Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Rederect Issue [Closed]


  • This topic is locked This topic is locked

#1
BeaverSniffer

BeaverSniffer

    Member

  • Member
  • PipPip
  • 13 posts
my computer does the rederect thing.. also cant turn on windows security center, and also unable to open microsoft security essentials.
  • 0

Advertisements


#2
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hello BeaverSniffer and welcome to my office here at G2G! :)

My nick is maliprog and I'll be your technical support on this issue. Before we start please read my notes carefully:

NOTES:
  • Malware removal is NOT instantaneous, most infections require several courses of action to completely eradicate.
  • Absence of symptoms does not always mean the computer is clean
  • Kindly follow my instructions in the order posted. Order is crucial in cleaning process.
  • Please DO NOT run any scans or fix on your own without my direction.
  • Please read all of my response through at least once before attempting to follow the procedures described.
  • If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste it to include the log in your reply.
  • You must reply within 3 days or your topic will be closed

Step 1

Download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Check the boxes beside:

    • Loaded modules

  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Make sure to check:

    • Services and drivers
    • Boot sectors
    • Loaded modules
    • Verify Driver Digital Signature
    • Detect TDLFS file system

  • then click OK.
  • Click the Start Scan button to start the scan.
  • If a suspicious object is detected, the default action will be Skip
  • If malicious objects are found, they will show in the Scan results and offer three (3) options.
  • Ensure Cure is selected for malicious objects

    Posted Image
  • Click Continue then Reboot now to finish the cleaning process.
  • Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.


Step 2

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

Step 3

Download OTL to your Desktop

  • Double click on the icon to run it (If running Vista or Windows 7, right click on it and select "Run as an Administrator"). Make sure all other windows are closed and to let it run uninterrupted.
  • Under the Custom Scan/Fixes box paste this in

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
services.exe
/md5stop
%systemroot%\*. /mp /s
%systemdrive%\$Recycle.Bin|@;true;true;true
CREATERESTOREPOINT

  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them if you need to start a new topic.

Step 4

Please don't forget to include these items in your reply:

  • TDSSKiller log
  • FSS log
  • OTL log
  • OTL Extras log
It would be helpful if you could post each log in separate post using "Add Reply" button
  • 0

