Vista problem

29 juni, 2011

jag har en fråga till skulle det hjälpa mig mot virus om jag bytte operativ till linux ?

jag har hört att det att det inte finns lika många virus mot linux

Det är riktigt att det finns färre skadliga program till Linux och visst kan du byta om det finns Linux-program för det du vill göra vid datorn. Det finns t ex få avancerade datorspel till Linux.

29 juni, 2011

jag använder endast mediaplayer , word, powerpoint , dessutom spelar jag inte på denna dator , utan har en stationär för det ändamålet.

29 juni, 2011

Microsoft Office finns inte till någon Linux-distribution utan då är det något annat kontorsprogram som gäller. Du kan t ex pröva om Libre Office uppfyller dina krav och det finns till både Windows och olika Linux-distributioner.

29 juni, 2011

========== OTL ==========

C:\Program\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults\preferences folder moved successfully.

C:\Program\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\defaults folder moved successfully.

C:\Program\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897}\chrome folder moved successfully.

C:\Program\Mozilla Firefox\extensions\{DFF722C4-4A11-41A7-9939-C83A06B09897} folder moved successfully.

Folder C:\Program\Mozilla [2009-03-13 11:39:56 | 000,002,494 | ---- | M] () -- C:\Program\Mozilla Firefox\searchplugins\searchme.xml\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F}\ deleted successfully.

Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\msnmsgr deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{76577871-04EC-495E-A12B-91F7C3600AFA}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{76577871-04EC-495E-A12B-91F7C3600AFA}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{8A918C1D-E123-4E36-B562-5C1519E434CE}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8A918C1D-E123-4E36-B562-5C1519E434CE}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11dd2bba-6521-11e0-aac6-c438962b6021}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11dd2bba-6521-11e0-aac6-c438962b6021}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{11dd2bba-6521-11e0-aac6-c438962b6021}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11dd2bba-6521-11e0-aac6-c438962b6021}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b641605-7015-11e0-b317-a1efb32e83e8}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b641605-7015-11e0-b317-a1efb32e83e8}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b641605-7015-11e0-b317-a1efb32e83e8}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b641605-7015-11e0-b317-a1efb32e83e8}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{811a4b1e-7262-11e0-acbf-9f7586fd762a}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{811a4b1e-7262-11e0-acbf-9f7586fd762a}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{811a4b1e-7262-11e0-acbf-9f7586fd762a}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{811a4b1e-7262-11e0-acbf-9f7586fd762a}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{899a2c82-73e8-11e0-8736-bad452835d92}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{899a2c82-73e8-11e0-8736-bad452835d92}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{899a2c82-73e8-11e0-8736-bad452835d92}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{899a2c82-73e8-11e0-8736-bad452835d92}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{910567b6-66b9-11e0-acfb-8f61afb21597}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{910567b6-66b9-11e0-acfb-8f61afb21597}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{910567b6-66b9-11e0-acfb-8f61afb21597}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{910567b6-66b9-11e0-acfb-8f61afb21597}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d7f08c96-6f0b-11e0-b184-97620d648ae6}\ deleted successfully.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d7f08c96-6f0b-11e0-b184-97620d648ae6}\ not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d7f08c96-6f0b-11e0-b184-97620d648ae6}\ not found.

Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d7f08c96-6f0b-11e0-b184-97620d648ae6}\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\ deleted successfully.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\D\ not found.

File D:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ deleted successfully.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ not found.

File G:\AutoRun.exe not found.

Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\H\ deleted successfully.

========== COMMANDS ==========

OTL by OldTimer - Version 3.2.24.1 log created on 06292011_143109

29 juni, 2011

det var det första av dina alternativ som hände loggen är nedan:

GMER 1.0.15.15640 - http://www.gmer.net

Rootkit quick scan 2011-06-29 15:03:00

Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 Hitachi_ rev.FB4O

Running: 5dp6km0y.exe; Driver: C:\Users\Robin\AppData\Local\Temp\pxlyipog.sys

---- System - GMER 1.0.15 ----

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0x8FA27902]

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)

AttachedDevice \Driver\tdx \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

AttachedDevice \Driver\tdx \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)

AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)

---- Services - GMER 1.0.15 ----

Service C:\Program (*** hidden *** ) [AUTO] gupdate1ca12b6782c6c05 <-- ROOTKIT !!!

Service C:\Program (*** hidden *** ) [MANUAL] gupdatem <-- ROOTKIT !!!

---- EOF - GMER 1.0.15 ----

ps . ska jag sluta använda denna dator medans jag rensar?

29 juni, 2011

Det är bäst att använda en infekterad dator så lite som möjligt och hålla internetanslutningen urdragen förutom när det är nödvändigt att komma åt internet.

1.

Spara TDSSKiller på Skrivbordet:

http://support.kaspersky.com/downloads/utils/tdsskiller.zip

Högerklicka och välj Extrahera alla. Kom ihåg var du packar upp filen.

Stäng av dina vanliga program, men du kan lämna antivirusprogram och liknande igång.

Kör programmet TDSSKiller.exe som finns i mappen där du packade upp filerna.

Klicka på Start Scan.

Om några hot hittas så välj Cure och klicka på Continue. Om inte Cure finns så välj Skip. Välj INTE Quarantine eller Delete. Eventuellt behöver datorn startas om.

Klistra in innehållet i loggen som du hittar i C:\ med namnet TDSSKiller följt av version och tidpunkt.

Starta om datorn.

2.

Spara Rootkit Unhooker på skrivbordet.

http://www.kernelmode.info/ARKs/RkU3.8.388.590.rar

Packa upp programmet. Om du inte har något uppackningsprogram för rar-filer kan du hämta 7-zip. http://www.7-zip.org/

Dra ut internetanslutningen. Stäng av alla program du ser inklusive brandvägg, antivirusprogram och antispionprogram.

Dubbelklicka på Rootkit Unhooker för att starta det (i Vista och Windows 7 högerklicka och välj Kör som administratör).

Välj fliken Report och klicka på Scan

Bocka för Drivers, Stealth, Files och Code Hooks, men avbocka de andra valen.

Tryck på OK

Vänta tills skannern är klar och då väljer du File - Save Report. Spara rapporten på Skrivbordet eller på något annat ställe där du hittar igen den. Klicka på Close

Öppna den sparade rapporten i Anteckningar. Klistra in innehållet i ditt svar.

Observera att om det kommer upp en varning "Rootkit Unhooker has detected a parasite..." så ignorera den bara.

Starta om datorn.

3.

Spara MBRCheck.exe av a_d_13 på Skrivbordet.

Kör programmet.

Vänta tills programmet är klart eller till texten "Enter 'Y' and hit ENTER for more options, or 'N' to exit:" visas. I det senare fallet tryck på N följt av Enter.

När det är klart skapas en loggfil på Skrivbordet som heter MBRCheckxxxxxx.txt där xxxxxx är klockslaget för körningen. Öppna loggen i Anteckningar genom att dubbelklicka på loggen och klistra in innehållet i ditt svar.

29 juni, 2011

2011/06/29 16:36:25.0295 1576 TDSS rootkit removing tool 2.5.8.0 Jun 28 2011 19:12:16

2011/06/29 16:36:25.0467 1576 ================================================================================

2011/06/29 16:36:25.0467 1576 SystemInfo:

2011/06/29 16:36:25.0467 1576

2011/06/29 16:36:25.0467 1576 OS Version: 6.0.6001 ServicePack: 1.0

2011/06/29 16:36:25.0467 1576 Product type: Workstation

2011/06/29 16:36:25.0467 1576 ComputerName: ROBINS-DATOR

2011/06/29 16:36:25.0467 1576 UserName: Robin

2011/06/29 16:36:25.0467 1576 Windows directory: C:\Windows

2011/06/29 16:36:25.0467 1576 System windows directory: C:\Windows

2011/06/29 16:36:25.0467 1576 Processor architecture: Intel x86

2011/06/29 16:36:25.0467 1576 Number of processors: 2

2011/06/29 16:36:25.0467 1576 Page size: 0x1000

2011/06/29 16:36:25.0467 1576 Boot type: Normal boot

2011/06/29 16:36:25.0467 1576 ================================================================================

2011/06/29 16:36:26.0013 1576 Initialize success

2011/06/29 16:36:43.0594 3044 ================================================================================

2011/06/29 16:36:43.0594 3044 Scan started

2011/06/29 16:36:43.0594 3044 Mode: Manual;

2011/06/29 16:36:43.0594 3044 ================================================================================

2011/06/29 16:36:44.0187 3044 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys

2011/06/29 16:36:44.0265 3044 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

2011/06/29 16:36:44.0359 3044 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

2011/06/29 16:36:44.0452 3044 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

2011/06/29 16:36:44.0515 3044 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

2011/06/29 16:36:44.0671 3044 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys

2011/06/29 16:36:44.0842 3044 AgereSoftModem (5d97943c128ed756d1b0a08302c1b1f8) C:\Windows\system32\DRIVERS\AGRSM.sys

2011/06/29 16:36:44.0983 3044 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

2011/06/29 16:36:45.0029 3044 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

2011/06/29 16:36:45.0092 3044 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

2011/06/29 16:36:45.0217 3044 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

2011/06/29 16:36:45.0263 3044 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

2011/06/29 16:36:45.0341 3044 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

2011/06/29 16:36:45.0435 3044 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

2011/06/29 16:36:45.0497 3044 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

2011/06/29 16:36:45.0607 3044 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

2011/06/29 16:36:45.0700 3044 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\Windows\system32\drivers\aswFsBlk.sys

2011/06/29 16:36:45.0809 3044 aswMonFlt (9bdc8e9ce17b773f69d2c6696c768c4f) C:\Windows\system32\drivers\aswMonFlt.sys

2011/06/29 16:36:45.0887 3044 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\Windows\system32\drivers\aswRdr.sys

2011/06/29 16:36:45.0997 3044 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\Windows\system32\drivers\aswSnx.sys

2011/06/29 16:36:46.0090 3044 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\Windows\system32\drivers\aswSP.sys

2011/06/29 16:36:46.0168 3044 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\Windows\system32\drivers\aswTdi.sys

2011/06/29 16:36:46.0246 3044 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

2011/06/29 16:36:46.0324 3044 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys

2011/06/29 16:36:46.0480 3044 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

2011/06/29 16:36:46.0558 3044 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

2011/06/29 16:36:46.0605 3044 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys

2011/06/29 16:36:46.0714 3044 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

2011/06/29 16:36:46.0761 3044 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

2011/06/29 16:36:46.0823 3044 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

2011/06/29 16:36:46.0917 3044 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

2011/06/29 16:36:46.0964 3044 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

2011/06/29 16:36:46.0979 3044 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

2011/06/29 16:36:47.0057 3044 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

2011/06/29 16:36:47.0151 3044 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

2011/06/29 16:36:47.0213 3044 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys

2011/06/29 16:36:47.0323 3044 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

2011/06/29 16:36:47.0369 3044 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys

2011/06/29 16:36:47.0525 3044 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

2011/06/29 16:36:47.0557 3044 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

2011/06/29 16:36:47.0588 3044 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

2011/06/29 16:36:47.0728 3044 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

2011/06/29 16:36:47.0759 3044 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

2011/06/29 16:36:47.0931 3044 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys

2011/06/29 16:36:48.0087 3044 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys

2011/06/29 16:36:48.0165 3044 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

2011/06/29 16:36:48.0274 3044 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys

2011/06/29 16:36:48.0383 3044 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

2011/06/29 16:36:48.0461 3044 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys

2011/06/29 16:36:48.0602 3044 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

2011/06/29 16:36:48.0758 3044 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

2011/06/29 16:36:48.0836 3044 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys

2011/06/29 16:36:48.0883 3044 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys

2011/06/29 16:36:49.0007 3044 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

2011/06/29 16:36:49.0054 3044 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

2011/06/29 16:36:49.0101 3044 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

2011/06/29 16:36:49.0132 3044 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

2011/06/29 16:36:49.0226 3044 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys

2011/06/29 16:36:49.0273 3044 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

2011/06/29 16:36:49.0351 3044 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys

2011/06/29 16:36:49.0444 3044 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

