagent.exe - svchost.exe
IFEO-X64: mcmnhdlr.exe - svchost.exe
IFEO-X64: mcmpeng.exe - svchost.exe
IFEO-X64: mcmscsvc.exe - svchost.exe
IFEO-X64: mcnasvc.exe - svchost.exe
IFEO-X64: mcproxy.exe - svchost.exe
IFEO-X64: McSACore.exe - svchost.exe
IFEO-X64: mcshell.exe - svchost.exe
IFEO-X64: mcshield.exe - svchost.exe
IFEO-X64: mcsysmon.exe - svchost.exe
IFEO-X64: mctool.exe - svchost.exe
IFEO-X64: mcupdate.exe - svchost.exe
IFEO-X64: mcvsrte.exe - svchost.exe
IFEO-X64: mcvsshld.exe - svchost.exe
IFEO-X64: md.exe - svchost.exe
IFEO-X64: mfin32.exe - svchost.exe
IFEO-X64: mfw2en.exe - svchost.exe
IFEO-X64: mfweng3.02d30.exe - svchost.exe
IFEO-X64: mgavrtcl.exe - svchost.exe
IFEO-X64: mgavrte.exe - svchost.exe
IFEO-X64: mghtml.exe - svchost.exe
IFEO-X64: mgui.exe - svchost.exe
IFEO-X64: minilog.exe - svchost.exe
IFEO-X64: mmod.exe - svchost.exe
IFEO-X64: monitor.exe - svchost.exe
IFEO-X64: moolive.exe - svchost.exe
IFEO-X64: mostat.exe - svchost.exe
IFEO-X64: mpfagent.exe - svchost.exe
IFEO-X64: mpfservice.exe - svchost.exe
IFEO-X64: MPFSrv.exe - svchost.exe
IFEO-X64: mpftray.exe - svchost.exe
IFEO-X64: mrflux.exe - svchost.exe
IFEO-X64: mrt.exe - svchost.exe
IFEO-X64: msa.exe - svchost.exe
IFEO-X64: msapp.exe - svchost.exe
IFEO-X64: MSASCui.exe - svchost.exe
IFEO-X64: msbb.exe - svchost.exe
IFEO-X64: msblast.exe - svchost.exe
IFEO-X64: mscache.exe - svchost.exe
IFEO-X64: msccn32.exe - svchost.exe
IFEO-X64: mscman.exe - svchost.exe
IFEO-X64: msconfig - svchost.exe
IFEO-X64: msdm.exe - svchost.exe
IFEO-X64: msdos.exe - svchost.exe
IFEO-X64: msiexec16.exe - svchost.exe
IFEO-X64: mslaugh.exe - svchost.exe
IFEO-X64: msmgt.exe - svchost.exe
IFEO-X64: msmsgri32.exe - svchost.exe
IFEO-X64: msseces.exe - svchost.exe
IFEO-X64: mssmmc32.exe - svchost.exe
IFEO-X64: mssys.exe - svchost.exe
IFEO-X64: msvxd.exe - svchost.exe
IFEO-X64: mu0311ad.exe - svchost.exe
IFEO-X64: mwatch.exe - svchost.exe
IFEO-X64: n32scanw.exe - svchost.exe
IFEO-X64: nav.exe - svchost.exe
IFEO-X64: navap.navapsvc.exe - svchost.exe
IFEO-X64: navapsvc.exe - svchost.exe
IFEO-X64: navapw32.exe - svchost.exe
IFEO-X64: navdx.exe - svchost.exe
IFEO-X64: navlu32.exe - svchost.exe
IFEO-X64: navnt.exe - svchost.exe
IFEO-X64: navstub.exe - svchost.exe
IFEO-X64: nc2000.exe - svchost.exe
IFEO-X64: ncinst4.exe - svchost.exe
IFEO-X64: ndd32.exe - svchost.exe
IFEO-X64: neomonitor.exe - svchost.exe
IFEO-X64: neowatchlog.exe - svchost.exe
IFEO-X64: netarmor.exe - svchost.exe
IFEO-X64: netd32.exe - svchost.exe
IFEO-X64: netinfo.exe - svchost.exe
IFEO-X64: netmon.exe - svchost.exe
IFEO-X64: netscanpro.exe - svchost.exe
IFEO-X64: netspyhunter-1.2.exe - svchost.exe
IFEO-X64: netutils.exe - svchost.exe
IFEO-X64: nisserv.exe - svchost.exe
IFEO-X64: nisum.exe - svchost.exe
IFEO-X64: nmain.exe - svchost.exe
IFEO-X64: nod32.exe - svchost.exe
IFEO-X64: normist.exe - svchost.exe
IFEO-X64: norton_internet_secu_3.0_407.exe - svchost.exe
IFEO-X64: notstart.exe - svchost.exe
IFEO-X64: npf40_tw_98_nt_me_2k.exe - svchost.exe
IFEO-X64: npfmessenger.exe - svchost.exe
IFEO-X64: nprotect.exe - svchost.exe
IFEO-X64: npscheck.exe - svchost.exe
IFEO-X64: npssvc.exe - svchost.exe
IFEO-X64: nsched32.exe - svchost.exe
IFEO-X64: nssys32.exe - svchost.exe
IFEO-X64: nstask32.exe - svchost.exe
IFEO-X64: nsupdate.exe - svchost.exe
IFEO-X64: nt.exe - svchost.exe
IFEO-X64: ntrtscan.exe - svchost.exe
IFEO-X64: ntvdm.exe - svchost.exe
IFEO-X64: ntxconfig.exe - svchost.exe
IFEO-X64: nui.exe - svchost.exe
IFEO-X64: nupgrade.exe - svchost.exe
IFEO-X64: nvarch16.exe - svchost.exe
IFEO-X64: nvc95.exe - svchost.exe
IFEO-X64: nvsvc32.exe - svchost.exe
IFEO-X64: nwinst4.exe - svchost.exe
IFEO-X64: nwservice.exe - svchost.exe
IFEO-X64: nwtool16.exe - svchost.exe
IFEO-X64: OAcat.exe - svchost.exe
IFEO-X64: OAhlp.exe - svchost.exe
IFEO-X64: OAReg.exe - svchost.exe
IFEO-X64: oasrv.exe - svchost.exe
IFEO-X64: oaui.exe - svchost.exe
IFEO-X64: oaview.exe - svchost.exe
IFEO-X64: ODSW.exe - svchost.exe
IFEO-X64: ollydbg.exe - svchost.exe
IFEO-X64: onsrvr.exe - svchost.exe
IFEO-X64: optimize.exe - svchost.exe
IFEO-X64: ostronet.exe - svchost.exe
IFEO-X64: otfix.exe - svchost.exe
IFEO-X64: outpost.exe - svchost.exe
IFEO-X64: outpostinstall.exe - svchost.exe
IFEO-X64: outpostproinstall.exe - svchost.exe
IFEO-X64: ozn695m5.exe - svchost.exe
IFEO-X64: padmin.exe - svchost.exe
IFEO-X64: panixk.exe - svchost.exe
IFEO-X64: patch.exe - svchost.exe
IFEO-X64: pav.exe - svchost.exe
IFEO-X64: pavcl.exe - svchost.exe
IFEO-X64: PavFnSvr.exe - svchost.exe
IFEO-X64: pavproxy.exe - svchost.exe
IFEO-X64: pavprsrv.exe - svchost.exe
IFEO-X64: pavsched.exe - svchost.exe
IFEO-X64: pavsrv51.exe - svchost.exe
IFEO-X64: pavw.exe - svchost.exe
IFEO-X64: pc.exe - svchost.exe
IFEO-X64: pccwin98.exe - svchost.exe
IFEO-X64: pcfwallicon.exe - svchost.exe
IFEO-X64: pcip10117_0.exe - svchost.exe
IFEO-X64: pcscan.exe - svchost.exe
IFEO-X64: pctsAuxs.exe - svchost.exe
IFEO-X64: pctsGui.exe - svchost.exe
IFEO-X64: pctsSvc.exe - svchost.exe
IFEO-X64: pctsTray.exe - svchost.exe
IFEO-X64: PC_Antispyware2010.exe - svchost.exe
IFEO-X64: pdfndr.exe - svchost.exe
IFEO-X64: pdsetup.exe - svchost.exe
IFEO-X64: PerAvir.exe - svchost.exe
IFEO-X64: periscope.exe - svchost.exe
IFEO-X64: persfw.exe - svchost.exe
IFEO-X64: personalguard - svchost.exe
IFEO-X64: personalguard.exe - svchost.exe
IFEO-X64: perswf.exe - svchost.exe
IFEO-X64: pf2.exe - svchost.exe
IFEO-X64: pfwadmin.exe - svchost.exe
IFEO-X64: pgmonitr.exe - svchost.exe
IFEO-X64: pingscan.exe - svchost.exe
IFEO-X64: platin.exe - svchost.exe
IFEO-X64: pop3trap.exe - svchost.exe
IFEO-X64: poproxy.exe - svchost.exe
IFEO-X64: popscan.exe - svchost.exe
IFEO-X64: portdetective.exe - svchost.exe
IFEO-X64: portmonitor.exe - svchost.exe
IFEO-X64: powerscan.exe - svchost.exe
IFEO-X64: ppinupdt.exe - svchost.exe
IFEO-X64: pptbc.exe - svchost.exe
IFEO-X64: ppvstop.exe - svchost.exe
IFEO-X64: prizesurfer.exe - svchost.exe
IFEO-X64: prmt.exe - svchost.exe
IFEO-X64: prmvr.exe - svchost.exe
IFEO-X64: procdump.exe - svchost.exe
IFEO-X64: processmonitor.exe - svchost.exe
IFEO-X64: procexplorerv1.0.exe - svchost.exe
IFEO-X64: programauditor.exe - svchost.exe
IFEO-X64: proport.exe - svchost.exe
IFEO-X64: protector.exe - svchost.exe
IFEO-X64: protectx.exe - svchost.exe
IFEO-X64: PSANCU.exe - svchost.exe
IFEO-X64: PSANHost.exe - svchost.exe
IFEO-X64: PSANToManager.exe - svchost.exe
IFEO-X64: PsCtrls.exe - svchost.exe
IFEO-X64: PsImSvc.exe - svchost.exe
IFEO-X64: PskSvc.exe - svchost.exe
IFEO-X64: pspf.exe - svchost.exe
IFEO-X64: PSUNMain.exe - svchost.exe
IFEO-X64: purge.exe - svchost.exe
IFEO-X64: qconsole.exe - svchost.exe
IFEO-X64: qh.exe - svchost.exe
IFEO-X64: qserver.exe - svchost.exe
IFEO-X64: Quick Heal.exe - svchost.exe
IFEO-X64: QuickHealCleaner.exe - svchost.exe
IFEO-X64: rapapp.exe - svchost.exe
IFEO-X64: rav7.exe - svchost.exe
IFEO-X64: rav7win.exe - svchost.exe
IFEO-X64: rav8win32eng.exe - svchost.exe
IFEO-X64: ray.exe - svchost.exe
IFEO-X64: rb32.exe - svchost.exe
IFEO-X64: rcsync.exe - svchost.exe
IFEO-X64: realmon.exe - svchost.exe
IFEO-X64: reged.exe - svchost.exe
IFEO-X64: regedt32.exe - svchost.exe
IFEO-X64: rescue.exe - svchost.exe
IFEO-X64: rescue32.exe - svchost.exe
IFEO-X64: rrguard.exe - svchost.exe
IFEO-X64: rscdwld.exe - svchost.exe
IFEO-X64: rshell.exe - svchost.exe
IFEO-X64: rtvscan.exe - svchost.exe
IFEO-X64: rtvscn95.exe - svchost.exe
IFEO-X64: rulaunch.exe - svchost.exe
IFEO-X64: rwg - svchost.exe
IFEO-X64: rwg.exe - svchost.exe
IFEO-X64: SafetyKeeper.exe - svchost.exe
IFEO-X64: safeweb.exe - svchost.exe
IFEO-X64: sahagent.exe - svchost.exe
IFEO-X64: Save.exe - svchost.exe
IFEO-X64: SaveArmor.exe - svchost.exe
IFEO-X64: SaveDefense.exe - svchost.exe
IFEO-X64: SaveKeep.exe - svchost.exe
IFEO-X64: savenow.exe - svchost.exe
IFEO-X64: sbserv.exe - svchost.exe
IFEO-X64: sc.exe - svchost.exe
IFEO-X64: scam32.exe - svchost.exe
IFEO-X64: scan32.exe - svchost.exe
IFEO-X64: scan95.exe - svchost.exe
IFEO-X64: scanpm.exe - svchost.exe
IFEO-X64: scrscan.exe - svchost.exe
IFEO-X64: Secure Veteran.exe - svchost.exe
IFEO-X64: secureveteran.exe - svchost.exe
IFEO-X64: Security Center.exe - svchost.exe
IFEO-X64: SecurityFighter.exe - svchost.exe
IFEO-X64: securitysoldier.exe - svchost.exe
IFEO-X64: serv95.exe - svchost.exe
IFEO-X64: setloadorder.exe - svchost.exe
IFEO-X64: setupvameeval.exe - svchost.exe
IFEO-X64: setup_flowprotector_us.exe - svchost.exe
IFEO-X64: sgssfw32.exe - svchost.exe
IFEO-X64: sh.exe - svchost.exe
IFEO-X64: shellspyinstall.exe - svchost.exe
IFEO-X64: shield.exe - svchost.exe
IFEO-X64: shn.exe - svchost.exe
IFEO-X64: showbehind.exe - svchost.exe
IFEO-X64: signcheck.exe - svchost.exe
IFEO-X64: smart.exe - svchost.exe
IFEO-X64: smartprotector.exe - svchost.exe
IFEO-X64: smc.exe - svchost.exe
IFEO-X64: smrtdefp.exe - svchost.exe
IFEO-X64: sms.exe - svchost.exe
IFEO-X64: smss32.exe - svchost.exe
IFEO-X64: snetcfg.exe - svchost.exe
IFEO-X64: soap.exe - svchost.exe
IFEO-X64: sofi.exe - svchost.exe
IFEO-X64: SoftSafeness.exe - svchost.exe
IFEO-X64: sperm.exe - svchost.exe
IFEO-X64: spf.exe - svchost.exe
IFEO-X64: sphinx.exe - svchost.exe
IFEO-X64: spoler.exe - svchost.exe
IFEO-X64: spoolcv.exe - svchost.exe
IFEO-X64: spoolsv32.exe - svchost.exe
IFEO-X64: spywarexpguard.exe - svchost.exe
IFEO-X64: spyxx.exe - svchost.exe
IFEO-X64: srexe.exe - svchost.exe
IFEO-X64: srng.exe - svchost.exe
IFEO-X64: ss3edit.exe - svchost.exe
IFEO-X64: ssgrate.exe - svchost.exe
IFEO-X64: ssg_4104.exe - svchost.exe
IFEO-X64: st2.exe - svchost.exe
IFEO-X64: start.exe - svchost.exe
IFEO-X64: stcloader.exe - svchost.exe
IFEO-X64: supftrl.exe - svchost.exe
IFEO-X64: support.exe - svchost.exe
IFEO-X64: supporter5.exe - svchost.exe
IFEO-X64: svc.exe - svchost.exe
IFEO-X64: svchostc.exe - svchost.exe
IFEO-X64: svchosts.exe - svchost.exe
IFEO-X64: svshost.exe - svchost.exe
IFEO-X64: sweep95.exe - svchost.exe
IFEO-X64: sweepnet.sweepsrv.sys.swnetsup.exe - svchost.exe
IFEO-X64: symlcsvc.exe - svchost.exe
IFEO-X64: symproxysvc.exe - svchost.exe
IFEO-X64: symtray.exe - svchost.exe
IFEO-X64: system.exe - svchost.exe
IFEO-X64: system32.exe - svchost.exe
IFEO-X64: sysupd.exe - svchost.exe
IFEO-X64: tapinstall.exe - svchost.exe
IFEO-X64: taumon.exe - svchost.exe
IFEO-X64: tbscan.exe - svchost.exe
IFEO-X64: tc.exe - svchost.exe
IFEO-X64: tca.exe - svchost.exe
IFEO-X64: tcm.exe - svchost.exe
IFEO-X64: tds-3.exe - svchost.exe
IFEO-X64: tds2-98.exe - svchost.exe
IFEO-X64: tds2-nt.exe - svchost.exe
IFEO-X64: teekids.exe - svchost.exe
IFEO-X64: tfak.exe - svchost.exe
IFEO-X64: tfak5.exe - svchost.exe
IFEO-X64: tgbob.exe - svchost.exe
IFEO-X64: titanin.exe - svchost.exe
IFEO-X64: titaninxp.exe - svchost.exe
IFEO-X64: TPSrv.exe - svchost.exe
IFEO-X64: trickler.exe - svchost.exe
IFEO-X64: trjscan.exe - svchost.exe
IFEO-X64: trjsetup.exe - svchost.exe
IFEO-X64: trojantrap3.exe - svchost.exe
IFEO-X64: TrustWarrior.exe - svchost.exe
IFEO-X64: tsadbot.exe - svchost.exe
IFEO-X64: tsc.exe - svchost.exe
IFEO-X64: tvmd.exe - svchost.exe
IFEO-X64: tvtmd.exe - svchost.exe
IFEO-X64: undoboot.exe - svchost.exe
IFEO-X64: updat.exe - svchost.exe
IFEO-X64: upgrad.exe - svchost.exe
IFEO-X64: utpost.exe - svchost.exe
IFEO-X64: vbcmserv.exe - svchost.exe
IFEO-X64: vbcons.exe - svchost.exe
IFEO-X64: vbust.exe - svchost.exe
IFEO-X64: vbwin9x.exe - svchost.exe
IFEO-X64: vbwinntw.exe - svchost.exe
IFEO-X64: vcsetup.exe - svchost.exe
IFEO-X64: vet32.exe - svchost.exe
IFEO-X64: vet95.exe - svchost.exe
IFEO-X64: vettray.exe - svchost.exe
IFEO-X64: vfsetup.exe - svchost.exe
IFEO-X64: vir-help.exe - svchost.exe
IFEO-X64: virusmdpersonalfirewall.exe - svchost.exe
IFEO-X64: VisthAux.exe - svchost.exe
IFEO-X64: VisthLic.exe - svchost.exe
IFEO-X64: VisthUpd.exe - svchost.exe
IFEO-X64: vnlan300.exe - svchost.exe
IFEO-X64: vnpc3000.exe - svchost.exe
IFEO-X64: vpc32.exe - svchost.exe
IFEO-X64: vpc42.exe - svchost.exe
IFEO-X64: vpfw30s.exe - svchost.exe
IFEO-X64: vptray.exe - svchost.exe
IFEO-X64: vscan40.exe - svchost.exe
IFEO-X64: vscenu6.02d30.exe - svchost.exe
IFEO-X64: vsched.exe - svchost.exe
IFEO-X64: vsecomr.exe - svchost.exe
IFEO-X64: vshwin32.exe - svchost.exe
IFEO-X64: vsisetup.exe - svchost.exe
IFEO-X64: vsmain.exe - svchost.exe
IFEO-X64: vsmon.exe - svchost.exe
IFEO-X64: vsstat.exe - svchost.exe
IFEO-X64: vswin9xe.exe - svchost.exe
IFEO-X64: vswinntse.exe - svchost.exe
IFEO-X64: vswinperse.exe - svchost.exe
IFEO-X64: w32dsm89.exe - svchost.exe
IFEO-X64: W3asbas.exe - svchost.exe
IFEO-X64: w9x.exe - svchost.exe
IFEO-X64: watchdog.exe - svchost.exe
IFEO-X64: webdav.exe - svchost.exe
IFEO-X64: WebProxy.exe - svchost.exe
IFEO-X64: webscanx.exe - svchost.exe
IFEO-X64: webtrap.exe - svchost.exe
IFEO-X64: wfindv32.exe - svchost.exe
IFEO-X64: whoswatchingme.exe - svchost.exe
IFEO-X64: wimmun32.exe - svchost.exe
IFEO-X64: win-bugsfix.exe - svchost.exe
IFEO-X64: win32.exe - svchost.exe
IFEO-X64: win32us.exe - svchost.exe
IFEO-X64: winactive.exe - svchost.exe
IFEO-X64: winav.exe - svchost.exe
IFEO-X64: windll32.exe - svchost.exe
IFEO-X64: window.exe - svchost.exe
IFEO-X64: windows Police Pro.exe - svchost.exe
IFEO-X64: windows.exe - svchost.exe
IFEO-X64: wininetd.exe - svchost.exe
IFEO-X64: wininitx.exe - svchost.exe
IFEO-X64: winlogin.exe - svchost.exe
IFEO-X64: winmain.exe - svchost.exe
IFEO-X64: winppr32.exe - svchost.exe
IFEO-X64: winrecon.exe - svchost.exe
IFEO-X64: winservn.exe - svchost.exe
IFEO-X64: winssk32.exe - svchost.exe
IFEO-X64: winstart.exe - svchost.exe
IFEO-X64: winstart001.exe - svchost.exe
IFEO-X64: wintsk32.exe - svchost.exe
IFEO-X64: winupdate.exe - svchost.exe
IFEO-X64: wkufind.exe - svchost.exe
IFEO-X64: wnad.exe - svchost.exe
IFEO-X64: wnt.exe - svchost.exe
IFEO-X64: wradmin.exe - svchost.exe
IFEO-X64: wrctrl.exe - svchost.exe
IFEO-X64: wsbgate.exe - svchost.exe
IFEO-X64: wscfxas.exe - svchost.exe
IFEO-X64: wscfxav.exe - svchost.exe
IFEO-X64: wscfxfw.exe - svchost.exe
IFEO-X64: wsctool.exe - svchost.exe
IFEO-X64: wupdater.exe - svchost.exe
IFEO-X64: wupdt.exe - svchost.exe
IFEO-X64: wyvernworksfirewall.exe - svchost.exe
IFEO-X64: xpdeluxe.exe - svchost.exe
IFEO-X64: xpf202en.exe - svchost.exe
IFEO-X64: xp_antispyware.exe - svchost.exe
IFEO-X64: zapro.exe - svchost.exe
IFEO-X64: zapsetup3001.exe - svchost.exe
IFEO-X64: zatutor.exe - svchost.exe
IFEO-X64: zonalm2601.exe - svchost.exe
IFEO-X64: zonealarm.exe - svchost.exe
IFEO-X64: _avp32.exe - svchost.exe
IFEO-X64: _avpcc.exe - svchost.exe
IFEO-X64: _avpm.exe - svchost.exe
IFEO-X64: ~1.exe - svchost.exe
IFEO-X64: ~2.exe - svchost.exe
.
==== Installed Programs ======================
.
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.3) MUI
Adobe Shockwave Player 11.5
Advanced System Protector
Agatha Christie - Peril at End House
Apple Application Support
Apple Software Update
Audacity 2.0
Bejeweled 2 Deluxe
Bejeweled 3
Blackhawk Striker 2
Blasterball 3
Bounce Symphony
Build-a-lot 2
Cake Mania
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
Catalyst Control Center Profiles Mobile
ccc-core-static
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
Chuzzle Deluxe
CyberLink YouCam
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Diner Dash 2 Restaurant Rescue
Dora's World Adventure
Energy Star Digital Logo
ESU for Microsoft Windows 7
Euro Truck Simulator 1.3
Evernote v. 4.2.2
Facebook Video Calling 1.2.0.159
Farm Frenzy
Fastest Free YouTube Downloader to MP3 Converter
FATE - The Traitor Soul
Final Drive Nitro
GeoGebra
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
Hewlett-Packard ACLM.NET v1.1.2.0
HiJackThis
HP Connection Manager
HP Customer Experience Enhancements
HP Documentation
HP Games
HP On Screen Display
HP Power Manager
HP Quick Launch
HP Setup
HP Setup Manager
HP Software Framework
HP Support Assistant
IDT Audio
Intel(R) Display Audio Driver
Intel(R) Management Engine Components
Intel(R) Rapid Storage Technology
Java Auto Updater
Java(TM) 6 Update 31
Junk Mail filter update
Magic Desktop
Mah Jong Medley
Malwarebytes Anti-Malware version 1.61.0.1400
Mesh Runtime
Messenger Companion
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (Danish) 2010
Microsoft Office Excel MUI (Danish) 2010
Microsoft Office Home and Student 2010
Microsoft Office OneNote MUI (Danish) 2010
Microsoft Office Outlook MUI (Danish) 2010
Microsoft Office PowerPoint MUI (Danish) 2010
Microsoft Office Proof (Danish) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (German) 2010
Microsoft Office Proof (Swedish) 2010
Microsoft Office Proofing (Danish) 2010
Microsoft Office Publisher MUI (Danish) 2010
Microsoft Office Shared MUI (Danish) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (Danish) 2010
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
MSVCRT
MSVCRT_amd64
Mystery P.I. - Stolen in San Francisco
Namco All-Stars PAC-MAN
Need For Speed™ World
Penguins!
Plants vs. Zombies - Game of the Year
Poker Superstars III
Polar Bowler
Polar Golfer
PX Profile Update
QuickTime
Ralink RT5390 802.11b/g/n WiFi Adapter
Realtek Ethernet Controller Driver
Realtek PCIE Card Reader
Recovery Manager
RegClean Pro
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile DAN sprogpakke (KB2518870)
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition
Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)
Security Update for Microsoft Visio Viewer 2010 (KB2597170) 32-Bit Edition
Skype Click to Call
Skype™ 5.8
Slingo Supreme
Socialbox
Spotify
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector (KB2583935)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life
Visual Studio 2008 x64 Redistributables
VLC media player 2.0.0
VoiceOver Kit
WildTangent Games App (HP Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Fotogalleri
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger
Windows Live Mesh ActiveX-objekt til fjernforbindelser
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Meshin etäyhteyksien ActiveX-komponentti
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Liven asennustyökalu
Windows Liven sähköposti
Windows Liven valokuvavalikoima
YouTube Downloader 3.3
Zuma Deluxe
.
==== End Of File ===========================
Avatar billede f-arn Guru
11. april 2012 - 21:10 #15
Hent og gem ComboFix på dit skrivebord. <- Vigtigt

Kør så ComboFix og følg anvisningerne.

Da ComboFix kan konflikte med dine sikkerhedsprogrammer, er det vigtigt at du deaktiverer dem. <- Vigtigt

Du bør ikke klikke på vinduet imens værktøjet kører, idet det kan få din computer til at fryse.
Når ComboFix er færdig, og efter det (muligvis) har genstartet, skulle der gerne åbnes en logfil: ComboFix.txt
Indholdet af denne fil må du gerne lægge herind.