#3
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
09:38:36.0670 2992 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
09:38:38.0682 2992 ============================================================
09:38:38.0682 2992 Current date / time: 2012/09/18 09:38:38.0682
09:38:38.0682 2992 SystemInfo:
09:38:38.0682 2992
09:38:38.0682 2992 OS Version: 6.1.7601 ServicePack: 1.0
09:38:38.0682 2992 Product type: Workstation
09:38:42.0395 2992 ComputerName: LENOVO
09:38:42.0395 2992 UserName: joe
09:38:42.0395 2992 Windows directory: C:\Windows
09:38:42.0395 2992 System windows directory: C:\Windows
09:38:42.0395 2992 Processor architecture: Intel x86
09:38:42.0395 2992 Number of processors: 2
09:38:42.0395 2992 Page size: 0x1000
09:38:42.0395 2992 Boot type: Normal boot
09:38:42.0395 2992 ============================================================
09:38:47.0855 2992 BG loaded
09:38:48.0541 2992 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
09:38:48.0557 2992 ============================================================
09:38:48.0557 2992 \Device\Harddisk0\DR0:
09:38:48.0572 2992 MBR partitions:
09:38:48.0572 2992 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:38:48.0572 2992 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
09:38:48.0572 2992 ============================================================
09:38:48.0650 2992 C: <-> \Device\Harddisk0\DR0\Partition2
09:38:48.0650 2992 ============================================================
09:38:48.0650 2992 Initialize success
09:38:48.0650 2992 ============================================================
09:44:24.0363 0864 ============================================================
09:44:24.0363 0864 Scan started
09:44:24.0363 0864 Mode: Manual; SigCheck; TDLFS;
09:44:24.0363 0864 ============================================================
09:44:25.0877 0864 ================ Scan system memory ========================
09:44:25.0877 0864 System memory - ok
09:44:25.0877 0864 ================ Scan services =============================
09:44:26.0625 0864 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:44:26.0813 0864 1394ohci - ok
09:44:26.0906 0864 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:44:26.0937 0864 ACPI - ok
09:44:26.0969 0864 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:44:27.0093 0864 AcpiPmi - ok
09:44:27.0156 0864 [ 6C61BCEB60C2C187E6F96001FD69493E ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
09:44:27.0249 0864 ADIHdAudAddService - ok
09:44:27.0374 0864 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:44:27.0421 0864 adp94xx - ok
09:44:27.0452 0864 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:44:27.0468 0864 adpahci - ok
09:44:27.0483 0864 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:44:27.0515 0864 adpu320 - ok
09:44:27.0624 0864 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:44:27.0749 0864 AeLookupSvc - ok
09:44:27.0967 0864 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
09:44:28.0107 0864 AFD - ok
09:44:28.0154 0864 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
09:44:28.0217 0864 agp440 - ok
09:44:28.0373 0864 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
09:44:28.0419 0864 aic78xx - ok
09:44:28.0685 0864 [ 9E989429631A0588C60C430FD7DB7576 ] aksfridge C:\Windows\system32\drivers\aksfridge.sys
09:44:28.0763 0864 aksfridge ( UnsignedFile.Multi.Generic ) - warning
09:44:28.0763 0864 aksfridge - detected UnsignedFile.Multi.Generic (1)
09:44:28.0965 0864 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
09:44:29.0168 0864 ALG - ok
09:44:29.0262 0864 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
09:44:29.0309 0864 aliide - ok
09:44:29.0402 0864 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
09:44:29.0433 0864 amdagp - ok
09:44:29.0465 0864 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
09:44:29.0511 0864 amdide - ok
09:44:29.0605 0864 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:44:29.0745 0864 AmdK8 - ok
09:44:29.0792 0864 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:44:29.0870 0864 AmdPPM - ok
09:44:29.0948 0864 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:44:30.0011 0864 amdsata - ok
09:44:30.0135 0864 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:44:30.0167 0864 amdsbs - ok
09:44:30.0198 0864 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:44:30.0245 0864 amdxata - ok
09:44:30.0354 0864 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
09:44:32.0039 0864 AppID - ok
09:44:32.0179 0864 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:44:32.0273 0864 AppIDSvc - ok
09:44:32.0366 0864 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
09:44:32.0429 0864 Appinfo - ok
09:44:32.0631 0864 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:44:32.0647 0864 Apple Mobile Device - ok
09:44:32.0694 0864 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
09:44:32.0772 0864 AppMgmt - ok
09:44:32.0803 0864 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
09:44:32.0819 0864 arc - ok
09:44:32.0834 0864 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:44:32.0850 0864 arcsas - ok
09:44:32.0881 0864 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:44:33.0053 0864 AsyncMac - ok
09:44:33.0099 0864 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
09:44:33.0115 0864 atapi - ok
09:44:33.0193 0864 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:44:33.0271 0864 AudioEndpointBuilder - ok
09:44:33.0287 0864 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
09:44:33.0318 0864 Audiosrv - ok
09:44:33.0427 0864 [ 39A8DB97747B5BC9EC17887B8BDAFE5A ] AvcUWil2 C:\Windows\system32\DRIVERS\avcuwil2.sys
09:44:33.0536 0864 AvcUWil2 - ok
09:44:33.0614 0864 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:44:33.0723 0864 AxInstSV - ok
09:44:33.0770 0864 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
09:44:33.0879 0864 b06bdrv - ok
09:44:33.0926 0864 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
09:44:33.0942 0864 b57nd60x - ok
09:44:33.0989 0864 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
09:44:34.0067 0864 BDESVC - ok
09:44:34.0082 0864 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
09:44:34.0145 0864 Beep - ok
09:44:34.0332 0864 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
09:44:34.0410 0864 BFE - ok
09:44:34.0644 0864 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\system32\qmgr.dll
09:44:34.0737 0864 BITS - ok
09:44:34.0815 0864 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:44:34.0878 0864 blbdrive - ok
09:44:35.0096 0864 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:44:35.0127 0864 Bonjour Service - ok
09:44:35.0205 0864 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:44:35.0268 0864 bowser - ok
09:44:35.0299 0864 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:44:35.0408 0864 BrFiltLo - ok
09:44:35.0424 0864 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:44:35.0486 0864 BrFiltUp - ok
09:44:35.0533 0864 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
09:44:35.0580 0864 BridgeMP - ok
09:44:35.0627 0864 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
09:44:35.0720 0864 Browser - ok
09:44:35.0798 0864 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:44:35.0923 0864 Brserid - ok
09:44:35.0939 0864 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:44:35.0970 0864 BrSerWdm - ok
09:44:36.0001 0864 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:44:36.0079 0864 BrUsbMdm - ok
09:44:36.0095 0864 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:44:36.0173 0864 BrUsbSer - ok
09:44:36.0188 0864 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:44:36.0251 0864 BTHMODEM - ok
09:44:36.0313 0864 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
09:44:36.0391 0864 bthserv - ok
09:44:36.0422 0864 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:44:36.0485 0864 cdfs - ok
09:44:36.0563 0864 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:44:36.0641 0864 cdrom - ok
09:44:36.0719 0864 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
09:44:36.0781 0864 CertPropSvc - ok
09:44:36.0828 0864 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:44:36.0859 0864 circlass - ok
09:44:36.0921 0864 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
09:44:36.0984 0864 CLFS - ok
09:44:37.0109 0864 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:44:37.0155 0864 clr_optimization_v2.0.50727_32 - ok
09:44:37.0280 0864 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:44:37.0343 0864 clr_optimization_v4.0.30319_32 - ok
09:44:37.0421 0864 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:44:37.0467 0864 CmBatt - ok
09:44:37.0499 0864 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:44:37.0545 0864 cmdide - ok
09:44:37.0592 0864 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
09:44:37.0655 0864 CNG - ok
09:44:37.0701 0864 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:44:37.0717 0864 Compbatt - ok
09:44:37.0779 0864 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:44:37.0826 0864 CompositeBus - ok
09:44:37.0857 0864 COMSysApp - ok
09:44:37.0873 0864 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:44:37.0889 0864 crcdisk - ok
09:44:37.0982 0864 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:44:38.0060 0864 CryptSvc - ok
09:44:38.0169 0864 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
09:44:38.0263 0864 CSC - ok
09:44:38.0481 0864 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
09:44:38.0513 0864 CscService - ok
09:44:38.0622 0864 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
09:44:38.0700 0864 DcomLaunch - ok
09:44:38.0747 0864 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
09:44:38.0825 0864 defragsvc - ok
09:44:38.0887 0864 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:44:38.0981 0864 DfsC - ok
09:44:39.0105 0864 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
09:44:39.0183 0864 Dhcp - ok
09:44:39.0277 0864 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
09:44:39.0355 0864 discache - ok
09:44:39.0417 0864 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:44:39.0433 0864 Disk - ok
09:44:39.0511 0864 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:44:39.0589 0864 Dnscache - ok
09:44:39.0714 0864 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
09:44:39.0776 0864 dot3svc - ok
09:44:39.0854 0864 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
09:44:39.0932 0864 DPS - ok
09:44:40.0010 0864 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:44:40.0057 0864 drmkaud - ok
09:44:40.0244 0864 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:44:40.0291 0864 DXGKrnl - ok
09:44:40.0322 0864 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
09:44:40.0385 0864 EapHost - ok
09:44:40.0775 0864 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
09:44:40.0962 0864 ebdrv - ok
09:44:41.0009 0864 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
09:44:41.0087 0864 EFS - ok
09:44:41.0321 0864 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:44:41.0399 0864 ehRecvr - ok
09:44:41.0461 0864 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
09:44:41.0508 0864 ehSched - ok
09:44:41.0570 0864 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:44:41.0617 0864 elxstor - ok
09:44:41.0664 0864 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:44:41.0695 0864 ErrDev - ok
09:44:41.0757 0864 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
09:44:41.0789 0864 EventSystem - ok
09:44:41.0820 0864 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
09:44:41.0851 0864 exfat - ok
09:44:41.0867 0864 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:44:41.0929 0864 fastfat - ok
09:44:42.0054 0864 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
09:44:42.0116 0864 Fax - ok
09:44:42.0132 0864 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:44:42.0179 0864 fdc - ok
09:44:42.0210 0864 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
09:44:42.0303 0864 fdPHost - ok
09:44:42.0335 0864 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
09:44:42.0397 0864 FDResPub - ok
09:44:42.0475 0864 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:44:42.0506 0864 FileInfo - ok
09:44:42.0522 0864 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:44:42.0600 0864 Filetrace - ok
09:44:42.0631 0864 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:44:42.0678 0864 flpydisk - ok
09:44:42.0725 0864 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:44:42.0740 0864 FltMgr - ok