2011/06/29 16:36:49.0616 3044 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

2011/06/29 16:36:49.0663 3044 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys

2011/06/29 16:36:49.0756 3044 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

2011/06/29 16:36:49.0787 3044 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

2011/06/29 16:36:49.0850 3044 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys

2011/06/29 16:36:49.0943 3044 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

2011/06/29 16:36:50.0021 3044 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS

2011/06/29 16:36:50.0146 3044 HSF_DPV (cc267848cb3508e72762be65734e764d) C:\Windows\system32\DRIVERS\HSX_DPV.sys

2011/06/29 16:36:50.0287 3044 HSXHWAZL (a2882945cc4b6e3e4e9e825590438888) C:\Windows\system32\DRIVERS\HSXHWAZL.sys

2011/06/29 16:36:50.0365 3044 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys

2011/06/29 16:36:50.0505 3044 hwdatacard (92ca47da32009ccc00a5aded04abbd78) C:\Windows\system32\DRIVERS\ewusbmdm.sys

2011/06/29 16:36:50.0567 3044 hwusbfake (1d4d6d24256f61e6b08a3cf8184a78b8) C:\Windows\system32\DRIVERS\ewusbfake.sys

2011/06/29 16:36:50.0661 3044 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

2011/06/29 16:36:50.0755 3044 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

2011/06/29 16:36:50.0833 3044 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys

2011/06/29 16:36:50.0895 3044 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

2011/06/29 16:36:51.0098 3044 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys

2011/06/29 16:36:51.0238 3044 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

2011/06/29 16:36:51.0394 3044 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys

2011/06/29 16:36:51.0503 3044 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

2011/06/29 16:36:51.0535 3044 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

2011/06/29 16:36:51.0613 3044 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

2011/06/29 16:36:51.0753 3044 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

2011/06/29 16:36:51.0784 3044 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

2011/06/29 16:36:51.0847 3044 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

2011/06/29 16:36:51.0925 3044 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

2011/06/29 16:36:51.0987 3044 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys

2011/06/29 16:36:52.0034 3044 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

2011/06/29 16:36:52.0112 3044 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

2011/06/29 16:36:52.0159 3044 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

2011/06/29 16:36:52.0190 3044 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

2011/06/29 16:36:52.0268 3044 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys

2011/06/29 16:36:52.0393 3044 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

2011/06/29 16:36:52.0455 3044 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

2011/06/29 16:36:52.0502 3044 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

2011/06/29 16:36:52.0533 3044 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

2011/06/29 16:36:52.0627 3044 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

2011/06/29 16:36:52.0689 3044 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys

2011/06/29 16:36:52.0783 3044 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

2011/06/29 16:36:52.0861 3044 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

2011/06/29 16:36:52.0970 3044 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

2011/06/29 16:36:53.0048 3044 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

2011/06/29 16:36:53.0079 3044 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

2011/06/29 16:36:53.0110 3044 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

2011/06/29 16:36:53.0141 3044 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

2011/06/29 16:36:53.0251 3044 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

2011/06/29 16:36:53.0329 3044 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

2011/06/29 16:36:53.0438 3044 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

2011/06/29 16:36:53.0485 3044 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys

2011/06/29 16:36:53.0547 3044 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys

2011/06/29 16:36:53.0625 3044 mrxsmb10 (cf6e972f8e0d0f2970360a17572b366b) C:\Windows\system32\DRIVERS\mrxsmb10.sys

2011/06/29 16:36:53.0703 3044 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys

2011/06/29 16:36:53.0765 3044 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys

2011/06/29 16:36:53.0828 3044 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

2011/06/29 16:36:53.0921 3044 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

2011/06/29 16:36:53.0968 3044 msisadrv (1e00b9b8601f24a96ad71a7d0fc5f136) C:\Windows\system32\drivers\msisadrv.sys

2011/06/29 16:36:54.0062 3044 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

2011/06/29 16:36:54.0171 3044 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

2011/06/29 16:36:54.0233 3044 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

2011/06/29 16:36:54.0311 3044 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys

2011/06/29 16:36:54.0374 3044 mssmbios (215634cf935b696e3ebca813d02e9165) C:\Windows\system32\DRIVERS\mssmbios.sys

2011/06/29 16:36:54.0467 3044 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

2011/06/29 16:36:54.0514 3044 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys

2011/06/29 16:36:54.0608 3044 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys

2011/06/29 16:36:54.0701 3044 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys

2011/06/29 16:36:54.0826 3044 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

2011/06/29 16:36:54.0857 3044 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

2011/06/29 16:36:54.0904 3044 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys

2011/06/29 16:36:54.0998 3044 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

2011/06/29 16:36:55.0076 3044 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

2011/06/29 16:36:55.0123 3044 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys

2011/06/29 16:36:55.0279 3044 netr73 (91d44aa2a61006136da32118a179bf12) C:\Windows\system32\DRIVERS\netr73.sys

2011/06/29 16:36:55.0403 3044 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

2011/06/29 16:36:55.0450 3044 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys

2011/06/29 16:36:55.0481 3044 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

2011/06/29 16:36:55.0559 3044 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys

2011/06/29 16:36:55.0653 3044 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

2011/06/29 16:36:55.0684 3044 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

2011/06/29 16:36:55.0731 3044 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

2011/06/29 16:36:55.0778 3044 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

2011/06/29 16:36:55.0840 3044 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

2011/06/29 16:36:55.0996 3044 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys

2011/06/29 16:36:56.0152 3044 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

2011/06/29 16:36:56.0199 3044 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys

2011/06/29 16:36:56.0261 3044 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

2011/06/29 16:36:56.0324 3044 pci (eca39351296d905baa4fa3244c152b00) C:\Windows\system32\drivers\pci.sys

2011/06/29 16:36:56.0386 3044 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys

2011/06/29 16:36:56.0433 3044 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

2011/06/29 16:36:56.0542 3044 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

2011/06/29 16:36:56.0745 3044 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

2011/06/29 16:36:56.0792 3044 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

2011/06/29 16:36:56.0870 3044 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys

2011/06/29 16:36:57.0010 3044 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

2011/06/29 16:36:57.0119 3044 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

2011/06/29 16:36:57.0166 3044 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

2011/06/29 16:36:57.0213 3044 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

2011/06/29 16:36:57.0307 3044 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

2011/06/29 16:36:57.0353 3044 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys

2011/06/29 16:36:57.0385 3044 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys

2011/06/29 16:36:57.0431 3044 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys

2011/06/29 16:36:57.0525 3044 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

2011/06/29 16:36:57.0572 3044 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

2011/06/29 16:36:57.0681 3044 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

2011/06/29 16:36:57.0728 3044 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys

2011/06/29 16:36:57.0821 3044 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

2011/06/29 16:36:57.0931 3044 RTL8169 (7157e70a90cce49deb8885d23a073a39) C:\Windows\system32\DRIVERS\Rtlh86.sys

2011/06/29 16:36:57.0993 3044 RTL8187B (b71d269b9ab5417963e986126c12b9fc) C:\Windows\system32\DRIVERS\RTL8187B.sys

2011/06/29 16:36:58.0102 3044 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys

2011/06/29 16:36:58.0165 3044 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS

2011/06/29 16:36:58.0211 3044 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

2011/06/29 16:36:58.0336 3044 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

2011/06/29 16:36:58.0383 3044 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

2011/06/29 16:36:58.0430 3044 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

2011/06/29 16:36:58.0477 3044 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

2011/06/29 16:36:58.0601 3044 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys

2011/06/29 16:36:58.0633 3044 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

2011/06/29 16:36:58.0679 3044 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys

2011/06/29 16:36:58.0711 3044 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

2011/06/29 16:36:58.0820 3044 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

2011/06/29 16:36:58.0867 3044 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

2011/06/29 16:36:58.0898 3044 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

2011/06/29 16:36:58.0976 3044 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys

2011/06/29 16:36:59.0116 3044 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

2011/06/29 16:36:59.0179 3044 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys

2011/06/29 16:36:59.0257 3044 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys

2011/06/29 16:36:59.0335 3044 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys

2011/06/29 16:36:59.0444 3044 swenum (97e089971a6aba49ad5592bd6298e416) C:\Windows\system32\DRIVERS\swenum.sys

2011/06/29 16:36:59.0522 3044 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

2011/06/29 16:36:59.0584 3044 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

2011/06/29 16:36:59.0615 3044 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

2011/06/29 16:36:59.0678 3044 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys

2011/06/29 16:36:59.0818 3044 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys

2011/06/29 16:36:59.0943 3044 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys

2011/06/29 16:37:00.0052 3044 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys

2011/06/29 16:37:00.0115 3044 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys

2011/06/29 16:37:00.0208 3044 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

2011/06/29 16:37:00.0255 3044 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

2011/06/29 16:37:00.0302 3044 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys

2011/06/29 16:37:00.0349 3044 TermDD (718b2f4355cd8eb2844741addac0e622) C:\Windows\system32\DRIVERS\termdd.sys

2011/06/29 16:37:00.0520 3044 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys

2011/06/29 16:37:00.0598 3044 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

2011/06/29 16:37:00.0707 3044 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

2011/06/29 16:37:00.0754 3044 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys

2011/06/29 16:37:00.0817 3044 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS

2011/06/29 16:37:00.0895 3044 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

2011/06/29 16:37:00.0957 3044 udfs (c985b36e127ea9b8a92396120bff52d8) C:\Windows\system32\DRIVERS\udfs.sys

2011/06/29 16:37:01.0035 3044 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

2011/06/29 16:37:01.0066 3044 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

2011/06/29 16:37:01.0175 3044 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

2011/06/29 16:37:01.0222 3044 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

2011/06/29 16:37:01.0269 3044 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

2011/06/29 16:37:01.0331 3044 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

2011/06/29 16:37:01.0425 3044 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

2011/06/29 16:37:01.0472 3044 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys

2011/06/29 16:37:01.0519 3044 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys

2011/06/29 16:37:01.0612 3044 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

2011/06/29 16:37:01.0659 3044 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys

2011/06/29 16:37:01.0690 3044 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS

2011/06/29 16:37:01.0721 3044 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

2011/06/29 16:37:01.0846 3044 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

2011/06/29 16:37:01.0924 3044 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS

2011/06/29 16:37:02.0033 3044 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

2011/06/29 16:37:02.0065 3044 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

2011/06/29 16:37:02.0111 3044 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

2011/06/29 16:37:02.0174 3044 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

2011/06/29 16:37:02.0205 3044 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

2011/06/29 16:37:02.0299 3044 volmgr (bdd98bbe7323fc0975a26373d8050471) C:\Windows\system32\drivers\volmgr.sys

2011/06/29 16:37:02.0345 3044 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys

2011/06/29 16:37:02.0455 3044 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys

2011/06/29 16:37:02.0517 3044 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

2011/06/29 16:37:02.0595 3044 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

2011/06/29 16:37:02.0642 3044 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

2011/06/29 16:37:02.0704 3044 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

2011/06/29 16:37:02.0782 3044 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

2011/06/29 16:37:02.0845 3044 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

2011/06/29 16:37:03.0001 3044 winachsf (0acd399f5db3df1b58903cf4949ab5a8) C:\Windows\system32\DRIVERS\HSX_CNXT.sys

2011/06/29 16:37:03.0188 3044 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

2011/06/29 16:37:03.0281 3044 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys

2011/06/29 16:37:03.0406 3044 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

2011/06/29 16:37:03.0500 3044 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

2011/06/29 16:37:03.0578 3044 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys

2011/06/29 16:37:03.0687 3044 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

2011/06/29 16:37:03.0718 3044 Boot (0x1200) (840766fa9b436ddd3d340a073739f6b7) \Device\Harddisk0\DR0\Partition0

2011/06/29 16:37:03.0765 3044 Boot (0x1200) (fdd84932dfaec2e3e3590960cbaec909) \Device\Harddisk0\DR0\Partition1

2011/06/29 16:37:03.0781 3044 ================================================================================

2011/06/29 16:37:03.0781 3044 Scan finished

2011/06/29 16:37:03.0781 3044 ================================================================================