Den kan findes her: C:\ComboFix.txt
Avatar billede gate62 Nybegynder
11. april 2012 - 21:18 #16
okay jeg prøver:)
Avatar billede gate62 Nybegynder
11. april 2012 - 21:42 #17
her skulle være en combofix.txt

ComboFix 12-04-11.03 - Camilla 11-04-2012  21:28:12.1.4 - x64
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.45.1030.18.4044.2277 [GMT 2:00]
Kører fra: c:\users\Camilla\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((  Andet, der er slettet  )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\FunWebProducts
c:\program files (x86)\MyWebSearch
c:\program files (x86)\MyWebSearch\bar\1.bin\F3REPROX.DLL
c:\program files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
c:\program files (x86)\MyWebSearch\bar\1.bin\MWSSVC.EXE
c:\program files (x86)\MyWebSearch\bar\Settings\s_pid.dat
c:\program files (x86)\Uninstall Fun Web Products.dll
c:\users\Camilla\AppData\Roaming\result.db
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2012-03-11 til 2012-04-11  )))))))))))))))))))))))))))))))))))
.
.
2012-04-11 19:34 . 2012-04-11 19:34    --------    d-----w-    c:\users\Default\AppData\Local\temp
2012-04-11 18:07 . 2012-03-13 10:12    16896    ----a-w-    c:\windows\system32\sasnative64.exe
2012-04-11 18:07 . 2012-04-11 19:11    --------    d-----w-    c:\users\Camilla\AppData\Roaming\Systweak
2012-04-11 18:07 . 2012-03-30 10:14    18816    ----a-w-    c:\windows\system32\roboot64.exe
2012-04-11 17:46 . 2012-04-11 17:46    --------    d-----w-    c:\program files (x86)\Malwarebytes' Anti-Malware
2012-04-11 17:46 . 2012-04-04 13:56    24904    ----a-w-    c:\windows\system32\drivers\mbam.sys
2012-04-11 16:25 . 2012-04-11 16:25    --------    d-----w-    c:\programdata\Malwarebytes
2012-04-11 16:08 . 2012-04-11 16:08    --------    d-----w-    c:\users\Camilla\AppData\Local\ElevatedDiagnostics
2012-04-11 15:31 . 2012-04-11 15:31    --------    d-----w-    c:\program files (x86)\Common Files\Java
2012-04-11 15:29 . 2012-03-06 05:59    3968368    ----a-w-    c:\windows\SysWow64\ntkrnlpa.exe
2012-04-11 15:29 . 2012-03-06 05:59    3913072    ----a-w-    c:\windows\SysWow64\ntoskrnl.exe
2012-04-11 15:29 . 2012-03-01 06:46    23408    ----a-w-    c:\windows\system32\drivers\fs_rec.sys
2012-04-11 15:29 . 2012-03-01 06:33    81408    ----a-w-    c:\windows\system32\imagehlp.dll
2012-04-11 15:29 . 2012-03-01 05:33    159232    ----a-w-    c:\windows\SysWow64\imagehlp.dll
2012-04-11 15:29 . 2012-03-01 06:38    220672    ----a-w-    c:\windows\system32\wintrust.dll
2012-04-11 15:29 . 2012-03-01 06:28    5120    ----a-w-    c:\windows\system32\wmi.dll
2012-04-11 15:29 . 2012-03-01 05:37    172544    ----a-w-    c:\windows\SysWow64\wintrust.dll
2012-04-11 15:29 . 2012-03-01 05:29    5120    ----a-w-    c:\windows\SysWow64\wmi.dll
2012-04-10 20:59 . 2012-04-10 20:59    --------    d-----w-    c:\program files (x86)\Trend Micro
2012-04-10 18:30 . 2012-04-10 18:31    --------    d-----w-    c:\program files (x86)\AVG Secure Search
2012-04-08 19:55 . 2012-04-08 21:53    --------    d-----w-    c:\users\Camilla\AppData\Roaming\Audacity
2012-04-08 19:55 . 2012-04-08 19:55    --------    d-----w-    c:\program files (x86)\Audacity
2012-04-08 17:51 . 2012-04-08 17:51    --------    d-----w-    c:\users\Camilla\AppData\Roaming\Registry Mechanic
2012-04-07 20:12 . 2012-04-07 20:12    --------    d-----w-    c:\programdata\AVG Secure Search
2012-04-07 20:12 . 2012-04-07 20:12    --------    d-----w-    c:\program files (x86)\Common Files\AVG Secure Search
2012-04-07 20:12 . 2012-04-11 15:02    --------    d-----w-    c:\windows\SysWow64\drivers\AVG
2012-04-07 20:12 . 2012-04-10 21:13    --------    d-----w-    c:\programdata\AVG2012
2012-04-07 20:11 . 2012-04-07 20:11    --------    d-----w-    c:\program files (x86)\AVG
2012-04-07 20:05 . 2012-04-07 20:05    --------    d--h--w-    c:\programdata\Common Files
2012-04-07 20:04 . 2012-04-11 15:02    --------    d-----w-    c:\programdata\MFAData
2012-04-07 20:03 . 2012-04-11 15:42    --------    d-----w-    c:\program files (x86)\Common Files\PC Tools
2012-04-04 20:55 . 2012-04-04 20:55    --------    d-----w-    c:\program files (x86)\Common Files\Telespree
2012-04-04 20:54 . 2012-04-04 20:54    --------    d-----w-    c:\users\Camilla\AppData\Local\Hewlett-Packard_Developme
2012-04-04 05:53 . 2012-04-04 05:53    182160    ----a-w-    c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-03-14 09:06 . 2012-02-03 04:34    3145728    ----a-w-    c:\windows\system32\win32k.sys
2012-03-14 09:06 . 2012-02-10 06:36    1544192    ----a-w-    c:\windows\system32\DWrite.dll
2012-03-14 09:06 . 2012-02-10 05:38    1077248    ----a-w-    c:\windows\SysWow64\DWrite.dll
2012-03-14 09:05 . 2012-02-17 06:38    1031680    ----a-w-    c:\windows\system32\rdpcore.dll
2012-03-14 09:05 . 2012-02-17 05:34    826880    ----a-w-    c:\windows\SysWow64\rdpcore.dll
2012-03-14 09:05 . 2012-02-17 04:58    210944    ----a-w-    c:\windows\system32\drivers\rdpwd.sys
2012-03-14 09:05 . 2012-02-17 04:57    23552    ----a-w-    c:\windows\system32\drivers\tdtcp.sys
2012-03-14 09:05 . 2012-01-25 06:38    77312    ----a-w-    c:\windows\system32\rdpwsx.dll
2012-03-14 09:05 . 2012-01-25 06:38    149504    ----a-w-    c:\windows\system32\rdpcorekmts.dll
2012-03-14 09:05 . 2012-01-25 06:33    9216    ----a-w-    c:\windows\system32\rdrmemptylst.exe
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-11 15:31 . 2011-05-06 17:07    472808    ----a-w-    c:\windows\SysWow64\deployJava1.dll
2012-02-23 08:18 . 2010-11-21 03:27    279656    ------w-    c:\windows\system32\MpSigStub.exe
2012-02-15 10:58 . 2012-02-15 10:58    768848    ----a-w-    c:\windows\SysWow64\msvcr100.dll
2012-02-15 10:58 . 2012-02-15 10:58    421200    ----a-w-    c:\windows\SysWow64\msvcp100.dll
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-04-10 18:30    1811296    ----a-w-    c:\program files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll" [2012-04-10 1811296]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="c:\users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2011-10-30 137536]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-02-29 17148552]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-04-07 336384]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2012-04-04 35736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-01-27 318520]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-12-08 421736]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-02-15 577408]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-09-13 103992]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-04-10 939872]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ      autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages    REG_MULTI_SZ      kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 gupdate;Tjenesten Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-01 136176]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-15 158856]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 gupdatem;Google Update Tjeneste (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-01 136176]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Tjenesten Windows Aktivering;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-03 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-06 291896]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-09-01 227896]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-02-15 34872]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-13 13336]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-02-18 2372096]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
.
.
--- Andre Services/Drivers i Hukommelsen ---
.
*NewlyCreated* - WS2IFSL
.
Indhold af mappen 'Planlagte Opgaver'
.
2012-04-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1211409740-2408865052-3062530877-1000Core.job
- c:\users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-30 14:40]
.
2012-04-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1211409740-2408865052-3062530877-1000UA.job
- c:\users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-30 14:40]
.
2012-04-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-01 20:34]
.
2012-04-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-01 20:34]
.
2012-04-07 c:\windows\Tasks\HPCeeScheduleForCamilla.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-08 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-08 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-08 418328]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Yderligere scanning -------
.
uStart Page = hxxp://isearch.avg.com/?hpsrc=tb&ds=AVG
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&ksporter til Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: S&end til OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.2
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll
.
- - - - TOMME GENVEJE FJERNET - - - -
.
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-Advanced System Protector_is1 - c:\program files (x86)\Advanced System Protector\unins000.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-{6F44AF95-3CDE-4513-AD3F-6D45F17BF324} - c:\program files (x86)\InstallShield Installation Information\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\setup.exe
.
.
.
--------------------- LÅSTE REGISTRERINGS NØGLER ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Andre kørende processer ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Gennemført tid: 2012-04-11  21:40:35 - maskinen blev genstartet
ComboFix-quarantined-files.txt  2012-04-11 19:40
.
Pre-Kørsel: 666.208.399.360 byte ledig
Post-Kørsel: 665.662.869.504 byte ledig
.
- - End Of File - - C23F96C6638F55CE3B6DAABF4F9FF759
Avatar billede gate62 Nybegynder
11. april 2012 - 22:11 #18
SUPER !!!!!
Nu kører maskinen igen på fuld tryk, alt fungerer både antivirus og antimalware og den finder intet.
tusind tak til alle der medvirkede
smid et svar og i får point

I ER HELTE HVAD SKULLE VI GØRE UDEN JERES HJÆLP :)
Avatar billede f-arn Guru
11. april 2012 - 22:29 #19
Så let slipper du ikke, for der følger tit et "Bonus" Rootkit med den slags.

------

Download Tdsskiller.zip på dit skrivebord og pak den ud i en mappe.

Kør TDSSKiller.exe -> Klik på "Start Scan"

Mht.: Vista og Windows 7 - Højreklik på filen - Kør som Administrator.

Hvis en inficeret fil bliver fundet, vil "Default action" være Cure, klik på Continue
Hvis en mistænkelig fil opdages, vil "Default action" være Skip, klik på Continue
Hvis den ikke spørger om "Reboot" (genstart) så klik på "Report", kopier den tekst herind i tråden.

Genstart hvis den kræver det.

Hvis den genstarter kan du finde logfilen her :
C:\TDSSKiller.[Version]_[Dato]_[Tidspunkt]_log.txt.

Kopier den tekst herind I denne tråd.

------

Hent og gem aswMBR på dit Skrivebord.

Start aswMBR og klik på "Scan"

Mht.: Vista og Windows 7 - Højreklik på filen - Kør som Administrator.

Hvis den spørger efter "Avast virus definitioner" klikker du "Yes"

Når den er færdig med at scanne, klikker du på "SAVE LOG" og sender loggen herind.