09:44:42.0943 0864 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
09:44:43.0052 0864 FontCache - ok
09:44:43.0146 0864 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:44:43.0177 0864 FontCache3.0.0.0 - ok
09:44:43.0193 0864 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:44:43.0208 0864 FsDepends - ok
09:44:43.0255 0864 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:44:43.0286 0864 Fs_Rec - ok
09:44:43.0349 0864 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:44:43.0395 0864 fvevol - ok
09:44:43.0427 0864 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:44:43.0442 0864 gagp30kx - ok
09:44:43.0505 0864 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:44:43.0520 0864 GEARAspiWDM - ok
09:44:43.0676 0864 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
09:44:43.0754 0864 gpsvc - ok
09:44:43.0848 0864 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:44:43.0879 0864 gupdate - ok
09:44:43.0926 0864 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:44:43.0941 0864 gupdatem - ok
09:44:43.0973 0864 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:44:44.0051 0864 hcw85cir - ok
09:44:44.0160 0864 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:44:44.0222 0864 HdAudAddService - ok
09:44:44.0269 0864 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:44:44.0316 0864 HDAudBus - ok
09:44:44.0347 0864 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:44:44.0378 0864 HidBatt - ok
09:44:44.0409 0864 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:44:44.0456 0864 HidBth - ok
09:44:44.0487 0864 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:44:44.0534 0864 HidIr - ok
09:44:44.0581 0864 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
09:44:44.0628 0864 hidserv - ok
09:44:44.0706 0864 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:44:44.0753 0864 HidUsb - ok
09:44:44.0799 0864 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
09:44:44.0877 0864 hkmsvc - ok
09:44:44.0971 0864 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:44:45.0065 0864 HomeGroupListener - ok
09:44:45.0158 0864 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:44:45.0221 0864 HomeGroupProvider - ok
09:44:45.0283 0864 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:44:45.0330 0864 HpSAMD - ok
09:44:45.0408 0864 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
09:44:45.0501 0864 HSF_DPV - ok
09:44:45.0533 0864 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
09:44:45.0533 0864 HSXHWAZL - ok
09:44:45.0657 0864 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:44:45.0704 0864 HTTP - ok
09:44:45.0751 0864 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:44:45.0782 0864 hwpolicy - ok
09:44:45.0860 0864 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:44:45.0907 0864 i8042prt - ok
09:44:45.0985 0864 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:44:46.0001 0864 iaStorV - ok
09:44:46.0032 0864 [ BF648877413F6160E480814A24942B65 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
09:44:46.0047 0864 IBMPMDRV - ok
09:44:46.0063 0864 [ A75CE11915E4ECC5E1597D6E0F7BB2DB ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
09:44:46.0063 0864 IBMPMSVC - ok
09:44:46.0297 0864 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
09:44:46.0328 0864 IDriverT ( UnsignedFile.Multi.Generic ) - warning
09:44:46.0328 0864 IDriverT - detected UnsignedFile.Multi.Generic (1)
09:44:46.0500 0864 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:44:46.0562 0864 idsvc - ok
09:44:47.0249 0864 [ 1F50623259DF354776DF04C56504A2D7 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
09:44:47.0358 0864 igfx - ok
09:44:47.0405 0864 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:44:47.0420 0864 iirsp - ok
09:44:47.0607 0864 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
09:44:47.0701 0864 IKEEXT - ok
09:44:47.0779 0864 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
09:44:47.0826 0864 intelide - ok
09:44:47.0857 0864 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:44:47.0888 0864 intelppm - ok
09:44:47.0935 0864 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:44:47.0997 0864 IPBusEnum - ok
09:44:48.0044 0864 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:44:48.0122 0864 IpFilterDriver - ok
09:44:48.0294 0864 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:44:48.0372 0864 iphlpsvc - ok
09:44:48.0419 0864 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:44:48.0434 0864 IPMIDRV - ok
09:44:48.0465 0864 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:44:48.0528 0864 IPNAT - ok
09:44:48.0746 0864 [ 178FE38B7740F598391EB2F51AE4CCAC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:44:48.0777 0864 iPod Service - ok
09:44:48.0809 0864 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:44:48.0918 0864 IRENUM - ok
09:44:48.0933 0864 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:44:48.0949 0864 isapnp - ok
09:44:49.0043 0864 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:44:49.0089 0864 iScsiPrt - ok
09:44:49.0121 0864 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:44:49.0136 0864 kbdclass - ok
09:44:49.0167 0864 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:44:49.0230 0864 kbdhid - ok
09:44:49.0245 0864 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
09:44:49.0277 0864 KeyIso - ok
09:44:49.0323 0864 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:44:49.0370 0864 KSecDD - ok
09:44:49.0433 0864 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:44:49.0464 0864 KSecPkg - ok
09:44:49.0495 0864 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
09:44:49.0557 0864 KtmRm - ok
09:44:49.0620 0864 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
09:44:49.0682 0864 LanmanServer - ok
09:44:49.0760 0864 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:44:49.0807 0864 LanmanWorkstation - ok
09:44:49.0869 0864 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:44:49.0932 0864 lltdio - ok
09:44:50.0010 0864 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:44:50.0088 0864 lltdsvc - ok
09:44:50.0119 0864 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
09:44:50.0197 0864 lmhosts - ok
09:44:50.0244 0864 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:44:50.0259 0864 LSI_FC - ok
09:44:50.0275 0864 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:44:50.0291 0864 LSI_SAS - ok
09:44:50.0306 0864 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:44:50.0322 0864 LSI_SAS2 - ok
09:44:50.0353 0864 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:44:50.0369 0864 LSI_SCSI - ok
09:44:50.0384 0864 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
09:44:50.0431 0864 luafv - ok
09:44:50.0525 0864 [ 8FD868E32459ECE2A1BB0169F513D31E ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
09:44:50.0571 0864 mcdbus ( UnsignedFile.Multi.Generic ) - warning
09:44:50.0571 0864 mcdbus - detected UnsignedFile.Multi.Generic (1)
09:44:50.0618 0864 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:44:50.0649 0864 Mcx2Svc - ok
09:44:50.0696 0864 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
09:44:50.0759 0864 mdmxsdk - ok
09:44:50.0805 0864 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:44:50.0837 0864 megasas - ok
09:44:50.0868 0864 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:44:50.0899 0864 MegaSR - ok
09:44:50.0993 0864 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:44:51.0008 0864 Microsoft Office Groove Audit Service - ok
09:44:51.0055 0864 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
09:44:51.0102 0864 MMCSS - ok
09:44:51.0133 0864 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
09:44:51.0180 0864 Modem - ok
09:44:51.0227 0864 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:44:51.0273 0864 monitor - ok
09:44:51.0351 0864 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:44:51.0367 0864 mouclass - ok
09:44:51.0445 0864 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:44:51.0476 0864 mouhid - ok
09:44:51.0523 0864 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:44:51.0539 0864 mountmgr - ok
09:44:51.0663 0864 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
09:44:51.0695 0864 MpFilter - ok
09:44:51.0757 0864 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
09:44:51.0835 0864 mpio - ok
09:44:51.0882 0864 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:44:51.0960 0864 mpsdrv - ok
09:44:52.0209 0864 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:44:52.0319 0864 MpsSvc - ok
09:44:52.0381 0864 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:44:52.0459 0864 MRxDAV - ok
09:44:52.0537 0864 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:44:52.0615 0864 mrxsmb - ok
09:44:52.0693 0864 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:44:52.0709 0864 mrxsmb10 - ok
09:44:52.0787 0864 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:44:52.0818 0864 mrxsmb20 - ok
09:44:52.0896 0864 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
09:44:52.0911 0864 msahci - ok
09:44:52.0927 0864 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:44:52.0958 0864 msdsm - ok
09:44:52.0974 0864 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
09:44:53.0021 0864 MSDTC - ok
09:44:53.0052 0864 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:44:53.0099 0864 Msfs - ok
09:44:53.0130 0864 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:44:53.0223 0864 mshidkmdf - ok
09:44:53.0239 0864 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:44:53.0270 0864 msisadrv - ok
09:44:53.0317 0864 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:44:53.0364 0864 MSiSCSI - ok
09:44:53.0364 0864 msiserver - ok
09:44:53.0411 0864 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:44:53.0473 0864 MSKSSRV - ok
09:44:53.0582 0864 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:44:53.0613 0864 MsMpSvc - ok
09:44:53.0645 0864 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:44:53.0707 0864 MSPCLOCK - ok
09:44:53.0723 0864 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:44:53.0754 0864 MSPQM - ok
09:44:53.0816 0864 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:44:53.0863 0864 MsRPC - ok
09:44:53.0925 0864 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:44:53.0941 0864 mssmbios - ok
09:44:54.0003 0864 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:44:54.0035 0864 MSTEE - ok
09:44:54.0066 0864 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:44:54.0097 0864 MTConfig - ok
09:44:54.0128 0864 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
09:44:54.0159 0864 Mup - ok
09:44:54.0269 0864 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
09:44:54.0315 0864 napagent - ok
09:44:54.0378 0864 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:44:54.0456 0864 NativeWifiP - ok
09:44:54.0627 0864 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:44:54.0705 0864 NDIS - ok
09:44:54.0752 0864 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:44:54.0783 0864 NdisCap - ok
09:44:54.0815 0864 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:44:54.0861 0864 NdisTapi - ok
09:44:54.0908 0864 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:44:54.0955 0864 Ndisuio - ok
09:44:55.0033 0864 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:44:55.0095 0864 NdisWan - ok
09:44:55.0189 0864 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:44:55.0220 0864 NDProxy - ok
09:44:55.0267 0864 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:44:55.0329 0864 NetBIOS - ok
09:44:55.0392 0864 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:44:55.0470 0864 NetBT - ok
09:44:55.0501 0864 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
09:44:55.0517 0864 Netlogon - ok
09:44:55.0579 0864 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
09:44:55.0641 0864 Netman - ok
09:44:55.0719 0864 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
09:44:55.0766 0864 netprofm - ok
09:44:55.0844 0864 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:44:55.0860 0864 NetTcpPortSharing - ok
09:44:56.0702 0864 [ 39CBA1AE2A400EF99C3DEC9F9F601876 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
09:44:56.0874 0864 netw5v32 - ok
09:44:56.0921 0864 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:44:56.0936 0864 nfrd960 - ok
09:44:57.0030 0864 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:44:57.0061 0864 NisDrv - ok
09:44:57.0170 0864 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
09:44:57.0186 0864 NisSrv - ok
09:44:57.0248 0864 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:44:57.0342 0864 NlaSvc - ok