2011/06/29 16:37:03.0812 4392 Detected object count: 0

2011/06/29 16:37:03.0812 4392 Actual detected object count: 0

2011/06/29 16:37:21.0908 4456 ================================================================================

2011/06/29 16:37:21.0908 4456 Scan started

2011/06/29 16:37:21.0908 4456 Mode: Manual;

2011/06/29 16:37:21.0908 4456 ================================================================================

2011/06/29 16:37:22.0204 4456 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys

2011/06/29 16:37:22.0251 4456 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

2011/06/29 16:37:22.0360 4456 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

2011/06/29 16:37:22.0407 4456 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

2011/06/29 16:37:22.0454 4456 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

2011/06/29 16:37:22.0579 4456 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys

2011/06/29 16:37:22.0641 4456 AgereSoftModem (5d97943c128ed756d1b0a08302c1b1f8) C:\Windows\system32\DRIVERS\AGRSM.sys

2011/06/29 16:37:22.0750 4456 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

2011/06/29 16:37:22.0797 4456 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

2011/06/29 16:37:22.0844 4456 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

2011/06/29 16:37:22.0937 4456 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

2011/06/29 16:37:22.0969 4456 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

2011/06/29 16:37:23.0000 4456 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

2011/06/29 16:37:23.0047 4456 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

2011/06/29 16:37:23.0156 4456 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

2011/06/29 16:37:23.0187 4456 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

2011/06/29 16:37:23.0249 4456 aswFsBlk (7f08d9c504b015d81a8abd75c80028c5) C:\Windows\system32\drivers\aswFsBlk.sys

2011/06/29 16:37:23.0327 4456 aswMonFlt (9bdc8e9ce17b773f69d2c6696c768c4f) C:\Windows\system32\drivers\aswMonFlt.sys

2011/06/29 16:37:23.0374 4456 aswRdr (ac48bdd4cd5d44af33087c06d6e9511c) C:\Windows\system32\drivers\aswRdr.sys

2011/06/29 16:37:23.0421 4456 aswSnx (b64134316fcd1f20e0f10ef3e65bd522) C:\Windows\system32\drivers\aswSnx.sys

2011/06/29 16:37:23.0530 4456 aswSP (d6788e3211afa9951ed7a4d617f68a4f) C:\Windows\system32\drivers\aswSP.sys

2011/06/29 16:37:23.0561 4456 aswTdi (4d100c45517809439c7b6dd98997fa00) C:\Windows\system32\drivers\aswTdi.sys

2011/06/29 16:37:23.0608 4456 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

2011/06/29 16:37:23.0702 4456 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys

2011/06/29 16:37:23.0780 4456 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

2011/06/29 16:37:23.0827 4456 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

2011/06/29 16:37:23.0873 4456 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys

2011/06/29 16:37:23.0967 4456 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

2011/06/29 16:37:24.0014 4456 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

2011/06/29 16:37:24.0061 4456 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

2011/06/29 16:37:24.0107 4456 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

2011/06/29 16:37:24.0185 4456 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

2011/06/29 16:37:24.0201 4456 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

2011/06/29 16:37:24.0248 4456 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

2011/06/29 16:37:24.0295 4456 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

2011/06/29 16:37:24.0326 4456 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys

2011/06/29 16:37:24.0419 4456 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

2011/06/29 16:37:24.0482 4456 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys

2011/06/29 16:37:24.0591 4456 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

2011/06/29 16:37:24.0622 4456 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

2011/06/29 16:37:24.0653 4456 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

2011/06/29 16:37:24.0700 4456 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

2011/06/29 16:37:24.0794 4456 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

2011/06/29 16:37:24.0887 4456 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys

2011/06/29 16:37:24.0950 4456 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys

2011/06/29 16:37:25.0012 4456 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

2011/06/29 16:37:25.0121 4456 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys

2011/06/29 16:37:25.0215 4456 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

2011/06/29 16:37:25.0262 4456 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys

2011/06/29 16:37:25.0340 4456 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

2011/06/29 16:37:25.0449 4456 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

2011/06/29 16:37:25.0527 4456 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys

2011/06/29 16:37:25.0574 4456 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys

2011/06/29 16:37:25.0683 4456 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

2011/06/29 16:37:25.0761 4456 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

2011/06/29 16:37:25.0808 4456 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

2011/06/29 16:37:25.0901 4456 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

2011/06/29 16:37:25.0979 4456 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys

2011/06/29 16:37:26.0042 4456 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

2011/06/29 16:37:26.0089 4456 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys

2011/06/29 16:37:26.0198 4456 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

2011/06/29 16:37:26.0276 4456 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

2011/06/29 16:37:26.0307 4456 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys

2011/06/29 16:37:26.0354 4456 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

2011/06/29 16:37:26.0432 4456 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

2011/06/29 16:37:26.0494 4456 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys

2011/06/29 16:37:26.0525 4456 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

2011/06/29 16:37:26.0588 4456 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS

2011/06/29 16:37:26.0697 4456 HSF_DPV (cc267848cb3508e72762be65734e764d) C:\Windows\system32\DRIVERS\HSX_DPV.sys

2011/06/29 16:37:26.0806 4456 HSXHWAZL (a2882945cc4b6e3e4e9e825590438888) C:\Windows\system32\DRIVERS\HSXHWAZL.sys

2011/06/29 16:37:26.0869 4456 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys

2011/06/29 16:37:26.0978 4456 hwdatacard (92ca47da32009ccc00a5aded04abbd78) C:\Windows\system32\DRIVERS\ewusbmdm.sys

2011/06/29 16:37:27.0025 4456 hwusbfake (1d4d6d24256f61e6b08a3cf8184a78b8) C:\Windows\system32\DRIVERS\ewusbfake.sys

2011/06/29 16:37:27.0071 4456 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

2011/06/29 16:37:27.0149 4456 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

2011/06/29 16:37:27.0212 4456 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys

2011/06/29 16:37:27.0259 4456 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

2011/06/29 16:37:27.0399 4456 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys

2011/06/29 16:37:27.0493 4456 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

2011/06/29 16:37:27.0617 4456 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys

2011/06/29 16:37:27.0727 4456 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

2011/06/29 16:37:27.0758 4456 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

2011/06/29 16:37:27.0805 4456 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

2011/06/29 16:37:27.0898 4456 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

2011/06/29 16:37:27.0992 4456 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

2011/06/29 16:37:28.0023 4456 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

2011/06/29 16:37:28.0070 4456 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

2011/06/29 16:37:28.0117 4456 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys

2011/06/29 16:37:28.0210 4456 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

2011/06/29 16:37:28.0241 4456 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

2011/06/29 16:37:28.0288 4456 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

2011/06/29 16:37:28.0335 4456 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

2011/06/29 16:37:28.0444 4456 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys

2011/06/29 16:37:28.0538 4456 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

2011/06/29 16:37:28.0663 4456 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

2011/06/29 16:37:28.0709 4456 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

2011/06/29 16:37:28.0741 4456 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

2011/06/29 16:37:28.0772 4456 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

2011/06/29 16:37:28.0865 4456 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys

2011/06/29 16:37:28.0928 4456 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

2011/06/29 16:37:28.0975 4456 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

2011/06/29 16:37:29.0084 4456 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

2011/06/29 16:37:29.0115 4456 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

2011/06/29 16:37:29.0146 4456 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

2011/06/29 16:37:29.0177 4456 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

2011/06/29 16:37:29.0224 4456 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

2011/06/29 16:37:29.0271 4456 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

2011/06/29 16:37:29.0365 4456 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

2011/06/29 16:37:29.0411 4456 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

2011/06/29 16:37:29.0443 4456 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys

2011/06/29 16:37:29.0505 4456 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys

2011/06/29 16:37:29.0614 4456 mrxsmb10 (cf6e972f8e0d0f2970360a17572b366b) C:\Windows\system32\DRIVERS\mrxsmb10.sys

2011/06/29 16:37:29.0661 4456 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys

2011/06/29 16:37:29.0708 4456 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys

2011/06/29 16:37:29.0801 4456 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

2011/06/29 16:37:29.0864 4456 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

2011/06/29 16:37:29.0895 4456 msisadrv (1e00b9b8601f24a96ad71a7d0fc5f136) C:\Windows\system32\drivers\msisadrv.sys

2011/06/29 16:37:29.0973 4456 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

2011/06/29 16:37:30.0004 4456 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

2011/06/29 16:37:30.0098 4456 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

2011/06/29 16:37:30.0145 4456 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys

2011/06/29 16:37:30.0191 4456 mssmbios (215634cf935b696e3ebca813d02e9165) C:\Windows\system32\DRIVERS\mssmbios.sys

2011/06/29 16:37:30.0223 4456 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

2011/06/29 16:37:30.0301 4456 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys

2011/06/29 16:37:30.0363 4456 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys

2011/06/29 16:37:30.0425 4456 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys

2011/06/29 16:37:30.0519 4456 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

2011/06/29 16:37:30.0550 4456 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

2011/06/29 16:37:30.0581 4456 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys

2011/06/29 16:37:30.0613 4456 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

2011/06/29 16:37:30.0706 4456 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

2011/06/29 16:37:30.0737 4456 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys

2011/06/29 16:37:30.0831 4456 netr73 (91d44aa2a61006136da32118a179bf12) C:\Windows\system32\DRIVERS\netr73.sys

2011/06/29 16:37:30.0940 4456 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

2011/06/29 16:37:30.0987 4456 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys

2011/06/29 16:37:31.0018 4456 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

2011/06/29 16:37:31.0112 4456 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys

2011/06/29 16:37:31.0205 4456 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

2011/06/29 16:37:31.0237 4456 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

2011/06/29 16:37:31.0283 4456 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

2011/06/29 16:37:31.0330 4456 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

2011/06/29 16:37:31.0408 4456 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

2011/06/29 16:37:31.0517 4456 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys

2011/06/29 16:37:31.0595 4456 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

2011/06/29 16:37:31.0673 4456 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys

2011/06/29 16:37:31.0720 4456 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

2011/06/29 16:37:31.0767 4456 pci (eca39351296d905baa4fa3244c152b00) C:\Windows\system32\drivers\pci.sys

2011/06/29 16:37:31.0861 4456 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys

2011/06/29 16:37:31.0907 4456 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

2011/06/29 16:37:31.0970 4456 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

2011/06/29 16:37:32.0173 4456 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

2011/06/29 16:37:32.0219 4456 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

2011/06/29 16:37:32.0266 4456 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys

2011/06/29 16:37:32.0344 4456 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

2011/06/29 16:37:32.0438 4456 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

2011/06/29 16:37:32.0485 4456 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

2011/06/29 16:37:32.0531 4456 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

2011/06/29 16:37:32.0578 4456 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

2011/06/29 16:37:32.0672 4456 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys

2011/06/29 16:37:32.0719 4456 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys

2011/06/29 16:37:32.0765 4456 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys

2011/06/29 16:37:32.0843 4456 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

2011/06/29 16:37:32.0890 4456 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

2011/06/29 16:37:32.0921 4456 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

2011/06/29 16:37:32.0984 4456 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys

2011/06/29 16:37:33.0109 4456 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

2011/06/29 16:37:33.0171 4456 RTL8169 (7157e70a90cce49deb8885d23a073a39) C:\Windows\system32\DRIVERS\Rtlh86.sys

2011/06/29 16:37:33.0218 4456 RTL8187B (b71d269b9ab5417963e986126c12b9fc) C:\Windows\system32\DRIVERS\RTL8187B.sys

2011/06/29 16:37:33.0311 4456 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys

2011/06/29 16:37:33.0358 4456 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS

2011/06/29 16:37:33.0421 4456 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

2011/06/29 16:37:33.0530 4456 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

2011/06/29 16:37:33.0592 4456 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

2011/06/29 16:37:33.0623 4456 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

2011/06/29 16:37:33.0670 4456 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

2011/06/29 16:37:33.0795 4456 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys

2011/06/29 16:37:33.0826 4456 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

2011/06/29 16:37:33.0857 4456 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys

2011/06/29 16:37:33.0904 4456 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