------

PS Vil du godt gøre det, i den rækkefølge jeg anfører!
Avatar billede gate62 Nybegynder
12. april 2012 - 17:38 #20
Hej F-arn
Du må undskylde, min uvidenhed, jeg troede den var i orden da den fungerede fint.
Jeg kan desværre ikke komme videre med tråden inden engang i weekenden, da hun skulle have sin pc med på efterskolen, da hun bruger den i undervisningen, men jeg skal nok følge din fremgangsmåde i #19 så snart jeg har den tilbage.
Beklager meget denne ventetid ,men håber du vil følge op på tråden når jeg har oploadet nogle logfiler
Venlig hilsen gate62
Avatar billede f-arn Guru
12. april 2012 - 18:16 #21
Jeg skal nok være her  :-)
Avatar billede gate62 Nybegynder
14. april 2012 - 17:45 #22
Hej igen
her er en log fra tdskiller
17:38:59.0910 9232    TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
17:39:00.0269 9232    ============================================================
17:39:00.0269 9232    Current date / time: 2012/04/14 17:39:00.0269
17:39:00.0269 9232    SystemInfo:
17:39:00.0269 9232   
17:39:00.0269 9232    OS Version: 6.1.7601 ServicePack: 1.0
17:39:00.0269 9232    Product type: Workstation
17:39:00.0269 9232    ComputerName: 017_CAMILLAS
17:39:00.0269 9232    UserName: Camilla
17:39:00.0269 9232    Windows directory: C:\Windows
17:39:00.0269 9232    System windows directory: C:\Windows
17:39:00.0269 9232    Running under WOW64
17:39:00.0269 9232    Processor architecture: Intel x64
17:39:00.0269 9232    Number of processors: 4
17:39:00.0269 9232    Page size: 0x1000
17:39:00.0269 9232    Boot type: Normal boot
17:39:00.0269 9232    ============================================================
17:39:01.0003 9232    Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:01.0162 9232    Drive \Device\Harddisk1\DR2 - Size: 0x3E7FFE00 (0.98 Gb), SectorSize: 0x200, Cylinders: 0x7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:39:01.0178 9232    \Device\Harddisk0\DR0:
17:39:01.0178 9232    MBR used
17:39:01.0178 9232    \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:39:01.0178 9232    \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x55296800
17:39:01.0178 9232    \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x552FA800, BlocksNum 0x2218000
17:39:01.0178 9232    \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
17:39:01.0178 9232    \Device\Harddisk1\DR2:
17:39:01.0178 9232    MBR used
17:39:01.0178 9232    \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1F3FC0
17:39:01.0240 9232    Initialize success
17:39:01.0240 9232    ============================================================
17:39:17.0370 9120    Deinitialize success
17:39:21.0130 6808    TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
17:39:21.0239 6808    ============================================================
17:39:21.0239 6808    Current date / time: 2012/04/14 17:39:21.0239
17:39:21.0239 6808    SystemInfo:
17:39:21.0239 6808   
17:39:21.0239 6808    OS Version: 6.1.7601 ServicePack: 1.0
17:39:21.0239 6808    Product type: Workstation
17:39:21.0239 6808    ComputerName: 017_CAMILLAS
17:39:21.0239 6808    UserName: Camilla
17:39:21.0239 6808    Windows directory: C:\Windows
17:39:21.0239 6808    System windows directory: C:\Windows
17:39:21.0239 6808    Running under WOW64
17:39:21.0239 6808    Processor architecture: Intel x64
17:39:21.0239 6808    Number of processors: 4
17:39:21.0239 6808    Page size: 0x1000
17:39:21.0239 6808    Boot type: Normal boot
17:39:21.0239 6808    ============================================================
17:39:22.0004 6808    Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:22.0004 6808    Drive \Device\Harddisk1\DR2 - Size: 0x3E7FFE00 (0.98 Gb), SectorSize: 0x200, Cylinders: 0x7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:39:22.0019 6808    \Device\Harddisk0\DR0:
17:39:22.0019 6808    MBR used
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x55296800
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x552FA800, BlocksNum 0x2218000
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
17:39:22.0019 6808    \Device\Harddisk1\DR2:
17:39:22.0019 6808    MBR used
17:39:22.0019 6808    \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1F3FC0
17:39:22.0082 6808    Initialize success
17:39:22.0082 6808    ============================================================
17:39:24.0094 8428    ============================================================
17:39:24.0094 8428    Scan started
17:39:24.0094 8428    Mode: Manual;
17:39:24.0094 8428    ============================================================
17:39:24.0297 8428    1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:39:24.0313 8428    1394ohci - ok
17:39:24.0344 8428    ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:39:24.0359 8428    ACPI - ok
17:39:24.0391 8428    AcpiPmi        (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:39:24.0391 8428    AcpiPmi - ok
17:39:24.0500 8428    AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:39:24.0500 8428    AdobeARMservice - ok
17:39:24.0562 8428    adp94xx        (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
17:39:24.0578 8428    adp94xx - ok
17:39:24.0625 8428    adpahci        (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
17:39:24.0640 8428    adpahci - ok
17:39:24.0656 8428    adpu320        (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
17:39:24.0671 8428    adpu320 - ok
17:39:24.0703 8428    AeLookupSvc    (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:39:24.0703 8428    AeLookupSvc - ok
17:39:24.0749 8428    AFD            (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:39:24.0765 8428    AFD - ok
17:39:24.0781 8428    agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:39:24.0796 8428    agp440 - ok
17:39:24.0812 8428    ALG            (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:39:24.0812 8428    ALG - ok
17:39:24.0843 8428    aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:39:24.0843 8428    aliide - ok
17:39:24.0890 8428    AMD External Events Utility (2902a4fe2571ccb491e3ca51b75f8d2d) C:\Windows\system32\atiesrxx.exe
17:39:24.0890 8428    AMD External Events Utility - ok
17:39:24.0905 8428    amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:39:24.0905 8428    amdide - ok
17:39:24.0937 8428    AmdK8          (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
17:39:24.0952 8428    AmdK8 - ok
17:39:25.0202 8428    amdkmdag        (49a9a2fb39e682c4c7b2c27033b714d0) C:\Windows\system32\DRIVERS\atikmdag.sys
17:39:25.0420 8428    amdkmdag - ok
17:39:25.0467 8428    amdkmdap        (692c5a435f65cfd629f5338021f1364d) C:\Windows\system32\DRIVERS\atikmpag.sys
17:39:25.0467 8428    amdkmdap - ok
17:39:25.0483 8428    AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
17:39:25.0498 8428    AmdPPM - ok
17:39:25.0529 8428    amdsata        (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:39:25.0545 8428    amdsata - ok
17:39:25.0576 8428    amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
17:39:25.0576 8428    amdsbs - ok
17:39:25.0607 8428    amdxata        (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:39:25.0607 8428    amdxata - ok
17:39:25.0639 8428    AppID          (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:39:25.0654 8428    AppID - ok
17:39:25.0685 8428    AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:39:25.0685 8428    AppIDSvc - ok
17:39:25.0701 8428    Appinfo        (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:39:25.0701 8428    Appinfo - ok
17:39:25.0826 8428    Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:39:25.0826 8428    Apple Mobile Device - ok
17:39:25.0873 8428    arc            (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
17:39:25.0873 8428    arc - ok
17:39:25.0904 8428    arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
17:39:25.0904 8428    arcsas - ok
17:39:25.0951 8428    AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:39:25.0951 8428    AsyncMac - ok
17:39:25.0997 8428    atapi          (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:39:25.0997 8428    atapi - ok
17:39:26.0075 8428    AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:39:26.0091 8428    AudioEndpointBuilder - ok
17:39:26.0107 8428    AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:39:26.0122 8428    AudioSrv - ok
17:39:26.0185 8428    AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:39:26.0185 8428    AxInstSV - ok
17:39:26.0247 8428    b06bdrv        (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
17:39:26.0247 8428    b06bdrv - ok
17:39:26.0309 8428    b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:39:26.0325 8428    b57nd60a - ok
17:39:26.0403 8428    BCM43XX        (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
17:39:26.0434 8428    BCM43XX - ok
17:39:26.0465 8428    BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:39:26.0465 8428    BDESVC - ok
17:39:26.0497 8428    Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:39:26.0497 8428    Beep - ok
17:39:26.0543 8428    BFE            (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:39:26.0559 8428    BFE - ok
17:39:26.0621 8428    BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
17:39:26.0699 8428    BITS - ok
17:39:26.0731 8428    blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
17:39:26.0746 8428    blbdrive - ok
17:39:26.0793 8428    bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:39:26.0793 8428    bowser - ok
17:39:26.0840 8428    BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
17:39:26.0840 8428    BrFiltLo - ok
17:39:26.0855 8428    BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
17:39:26.0855 8428    BrFiltUp - ok
17:39:26.0918 8428    BridgeMP        (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:39:26.0918 8428    BridgeMP - ok
17:39:26.0965 8428    Browser        (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:39:26.0980 8428    Browser - ok
17:39:26.0996 8428    Brserid        (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:39:27.0011 8428    Brserid - ok
17:39:27.0043 8428    BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:39:27.0043 8428    BrSerWdm - ok
17:39:27.0074 8428    BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:39:27.0074 8428    BrUsbMdm - ok
17:39:27.0105 8428    BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:39:27.0105 8428    BrUsbSer - ok
17:39:27.0136 8428    BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
17:39:27.0136 8428    BTHMODEM - ok
17:39:27.0167 8428    bthserv        (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:39:27.0167 8428    bthserv - ok
17:39:27.0199 8428    catchme - ok
17:39:27.0230 8428    cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:39:27.0230 8428    cdfs - ok
17:39:27.0277 8428    cdrom          (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:39:27.0277 8428    cdrom - ok
17:39:27.0323 8428    CertPropSvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:39:27.0323 8428    CertPropSvc - ok
17:39:27.0355 8428    circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
17:39:27.0370 8428    circlass - ok
17:39:27.0386 8428    CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:39:27.0401 8428    CLFS - ok
17:39:27.0496 8428    clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:39:27.0558 8428    clr_optimization_v2.0.50727_32 - ok
17:39:27.0605 8428    clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:39:27.0605 8428    clr_optimization_v2.0.50727_64 - ok
17:39:27.0668 8428    clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:39:27.0668 8428    clr_optimization_v4.0.30319_32 - ok
17:39:27.0699 8428    clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:39:27.0699 8428    clr_optimization_v4.0.30319_64 - ok
17:39:27.0746 8428    clwvd          (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
17:39:27.0746 8428    clwvd - ok
17:39:27.0792 8428    CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
17:39:27.0792 8428    CmBatt - ok
17:39:27.0824 8428    cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:39:27.0839 8428    cmdide - ok
17:39:27.0886 8428    CNG            (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:39:27.0886 8428    CNG - ok
17:39:27.0933 8428    Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
17:39:27.0933 8428    Compbatt - ok
17:39:27.0948 8428    CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:39:27.0964 8428    CompositeBus - ok
17:39:27.0980 8428    COMSysApp - ok
17:39:28.0011 8428    crcdisk        (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
17:39:28.0011 8428    crcdisk - ok
17:39:28.0058 8428    CryptSvc        (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:39:28.0073 8428    CryptSvc - ok
17:39:28.0120 8428    DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:39:28.0136 8428    DcomLaunch - ok
17:39:28.0151 8428    defragsvc      (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:39:28.0167 8428    defragsvc - ok
17:39:28.0198 8428    DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:39:28.0198 8428    DfsC - ok
17:39:28.0229 8428    Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:39:28.0245 8428    Dhcp - ok
17:39:28.0260 8428    discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:39:28.0260 8428    discache - ok
17:39:28.0307 8428    Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
17:39:28.0323 8428    Disk - ok
17:39:28.0354 8428    Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:39:28.0370 8428    Dnscache - ok
17:39:28.0401 8428    dot3svc        (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:39:28.0401 8428    dot3svc - ok
17:39:28.0432 8428    DPS            (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:39:28.0432 8428    DPS - ok
17:39:28.0479 8428    drmkaud        (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:39:28.0479 8428    drmkaud - ok
17:39:28.0511 8428    DXGKrnl        (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:39:28.0558 8428    DXGKrnl - ok
17:39:28.0589 8428    EapHost        (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:39:28.0605 8428    EapHost - ok
17:39:28.0714 8428    ebdrv          (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
17:39:28.0807 8428    ebdrv - ok
17:39:28.0854 8428    EFS            (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:39:28.0854 8428    EFS - ok
17:39:28.0932 8428    ehRecvr        (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:39:29.0026 8428    ehRecvr - ok
17:39:29.0057 8428    ehSched        (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:39:29.0119 8428    ehSched - ok
17:39:29.0182 8428    elxstor        (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
17:39:29.0197 8428    elxstor - ok
17:39:29.0229 8428    ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:39:29.0229 8428    ErrDev - ok
17:39:29.0291 8428    EventSystem    (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:39:29.0307 8428    EventSystem - ok
17:39:29.0338 8428    exfat          (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:39:29.0338 8428    exfat - ok
17:39:29.0369 8428    ezSharedSvc - ok
17:39:29.0400 8428    fastfat        (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:39:29.0416 8428    fastfat - ok
17:39:29.0447 8428    Fax            (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:39:29.0478 8428    Fax - ok
17:39:29.0494 8428    fdc            (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
17:39:29.0494 8428    fdc - ok
17:39:29.0525 8428    fdPHost        (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:39:29.0525 8428    fdPHost - ok
17:39:29.0556 8428    FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:39:29.0556 8428    FDResPub - ok
17:39:29.0587 8428    FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:39:29.0587 8428    FileInfo - ok
17:39:29.0619 8428    Filetrace      (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:39:29.0619 8428    Filetrace - ok
17:39:29.0650 8428    flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
17:39:29.0650 8428    flpydisk - ok
17:39:29.0681 8428    FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:39:29.0681 8428    FltMgr - ok
17:39:29.0743 8428    FontCache      (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:39:29.0775 8428    FontCache - ok
17:39:29.0837 8428    FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:39:29.0853 8428    FontCache3.0.0.0 - ok
17:39:29.0868 8428    FsDepends      (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:39:29.0884 8428    FsDepends - ok
17:39:29.0946 8428    fssfltr        (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
17:39:29.0946 8428    fssfltr - ok
17:39:30.0040 8428    fsssvc          (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:39:30.0102 8428    fsssvc - ok
17:39:30.0149 8428    Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:39:30.0149 8428    Fs_Rec - ok
17:39:30.0211 8428    fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:39:30.0211 8428    fvevol - ok
17:39:30.0258 8428    gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
17:39:30.0258 8428    gagp30kx - ok
17:39:30.0336 8428    GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:39:30.0336 8428    GamesAppService - ok
17:39:30.0383 8428    GEARAspiWDM    (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:39:30.0383 8428    GEARAspiWDM - ok
17:39:30.0430 8428    gpsvc          (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:39:30.0477 8428    gpsvc - ok
17:39:30.0523 8428    gupdate        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:39:30.0523 8428    gupdate - ok
17:39:30.0555 8428    gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:39:30.0555 8428    gupdatem - ok
17:39:30.0586 8428    gusvc          (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:39:30.0601 8428    gusvc - ok
17:39:30.0633 8428    hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:39:30.0633 8428    hcw85cir - ok
17:39:30.0679 8428    HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:39:30.0695 8428    HdAudAddService - ok
17:39:30.0742 8428    HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:39:30.0742 8428    HDAudBus - ok
17:39:30.0773 8428    HidBatt        (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
17:39:30.0789 8428    HidBatt - ok
17:39:30.0804 8428    HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
17:39:30.0804 8428    HidBth - ok
17:39:30.0867 8428    HidIr          (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
17:39:30.0867 8428    HidIr - ok
17:39:30.0898 8428    hidserv        (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:39:30.0898 8428    hidserv - ok
17:39:30.0929 8428    HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:39:30.0929 8428    HidUsb - ok
17:39:30.0960 8428    hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:39:30.0960 8428    hkmsvc - ok
17:39:30.0991 8428    HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:39:30.0991 8428    HomeGroupListener - ok
17:39:31.0038 8428    HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:39:31.0038 8428    HomeGroupProvider - ok
17:39:31.0179 8428    HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:39:31.0179 8428    HP Support Assistant Service - ok
17:39:31.0257 8428    HPClientSvc    (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:39:31.0257 8428    HPClientSvc - ok
17:39:31.0397 8428    hpCMSrv        (e07f8e78d08d9269e3365c2a4f637191) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
17:39:31.0428 8428    hpCMSrv - ok
17:39:31.0491 8428    HPDrvMntSvc.exe (b19ff523b533a3f198b9239e1749c940) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:39:31.0491 8428    HPDrvMntSvc.exe - ok
17:39:31.0553 8428    hpqwmiex        (01091b900e15878b4434f9c726c4541d) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:39:31.0584 8428    hpqwmiex - ok
17:39:31.0756 8428    HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:39:31.0756 8428    HpSAMD - ok
17:39:31.0803 8428    HPWMISVC        (77c15d7e8f002a173eebff0b20cd697d) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:39:31.0818 8428    HPWMISVC - ok
17:39:31.0865 8428    HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:39:31.0896 8428    HTTP - ok
17:39:31.0927 8428    hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:39:31.0927 8428    hwpolicy - ok
17:39:31.0974 8428    i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:39:31.0990 8428    i8042prt - ok
17:39:32.0037 8428    iaStor          (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
17:39:32.0052 8428    iaStor - ok
17:39:32.0099 8428    IAStorDataMgrSvc (983fc69644ddf0486c8dfea262948d1a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
17:39:32.0099 8428    IAStorDataMgrSvc - ok
17:39:32.0146 8428    iaStorV        (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:39:32.0146 8428    iaStorV - ok
17:39:32.0286 8428    IconMan_R      (d22d82d74fd1b6c77e7556dbdc3ea9d2) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:39:32.0567 8428    IconMan_R - ok
17:39:32.0645 8428    idsvc          (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:39:32.0676 8428    idsvc - ok
17:39:32.0739 8428    iirsp          (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
17:39:32.0739 8428    iirsp - ok
17:39:32.0785 8428    IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:39:32.0832 8428    IKEEXT - ok
17:39:32.0895 8428    IntcDAud        (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
17:39:32.0895 8428    IntcDAud - ok
17:39:32.0941 8428    intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:39:32.0941 8428    intelide - ok
17:39:33.0285 8428    intelkmd        (78527e6a4d78b1153925914c55872beb) C:\Windows\system32\DRIVERS\igdpmd64.sys
17:39:33.0597 8428    intelkmd - ok
17:39:33.0643 8428    intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:39:33.0643 8428    intelppm - ok
17:39:33.0675 8428    IPBusEnum      (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:39:33.0675 8428    IPBusEnum - ok
17:39:33.0706 8428    IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:39:33.0706 8428    IpFilterDriver - ok
17:39:33.0753 8428    iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:39:33.0768 8428    iphlpsvc - ok
17:39:33.0799 8428    IPMIDRV        (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:39:33.0799 8428    IPMIDRV - ok
17:39:33.0831 8428    IPNAT          (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:39:33.0831 8428    IPNAT - ok
17:39:33.0909 8428    iPod Service    (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe
17:39:33.0955 8428    iPod Service - ok
17:39:33.0987 8428    IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:39:33.0987 8428    IRENUM - ok
17:39:34.0033 8428    isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:39:34.0033 8428    isapnp - ok
17:39:34.0065 8428    iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:39:34.0065 8428    iScsiPrt - ok
17:39:34.0111 8428    kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
17:39:34.0111 8428    kbdclass - ok
17:39:34.0143 8428    kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
17:39:34.0158 8428    kbdhid - ok
17:39:34.0189 8428    KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:34.0205 8428    KeyIso - ok
17:39:34.0221 8428    KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:39:34.0221 8428    KSecDD - ok
17:39:34.0252 8428    KSecPkg        (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:39:34.0252 8428    KSecPkg - ok
17:39:34.0267 8428    ksthunk        (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:39:34.0267 8428    ksthunk - ok
17:39:34.0314 8428    KtmRm          (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:39:34.0330 8428    KtmRm - ok
17:39:34.0392 8428    LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
17:39:34.0392 8428    LanmanServer - ok
17:39:34.0423 8428    LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:39:34.0423 8428    LanmanWorkstation - ok
17:39:34.0470 8428    lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:39:34.0470 8428    lltdio - ok
17:39:34.0533 8428    lltdsvc        (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:39:34.0533 8428    lltdsvc - ok
17:39:34.0579 8428    lmhosts        (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:39:34.0579 8428    lmhosts - ok
17:39:34.0689 8428    LMS            (d75c4b4a8fe6d7fd74a7eecdbaec729f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:39:34.0689 8428    LMS - ok
17:39:34.0735 8428    LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
17:39:34.0735 8428    LSI_FC - ok
17:39:34.0782 8428    LSI_SAS        (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
17:39:34.0782 8428    LSI_SAS - ok
17:39:34.0813 8428    LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
17:39:34.0829 8428    LSI_SAS2 - ok
17:39:34.0845 8428    LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
17:39:34.0860 8428    LSI_SCSI - ok
17:39:34.0876 8428    luafv          (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:39:34.0876 8428    luafv - ok
17:39:34.0923 8428    Mcx2Svc        (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:39:34.0923 8428    Mcx2Svc - ok
17:39:34.0969 8428    megasas        (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
17:39:34.0969 8428    megasas - ok
17:39:35.0001 8428    MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
17:39:35.0016 8428    MegaSR - ok
17:39:35.0047 8428    MEIx64          (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
17:39:35.0047 8428    MEIx64 - ok
17:39:35.0094 8428    MMCSS          (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:39:35.0094 8428    MMCSS - ok
17:39:35.0125 8428    Modem          (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:39:35.0125 8428    Modem - ok
17:39:35.0172 8428    monitor        (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:39:35.0172 8428    monitor - ok
17:39:35.0219 8428    mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:39:35.0219 8428    mouclass - ok
17:39:35.0250 8428    mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:39:35.0250 8428    mouhid - ok
17:39:35.0281 8428    mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:39:35.0281 8428    mountmgr - ok
17:39:35.0359 8428    MpFilter        (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
17:39:35.0359 8428    MpFilter - ok
17:39:35.0391 8428    mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:39:35.0406 8428    mpio - ok
17:39:35.0437 8428    MpNWMon        (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
17:39:35.0437 8428    MpNWMon - ok
17:39:35.0469 8428    mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:39:35.0469 8428    mpsdrv - ok
17:39:35.0515 8428    MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:39:35.0562 8428    MpsSvc - ok
17:39:35.0578 8428    MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:39:35.0593 8428    MRxDAV - ok
17:39:35.0625 8428    mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:39:35.0640 8428    mrxsmb - ok
17:39:35.0687 8428    mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:39:35.0687 8428    mrxsmb10 - ok
17:39:35.0703 8428    mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:39:35.0718 8428    mrxsmb20 - ok
17:39:35.0734 8428    msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:39:35.0734 8428    msahci - ok
17:39:35.0781 8428    msdsm          (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:39:35.0781 8428    msdsm - ok
17:39:35.0827 8428    MSDTC          (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:39:35.0827 8428    MSDTC - ok
17:39:35.0874 8428    Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:39:35.0874 8428    Msfs - ok
17:39:35.0890 8428    mshidkmdf      (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:39:35.0905 8428    mshidkmdf - ok
17:39:35.0937 8428    msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:39:35.0937 8428    msisadrv - ok
17:39:35.0999 8428    MSiSCSI        (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:39:35.0999 8428    MSiSCSI - ok
17:39:36.0015 8428    msiserver - ok
17:39:36.0046 8428    MSKSSRV        (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:39:36.0046 8428    MSKSSRV - ok
17:39:36.0155 8428    MsMpSvc        (157e9e498206a3366baa7e4697bdd947) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
17:39:36.0155 8428    MsMpSvc - ok
17:39:36.0186 8428    MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:39:36.0186 8428    MSPCLOCK - ok
17:39:36.0217 8428    MSPQM          (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:39:36.0217 8428    MSPQM - ok
17:39:36.0249 8428    MsRPC          (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:39:36.0249 8428    MsRPC - ok
17:39:36.0280 8428    mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:39:36.0280 8428    mssmbios - ok
17:39:36.0295 8428    MSTEE          (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:39:36.0311 8428    MSTEE - ok
17:39:36.0327 8428    MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
17:39:36.0342 8428    MTConfig - ok
17:39:36.0373 8428    Mup            (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:39:36.0373 8428    Mup - ok
17:39:36.0405 8428    napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:39:36.0420 8428    napagent - ok
17:39:36.0467 8428    NativeWifiP    (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:39:36.0483 8428    NativeWifiP - ok
17:39:36.0545 8428    NDIS            (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
17:39:36.0592 8428    NDIS - ok
17:39:36.0607 8428    NdisCap        (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:39:36.0607 8428    NdisCap - ok
17:39:36.0639 8428    NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:39:36.0639 8428    NdisTapi - ok
17:39:36.0670 8428    Ndisuio        (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:39:36.0670 8428    Ndisuio - ok
17:39:36.0701 8428    NdisWan        (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:39:36.0701 8428    NdisWan - ok
17:39:36.0732 8428    NDProxy        (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:39:36.0732 8428    NDProxy - ok
17:39:36.0779 8428    Netaapl        (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
17:39:36.0779 8428    Netaapl - ok
17:39:36.0810 8428    NetBIOS        (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:39:36.0810 8428    NetBIOS - ok
17:39:36.0841 8428    NetBT          (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:39:36.0841 8428    NetBT - ok
17:39:36.0888 8428    Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:36.0888 8428    Netlogon - ok
17:39:36.0919 8428    Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:39:36.0935 8428    Netman - ok
17:39:36.0966 8428    netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:39:36.0966 8428    netprofm - ok
17:39:37.0075 8428    netr28x        (24cf1304d899124336f67f88f3c15e21) C:\Windows\system32\DRIVERS\netr28x.sys
17:39:37.0107 8428    netr28x - ok
17:39:37.0200 8428    NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:39:37.0247 8428    NetTcpPortSharing - ok
17:39:37.0278 8428    nfrd960        (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
17:39:37.0278 8428    nfrd960 - ok
17:39:37.0356 8428    NisDrv          (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:39:37.0356 8428    NisDrv - ok
17:39:37.0434 8428    NisSrv          (566ddd5d82520da01d75f81428ac4c38) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
17:39:37.0450 8428    NisSrv - ok
17:39:37.0497 8428    NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:39:37.0497 8428    NlaSvc - ok
17:39:37.0528 8428    Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:39:37.0528 8428    Npfs - ok
17:39:37.0559 8428    nsi            (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:39:37.0559 8428    nsi - ok
17:39:37.0590 8428    nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:39:37.0590 8428    nsiproxy - ok
17:39:37.0668 8428    Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:39:37.0715 8428    Ntfs - ok
17:39:37.0731 8428    Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:39:37.0746 8428    Null - ok
17:39:37.0777 8428    NVENETFD        (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
17:39:37.0793 8428    NVENETFD - ok
17:39:37.0840 8428    nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:39:37.0855 8428    nvraid - ok
17:39:37.0887 8428    nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:39:37.0887 8428    nvstor - ok
17:39:37.0933 8428    nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:39:37.0933 8428    nv_agp - ok
17:39:37.0980 8428    ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:39:37.0980 8428    ohci1394 - ok
17:39:38.0089 8428    ose            (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:39:38.0089 8428    ose - ok
17:39:38.0323 8428    osppsvc        (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:39:38.0464 8428    osppsvc - ok
17:39:38.0511 8428    p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:39:38.0526 8428    p2pimsvc - ok
17:39:38.0557 8428    p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:39:38.0573 8428    p2psvc - ok
17:39:38.0636 8428    Parport        (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
17:39:38.0636 8428    Parport - ok
17:39:38.0683 8428    partmgr        (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
17:39:38.0699 8428    partmgr - ok
17:39:38.0714 8428    PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:39:38.0730 8428    PcaSvc - ok
17:39:38.0761 8428    pci            (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:39:38.0777 8428    pci - ok
17:39:38.0792 8428    pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:39:38.0792 8428    pciide - ok
17:39:38.0824 8428    pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
17:39:38.0839 8428    pcmcia - ok
17:39:38.0855 8428    pcw            (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:39:38.0855 8428    pcw - ok
17:39:38.0902 8428    PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:39:38.0917 8428    PEAUTH - ok
17:39:38.0964 8428    PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:39:38.0964 8428    PerfHost - ok
17:39:39.0042 8428    pla            (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:39:39.0089 8428    pla - ok
17:39:39.0151 8428    PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:39:39.0167 8428    PlugPlay - ok
17:39:39.0182 8428    PNRPAutoReg    (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:39:39.0198 8428    PNRPAutoReg - ok
17:39:39.0214 8428    PNRPsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:39:39.0229 8428    PNRPsvc - ok
17:39:39.0260 8428    PolicyAgent    (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:39:39.0276 8428    PolicyAgent - ok
17:39:39.0307 8428    Power          (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:39:39.0323 8428    Power - ok
17:39:39.0401 8428    PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:39:39.0401 8428    PptpMiniport - ok
17:39:39.0448 8428    Processor      (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
17:39:39.0448 8428    Processor - ok
17:39:39.0494 8428    ProfSvc        (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:39:39.0494 8428    ProfSvc - ok
17:39:39.0526 8428    ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:39.0526 8428    ProtectedStorage - ok
17:39:39.0557 8428    Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:39:39.0557 8428    Psched - ok
17:39:39.0635 8428    ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
17:39:39.0682 8428    ql2300 - ok
17:39:39.0713 8428    ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
17:39:39.0713 8428    ql40xx - ok
17:39:39.0744 8428    QWAVE          (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:39:39.0760 8428    QWAVE - ok
17:39:39.0775 8428    QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:39:39.0775 8428    QWAVEdrv - ok
17:39:39.0806 8428    RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:39:39.0806 8428    RasAcd - ok
17:39:39.0822 8428    RasAgileVpn    (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:39:39.0838 8428    RasAgileVpn - ok
17:39:39.0853 8428    RasAuto        (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:39:39.0869 8428    RasAuto - ok
17:39:39.0884 8428    Rasl2tp        (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:39:39.0900 8428    Rasl2tp - ok
17:39:39.0916 8428    RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:39:39.0931 8428    RasMan - ok
17:39:39.0947 8428    RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:39:39.0962 8428    RasPppoe - ok
17:39:40.0009 8428    RasSstp        (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:39:40.0009 8428    RasSstp - ok
17:39:40.0056 8428    rdbss          (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:39:40.0072 8428    rdbss - ok
17:39:40.0087 8428    rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
17:39:40.0087 8428    rdpbus - ok
17:39:40.0134 8428    RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:39:40.0134 8428    RDPCDD - ok
17:39:40.0165 8428    RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:39:40.0165 8428    RDPENCDD - ok
17:39:40.0196 8428    RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:39:40.0196 8428    RDPREFMP - ok
17:39:40.0243 8428    RDPWD          (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:39:40.0243 8428    RDPWD - ok
17:39:40.0274 8428    rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:39:40.0274 8428    rdyboost - ok
17:39:40.0321 8428    RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:39:40.0321 8428    RemoteAccess - ok
17:39:40.0352 8428    RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:39:40.0368 8428    RemoteRegistry - ok
17:39:40.0384 8428    RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:39:40.0384 8428    RpcEptMapper - ok
17:39:40.0430 8428    RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:39:40.0430 8428    RpcLocator - ok
17:39:40.0477 8428    RpcSs          (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:39:40.0477 8428    RpcSs - ok
17:39:40.0555 8428    RSPCIESTOR      (546d7f426776090b90ef5f195b6ae662) C:\Windows\system32\DRIVERS\RtsPStor.sys
17:39:40.0555 8428    RSPCIESTOR - ok
17:39:40.0602 8428    rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:39:40.0602 8428    rspndr - ok
17:39:40.0649 8428    RTL8167        (ea5532868ba76923d75bcb2a1448d810) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:39:40.0664 8428    RTL8167 - ok
17:39:40.0711 8428    SamSs          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:40.0711 8428    SamSs - ok
17:39:40.0758 8428    sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:39:40.0758 8428    sbp2port - ok
17:39:40.0789 8428    SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:39:40.0789 8428    SCardSvr - ok
17:39:40.0820 8428    scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:39:40.0836 8428    scfilter - ok
17:39:40.0883 8428    Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:39:40.0914 8428    Schedule - ok
17:39:40.0961 8428    SCPolicySvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:39:40.0961 8428    SCPolicySvc - ok
17:39:40.0992 8428    sdbus          (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
17:39:40.0992 8428    sdbus - ok
17:39:41.0023 8428    SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:39:41.0039 8428    SDRSVC - ok
17:39:41.0070 8428    secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:39:41.0070 8428    secdrv - ok
17:39:41.0101 8428    seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:39:41.0101 8428    seclogon - ok
17:39:41.0117 8428    SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
17:39:41.0132 8428    SENS - ok
17:39:41.0164 8428    SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:39:41.0164 8428    SensrSvc - ok
17:39:41.0195 8428    Serenum        (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
17:39:41.0195 8428    Serenum - ok
17:39:41.0257 8428    Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
17:39:41.0257 8428    Serial - ok
17:39:41.0288 8428    sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
17:39:41.0288 8428    sermouse - ok
17:39:41.0335 8428    SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:39:41.0335 8428    SessionEnv - ok
17:39:41.0382 8428    sffdisk        (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:39:41.0382 8428    sffdisk - ok
17:39:41.0413 8428    sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:39:41.0429 8428    sffp_mmc - ok
17:39:41.0444 8428    sffp_sd        (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:39:41.0444 8428    sffp_sd - ok
17:39:41.0476 8428    sfloppy        (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
17:39:41.0476 8428    sfloppy - ok
17:39:41.0507 8428    SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:39:41.0522 8428    SharedAccess - ok
17:39:41.0554 8428    ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:39:41.0569 8428    ShellHWDetection - ok
17:39:41.0585 8428    SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
17:39:41.0600 8428    SiSRaid2 - ok
17:39:41.0632 8428    SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
17:39:41.0632 8428    SiSRaid4 - ok
17:39:41.0710 8428    SkypeUpdate    (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:39:41.0710 8428    SkypeUpdate - ok
17:39:41.0772 8428    Smb            (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:39:41.0772 8428    Smb - ok
17:39:41.0834 8428    SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:39:41.0834 8428    SNMPTRAP - ok
17:39:41.0866 8428    spldr          (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:39:41.0866 8428    spldr - ok
17:39:41.0897 8428    Spooler        (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:39:41.0928 8428    Spooler - ok
17:39:42.0037 8428    sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:39:42.0162 8428    sppsvc - ok
17:39:42.0193 8428    sppuinotify    (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:39:42.0193 8428    sppuinotify - ok
17:39:42.0240 8428    srv            (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:39:42.0256 8428    srv - ok
17:39:42.0287 8428    srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:39:42.0302 8428    srv2 - ok
17:39:42.0349 8428    SrvHsfHDA      (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:39:42.0349 8428    SrvHsfHDA - ok
17:39:42.0412 8428    SrvHsfV92      (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:39:42.0458 8428    SrvHsfV92 - ok
17:39:42.0505 8428    SrvHsfWinac    (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:39:42.0521 8428    SrvHsfWinac - ok
17:39:42.0552 8428    srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:39:42.0552 8428    srvnet - ok
17:39:42.0583 8428    SSDPSRV        (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:39:42.0583 8428    SSDPSRV - ok
17:39:42.0614 8428    SstpSvc        (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:39:42.0614 8428    SstpSvc - ok
17:39:42.0739 8428    STacSV          (b2d8b364a831427a5741f6c408fa8ae3) C:\Program Files\IDT\WDM\STacSV64.exe
17:39:42.0848 8428    STacSV - ok
17:39:42.0864 8428    stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
17:39:42.0864 8428    stexstor - ok
17:39:42.0926 8428    STHDA          (ef5acde92ba3f691bbfef781cb063501) C:\Windows\system32\DRIVERS\stwrt64.sys
17:39:42.0942 8428    STHDA - ok
17:39:43.0020 8428    stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:39:43.0036 8428    stisvc - ok
17:39:43.0067 8428    swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:39:43.0067 8428    swenum - ok
17:39:43.0114 8428    swprv          (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:39:43.0129 8428    swprv - ok
17:39:43.0223 8428    SynTP          (33e6a285daa5134d8ea2247914c86c09) C:\Windows\system32\DRIVERS\SynTP.sys
17:39:43.0270 8428    SynTP - ok
17:39:43.0332 8428    SysMain        (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:39:43.0379 8428    SysMain - ok
17:39:43.0410 8428    TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:39:43.0410 8428    TabletInputService - ok
17:39:43.0441 8428    TapiSrv        (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:39:43.0457 8428    TapiSrv - ok
17:39:43.0488 8428    TBS            (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:39:43.0488 8428    TBS - ok
17:39:43.0582 8428    Tcpip          (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
17:39:43.0628 8428    Tcpip - ok
17:39:43.0706 8428    TCPIP6          (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
17:39:43.0738 8428    TCPIP6 - ok
17:39:43.0784 8428    tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:39:43.0784 8428    tcpipreg - ok
17:39:43.0816 8428    TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:39:43.0816 8428    TDPIPE - ok
17:39:43.0862 8428    TDTCP          (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:39:43.0862 8428    TDTCP - ok
17:39:43.0894 8428    tdx            (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:39:43.0909 8428    tdx - ok
17:39:43.0940 8428    TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:39:43.0940 8428    TermDD - ok
17:39:44.0003 8428    TermService    (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:39:44.0034 8428    TermService - ok
17:39:44.0065 8428    Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:39:44.0065 8428    Themes - ok
17:39:44.0112 8428    THREADORDER    (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:39:44.0112 8428    THREADORDER - ok
17:39:44.0128 8428    TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:39:44.0128 8428    TrkWks - ok
17:39:44.0174 8428    TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:39:44.0174 8428    TrustedInstaller - ok
17:39:44.0206 8428    tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:39:44.0206 8428    tssecsrv - ok
17:39:44.0252 8428    TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:39:44.0252 8428    TsUsbFlt - ok
17:39:44.0284 8428    TsUsbGD        (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
17:39:44.0299 8428    TsUsbGD - ok
17:39:44.0330 8428    tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:39:44.0346 8428    tunnel - ok
17:39:44.0362 8428    uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
17:39:44.0377 8428    uagp35 - ok
17:39:44.0393 8428    udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:39:44.0408 8428    udfs - ok
17:39:44.0440 8428    UI0Detect      (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:39:44.0440 8428    UI0Detect - ok
17:39:44.0471 8428    uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:39:44.0486 8428    uliagpkx - ok
17:39:44.0518 8428    umbus          (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
17:39:44.0518 8428    umbus - ok
17:39:44.0549 8428    UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
17:39:44.0549 8428    UmPass - ok
17:39:44.0705 8428    UNS            (758c2ce427c343f780a205e28555c98d) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:39:44.0783 8428    UNS - ok
17:39:44.0814 8428    upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:39:44.0830 8428    upnphost - ok
17:39:44.0861 8428    USBAAPL64      (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
17:39:44.0876 8428    USBAAPL64 - ok
17:39:44.0908 8428    usbccgp        (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:39:44.0923 8428    usbccgp - ok
17:39:44.0954 8428    usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:39:44.0954 8428    usbcir - ok
17:39:44.0986 8428    usbehci        (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:39:44.0986 8428    usbehci - ok
17:39:45.0032 8428    usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:39:45.0048 8428    usbhub - ok
17:39:45.0064 8428    usbohci        (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:39:45.0064 8428    usbohci - ok
17:39:45.0110 8428    usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:39:45.0110 8428    usbprint - ok
17:39:45.0157 8428    usbscan        (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:39:45.0157 8428    usbscan - ok
17:39:45.0173 8428    USBSTOR        (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:39:45.0173 8428    USBSTOR - ok
17:39:45.0204 8428    usbuhci        (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:39:45.0204 8428    usbuhci - ok
17:39:45.0235 8428    usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
17:39:45.0251 8428    usbvideo - ok
17:39:45.0282 8428    UxSms          (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:39:45.0282 8428    UxSms - ok
17:39:45.0329 8428    VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:45.0329 8428    VaultSvc - ok
17:39:45.0376 8428    vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:39:45.0376 8428    vdrvroot - ok
17:39:45.0422 8428    vds            (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:39:45.0438 8428    vds - ok
17:39:45.0469 8428    vga            (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:39:45.0469 8428    vga - ok
17:39:45.0500 8428    VgaSave        (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:39:45.0500 8428    VgaSave - ok
17:39:45.0547 8428    vhdmp          (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:39:45.0547 8428    vhdmp - ok
17:39:45.0578 8428    viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:39:45.0578 8428    viaide - ok
17:39:45.0610 8428    volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:39:45.0625 8428    volmgr - ok
17:39:45.0656 8428    volmgrx        (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:39:45.0656 8428    volmgrx - ok
17:39:45.0703 8428    volsnap        (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:39:45.0703 8428    volsnap - ok
17:39:45.0750 8428    vsmraid        (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
17:39:45.0750 8428    vsmraid - ok
17:39:45.0812 8428    VSS            (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:39:45.0875 8428    VSS - ok
17:39:45.0906 8428    vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:39:45.0906 8428    vwifibus - ok
17:39:45.0937 8428    vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:39:45.0953 8428    vwififlt - ok
17:39:45.0984 8428    W32Time        (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:39:46.0000 8428    W32Time - ok
17:39:46.0031 8428    WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
17:39:46.0031 8428    WacomPen - ok
17:39:46.0078 8428    WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:39:46.0078 8428    WANARP - ok
17:39:46.0093 8428    Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:39:46.0093 8428    Wanarpv6 - ok
17:39:46.0171 8428    WatAdminSvc    (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:39:46.0733 8428    WatAdminSvc - ok
17:39:46.0780 8428    wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:39:46.0826 8428    wbengine - ok
17:39:46.0842 8428    WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:39:46.0858 8428    WbioSrvc - ok
17:39:46.0873 8428    wcncsvc        (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:39:46.0889 8428    wcncsvc - ok
17:39:46.0904 8428    WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:39:46.0920 8428    WcsPlugInService - ok
17:39:46.0982 8428    Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
17:39:46.0982 8428    Wd - ok
17:39:47.0029 8428    Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:39:47.0060 8428    Wdf01000 - ok
17:39:47.0076 8428    WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:39:47.0076 8428    WdiServiceHost - ok
17:39:47.0092 8428    WdiSystemHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:39:47.0092 8428    WdiSystemHost - ok
17:39:47.0123 8428    WebClient      (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:39:47.0138 8428    WebClient - ok
17:39:47.0170 8428    Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:39:47.0170 8428    Wecsvc - ok
17:39:47.0185 8428    wercplsupport  (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:39:47.0201 8428    wercplsupport - ok
17:39:47.0232 8428    WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:39:47.0248 8428    WerSvc - ok
17:39:47.0279 8428    WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:39:47.0279 8428    WfpLwf - ok
17:39:47.0310 8428    WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:39:47.0310 8428    WIMMount - ok
17:39:47.0357 8428    WinDefend - ok
17:39:47.0372 8428    WinHttpAutoProxySvc - ok
17:39:47.0435 8428    Winmgmt        (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:39:47.0497 8428    Winmgmt - ok
17:39:47.0575 8428    WinRM          (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:39:47.0622 8428    WinRM - ok
17:39:47.0700 8428    WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:39:47.0700 8428    WinUsb - ok
17:39:47.0747 8428    Wlansvc        (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:39:47.0778 8428    Wlansvc - ok
17:39:47.0840 8428    wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:39:47.0856 8428    wlcrasvc - ok
17:39:48.0028 8428    wlidsvc        (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:39:48.0090 8428    wlidsvc - ok
17:39:48.0277 8428    WmiAcpi        (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:39:48.0293 8428    WmiAcpi - ok
17:39:48.0355 8428    wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:39:48.0433 8428    wmiApSrv - ok
17:39:48.0464 8428    WMPNetworkSvc - ok
17:39:48.0496 8428    WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:39:48.0511 8428    WPCSvc - ok
17:39:48.0527 8428    WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:39:48.0542 8428    WPDBusEnum - ok
17:39:48.0558 8428    ws2ifsl        (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:39:48.0558 8428    ws2ifsl - ok
17:39:48.0574 8428    wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
17:39:48.0589 8428    wscsvc - ok
17:39:48.0605 8428    WSearch - ok
17:39:48.0714 8428    wuauserv        (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:39:48.0792 8428    wuauserv - ok
17:39:48.0823 8428    WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:39:48.0823 8428    WudfPf - ok
17:39:48.0854 8428    wudfsvc        (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:39:48.0854 8428    wudfsvc - ok
17:39:48.0886 8428    WwanSvc        (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:39:48.0917 8428    WwanSvc - ok
17:39:48.0964 8428    MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:39:49.0042 8428    \Device\Harddisk0\DR0 - ok
17:39:49.0042 8428    MBR (0x1B8)    (739b36f7a373fc81121d831231b6d311) \Device\Harddisk1\DR2
17:39:49.0478 8428    \Device\Harddisk1\DR2 - ok
17:39:49.0478 8428    Boot (0
Avatar billede gate62 Nybegynder
14. april 2012 - 18:53 #23
Hej igen
nu har jeg prøvet at scanne med avast rootkit 4gange, men den når til et bestemt sted så holde programmet op med at virke og den afslutter kan det være fordi at jeg skal afinstalllere security essentials inden jeg kører en scanning
Avatar billede gate62 Nybegynder
14. april 2012 - 19:26 #24
Har prøvet at scanne i fejlsikret tilstand og med security essentisls afinstalleret, det giver samme resultat. den stopper når den når til
C:\windows\assembly\GAC_MSIL\microsoft.visualstudio.tools.applications.?
Avatar billede f-arn Guru
14. april 2012 - 19:55 #25
OK - men du fik ikke kopieret hele loggen fra TDSSkiller herind.