09:44:57.0389 0864 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:44:57.0482 0864 Npfs - ok
09:44:57.0529 0864 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
09:44:57.0638 0864 nsi - ok
09:44:57.0654 0864 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:44:57.0747 0864 nsiproxy - ok
09:44:57.0966 0864 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:44:58.0028 0864 Ntfs - ok
09:44:58.0075 0864 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
09:44:58.0075 0864 NuidFltr - ok
09:44:58.0122 0864 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
09:44:58.0200 0864 Null - ok
09:44:58.0262 0864 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:44:58.0293 0864 nvraid - ok
09:44:58.0325 0864 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:44:58.0356 0864 nvstor - ok
09:44:58.0371 0864 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:44:58.0387 0864 nv_agp - ok
09:44:58.0527 0864 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:44:58.0574 0864 odserv - ok
09:44:58.0637 0864 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:44:58.0699 0864 ohci1394 - ok
09:44:58.0746 0864 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:44:58.0761 0864 ose - ok
09:44:58.0793 0864 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:44:58.0871 0864 p2pimsvc - ok
09:44:58.0917 0864 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
09:44:58.0933 0864 p2psvc - ok
09:44:58.0964 0864 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:44:58.0980 0864 Parport - ok
09:44:59.0042 0864 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:44:59.0073 0864 partmgr - ok
09:44:59.0105 0864 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
09:44:59.0151 0864 Parvdm - ok
09:44:59.0183 0864 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:44:59.0214 0864 PcaSvc - ok
09:44:59.0292 0864 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
09:44:59.0339 0864 pci - ok
09:44:59.0370 0864 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
09:44:59.0385 0864 pciide - ok
09:44:59.0417 0864 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:44:59.0432 0864 pcmcia - ok
09:44:59.0448 0864 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
09:44:59.0463 0864 pcw - ok
09:44:59.0526 0864 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:44:59.0573 0864 PEAUTH - ok
09:44:59.0885 0864 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
09:45:00.0025 0864 pla - ok
09:45:00.0119 0864 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:45:00.0212 0864 PlugPlay - ok
09:45:00.0243 0864 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:45:00.0290 0864 PNRPAutoReg - ok
09:45:00.0384 0864 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:45:00.0415 0864 PNRPsvc - ok
09:45:00.0493 0864 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:45:00.0571 0864 PolicyAgent - ok
09:45:00.0618 0864 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
09:45:00.0696 0864 Power - ok
09:45:00.0743 0864 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:45:00.0758 0864 PptpMiniport - ok
09:45:00.0789 0864 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:45:00.0821 0864 Processor - ok
09:45:00.0899 0864 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
09:45:00.0992 0864 ProfSvc - ok
09:45:01.0008 0864 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:45:01.0023 0864 ProtectedStorage - ok
09:45:01.0086 0864 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
09:45:01.0117 0864 Ps2 - ok
09:45:01.0164 0864 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:45:01.0195 0864 Psched - ok
09:45:01.0460 0864 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:45:01.0585 0864 ql2300 - ok
09:45:01.0616 0864 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:45:01.0647 0864 ql40xx - ok
09:45:01.0679 0864 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
09:45:01.0725 0864 QWAVE - ok
09:45:01.0741 0864 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:45:01.0772 0864 QWAVEdrv - ok
09:45:01.0819 0864 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:45:01.0897 0864 RasAcd - ok
09:45:01.0959 0864 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:45:01.0975 0864 RasAgileVpn - ok
09:45:01.0991 0864 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
09:45:02.0037 0864 RasAuto - ok
09:45:02.0053 0864 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:45:02.0100 0864 Rasl2tp - ok
09:45:02.0240 0864 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
09:45:02.0318 0864 RasMan - ok
09:45:02.0349 0864 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:45:02.0365 0864 RasPppoe - ok
09:45:02.0412 0864 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:45:02.0474 0864 RasSstp - ok
09:45:02.0537 0864 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:45:02.0615 0864 rdbss - ok
09:45:02.0630 0864 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:45:02.0646 0864 rdpbus - ok
09:45:02.0708 0864 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:45:02.0786 0864 RDPCDD - ok
09:45:02.0833 0864 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
09:45:02.0895 0864 RDPDR - ok
09:45:02.0927 0864 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:45:02.0973 0864 RDPENCDD - ok
09:45:03.0005 0864 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:45:03.0036 0864 RDPREFMP - ok
09:45:03.0129 0864 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:45:03.0207 0864 RdpVideoMiniport - ok
09:45:03.0254 0864 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:45:03.0348 0864 RDPWD - ok
09:45:03.0410 0864 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:45:03.0441 0864 rdyboost - ok
09:45:03.0488 0864 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
09:45:03.0535 0864 RemoteAccess - ok
09:45:03.0582 0864 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:45:03.0629 0864 RemoteRegistry - ok
09:45:03.0660 0864 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:45:03.0722 0864 RpcEptMapper - ok
09:45:03.0769 0864 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
09:45:03.0816 0864 RpcLocator - ok
09:45:03.0863 0864 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
09:45:03.0909 0864 RpcSs - ok
09:45:03.0941 0864 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:45:04.0019 0864 rspndr - ok
09:45:04.0081 0864 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
09:45:04.0159 0864 s3cap - ok
09:45:04.0190 0864 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
09:45:04.0190 0864 SamSs - ok
09:45:04.0221 0864 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:45:04.0237 0864 sbp2port - ok
09:45:04.0268 0864 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:45:04.0331 0864 SCardSvr - ok
09:45:04.0362 0864 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:45:04.0377 0864 scfilter - ok
09:45:04.0518 0864 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
09:45:04.0627 0864 Schedule - ok
09:45:04.0658 0864 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
09:45:04.0705 0864 SCPolicySvc - ok
09:45:04.0736 0864 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
09:45:04.0783 0864 sdbus - ok
09:45:04.0830 0864 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:45:04.0908 0864 SDRSVC - ok
09:45:04.0955 0864 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:45:04.0986 0864 secdrv - ok
09:45:05.0017 0864 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
09:45:05.0095 0864 seclogon - ok
09:45:05.0126 0864 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
09:45:05.0189 0864 SENS - ok
09:45:05.0220 0864 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:45:05.0282 0864 Serenum - ok
09:45:05.0313 0864 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:45:05.0345 0864 Serial - ok
09:45:05.0407 0864 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:45:05.0438 0864 sermouse - ok
09:45:05.0516 0864 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
09:45:05.0579 0864 SessionEnv - ok
09:45:05.0688 0864 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
09:45:05.0750 0864 sffdisk - ok
09:45:05.0797 0864 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:45:05.0844 0864 sffp_mmc - ok
09:45:05.0875 0864 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
09:45:05.0922 0864 sffp_sd - ok
09:45:05.0969 0864 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:45:06.0031 0864 sfloppy - ok
09:45:06.0078 0864 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:45:06.0156 0864 SharedAccess - ok
09:45:06.0249 0864 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:45:06.0296 0864 ShellHWDetection - ok
09:45:06.0390 0864 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
09:45:06.0421 0864 sisagp - ok
09:45:06.0452 0864 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:45:06.0515 0864 SiSRaid2 - ok
09:45:06.0530 0864 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:45:06.0546 0864 SiSRaid4 - ok
09:45:06.0577 0864 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:45:06.0608 0864 Smb - ok
09:45:06.0655 0864 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:45:06.0671 0864 SNMPTRAP - ok
09:45:06.0686 0864 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
09:45:06.0702 0864 spldr - ok
09:45:06.0811 0864 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
09:45:06.0858 0864 Spooler - ok
09:45:07.0201 0864 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
09:45:07.0295 0864 sppsvc - ok
09:45:07.0373 0864 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:45:07.0419 0864 sppuinotify - ok
09:45:07.0497 0864 [ 4E3C4FFCB2C95C2EC1FA04A6F4531533 ] sptd C:\Windows\system32\Drivers\sptd.sys
09:45:07.0560 0864 sptd - ok
09:45:07.0653 0864 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:45:07.0731 0864 srv - ok
09:45:07.0778 0864 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:45:07.0794 0864 srv2 - ok
09:45:07.0856 0864 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
09:45:07.0903 0864 SrvHsfHDA - ok
09:45:08.0153 0864 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
09:45:08.0215 0864 SrvHsfV92 - ok
09:45:08.0355 0864 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
09:45:08.0402 0864 SrvHsfWinac - ok
09:45:08.0418 0864 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:45:08.0433 0864 srvnet - ok
09:45:08.0465 0864 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:45:08.0496 0864 SSDPSRV - ok
09:45:08.0527 0864 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:45:08.0589 0864 SstpSvc - ok
09:45:08.0636 0864 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:45:08.0683 0864 stexstor - ok
09:45:08.0730 0864 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
09:45:08.0808 0864 StillCam - ok
09:45:08.0948 0864 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
09:45:09.0026 0864 StiSvc - ok
09:45:09.0057 0864 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
09:45:09.0073 0864 storflt - ok
09:45:09.0135 0864 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
09:45:09.0167 0864 storvsc - ok
09:45:09.0213 0864 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
09:45:09.0229 0864 swenum - ok
09:45:09.0291 0864 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
09:45:09.0354 0864 swprv - ok
09:45:09.0447 0864 [ 85AA36B9C4C07CABC1B4E57E11E60E24 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
09:45:09.0479 0864 SynTP - ok
09:45:09.0697 0864 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
09:45:09.0744 0864 SysMain - ok
09:45:09.0791 0864 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:45:09.0853 0864 TabletInputService - ok
09:45:09.0947 0864 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
09:45:10.0025 0864 TapiSrv - ok
09:45:10.0056 0864 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
09:45:10.0103 0864 TBS - ok
09:45:10.0352 0864 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:45:10.0415 0864 Tcpip - ok
09:45:10.0477 0864 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:45:10.0508 0864 TCPIP6 - ok
09:45:10.0571 0864 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:45:10.0649 0864 tcpipreg - ok
09:45:10.0727 0864 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:45:10.0836 0864 TDPIPE - ok
09:45:10.0883 0864 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:45:10.0914 0864 TDTCP - ok
09:45:10.0976 0864 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:45:11.0039 0864 tdx - ok
09:45:11.0070 0864 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:45:11.0085 0864 TermDD - ok