2011/06/29 16:37:34.0013 4456 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

2011/06/29 16:37:34.0060 4456 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

2011/06/29 16:37:34.0107 4456 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

2011/06/29 16:37:34.0169 4456 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys

2011/06/29 16:37:34.0294 4456 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

2011/06/29 16:37:34.0341 4456 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys

2011/06/29 16:37:34.0435 4456 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys

2011/06/29 16:37:34.0497 4456 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys

2011/06/29 16:37:34.0606 4456 swenum (97e089971a6aba49ad5592bd6298e416) C:\Windows\system32\DRIVERS\swenum.sys

2011/06/29 16:37:34.0653 4456 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

2011/06/29 16:37:34.0731 4456 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

2011/06/29 16:37:34.0778 4456 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

2011/06/29 16:37:34.0825 4456 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys

2011/06/29 16:37:34.0949 4456 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys

2011/06/29 16:37:35.0074 4456 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys

2011/06/29 16:37:35.0168 4456 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys

2011/06/29 16:37:35.0215 4456 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys

2011/06/29 16:37:35.0261 4456 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

2011/06/29 16:37:35.0355 4456 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

2011/06/29 16:37:35.0402 4456 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys

2011/06/29 16:37:35.0449 4456 TermDD (718b2f4355cd8eb2844741addac0e622) C:\Windows\system32\DRIVERS\termdd.sys

2011/06/29 16:37:35.0573 4456 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys

2011/06/29 16:37:35.0683 4456 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

2011/06/29 16:37:35.0729 4456 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

2011/06/29 16:37:35.0761 4456 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys

2011/06/29 16:37:35.0823 4456 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS

2011/06/29 16:37:35.0901 4456 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

2011/06/29 16:37:35.0948 4456 udfs (c985b36e127ea9b8a92396120bff52d8) C:\Windows\system32\DRIVERS\udfs.sys

2011/06/29 16:37:36.0010 4456 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

2011/06/29 16:37:36.0041 4456 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

2011/06/29 16:37:36.0151 4456 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

2011/06/29 16:37:36.0197 4456 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

2011/06/29 16:37:36.0229 4456 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

2011/06/29 16:37:36.0291 4456 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

2011/06/29 16:37:36.0385 4456 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

2011/06/29 16:37:36.0431 4456 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys

2011/06/29 16:37:36.0478 4456 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys

2011/06/29 16:37:36.0525 4456 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

2011/06/29 16:37:36.0619 4456 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys

2011/06/29 16:37:36.0665 4456 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS

2011/06/29 16:37:36.0697 4456 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

2011/06/29 16:37:36.0728 4456 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

2011/06/29 16:37:36.0821 4456 UVCFTR (8c5094a8ab24de7496c7c19942f2df04) C:\Windows\system32\Drivers\UVCFTR_S.SYS

2011/06/29 16:37:36.0884 4456 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

2011/06/29 16:37:36.0915 4456 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

2011/06/29 16:37:36.0946 4456 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

2011/06/29 16:37:37.0040 4456 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

2011/06/29 16:37:37.0071 4456 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

2011/06/29 16:37:37.0118 4456 volmgr (bdd98bbe7323fc0975a26373d8050471) C:\Windows\system32\drivers\volmgr.sys

2011/06/29 16:37:37.0165 4456 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys

2011/06/29 16:37:37.0258 4456 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys

2011/06/29 16:37:37.0321 4456 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

2011/06/29 16:37:37.0383 4456 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

2011/06/29 16:37:37.0477 4456 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

2011/06/29 16:37:37.0492 4456 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

2011/06/29 16:37:37.0555 4456 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

2011/06/29 16:37:37.0601 4456 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

2011/06/29 16:37:37.0757 4456 winachsf (0acd399f5db3df1b58903cf4949ab5a8) C:\Windows\system32\DRIVERS\HSX_CNXT.sys

2011/06/29 16:37:37.0929 4456 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

2011/06/29 16:37:38.0038 4456 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys

2011/06/29 16:37:38.0085 4456 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

2011/06/29 16:37:38.0225 4456 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

2011/06/29 16:37:38.0288 4456 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys

2011/06/29 16:37:38.0381 4456 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

2011/06/29 16:37:38.0413 4456 Boot (0x1200) (840766fa9b436ddd3d340a073739f6b7) \Device\Harddisk0\DR0\Partition0

2011/06/29 16:37:38.0459 4456 Boot (0x1200) (fdd84932dfaec2e3e3590960cbaec909) \Device\Harddisk0\DR0\Partition1

2011/06/29 16:37:38.0475 4456 ================================================================================

2011/06/29 16:37:38.0475 4456 Scan finished

2011/06/29 16:37:38.0475 4456 ================================================================================

2011/06/29 16:37:38.0506 4268 Detected object count: 0

2011/06/29 16:37:38.0506 4268 Actual detected object count: 0

2011/06/29 16:38:28.0457 6140 Deinitialize success

29 juni, 2011

har råkat ha på avast en del av tiden ska jag starta om skanningen ?

29 juni, 2011

Nej, avbryt inte skanningen.

29 juni, 2011

måste sicka resultate i två eller flera delar:

RkU Version: 3.8.388.590, Type LE (SR2)

==============================================

OS Name: Windows Vista

Version 6.0.6001 (Service Pack 1)

Number of processors #2

==============================================

>Drivers

==============================================

0x8EA0F000 C:\Windows\system32\DRIVERS\igdkmd32.sys 7225344 bytes (Intel Corporation, Intel Graphics Kernel Mode Driver)

0x83037000 C:\Windows\system32\ntkrnlpa.exe 3903488 bytes (Microsoft Corporation, NT Kernel & System)

0x83037000 PnpManager 3903488 bytes

0x83037000 RAW 3903488 bytes

0x83037000 WMIxWDM 3903488 bytes

0x81850000 Win32k 2109440 bytes

0x81850000 C:\Windows\System32\win32k.sys 2109440 bytes (Microsoft Corporation, Win32-drivrutin för flera användare)

0x8F200000 C:\Windows\system32\drivers\RTKVHDA.sys 2093056 bytes (Realtek Semiconductor Corp., Realtek® High Definition Audio Function Driver)

0x8AE0C000 C:\Windows\System32\Drivers\Ntfs.sys 1110016 bytes (Microsoft Corporation, NTFS-drivrutin)

0x8AC00000 C:\Windows\system32\drivers\ndis.sys 1093632 bytes (Microsoft Corporation, NDIS 6.0 wrapper driver)

0x8F498000 C:\Windows\system32\DRIVERS\HSX_DPV.sys 1060864 bytes (Conexant Systems, Inc., HSF_DP driver)

0x8FA06000 C:\Windows\System32\drivers\tcpip.sys 954368 bytes (Microsoft Corporation, TCP/IP Driver)

0x804CB000 C:\Windows\system32\CI.dll 917504 bytes (Microsoft Corporation, Code Integrity Module)

0xB220A000 C:\Windows\system32\drivers\peauth.sys 909312 bytes (Microsoft Corporation, Protected Environment Authentication and Authorization Export Driver)

0x90686000 C:\Windows\System32\Drivers\dump_iaStor.sys 843776 bytes

0x8360D000 C:\Windows\system32\DRIVERS\iaStor.sys 843776 bytes (Intel Corporation, Intel Matrix Storage Manager driver - ia32)

0x8F602000 C:\Windows\system32\DRIVERS\HSX_CNXT.sys 741376 bytes (Conexant Systems, Inc., HSF_CNXT driver)

0x8E60F000 C:\Windows\system32\drivers\spsys.sys 716800 bytes (Microsoft Corporation, security processor)

0x8F0F3000 C:\Windows\System32\drivers\dxgkrnl.sys 651264 bytes (Microsoft Corporation, DirectX Graphics Kernel)

0x80603000 C:\Windows\system32\drivers\Wdf01000.sys 507904 bytes (Microsoft Corporation, WDF Dynamic)

0x8374D000 C:\Windows\System32\Drivers\ksecdd.sys 462848 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)

0x8F6C4000 C:\Windows\System32\Drivers\aswSnx.SYS 458752 bytes (AVAST Software, avast! Virtualization Driver)

0xB0208000 C:\Windows\system32\drivers\HTTP.sys 446464 bytes (Microsoft Corporation, HTTP-protokollstack)

0x80411000 C:\Windows\system32\mcupdate_GenuineIntel.dll 393216 bytes (Microsoft Corporation, Intel Microcode Update Library)

0x90629000 C:\Windows\system32\DRIVERS\RTL8187B.sys 327680 bytes (Realtek Semiconductor Corporation , Realtek RTL8187B NDIS Driver)

0xB0378000 C:\Windows\System32\DRIVERS\srv.sys 323584 bytes (Microsoft Corporation, Server driver)

0x81AA0000 C:\Windows\System32\ATMFD.DLL 315392 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver)

0x8F5B2000 C:\Windows\System32\Drivers\aswSP.SYS 303104 bytes (AVAST Software, avast! self protection module)

0x80735000 C:\Windows\System32\drivers\volmgrx.sys 303104 bytes (Microsoft Corporation, Volume Manager Extension Driver)

0x8FB3E000 C:\Windows\system32\drivers\afd.sys 294912 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)

0x8068C000 C:\Windows\system32\drivers\acpi.sys 286720 bytes (Microsoft Corporation, ACPI-drivrutin för NT)

0x8AF59000 C:\Windows\system32\DRIVERS\tos_sps32.sys 274432 bytes (TOSHIBA Corporation, tos_sps2)

0x8048A000 C:\Windows\system32\CLFS.SYS 266240 bytes (Microsoft Corporation, Common Log File System Driver)

0x8AD9E000 C:\Windows\system32\DRIVERS\storport.sys 266240 bytes (Microsoft Corporation, Microsoft Storage Port Driver)

0x8F45A000 C:\Windows\system32\DRIVERS\HSXHWAZL.sys 253952 bytes (Conexant Systems, Inc., HSF_HWAZL WDM driver)

0x8F1AA000 C:\Windows\system32\DRIVERS\USBPORT.SYS 253952 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)

0x8F7AA000 C:\Windows\system32\DRIVERS\rdbss.sys 245760 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)

0x8AD36000 C:\Windows\system32\drivers\NETIO.SYS 237568 bytes (Microsoft Corporation, Network I/O Subsystem)

0xB02FF000 C:\Windows\system32\DRIVERS\mrxsmb10.sys 233472 bytes (Microsoft Corporation, Longhorn SMB Downlevel SubRdr)

0x8AF1B000 C:\Windows\system32\drivers\volsnap.sys 233472 bytes (Microsoft Corporation, Drivrutin för skuggkopior av volymer)

0x90788000 C:\Windows\system32\drivers\aswMonFlt.sys 229376 bytes (AVAST Software, avast! File System Minifilter for Windows 2003/Vista)

0x805AB000 C:\Windows\system32\DRIVERS\usbhub.sys 212992 bytes (Microsoft Corporation, Default Hub Driver for USB)

0x83004000 ACPI_HAL 208896 bytes

0x83004000 C:\Windows\system32\hal.dll 208896 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)

0x8370B000 C:\Windows\system32\drivers\fltmgr.sys 204800 bytes (Microsoft Corporation, Filterhanteraren för Microsofts filsystem)

0x8FB8B000 C:\Windows\System32\DRIVERS\netbt.sys 204800 bytes (Microsoft Corporation, MBT Transport driver)

0x8E752000 C:\Windows\system32\DRIVERS\SynTP.sys 192512 bytes (Synaptics, Inc., Synaptics Touchpad Driver)

0x8E7A4000 C:\Windows\system32\DRIVERS\msiscsi.sys 188416 bytes (Microsoft Corporation, Microsoft iSCSI Initiator Driver)

0x8F408000 C:\Windows\system32\drivers\portcls.sys 184320 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))

0x8AD0B000 C:\Windows\system32\drivers\msrpc.sys 176128 bytes (Microsoft Corporation, Kernel Remote Procedure Call Provider)

0x807B4000 C:\Windows\system32\DRIVERS\ks.sys 172032 bytes (Microsoft Corporation, Kernel CSA Library)