Vil du godt kopiere den herind igen. (Kun den nederste del)
Avatar billede gate62 Nybegynder
14. april 2012 - 19:58 #26
jeg prøver lige at sætte den ind igen

17:39:21.0130 6808    TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
17:39:21.0239 6808    ============================================================
17:39:21.0239 6808    Current date / time: 2012/04/14 17:39:21.0239
17:39:21.0239 6808    SystemInfo:
17:39:21.0239 6808   
17:39:21.0239 6808    OS Version: 6.1.7601 ServicePack: 1.0
17:39:21.0239 6808    Product type: Workstation
17:39:21.0239 6808    ComputerName: 017_CAMILLAS
17:39:21.0239 6808    UserName: Camilla
17:39:21.0239 6808    Windows directory: C:\Windows
17:39:21.0239 6808    System windows directory: C:\Windows
17:39:21.0239 6808    Running under WOW64
17:39:21.0239 6808    Processor architecture: Intel x64
17:39:21.0239 6808    Number of processors: 4
17:39:21.0239 6808    Page size: 0x1000
17:39:21.0239 6808    Boot type: Normal boot
17:39:21.0239 6808    ============================================================
17:39:22.0004 6808    Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:39:22.0004 6808    Drive \Device\Harddisk1\DR2 - Size: 0x3E7FFE00 (0.98 Gb), SectorSize: 0x200, Cylinders: 0x7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:39:22.0019 6808    \Device\Harddisk0\DR0:
17:39:22.0019 6808    MBR used
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x55296800
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x552FA800, BlocksNum 0x2218000
17:39:22.0019 6808    \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
17:39:22.0019 6808    \Device\Harddisk1\DR2:
17:39:22.0019 6808    MBR used
17:39:22.0019 6808    \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1F3FC0
17:39:22.0082 6808    Initialize success
17:39:22.0082 6808    ============================================================
17:39:24.0094 8428    ============================================================
17:39:24.0094 8428    Scan started
17:39:24.0094 8428    Mode: Manual;
17:39:24.0094 8428    ============================================================
17:39:24.0297 8428    1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:39:24.0313 8428    1394ohci - ok
17:39:24.0344 8428    ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:39:24.0359 8428    ACPI - ok
17:39:24.0391 8428    AcpiPmi        (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:39:24.0391 8428    AcpiPmi - ok
17:39:24.0500 8428    AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:39:24.0500 8428    AdobeARMservice - ok
17:39:24.0562 8428    adp94xx        (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
17:39:24.0578 8428    adp94xx - ok
17:39:24.0625 8428    adpahci        (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
17:39:24.0640 8428    adpahci - ok
17:39:24.0656 8428    adpu320        (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
17:39:24.0671 8428    adpu320 - ok
17:39:24.0703 8428    AeLookupSvc    (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:39:24.0703 8428    AeLookupSvc - ok
17:39:24.0749 8428    AFD            (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:39:24.0765 8428    AFD - ok
17:39:24.0781 8428    agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:39:24.0796 8428    agp440 - ok
17:39:24.0812 8428    ALG            (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:39:24.0812 8428    ALG - ok
17:39:24.0843 8428    aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:39:24.0843 8428    aliide - ok
17:39:24.0890 8428    AMD External Events Utility (2902a4fe2571ccb491e3ca51b75f8d2d) C:\Windows\system32\atiesrxx.exe
17:39:24.0890 8428    AMD External Events Utility - ok
17:39:24.0905 8428    amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:39:24.0905 8428    amdide - ok
17:39:24.0937 8428    AmdK8          (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
17:39:24.0952 8428    AmdK8 - ok
17:39:25.0202 8428    amdkmdag        (49a9a2fb39e682c4c7b2c27033b714d0) C:\Windows\system32\DRIVERS\atikmdag.sys
17:39:25.0420 8428    amdkmdag - ok
17:39:25.0467 8428    amdkmdap        (692c5a435f65cfd629f5338021f1364d) C:\Windows\system32\DRIVERS\atikmpag.sys
17:39:25.0467 8428    amdkmdap - ok
17:39:25.0483 8428    AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
17:39:25.0498 8428    AmdPPM - ok
17:39:25.0529 8428    amdsata        (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:39:25.0545 8428    amdsata - ok
17:39:25.0576 8428    amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
17:39:25.0576 8428    amdsbs - ok
17:39:25.0607 8428    amdxata        (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:39:25.0607 8428    amdxata - ok
17:39:25.0639 8428    AppID          (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:39:25.0654 8428    AppID - ok
17:39:25.0685 8428    AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:39:25.0685 8428    AppIDSvc - ok
17:39:25.0701 8428    Appinfo        (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:39:25.0701 8428    Appinfo - ok
17:39:25.0826 8428    Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:39:25.0826 8428    Apple Mobile Device - ok
17:39:25.0873 8428    arc            (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
17:39:25.0873 8428    arc - ok
17:39:25.0904 8428    arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
17:39:25.0904 8428    arcsas - ok
17:39:25.0951 8428    AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:39:25.0951 8428    AsyncMac - ok
17:39:25.0997 8428    atapi          (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:39:25.0997 8428    atapi - ok
17:39:26.0075 8428    AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:39:26.0091 8428    AudioEndpointBuilder - ok
17:39:26.0107 8428    AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:39:26.0122 8428    AudioSrv - ok
17:39:26.0185 8428    AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:39:26.0185 8428    AxInstSV - ok
17:39:26.0247 8428    b06bdrv        (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
17:39:26.0247 8428    b06bdrv - ok
17:39:26.0309 8428    b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:39:26.0325 8428    b57nd60a - ok
17:39:26.0403 8428    BCM43XX        (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
17:39:26.0434 8428    BCM43XX - ok
17:39:26.0465 8428    BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:39:26.0465 8428    BDESVC - ok
17:39:26.0497 8428    Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:39:26.0497 8428    Beep - ok
17:39:26.0543 8428    BFE            (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:39:26.0559 8428    BFE - ok
17:39:26.0621 8428    BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
17:39:26.0699 8428    BITS - ok
17:39:26.0731 8428    blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\drivers\blbdrive.sys
17:39:26.0746 8428    blbdrive - ok
17:39:26.0793 8428    bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:39:26.0793 8428    bowser - ok
17:39:26.0840 8428    BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
17:39:26.0840 8428    BrFiltLo - ok
17:39:26.0855 8428    BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
17:39:26.0855 8428    BrFiltUp - ok
17:39:26.0918 8428    BridgeMP        (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
17:39:26.0918 8428    BridgeMP - ok
17:39:26.0965 8428    Browser        (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:39:26.0980 8428    Browser - ok
17:39:26.0996 8428    Brserid        (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:39:27.0011 8428    Brserid - ok
17:39:27.0043 8428    BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:39:27.0043 8428    BrSerWdm - ok
17:39:27.0074 8428    BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:39:27.0074 8428    BrUsbMdm - ok
17:39:27.0105 8428    BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:39:27.0105 8428    BrUsbSer - ok
17:39:27.0136 8428    BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
17:39:27.0136 8428    BTHMODEM - ok
17:39:27.0167 8428    bthserv        (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:39:27.0167 8428    bthserv - ok
17:39:27.0199 8428    catchme - ok
17:39:27.0230 8428    cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:39:27.0230 8428    cdfs - ok
17:39:27.0277 8428    cdrom          (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:39:27.0277 8428    cdrom - ok
17:39:27.0323 8428    CertPropSvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:39:27.0323 8428    CertPropSvc - ok
17:39:27.0355 8428    circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
17:39:27.0370 8428    circlass - ok
17:39:27.0386 8428    CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:39:27.0401 8428    CLFS - ok
17:39:27.0496 8428    clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:39:27.0558 8428    clr_optimization_v2.0.50727_32 - ok
17:39:27.0605 8428    clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:39:27.0605 8428    clr_optimization_v2.0.50727_64 - ok
17:39:27.0668 8428    clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:39:27.0668 8428    clr_optimization_v4.0.30319_32 - ok
17:39:27.0699 8428    clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:39:27.0699 8428    clr_optimization_v4.0.30319_64 - ok
17:39:27.0746 8428    clwvd          (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
17:39:27.0746 8428    clwvd - ok
17:39:27.0792 8428    CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
17:39:27.0792 8428    CmBatt - ok
17:39:27.0824 8428    cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:39:27.0839 8428    cmdide - ok
17:39:27.0886 8428    CNG            (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:39:27.0886 8428    CNG - ok
17:39:27.0933 8428    Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
17:39:27.0933 8428    Compbatt - ok
17:39:27.0948 8428    CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
17:39:27.0964 8428    CompositeBus - ok
17:39:27.0980 8428    COMSysApp - ok
17:39:28.0011 8428    crcdisk        (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
17:39:28.0011 8428    crcdisk - ok
17:39:28.0058 8428    CryptSvc        (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:39:28.0073 8428    CryptSvc - ok
17:39:28.0120 8428    DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:39:28.0136 8428    DcomLaunch - ok
17:39:28.0151 8428    defragsvc      (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:39:28.0167 8428    defragsvc - ok
17:39:28.0198 8428    DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:39:28.0198 8428    DfsC - ok
17:39:28.0229 8428    Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:39:28.0245 8428    Dhcp - ok
17:39:28.0260 8428    discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:39:28.0260 8428    discache - ok
17:39:28.0307 8428    Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
17:39:28.0323 8428    Disk - ok
17:39:28.0354 8428    Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:39:28.0370 8428    Dnscache - ok
17:39:28.0401 8428    dot3svc        (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:39:28.0401 8428    dot3svc - ok
17:39:28.0432 8428    DPS            (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:39:28.0432 8428    DPS - ok
17:39:28.0479 8428    drmkaud        (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:39:28.0479 8428    drmkaud - ok
17:39:28.0511 8428    DXGKrnl        (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:39:28.0558 8428    DXGKrnl - ok
17:39:28.0589 8428    EapHost        (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:39:28.0605 8428    EapHost - ok
17:39:28.0714 8428    ebdrv          (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
17:39:28.0807 8428    ebdrv - ok
17:39:28.0854 8428    EFS            (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:39:28.0854 8428    EFS - ok
17:39:28.0932 8428    ehRecvr        (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
17:39:29.0026 8428    ehRecvr - ok
17:39:29.0057 8428    ehSched        (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
17:39:29.0119 8428    ehSched - ok
17:39:29.0182 8428    elxstor        (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
17:39:29.0197 8428    elxstor - ok
17:39:29.0229 8428    ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:39:29.0229 8428    ErrDev - ok
17:39:29.0291 8428    EventSystem    (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:39:29.0307 8428    EventSystem - ok
17:39:29.0338 8428    exfat          (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:39:29.0338 8428    exfat - ok
17:39:29.0369 8428    ezSharedSvc - ok
17:39:29.0400 8428    fastfat        (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:39:29.0416 8428    fastfat - ok
17:39:29.0447 8428    Fax            (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
17:39:29.0478 8428    Fax - ok
17:39:29.0494 8428    fdc            (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
17:39:29.0494 8428    fdc - ok
17:39:29.0525 8428    fdPHost        (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:39:29.0525 8428    fdPHost - ok
17:39:29.0556 8428    FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:39:29.0556 8428    FDResPub - ok
17:39:29.0587 8428    FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:39:29.0587 8428    FileInfo - ok
17:39:29.0619 8428    Filetrace      (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:39:29.0619 8428    Filetrace - ok
17:39:29.0650 8428    flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
17:39:29.0650 8428    flpydisk - ok
17:39:29.0681 8428    FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:39:29.0681 8428    FltMgr - ok
17:39:29.0743 8428    FontCache      (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:39:29.0775 8428    FontCache - ok
17:39:29.0837 8428    FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:39:29.0853 8428    FontCache3.0.0.0 - ok
17:39:29.0868 8428    FsDepends      (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:39:29.0884 8428    FsDepends - ok
17:39:29.0946 8428    fssfltr        (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
17:39:29.0946 8428    fssfltr - ok
17:39:30.0040 8428    fsssvc          (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:39:30.0102 8428    fsssvc - ok
17:39:30.0149 8428    Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:39:30.0149 8428    Fs_Rec - ok
17:39:30.0211 8428    fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:39:30.0211 8428    fvevol - ok
17:39:30.0258 8428    gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
17:39:30.0258 8428    gagp30kx - ok
17:39:30.0336 8428    GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
17:39:30.0336 8428    GamesAppService - ok
17:39:30.0383 8428    GEARAspiWDM    (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:39:30.0383 8428    GEARAspiWDM - ok
17:39:30.0430 8428    gpsvc          (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:39:30.0477 8428    gpsvc - ok
17:39:30.0523 8428    gupdate        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:39:30.0523 8428    gupdate - ok
17:39:30.0555 8428    gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:39:30.0555 8428    gupdatem - ok
17:39:30.0586 8428    gusvc          (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:39:30.0601 8428    gusvc - ok
17:39:30.0633 8428    hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:39:30.0633 8428    hcw85cir - ok
17:39:30.0679 8428    HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:39:30.0695 8428    HdAudAddService - ok
17:39:30.0742 8428    HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
17:39:30.0742 8428    HDAudBus - ok
17:39:30.0773 8428    HidBatt        (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
17:39:30.0789 8428    HidBatt - ok
17:39:30.0804 8428    HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
17:39:30.0804 8428    HidBth - ok
17:39:30.0867 8428    HidIr          (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
17:39:30.0867 8428    HidIr - ok
17:39:30.0898 8428    hidserv        (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
17:39:30.0898 8428    hidserv - ok
17:39:30.0929 8428    HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:39:30.0929 8428    HidUsb - ok
17:39:30.0960 8428    hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:39:30.0960 8428    hkmsvc - ok
17:39:30.0991 8428    HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:39:30.0991 8428    HomeGroupListener - ok
17:39:31.0038 8428    HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:39:31.0038 8428    HomeGroupProvider - ok
17:39:31.0179 8428    HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:39:31.0179 8428    HP Support Assistant Service - ok
17:39:31.0257 8428    HPClientSvc    (3dc11a802353401332d49c3cbfbbe5fc) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:39:31.0257 8428    HPClientSvc - ok
17:39:31.0397 8428    hpCMSrv        (e07f8e78d08d9269e3365c2a4f637191) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
17:39:31.0428 8428    hpCMSrv - ok
17:39:31.0491 8428    HPDrvMntSvc.exe (b19ff523b533a3f198b9239e1749c940) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
17:39:31.0491 8428    HPDrvMntSvc.exe - ok
17:39:31.0553 8428    hpqwmiex        (01091b900e15878b4434f9c726c4541d) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:39:31.0584 8428    hpqwmiex - ok
17:39:31.0756 8428    HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:39:31.0756 8428    HpSAMD - ok
17:39:31.0803 8428    HPWMISVC        (77c15d7e8f002a173eebff0b20cd697d) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
17:39:31.0818 8428    HPWMISVC - ok
17:39:31.0865 8428    HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:39:31.0896 8428    HTTP - ok
17:39:31.0927 8428    hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:39:31.0927 8428    hwpolicy - ok
17:39:31.0974 8428    i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:39:31.0990 8428    i8042prt - ok
17:39:32.0037 8428    iaStor          (d469b77687e12fe43e344806740b624d) C:\Windows\system32\DRIVERS\iaStor.sys
17:39:32.0052 8428    iaStor - ok
17:39:32.0099 8428    IAStorDataMgrSvc (983fc69644ddf0486c8dfea262948d1a) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
17:39:32.0099 8428    IAStorDataMgrSvc - ok
17:39:32.0146 8428    iaStorV        (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:39:32.0146 8428    iaStorV - ok
17:39:32.0286 8428    IconMan_R      (d22d82d74fd1b6c77e7556dbdc3ea9d2) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
17:39:32.0567 8428    IconMan_R - ok
17:39:32.0645 8428    idsvc          (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:39:32.0676 8428    idsvc - ok
17:39:32.0739 8428    iirsp          (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
17:39:32.0739 8428    iirsp - ok
17:39:32.0785 8428    IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:39:32.0832 8428    IKEEXT - ok
17:39:32.0895 8428    IntcDAud        (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
17:39:32.0895 8428    IntcDAud - ok
17:39:32.0941 8428    intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:39:32.0941 8428    intelide - ok
17:39:33.0285 8428    intelkmd        (78527e6a4d78b1153925914c55872beb) C:\Windows\system32\DRIVERS\igdpmd64.sys
17:39:33.0597 8428    intelkmd - ok
17:39:33.0643 8428    intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:39:33.0643 8428    intelppm - ok
17:39:33.0675 8428    IPBusEnum      (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:39:33.0675 8428    IPBusEnum - ok
17:39:33.0706 8428    IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:39:33.0706 8428    IpFilterDriver - ok
17:39:33.0753 8428    iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:39:33.0768 8428    iphlpsvc - ok
17:39:33.0799 8428    IPMIDRV        (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:39:33.0799 8428    IPMIDRV - ok
17:39:33.0831 8428    IPNAT          (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:39:33.0831 8428    IPNAT - ok
17:39:33.0909 8428    iPod Service    (46d249f9db7844cc01050a9345f0f61b) C:\Program Files\iPod\bin\iPodService.exe
17:39:33.0955 8428    iPod Service - ok
17:39:33.0987 8428    IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:39:33.0987 8428    IRENUM - ok
17:39:34.0033 8428    isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:39:34.0033 8428    isapnp - ok
17:39:34.0065 8428    iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:39:34.0065 8428    iScsiPrt - ok
17:39:34.0111 8428    kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
17:39:34.0111 8428    kbdclass - ok
17:39:34.0143 8428    kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
17:39:34.0158 8428    kbdhid - ok
17:39:34.0189 8428    KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:34.0205 8428    KeyIso - ok
17:39:34.0221 8428    KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:39:34.0221 8428    KSecDD - ok
17:39:34.0252 8428    KSecPkg        (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:39:34.0252 8428    KSecPkg - ok
17:39:34.0267 8428    ksthunk        (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:39:34.0267 8428    ksthunk - ok
17:39:34.0314 8428    KtmRm          (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:39:34.0330 8428    KtmRm - ok
17:39:34.0392 8428    LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
17:39:34.0392 8428    LanmanServer - ok
17:39:34.0423 8428    LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:39:34.0423 8428    LanmanWorkstation - ok
17:39:34.0470 8428    lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:39:34.0470 8428    lltdio - ok
17:39:34.0533 8428    lltdsvc        (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:39:34.0533 8428    lltdsvc - ok
17:39:34.0579 8428    lmhosts        (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:39:34.0579 8428    lmhosts - ok
17:39:34.0689 8428    LMS            (d75c4b4a8fe6d7fd74a7eecdbaec729f) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:39:34.0689 8428    LMS - ok
17:39:34.0735 8428    LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
17:39:34.0735 8428    LSI_FC - ok
17:39:34.0782 8428    LSI_SAS        (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
17:39:34.0782 8428    LSI_SAS - ok
17:39:34.0813 8428    LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
17:39:34.0829 8428    LSI_SAS2 - ok
17:39:34.0845 8428    LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
17:39:34.0860 8428    LSI_SCSI - ok
17:39:34.0876 8428    luafv          (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:39:34.0876 8428    luafv - ok
17:39:34.0923 8428    Mcx2Svc        (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
17:39:34.0923 8428    Mcx2Svc - ok
17:39:34.0969 8428    megasas        (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
17:39:34.0969 8428    megasas - ok
17:39:35.0001 8428    MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
17:39:35.0016 8428    MegaSR - ok
17:39:35.0047 8428    MEIx64          (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
17:39:35.0047 8428    MEIx64 - ok
17:39:35.0094 8428    MMCSS          (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:39:35.0094 8428    MMCSS - ok
17:39:35.0125 8428    Modem          (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:39:35.0125 8428    Modem - ok
17:39:35.0172 8428    monitor        (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:39:35.0172 8428    monitor - ok
17:39:35.0219 8428    mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:39:35.0219 8428    mouclass - ok
17:39:35.0250 8428    mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:39:35.0250 8428    mouhid - ok
17:39:35.0281 8428    mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:39:35.0281 8428    mountmgr - ok
17:39:35.0359 8428    MpFilter        (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
17:39:35.0359 8428    MpFilter - ok
17:39:35.0391 8428    mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:39:35.0406 8428    mpio - ok
17:39:35.0437 8428    MpNWMon        (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
17:39:35.0437 8428    MpNWMon - ok
17:39:35.0469 8428    mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:39:35.0469 8428    mpsdrv - ok
17:39:35.0515 8428    MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:39:35.0562 8428    MpsSvc - ok
17:39:35.0578 8428    MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:39:35.0593 8428    MRxDAV - ok
17:39:35.0625 8428    mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:39:35.0640 8428    mrxsmb - ok
17:39:35.0687 8428    mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:39:35.0687 8428    mrxsmb10 - ok
17:39:35.0703 8428    mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:39:35.0718 8428    mrxsmb20 - ok
17:39:35.0734 8428    msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:39:35.0734 8428    msahci - ok
17:39:35.0781 8428    msdsm          (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:39:35.0781 8428    msdsm - ok
17:39:35.0827 8428    MSDTC          (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:39:35.0827 8428    MSDTC - ok
17:39:35.0874 8428    Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:39:35.0874 8428    Msfs - ok
17:39:35.0890 8428    mshidkmdf      (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:39:35.0905 8428    mshidkmdf - ok
17:39:35.0937 8428    msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:39:35.0937 8428    msisadrv - ok
17:39:35.0999 8428    MSiSCSI        (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:39:35.0999 8428    MSiSCSI - ok
17:39:36.0015 8428    msiserver - ok
17:39:36.0046 8428    MSKSSRV        (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:39:36.0046 8428    MSKSSRV - ok
17:39:36.0155 8428    MsMpSvc        (157e9e498206a3366baa7e4697bdd947) c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
17:39:36.0155 8428    MsMpSvc - ok
17:39:36.0186 8428    MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:39:36.0186 8428    MSPCLOCK - ok
17:39:36.0217 8428    MSPQM          (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:39:36.0217 8428    MSPQM - ok
17:39:36.0249 8428    MsRPC          (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:39:36.0249 8428    MsRPC - ok
17:39:36.0280 8428    mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
17:39:36.0280 8428    mssmbios - ok
17:39:36.0295 8428    MSTEE          (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:39:36.0311 8428    MSTEE - ok
17:39:36.0327 8428    MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
17:39:36.0342 8428    MTConfig - ok
17:39:36.0373 8428    Mup            (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:39:36.0373 8428    Mup - ok
17:39:36.0405 8428    napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:39:36.0420 8428    napagent - ok
17:39:36.0467 8428    NativeWifiP    (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:39:36.0483 8428    NativeWifiP - ok
17:39:36.0545 8428    NDIS            (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
17:39:36.0592 8428    NDIS - ok
17:39:36.0607 8428    NdisCap        (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:39:36.0607 8428    NdisCap - ok
17:39:36.0639 8428    NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:39:36.0639 8428    NdisTapi - ok
17:39:36.0670 8428    Ndisuio        (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:39:36.0670 8428    Ndisuio - ok
17:39:36.0701 8428    NdisWan        (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:39:36.0701 8428    NdisWan - ok
17:39:36.0732 8428    NDProxy        (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:39:36.0732 8428    NDProxy - ok
17:39:36.0779 8428    Netaapl        (6f4607e2333fe21e9e3ff8133a88b35b) C:\Windows\system32\DRIVERS\netaapl64.sys
17:39:36.0779 8428    Netaapl - ok
17:39:36.0810 8428    NetBIOS        (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:39:36.0810 8428    NetBIOS - ok
17:39:36.0841 8428    NetBT          (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:39:36.0841 8428    NetBT - ok
17:39:36.0888 8428    Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:36.0888 8428    Netlogon - ok
17:39:36.0919 8428    Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:39:36.0935 8428    Netman - ok
17:39:36.0966 8428    netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:39:36.0966 8428    netprofm - ok
17:39:37.0075 8428    netr28x        (24cf1304d899124336f67f88f3c15e21) C:\Windows\system32\DRIVERS\netr28x.sys
17:39:37.0107 8428    netr28x - ok
17:39:37.0200 8428    NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:39:37.0247 8428    NetTcpPortSharing - ok
17:39:37.0278 8428    nfrd960        (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
17:39:37.0278 8428    nfrd960 - ok
17:39:37.0356 8428    NisDrv          (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:39:37.0356 8428    NisDrv - ok
17:39:37.0434 8428    NisSrv          (566ddd5d82520da01d75f81428ac4c38) c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
17:39:37.0450 8428    NisSrv - ok
17:39:37.0497 8428    NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:39:37.0497 8428    NlaSvc - ok
17:39:37.0528 8428    Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:39:37.0528 8428    Npfs - ok
17:39:37.0559 8428    nsi            (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:39:37.0559 8428    nsi - ok
17:39:37.0590 8428    nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:39:37.0590 8428    nsiproxy - ok
17:39:37.0668 8428    Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:39:37.0715 8428    Ntfs - ok
17:39:37.0731 8428    Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:39:37.0746 8428    Null - ok
17:39:37.0777 8428    NVENETFD        (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
17:39:37.0793 8428    NVENETFD - ok
17:39:37.0840 8428    nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:39:37.0855 8428    nvraid - ok
17:39:37.0887 8428    nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:39:37.0887 8428    nvstor - ok
17:39:37.0933 8428    nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:39:37.0933 8428    nv_agp - ok
17:39:37.0980 8428    ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:39:37.0980 8428    ohci1394 - ok
17:39:38.0089 8428    ose            (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:39:38.0089 8428    ose - ok
17:39:38.0323 8428    osppsvc        (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:39:38.0464 8428    osppsvc - ok
17:39:38.0511 8428    p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:39:38.0526 8428    p2pimsvc - ok
17:39:38.0557 8428    p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:39:38.0573 8428    p2psvc - ok
17:39:38.0636 8428    Parport        (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
17:39:38.0636 8428    Parport - ok
17:39:38.0683 8428    partmgr        (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
17:39:38.0699 8428    partmgr - ok
17:39:38.0714 8428    PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:39:38.0730 8428    PcaSvc - ok
17:39:38.0761 8428    pci            (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:39:38.0777 8428    pci - ok
17:39:38.0792 8428    pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:39:38.0792 8428    pciide - ok
17:39:38.0824 8428    pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
17:39:38.0839 8428    pcmcia - ok
17:39:38.0855 8428    pcw            (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:39:38.0855 8428    pcw - ok
17:39:38.0902 8428    PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:39:38.0917 8428    PEAUTH - ok
17:39:38.0964 8428    PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:39:38.0964 8428    PerfHost - ok
17:39:39.0042 8428    pla            (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:39:39.0089 8428    pla - ok
17:39:39.0151 8428    PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:39:39.0167 8428    PlugPlay - ok
17:39:39.0182 8428    PNRPAutoReg    (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:39:39.0198 8428    PNRPAutoReg - ok
17:39:39.0214 8428    PNRPsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:39:39.0229 8428    PNRPsvc - ok
17:39:39.0260 8428    PolicyAgent    (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:39:39.0276 8428    PolicyAgent - ok
17:39:39.0307 8428    Power          (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:39:39.0323 8428    Power - ok
17:39:39.0401 8428    PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:39:39.0401 8428    PptpMiniport - ok
17:39:39.0448 8428    Processor      (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
17:39:39.0448 8428    Processor - ok
17:39:39.0494 8428    ProfSvc        (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:39:39.0494 8428    ProfSvc - ok
17:39:39.0526 8428    ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:39.0526 8428    ProtectedStorage - ok
17:39:39.0557 8428    Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:39:39.0557 8428    Psched - ok
17:39:39.0635 8428    ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
17:39:39.0682 8428    ql2300 - ok
17:39:39.0713 8428    ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
17:39:39.0713 8428    ql40xx - ok
17:39:39.0744 8428    QWAVE          (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:39:39.0760 8428    QWAVE - ok
17:39:39.0775 8428    QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:39:39.0775 8428    QWAVEdrv - ok
17:39:39.0806 8428    RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:39:39.0806 8428    RasAcd - ok
17:39:39.0822 8428    RasAgileVpn    (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:39:39.0838 8428    RasAgileVpn - ok
17:39:39.0853 8428    RasAuto        (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:39:39.0869 8428    RasAuto - ok
17:39:39.0884 8428    Rasl2tp        (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:39:39.0900 8428    Rasl2tp - ok
17:39:39.0916 8428    RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:39:39.0931 8428    RasMan - ok
17:39:39.0947 8428    RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:39:39.0962 8428    RasPppoe - ok
17:39:40.0009 8428    RasSstp        (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:39:40.0009 8428    RasSstp - ok
17:39:40.0056 8428    rdbss          (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:39:40.0072 8428    rdbss - ok
17:39:40.0087 8428    rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
17:39:40.0087 8428    rdpbus - ok
17:39:40.0134 8428    RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:39:40.0134 8428    RDPCDD - ok
17:39:40.0165 8428    RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:39:40.0165 8428    RDPENCDD - ok
17:39:40.0196 8428    RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:39:40.0196 8428    RDPREFMP - ok
17:39:40.0243 8428    RDPWD          (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:39:40.0243 8428    RDPWD - ok
17:39:40.0274 8428    rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:39:40.0274 8428    rdyboost - ok
17:39:40.0321 8428    RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:39:40.0321 8428    RemoteAccess - ok
17:39:40.0352 8428    RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:39:40.0368 8428    RemoteRegistry - ok
17:39:40.0384 8428    RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:39:40.0384 8428    RpcEptMapper - ok
17:39:40.0430 8428    RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:39:40.0430 8428    RpcLocator - ok
17:39:40.0477 8428    RpcSs          (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:39:40.0477 8428    RpcSs - ok
17:39:40.0555 8428    RSPCIESTOR      (546d7f426776090b90ef5f195b6ae662) C:\Windows\system32\DRIVERS\RtsPStor.sys
17:39:40.0555 8428    RSPCIESTOR - ok
17:39:40.0602 8428    rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:39:40.0602 8428    rspndr - ok
17:39:40.0649 8428    RTL8167        (ea5532868ba76923d75bcb2a1448d810) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:39:40.0664 8428    RTL8167 - ok
17:39:40.0711 8428    SamSs          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:40.0711 8428    SamSs - ok
17:39:40.0758 8428    sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:39:40.0758 8428    sbp2port - ok
17:39:40.0789 8428    SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:39:40.0789 8428    SCardSvr - ok
17:39:40.0820 8428    scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:39:40.0836 8428    scfilter - ok
17:39:40.0883 8428    Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:39:40.0914 8428    Schedule - ok
17:39:40.0961 8428    SCPolicySvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:39:40.0961 8428    SCPolicySvc - ok
17:39:40.0992 8428    sdbus          (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\DRIVERS\sdbus.sys
17:39:40.0992 8428    sdbus - ok
17:39:41.0023 8428    SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:39:41.0039 8428    SDRSVC - ok
17:39:41.0070 8428    secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:39:41.0070 8428    secdrv - ok
17:39:41.0101 8428    seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:39:41.0101 8428    seclogon - ok
17:39:41.0117 8428    SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
17:39:41.0132 8428    SENS - ok
17:39:41.0164 8428    SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:39:41.0164 8428    SensrSvc - ok
17:39:41.0195 8428    Serenum        (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
17:39:41.0195 8428    Serenum - ok
17:39:41.0257 8428    Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
17:39:41.0257 8428    Serial - ok
17:39:41.0288 8428    sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
17:39:41.0288 8428    sermouse - ok
17:39:41.0335 8428    SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:39:41.0335 8428    SessionEnv - ok
17:39:41.0382 8428    sffdisk        (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:39:41.0382 8428    sffdisk - ok
17:39:41.0413 8428    sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:39:41.0429 8428    sffp_mmc - ok
17:39:41.0444 8428    sffp_sd        (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:39:41.0444 8428    sffp_sd - ok
17:39:41.0476 8428    sfloppy        (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
17:39:41.0476 8428    sfloppy - ok
17:39:41.0507 8428    SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:39:41.0522 8428    SharedAccess - ok
17:39:41.0554 8428    ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:39:41.0569 8428    ShellHWDetection - ok
17:39:41.0585 8428    SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
17:39:41.0600 8428    SiSRaid2 - ok
17:39:41.0632 8428    SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
17:39:41.0632 8428    SiSRaid4 - ok
17:39:41.0710 8428    SkypeUpdate    (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files (x86)\Skype\Updater\Updater.exe
17:39:41.0710 8428    SkypeUpdate - ok
17:39:41.0772 8428    Smb            (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:39:41.0772 8428    Smb - ok
17:39:41.0834 8428    SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:39:41.0834 8428    SNMPTRAP - ok
17:39:41.0866 8428    spldr          (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:39:41.0866 8428    spldr - ok
17:39:41.0897 8428    Spooler        (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:39:41.0928 8428    Spooler - ok
17:39:42.0037 8428    sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:39:42.0162 8428    sppsvc - ok
17:39:42.0193 8428    sppuinotify    (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:39:42.0193 8428    sppuinotify - ok
17:39:42.0240 8428    srv            (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:39:42.0256 8428    srv - ok
17:39:42.0287 8428    srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:39:42.0302 8428    srv2 - ok
17:39:42.0349 8428    SrvHsfHDA      (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:39:42.0349 8428    SrvHsfHDA - ok
17:39:42.0412 8428    SrvHsfV92      (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:39:42.0458 8428    SrvHsfV92 - ok
17:39:42.0505 8428    SrvHsfWinac    (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:39:42.0521 8428    SrvHsfWinac - ok
17:39:42.0552 8428    srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:39:42.0552 8428    srvnet - ok
17:39:42.0583 8428    SSDPSRV        (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:39:42.0583 8428    SSDPSRV - ok
17:39:42.0614 8428    SstpSvc        (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:39:42.0614 8428    SstpSvc - ok
17:39:42.0739 8428    STacSV          (b2d8b364a831427a5741f6c408fa8ae3) C:\Program Files\IDT\WDM\STacSV64.exe
17:39:42.0848 8428    STacSV - ok
17:39:42.0864 8428    stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
17:39:42.0864 8428    stexstor - ok
17:39:42.0926 8428    STHDA          (ef5acde92ba3f691bbfef781cb063501) C:\Windows\system32\DRIVERS\stwrt64.sys
17:39:42.0942 8428    STHDA - ok
17:39:43.0020 8428    stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:39:43.0036 8428    stisvc - ok
17:39:43.0067 8428    swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
17:39:43.0067 8428    swenum - ok
17:39:43.0114 8428    swprv          (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:39:43.0129 8428    swprv - ok
17:39:43.0223 8428    SynTP          (33e6a285daa5134d8ea2247914c86c09) C:\Windows\system32\DRIVERS\SynTP.sys
17:39:43.0270 8428    SynTP - ok
17:39:43.0332 8428    SysMain        (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:39:43.0379 8428    SysMain - ok
17:39:43.0410 8428    TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:39:43.0410 8428    TabletInputService - ok
17:39:43.0441 8428    TapiSrv        (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:39:43.0457 8428    TapiSrv - ok
17:39:43.0488 8428    TBS            (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:39:43.0488 8428    TBS - ok
17:39:43.0582 8428    Tcpip          (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
17:39:43.0628 8428    Tcpip - ok
17:39:43.0706 8428    TCPIP6          (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
17:39:43.0738 8428    TCPIP6 - ok
17:39:43.0784 8428    tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:39:43.0784 8428    tcpipreg - ok
17:39:43.0816 8428    TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:39:43.0816 8428    TDPIPE - ok
17:39:43.0862 8428    TDTCP          (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:39:43.0862 8428    TDTCP - ok
17:39:43.0894 8428    tdx            (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:39:43.0909 8428    tdx - ok
17:39:43.0940 8428    TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
17:39:43.0940 8428    TermDD - ok
17:39:44.0003 8428    TermService    (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:39:44.0034 8428    TermService - ok
17:39:44.0065 8428    Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:39:44.0065 8428    Themes - ok
17:39:44.0112 8428    THREADORDER    (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:39:44.0112 8428    THREADORDER - ok
17:39:44.0128 8428    TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:39:44.0128 8428    TrkWks - ok
17:39:44.0174 8428    TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:39:44.0174 8428    TrustedInstaller - ok
17:39:44.0206 8428    tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:39:44.0206 8428    tssecsrv - ok
17:39:44.0252 8428    TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:39:44.0252 8428    TsUsbFlt - ok
17:39:44.0284 8428    TsUsbGD        (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
17:39:44.0299 8428    TsUsbGD - ok
17:39:44.0330 8428    tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:39:44.0346 8428    tunnel - ok
17:39:44.0362 8428    uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
17:39:44.0377 8428    uagp35 - ok
17:39:44.0393 8428    udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:39:44.0408 8428    udfs - ok
17:39:44.0440 8428    UI0Detect      (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:39:44.0440 8428    UI0Detect - ok
17:39:44.0471 8428    uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:39:44.0486 8428    uliagpkx - ok
17:39:44.0518 8428    umbus          (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
17:39:44.0518 8428    umbus - ok
17:39:44.0549 8428    UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
17:39:44.0549 8428    UmPass - ok
17:39:44.0705 8428    UNS            (758c2ce427c343f780a205e28555c98d) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:39:44.0783 8428    UNS - ok
17:39:44.0814 8428    upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:39:44.0830 8428    upnphost - ok
17:39:44.0861 8428    USBAAPL64      (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
17:39:44.0876 8428    USBAAPL64 - ok
17:39:44.0908 8428    usbccgp        (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:39:44.0923 8428    usbccgp - ok
17:39:44.0954 8428    usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:39:44.0954 8428    usbcir - ok
17:39:44.0986 8428    usbehci        (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:39:44.0986 8428    usbehci - ok
17:39:45.0032 8428    usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:39:45.0048 8428    usbhub - ok
17:39:45.0064 8428    usbohci        (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:39:45.0064 8428    usbohci - ok
17:39:45.0110 8428    usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:39:45.0110 8428    usbprint - ok
17:39:45.0157 8428    usbscan        (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
17:39:45.0157 8428    usbscan - ok
17:39:45.0173 8428    USBSTOR        (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:39:45.0173 8428    USBSTOR - ok
17:39:45.0204 8428    usbuhci        (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:39:45.0204 8428    usbuhci - ok
17:39:45.0235 8428    usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
17:39:45.0251 8428    usbvideo - ok
17:39:45.0282 8428    UxSms          (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:39:45.0282 8428    UxSms - ok
17:39:45.0329 8428    VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:39:45.0329 8428    VaultSvc - ok
17:39:45.0376 8428    vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:39:45.0376 8428    vdrvroot - ok
17:39:45.0422 8428    vds            (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:39:45.0438 8428    vds - ok
17:39:45.0469 8428    vga            (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:39:45.0469 8428    vga - ok
17:39:45.0500 8428    VgaSave        (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:39:45.0500 8428    VgaSave - ok
17:39:45.0547 8428    vhdmp          (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:39:45.0547 8428    vhdmp - ok
17:39:45.0578 8428    viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:39:45.0578 8428    viaide - ok
17:39:45.0610 8428    volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:39:45.0625 8428    volmgr - ok
17:39:45.0656 8428    volmgrx        (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:39:45.0656 8428    volmgrx - ok
17:39:45.0703 8428    volsnap        (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:39:45.0703 8428    volsnap - ok
17:39:45.0750 8428    vsmraid        (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
17:39:45.0750 8428    vsmraid - ok
17:39:45.0812 8428    VSS            (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:39:45.0875 8428    VSS - ok
17:39:45.0906 8428    vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
17:39:45.0906 8428    vwifibus - ok
17:39:45.0937 8428    vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
17:39:45.0953 8428    vwififlt - ok
17:39:45.0984 8428    W32Time        (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:39:46.0000 8428    W32Time - ok
17:39:46.0031 8428    WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
17:39:46.0031 8428    WacomPen - ok
17:39:46.0078 8428    WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:39:46.0078 8428    WANARP - ok
17:39:46.0093 8428    Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:39:46.0093 8428    Wanarpv6 - ok
17:39:46.0171 8428    WatAdminSvc    (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
17:39:46.0733 8428    WatAdminSvc - ok
17:39:46.0780 8428    wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:39:46.0826 8428    wbengine - ok
17:39:46.0842 8428    WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:39:46.0858 8428    WbioSrvc - ok
17:39:46.0873 8428    wcncsvc        (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:39:46.0889 8428    wcncsvc - ok
17:39:46.0904 8428    WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:39:46.0920 8428    WcsPlugInService - ok
17:39:46.0982 8428    Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
17:39:46.0982 8428    Wd - ok
17:39:47.0029 8428    Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:39:47.0060 8428    Wdf01000 - ok
17:39:47.0076 8428    WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:39:47.0076 8428    WdiServiceHost - ok
17:39:47.0092 8428    WdiSystemHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:39:47.0092 8428    WdiSystemHost - ok
17:39:47.0123 8428    WebClient      (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:39:47.0138 8428    WebClient - ok
17:39:47.0170 8428    Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:39:47.0170 8428    Wecsvc - ok
17:39:47.0185 8428    wercplsupport  (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:39:47.0201 8428    wercplsupport - ok
17:39:47.0232 8428    WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:39:47.0248 8428    WerSvc - ok
17:39:47.0279 8428    WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:39:47.0279 8428    WfpLwf - ok
17:39:47.0310 8428    WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:39:47.0310 8428    WIMMount - ok
17:39:47.0357 8428    WinDefend - ok
17:39:47.0372 8428    WinHttpAutoProxySvc - ok
17:39:47.0435 8428    Winmgmt        (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:39:47.0497 8428    Winmgmt - ok
17:39:47.0575 8428    WinRM          (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:39:47.0622 8428    WinRM - ok
17:39:47.0700 8428    WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
17:39:47.0700 8428    WinUsb - ok
17:39:47.0747 8428    Wlansvc        (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:39:47.0778 8428    Wlansvc - ok
17:39:47.0840 8428    wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:39:47.0856 8428    wlcrasvc - ok
17:39:48.0028 8428    wlidsvc        (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:39:48.0090 8428    wlidsvc - ok
17:39:48.0277 8428    WmiAcpi        (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
17:39:48.0293 8428    WmiAcpi - ok
17:39:48.0355 8428    wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:39:48.0433 8428    wmiApSrv - ok
17:39:48.0464 8428    WMPNetworkSvc - ok
17:39:48.0496 8428    WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:39:48.0511 8428    WPCSvc - ok
17:39:48.0527 8428    WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:39:48.0542 8428    WPDBusEnum - ok
17:39:48.0558 8428    ws2ifsl        (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:39:48.0558 8428    ws2ifsl - ok
17:39:48.0574 8428    wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
17:39:48.0589 8428    wscsvc - ok
17:39:48.0605 8428    WSearch - ok
17:39:48.0714 8428    wuauserv        (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:39:48.0792 8428    wuauserv - ok
17:39:48.0823 8428    WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:39:48.0823 8428    WudfPf - ok
17:39:48.0854 8428    wudfsvc        (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:39:48.0854 8428    wudfsvc - ok
17:39:48.0886 8428    WwanSvc        (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:39:48.0917 8428    WwanSvc - ok
17:39:48.0964 8428    MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:39:49.0042 8428    \Device\Harddisk0\DR0 - ok
17:39:49.0042 8428    MBR (0x1B8)    (739b36f7a373fc81121d831231b6d311) \Device\Harddisk1\DR2
17:39:49.0478 8428    \Device\Harddisk1\DR2 - ok
17:39:49.0478 8428    Boot (0x1200)  (9e563f57e84c3397b06a47972c4623bb) \Device\Harddisk0\DR0\Partition0
17:39:49.0478 8428    \Device\Harddisk0\DR0\Partition0 - ok
17:39:49.0494 8428    Boot (0x1200)  (6d7a87183192b2e875c5c8fc56434525) \Device\Harddisk0\DR0\Partition1
17:39:49.0494 8428    \Device\Harddisk0\DR0\Partition1 - ok
17:39:49.0541 8428    Boot (0x1200)  (538a7d90c0a98b229e1a9ce39080391b) \Device\Harddisk0\DR0\Partition2
17:39:49.0541 8428    \Device\Harddisk0\DR0\Partition2 - ok
17:39:49.0572 8428    Boot (0x1200)  (a6938a1f48a9838d4117df8cf89e9a95) \Device\Harddisk0\DR0\Partition3
17:39:49.0572 8428    \Device\Harddisk0\DR0\Partition3 - ok
17:39:49.0572 8428    Boot (0x1200)  (7ad68ff2fc73711dfd9fa2a4832999a2) \Device\Harddisk1\DR2\Partition0
17:39:49.0572 8428    \Device\Harddisk1\DR2\Partition0 - ok
17:39:49.0572 8428    ============================================================
17:39:49.0572 8428    Scan finished
17:39:49.0572 8428    ============================================================
17:39:49.0603 5652    Detected object count: 0
17:39:49.0603 5652    Actual detected object count: 0
Avatar billede f-arn Guru
14. april 2012 - 21:29 #27
Jeg vil gerne se den MBR.