09:45:11.0288 0864 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
09:45:11.0351 0864 TermService - ok
09:45:11.0382 0864 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
09:45:11.0397 0864 Themes - ok
09:45:11.0413 0864 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
09:45:11.0444 0864 THREADORDER - ok
09:45:11.0553 0864 [ 28B7F973C36D157A7885B1AE42A4A2A9 ] tifm21 C:\Windows\system32\drivers\tifm21.sys
09:45:11.0616 0864 tifm21 - ok
09:45:11.0772 0864 [ 1C950AE9C09904C229525F22EEFC15DB ] Tp4Track C:\Windows\system32\DRIVERS\tp4track.sys
09:45:11.0787 0864 Tp4Track - ok
09:45:11.0834 0864 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
09:45:11.0912 0864 TrkWks - ok
09:45:12.0037 0864 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:45:12.0084 0864 TrustedInstaller - ok
09:45:12.0146 0864 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:45:12.0240 0864 tssecsrv - ok
09:45:12.0349 0864 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:45:12.0427 0864 TsUsbFlt - ok
09:45:12.0505 0864 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:45:12.0567 0864 tunnel - ok
09:45:12.0599 0864 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:45:12.0630 0864 uagp35 - ok
09:45:12.0645 0864 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:45:12.0723 0864 udfs - ok
09:45:12.0770 0864 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:45:12.0848 0864 UI0Detect - ok
09:45:12.0895 0864 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:45:12.0911 0864 uliagpkx - ok
09:45:12.0989 0864 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
09:45:13.0035 0864 umbus - ok
09:45:13.0098 0864 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:45:13.0113 0864 UmPass - ok
09:45:13.0191 0864 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
09:45:13.0238 0864 UmRdpService - ok
09:45:13.0301 0864 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
09:45:13.0379 0864 upnphost - ok
09:45:13.0457 0864 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
09:45:13.0535 0864 USBAAPL - ok
09:45:13.0613 0864 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
09:45:13.0691 0864 usbaudio - ok
09:45:13.0784 0864 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:45:13.0831 0864 usbccgp - ok
09:45:13.0893 0864 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:45:13.0940 0864 usbcir - ok
09:45:14.0003 0864 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
09:45:14.0034 0864 usbehci - ok
09:45:14.0081 0864 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:45:14.0112 0864 usbhub - ok
09:45:14.0190 0864 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:45:14.0252 0864 usbohci - ok
09:45:14.0315 0864 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:45:14.0361 0864 usbprint - ok
09:45:14.0424 0864 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:45:14.0517 0864 USBSTOR - ok
09:45:14.0580 0864 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:45:14.0611 0864 usbuhci - ok
09:45:14.0642 0864 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
09:45:14.0689 0864 UxSms - ok
09:45:14.0751 0864 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
09:45:14.0767 0864 VaultSvc - ok
09:45:14.0845 0864 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:45:14.0876 0864 vdrvroot - ok
09:45:14.0954 0864 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
09:45:15.0017 0864 vds - ok
09:45:15.0063 0864 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:45:15.0110 0864 vga - ok
09:45:15.0141 0864 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:45:15.0173 0864 VgaSave - ok
09:45:15.0282 0864 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:45:15.0344 0864 vhdmp - ok
09:45:15.0375 0864 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
09:45:15.0391 0864 viaagp - ok
09:45:15.0422 0864 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
09:45:15.0485 0864 ViaC7 - ok
09:45:15.0531 0864 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
09:45:15.0547 0864 viaide - ok
09:45:15.0578 0864 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
09:45:15.0594 0864 vmbus - ok
09:45:15.0609 0864 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
09:45:15.0656 0864 VMBusHID - ok
09:45:15.0750 0864 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:45:15.0797 0864 volmgr - ok
09:45:15.0828 0864 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:45:15.0843 0864 volmgrx - ok
09:45:15.0906 0864 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:45:15.0953 0864 volsnap - ok
09:45:15.0984 0864 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:45:15.0999 0864 vsmraid - ok
09:45:16.0187 0864 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
09:45:16.0296 0864 VSS - ok
09:45:16.0327 0864 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
09:45:16.0405 0864 vwifibus - ok
09:45:16.0467 0864 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
09:45:16.0561 0864 W32Time - ok
09:45:16.0623 0864 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:45:16.0686 0864 WacomPen - ok
09:45:16.0826 0864 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:45:16.0920 0864 WANARP - ok
09:45:16.0935 0864 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:45:16.0967 0864 Wanarpv6 - ok
09:45:17.0310 0864 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
09:45:17.0481 0864 wbengine - ok
09:45:17.0559 0864 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:45:17.0622 0864 WbioSrvc - ok
09:45:17.0731 0864 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:45:17.0762 0864 wcncsvc - ok
09:45:17.0856 0864 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:45:17.0981 0864 WcsPlugInService - ok
09:45:18.0090 0864 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:45:18.0183 0864 Wd - ok
09:45:18.0324 0864 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:45:18.0417 0864 Wdf01000 - ok
09:45:18.0464 0864 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:45:18.0589 0864 WdiServiceHost - ok
09:45:18.0589 0864 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:45:18.0620 0864 WdiSystemHost - ok
09:45:18.0776 0864 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
09:45:18.0839 0864 WebClient - ok
09:45:18.0948 0864 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:45:18.0995 0864 Wecsvc - ok
09:45:19.0073 0864 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:45:19.0166 0864 wercplsupport - ok
09:45:19.0213 0864 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
09:45:19.0291 0864 WerSvc - ok
09:45:19.0338 0864 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:45:19.0369 0864 WfpLwf - ok
09:45:19.0447 0864 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:45:19.0463 0864 WIMMount - ok
09:45:19.0556 0864 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
09:45:19.0587 0864 winachsf - ok
09:45:19.0587 0864 WinHttpAutoProxySvc - ok
09:45:19.0821 0864 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:45:19.0868 0864 Winmgmt - ok
09:45:20.0024 0864 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
09:45:20.0118 0864 WinRM - ok
09:45:20.0196 0864 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
09:45:20.0243 0864 WinUsb - ok
09:45:20.0445 0864 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:45:20.0508 0864 Wlansvc - ok
09:45:20.0555 0864 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:45:20.0617 0864 WmiAcpi - ok
09:45:20.0695 0864 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:45:20.0757 0864 wmiApSrv - ok
09:45:21.0101 0864 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
09:45:21.0194 0864 WMPNetworkSvc - ok
09:45:21.0241 0864 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:45:21.0288 0864 WPCSvc - ok
09:45:21.0366 0864 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:45:21.0428 0864 WPDBusEnum - ok
09:45:21.0491 0864 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:45:21.0569 0864 ws2ifsl - ok
09:45:21.0600 0864 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
09:45:21.0662 0864 wscsvc - ok
09:45:21.0662 0864 WSearch - ok
09:45:22.0099 0864 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
09:45:22.0146 0864 wuauserv - ok
09:45:22.0224 0864 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:45:22.0286 0864 WudfPf - ok
09:45:22.0333 0864 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:45:22.0364 0864 WUDFRd - ok
09:45:22.0427 0864 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:45:22.0473 0864 wudfsvc - ok
09:45:22.0536 0864 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
09:45:22.0598 0864 WwanSvc - ok
09:45:22.0661 0864 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
09:45:22.0723 0864 XAudio - ok
09:45:22.0817 0864 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
09:45:22.0848 0864 XAudioService - ok
09:45:22.0879 0864 ================ Scan global ===============================
09:45:22.0926 0864 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
09:45:23.0004 0864 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
09:45:23.0035 0864 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
09:45:23.0082 0864 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
09:45:23.0175 0864 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
09:45:23.0175 0864 [Global] - ok
09:45:23.0175 0864 ================ Scan MBR ==================================
09:45:23.0191 0864 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:45:24.0751 0864 \Device\Harddisk0\DR0 - ok
09:45:24.0751 0864 ================ Scan VBR ==================================
09:45:24.0782 0864 [ C8FD144B84E282FF04249F708B8F260F ] \Device\Harddisk0\DR0\Partition1
09:45:24.0798 0864 \Device\Harddisk0\DR0\Partition1 - ok
09:45:24.0813 0864 [ 388AF7337341E22F7FB4C7B164DA9CC9 ] \Device\Harddisk0\DR0\Partition2
09:45:24.0813 0864 \Device\Harddisk0\DR0\Partition2 - ok
09:45:24.0813 0864 ================ Scan active images ========================
09:45:24.0813 0864 [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
09:45:24.0813 0864 C:\Windows\System32\drivers\crashdmp.sys - ok
09:45:24.0829 0864 [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
09:45:24.0829 0864 C:\Windows\System32\drivers\Dumpata.sys - ok
09:45:24.0829 0864 [ 012C5F4E9349E711E11E0F19A8589F0A ] C:\Windows\System32\drivers\msahci.sys
09:45:24.0829 0864 C:\Windows\System32\drivers\msahci.sys - ok
09:45:24.0845 0864 [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
09:45:24.0845 0864 C:\Windows\System32\drivers\dumpfve.sys - ok
09:45:24.0845 0864 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] C:\Windows\System32\drivers\cdrom.sys
09:45:24.0845 0864 C:\Windows\System32\drivers\cdrom.sys - ok
09:45:24.0845 0864 [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
09:45:24.0845 0864 C:\Windows\System32\drivers\null.sys - ok
09:45:24.0845 0864 [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
09:45:24.0845 0864 C:\Windows\System32\drivers\beep.sys - ok
09:45:24.0860 0864 [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
09:45:24.0860 0864 C:\Windows\System32\drivers\vga.sys - ok
09:45:24.0860 0864 [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
09:45:24.0860 0864 C:\Windows\System32\drivers\videoprt.sys - ok
09:45:24.0860 0864 [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
09:45:24.0860 0864 C:\Windows\System32\drivers\watchdog.sys - ok
09:45:24.0860 0864 [ 23DAE03F29D253AE74C44F99E515F9A1 ] C:\Windows\System32\drivers\RDPCDD.sys
09:45:24.0860 0864 C:\Windows\System32\drivers\RDPCDD.sys - ok
09:45:24.0876 0864 [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
09:45:24.0876 0864 C:\Windows\System32\drivers\RDPENCDD.sys - ok
09:45:24.0876 0864 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
09:45:24.0876 0864 C:\Windows\System32\drivers\RDPREFMP.sys - ok
09:45:24.0891 0864 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
09:45:24.0891 0864 C:\Windows\System32\drivers\msfs.sys - ok
09:45:24.0891 0864 [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
09:45:24.0891 0864 C:\Windows\System32\drivers\npfs.sys - ok
09:45:24.0907 0864 [ 2F885864D5BC8A16C86BEE595969A48A ] C:\Windows\System32\drivers\tdi.sys
09:45:24.0907 0864 C:\Windows\System32\drivers\tdi.sys - ok
09:45:24.0907 0864 [ B459575348C20E8121D6039DA063C704 ] C:\Windows\System32\drivers\tdx.sys
09:45:24.0907 0864 C:\Windows\System32\drivers\tdx.sys - ok
09:45:24.0907 0864 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] C:\Windows\System32\drivers\afd.sys
09:45:24.0907 0864 C:\Windows\System32\drivers\afd.sys - ok
09:45:24.0923 0864 [ 280122DDCF04B378EDD1AD54D71C1E54 ] C:\Windows\System32\drivers\netbt.sys