0x907D3000 C:\Windows\system32\DRIVERS\nwifi.sys 172032 bytes (Microsoft Corporation, NativeWiFi Miniport Driver)

0xB0350000 C:\Windows\System32\DRIVERS\srv2.sys 163840 bytes (Microsoft Corporation, Smb 2.0 Server driver)

0x8AFB3000 C:\Windows\System32\drivers\ecache.sys 159744 bytes (Microsoft Corporation, Special Memory Device Cache)

0x806E3000 C:\Windows\system32\drivers\pci.sys 159744 bytes (Microsoft Corporation, NT Plug and Play PCI-uppräknare)

0x8F435000 C:\Windows\system32\drivers\drmk.sys 151552 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)

0x837BE000 C:\Windows\system32\DRIVERS\ndiswan.sys 143360 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))

0x8AD70000 C:\Windows\system32\drivers\CLASSPNP.SYS 135168 bytes (Microsoft Corporation, SCSI Class System Dll)

0x8E71E000 C:\Windows\system32\DRIVERS\Rtlh86.sys 135168 bytes (Realtek Corporation , Realtek 8101E/8168/8169 NDIS6 32-bit Driver )

0x90600000 C:\Windows\System32\Drivers\usbvideo.sys 135168 bytes (Microsoft Corporation, USB Video Class Driver)

0x8F757000 C:\Windows\System32\drivers\VIDEOPRT.SYS 135168 bytes (Microsoft Corporation, Video Port Driver)

0xB02C0000 C:\Windows\system32\drivers\mrxdav.sys 131072 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)

0xB02E0000 C:\Windows\system32\DRIVERS\mrxsmb.sys 126976 bytes (Microsoft Corporation, Windows NT SMB Minirdr)

0x836E3000 C:\Windows\system32\drivers\ataport.SYS 122880 bytes (Microsoft Corporation, ATAPI Driver Extension)

0xB0275000 C:\Windows\System32\DRIVERS\srvnet.sys 118784 bytes (Microsoft Corporation, Server Network driver)

0x8FAEF000 C:\Windows\System32\drivers\fwpkclnt.sys 110592 bytes (Microsoft Corporation, FWP/IPsec Kernel-Mode API)

0x9076D000 C:\Windows\system32\drivers\luafv.sys 110592 bytes (Microsoft Corporation, Filterdrivrutin för LUA-filvirtualisering)

0xB0292000 C:\Windows\system32\DRIVERS\bowser.sys 102400 bytes (Microsoft Corporation, NT Lan Manager Datagram Receiver Driver)

0x8E78C000 C:\Windows\system32\DRIVERS\cdrom.sys 98304 bytes (Microsoft Corporation, SCSI CD-ROM Driver)

0xB0338000 C:\Windows\system32\DRIVERS\mrxsmb20.sys 98304 bytes (Microsoft Corporation, Longhorn SMB 2.0 Redirector)

0x8F59B000 C:\Windows\System32\Drivers\dfsc.sys 94208 bytes (Microsoft Corporation, DFS Namespace Client Driver)

0x8E7DD000 C:\Windows\system32\DRIVERS\rasl2tp.sys 94208 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)

0x805DF000 C:\Windows\system32\DRIVERS\usbccgp.sys 94208 bytes (Microsoft Corporation, USB Common Class Generic Parent Driver)

0xB2306000 C:\Windows\system32\DRIVERS\cdfs.sys 90112 bytes (Microsoft Corporation, CD-ROM File System Driver)

0x8FBBD000 C:\Windows\system32\DRIVERS\pacer.sys 90112 bytes (Microsoft Corporation, QoS Packet Scheduler)

0x8FB0A000 C:\Windows\system32\DRIVERS\tdx.sys 90112 bytes (Microsoft Corporation, TDI Translation Driver)

0xB02AB000 C:\Windows\System32\drivers\mpsdrv.sys 86016 bytes (Microsoft Corporation, Microsoft Protection Service Driver)

0x837E1000 C:\Windows\system32\DRIVERS\rassstp.sys 86016 bytes (Microsoft Corporation, RAS SSTP Miniport Call Manager)

0x8ADDF000 C:\Windows\system32\DRIVERS\raspptp.sys 81920 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)

0x8FB2A000 C:\Windows\system32\DRIVERS\smb.sys 81920 bytes (Microsoft Corporation, SMB Transport driver)

0x8E73F000 C:\Windows\system32\DRIVERS\i8042prt.sys 77824 bytes (Microsoft Corporation, Drivrutin för i8042 Port)

0x8E6C8000 C:\Windows\system32\DRIVERS\rspndr.sys 77824 bytes (Microsoft Corporation, Link-Layer Topology Responder Driver for NDIS 6)

0x8FBEB000 C:\Windows\system32\DRIVERS\wanarp.sys 77824 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)

0x8E70C000 C:\Windows\system32\DRIVERS\HDAudBus.sys 73728 bytes (Microsoft Corporation, High Definition Audio Bus Driver)

0x8AFDA000 C:\Windows\system32\drivers\disk.sys 69632 bytes (Microsoft Corporation, PnP Disk Driver)

0x807DE000 C:\Windows\System32\Drivers\NDProxy.SYS 69632 bytes (Microsoft Corporation, NDIS Proxy)

0x80471000 C:\Windows\system32\PSHED.dll 69632 bytes (Microsoft Corporation, Plattformsspecifik drivrutin för maskinvarufel)

0x8373D000 C:\Windows\system32\drivers\fileinfo.sys 65536 bytes (Microsoft Corporation, FileInfo Filter Driver)

0x807EF000 C:\Windows\system32\DRIVERS\HIDCLASS.SYS 65536 bytes (Microsoft Corporation, Hid Class Library)

0x907C3000 C:\Windows\system32\DRIVERS\lltdio.sys 65536 bytes (Microsoft Corporation, Link-Layer Topology Mapper I/O Driver)

0x8077F000 C:\Windows\System32\drivers\mountmgr.sys 65536 bytes (Microsoft Corporation, Mount Point Manager)

0x807A4000 C:\Windows\system32\DRIVERS\termdd.sys 65536 bytes (Microsoft Corporation, Terminal Server Driver)

0x8E6F9000 C:\Windows\system32\DRIVERS\intelppm.sys 61440 bytes (Microsoft Corporation, Processor Device Driver)

0x9075E000 C:\Windows\system32\DRIVERS\monitor.sys 61440 bytes (Microsoft Corporation, Monitor Driver)

0x8AFA4000 C:\Windows\System32\Drivers\mup.sys 61440 bytes (Microsoft Corporation, Multiple UNC Provider driver)

0x8070A000 C:\Windows\System32\drivers\partmgr.sys 61440 bytes (Microsoft Corporation, Partition Management Driver)

0x8E600000 C:\Windows\system32\DRIVERS\raspppoe.sys 61440 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)

0x8F1E8000 C:\Windows\system32\DRIVERS\usbehci.sys 61440 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)

0x80726000 C:\Windows\system32\drivers\volmgr.sys 61440 bytes (Microsoft Corporation, Volume Manager Driver)

0x81A90000 C:\Windows\System32\cdd.dll 57344 bytes (Microsoft Corporation, Canonical Display Driver)

0x8FBDD000 C:\Windows\system32\DRIVERS\netbios.sys 57344 bytes (Microsoft Corporation, NetBIOS interface driver)

0x8F793000 C:\Windows\System32\Drivers\Npfs.SYS 57344 bytes (Microsoft Corporation, NPFS Driver)

0x80796000 C:\Windows\system32\DRIVERS\PCIIDEX.SYS 57344 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)

0x90679000 C:\Windows\System32\Drivers\crashdmp.sys 53248 bytes (Microsoft Corporation, Crash Dump Driver)

0x8F6B7000 C:\Windows\system32\drivers\modem.sys 53248 bytes (Microsoft Corporation, Modem-drivrutin)

0x8ADF3000 C:\Windows\system32\DRIVERS\umbus.sys 53248 bytes (Microsoft Corporation, User-Mode Bus Enumerator)

0x8F192000 C:\Windows\System32\drivers\watchdog.sys 53248 bytes (Microsoft Corporation, Watchdog Driver)

0x8067F000 C:\Windows\system32\drivers\WDFLDR.SYS 53248 bytes (Microsoft Corporation, WDFLDR)

0xB22F2000 C:\Windows\System32\drivers\tcpipreg.sys 49152 bytes (Microsoft Corporation, TCP/IP Registry Compatibility Driver)

0x8F74B000 C:\Windows\System32\drivers\vga.sys 49152 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)

0x8EA00000 C:\Windows\system32\DRIVERS\kbdclass.sys 45056 bytes (Microsoft Corporation, Tangentbordsklassdrivrutin)

0x8E781000 C:\Windows\system32\DRIVERS\mouclass.sys 45056 bytes (Microsoft Corporation, Musklassdrivrutin)

0x8F788000 C:\Windows\System32\Drivers\Msfs.SYS 45056 bytes (Microsoft Corporation, Mailslot driver)

0x8E7F4000 C:\Windows\system32\DRIVERS\ndistapi.sys 45056 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)

0x8E7D2000 C:\Windows\system32\DRIVERS\TDI.SYS 45056 bytes (Microsoft Corporation, TDI Wrapper)

0x8E6DD000 C:\Windows\system32\DRIVERS\tunnel.sys 45056 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)

0x8F19F000 C:\Windows\system32\DRIVERS\usbuhci.sys 45056 bytes (Microsoft Corporation, UHCI USB Miniport Driver)

0x8FB20000 C:\Windows\System32\Drivers\aswTdi.SYS 40960 bytes (AVAST Software, avast! TDI Filter Driver)

0x8071C000 C:\Windows\system32\DRIVERS\BATTC.SYS 40960 bytes (Microsoft Corporation, Battery Class Driver)

0x90754000 C:\Windows\System32\drivers\Dxapi.sys 40960 bytes (Microsoft Corporation, DirectX API Driver)

0x83701000 C:\Windows\system32\drivers\msahci.sys 40960 bytes (Microsoft Corporation, MS AHCI 1.0 Standard Driver)

0x8AFF4000 C:\Windows\system32\DRIVERS\mssmbios.sys 40960 bytes (Microsoft Corporation, System Management BIOS Driver)

0x8E6BE000 C:\Windows\system32\DRIVERS\ndisuio.sys 40960 bytes (Microsoft Corporation, NDIS User mode I/O driver)

0x8F7E6000 C:\Windows\system32\drivers\nsiproxy.sys 40960 bytes (Microsoft Corporation, NSI Proxy)

0x8FBD3000 C:\Windows\system32\DRIVERS\rtlprot.sys 40960 bytes (Windows ® Codename Longhorn DDK provider, Realtek Utility I/O Driver)

0xB22E8000 C:\Windows\System32\Drivers\secdrv.SYS 40960 bytes (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K., Macrovision SECURITY Driver)

0x8AFEB000 C:\Windows\system32\drivers\crcdisk.sys 36864 bytes (Microsoft Corporation, Disk Block Verification Filter Driver)

0x8F734000 C:\Windows\System32\Drivers\Fs_Rec.SYS 36864 bytes (Microsoft Corporation, File System Recognizer Driver)

0x8F7F0000 C:\Windows\system32\DRIVERS\hidusb.sys 36864 bytes (Microsoft Corporation, USB Miniport Driver for Input Devices)

0xB2327000 C:\Windows\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver)

0x8F7A1000 C:\Windows\System32\DRIVERS\rasacd.sys 36864 bytes (Microsoft Corporation, RAS Automatic Connection Driver)

0x81A70000 C:\Windows\System32\TSDDD.dll 36864 bytes (Microsoft Corporation, Framebuffer Display Driver)

0x8E6E8000 C:\Windows\system32\DRIVERS\tunmp.sys 36864 bytes (Microsoft Corporation, Microsoft Tunnel Interface Driver)

0x8AE00000 C:\Windows\System32\Drivers\UVCFTR_S.SYS 36864 bytes (Chicony Electronics Co., Ltd., UVCFTR_S.sys)

0x806D2000 C:\Windows\system32\drivers\WMILIB.SYS 36864 bytes (Microsoft Corporation, WMILIB WMI support library Dll)