Du skal bruge en CD, og en USB nøgle til dette.

Hent http://noahdfear.net/downloads/GETxPUD.exe og gem den på dit Skrivebord.
Kør GETxPUD.exe
Den vil lave en GETxPUD Mappe på dit Skrivebord. Åbn den, og start get&burn.bat.

Den vil hente xpud_0.9.2.iso, og bagefter starte BurnCDCC, så imaget kan brændes på en CD.

Hent dumpit, og gem det på USB nøglen.

Flyt CDen og USB nøglen til den "syge" PC

Start den "syge" PC op med CDen.

Et Welcome to xPUD logo vil fremkomme.

Klik File

udvid mnt

sda1 er sikkert din Harddisk

sdb1 er sikkert din USB Nøgle.

Klik på den mappe der repræsenterer din USB nøgle (sdb1 ?)

Dobbelt klik på dumpit

Når den er færdig, vil der ligge en fil (mbr.zip) på din USB nøgle.

Opload den et sted, og læg et link til den herind i tråden.
Avatar billede gate62 Nybegynder
14. april 2012 - 22:30 #28
hej igen  det går helt fint med at lave cd og nøgle ,jeg sætter dem i den syge pc, den starter op med welcome to xPUD logo , men der er ikke nogen steder jeg kan klikke på File,så går der 8 sek så går den i gang med at skrive en masse på en sort skærm
Avatar billede f-arn Guru
15. april 2012 - 06:12 #29
...så går der 8 sek så går den i gang med at skrive en masse på en sort skærm

Som rulletekst eller... ?
Avatar billede gate62 Nybegynder
15. april 2012 - 10:34 #30
hej f-arn
ja undskyld den manglende uddybelse af problemet, men ja det er en rulletekst , som jeg ikke forstår ret meget af.
her er et uddrag af det jeg lige kan se på skærmen.

before reportingproblems,check http://wiki.x.org to make sure that yoou have the latest version.
Markers: (--)probed, (**)from config file, (==) default settings,(WW)warning,(EE) error, (NI)not implemented, (??) unknown
(==)Log file:"/var/log/Xorg.0.log", time:Sun apr 15 10:15:56:2012
(==)using config file:"/etc/X11/Xorg.conf"
(EE)no devices detected.

Fatal error
no screen found

ddxSigGiveup: closing log
giving up
xinit: no such file or directory(errno2): unableto connect to x server
xinit: no such process (errno 3): server error
xault (argv):1: bad display name"(none):0" in remove" command
sh: no jobcontrol in this shell



det er hvad jeg lige kan se på skærmen , det siger ikke mig det helt store. cd'n virker fint på min pc så den fejler ikke noget den booter fint på den.
Avatar billede f-arn Guru
15. april 2012 - 12:48 #31
Det er grafikkortet, der ikke vil med xPUD, det sker nogen gange.

Lad os gøre dette i stedet.

------

Til 64 bit Windows, hent Farbar Recovery Scan Tool x64 og gem den på en USB nøgle.

Sæt USB nøglen i den inficerede PC.

Start PCen op med "Advanced Boot Options" (Tryk F8 flere gange under opstart)
Vælg "Repair Your Computer"
Vælg sprog.
Vælg Bruger konto.

Så skal du vælge Kommando Prompt.

Der skriver du notepad, og trykker <Enter>

Vælg Fil menu -> Åbn og vælg "Computer". Find drevbogstavet til din USB nøgle. Luk Notesblok.

Ved Kommando prompten skriver du e:\frst64
Erstat e med det rigtige bogstav.

Når Farbar Recovery Scan Tool er startet, klikker du på Scan.