09:45:24.0923 0864 C:\Windows\System32\drivers\netbt.sys - ok
09:45:24.0923 0864 [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
09:45:24.0923 0864 C:\Windows\System32\drivers\pacer.sys - ok
09:45:24.0923 0864 [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
09:45:24.0923 0864 C:\Windows\System32\drivers\wfplwf.sys - ok
09:45:24.0938 0864 [ 6DB3276587B853BF886B69528FDB048C ] C:\Windows\System32\drivers\ws2ifsl.sys
09:45:24.0938 0864 C:\Windows\System32\drivers\ws2ifsl.sys - ok
09:45:24.0938 0864 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
09:45:24.0938 0864 C:\Windows\System32\drivers\netbios.sys - ok
09:45:24.0954 0864 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] C:\Windows\System32\drivers\wanarp.sys
09:45:24.0954 0864 C:\Windows\System32\drivers\wanarp.sys - ok
09:45:24.0954 0864 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] C:\Windows\System32\drivers\termdd.sys
09:45:24.0954 0864 C:\Windows\System32\drivers\termdd.sys - ok
09:45:24.0954 0864 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
09:45:24.0954 0864 C:\Windows\System32\drivers\nsiproxy.sys - ok
09:45:24.0969 0864 [ D528BC58A489409BA40334EBF96A311B ] C:\Windows\System32\drivers\rdbss.sys
09:45:24.0969 0864 C:\Windows\System32\drivers\rdbss.sys - ok
09:45:24.0969 0864 [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
09:45:24.0969 0864 C:\Windows\System32\drivers\discache.sys - ok
09:45:24.0985 0864 [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
09:45:24.0985 0864 C:\Windows\System32\drivers\mssmbios.sys - ok
09:45:24.0985 0864 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] C:\Windows\System32\drivers\csc.sys
09:45:24.0985 0864 C:\Windows\System32\drivers\csc.sys - ok
09:45:24.0985 0864 [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
09:45:24.0985 0864 C:\Windows\System32\drivers\blbdrive.sys - ok
09:45:25.0001 0864 [ F024449C97EC1E464AAFFDA18593DB88 ] C:\Windows\System32\drivers\dfsc.sys
09:45:25.0001 0864 C:\Windows\System32\drivers\dfsc.sys - ok
09:45:25.0001 0864 [ B2FA25D9B17A68BB93D58B0556E8C90D ] C:\Windows\System32\drivers\tunnel.sys
09:45:25.0001 0864 C:\Windows\System32\drivers\tunnel.sys - ok
09:45:25.0001 0864 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys
09:45:25.0001 0864 C:\Windows\System32\drivers\intelppm.sys - ok
09:45:25.0016 0864 [ 1F50623259DF354776DF04C56504A2D7 ] C:\Windows\System32\drivers\igdkmd32.sys
09:45:25.0016 0864 C:\Windows\System32\drivers\igdkmd32.sys - ok
09:45:25.0016 0864 [ C30A91ADE8C9CB91E4281EC83C4500C6 ] C:\Windows\System32\ntdll.dll
09:45:25.0016 0864 C:\Windows\System32\ntdll.dll - ok
09:45:25.0016 0864 [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
09:45:25.0016 0864 C:\Windows\System32\smss.exe - ok
09:45:25.0032 0864 [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\Windows\System32\autochk.exe
09:45:25.0032 0864 C:\Windows\System32\autochk.exe - ok
09:45:25.0032 0864 [ 23F5D28378A160352BA8F817BD8C71CB ] C:\Windows\System32\drivers\dxgkrnl.sys
09:45:25.0032 0864 C:\Windows\System32\drivers\dxgkrnl.sys - ok
09:45:25.0047 0864 [ D458D1C7F1D49869000668E3C3BB0D4D ] C:\Windows\System32\drivers\dxgmms1.sys
09:45:25.0047 0864 C:\Windows\System32\drivers\dxgmms1.sys - ok
09:45:25.0047 0864 [ BD8869EB9CDE6BBE4508D869929869EE ] C:\Windows\System32\drivers\b57nd60x.sys
09:45:25.0047 0864 C:\Windows\System32\drivers\b57nd60x.sys - ok
09:45:25.0047 0864 [ 9036377B8A6C15DC2EEC53E489D159B5 ] C:\Windows\System32\drivers\hdaudbus.sys
09:45:25.0047 0864 C:\Windows\System32\drivers\hdaudbus.sys - ok
09:45:25.0063 0864 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\System32\advapi32.dll
09:45:25.0063 0864 C:\Windows\System32\advapi32.dll - ok
09:45:25.0063 0864 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\System32\oleaut32.dll
09:45:25.0063 0864 C:\Windows\System32\oleaut32.dll - ok
09:45:25.0063 0864 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\System32\comdlg32.dll
09:45:25.0063 0864 C:\Windows\System32\comdlg32.dll - ok
09:45:25.0079 0864 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\System32\shlwapi.dll
09:45:25.0079 0864 C:\Windows\System32\shlwapi.dll - ok
09:45:25.0079 0864 [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
09:45:25.0079 0864 C:\Windows\System32\clbcatq.dll - ok
09:45:25.0094 0864 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
09:45:25.0094 0864 C:\Windows\System32\nsi.dll - ok
09:45:25.0094 0864 [ E570CBD732848438EAC574EB3442A2A8 ] C:\Windows\System32\kernel32.dll
09:45:25.0094 0864 C:\Windows\System32\kernel32.dll - ok
09:45:25.0094 0864 [ 39CBA1AE2A400EF99C3DEC9F9F601876 ] C:\Windows\System32\drivers\NETw5v32.sys
09:45:25.0094 0864 C:\Windows\System32\drivers\NETw5v32.sys - ok
09:45:25.0110 0864 [ 3AA940AA9AC3055FE32FF2D3D20CCD28 ] C:\Windows\System32\drivers\usbport.sys
09:45:25.0110 0864 C:\Windows\System32\drivers\usbport.sys - ok
09:45:25.0110 0864 [ 68DF884CF41CDADA664BEB01DAF67E3D ] C:\Windows\System32\drivers\usbuhci.sys
09:45:25.0110 0864 C:\Windows\System32\drivers\usbuhci.sys - ok
09:45:25.0125 0864 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] C:\Windows\System32\drivers\1394ohci.sys
09:45:25.0125 0864 C:\Windows\System32\drivers\1394ohci.sys - ok
09:45:25.0125 0864 [ 28B7F973C36D157A7885B1AE42A4A2A9 ] C:\Windows\System32\drivers\tifm21.sys
09:45:25.0125 0864 C:\Windows\System32\drivers\tifm21.sys - ok
09:45:25.0125 0864 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] C:\Windows\System32\drivers\usbehci.sys
09:45:25.0125 0864 C:\Windows\System32\drivers\usbehci.sys - ok
09:45:25.0141 0864 [ 0328BE1C7F1CBA23848179F8762E391C ] C:\Windows\System32\drivers\sdbus.sys
09:45:25.0141 0864 C:\Windows\System32\drivers\sdbus.sys - ok
09:45:25.0141 0864 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
09:45:25.0141 0864 C:\Windows\System32\drivers\i8042prt.sys - ok
09:45:25.0157 0864 [ BFFDB363485501A38F0BCA83AEC810DB ] C:\Windows\System32\drivers\PS2.sys
09:45:25.0157 0864 C:\Windows\System32\drivers\PS2.sys - ok
09:45:25.0157 0864 [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
09:45:25.0157 0864 C:\Windows\System32\drivers\kbdclass.sys - ok
09:45:25.0172 0864 [ 1C950AE9C09904C229525F22EEFC15DB ] C:\Windows\System32\drivers\tp4track.sys
09:45:25.0172 0864 C:\Windows\System32\drivers\tp4track.sys - ok
09:45:25.0172 0864 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
09:45:25.0172 0864 C:\Windows\System32\drivers\mouclass.sys - ok
09:45:25.0172 0864 [ DEA805815E587DAD1DD2C502220B5616 ] C:\Windows\System32\drivers\CmBatt.sys
09:45:25.0172 0864 C:\Windows\System32\drivers\CmBatt.sys - ok
09:45:25.0172 0864 [ BF648877413F6160E480814A24942B65 ] C:\Windows\System32\drivers\ibmpmdrv.sys
09:45:25.0172 0864 C:\Windows\System32\drivers\ibmpmdrv.sys - ok
09:45:25.0188 0864 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\Windows\System32\drivers\GEARAspiWDM.sys
09:45:25.0188 0864 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
09:45:25.0188 0864 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] C:\Windows\System32\drivers\CompositeBus.sys
09:45:25.0188 0864 C:\Windows\System32\drivers\CompositeBus.sys - ok
09:45:25.0188 0864 [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
09:45:25.0188 0864 C:\Windows\System32\drivers\agilevpn.sys - ok
09:45:25.0188 0864 [ EDB05BD63148796F23EA78506404A538 ] C:\Windows\System32\drivers\serscan.sys
09:45:25.0188 0864 C:\Windows\System32\drivers\serscan.sys - ok
09:45:25.0203 0864 [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
09:45:25.0203 0864 C:\Windows\System32\drivers\rasl2tp.sys - ok
09:45:25.0203 0864 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
09:45:25.0203 0864 C:\Windows\System32\drivers\ndistapi.sys - ok
09:45:25.0203 0864 [ 38FBE267E7E6983311179230FACB1017 ] C:\Windows\System32\drivers\ndiswan.sys
09:45:25.0203 0864 C:\Windows\System32\drivers\ndiswan.sys - ok
09:45:25.0219 0864 [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
09:45:25.0219 0864 C:\Windows\System32\drivers\raspppoe.sys - ok
09:45:25.0219 0864 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
09:45:25.0219 0864 C:\Windows\System32\drivers\raspptp.sys - ok
09:45:25.0219 0864 [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
09:45:25.0219 0864 C:\Windows\System32\drivers\rassstp.sys - ok
09:45:25.0219 0864 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
09:45:25.0219 0864 C:\Windows\System32\drivers\rdpbus.sys - ok
09:45:25.0235 0864 [ 8FD868E32459ECE2A1BB0169F513D31E ] C:\Windows\System32\drivers\mcdbus.sys
09:45:25.0235 0864 C:\Windows\System32\drivers\mcdbus.sys - ok
09:45:25.0235 0864 [ 5DCEF0C32BE0F33277326586FA503689 ] C:\Windows\System32\drivers\ks.sys
09:45:25.0235 0864 C:\Windows\System32\drivers\ks.sys - ok
09:45:25.0235 0864 [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
09:45:25.0235 0864 C:\Windows\System32\drivers\swenum.sys - ok
09:45:25.0235 0864 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] C:\Windows\System32\drivers\circlass.sys
09:45:25.0235 0864 C:\Windows\System32\drivers\circlass.sys - ok
09:45:25.0250 0864 [ D295BED4B898F0FD999FCFA9B32B071B ] C:\Windows\System32\drivers\umbus.sys
09:45:25.0250 0864 C:\Windows\System32\drivers\umbus.sys - ok
09:45:25.0250 0864 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] C:\Windows\System32\drivers\usbhub.sys
09:45:25.0250 0864 C:\Windows\System32\drivers\usbhub.sys - ok
09:45:25.0250 0864 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] C:\Windows\System32\drivers\ndproxy.sys
09:45:25.0250 0864 C:\Windows\System32\drivers\ndproxy.sys - ok
09:45:25.0250 0864 [ 667981F2E7C26275F0694B58EEE303B9 ] C:\Windows\System32\urlmon.dll
09:45:25.0250 0864 C:\Windows\System32\urlmon.dll - ok
09:45:25.0266 0864 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\System32\usp10.dll
09:45:25.0266 0864 C:\Windows\System32\usp10.dll - ok
09:45:25.0266 0864 [ 6C61BCEB60C2C187E6F96001FD69493E ] C:\Windows\System32\drivers\ADIHdAud.sys
09:45:25.0266 0864 C:\Windows\System32\drivers\ADIHdAud.sys - ok
09:45:25.0266 0864 [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
09:45:25.0266 0864 C:\Windows\System32\drivers\drmk.sys - ok
09:45:25.0281 0864 [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
09:45:25.0281 0864 C:\Windows\System32\drivers\portcls.sys - ok
09:45:25.0281 0864 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] C:\Windows\System32\drivers\HSXHWAZL.sys
09:45:25.0281 0864 C:\Windows\System32\drivers\HSXHWAZL.sys - ok
09:45:25.0281 0864 [ 7BC42C65B5C6281777C1A7605B253BA8 ] C:\Windows\System32\drivers\HSX_DPV.sys
09:45:25.0281 0864 C:\Windows\System32\drivers\HSX_DPV.sys - ok
09:45:25.0281 0864 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] C:\Windows\System32\drivers\HSX_CNXT.sys
09:45:25.0281 0864 C:\Windows\System32\drivers\HSX_CNXT.sys - ok
09:45:25.0297 0864 [ F001861E5700EE84E2D4E52C712F4964 ] C:\Windows\System32\drivers\modem.sys
09:45:25.0297 0864 C:\Windows\System32\drivers\modem.sys - ok
09:45:25.0297 0864 [ 931A1DF1520ABC6E84BA4A75E6957025 ] C:\Windows\System32\drivers\hidclass.sys
09:45:25.0297 0864 C:\Windows\System32\drivers\hidclass.sys - ok
09:45:25.0297 0864 [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
09:45:25.0297 0864 C:\Windows\System32\drivers\hidparse.sys - ok
09:45:25.0313 0864 [ 5787196F32D043572EC6565C0EF1B8E0 ] C:\Windows\System32\drivers\usbd.sys
09:45:25.0313 0864 C:\Windows\System32\drivers\usbd.sys - ok
09:45:25.0313 0864 [ 10C19F8290891AF023EAEC0832E1EB4D ] C:\Windows\System32\drivers\hidusb.sys
09:45:25.0313 0864 C:\Windows\System32\drivers\hidusb.sys - ok
09:45:25.0313 0864 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] C:\Windows\System32\drivers\mouhid.sys
09:45:25.0313 0864 C:\Windows\System32\drivers\mouhid.sys - ok
09:45:25.0328 0864 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
09:45:25.0328 0864 C:\Windows\System32\msctf.dll - ok
09:45:25.0328 0864 [ 77EA11B065E0A8AB902D78145CA51E10 ] C:\Windows\System32\drivers\cdfs.sys
09:45:25.0328 0864 C:\Windows\System32\drivers\cdfs.sys - ok
09:45:25.0328 0864 [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
09:45:25.0328 0864 C:\Windows\System32\difxapi.dll - ok
09:45:25.0328 0864 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
09:45:25.0328 0864 C:\Windows\System32\normaliz.dll - ok
09:45:25.0344 0864 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
09:45:25.0344 0864 C:\Windows\System32\psapi.dll - ok
09:45:25.0344 0864 [ 4A8E2F20809CC161107FAA94F6CF2685 ] C:\Windows\System32\imm32.dll