0x836DB000 C:\Windows\system32\drivers\atapi.sys 32768 bytes (Microsoft Corporation, ATAPI IDE Miniport Driver)

0x80482000 C:\Windows\system32\BOOTVID.dll 32768 bytes (Microsoft Corporation, VGA Boot Driver)

0x8E6F1000 C:\Windows\system32\DRIVERS\FwLnk.sys 32768 bytes (TOSHIBA Corporation, TOSHIBA Firmware Linkage 32-bit Driver)

0x80409000 C:\Windows\system32\kdcom.dll 32768 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)

0x90621000 C:\Windows\system32\DRIVERS\mouhid.sys 32768 bytes (Microsoft Corporation, Filterdrivrutin för HID-mus)

0x806DB000 C:\Windows\system32\drivers\msisadrv.sys 32768 bytes (Microsoft Corporation, ISA Driver)

0x8F778000 C:\Windows\System32\DRIVERS\RDPCDD.sys 32768 bytes (Microsoft Corporation, RDP Miniport)

0x8F780000 C:\Windows\system32\drivers\rdpencdd.sys 32768 bytes (Microsoft Corporation, RDP Miniport)

0x8AF9C000 C:\Windows\System32\Drivers\spldr.sys 32768 bytes (Microsoft Corporation, loader for security processor)

0xB22FE000 C:\Windows\system32\DRIVERS\xaudio.sys 32768 bytes (Conexant Systems, Inc., Modem Audio Device Driver)

0x8F744000 C:\Windows\System32\Drivers\Beep.SYS 28672 bytes (Microsoft Corporation, BEEP Driver)

0x8F7F9000 C:\Windows\system32\DRIVERS\HIDPARSE.SYS 28672 bytes (Microsoft Corporation, Hid Parsing Library)

0x8F73D000 C:\Windows\System32\Drivers\Null.SYS 28672 bytes (Microsoft Corporation, NULL Driver)

0x8078F000 C:\Windows\system32\DRIVERS\pciide.sys 28672 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)

0x8FB86000 C:\Windows\System32\Drivers\aswRdr.SYS 20480 bytes (AVAST Software, avast! TDI RDR Driver)

0x8AF54000 C:\Windows\system32\DRIVERS\TVALZ_O.SYS 20480 bytes (TOSHIBA Corporation, TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver)

0x8E708000 C:\Windows\system32\DRIVERS\CmBatt.sys 16384 bytes (Microsoft Corporation, Control Method Battery Driver)

0xB03C7000 C:\Windows\system32\DRIVERS\mdmxsdk.sys 16384 bytes (Conexant, Diagnostic Interface x86 Driver)

0x8F1F7000 C:\Windows\system32\DRIVERS\tdcmdpst.sys 16384 bytes (TOSHIBA Corporation., Toshiba ODD Writing Driver For x86.)

0x907C0000 C:\Windows\System32\Drivers\aswFsBlk.SYS 12288 bytes (AVAST Software, avast! File System Access Blocking Driver)

0x80719000 C:\Windows\system32\DRIVERS\compbatt.sys 12288 bytes (Microsoft Corporation, Composite Battery Driver)

0x8F1FB000 C:\Windows\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)

0x8EA0B000 C:\Windows\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)

==============================================

>Stealth

==============================================

0x00B10000 Hidden Image-->TOPI.resources.dll [ EPROCESS 0x8A502020 ] PID: 2852, 217088 bytes

==============================================

>Files

==============================================

!-->[Hidden] C:\Windows\Temp\_avast_\Webshlock.txt

==============================================

>Hooks

==============================================

ntkrnlpa.exe+0x000B4E6A, Type: Inline - RelativeJump 0x830EBE6A-->830EBE71 [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8A4C, Type: Inline - RelativeJump 0x830EFA4C-->830EF9E9 [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8B20, Type: Inline - RelativeJump 0x830EFB20-->830EFB93 [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8C08, Type: Inline - RelativeJump 0x830EFC08-->830EFC7C [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8DBC, Type: Inline - RelativeJump 0x830EFDBC-->830EFE30 [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8E34, Type: Inline - RelativeJump 0x830EFE34-->830EFEA8 [ntkrnlpa.exe]

ntkrnlpa.exe+0x000B8E70, Type: Inline - RelativeJump 0x830EFE70-->830EFEE4 [ntkrnlpa.exe]

ntkrnlpa.exe-->NtCreateProcessEx, Type: Inline - RelativeJump 0x832CB776-->8F5D1906 [aswSP.SYS]

ntkrnlpa.exe-->ObInsertObject, Type: Inline - RelativeJump 0x8327F872-->8F5CED5C [aswSP.SYS]

ntkrnlpa.exe-->ObMakeTemporaryObject, Type: Inline - RelativeJump 0x83216D5E-->8F5CD2BE [aswSP.SYS]

[1052]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1052]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1052]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1052]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1052]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1052]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1052]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1052]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1052]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1152]SynTPEnh.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1176]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1176]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1176]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1176]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1176]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1176]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1176]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1176]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1212]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1212]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1212]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1212]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1212]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1212]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1212]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1212]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1228]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1228]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1228]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1228]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1228]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1228]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1228]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1228]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

29 juni, 2011

[1460]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1460]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1460]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1460]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1460]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1460]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1460]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1460]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1460]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1628]spoolsv.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1668]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1668]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1668]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1668]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1668]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1668]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1668]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1668]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1876]AvastSvc.exe-->kernel32.dll-->SetUnhandledExceptionFilter, Type: Inline - PushRet 0x75BD6E2D-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1896]dwm.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1896]dwm.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1896]dwm.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1896]dwm.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1896]dwm.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1896]dwm.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1896]dwm.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1896]dwm.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1928]taskeng.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1928]taskeng.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1928]taskeng.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1928]taskeng.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1928]taskeng.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1928]taskeng.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1928]taskeng.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1928]taskeng.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[1932]explorer.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[1932]explorer.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[1932]explorer.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[1932]explorer.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[1932]explorer.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[1932]explorer.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[1932]explorer.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[1932]explorer.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2332]NDSTray.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2528]CFSvcs.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2572]DCSHOST.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2632]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2632]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2632]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2632]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2632]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2632]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2632]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2632]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2668]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2668]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2668]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2800]DataCardMonitor.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2916]igfxtray.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2932]hkcmd.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[2956]igfxpers.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3000]RtHDVCpl.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

29 juni, 2011

[3016]igfxsrvc.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3016]igfxsrvc.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3024]TPwrMain.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3076]SmoothView.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3124]TCrdMain.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3168]TODDSrv.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3204]TosCoSrv.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3248]TosIPCSrv.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3308]traybar.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3308]traybar.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3308]traybar.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3308]traybar.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3308]traybar.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3308]traybar.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3308]traybar.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3308]traybar.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3340]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3340]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3340]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3380]SearchIndexer.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3404]sidebar.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3404]sidebar.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3404]sidebar.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3404]sidebar.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3404]sidebar.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3404]sidebar.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3404]sidebar.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3404]sidebar.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3428]TOSCDSPD.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3448]ehtray.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3448]ehtray.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3448]ehtray.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3448]ehtray.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3448]ehtray.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3448]ehtray.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3448]ehtray.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3448]ehtray.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3456]XAudio.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3456]XAudio.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3456]XAudio.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3456]XAudio.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3456]XAudio.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3456]XAudio.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3456]XAudio.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3456]XAudio.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3724]ehmsas.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3792]CEC_MAIN.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[3920]igfxext.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[3920]igfxext.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[3920]igfxext.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[3920]igfxext.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[3920]igfxext.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[3920]igfxext.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[3920]igfxext.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[3920]igfxext.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[4192]CFSwMgr.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[4548]SynTPHelper.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[676]wininit.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[676]wininit.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[676]wininit.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[676]wininit.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[676]wininit.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[676]wininit.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[676]wininit.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[676]wininit.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[720]services.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[720]services.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[720]services.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[720]services.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[720]services.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[720]services.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[720]services.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[720]services.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[732]lsass.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[732]lsass.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[732]lsass.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[732]lsass.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[732]lsass.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[732]lsass.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[732]lsass.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[732]lsass.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[744]lsm.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[744]lsm.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[744]lsm.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[784]taskeng.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[784]taskeng.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[784]taskeng.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[784]taskeng.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[784]taskeng.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[784]taskeng.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[784]taskeng.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[784]taskeng.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[792]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[792]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[792]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[792]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[792]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[792]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[792]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[792]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[820]winlogon.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[820]winlogon.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[820]winlogon.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[820]winlogon.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[820]winlogon.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[820]winlogon.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[820]winlogon.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[820]winlogon.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->ChangeServiceConfig2A, Type: Inline - RelativeJump 0x76CF6A69-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->ChangeServiceConfig2W, Type: Inline - RelativeJump 0x76CF6BB1-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->ChangeServiceConfigA, Type: Inline - RelativeJump 0x76CF67A9-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->ChangeServiceConfigW, Type: Inline - RelativeJump 0x76CF6951-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->CreateServiceA, Type: Inline - RelativeJump 0x76CF6C71-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->CreateServiceW, Type: Inline - RelativeJump 0x76CB38FF-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->DeleteService, Type: Inline - RelativeJump 0x76CB3BEE-->00000000 [unknown_code_page]

[948]svchost.exe-->advapi32.dll-->SetServiceObjectSecurity, Type: Inline - RelativeJump 0x76CF66A9-->00000000 [unknown_code_page]

[948]svchost.exe-->ntdll.dll-->LdrLoadDll, Type: Inline - RelativeJump 0x772779B3-->00000000 [unknown_code_page]

[948]svchost.exe-->ntdll.dll-->LdrUnloadDll, Type: Inline - RelativeJump 0x7728E5AC-->00000000 [unknown_code_page]

[948]svchost.exe-->user32.dll-->SetWindowsHookExA, Type: Inline - RelativeJump 0x7709BB0E-->00000000 [unknown_code_page]

[948]svchost.exe-->user32.dll-->SetWindowsHookExW, Type: Inline - RelativeJump 0x77077B69-->00000000 [unknown_code_page]

[948]svchost.exe-->user32.dll-->SetWinEventHook, Type: Inline - RelativeJump 0x7707915C-->00000000 [unknown_code_page]

[948]svchost.exe-->user32.dll-->UnhookWindowsHookEx, Type: Inline - RelativeJump 0x770A08BE-->00000000 [unknown_code_page]

[948]svchost.exe-->user32.dll-->UnhookWinEvent, Type: Inline - RelativeJump 0x7707B702-->00000000 [unknown_code_page]

29 juni, 2011

nu är det dags för den andra program rapporten :

MBRCheck, version 1.2.3

Command-line:

Windows Version: Windows Vista Home Premium Edition

Windows Information: Service Pack 1 (build 6001), 32-bit

Base Board Manufacturer: TOSHIBA

BIOS Manufacturer: INSYDE

System Manufacturer: TOSHIBA

System Product Name: Satellite L300

Logical Drives Mask: 0x00000034

Kernel Drivers (total 153):