Den laver FRST.txt på USB nøglen. Kopier den herind i dit næste indlæg.
Avatar billede gate62 Nybegynder
15. april 2012 - 16:59 #32
hej så er der en frst.txt fil

Scan result of Farbar Recovery Scan Tool Version: 15-03-2012
Ran by SYSTEM at 15-04-2012 16:56:14
Running from H:\
Windows 7 Home Premium  (X64) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe [167960 2011-01-07] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe [391704 2011-01-07] (Intel Corporation)
HKLM\...\Run: [Persistence] C:\Windows\system32\igfxpers.exe [418328 2011-01-07] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-13] (Synaptics Incorporated)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [1436736 2011-06-15] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [336384 2011-04-07] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [35736 2012-04-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [318520 2011-01-27] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2011-12-07] (Apple Inc.)
HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [577408 2012-02-15] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-09-13] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" [939872 2012-04-10] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)
HKU\Camilla\...\Run: [Facebook Update] "C:\Users\Camilla\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [137536 2011-10-30] (Facebook Inc.)
HKU\Camilla\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [17148552 2012-02-28] (Skype Technologies S.A.)
Winlogon\Notify\igfxcui: igfxdev.dll (Intel Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.2

==================== Services (Whitelisted) ======

2 ezSharedSvc; C:\Windows\SysWow64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS)
3 GamesAppService; "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe" [206072 2010-10-12] (WildTangent, Inc.)
2 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [86072 2011-09-09] (Hewlett-Packard Company)
2 HPClientSvc; "C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe" [291896 2010-08-05] (Hewlett-Packard Company)
3 hpCMSrv; "C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe" [1098296 2011-09-13] (Hewlett-Packard Development Company L.P.)
2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [34872 2012-02-15] (Hewlett-Packard Development Company, L.P.)
2 IAStorDataMgrSvc; "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe" [13336 2011-01-12] (Intel Corporation)
2 IconMan_R; "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe" [2372096 2011-02-18] (Realsil Microelectronics Inc.)
2 SkypeUpdate; "C:\Program Files (x86)\Skype\Updater\Updater.exe" [158856 2012-02-15] (Skype Technologies)
2 UNS; "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe" [2656280 2011-02-01] (Intel Corporation)
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe" [x]
3 NisSrv; "c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe" [x]

========================== Drivers (Whitelisted) =============

3 BridgeMP; C:\Windows\System32\DRIVERS\bridge.sys [95232 2009-07-13] (Microsoft Corporation)
3 clwvd; C:\Windows\System32\Drivers\clwvd.sys [31088 2010-07-28] (CyberLink Corporation)
3 intelkmd; C:\Windows\System32\DRIVERS\igdpmd64.sys [12262688 2011-01-07] (Intel Corporation)
3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-05-09] (Apple Inc.)
3 NVENETFD; C:\Windows\System32\DRIVERS\nvm62x64.sys [408960 2009-06-10] (NVIDIA Corporation)
3 RSPCIESTOR; C:\Windows\System32\DRIVERS\RtsPStor.sys [335464 2011-02-15] (Realtek Semiconductor Corp.)
3 TsUsbGD; C:\Windows\System32\Drivers\TsUsbGD.sys [31232 2010-11-20] (Microsoft Corporation)
3 catchme; \??\C:\ComboFix\catchme.sys [x]

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2012-04-15 01:59 - 2012-04-15 01:59 - 0000000 ____D C:\Users\All Users\Synaptics
2012-04-15 01:59 - 2012-04-15 01:59 - 0000000 ____D C:\ProgramData\Synaptics
2012-04-14 09:32 - 2012-04-14 09:32 - 0000000 ____D C:\Program Files\Microsoft Security Client
2012-04-14 09:32 - 2012-04-14 09:32 - 0000000 ____D C:\Program Files (x86)\Microsoft Security Client
2012-04-14 08:58 - 2012-04-14 08:58 - 0262144 ____A C:\Windows\Minidump\041412-38516-01.dmp
2012-04-14 08:57 - 2012-04-14 08:57 - 525607678 ____A C:\Windows\MEMORY.DMP
2012-04-14 07:39 - 2012-04-14 07:42 - 0129074 ____A C:\TDSSKiller.2.7.28.0_14.04.2012_17.39.21_log.txt
2012-04-14 07:38 - 2012-04-14 07:39 - 0004158 ____A C:\TDSSKiller.2.7.28.0_14.04.2012_17.38.59_log.txt
2012-04-12 23:46 - 2012-04-12 23:46 - 0193574 ____A C:\Users\Camilla\Desktop\computerlayout til eksamen.pdf
2012-04-12 23:42 - 2012-04-12 23:42 - 0030720 ____A C:\Users\Camilla\Downloads\afleverings skabelon fsa dansk.doc
2012-04-12 22:12 - 2012-04-12 22:12 - 0020625 ____A C:\Users\Camilla\Downloads\Camilla. (1).docx
2012-04-12 22:09 - 2012-04-12 22:09 - 0020625 ____A C:\Users\Camilla\Downloads\Camilla..docx
2012-04-11 11:51 - 2012-04-11 11:51 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Malwarebytes
2012-04-11 11:40 - 2012-04-11 11:40 - 0019102 ____A C:\ComboFix.txt
2012-04-11 11:36 - 2012-04-11 11:36 - 0000000 __SHD C:\$RECYCLE.BIN
2012-04-11 11:35 - 2012-04-11 11:35 - 0005906 ____A C:\Windows\PFRO.log
2012-04-11 11:26 - 2012-04-11 11:40 - 0000000 ____D C:\Qoobox
2012-04-11 11:26 - 2012-04-11 11:38 - 0000000 ____D C:\Windows\ERDNT
2012-04-11 11:26 - 2011-06-25 22:45 - 0256000 ____A C:\Windows\PEV.exe
2012-04-11 11:26 - 2010-11-07 09:20 - 0208896 ____A C:\Windows\MBR.exe
2012-04-11 11:26 - 2009-04-19 20:56 - 0060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2012-04-11 11:26 - 2000-08-30 16:00 - 0518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2012-04-11 11:26 - 2000-08-30 16:00 - 0406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2012-04-11 11:26 - 2000-08-30 16:00 - 0098816 ____A C:\Windows\sed.exe
2012-04-11 11:26 - 2000-08-30 16:00 - 0080412 ____A C:\Windows\grep.exe
2012-04-11 11:26 - 2000-08-30 16:00 - 0068096 ____A C:\Windows\zip.exe
2012-04-11 10:37 - 2012-04-11 10:33 - 0607260 ____R (Swearware) C:\Users\Camilla\Downloads\dds.scr
2012-04-11 10:26 - 2012-04-11 10:26 - 0920096 ____A C:\Users\Camilla\Downloads\Norton_Removal_Tool.exe
2012-04-11 10:07 - 2012-04-11 11:11 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Systweak
2012-04-11 10:07 - 2012-03-30 02:14 - 0018816 ____A (Systweak Inc., (www.systweak.com)) C:\Windows\System32\roboot64.exe
2012-04-11 10:07 - 2012-03-13 02:12 - 0016896 ____A C:\Windows\System32\sasnative64.exe
2012-04-11 10:06 - 2012-04-11 10:06 - 4407216 ____A (Systweak Inc                                                ) C:\Users\Camilla\Downloads\rcpsetup_3335.exe
2012-04-11 09:42 - 2012-04-15 06:43 - 0001363 ____A C:\Windows\setupact.log
2012-04-11 09:42 - 2012-04-11 09:42 - 0000000 ____A C:\Windows\setuperr.log
2012-04-11 09:24 - 2012-04-14 09:00 - 0401000 ____A C:\Windows\ntbtlog.txt
2012-04-11 09:08 - 2012-04-11 09:08 - 10063000 ____A (Malwarebytes Corporation                                    ) C:\Users\Camilla\Downloads\mbam-setup-1.61.0.1400 (1).exe
2012-04-11 08:40 - 2012-04-11 08:40 - 0094628 ____A C:\Users\Camilla\Documents\cc_20120411_183954.reg
2012-04-11 08:28 - 2012-04-11 08:28 - 3645656 ____A (Piriform Ltd) C:\Users\Camilla\Downloads\ccsetup317.exe
2012-04-11 08:25 - 2012-04-11 08:25 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-04-11 08:25 - 2012-04-11 08:25 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-04-11 08:24 - 2012-04-11 08:24 - 10063000 ____A (Malwarebytes Corporation                                    ) C:\Users\Camilla\Downloads\mbam-setup-1.61.0.1400.exe
2012-04-11 08:08 - 2012-04-11 08:08 - 0000000 ____D C:\Users\Camilla\AppData\Local\ElevatedDiagnostics
2012-04-11 07:52 - 2012-04-11 07:52 - 0002019 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk
2012-04-11 07:31 - 2012-04-11 07:31 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-04-11 07:31 - 2012-04-11 07:31 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-04-11 07:31 - 2012-04-11 07:31 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-04-11 07:30 - 2012-03-05 22:53 - 5559152 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-04-11 07:30 - 2012-02-27 23:34 - 17790976 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-04-11 07:30 - 2012-02-27 23:02 - 10888704 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-04-11 07:30 - 2012-02-27 22:56 - 2311168 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-04-11 07:30 - 2012-02-27 22:50 - 1345536 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-04-11 07:30 - 2012-02-27 22:49 - 1390080 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-04-11 07:30 - 2012-02-27 22:48 - 1493504 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-04-11 07:30 - 2012-02-27 22:48 - 0237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-04-11 07:30 - 2012-02-27 22:47 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-04-11 07:30 - 2012-02-27 22:45 - 0818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-04-11 07:30 - 2012-02-27 22:43 - 2144256 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-04-11 07:30 - 2012-02-27 22:43 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-04-11 07:30 - 2012-02-27 22:42 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-04-11 07:30 - 2012-02-27 22:39 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-04-11 07:30 - 2012-02-27 17:52 - 12281856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-04-11 07:30 - 2012-02-27 17:27 - 9705984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-04-11 07:30 - 2012-02-27 17:18 - 1799168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-04-11 07:30 - 2012-02-27 17:12 - 1103360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-04-11 07:30 - 2012-02-27 17:11 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-04-11 07:30 - 2012-02-27 17:11 - 1127424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-04-11 07:30 - 2012-02-27 17:09 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-04-11 07:30 - 2012-02-27 17:08 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-04-11 07:30 - 2012-02-27 17:06 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-04-11 07:30 - 2012-02-27 17:04 - 1792000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-04-11 07:30 - 2012-02-27 17:03 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-04-11 07:30 - 2012-02-27 17:03 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-04-11 07:30 - 2012-02-27 16:59 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-04-11 07:29 - 2012-03-05 21:59 - 3968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-04-11 07:29 - 2012-03-05 21:59 - 3913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-04-11 07:29 - 2012-02-29 22:46 - 0023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2012-04-11 07:29 - 2012-02-29 22:38 - 0220672 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-04-11 07:29 - 2012-02-29 22:33 - 0081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2012-04-11 07:29 - 2012-02-29 22:28 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll
2012-04-11 07:29 - 2012-02-29 21:37 - 0172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2012-04-11 07:29 - 2012-02-29 21:33 - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2012-04-11 07:29 - 2012-02-29 21:29 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2012-04-11 07:23 - 2012-04-11 07:23 - 10165440 ____A (Microsoft Corporation) C:\Users\Camilla\Downloads\mseinstall.exe
2012-04-11 06:27 - 2012-04-11 06:27 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4B93E3E1-D1F8-4069-AB04-880A3C919157}
2012-04-10 12:59 - 2012-04-10 12:59 - 0000000 ____D C:\Program Files (x86)\Trend Micro
2012-04-10 12:58 - 2012-04-10 12:58 - 1402880 ____A C:\Users\Camilla\Downloads\HiJackThis.msi
2012-04-10 12:40 - 2012-04-10 12:40 - 0000000 ____D C:\Windows\pss
2012-04-10 12:35 - 2012-04-14 09:32 - 0001912 ____A C:\Windows\epplauncher.mif
2012-04-10 12:34 - 2012-04-14 09:32 - 1291794 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-04-10 10:30 - 2012-04-10 10:31 - 0000000 ____D C:\Program Files (x86)\AVG Secure Search
2012-04-10 09:58 - 2012-04-10 09:58 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7584F3F4-61CB-4DC4-A011-07A82E373306}
2012-04-09 09:27 - 2012-04-09 09:27 - 0109911 ____A C:\Users\Camilla\Desktop\Årsopgave videbæk skole - Sporene ender.docx
2012-04-08 12:21 - 2012-04-08 12:21 - 2618018 ____A C:\Users\Camilla\Downloads\kjhgy 013.JPG
2012-04-08 11:55 - 2012-04-08 13:53 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Audacity
2012-04-08 11:55 - 2012-04-08 11:55 - 0001011 ____A C:\Users\Camilla\Desktop\Audacity.lnk
2012-04-08 11:55 - 2012-04-08 11:55 - 0000000 ____D C:\Program Files (x86)\Audacity
2012-04-08 09:51 - 2012-04-08 09:51 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Registry Mechanic
2012-04-08 09:48 - 2012-04-10 09:11 - 0006244 ____A C:\Windows\SysWOW64\AppLog.log
2012-04-07 19:29 - 2012-04-09 21:58 - 0000000 ____D C:\Users\Camilla\AppData\Local\{EFE92E80-FE90-4FF3-9BD2-965BB6B54C76}
2012-04-07 12:27 - 2012-04-07 12:24 - 8700150 ____A C:\Users\Camilla\msi-20120407-201535.log
2012-04-07 12:27 - 2012-04-07 12:24 - 0332096 ____A C:\Users\Camilla\mfa-20120407-202013.log
2012-04-07 12:27 - 2012-04-07 12:23 - 0840073 ____A C:\Users\Camilla\usertemplog.txt
2012-04-07 12:27 - 2012-04-07 12:17 - 0947788 ____A C:\Users\Camilla\mfa-20120407-201535.log
2012-04-07 12:27 - 2012-04-07 12:15 - 0298714 ____A C:\Users\Camilla\mfa-20120407-201508.log
2012-04-07 12:27 - 2012-04-07 12:14 - 8002264 ____A C:\Users\Camilla\msi-20120407-200510.log
2012-04-07 12:27 - 2012-04-07 12:14 - 1132366 ____A C:\Users\Camilla\mfa-20120407-200510.log
2012-04-07 12:26 - 2012-04-07 12:05 - 0286108 ____A C:\Users\Camilla\mfa-20120407-200447.log
2012-04-07 12:12 - 2012-04-11 07:02 - 0000000 ____D C:\Windows\SysWOW64\Drivers\AVG
2012-04-07 12:12 - 2012-04-10 13:13 - 0000000 ____D C:\Users\All Users\AVG2012
2012-04-07 12:12 - 2012-04-10 13:13 - 0000000 ____D C:\ProgramData\AVG2012
2012-04-07 12:12 - 2012-04-07 12:12 - 0000000 ____D C:\Users\All Users\AVG Secure Search
2012-04-07 12:12 - 2012-04-07 12:12 - 0000000 ____D C:\ProgramData\AVG Secure Search
2012-04-07 12:11 - 2012-04-07 12:11 - 0000000 ____D C:\Program Files (x86)\AVG
2012-04-07 12:04 - 2012-04-11 07:02 - 0000000 ____D C:\Users\All Users\MFAData
2012-04-07 12:04 - 2012-04-11 07:02 - 0000000 ____D C:\ProgramData\MFAData
2012-04-07 12:04 - 2012-04-07 12:04 - 3897504 ____A (AVG Technologies) C:\Users\Camilla\Downloads\avg_avct_stb_all_2012_1796_cm10.exe
2012-04-07 12:04 - 2012-04-07 12:04 - 3782578 ____A (AVG Technologies) C:\Users\Camilla\Downloads\Ikke bekræftet 67002.crdownload
2012-04-06 08:35 - 2012-04-06 08:35 - 2174803 ____A C:\Users\Camilla\Downloads\setup.zip
2012-04-04 12:54 - 2012-04-04 12:54 - 0000000 ____D C:\Users\Camilla\AppData\Local\Hewlett-Packard_Developme
2012-04-03 10:26 - 2012-04-03 10:26 - 0000162 ___AH C:\Users\Camilla\Downloads\~$eberg patienten.doc
2012-04-02 23:51 - 2012-04-02 23:51 - 0020953 ____A C:\Users\Camilla\Downloads\fedt i pålæg.docx
2012-04-02 22:30 - 2012-04-02 22:31 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten.doc
2012-04-02 12:17 - 2012-04-03 10:37 - 1598423 ____A C:\Users\Camilla\Downloads\Præsentation1 (1).pptx
2012-04-02 11:25 - 2012-04-02 11:25 - 1623082 ____A C:\Users\Camilla\Downloads\Præsentation1.pptx
2012-04-02 09:52 - 2012-04-02 11:24 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten(1) (1).doc
2012-03-29 22:50 - 2012-03-29 22:50 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten(1).doc
2012-03-29 22:50 - 2012-03-29 22:50 - 0000162 ___AH C:\Users\Camilla\Downloads\~$eberg patienten(1).doc
2012-03-29 03:25 - 2012-03-29 03:26 - 0100346 ____A C:\Users\Camilla\Downloads\spørgsmål til lektie - klima.docx
2012-03-28 23:46 - 2012-03-28 23:46 - 0000162 ___AH C:\Users\Camilla\Downloads\~$igurer.docx
2012-03-28 23:45 - 2012-03-28 23:46 - 1151522 ____A C:\Users\Camilla\Downloads\figurer.docx
2012-03-28 22:41 - 2012-03-28 22:41 - 0026180 ____A C:\Users\Camilla\Downloads\fedtstoffer - opgave.docx
2012-03-28 22:06 - 2012-03-28 22:06 - 0939995 ____A C:\Users\Camilla\Downloads\fedtstoffer.docx
2012-03-28 22:04 - 2012-03-28 22:04 - 0011512 ____A C:\Users\Camilla\Downloads\opgaver til fedtstoffer.docx
2012-03-28 21:59 - 2012-04-07 06:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{2E46DD58-C3CF-4ABD-8E60-CAE73351D428}
2012-03-28 07:41 - 2012-03-28 07:41 - 0668645 ____A C:\Users\Camilla\Documents\matematik.xlsx
2012-03-28 05:58 - 2012-03-28 05:58 - 0051126 ____A C:\Users\Camilla\Downloads\aboriginals.docx
2012-03-28 00:02 - 2012-03-28 00:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E0EDE7D1-9F17-4011-B30E-D63BA2F85ED2}
2012-03-28 00:02 - 2012-03-28 00:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{0BF7F8A7-0BE9-4CCB-BAAB-B58D0FC93D80}
2012-03-27 23:54 - 2012-03-27 23:54 - 0034304 ____A C:\Users\Camilla\Downloads\matematikrapport statistik 9kl.doc
2012-03-27 23:43 - 2012-03-27 23:43 - 0015018 ____A C:\Users\Camilla\Documents\opgaver til det gode sværd.docx
2012-03-27 12:01 - 2012-03-27 12:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{285CCCCB-CB2D-4AED-B9C1-B2BFDA413091}
2012-03-26 23:50 - 2012-03-26 23:50 - 0050174 ____A C:\Users\Camilla\Downloads\grundstofdannelses opgaver.docx
2012-03-26 22:53 - 2012-03-26 22:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{AA6DAC94-6F79-4BBE-9B45-B92A54C15214}
2012-03-26 10:53 - 2012-03-26 10:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{67F03D35-1941-4111-A533-7F0C2A23735D}
2012-03-25 23:42 - 2012-03-26 00:27 - 0014079 ____A C:\Users\Camilla\Downloads\aktantmodel germand gladenssvend.docx
2012-03-25 22:52 - 2012-03-25 22:52 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4DA03C57-B7FB-434E-B141-DC43B5FA090D}
2012-03-24 04:56 - 2012-03-24 04:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C108E099-C3C7-442B-9C22-D64F34FD620A}
2012-03-22 22:56 - 2012-03-22 22:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{52E0EF9F-EA30-4310-BC0D-22A241464C6F}
2012-03-22 04:37 - 2012-03-26 00:58 - 0012991 ____A C:\Users\Camilla\Downloads\Luxembourg - udledning.docx
2012-03-21 23:01 - 2012-03-21 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{39B90A5E-8902-445B-8F75-D5BCF0BF3677}
2012-03-20 22:59 - 2012-03-20 22:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{878D9CCF-AAB8-4F0E-8F17-B250636937B0}
2012-03-20 01:03 - 2012-03-20 01:04 - 0000000 ____D C:\Users\Camilla\AppData\Local\{5586B1BF-903A-436B-AF79-53C265E2BAF8}
2012-03-19 13:03 - 2012-03-19 13:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{653A9DD7-5F81-41E2-8E72-E000680DD883}
2012-03-19 00:41 - 2012-03-19 00:41 - 0000000 ____D C:\Users\Camilla\AppData\Local\{672A4FA4-96EC-43E6-AD2F-70046FC81799}
2012-03-18 11:09 - 2012-03-18 11:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{9AC07564-78C6-4D02-814A-29BFD591096D}
2012-03-18 11:08 - 2012-03-27 12:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7150E276-4AF3-479B-AE8B-1096B1AC9479}
2012-03-18 06:22 - 2012-03-18 06:22 - 0000000 ____D C:\Users\Camilla\AppData\Local\{BB579644-72F1-4187-8CE3-4ACA53B3C787}
2012-03-16 01:06 - 2012-03-16 01:06 - 0000162 ___AH C:\Users\Camilla\Downloads\~$nsk synopseprøve9a.docx