09:45:25.0344 0864 C:\Windows\System32\imm32.dll - ok
09:45:25.0344 0864 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\System32\msvcrt.dll
09:45:25.0344 0864 C:\Windows\System32\msvcrt.dll - ok
09:45:25.0359 0864 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\System32\ole32.dll
09:45:25.0359 0864 C:\Windows\System32\ole32.dll - ok
09:45:25.0359 0864 [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
09:45:25.0359 0864 C:\Windows\System32\lpk.dll - ok
09:45:25.0359 0864 [ 75A97A2C060E72AB49E071E08C7DD2BA ] C:\Windows\System32\wininet.dll
09:45:25.0359 0864 C:\Windows\System32\wininet.dll - ok
09:45:25.0375 0864 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\System32\shell32.dll
09:45:25.0375 0864 C:\Windows\System32\shell32.dll - ok
09:45:25.0375 0864 [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 ] C:\Windows\System32\user32.dll
09:45:25.0375 0864 C:\Windows\System32\user32.dll - ok
09:45:25.0375 0864 [ E87F5393F7D8CE2FACC4DFF703531392 ] C:\Windows\System32\gdi32.dll
09:45:25.0375 0864 C:\Windows\System32\gdi32.dll - ok
09:45:25.0375 0864 [ 6400774E903729ADD0A62A24A334EE56 ] C:\Windows\System32\rpcrt4.dll
09:45:25.0375 0864 C:\Windows\System32\rpcrt4.dll - ok
09:45:25.0391 0864 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\System32\imagehlp.dll
09:45:25.0391 0864 C:\Windows\System32\imagehlp.dll - ok
09:45:25.0391 0864 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\System32\setupapi.dll
09:45:25.0391 0864 C:\Windows\System32\setupapi.dll - ok
09:45:25.0391 0864 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\System32\ws2_32.dll
09:45:25.0391 0864 C:\Windows\System32\ws2_32.dll - ok
09:45:25.0406 0864 [ B17ADBBBDC97148D28F995F32C380F2E ] C:\Windows\System32\iertutil.dll
09:45:25.0406 0864 C:\Windows\System32\iertutil.dll - ok
09:45:25.0406 0864 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
09:45:25.0406 0864 C:\Windows\System32\sechost.dll - ok
09:45:25.0406 0864 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\System32\Wldap32.dll
09:45:25.0406 0864 C:\Windows\System32\Wldap32.dll - ok
09:45:25.0406 0864 [ 1295338CFE6F249823EF9BC8D4368A84 ] C:\Windows\System32\crypt32.dll
09:45:25.0406 0864 C:\Windows\System32\crypt32.dll - ok
09:45:25.0422 0864 [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
09:45:25.0422 0864 C:\Windows\System32\devobj.dll - ok
09:45:25.0422 0864 [ A9F8E23C1FC00190376B11FFAD9DE6C6 ] C:\Windows\System32\KernelBase.dll
09:45:25.0422 0864 C:\Windows\System32\KernelBase.dll - ok
09:45:25.0422 0864 [ A7D79E9F660340AB20CD73F12910985F ] C:\Windows\System32\wintrust.dll
09:45:25.0422 0864 C:\Windows\System32\wintrust.dll - ok
09:45:25.0437 0864 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\System32\comctl32.dll
09:45:25.0437 0864 C:\Windows\System32\comctl32.dll - ok
09:45:25.0437 0864 [ 3FFAEA12666E565FF51BF2FCA674F543 ] C:\Windows\System32\cfgmgr32.dll
09:45:25.0437 0864 C:\Windows\System32\cfgmgr32.dll - ok
09:45:25.0437 0864 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\System32\msasn1.dll
09:45:25.0437 0864 C:\Windows\System32\msasn1.dll - ok
09:45:25.0437 0864 [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
09:45:25.0437 0864 C:\Windows\System32\drivers\dxapi.sys - ok
09:45:25.0453 0864 [ A36F22FB7A78A0591DA3A6E0783825E7 ] C:\Windows\System32\win32k.sys
09:45:25.0453 0864 C:\Windows\System32\win32k.sys - ok
09:45:25.0453 0864 [ 6C062EA09313872D2235027EF7A4554E ] C:\Windows\System32\csrsrv.dll
09:45:25.0453 0864 C:\Windows\System32\csrsrv.dll - ok
09:45:25.0453 0864 [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
09:45:25.0453 0864 C:\Windows\System32\csrss.exe - ok
09:45:25.0469 0864 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\System32\basesrv.dll
09:45:25.0469 0864 C:\Windows\System32\basesrv.dll - ok
09:45:25.0469 0864 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\System32\winsrv.dll
09:45:25.0469 0864 C:\Windows\System32\winsrv.dll - ok
09:45:25.0469 0864 [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
09:45:25.0469 0864 C:\Windows\System32\drivers\monitor.sys - ok
09:45:25.0469 0864 [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
09:45:25.0469 0864 C:\Windows\System32\tsddd.dll - ok
09:45:25.0484 0864 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
09:45:25.0484 0864 C:\Windows\System32\sxssrv.dll - ok
09:45:25.0484 0864 [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
09:45:25.0484 0864 C:\Windows\System32\wininit.exe - ok
09:45:25.0484 0864 [ 357B990A4249D7F7485B230C0CC8825A ] C:\Windows\System32\KBDUS.DLL
09:45:25.0484 0864 C:\Windows\System32\KBDUS.DLL - ok
09:45:25.0500 0864 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
09:45:25.0500 0864 C:\Windows\System32\profapi.dll - ok
09:45:25.0500 0864 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\System32\RpcRtRemote.dll
09:45:25.0500 0864 C:\Windows\System32\RpcRtRemote.dll - ok
09:45:25.0500 0864 [ CAEF9CD6C10B1017E2C298D849CD31DB ] C:\Windows\System32\cdd.dll
09:45:25.0500 0864 C:\Windows\System32\cdd.dll - ok
09:45:25.0500 0864 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
09:45:25.0500 0864 C:\Windows\System32\WlS0WndH.dll - ok
09:45:25.0515 0864 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\System32\sxs.dll
09:45:25.0515 0864 C:\Windows\System32\sxs.dll - ok
09:45:25.0515 0864 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
09:45:25.0515 0864 C:\Windows\System32\cryptbase.dll - ok
09:45:25.0515 0864 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\System32\apphelp.dll
09:45:25.0515 0864 C:\Windows\System32\apphelp.dll - ok
09:45:25.0515 0864 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
09:45:25.0515 0864 C:\Windows\System32\services.exe - ok
09:45:25.0531 0864 [ C95CA687D32DDAB1C91E1122E80D5E16 ] C:\Windows\System32\lsasrv.dll
09:45:25.0531 0864 C:\Windows\System32\lsasrv.dll - ok
09:45:25.0531 0864 [ 81951F51E318AECC2D68559E47485CC4 ] C:\Windows\System32\lsass.exe
09:45:25.0531 0864 C:\Windows\System32\lsass.exe - ok
09:45:25.0531 0864 [ 8AEA9A37C1A3565A204D37C5E72AB791 ] C:\Windows\System32\lsm.exe
09:45:25.0531 0864 C:\Windows\System32\lsm.exe - ok
09:45:25.0547 0864 [ 250AA41DE690561AF1282D598914564C ] C:\Windows\System32\scesrv.dll
09:45:25.0547 0864 C:\Windows\System32\scesrv.dll - ok
09:45:25.0547 0864 [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
09:45:25.0547 0864 C:\Windows\System32\scext.dll - ok
09:45:25.0547 0864 [ 69678722290C78D5D7198C60B5A4E3E8 ] C:\Windows\System32\secur32.dll
09:45:25.0547 0864 C:\Windows\System32\secur32.dll - ok
09:45:25.0547 0864 [ 4A054C853031616D161A84BECF281F47 ] C:\Windows\System32\sspicli.dll
09:45:25.0547 0864 C:\Windows\System32\sspicli.dll - ok
09:45:25.0562 0864 [ E361AE3010EA4B3123DAB5BDAE21798F ] C:\Windows\System32\sspisrv.dll
09:45:25.0562 0864 C:\Windows\System32\sspisrv.dll - ok
09:45:25.0562 0864 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\System32\srvcli.dll
09:45:25.0562 0864 C:\Windows\System32\srvcli.dll - ok
09:45:25.0562 0864 [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
09:45:25.0562 0864 C:\Windows\System32\sysntfy.dll - ok
09:45:25.0578 0864 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
09:45:25.0578 0864 C:\Windows\System32\wmsgapi.dll - ok
09:45:25.0578 0864 [ 245F4691314F42D4D1BC06442F0B2086 ] C:\Windows\System32\samsrv.dll
09:45:25.0578 0864 C:\Windows\System32\samsrv.dll - ok
09:45:25.0578 0864 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
09:45:25.0578 0864 C:\Windows\System32\cryptdll.dll - ok
09:45:25.0578 0864 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
09:45:25.0578 0864 C:\Windows\System32\wevtapi.dll - ok
09:45:25.0593 0864 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
09:45:25.0593 0864 C:\Windows\System32\authz.dll - ok
09:45:25.0593 0864 [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
09:45:25.0593 0864 C:\Windows\System32\bcrypt.dll - ok
09:45:25.0593 0864 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
09:45:25.0593 0864 C:\Windows\System32\cngaudit.dll - ok
09:45:25.0609 0864 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\System32\ncrypt.dll
09:45:25.0609 0864 C:\Windows\System32\ncrypt.dll - ok
09:45:25.0609 0864 [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
09:45:25.0609 0864 C:\Windows\System32\msprivs.dll - ok
09:45:25.0609 0864 [ ED4649A28AFE0B3DB93C3198BA48E34E ] C:\Windows\System32\atmfd.dll
09:45:25.0609 0864 C:\Windows\System32\atmfd.dll - ok
09:45:25.0609 0864 [ E343CABBD8D600ABAF3F11625D33B3D0 ] C:\Windows\System32\netjoin.dll
09:45:25.0609 0864 C:\Windows\System32\netjoin.dll - ok
09:45:25.0625 0864 [ 2F4348DC0D06A0EBA5F5C4CB435790C1 ] C:\Windows\System32\kerberos.dll
09:45:25.0625 0864 C:\Windows\System32\kerberos.dll - ok
09:45:25.0625 0864 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
09:45:25.0625 0864 C:\Windows\System32\negoexts.dll - ok
09:45:25.0625 0864 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
09:45:25.0625 0864 C:\Windows\System32\cryptsp.dll - ok
09:45:25.0625 0864 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\System32\mswsock.dll
09:45:25.0625 0864 C:\Windows\System32\mswsock.dll - ok
09:45:25.0640 0864 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
09:45:25.0640 0864 C:\Windows\System32\wship6.dll - ok
09:45:25.0640 0864 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\System32\msv1_0.dll
09:45:25.0640 0864 C:\Windows\System32\msv1_0.dll - ok
09:45:25.0640 0864 [ C1809B9907ADEDAF16F50C894100883B ] C:\Windows\System32\netlogon.dll
09:45:25.0640 0864 C:\Windows\System32\netlogon.dll - ok
09:45:25.0640 0864 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\System32\dnsapi.dll
09:45:25.0656 0864 C:\Windows\System32\dnsapi.dll - ok
09:45:25.0656 0864 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\System32\logoncli.dll
09:45:25.0656 0864 C:\Windows\System32\logoncli.dll - ok
09:45:25.0656 0864 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\System32\schannel.dll
09:45:25.0656 0864 C:\Windows\System32\schannel.dll - ok
09:45:25.0656 0864 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
09:45:25.0656 0864 C:\Windows\System32\wdigest.dll - ok
09:45:25.0671 0864 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
09:45:25.0671 0864 C:\Windows\System32\rsaenh.dll - ok
09:45:25.0671 0864 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
09:45:25.0671 0864 C:\Windows\System32\bcryptprimitives.dll - ok
09:45:25.0671 0864 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
09:45:25.0671 0864 C:\Windows\System32\pku2u.dll - ok
09:45:25.0671 0864 [ D29E45078CF4020CE0AAC82EC652D1EA ] C:\Windows\System32\TSpkg.dll
09:45:25.0671 0864 C:\Windows\System32\TSpkg.dll - ok
09:45:25.0687 0864 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\System32\credssp.dll
09:45:25.0687 0864 C:\Windows\System32\credssp.dll - ok
09:45:25.0687 0864 [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
09:45:25.0687 0864 C:\Windows\System32\efslsaext.dll - ok
09:45:25.0687 0864 [ 8124944EC89D6A1815E4E53F5B96AAF4 ] C:\Windows\System32\scecli.dll
09:45:25.0687 0864 C:\Windows\System32\scecli.dll - ok
09:45:25.0687 0864 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
09:45:25.0687 0864 C:\Windows\System32\ubpm.dll - ok
09:45:25.0703 0864 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\System32\winsta.dll
09:45:25.0703 0864 C:\Windows\System32\winsta.dll - ok
09:45:25.0703 0864 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
09:45:25.0703 0864 C:\Windows\System32\svchost.exe - ok
09:45:25.0703 0864 [ 6D13E1406F50C66E2A95D97F22C47560 ] C:\Windows\System32\winlogon.exe
09:45:25.0703 0864 C:\Windows\System32\winlogon.exe - ok
09:45:25.0718 0864 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] C:\Windows\System32\umpnpmgr.dll
09:45:25.0718 0864 C:\Windows\System32\umpnpmgr.dll - ok
09:45:25.0718 0864 [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
09:45:25.0718 0864 C:\Windows\System32\devrtl.dll - ok
09:45:25.0718 0864 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
09:45:25.0718 0864 C:\Windows\System32\SPInf.dll - ok
09:45:25.0718 0864 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\System32\userenv.dll
09:45:25.0718 0864 C:\Windows\System32\userenv.dll - ok
09:45:25.0734 0864 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
09:45:25.0734 0864 C:\Windows\System32\gpapi.dll - ok
09:45:25.0734 0864 [ F87D30E72E03D579A5199CCB3831D6EA ] C:\Windows\System32\umpo.dll
09:45:25.0734 0864 C:\Windows\System32\umpo.dll - ok