0x83036000 \SystemRoot\system32\ntkrnlpa.exe

0x83003000 \SystemRoot\system32\hal.dll

0x80401000 \SystemRoot\system32\kdcom.dll

0x80409000 \SystemRoot\system32\mcupdate_GenuineIntel.dll

0x80469000 \SystemRoot\system32\PSHED.dll

0x8047A000 \SystemRoot\system32\BOOTVID.dll

0x80482000 \SystemRoot\system32\CLFS.SYS

0x804C3000 \SystemRoot\system32\CI.dll

0x80608000 \SystemRoot\system32\drivers\Wdf01000.sys

0x80684000 \SystemRoot\system32\drivers\WDFLDR.SYS

0x80691000 \SystemRoot\system32\drivers\acpi.sys

0x806D7000 \SystemRoot\system32\drivers\WMILIB.SYS

0x806E0000 \SystemRoot\system32\drivers\msisadrv.sys

0x806E8000 \SystemRoot\system32\drivers\pci.sys

0x8070F000 \SystemRoot\System32\drivers\partmgr.sys

0x8071E000 \SystemRoot\system32\DRIVERS\compbatt.sys

0x80721000 \SystemRoot\system32\DRIVERS\BATTC.SYS

0x8072B000 \SystemRoot\system32\drivers\volmgr.sys

0x8073A000 \SystemRoot\System32\drivers\volmgrx.sys

0x80784000 \SystemRoot\System32\drivers\mountmgr.sys

0x80794000 \SystemRoot\system32\DRIVERS\pciide.sys

0x8079B000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS

0x8360E000 \SystemRoot\system32\DRIVERS\iaStor.sys

0x836DC000 \SystemRoot\system32\drivers\atapi.sys

0x836E4000 \SystemRoot\system32\drivers\ataport.SYS

0x83702000 \SystemRoot\system32\drivers\msahci.sys

0x8370C000 \SystemRoot\system32\drivers\fltmgr.sys

0x8373E000 \SystemRoot\system32\drivers\fileinfo.sys

0x8374E000 \SystemRoot\System32\Drivers\ksecdd.sys

0x8AC0F000 \SystemRoot\system32\drivers\ndis.sys

0x8AD1A000 \SystemRoot\system32\drivers\msrpc.sys

0x8AD45000 \SystemRoot\system32\drivers\NETIO.SYS

0x8AE08000 \SystemRoot\System32\Drivers\Ntfs.sys

0x8AF17000 \SystemRoot\system32\drivers\volsnap.sys

0x8AF50000 \SystemRoot\system32\DRIVERS\TVALZ_O.SYS

0x8AF55000 \SystemRoot\system32\DRIVERS\tos_sps32.sys

0x8AF98000 \SystemRoot\System32\Drivers\spldr.sys

0x8AFA0000 \SystemRoot\System32\Drivers\mup.sys

0x8AFAF000 \SystemRoot\System32\drivers\ecache.sys

0x8AFD6000 \SystemRoot\system32\drivers\disk.sys

0x8AD7F000 \SystemRoot\system32\drivers\CLASSPNP.SYS

0x8AFE7000 \SystemRoot\system32\drivers\crcdisk.sys

0x8E8D2000 \SystemRoot\system32\DRIVERS\tunnel.sys

0x8E8DD000 \SystemRoot\system32\DRIVERS\tunmp.sys

0x8E8E6000 \SystemRoot\system32\DRIVERS\FwLnk.sys

0x8E8EE000 \SystemRoot\system32\DRIVERS\intelppm.sys

0x8E8FD000 \SystemRoot\system32\DRIVERS\CmBatt.sys

0x8EA05000 \SystemRoot\system32\DRIVERS\igdkmd32.sys

0x8F0E9000 \SystemRoot\System32\drivers\dxgkrnl.sys

0x8F188000 \SystemRoot\System32\drivers\watchdog.sys

0x8F195000 \SystemRoot\system32\DRIVERS\usbuhci.sys

0x8F1A0000 \SystemRoot\system32\DRIVERS\USBPORT.SYS

0x8F1DE000 \SystemRoot\system32\DRIVERS\usbehci.sys

0x8F1ED000 \SystemRoot\system32\DRIVERS\HDAudBus.sys

0x8E901000 \SystemRoot\system32\DRIVERS\Rtlh86.sys

0x8E922000 \SystemRoot\system32\DRIVERS\i8042prt.sys

0x8E935000 \SystemRoot\system32\DRIVERS\kbdclass.sys

0x8E940000 \SystemRoot\system32\DRIVERS\SynTP.sys

0x8EA00000 \SystemRoot\system32\DRIVERS\USBD.SYS

0x8E96F000 \SystemRoot\system32\DRIVERS\mouclass.sys

0x8E97A000 \SystemRoot\system32\DRIVERS\tdcmdpst.sys

0x8E97E000 \SystemRoot\system32\DRIVERS\cdrom.sys

0x8E996000 \SystemRoot\system32\DRIVERS\msiscsi.sys

0x8ADA0000 \SystemRoot\system32\DRIVERS\storport.sys

0x8E9C4000 \SystemRoot\system32\DRIVERS\TDI.SYS

0x8E9CF000 \SystemRoot\system32\DRIVERS\rasl2tp.sys

0x8E9E6000 \SystemRoot\system32\DRIVERS\ndistapi.sys

0x837BF000 \SystemRoot\system32\DRIVERS\ndiswan.sys

0x8E9F1000 \SystemRoot\system32\DRIVERS\raspppoe.sys

0x8ADE1000 \SystemRoot\system32\DRIVERS\raspptp.sys

0x837E2000 \SystemRoot\system32\DRIVERS\rassstp.sys

0x807A9000 \SystemRoot\system32\DRIVERS\termdd.sys

0x8EA02000 \SystemRoot\system32\DRIVERS\swenum.sys

0x807B9000 \SystemRoot\system32\DRIVERS\ks.sys

0x8ADF5000 \SystemRoot\system32\DRIVERS\mssmbios.sys

0x8AC00000 \SystemRoot\system32\DRIVERS\umbus.sys

0x805A3000 \SystemRoot\system32\DRIVERS\usbhub.sys

0x807E3000 \SystemRoot\System32\Drivers\NDProxy.SYS

0x8F200000 \SystemRoot\system32\drivers\RTKVHDA.sys

0x8F40F000 \SystemRoot\system32\drivers\portcls.sys

0x8F43C000 \SystemRoot\system32\drivers\drmk.sys

0x8F461000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys

0x8F49F000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys

0x8F609000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys

0x8F6BE000 \SystemRoot\system32\drivers\modem.sys

0x8F6CB000 \SystemRoot\System32\Drivers\aswSnx.SYS

0x8F73B000 \SystemRoot\System32\Drivers\Fs_Rec.SYS

0x8F744000 \SystemRoot\System32\Drivers\Null.SYS

0x8F74B000 \SystemRoot\System32\Drivers\Beep.SYS

0x8F752000 \SystemRoot\System32\drivers\vga.sys

0x8F75E000 \SystemRoot\System32\drivers\VIDEOPRT.SYS

0x8F77F000 \SystemRoot\System32\DRIVERS\RDPCDD.sys

0x8F787000 \SystemRoot\system32\drivers\rdpencdd.sys

0x8F78F000 \SystemRoot\System32\Drivers\Msfs.SYS

0x8F79A000 \SystemRoot\System32\Drivers\Npfs.SYS

0x8F7A8000 \SystemRoot\System32\DRIVERS\rasacd.sys

0x8FA07000 \SystemRoot\System32\drivers\tcpip.sys

0x8FAF0000 \SystemRoot\System32\drivers\fwpkclnt.sys

0x8FB0B000 \SystemRoot\system32\DRIVERS\tdx.sys

0x8FB21000 \SystemRoot\System32\Drivers\aswTdi.SYS

0x8FB2B000 \SystemRoot\system32\DRIVERS\smb.sys

0x8FB3F000 \SystemRoot\system32\drivers\afd.sys

0x8FB87000 \SystemRoot\System32\Drivers\aswRdr.SYS

0x8FB8C000 \SystemRoot\System32\DRIVERS\netbt.sys

0x8FBBE000 \SystemRoot\system32\DRIVERS\pacer.sys

0x8FBD4000 \SystemRoot\system32\DRIVERS\rtlprot.sys

0x8FBDE000 \SystemRoot\system32\DRIVERS\netbios.sys

0x8FBEC000 \SystemRoot\system32\DRIVERS\wanarp.sys

0x8F7B1000 \SystemRoot\system32\DRIVERS\rdbss.sys

0x8F7ED000 \SystemRoot\system32\drivers\nsiproxy.sys

0x8F5A2000 \SystemRoot\System32\Drivers\dfsc.sys

0x8FC09000 \SystemRoot\System32\Drivers\aswSP.SYS

0x8FC53000 \SystemRoot\system32\DRIVERS\usbccgp.sys

0x8FC6A000 \SystemRoot\System32\Drivers\UVCFTR_S.SYS

0x8FC73000 \SystemRoot\System32\Drivers\usbvideo.sys

0x8FC94000 \SystemRoot\system32\DRIVERS\hidusb.sys

0x8FC9D000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS

0x8FCAD000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS

0x8FCB4000 \SystemRoot\system32\DRIVERS\mouhid.sys

0x8FCBC000 \SystemRoot\system32\DRIVERS\RTL8187B.sys

0x8FD0C000 \SystemRoot\System32\Drivers\crashdmp.sys

0x8FD19000 \SystemRoot\System32\Drivers\dump_iaStor.sys

0x960D0000 \SystemRoot\System32\win32k.sys

0x8FDE7000 \SystemRoot\System32\drivers\Dxapi.sys

0x8FDF1000 \SystemRoot\system32\DRIVERS\monitor.sys

0x962F0000 \SystemRoot\System32\TSDDD.dll

0x96310000 \SystemRoot\System32\cdd.dll

0x8F5B9000 \SystemRoot\system32\drivers\luafv.sys

0x8E800000 \??\C:\Windows\system32\drivers\aswMonFlt.sys

0x8FC00000 \SystemRoot\System32\Drivers\aswFsBlk.SYS

0x96320000 \SystemRoot\System32\ATMFD.DLL

0xAB605000 \SystemRoot\system32\drivers\spsys.sys

0xAB6B4000 \SystemRoot\system32\DRIVERS\lltdio.sys

0xAB6C4000 \SystemRoot\system32\DRIVERS\nwifi.sys

0xAB6EE000 \SystemRoot\system32\DRIVERS\ndisuio.sys

0xAB6F8000 \SystemRoot\system32\DRIVERS\rspndr.sys

0xAB70B000 \SystemRoot\system32\drivers\HTTP.sys

0xAB778000 \SystemRoot\System32\DRIVERS\srvnet.sys

0xAB795000 \SystemRoot\system32\DRIVERS\bowser.sys

0xAB7AE000 \SystemRoot\System32\drivers\mpsdrv.sys

0xAB7C3000 \SystemRoot\system32\drivers\mrxdav.sys

0x8F5D4000 \SystemRoot\system32\DRIVERS\mrxsmb.sys

0x8E838000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys

0xAB7E3000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys

0x8E871000 \SystemRoot\System32\DRIVERS\srv2.sys

0xB1607000 \SystemRoot\System32\DRIVERS\srv.sys

0xB1656000 \SystemRoot\system32\DRIVERS\cdfs.sys

0xB166C000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys

0xB1670000 \SystemRoot\system32\drivers\peauth.sys

0xB174E000 \SystemRoot\System32\Drivers\secdrv.SYS

0xB1758000 \SystemRoot\System32\drivers\tcpipreg.sys

0xB1764000 \SystemRoot\system32\DRIVERS\xaudio.sys

0x77500000 \Windows\System32\ntdll.dll

Processes (total 73):

0 System Idle Process

4 System

532 C:\Windows\System32\smss.exe

632 csrss.exe

676 C:\Windows\System32\wininit.exe

688 csrss.exe

720 C:\Windows\System32\services.exe

732 C:\Windows\System32\lsass.exe

740 C:\Windows\System32\lsm.exe

792 C:\Windows\System32\winlogon.exe

944 C:\Windows\System32\svchost.exe

1004 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

1056 C:\Windows\System32\svchost.exe

1096 C:\Windows\System32\svchost.exe

1180 C:\Windows\System32\svchost.exe

1208 C:\Windows\System32\svchost.exe

1224 C:\Windows\System32\svchost.exe

1296 C:\Windows\System32\audiodg.exe

1364 C:\Windows\System32\SLsvc.exe

1412 C:\Windows\System32\svchost.exe

1616 C:\Windows\System32\svchost.exe

1840 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

1848 C:\Windows\System32\dwm.exe

1856 C:\Windows\explorer.exe

1980 C:\Program Files\Windows Defender\MSASCui.exe

1988 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

2008 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

332 C:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe

364 C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe

440 C:\Windows\System32\igfxtray.exe

460 C:\Windows\System32\hkcmd.exe

552 C:\Windows\System32\igfxpers.exe

544 C:\Windows\RtHDVCpl.exe

592 C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe

600 C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

596 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

636 C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe

692 C:\Program Files\Alwil Software\Avast5\AvastUI.exe

668 C:\Program Files\Windows Sidebar\sidebar.exe

712 C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe

524 C:\Windows\ehome\ehtray.exe

348 C:\Windows\System32\spoolsv.exe

436 C:\Windows\System32\taskeng.exe

2056 C:\Windows\System32\svchost.exe

2116 C:\Windows\System32\taskeng.exe

2172 C:\Windows\System32\taskeng.exe

2468 C:\Windows\System32\igfxsrvc.exe

2512 C:\Windows\ehome\ehmsas.exe

2792 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe

2872 C:\ProgramData\DatacardService\DCSHOST.exe

2992 C:\Windows\System32\svchost.exe

3000 C:\ProgramData\DatacardService\DataCardMonitor.exe

3044 C:\Windows\System32\svchost.exe

3116 C:\Program Files\Toshiba TEMPRO\TempoSVC.exe

3256 C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe

3520 C:\Windows\System32\TODDSrv.exe

3568 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

3632 C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe

3660 C:\Windows\System32\svchost.exe

3688 C:\Windows\System32\SearchIndexer.exe

3720 C:\Windows\System32\drivers\XAudio.exe

3896 C:\Windows\System32\igfxext.exe

3984 WmiPrvSE.exe

3432 C:\Windows\System32\SearchProtocolHost.exe

4400 C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe

4676 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

6100 C:\Windows\System32\SearchFilterHost.exe

3360 C:\Program Files\Google\Update\GoogleUpdate.exe

4636 C:\Windows\System32\ctfmon.exe

4164 dllhost.exe

1564 dllhost.exe

5052 C:\Users\Robin\Desktop\MBRCheck.exe

916 C:\Windows\System32\conime.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)

\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000025`96c00000 (NTFS)

PhysicalDrive0 Model Number: HitachiHTS543232L9SA00, Rev: FB4OC43C

Size Device Name MBR Status

--------------------------------------------

298 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected

SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979

Done!

jag antar att man ska ta bort alla mina program som jag har ladat ner på din uppmaning ?