============ 3 Months Modified Files and Folders =============

2012-04-15 16:56 - 2012-04-15 16:56 - 0000000 ____D C:\FRST
2012-04-15 06:45 - 2011-06-07 00:44 - 1194239 ____A C:\Windows\WindowsUpdate.log
2012-04-15 06:45 - 2009-07-13 20:45 - 0032064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-04-15 06:45 - 2009-07-13 20:45 - 0032064 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-04-15 06:43 - 2012-04-11 09:42 - 0001363 ____A C:\Windows\setupact.log
2012-04-15 06:43 - 2011-08-01 12:34 - 0000930 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-04-15 06:43 - 2011-06-07 01:02 - 3180220416 __ASH C:\hiberfil.sys
2012-04-15 06:43 - 2009-07-13 21:08 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-04-15 01:59 - 2012-04-15 01:59 - 0000000 ____D C:\Users\All Users\Synaptics
2012-04-15 01:59 - 2012-04-15 01:59 - 0000000 ____D C:\ProgramData\Synaptics
2012-04-15 01:55 - 2011-08-01 12:34 - 0000934 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-04-15 01:42 - 2011-08-01 12:33 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Skype
2012-04-14 14:45 - 2011-10-30 06:40 - 0000936 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1211409740-2408865052-3062530877-1000UA.job
2012-04-14 14:43 - 2011-08-03 12:17 - 0000000 ____D C:\Users\Camilla\AppData\Local\CrashDumps
2012-04-14 12:09 - 2012-02-01 05:03 - 0000340 ____A C:\Windows\Tasks\HPCeeScheduleForCamilla.job
2012-04-14 10:13 - 2011-07-26 10:41 - 0000000 ____D C:\users\Camilla
2012-04-14 09:51 - 2011-07-26 10:43 - 0000000 ____D C:\Users\Camilla\AppData\Local\Hewlett-Packard
2012-04-14 09:32 - 2012-04-14 09:32 - 0000000 ____D C:\Program Files\Microsoft Security Client
2012-04-14 09:32 - 2012-04-14 09:32 - 0000000 ____D C:\Program Files (x86)\Microsoft Security Client
2012-04-14 09:32 - 2012-04-10 12:35 - 0001912 ____A C:\Windows\epplauncher.mif
2012-04-14 09:32 - 2012-04-10 12:34 - 1291794 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2012-04-14 09:32 - 2011-05-06 08:04 - 0472686 ____A C:\Windows\System32\perfh006.dat
2012-04-14 09:32 - 2011-05-06 08:04 - 0081188 ____A C:\Windows\System32\perfc006.dat
2012-04-14 09:00 - 2012-04-11 09:24 - 0401000 ____A C:\Windows\ntbtlog.txt
2012-04-14 08:58 - 2012-04-14 08:58 - 0262144 ____A C:\Windows\Minidump\041412-38516-01.dmp
2012-04-14 08:58 - 2011-11-29 10:00 - 0000000 ____D C:\Windows\Minidump
2012-04-14 08:57 - 2012-04-14 08:57 - 525607678 ____A C:\Windows\MEMORY.DMP
2012-04-14 07:42 - 2012-04-14 07:39 - 0129074 ____A C:\TDSSKiller.2.7.28.0_14.04.2012_17.39.21_log.txt
2012-04-14 07:39 - 2012-04-14 07:38 - 0004158 ____A C:\TDSSKiller.2.7.28.0_14.04.2012_17.38.59_log.txt
2012-04-14 07:32 - 2012-01-27 01:15 - 0039424 ____A C:\Users\Camilla\Desktop\afleverings skabelon fsa dansk.doc
2012-04-14 07:31 - 2011-12-09 09:17 - 0000000 ____D C:\Users\Camilla\AppData\Local\Spotify
2012-04-14 07:31 - 2011-12-09 09:16 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Spotify
2012-04-14 07:27 - 2011-10-30 06:40 - 0000914 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1211409740-2408865052-3062530877-1000Core.job
2012-04-13 13:59 - 2011-09-02 09:20 - 0002344 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2012-04-12 23:46 - 2012-04-12 23:46 - 0193574 ____A C:\Users\Camilla\Desktop\computerlayout til eksamen.pdf
2012-04-12 23:42 - 2012-04-12 23:42 - 0030720 ____A C:\Users\Camilla\Downloads\afleverings skabelon fsa dansk.doc
2012-04-12 22:12 - 2012-04-12 22:12 - 0020625 ____A C:\Users\Camilla\Downloads\Camilla. (1).docx
2012-04-12 22:09 - 2012-04-12 22:09 - 0020625 ____A C:\Users\Camilla\Downloads\Camilla..docx
2012-04-11 12:04 - 2011-07-26 11:32 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-04-11 12:04 - 2011-07-26 11:32 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-04-11 11:51 - 2012-04-11 11:51 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Malwarebytes
2012-04-11 11:40 - 2012-04-11 11:40 - 0019102 ____A C:\ComboFix.txt
2012-04-11 11:40 - 2012-04-11 11:26 - 0000000 ____D C:\Qoobox
2012-04-11 11:40 - 2009-07-13 19:20 - 0000000 __RHD C:\users\Default
2012-04-11 11:40 - 2009-07-13 19:20 - 0000000 ___RD C:\users\Public
2012-04-11 11:38 - 2012-04-11 11:26 - 0000000 ____D C:\Windows\ERDNT
2012-04-11 11:38 - 2011-07-26 10:59 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\hpqlog
2012-04-11 11:36 - 2012-04-11 11:36 - 0000000 __SHD C:\$RECYCLE.BIN
2012-04-11 11:36 - 2009-07-13 18:34 - 0000215 ____A C:\Windows\system.ini
2012-04-11 11:36 - 2009-07-13 18:34 - 0000027 ____A C:\Windows\System32\Drivers\etc\hosts
2012-04-11 11:35 - 2012-04-11 11:35 - 0005906 ____A C:\Windows\PFRO.log
2012-04-11 11:11 - 2012-04-11 10:07 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Systweak
2012-04-11 10:35 - 2012-03-04 10:46 - 0000000 ____D C:\Program Files (x86)\BrowserCompanion
2012-04-11 10:35 - 2011-07-26 10:41 - 0000000 ____D C:\Users\Camilla\AppData\LocalLow
2012-04-11 10:33 - 2012-04-11 10:37 - 0607260 ____R (Swearware) C:\Users\Camilla\Downloads\dds.scr
2012-04-11 10:26 - 2012-04-11 10:26 - 0920096 ____A C:\Users\Camilla\Downloads\Norton_Removal_Tool.exe
2012-04-11 10:06 - 2012-04-11 10:06 - 4407216 ____A (Systweak Inc                                                ) C:\Users\Camilla\Downloads\rcpsetup_3335.exe
2012-04-11 10:06 - 2009-07-13 21:13 - 1271794 ____A C:\Windows\System32\PerfStringBackup.INI
2012-04-11 10:03 - 2011-08-01 12:12 - 0000000 ____D C:\Users\Camilla\Tracing
2012-04-11 09:42 - 2012-04-11 09:42 - 0000000 ____A C:\Windows\setuperr.log
2012-04-11 09:08 - 2012-04-11 09:08 - 10063000 ____A (Malwarebytes Corporation                                    ) C:\Users\Camilla\Downloads\mbam-setup-1.61.0.1400 (1).exe
2012-04-11 08:40 - 2012-04-11 08:40 - 0094628 ____A C:\Users\Camilla\Documents\cc_20120411_183954.reg
2012-04-11 08:37 - 2007-01-01 17:25 - 0000000 ____D C:\Windows\Panther
2012-04-11 08:28 - 2012-04-11 08:28 - 3645656 ____A (Piriform Ltd) C:\Users\Camilla\Downloads\ccsetup317.exe
2012-04-11 08:25 - 2012-04-11 08:25 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-04-11 08:25 - 2012-04-11 08:25 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-04-11 08:24 - 2012-04-11 08:24 - 10063000 ____A (Malwarebytes Corporation                                    ) C:\Users\Camilla\Downloads\mbam-setup-1.61.0.1400.exe
2012-04-11 08:08 - 2012-04-11 08:08 - 0000000 ____D C:\Users\Camilla\AppData\Local\ElevatedDiagnostics
2012-04-11 07:52 - 2012-04-11 07:52 - 0002019 ____A C:\Users\Public\Desktop\Adobe Reader X.lnk
2012-04-11 07:31 - 2012-04-11 07:31 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2012-04-11 07:31 - 2012-04-11 07:31 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2012-04-11 07:31 - 2012-04-11 07:31 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2012-04-11 07:31 - 2011-05-06 09:07 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2012-04-11 07:29 - 2011-07-26 11:11 - 57249312 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2012-04-11 07:23 - 2012-04-11 07:23 - 10165440 ____A (Microsoft Corporation) C:\Users\Camilla\Downloads\mseinstall.exe
2012-04-11 07:02 - 2012-04-07 12:12 - 0000000 ____D C:\Windows\SysWOW64\Drivers\AVG
2012-04-11 07:02 - 2012-04-07 12:04 - 0000000 ____D C:\Users\All Users\MFAData
2012-04-11 07:02 - 2012-04-07 12:04 - 0000000 ____D C:\ProgramData\MFAData
2012-04-11 06:27 - 2012-04-11 06:27 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4B93E3E1-D1F8-4069-AB04-880A3C919157}
2012-04-10 13:13 - 2012-04-07 12:12 - 0000000 ____D C:\Users\All Users\AVG2012
2012-04-10 13:13 - 2012-04-07 12:12 - 0000000 ____D C:\ProgramData\AVG2012
2012-04-10 13:07 - 2009-07-13 19:20 - 0000000 ___HD C:\Windows\System32\GroupPolicy
2012-04-10 12:59 - 2012-04-10 12:59 - 0000000 ____D C:\Program Files (x86)\Trend Micro
2012-04-10 12:58 - 2012-04-10 12:58 - 1402880 ____A C:\Users\Camilla\Downloads\HiJackThis.msi
2012-04-10 12:48 - 2011-06-07 00:53 - 0000000 ____D C:\Users\All Users\Norton
2012-04-10 12:48 - 2011-06-07 00:53 - 0000000 ____D C:\ProgramData\Norton
2012-04-10 12:40 - 2012-04-10 12:40 - 0000000 ____D C:\Windows\pss
2012-04-10 10:31 - 2012-04-10 10:30 - 0000000 ____D C:\Program Files (x86)\AVG Secure Search
2012-04-10 09:58 - 2012-04-10 09:58 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7584F3F4-61CB-4DC4-A011-07A82E373306}
2012-04-10 09:11 - 2012-04-08 09:48 - 0006244 ____A C:\Windows\SysWOW64\AppLog.log
2012-04-09 21:58 - 2012-04-07 19:29 - 0000000 ____D C:\Users\Camilla\AppData\Local\{EFE92E80-FE90-4FF3-9BD2-965BB6B54C76}
2012-04-09 09:27 - 2012-04-09 09:27 - 0109911 ____A C:\Users\Camilla\Desktop\Årsopgave videbæk skole - Sporene ender.docx
2012-04-09 08:22 - 2011-08-01 11:36 - 0000000 ____D C:\Users\Camilla\Documents\Youcam
2012-04-08 13:53 - 2012-04-08 11:55 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Audacity
2012-04-08 12:21 - 2012-04-08 12:21 - 2618018 ____A C:\Users\Camilla\Downloads\kjhgy 013.JPG
2012-04-08 11:55 - 2012-04-08 11:55 - 0001011 ____A C:\Users\Camilla\Desktop\Audacity.lnk
2012-04-08 11:55 - 2012-04-08 11:55 - 0000000 ____D C:\Program Files (x86)\Audacity
2012-04-08 09:51 - 2012-04-08 09:51 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Registry Mechanic
2012-04-08 09:51 - 2009-07-13 21:32 - 0000000 ____D C:\Windows\Downloaded Program Files
2012-04-07 12:24 - 2012-04-07 12:27 - 8700150 ____A C:\Users\Camilla\msi-20120407-201535.log
2012-04-07 12:24 - 2012-04-07 12:27 - 0332096 ____A C:\Users\Camilla\mfa-20120407-202013.log
2012-04-07 12:23 - 2012-04-07 12:27 - 0840073 ____A C:\Users\Camilla\usertemplog.txt
2012-04-07 12:17 - 2012-04-07 12:27 - 0947788 ____A C:\Users\Camilla\mfa-20120407-201535.log
2012-04-07 12:15 - 2012-04-07 12:27 - 0298714 ____A C:\Users\Camilla\mfa-20120407-201508.log
2012-04-07 12:14 - 2012-04-07 12:27 - 8002264 ____A C:\Users\Camilla\msi-20120407-200510.log
2012-04-07 12:14 - 2012-04-07 12:27 - 1132366 ____A C:\Users\Camilla\mfa-20120407-200510.log
2012-04-07 12:12 - 2012-04-07 12:12 - 0000000 ____D C:\Users\All Users\AVG Secure Search
2012-04-07 12:12 - 2012-04-07 12:12 - 0000000 ____D C:\ProgramData\AVG Secure Search
2012-04-07 12:11 - 2012-04-07 12:11 - 0000000 ____D C:\Program Files (x86)\AVG
2012-04-07 12:05 - 2012-04-07 12:26 - 0286108 ____A C:\Users\Camilla\mfa-20120407-200447.log
2012-04-07 12:04 - 2012-04-07 12:04 - 3897504 ____A (AVG Technologies) C:\Users\Camilla\Downloads\avg_avct_stb_all_2012_1796_cm10.exe
2012-04-07 12:04 - 2012-04-07 12:04 - 3782578 ____A (AVG Technologies) C:\Users\Camilla\Downloads\Ikke bekræftet 67002.crdownload
2012-04-07 12:01 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\sysprep
2012-04-07 11:59 - 2011-08-01 12:33 - 0000000 ___RD C:\Program Files (x86)\Skype
2012-04-07 11:58 - 2011-05-06 08:57 - 0000000 ____D C:\Users\All Users\Hewlett-Packard
2012-04-07 11:58 - 2011-05-06 08:57 - 0000000 ____D C:\ProgramData\Hewlett-Packard
2012-04-07 09:26 - 2011-08-01 11:40 - 0000000 ____D C:\Users\Camilla\AppData\Local\Windows Live
2012-04-07 06:56 - 2012-03-28 21:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{2E46DD58-C3CF-4ABD-8E60-CAE73351D428}
2012-04-06 08:35 - 2012-04-06 08:35 - 2174803 ____A C:\Users\Camilla\Downloads\setup.zip
2012-04-04 12:56 - 2011-07-27 07:58 - 0000052 ____A C:\Windows\SysWOW64\DOErrors.log
2012-04-04 12:55 - 2011-05-06 08:46 - 0000000 ____D C:\Program Files (x86)\Hewlett-Packard
2012-04-04 12:54 - 2012-04-04 12:54 - 0000000 ____D C:\Users\Camilla\AppData\Local\Hewlett-Packard_Developme
2012-04-04 12:53 - 2011-02-10 11:23 - 0000000 ____D C:\SWSetup
2012-04-04 05:18 - 2012-01-04 10:23 - 0000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2012-04-03 10:37 - 2012-04-02 12:17 - 1598423 ____A C:\Users\Camilla\Downloads\Præsentation1 (1).pptx
2012-04-03 10:26 - 2012-04-03 10:26 - 0000162 ___AH C:\Users\Camilla\Downloads\~$eberg patienten.doc
2012-04-03 00:54 - 2011-09-08 22:04 - 0000000 ____D C:\Users\Camilla\Documents\V.I.E
2012-04-02 23:51 - 2012-04-02 23:51 - 0020953 ____A C:\Users\Camilla\Downloads\fedt i pålæg.docx
2012-04-02 22:31 - 2012-04-02 22:30 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten.doc
2012-04-02 11:25 - 2012-04-02 11:25 - 1623082 ____A C:\Users\Camilla\Downloads\Præsentation1.pptx
2012-04-02 11:24 - 2012-04-02 09:52 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten(1) (1).doc
2012-04-02 03:00 - 2011-05-06 08:47 - 0000000 ____D C:\Windows\SysWOW64\Macromed
2012-03-30 02:14 - 2012-04-11 10:07 - 0018816 ____A (Systweak Inc., (www.systweak.com)) C:\Windows\System32\roboot64.exe
2012-03-29 22:50 - 2012-03-29 22:50 - 0031744 ____A C:\Users\Camilla\Downloads\seeberg patienten(1).doc
2012-03-29 22:50 - 2012-03-29 22:50 - 0000162 ___AH C:\Users\Camilla\Downloads\~$eberg patienten(1).doc
2012-03-29 03:26 - 2012-03-29 03:25 - 0100346 ____A C:\Users\Camilla\Downloads\spørgsmål til lektie - klima.docx
2012-03-28 23:46 - 2012-03-28 23:46 - 0000162 ___AH C:\Users\Camilla\Downloads\~$igurer.docx
2012-03-28 23:46 - 2012-03-28 23:45 - 1151522 ____A C:\Users\Camilla\Downloads\figurer.docx
2012-03-28 22:41 - 2012-03-28 22:41 - 0026180 ____A C:\Users\Camilla\Downloads\fedtstoffer - opgave.docx
2012-03-28 22:06 - 2012-03-28 22:06 - 0939995 ____A C:\Users\Camilla\Downloads\fedtstoffer.docx
2012-03-28 22:04 - 2012-03-28 22:04 - 0011512 ____A C:\Users\Camilla\Downloads\opgaver til fedtstoffer.docx
2012-03-28 07:41 - 2012-03-28 07:41 - 0668645 ____A C:\Users\Camilla\Documents\matematik.xlsx
2012-03-28 05:58 - 2012-03-28 05:58 - 0051126 ____A C:\Users\Camilla\Downloads\aboriginals.docx
2012-03-28 00:02 - 2012-03-28 00:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E0EDE7D1-9F17-4011-B30E-D63BA2F85ED2}
2012-03-28 00:02 - 2012-03-28 00:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{0BF7F8A7-0BE9-4CCB-BAAB-B58D0FC93D80}
2012-03-27 23:54 - 2012-03-27 23:54 - 0034304 ____A C:\Users\Camilla\Downloads\matematikrapport statistik 9kl.doc
2012-03-27 23:43 - 2012-03-27 23:43 - 0015018 ____A C:\Users\Camilla\Documents\opgaver til det gode sværd.docx
2012-03-27 12:01 - 2012-03-27 12:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{285CCCCB-CB2D-4AED-B9C1-B2BFDA413091}
2012-03-27 12:01 - 2012-03-18 11:08 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7150E276-4AF3-479B-AE8B-1096B1AC9479}
2012-03-26 23:50 - 2012-03-26 23:50 - 0050174 ____A C:\Users\Camilla\Downloads\grundstofdannelses opgaver.docx
2012-03-26 22:53 - 2012-03-26 22:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{AA6DAC94-6F79-4BBE-9B45-B92A54C15214}
2012-03-26 10:53 - 2012-03-26 10:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{67F03D35-1941-4111-A533-7F0C2A23735D}
2012-03-26 00:58 - 2012-03-22 04:37 - 0012991 ____A C:\Users\Camilla\Downloads\Luxembourg - udledning.docx
2012-03-26 00:27 - 2012-03-25 23:42 - 0014079 ____A C:\Users\Camilla\Downloads\aktantmodel germand gladenssvend.docx
2012-03-25 22:52 - 2012-03-25 22:52 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4DA03C57-B7FB-434E-B141-DC43B5FA090D}
2012-03-24 04:56 - 2012-03-24 04:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C108E099-C3C7-442B-9C22-D64F34FD620A}
2012-03-22 22:56 - 2012-03-22 22:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{52E0EF9F-EA30-4310-BC0D-22A241464C6F}
2012-03-21 23:01 - 2012-03-21 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{39B90A5E-8902-445B-8F75-D5BCF0BF3677}
2012-03-20 22:59 - 2012-03-20 22:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{878D9CCF-AAB8-4F0E-8F17-B250636937B0}
2012-03-20 01:04 - 2012-03-20 01:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{5586B1BF-903A-436B-AF79-53C265E2BAF8}
2012-03-19 13:03 - 2012-03-19 13:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{653A9DD7-5F81-41E2-8E72-E000680DD883}
2012-03-19 00:41 - 2012-03-19 00:41 - 0000000 ____D C:\Users\Camilla\AppData\Local\{672A4FA4-96EC-43E6-AD2F-70046FC81799}
2012-03-18 11:09 - 2012-03-18 11:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{9AC07564-78C6-4D02-814A-29BFD591096D}
2012-03-18 11:07 - 2009-07-13 20:45 - 0342600 ____A C:\Windows\System32\FNTCACHE.DAT
2012-03-18 06:22 - 2012-03-18 06:22 - 0000000 ____D C:\Users\Camilla\AppData\Local\{BB579644-72F1-4187-8CE3-4ACA53B3C787}
2012-03-18 06:22 - 2012-03-14 22:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{95A31BA6-1A06-4ECC-86A7-B6DFB0393EAD}
2012-03-17 11:57 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\System32\NDF
2012-03-16 01:06 - 2012-03-16 01:06 - 0000162 ___AH C:\Users\Camilla\Downloads\~$nsk synopseprøve9a.docx
2012-03-15 23:02 - 2012-03-15 23:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{BFA6D4A8-C9F8-47D7-B66F-2353002A18D7}
2012-03-15 10:50 - 2012-03-15 10:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{D4EBD081-6945-4979-BD58-81412EC491C6}
2012-03-14 23:22 - 2011-07-26 10:42 - 0000000 ____D C:\Users\Camilla\AppData\Local\VirtualStore
2012-03-14 22:50 - 2012-03-14 22:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4F75825A-5494-4C12-80A2-99E2E54C4000}
2012-03-14 01:42 - 2011-05-06 09:04 - 0000000 ____D C:\Users\All Users\Adobe
2012-03-14 01:42 - 2011-05-06 09:04 - 0000000 ____D C:\ProgramData\Adobe
2012-03-14 00:41 - 2012-03-14 00:41 - 0000000 ____D C:\Users\Camilla\AppData\Local\{D397A702-1192-463A-AC40-77252F71398D}
2012-03-14 00:41 - 2012-03-06 13:07 - 0000000 ____D C:\Users\Camilla\AppData\Local\{43839F13-3E6A-4CF6-A759-4380E830A728}
2012-03-13 11:01 - 2012-03-13 11:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C0B7B274-73F1-4C73-9B25-86A01FB29F6F}
2012-03-13 10:19 - 2012-03-13 10:19 - 0000162 ___AH C:\Users\Camilla\Downloads\~$uno_aboriginals - spørgsmål (engelsk).docx
2012-03-13 02:12 - 2012-04-11 10:07 - 0016896 ____A C:\Windows\System32\sasnative64.exe
2012-03-12 23:29 - 2012-03-12 23:29 - 0000162 ___AH C:\Users\Camilla\Downloads\~$igonometri  opgavesæ H2 2003.doc
2012-03-12 23:21 - 2012-03-12 23:21 - 0000162 ___AH C:\Users\Camilla\Downloads\~$igonometri oversigt.docx
2012-03-12 23:01 - 2012-03-12 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{3A362A53-0888-4308-9FF1-486E9F5BA6D7}
2012-03-12 10:51 - 2012-03-12 10:51 - 0000000 ____D C:\Users\Camilla\AppData\Local\{429452A7-C2BC-4D02-AD18-912228D4059D}
2012-03-12 07:09 - 2012-03-06 00:50 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\vlc
2012-03-11 23:40 - 2012-03-11 23:40 - 0000162 ___AH C:\Users\Camilla\Downloads\~$adsensbrød.docx
2012-03-11 22:50 - 2012-03-11 22:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C6D450AE-94D7-4BEC-A263-8878990EA662}
2012-03-09 01:26 - 2012-03-09 01:26 - 0853787 ____A (Macromedia, Inc.) C:\Users\Camilla\Desktop\Neave Tetris.exe
2012-03-08 23:02 - 2012-03-08 23:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{2199E24D-C3FA-4727-971B-3C365B7CC007}
2012-03-08 11:02 - 2012-03-08 11:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{72F5E9C1-ADBE-4930-9A40-009A6AE57F08}
2012-03-08 02:53 - 2012-03-08 02:53 - 13623569 ____A (Igor Pavlov) C:\Users\Camilla\Desktop\GreenCityInstaller_01.exe
2012-03-08 02:12 - 2012-03-08 02:12 - 0000162 ___AH C:\Users\Camilla\Downloads\~$dektivopgave klima og miljø.docx
2012-03-07 23:32 - 2012-03-07 23:32 - 0000162 ___AH C:\Users\Camilla\Downloads\~$gaver til isotopkort.docx
2012-03-07 23:01 - 2012-03-07 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E44F2DD1-93B9-4A5C-809B-5773F031F7D9}
2012-03-07 05:56 - 2012-03-07 05:56 - 0000000 ____D C:\Users\Camilla\Documents\Need for Speed World
2012-03-07 05:25 - 2012-03-07 05:25 - 0000718 ____A C:\Users\Camilla\Desktop\Need For Speed™ World - Genvej.lnk
2012-03-07 02:15 - 2012-03-07 05:07 - 665954722 ____A C:\Users\Camilla\Desktop\V.18 kompetence.mov
2012-03-07 01:10 - 2012-03-07 01:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{363D5CBB-1878-4582-BD71-E0F1FEE4FB68}
2012-03-07 01:09 - 2012-03-07 01:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{060DB4FC-2D0B-4C45-A5D5-8D5335AB6F32}
2012-03-07 01:09 - 2012-03-05 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{638813BF-AE2B-42FC-8590-23B0A5293737}
2012-03-06 13:09 - 2012-03-06 13:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{479C73AD-32D9-4337-8114-F1EFFF1252B6}
2012-03-06 13:09 - 2012-03-06 13:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{2BCC4C50-007F-46C8-A768-E448C68FFEB1}
2012-03-06 11:01 - 2012-03-06 10:43 - 0000000 ____D C:\Users\Camilla\Desktop\Opvisninger V.I.E
2012-03-06 00:50 - 2012-03-06 00:50 - 0001070 ____A C:\Users\Public\Desktop\VLC media player.lnk
2012-03-06 00:50 - 2012-03-06 00:50 - 0000000 ____D C:\Program Files (x86)\VideoLAN
2012-03-06 00:47 - 2011-08-13 13:38 - 0000000 ____D C:\Users\Camilla\AppData\Local\Adobe
2012-03-06 00:47 - 2011-07-26 11:02 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Adobe
2012-03-05 23:02 - 2012-03-05 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{3E1416D9-18E9-4734-8846-7EF270BE6C36}
2012-03-05 22:53 - 2012-04-11 07:30 - 5559152 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe
2012-03-05 21:59 - 2012-04-11 07:29 - 3968368 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2012-03-05 21:59 - 2012-04-11 07:29 - 3913072 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2012-03-04 10:55 - 2012-03-04 10:49 - 0000000 ____D C:\Program Files (x86)\GIMP 2
2012-03-04 10:52 - 2012-03-04 02:49 - 0003042 ____A C:\user.js
2012-03-04 10:46 - 2012-03-04 10:46 - 0167312 ____A C:\Users\Camilla\Downloads\installer_gimp_Danish.exe
2012-03-04 10:46 - 2012-03-04 10:46 - 0167312 ____A C:\Users\Camilla\Downloads\installer_gimp_Danish (1).exe
2012-03-04 10:46 - 2012-03-04 10:46 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Babylon
2012-03-04 10:46 - 2012-03-04 10:46 - 0000000 ____D C:\Users\Camilla\AppData\Local\Babylon
2012-03-04 10:46 - 2012-03-04 10:46 - 0000000 ____D C:\Users\All Users\Babylon
2012-03-04 10:46 - 2012-03-04 10:46 - 0000000 ____D C:\ProgramData\Babylon
2012-03-04 02:56 - 2012-03-04 02:51 - 0000000 ____D C:\Users\Camilla\Documents\Euro Truck Simulator
2012-03-04 02:51 - 2012-03-04 02:51 - 0000000 ____D C:\Users\All Users\Trymedia
2012-03-04 02:51 - 2012-03-04 02:51 - 0000000 ____D C:\ProgramData\Trymedia
2012-03-04 02:50 - 2012-03-04 02:49 - 0000000 ____D C:\Program Files (x86)\Euro Truck Simulator
2012-03-03 08:06 - 2011-08-01 12:33 - 0002513 ____A C:\Users\Public\Desktop\Skype.lnk
2012-03-03 08:06 - 2011-08-01 12:33 - 0000000 ____D C:\Users\All Users\Skype
2012-03-03 08:06 - 2011-08-01 12:33 - 0000000 ____D C:\ProgramData\Skype
2012-03-03 07:34 - 2012-03-03 07:34 - 0000000 ____D C:\Users\Camilla\AppData\Local\{4541F9CA-2ED6-435B-A30E-DC80A734D4E4}
2012-03-03 07:34 - 2012-03-02 00:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{19D2DECE-9808-4133-98EA-39D9871A7247}
2012-03-02 00:50 - 2012-03-02 00:50 - 0000000 ____D C:\Users\Camilla\AppData\Local\{D15017BA-8AB8-488E-98D2-AF2F94B8AE64}
2012-02-29 22:46 - 2012-04-11 07:29 - 0023408 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2012-02-29 22:38 - 2012-04-11 07:29 - 0220672 ____A (Microsoft Corporation) C:\Windows\System32\wintrust.dll
2012-02-29 22:33 - 2012-04-11 07:29 - 0081408 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll
2012-02-29 22:28 - 2012-04-11 07:29 - 0005120 ____A (Microsoft Corporation) C:\Windows\System32\wmi.dll
2012-02-29 21:37 - 2012-04-11 07:29 - 0172544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2012-02-29 21:33 - 2012-04-11 07:29 - 0159232 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2012-02-29 21:29 - 2012-04-11 07:29 - 0005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2012-02-29 06:14 - 2012-02-29 06:14 - 0000000 ____D C:\Users\Camilla\AppData\Local\{CBFC5E21-A27D-4FB1-884F-0FF3D5C8A174}
2012-02-29 06:14 - 2012-02-29 06:14 - 0000000 ____D C:\Users\Camilla\AppData\Local\{AD554262-53E5-48AE-B1EC-DB2F22F7B372}
2012-02-27 23:34 - 2012-04-11 07:30 - 17790976 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-02-27 23:02 - 2012-04-11 07:30 - 10888704 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-02-27 23:02 - 2012-02-27 23:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{FB9BD840-DB73-4ACC-809E-A3D8C2AB4F1E}
2012-02-27 22:56 - 2012-04-11 07:30 - 2311168 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2012-02-27 22:50 - 2012-04-11 07:30 - 1345536 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-02-27 22:49 - 2012-04-11 07:30 - 1390080 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-02-27 22:48 - 2012-04-11 07:30 - 1493504 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2012-02-27 22:48 - 2012-04-11 07:30 - 0237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-02-27 22:47 - 2012-04-11 07:30 - 0085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-02-27 22:45 - 2012-04-11 07:30 - 0818688 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2012-02-27 22:43 - 2012-04-11 07:30 - 2144256 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-02-27 22:43 - 2012-04-11 07:30 - 0096256 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-02-27 22:42 - 2012-04-11 07:30 - 2382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-02-27 22:39 - 2012-04-11 07:30 - 0248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-02-27 17:52 - 2012-04-11 07:30 - 12281856 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2012-02-27 17:27 - 2012-04-11 07:30 - 9705984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2012-02-27 17:18 - 2012-04-11 07:30 - 1799168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2012-02-27 17:12 - 2012-04-11 07:30 - 1103360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2012-02-27 17:11 - 2012-04-11 07:30 - 1427456 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2012-02-27 17:11 - 2012-04-11 07:30 - 1127424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2012-02-27 17:09 - 2012-04-11 07:30 - 0231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2012-02-27 17:08 - 2012-04-11 07:30 - 0065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2012-02-27 17:06 - 2012-04-11 07:30 - 0716800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2012-02-27 17:04 - 2012-04-11 07:30 - 1792000 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2012-02-27 17:03 - 2012-04-11 07:30 - 2382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2012-02-27 17:03 - 2012-04-11 07:30 - 0072704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2012-02-27 16:59 - 2012-04-11 07:30 - 0176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2012-02-27 10:29 - 2012-02-27 10:29 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8F5164E9-2A56-4981-BE71-2929BAC8F19E}
2012-02-27 10:29 - 2012-02-27 10:29 - 0000000 ____D C:\Users\Camilla\AppData\Local\{58E0DE93-D4FF-475E-9475-90BFABCE1BFC}
2012-02-26 09:33 - 2012-02-26 09:33 - 0000000 ____D C:\Users\Camilla\AppData\Local\{1E94B52A-EDEA-4629-9412-69FB545C1787}
2012-02-25 14:09 - 2012-02-25 14:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{F998824A-88F1-404A-AAA6-43AAA7B840C1}
2012-02-25 14:09 - 2012-02-25 14:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{BEC3F166-0E61-4D07-B3FF-D24DBF200246}
2012-02-23 23:00 - 2012-02-23 23:00 - 0000000 ____D C:\Users\Camilla\AppData\Local\{6C88E0F6-26BF-4319-A4D8-DC33918C73A2}
2012-02-23 23:00 - 2012-02-20 06:07 - 0000000 ____D C:\Users\Camilla\AppData\Local\{624505BF-C17C-488B-81A7-2B5BED372CE1}
2012-02-23 00:18 - 2010-11-20 19:27 - 0279656 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2012-02-22 23:03 - 2012-02-22 23:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7EF3B1EF-47D3-4B80-8860-5142A7A42E25}
2012-02-22 11:00 - 2012-02-22 11:00 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8D0FE6F5-CC02-4B65-B347-093DB8FD4DC3}
2012-02-21 23:00 - 2012-02-21 23:00 - 0000000 ____D C:\Users\Camilla\AppData\Local\{64FBFF50-73F9-4180-B953-D880F688E9AA}
2012-02-21 10:59 - 2012-02-21 10:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{02C18278-DC3F-4762-9F64-733FE3805A06}
2012-02-20 22:59 - 2012-02-20 22:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E1D38B1F-06CB-46AC-BBD2-6CB5B7847C11}
2012-02-20 06:08 - 2012-02-20 06:08 - 0000000 ____D C:\Users\Camilla\AppData\Local\{903B3F3E-1A2A-43B9-8AEB-86D302057F25}
2012-02-20 04:32 - 2012-02-20 04:32 - 0000162 ___AH C:\Users\Camilla\Downloads\~$r mann vom hauslabjoch (1).docx
2012-02-19 04:51 - 2011-08-23 22:16 - 0000000 ____D C:\Users\Camilla\Desktop\matematik
2012-02-19 04:49 - 2011-08-15 11:28 - 0000972 ____A C:\Users\Camilla\Desktop\PDF-Viewer.lnk
2012-02-18 03:16 - 2012-02-18 03:15 - 0000000 ____D C:\Users\Camilla\AppData\Local\{2A3FB109-9F78-4176-BA5B-E177E4D0D22C}
2012-02-18 03:15 - 2012-02-18 03:15 - 0000000 ____D C:\Users\Camilla\AppData\Local\{B49BEB30-FD26-4343-BE85-C449537860D3}
2012-02-18 03:12 - 2011-07-26 10:59 - 0000174 ___SH C:\Users\Camilla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
2012-02-17 15:15 - 2012-02-17 15:15 - 0000000 ____D C:\Users\Camilla\AppData\Local\{449FBAC3-B506-42B7-A5B8-4F2A225FB9AF}
2012-02-17 15:15 - 2012-02-17 15:15 - 0000000 ____D C:\Users\Camilla\AppData\Local\{31577506-EE2F-4BC2-9C41-ACDE4C0D0BF8}
2012-02-17 03:14 - 2012-02-17 03:14 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E888EA02-DCBA-465C-A9D1-54FE07C474FE}
2012-02-17 03:14 - 2012-02-17 03:14 - 0000000 ____D C:\Users\Camilla\AppData\Local\{1ADE4435-AA00-46F9-B1DF-39DED6AC7BD9}
2012-02-17 01:38 - 2011-05-06 08:57 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2012-02-16 22:38 - 2012-03-14 01:05 - 1031680 ____A (Microsoft Corporation) C:\Windows\System32\rdpcore.dll
2012-02-16 21:34 - 2012-03-14 01:05 - 0826880 ____A (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2012-02-16 20:58 - 2012-03-14 01:05 - 0210944 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2012-02-16 20:57 - 2012-03-14 01:05 - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2012-02-15 02:58 - 2012-02-15 02:58 - 0768848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100.dll
2012-02-15 02:58 - 2012-02-15 02:58 - 0421200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msvcp100.dll
2012-02-14 02:09 - 2012-02-14 02:09 - 1070352 ____A (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2012-02-13 06:44 - 2012-02-13 06:43 - 0001287 ____A C:\Users\Public\Desktop\Fastest Free YouTube Downloader to MP3 Converter.lnk
2012-02-13 06:43 - 2012-02-13 06:43 - 0000000 ____D C:\Program Files (x86)\Fastest Free YouTube Downloader
2012-02-13 04:30 - 2012-02-13 04:30 - 0000000 ____D C:\Users\Camilla\AppData\Local\{63F433F6-03D7-4599-9FB7-320FC2E180FC}
2012-02-13 04:30 - 2012-02-08 11:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{78A645C7-E964-4A8D-B4F1-F3808B931519}
2012-02-12 12:26 - 2012-02-12 12:25 - 0000000 ____D C:\Users\Camilla\AppData\Local\{60DD98E5-A1DE-4A7D-B467-79AA2387E358}
2012-02-12 04:25 - 2011-08-03 06:22 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Apple Computer
2012-02-12 00:25 - 2012-02-12 00:25 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E28F09E2-1774-4904-95ED-CBFA62B46BD1}
2012-02-10 11:04 - 2012-02-10 11:04 - 0000000 ____D C:\Users\Camilla\AppData\Local\{EAB9AAE4-A55B-409B-94B8-3A81005EE44D}
2012-02-09 23:04 - 2012-02-09 23:04 - 0000000 ____D C:\Users\Camilla\AppData\Local\{CAC3C583-72B7-4F5C-8C5D-A2A7854D4E7B}
2012-02-09 22:54 - 2012-02-09 22:54 - 0000000 ____D C:\Users\Camilla\AppData\Roaming\Need for Speed World
2012-02-09 22:36 - 2012-03-14 01:06 - 1544192 ____A (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2012-02-09 21:38 - 2012-03-14 01:06 - 1077248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2012-02-09 11:19 - 2012-02-09 11:19 - 0000220 ____A C:\Users\Camilla\Desktop\Need For Speed™ World.lnk
2012-02-09 11:19 - 2012-02-09 11:19 - 0000000 ____D C:\Users\Camilla\AppData\Local\Electronic_Arts_Inc
2012-02-09 11:19 - 2012-02-09 11:16 - 0000000 ____D C:\Windows\SysWOW64\directx
2012-02-09 11:17 - 2012-02-09 11:16 - 0000000 ___HD C:\Windows\msdownld.tmp
2012-02-09 11:16 - 2012-02-09 11:16 - 0000000 ____D C:\Users\All Users\Electronic Arts
2012-02-09 11:16 - 2012-02-09 11:16 - 0000000 ____D C:\ProgramData\Electronic Arts
2012-02-09 11:16 - 2012-02-09 11:16 - 0000000 ____D C:\Program Files (x86)\Electronic Arts
2012-02-09 11:03 - 2012-02-09 11:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{B27DEA07-EBFF-4182-BDC3-E88BC36B16EB}
2012-02-08 23:03 - 2012-02-08 23:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{7B818D2D-B531-454F-92FD-47E3A4E30A85}
2012-02-08 11:03 - 2012-02-08 11:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{3A6190FE-88CF-40BF-A98B-6D2B6BECA6B2}
2012-02-07 23:02 - 2012-02-07 23:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{FD5A07F6-D5A4-484A-835A-4B952D764F04}
2012-02-07 23:02 - 2012-02-07 23:02 - 0000000 ____D C:\Users\Camilla\AppData\Local\{87DD9D86-474E-4591-A674-5F2F871EBB16}
2012-02-07 11:01 - 2012-02-07 11:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{D37AA499-1875-4D2A-913E-E5C66AF922DE}
2012-02-07 11:01 - 2012-02-07 11:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{1331DE4D-7019-4A8D-80FE-01BF6E2CB76E}
2012-02-06 23:01 - 2012-02-06 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{6A50CC4D-3472-41F9-915A-8C374BA31F9E}
2012-02-06 23:01 - 2012-02-06 23:01 - 0000000 ____D C:\Users\Camilla\AppData\Local\{60B0E7C5-334B-4863-8727-1ECF0CEF76C3}
2012-02-06 01:53 - 2012-02-06 01:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{F8AAF75E-FDC4-4AA0-8591-8BF593BFBB5C}
2012-02-06 01:53 - 2012-02-06 01:52 - 0000000 ____D C:\Users\Camilla\AppData\Local\{57148072-E862-4F8E-B0BC-103A90653A23}
2012-02-05 13:17 - 2012-02-05 13:17 - 0000000 ____D C:\Users\Camilla\AppData\Local\{304B85EF-A6CF-4D73-B578-EAA31982C9DC}
2012-02-05 13:17 - 2012-02-05 13:16 - 0000000 ____D C:\Users\Camilla\AppData\Local\{A9DF5EA1-5245-409F-80FC-1522F85E1048}
2012-02-05 01:06 - 2012-02-05 01:06 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8304545E-7FA2-4168-B3FD-16D5137F5F4A}
2012-02-04 02:21 - 2012-02-04 02:21 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8BA3057A-8268-4D60-A68B-6AA3B2B20681}
2012-02-03 01:35 - 2012-02-03 01:35 - 0000000 ____D C:\Users\Camilla\AppData\Local\{E317535F-A055-4482-A85C-5C2D7B5677FF}
2012-02-03 01:35 - 2012-02-03 01:35 - 0000000 ____D C:\Users\Camilla\AppData\Local\{A74EEC70-6888-4179-BDB5-F974556D80E1}
2012-02-02 20:34 - 2012-03-14 01:06 - 3145728 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-02-02 11:09 - 2012-02-02 11:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C054EA72-5108-433A-B20F-F8E09FC7EDEB}
2012-02-02 11:09 - 2012-02-02 11:08 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8574E8C2-F6AC-48D1-BDE1-98F6F58881BE}
2012-02-01 22:44 - 2012-02-01 22:44 - 0000000 ____D C:\Users\Camilla\AppData\Local\{DE0972DE-6CBC-4C43-B439-95AFF60EFBEC}
2012-02-01 22:44 - 2012-02-01 22:44 - 0000000 ____D C:\Users\Camilla\AppData\Local\{27E31624-BF86-4FF6-99BB-8C5740653ABB}
2012-02-01 04:40 - 2012-02-01 04:39 - 0029696 ____H C:\Users\Camilla\Downloads\~WRL0746.tmp
2012-02-01 04:09 - 2012-02-01 04:09 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8D95E52F-409C-472F-A290-0413CCDA1832}
2012-02-01 04:09 - 2012-01-23 06:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{B38ED71F-1B28-4EC0-BF27-93CF84D680CE}
2012-01-31 10:53 - 2012-01-31 10:53 - 0000000 ____D C:\Users\Camilla\AppData\Local\{AA1283CC-4A00-43A1-9E5D-C1B5F2703E45}
2012-01-31 02:15 - 2012-01-31 00:33 - 0032768 ____A C:\Users\Camilla\Desktop\Afleverings skabelon FSA Engelsk.doc
2012-01-31 00:34 - 2012-01-31 00:33 - 0029696 ____H C:\Users\Camilla\Desktop\~WRL3113.tmp
2012-01-30 22:53 - 2012-01-30 22:52 - 0000000 ____D C:\Users\Camilla\AppData\Local\{C1D2CE41-0AB2-44B2-9A42-63950E687E02}
2012-01-30 12:24 - 2012-01-30 12:24 - 0143245 ____A C:\Users\Camilla\Desktop\Opvisningsplan Vedersø idrætsefterskole 11-12.pdf
2012-01-30 10:18 - 2012-01-30 10:18 - 0000000 ____D C:\Users\Camilla\AppData\Local\{6F2B9FA3-E2FC-4BE6-A4B3-7A02CA90CFC0}
2012-01-30 04:04 - 2012-01-30 04:04 - 0000162 ___AH C:\Users\Camilla\Downloads\~$rminsprøver - retningsregler elever.doc
2012-01-29 22:18 - 2012-01-29 22:18 - 0000000 ____D C:\Users\Camilla\AppData\Local\{5CC5CFA4-EAFD-477E-9C9B-EEF33A52C396}
2012-01-29 09:48 - 2012-01-29 09:48 - 0000000 ____D C:\Users\Camilla\AppData\Local\{95615CA4-EA01-498F-A902-31E889629697}
2012-01-27 02:23 - 2012-01-27 02:23 - 0061318 ____A C:\Users\Camilla\Desktop\udenadslaere.docx
2012-01-27 02:23 - 2012-01-27 02:23 - 0000162 ___AH C:\Users\Camilla\Desktop\~$enadslaere.docx
2012-01-27 01:25 - 2012-01-27 01:25 - 0000000 ____D C:\Users\Camilla\AppData\Local\{8ECCC14A-4380-4FB6-A95B-656D54C612BC}
2012-01-27 01:23 - 2012-01-27 01:23 - 0133833 ____A C:\Users\Camilla\Desktop\hvilken genre vil du skrive i.docx
2012-01-27 01:23 - 2012-01-27 01:23 - 0000162 ___AH C:\Users\Camilla\Desktop\~$ilken genre vil du skrive i.docx
2012-01-27 01:15 - 2012-01-27 01:15 - 0000162 ___AH C:\Users\Camilla\Desktop\~$leverings skabelon fsa dansk.doc
2012-01-27 01:08 - 2012-01-27 01:08 - 9246011 ____A C:\Users\Camilla\Desktop\fsa dec 2010 dansk skriftlig fremstilling.pdf
2012-01-26 13:24 - 2012-01-26 13:24 - 0000000 ____D C:\Users\Camilla\AppData\Local\{F39F53ED-3226-4CCE-8673-3F82682A5F36}
2012-01-26 02:08 - 2011-05-06 09:06 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2012-01-26 02:08 - 2009-07-13 19:20 - 0000000 ____D C:\Windows\Help
2012-01-26 02:06 - 2012-01-26 02:06 - 0002179 ____A C:\Users\Public\Desktop\HP Support Assistant.lnk
2012-01-26 02:04 - 2012-01-26 02:04 - 0000000 ____D C:\Users\All Users\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E}
2012-01-26 02:04 - 2012-01-26 02:04 - 0000000 ____D C:\ProgramData\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E}
2012-01-26 00:51 - 2012-01-26 00:51 - 0000162 ___AH C:\Users\Camilla\Downloads\~$sikaflevering - rettet.docx
2012-01-25 23:00 - 2012-01-25 23:00 - 0000000 ____D C:\Users\Camilla\AppData\Local\{36AAE81C-A745-4DB6-820F-FA3F83958C17}
2012-01-25 11:00 - 2012-01-25 10:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{0F0ADB2A-3B54-4800-BD7D-7603F93E778F}
2012-01-25 02:21 - 2012-01-25 02:21 - 0064577 ____H C:\Users\Camilla\Downloads\~WRL0955.tmp
2012-01-24 22:59 - 2012-01-24 22:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{EF428462-6EE2-41C4-B1A8-7181771529B8}
2012-01-24 22:38 - 2012-03-14 01:05 - 0149504 ____A (Microsoft Corporation) C:\Windows\System32\rdpcorekmts.dll
2012-01-24 22:38 - 2012-03-14 01:05 - 0077312 ____A (Microsoft Corporation) C:\Windows\System32\rdpwsx.dll
2012-01-24 22:33 - 2012-03-14 01:05 - 0009216 ____A (Microsoft Corporation) C:\Windows\System32\rdrmemptylst.exe
2012-01-24 10:59 - 2012-01-24 10:59 - 0000000 ____D C:\Users\Camilla\AppData\Local\{D309ABC5-25F1-44E0-A97A-DFC7F5245216}
2012-01-24 02:07 - 2012-01-24 02:07 - 0000162 ___AH C:\Users\Camilla\Downloads\~$dioaktiv stråling.docx
2012-01-23 22:58 - 2012-01-23 22:58 - 0000000 ____D C:\Users\Camilla\AppData\Local\{A97748CE-D0CF-45C0-8DCC-2B390B2479CA}
2012-01-23 06:04 - 2012-01-23 06:03 - 0000000 ____D C:\Users\Camilla\AppData\Local\{AC89E985-8801-4940-86FD-0F18BA5CE996}
2012-01-23 06:00 - 2012-01-23 06:00 - 0000000 ____D C:\found.000
2012-01-22 12:57 - 2012-01-22 12:57 - 0000000 ____D C:\Users\Camilla\AppData\Local\{9DC22505-B3B3-4C7D-A20F-BF6F7FE25FFA}
2012-01-22 12:57 - 2012-01-13 00:44 - 0000000 ____D C:\Users\Camilla\AppData\Local\{5A3A2D7F-DEE7-4602-A8E9-832CE52EEE49}
2012-01-22 00:56 - 2012-01-22 00:56 - 0000000 ____D C:\Users\Camilla\AppData\Local\{0CBAF374-9752-4E18-90D1-9B9693EA4063}

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 18%
Total physical RAM: 4043.86 MB
Available physical RAM: 3290.91 MB
Total Pagefile: 4042.01 MB
Available Pagefile: 3279.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:681.29 GB) (Free:620.43 GB) NTFS ==>[System with boot components (obtained from reading drive)]
2 Drive e: (RECOVERY) (Fixed) (Total:17.05 GB) (Free:1.8 GB) NTFS ==>[System with boot components (obtained from reading drive)]
3 Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32
5 Drive h: (Ny enhed) (Removable) (Total:0.98 GB) (Free:0.94 GB) NTFS
6 Drive x: (Boot) (Fixed) (Total:0.25 GB) (Free:0.25 GB) NTFS
7 Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS ==>[System with boot components (obtained from reading drive)]

  Disk ###  Status        Str.    Ledig    Dyn  GPT
  --------  -------------  -------  -------  ---  ---
  Disk 0    Online          698 GB      0 B       
  Disk 1    Online          999 MB      0 B       

Afslutter DiskPart...

Partitions of Disk 0:
===============

Disken 0 er nu den valgte disk.

  Partition ###  Type              Str.    Forskydning
  -------------  ----------------  -------  -----------
  Partition 1    Prim‘r            199 MB  1024 KB   
  Partition 2    Prim‘r            681 GB  200 MB   
  Partition 3    Prim‘r              17 GB  681 GB   
  Partition 4    Prim‘r            102 MB  698 GB   

Afslutter DiskPart...

======================================================================================================

Disk: 0
Disken 0 er nu den valgte disk.

Partition 1 er nu den valgte partition.

Partition 1
Type  : 07
Skjult: Nej
Aktiv : Ja
Forskydning i byte: 1048576

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 1    Y  SYSTEM      NTFS  Partition    199 MB  I orden           

Afslutter DiskPart...

======================================================================================================

Disk: 0
Disken 0 er nu den valgte disk.

Partition 2 er nu den valgte partition.

Partition 2
Type  : 07
Skjult: Nej
Aktiv : Nej
Forskydning i byte: 209715200

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 2    C                NTFS  Partition    681 GB  I orden           

Afslutter DiskPart...

======================================================================================================

Disk: 0
Disken 0 er nu den valgte disk.

Partition 3 er nu den valgte partition.

Partition 3
Type  : 07
Skjult: Nej
Aktiv : Nej
Forskydning i byte: 731743518720

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 3    E  RECOVERY    NTFS  Partition    17 GB  I orden           

Afslutter DiskPart...

=======================================================================================
Avatar billede gate62 Nybegynder
15. april 2012 - 17:02 #33
Partition 3
Type  : 07
Skjult: Nej
Aktiv : Nej
Forskydning i byte: 731743518720

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 3    E  RECOVERY    NTFS  Partition    17 GB  I orden           

Afslutter DiskPart...

======================================================================================================

Disk: 0
Disken 0 er nu den valgte disk.

Partition 4 er nu den valgte partition.

Partition 4
Type  : 0C
Skjult: Nej
Aktiv : Nej
Forskydning i byte: 750047461376

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 4    F  HP_TOOLS    FAT32  Partition    102 MB  I orden           

Afslutter DiskPart...

======================================================================================================

Partitions of Disk 1:
===============

Disken 1 er nu den valgte disk.

  Partition ###  Type              Str.    Forskydning
  -------------  ----------------  -------  -----------
  Partition 1    Prim‘r            999 MB    31 KB   

Afslutter DiskPart...

======================================================================================================

Disk: 1
Disken 1 er nu den valgte disk.

Partition 1 er nu den valgte partition.

Partition 1
Type  : 07
Skjult: Nej
Aktiv : Ja
Forskydning i byte: 32256

  Diskenhed  Bogs. Navn        Fs    Type        Str.    Status    Oplysn.
  ---------  ----  ----------  -----  ----------  -------  ---------  --------
* Diskenhed 5    H  Ny enhed    NTFS  Flytbar      999 MB  I orden           

Afslutter DiskPart...

======================================================================================================

==========================================================

Last Boot: 2012-03-12 08:52

======================= End Of Log ==========================
Avatar billede f-arn Guru
15. april 2012 - 19:05 #34
Hent MBRFix herfra:
http://www.sysint.no/products/Download/tabid/536/language/en-US/Default.aspx

Pak den ud i en mappe på Skrivebordet.

Kopier MBRFix64.exe ned på USB nøglen.

Start notesblok, og kopier nedenstående ind

Start
cmd: H:\MbrFix64 /drive 0 savembr H:\MBRDUMP.txt
End

Gem filen som Fixlist.txt på USB nøglen.

Start PCen op med Kommando prompt.

Ved Kommando prompten starter du FRST (Farbar Recovery Scan Tool) og klikker på FIX (og venter til den er færdig)

Den laver Fixlog.txt, som du skal kopiere herind i dit næste indlæg.

Luk Farbar Recovery Scan Tool.

Den laver også MBRDUMP.txt, som du skal oploade et sted, da det er en hex fil.
Avatar billede gate62 Nybegynder
15. april 2012 - 19:50 #35
Hej f-arn

Jeg må beklage at der vil blive en pause i tråden, da niecen og pc'n er taget på efterskolen.
men jeg vil følge dine anvisninger så snart muligheden foreligger, det bliver nok først kommende weekend.
Håber at din tålmodighed ikke er helt opbrugt.

jeg har så lige et par spørgsmål.
1. Du skriver at jeg skal starte fra kommand prompt, er det inde i windows eller er det stadig boot fra usb nøgle ligesom sidste gang?
2. Undskyld min nysgerrighed, men finder vi noget snavs, og hvad er det vi leder efter?

Venlig hilsen Gate62
Avatar billede f-arn Guru
15. april 2012 - 20:00 #36
1.
Det er Boot som sidste gang.

2.
Jeg har ikke set snavs siden DDS loggen (ComboFix fjernede det), men jeg vil gerne se hvad der ligger i den MBR.
Avatar billede gate62 Nybegynder
15. april 2012 - 20:14 #37
okay
tak for det
Avatar billede f-arn Guru
22. april 2012 - 22:49 #38
Har du opgivet, eller kan du bare "ikke komme til" ?
Avatar billede gate62 Nybegynder
23. april 2012 - 17:51 #39
Hej f-arn
Nej jeg har ikke opgivet, men jeg har ikke kunne få fat i computeren i weekenden ,det er jo noget af det sidste de vil undvære de unge mennesker, så jeg er lidt usikker på hvornår jeg lige kan "komme til" den igen. Så hvis du synes det er tilrådigt  at vi fortsætter , gør vi det,  ellers må du lige smide et svar
Avatar billede f-arn Guru
23. april 2012 - 20:13 #40
Hvis din niece bruger PCen uden problemer, siger min erfaring mig, at ComboFix fjernede det der var.

Ellers ville det ha' vist sig igen.

Dette bør dog gøres ->

Slet mappen C:\FRST

Derefter ->

Tast  <Windows> + <R> samtidig og kopier dette ind: combofix /uninstall
Tryk enter
Det vil fjerne Combofix og nulstille urets indstillinger.
Nulstille Systemgendannelsen.
Skjule filtypenavne hvis det kræves.
Skjule System/skjulte filer hvis det kræves.

Ønsk din niece, god fornøjelse med sin PC :-)
Avatar billede gate62 Nybegynder
24. april 2012 - 17:43 #41
Hej
Jeg siger tusind tak for supporten
Ja pc'n har kørt på fuld tryk uden problemer, så det var nok fjernet, men jeg skal lige snige mig til at få det sidste ordnet
Venlig hilsen
Gate62
Avatar billede Ny bruger Nybegynder

Din løsning...

Tilladte BB-code-tags: [b]fed[/b] [i]kursiv[/i] [u]understreget[/u] Web- og emailadresser omdannes automatisk til links. Der sættes "nofollow" på alle links.

Loading billede Opret Preview
Kategori
Se alle it-kurser fra Computerworld Kurser
IT-kurser om Microsoft 365, sikkerhed, personlig vækst, udvikling, digital markedsføring, grafisk design, SAP og forretningsanalyse.
Se alle it-kurser

Flere spørgsmål fra Virus kategorien

Titel Indlæg Oprettet Seneste aktivitet
Findes der mon et Antivirus program, som ikke, konstant, reklamerer, for at købe ? Af Ikke-ekspert i Virus 21 22/06/202419:22 23/06/202412:54
Anbefaling af antivirusprogram med firewall Af OnePlusFan i Virus 23 07/05/202421:02 13/05/202419:48
trusler Af gerhardpet i Virus 4 26/01/202410:02 27/01/202408:32
Kan ikke fjerne virus Af mik28 i Virus 16 09/01/202416:37 10/01/202419:59
virusscanning Af JetteD i Virus 2 10/11/202312:55 10/11/202316:36
Se alle spørgsmål i kategorien Opret spørgsmål

Log ind eller opret profil

Hov!

For at kunne deltage på Computerworld Eksperten skal du være logget ind.

Det er heldigvis nemt at oprette en bruger: Det tager to minutter og du kan vælge at bruge enten e-mail, Facebook eller Google som login.

Opret Log ind

Du kan også logge ind via nedenstående tjenester



Alle kategorier på Eksperten
Seneste spørgsmål Seneste aktivitet
46 min siden Kan det passe ;-) Af fjorbak i Routere & Switches
I dag 15:27 Billeder kan ikke åbnes Jpeg.modd Af KristinaS i Billedbehandling
I dag 13:44 eM Client Af valby i E-mail programmer
I dag 13:33 Facebook gruppe Af Btimmer i Sociale medier
I dag 13:03 Betinget formatering Af Ninna i Excel
White papers
Flere white papers »


Premium
Teaser billede
Det er blevet kaldt ”det største it-nedbrud i historien” og omkostningerne kan nemt løbe op i syv milliarder kroner: Men hvem skal betale for Crowdstrikes fejl?
Læs mere »
Europas største software-leverandør stryger frem på cloud-fronten – men 97 procent af overskuddet er forduftet
Frustrerede synshaller og billister: Motorstyrelsens it-system plages af store driftsforstyrrelser
Fire år gamle Wiz takker nej til Alphabets historiske opkøbstilbud på 160 milliarder kroner: Satser i stedet på børsnotering
Se alle »
Computerworld
Teaser billede
Microsoft-nedbrud spreder sig: It-systemer i lufthavne verden over er ramt
Læs mere »
Test: Denne mikro-pc er smartere end de stærkeste desktop-maskiner - men flopper alligevel
Hundredevis af flyafgange ramt af stort Microsoft-nedbrud
Elon Musk dropper CrowdStrike efter kæmpe nedbrud
Se alle »
CIO
Teaser billede
Microsoft er på sagen: I gang med at løse kæmpe nedbrud efter katastrofal Crowdstrike-fejl
Læs mere »
Så mange Microsoft-enheder blev ramt af gigantisk Crowdstrike-koks
Peter Lüth udlever CTO-drømmen: Bygger et system fra bunden og tjener kassen på det
Sådan forbereder energiselskabet OK sig på cyberangreb: "Prisen for ikke at gøre noget kan være forfærdeligt høj"
Se alle »
Job & Karriere
Teaser billede
Efter 12 år er NNIT's hovedkvarter i Søborg nu ryddet og tomt - alle arbejder hjemme: "Det er med et vist vemod"
Læs mere »
Norlys skal splittes op i fem selskaber: Nu bliver flere ansatte og ledere fyret
Dansk top-profil trækker sig fra Microsoft: Skal være direktør i TDC Erhverv
KMD-direktør forlader selskabet: Det skal hun nu
Se alle »
White paper
Teaser billede
Sæt turbo på din cloudperformance og minimér risikoen for DDoS-angreb
Læs mere »
Få mere ud af din cloudinfrastruktur og gør op med de konstant stigende omkostninger
SASE: Træf det rette valg – første gang
Sådan: Sikker, hurtig og fleksibel storage til dine kritiske data
Se alle »

Events
Flere events »
White papers
Flere white papers »
IT-Kurser
Se alle vores it-kurser »