30 juni, 2011

Jag har inte glömt dig men det kräver en hel del sökande och läsande för att komma underfund med hur det står till med din dator.

Kör RootkitUnhooker igen, men se till att datorn är startad i felsäkert läge och att inget annat är igång samtidigt. Det vara så tomt som möjligt i nedre högra hörnet där klockan är.

30 juni, 2011

det kommer upp en notis som lyder så här: error loding driver, NTSTATUS code oxcoooo35f

jag har försökt att installera om det men med samma resultat

1 juli, 2011

Det jag var mest orolig för i RootKitUnhooker-loggen visade sig vara något Toshiba-special.

Spara ComboFix på Skrivbordet: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Stäng av alla program du ser inklusive antivirusprogram och antispionprogram, men lämna brandväggen på.

Hur? Se http://www.bleepingcomputer.com/forums/topic114351.html

Kör ComboFix och följ anvisningarna som visas.

Om det kommer upp en fråga om du vill installera återställningskonsolen så svara Ja.

Mer detaljerad vägledning finns på http://www.bleepingcomputer.com/combofix/se/hur-combofix-ska-anvandas

VIKTIGT! Klicka inte på ComboFix-fönstret med musen när det körs eftersom så det kan hänga upp sig då.

När ComboFix är färdig ska en logg komma upp, klistra in den i ditt svar. Kontrollera att antivirusprogram mm är igång innan du ansluter till internet.

Om du får problem med att komma ut på internet:

Kontrollpanelen - Nätverksanslutningar

högerklicka på din internetanslutning och välj Reparera och/eller starta om datorn.

Varning! ComboFix förhindrar automatisk körning av CD, disketter och USB-enheter för att göra det lättare att rensa datorn och skydda datorn mot infektioner i framtiden. Det kan bli problem t ex om datorn har internet via ett USB-modem eller USB-nätverkskort. Säg då till i stället för att köra ComboFix.

1 juli, 2011

Spara aswMBR på skrivbordet: http://public.avast.com/~gmerek/aswMBR.exe

Starta om datorn och låt bli att starta några program.

Dubbel-klicka på aswMBR.exe för att köra programmet.

Klicka på Scan-knappen för att börja genomsökningen.

När den är klar så spara (Save) loggen på skrivbordet.

Klistra in loggen i ditt svar här.

1 juli, 2011

då tror jag inte det där combofix är det bästa eftersom det enda modemet jag har tillgång hemma (jag är på semester) är ett usb modem(ska jag ändå köra aswMBR)

1 juli, 2011

Kör AswMBR oavsett.

Det brukar gå bra att köra ComboFix ändå. Men har du möjlighet att installera om drivrutinerna till modemet om du skulle få problem?

2 juli, 2011

combofix log:

ComboFix 11-07-01.01 - Robin 2011-07-02 11:19:28.1.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.46.1053.18.2939.1776 [GMT 2:00]

Körs från: c:\users\Robin\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\windows\system32\no

c:\windows\system32\no\toscdspd.cpl.mui

c:\windows\system32\SV

c:\windows\system32\SV\AuthFWSnapIn.Resources.dll

c:\windows\system32\SV\AuthFWWizFwk.Resources.dll

c:\windows\system32\SV\Narrator.resources.dll

c:\windows\system32\SV\toscdspd.cpl.mui

.

c:\windows\system32\userinit.exe . . . är infekterad!!

.

(((((((((((((((((((((((( Filer skapade från 2011-06-02 till 2011-07-02 ))))))))))))))))))))))))))))))

.

2011-07-02 09:29 . 2011-07-02 09:33 -------- d-----w- c:\users\Robin\AppData\Local\temp

2011-07-02 09:29 . 2011-07-02 09:29 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-07-02 09:16 . 2011-07-02 09:17 -------- d-----w- C:\32788R22FWJFW

2011-07-01 07:26 . 2011-06-07 15:55 7074640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{5B3B6FA0-AC27-4BB8-B6D8-9414EF826103}\mpengine.dll

2011-06-30 16:26 . 2011-06-30 16:31 34560 ----a-w- c:\windows\system32\drivers\Normandy.sys

2011-06-29 12:31 . 2011-06-29 12:31 -------- d-----w- C:\_OTL

2011-06-29 08:50 . 2011-04-29 14:54 276992 ----a-w- c:\windows\system32\schannel.dll

2011-06-29 08:20 . 2011-06-29 08:20 2106216 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_43.dll

2011-06-29 08:20 . 2011-06-29 08:20 1998168 ----a-w- c:\program files\Mozilla Firefox\d3dx9_43.dll

2011-06-27 20:44 . 2011-04-21 13:16 273408 ----a-w- c:\windows\system32\drivers\afd.sys

2011-06-27 16:56 . 2011-05-02 15:58 738816 ----a-w- c:\windows\system32\inetcomm.dll

2011-06-27 16:56 . 2011-05-02 12:00 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat

2011-06-27 16:53 . 2011-04-14 14:24 75264 ----a-w- c:\windows\system32\drivers\dfsc.sys

2011-06-27 16:48 . 2010-12-20 15:39 563200 ----a-w- c:\windows\system32\oleaut32.dll

2011-06-04 11:00 . 2011-06-04 11:00 -------- d-----w- c:\windows\system32\EventProviders

2011-06-03 14:47 . 2011-06-03 14:47 -------- d-----w- c:\program files\ESET

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-05-24 17:14 . 2009-10-03 11:21 222080 ------w- c:\windows\system32\MpSigStub.exe

2011-05-10 12:10 . 2010-06-29 17:38 40112 ----a-w- c:\windows\avastSS.scr

2011-05-10 12:10 . 2009-01-03 13:00 199304 ----a-w- c:\windows\system32\aswBoot.exe

2011-05-10 12:03 . 2011-05-15 10:20 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2011-05-10 12:03 . 2009-01-03 13:00 307928 ----a-w- c:\windows\system32\drivers\aswSP.sys

2011-05-10 12:02 . 2009-01-03 13:00 49240 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2011-05-10 11:59 . 2009-01-03 13:00 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2011-05-10 11:59 . 2009-01-03 13:00 53592 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2011-05-10 11:59 . 2009-01-03 13:00 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2011-06-29 08:20 . 2011-04-17 06:58 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

*Not* tomma poster & legitima standardposter visas inte.

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2011-05-10 12:10 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-21 1233920]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]

"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-03-08 17037704]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-12-06 1029416]

"NDSTray.exe"="NDSTray.exe" [bU]

"Google EULA Launcher"="c:\program files\Google\Google EULA\GoogleEULALauncher.exe" [2008-05-28 20480]

"Toshiba TEMPO"="c:\program files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe" [2008-04-24 103824]

"topi"="c:\program files\TOSHIBA\Toshiba Online Product Information\topi.exe" [2007-07-10 581632]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-25 150040]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-25 170520]

"Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-25 145944]

"RtHDVCpl"="RtHDVCpl.exe" [2008-04-08 6037504]

"TPwrMain"="c:\program files\TOSHIBA\Power Saver\TPwrMain.EXE" [2008-01-17 431456]

"SmoothView"="c:\program files\Toshiba\SmoothView\SmoothView.exe" [2008-06-24 509816]

"00TCrdMain"="c:\program files\TOSHIBA\FlashCards\TCrdMain.exe" [2008-05-09 716800]

"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2008-01-11 574864]

"Camera Assistant Software"="c:\program files\Camera Assistant Software for Toshiba\traybar.exe" [2008-04-29 417792]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

TRDCReminder.lnk - c:\program files\TOSHIBA\TRDCReminder\TRDCReminder.exe [2008-3-5 393216]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]

"DisableMonitoring"=dword:00000001

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 gupdate1ca12b6782c6c05;Tjänsten Google Update (gupdate1ca12b6782c6c05);c:\program files\Google\Update\GoogleUpdate.exe [2009-08-01 133104]

R3 gupdatem;Tjänsten Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2009-08-01 133104]

R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [2008-12-30 103040]

R3 netr73;TL-WN321G Wireless USB Adapter Driver for Vista;c:\windows\system32\DRIVERS\netr73.sys [2007-05-11 329728]

R3 Normandy;Normandy SR2; [x]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-05-10 53592]

S2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [2008-04-16 40960]

S2 DCSHost.exe;DCSHost.exe;c:\programdata\DatacardService\DCSHost.exe [2009-05-19 110592]

S2 TempoMonitoringService;Notebook Performance Tuning Service ;c:\program files\Toshiba TEMPRO\TempoSVC.exe [2008-04-24 99720]

S2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2008-02-06 126976]

S3 FwLnk;FwLnk Driver;c:\windows\system32\DRIVERS\FwLnk.sys [2006-11-20 7168]

S3 RTL8187B;Realtek RTL8187B trådlös 802.11b/g 54Mbps USB 2.0 nätverksadapter;c:\windows\system32\DRIVERS\RTL8187B.sys [2007-12-26 290304]

.

Innehåll i mappen 'Schemalagda aktiviteter':

.

2011-07-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-01 14:43]

.

2011-07-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-01 14:43]

.

------- Extra genomsökning -------

.

uStart Page =

mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSEA&bmod=TSEA

IE: E&xportera till Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.1.1

FF - ProfilePath - c:\users\Robin\AppData\Roaming\Mozilla\Firefox\Profiles\cple6fxj.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/webhp?hl=sv&tab=iw

FF - user.js: general.useragent.extra.zencast - Creative ZENcast v1.02.10);user_pref(general.useragent.extra.zencast,

.

- - - - FÖRÄLDRALÖSA POSTER SOM TAGITS BORT - - - -

.

HKCU-Run-TOSCDSPD - TOSCDSPD.EXE

HKLM-Run-cfFncEnabler.exe - cfFncEnabler.exe

AddRemove-Malwarebytes' Anti-Malware_is1 - h:\dator\Malwarebytes' Anti-Malware\unins000.exe

AddRemove-Tele2 Mobile Partner - E:\data

AddRemove-{E1E502E2-C006-49DB-9C0C-F2196E51826F}_is1 - c:\users\Robin\AppData\Local\Temp\7zOAE19.tmp\jgjrus\unins000.exe

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2011-07-02 11:33

Windows 6.0.6001 Service Pack 1 NTFS

.

scanning hidden processes ...

.

scanning hidden autostart entries ...

.

scanning hidden files ...

.

scan completed successfully

hidden files: 0

.

**************************************************************************

.

--------------------- LÅSTA REGISTERNYCKLAR ---------------------

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)