09:45:25.0734 0864 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
09:45:25.0734 0864 C:\Windows\System32\pcwum.dll - ok
09:45:25.0749 0864 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
09:45:25.0749 0864 C:\Windows\System32\powrprof.dll - ok
09:45:25.0749 0864 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
09:45:25.0749 0864 C:\Windows\System32\drivers\luafv.sys - ok
09:45:25.0749 0864 [ E714A1C0354636837E20CCBF00888EE7 ] C:\Windows\System32\drivers\WUDFPf.sys
09:45:25.0749 0864 C:\Windows\System32\drivers\WUDFPf.sys - ok
09:45:25.0749 0864 [ A75CE11915E4ECC5E1597D6E0F7BB2DB ] C:\Windows\System32\ibmpmsvc.exe
09:45:25.0749 0864 C:\Windows\System32\ibmpmsvc.exe - ok
09:45:25.0765 0864 [ 7660F01D3B38ACA1747E397D21D790AF ] C:\Windows\System32\rpcss.dll
09:45:25.0765 0864 C:\Windows\System32\rpcss.dll - ok
09:45:25.0765 0864 [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
09:45:25.0765 0864 C:\Windows\System32\RpcEpMap.dll - ok
09:45:25.0765 0864 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
09:45:25.0765 0864 C:\Windows\System32\wshqos.dll - ok
09:45:25.0781 0864 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
09:45:25.0781 0864 C:\Windows\System32\WSHTCPIP.DLL - ok
09:45:25.0781 0864 [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
09:45:25.0781 0864 C:\Windows\System32\FirewallAPI.dll - ok
09:45:25.0781 0864 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
09:45:25.0781 0864 C:\Windows\System32\ntmarta.dll - ok
09:45:25.0796 0864 [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\System32\authui.dll
09:45:25.0796 0864 C:\Windows\System32\authui.dll - ok
09:45:25.0796 0864 [ 3EF0D8AB08385AAB5802E773511A2E6A ] C:\Windows\System32\LogonUI.exe
09:45:25.0796 0864 C:\Windows\System32\LogonUI.exe - ok
09:45:25.0796 0864 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
09:45:25.0796 0864 C:\Windows\System32\version.dll - ok
09:45:25.0796 0864 [ 241E015DD809CFB23242F890B1FC575B ] C:\Windows\System32\wevtsvc.dll
09:45:25.0796 0864 C:\Windows\System32\wevtsvc.dll - ok
09:45:25.0812 0864 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] C:\Windows\System32\audiosrv.dll
09:45:25.0812 0864 C:\Windows\System32\audiosrv.dll - ok
09:45:25.0812 0864 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\System32\MMDevAPI.dll
09:45:25.0812 0864 C:\Windows\System32\MMDevAPI.dll - ok
09:45:25.0812 0864 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\System32\propsys.dll
09:45:25.0812 0864 C:\Windows\System32\propsys.dll - ok
09:45:25.0827 0864 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
09:45:25.0827 0864 C:\Windows\System32\avrt.dll - ok
09:45:25.0827 0864 [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
09:45:25.0827 0864 C:\Windows\System32\mmcss.dll - ok
09:45:25.0827 0864 [ F68194F74350D4A2ADE98961E33F884C ] C:\Windows\System32\audiodg.exe
09:45:25.0827 0864 C:\Windows\System32\audiodg.exe - ok
09:45:25.0827 0864 [ 15F93B37F6801943360D9EB42485D5D3 ] C:\Windows\System32\cscsvc.dll
09:45:25.0827 0864 C:\Windows\System32\cscsvc.dll - ok
09:45:25.0843 0864 [ E897EAF5ED6BA41E081060C9B447A673 ] C:\Windows\System32\gpsvc.dll
09:45:25.0843 0864 C:\Windows\System32\gpsvc.dll - ok
09:45:25.0843 0864 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
09:45:25.0843 0864 C:\Windows\System32\PeerDist.dll - ok
09:45:25.0843 0864 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\System32\taskschd.dll
09:45:25.0843 0864 C:\Windows\System32\taskschd.dll - ok
09:45:25.0859 0864 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\System32\mstask.dll
09:45:25.0859 0864 C:\Windows\System32\mstask.dll - ok
09:45:25.0859 0864 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
09:45:25.0859 0864 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
09:45:25.0859 0864 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\System32\wtsapi32.dll
09:45:25.0859 0864 C:\Windows\System32\wtsapi32.dll - ok
09:45:25.0859 0864 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
09:45:25.0859 0864 C:\Windows\System32\es.dll - ok
09:45:25.0874 0864 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\System32\nlaapi.dll
09:45:25.0874 0864 C:\Windows\System32\nlaapi.dll - ok
09:45:25.0874 0864 [ CADEFAC453040E370A1BDFF3973BE00D ] C:\Windows\System32\profsvc.dll
09:45:25.0874 0864 C:\Windows\System32\profsvc.dll - ok
09:45:25.0890 0864 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
09:45:25.0890 0864 C:\Windows\System32\atl.dll - ok
09:45:25.0890 0864 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
09:45:25.0890 0864 C:\Windows\System32\dsrole.dll - ok
09:45:25.0890 0864 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
09:45:25.0890 0864 C:\Windows\System32\themeservice.dll - ok
09:45:25.0890 0864 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
09:45:25.0890 0864 C:\Windows\System32\Sens.dll - ok
09:45:25.0905 0864 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
09:45:25.0905 0864 C:\Windows\System32\slc.dll - ok
09:45:25.0905 0864 [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
09:45:25.0905 0864 C:\Windows\System32\uxsms.dll - ok
09:45:25.0905 0864 [ 9FBCFD7E88A7ACE0E94456504895DD7F ] C:\Windows\System32\WUDFPlatform.dll
09:45:25.0905 0864 C:\Windows\System32\WUDFPlatform.dll - ok
09:45:25.0905 0864 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] C:\Windows\System32\WUDFSvc.dll
09:45:25.0905 0864 C:\Windows\System32\WUDFSvc.dll - ok
09:45:25.0921 0864 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
09:45:25.0921 0864 C:\Windows\System32\drivers\lltdio.sys - ok
09:45:25.0921 0864 [ D8A65DAFB3EB41CBB622745676FCD072 ] C:\Windows\System32\drivers\ndisuio.sys
09:45:25.0921 0864 C:\Windows\System32\drivers\ndisuio.sys - ok
09:45:25.0921 0864 [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
09:45:25.0921 0864 C:\Windows\System32\drivers\nwifi.sys - ok
09:45:25.0937 0864 [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
09:45:25.0937 0864 C:\Windows\System32\drivers\rspndr.sys - ok
09:45:25.0937 0864 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\System32\IPHLPAPI.DLL
09:45:25.0937 0864 C:\Windows\System32\IPHLPAPI.DLL - ok
09:45:25.0937 0864 [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
09:45:25.0937 0864 C:\Windows\System32\lmhsvc.dll - ok
09:45:25.0937 0864 [ D2A937964199F647B1C3BC435712E5D9 ] C:\Windows\System32\nrpsrv.dll
09:45:25.0937 0864 C:\Windows\System32\nrpsrv.dll - ok
09:45:25.0952 0864 [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
09:45:25.0952 0864 C:\Windows\System32\nsisvc.dll - ok
09:45:25.0952 0864 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
09:45:25.0952 0864 C:\Windows\System32\winnsi.dll - ok
09:45:25.0952 0864 [ E9E01EB683C132F7FA27CD607B8A2B63 ] C:\Windows\System32\dhcpcore.dll
09:45:25.0952 0864 C:\Windows\System32\dhcpcore.dll - ok
09:45:25.0968 0864 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll
09:45:25.0968 0864 C:\Windows\System32\keyiso.dll - ok
09:45:25.0968 0864 [ 990A58A0B01720E419B55EFC5FF387F8 ] C:\Windows\System32\dhcpcore6.dll
09:45:25.0968 0864 C:\Windows\System32\dhcpcore6.dll - ok
09:45:25.0968 0864 [ 33EF4861F19A0736B11314AAD9AE28D0 ] C:\Windows\System32\dnsrslvr.dll
09:45:25.0968 0864 C:\Windows\System32\dnsrslvr.dll - ok
09:45:25.0983 0864 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\System32\FWPUCLNT.DLL
09:45:25.0983 0864 C:\Windows\System32\FWPUCLNT.DLL - ok
09:45:25.0983 0864 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
09:45:25.0983 0864 C:\Windows\System32\dhcpcsvc.dll - ok
09:45:25.0983 0864 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\System32\dhcpcsvc6.dll
09:45:25.0983 0864 C:\Windows\System32\dhcpcsvc6.dll - ok
09:45:25.0999 0864 [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
09:45:25.0999 0864 C:\Windows\System32\dnsext.dll - ok
09:45:25.0999 0864 [ 9A892B3439884C62B04718F0303A49E9 ] C:\Windows\System32\eapphost.dll
09:45:25.0999 0864 C:\Windows\System32\eapphost.dll - ok
09:45:25.0999 0864 [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll
09:45:25.0999 0864 C:\Windows\System32\eapsvc.dll - ok
09:45:25.0999 0864 [ D33E95C0A2754061233B58DC41F8094C ] C:\Windows\System32\umb.dll
09:45:25.0999 0864 C:\Windows\System32\umb.dll - ok
09:45:26.0015 0864 [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
09:45:26.0015 0864 C:\Windows\System32\wlansvc.dll - ok
09:45:26.0015 0864 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
09:45:26.0015 0864 C:\Windows\System32\comres.dll - ok
09:45:26.0015 0864 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\System32\cryptui.dll
09:45:26.0015 0864 C:\Windows\System32\cryptui.dll - ok
09:45:26.0030 0864 [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\System32\shacct.dll
09:45:26.0030 0864 C:\Windows\System32\shacct.dll - ok
09:45:26.0030 0864 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
09:45:26.0030 0864 C:\Windows\System32\samlib.dll - ok
09:45:26.0030 0864 [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
09:45:26.0030 0864 C:\Windows\System32\uxtheme.dll - ok
09:45:26.0030 0864 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
09:45:26.0030 0864 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
09:45:26.0046 0864 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
09:45:26.0046 0864 C:\Windows\System32\dui70.dll - ok
09:45:26.0046 0864 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
09:45:26.0046 0864 C:\Windows\System32\duser.dll - ok
09:45:26.0046 0864 [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\System32\SndVolSSO.dll
09:45:26.0046 0864 C:\Windows\System32\SndVolSSO.dll - ok
09:45:26.0061 0864 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
09:45:26.0061 0864 C:\Windows\System32\dwmapi.dll - ok
09:45:26.0061 0864 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
09:45:26.0061 0864 C:\Windows\System32\hid.dll - ok
09:45:26.0061 0864 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\System32\xmllite.dll
09:45:26.0061 0864 C:\Windows\System32\xmllite.dll - ok
09:45:26.0061 0864 [ 3C9035085141162416A0DD34DBF3F3C1 ] C:\Windows\System32\wlanmsm.dll
09:45:26.0061 0864 C:\Windows\System32\wlanmsm.dll - ok
09:45:26.0077 0864 [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\System32\onex.dll
09:45:26.0077 0864 C:\Windows\System32\onex.dll - ok
09:45:26.0077 0864 [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll
09:45:26.0077 0864 C:\Windows\System32\wlansec.dll - ok
09:45:26.0077 0864 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
09:45:26.0077 0864 C:\Windows\System32\eappcfg.dll - ok
09:45:26.0077 0864 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
09:45:26.0077 0864 C:\Windows\System32\eappprxy.dll - ok
09:45:26.0093 0864 [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll
09:45:26.0093 0864 C:\Windows\System32\l2gpstore.dll - ok
09:45:26.0093 0864 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\System32\WinSCard.dll
09:45:26.0093 0864 C:\Windows\System32\WinSCard.dll - ok
09:45:26.0093 0864 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
09:45:26.0093 0864 C:\Windows\System32\wlanutil.dll - ok
09:45:26.0108 0864 [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll
09:45:26.0108 0864 C:\Windows\System32\wlgpclnt.dll - ok
09:45:26.0108 0864 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\System32\msxml6.dll
09:45:26.0108 0864 C:\Windows\System32\msxml6.dll - ok
09:45:26.0108 0864 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\System32\WindowsCodecs.dll
09:45:26.0108 0864 C:\Windows\System32\WindowsCodecs.dll - ok
09:45:26.0124 0864 [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
09:45:26.0124 0864 C:\Windows\System32\VaultCredProvider.dll - ok
09:45:26.0124 0864 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
09:45:26.0124 0864 C:\Windows\System32\winbrand.dll - ok
09:45:26.0124 0864 [ 05BF975CA428E04B462FB90841B37C95 ] C:\Windows\System32\SmartcardCredentialProvider.dll
09:45:26.0124 0864 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
09:45:26.0124 0864 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
09:45:26.0124 0864 C:\Windows\System32\BioCredProv.dll - ok
09:45:26.0139 0864 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\System32\credui.dll
09:45:26.0139 0864 C:\Windows\System32\credui.dll - ok
09:45:26.0139 0864 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\System32\netapi32.dll
09:45:26.0139 0864 C:\Windows\System32\netapi32.dll - ok
09:45:26.0139 0864 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\System32\netutils.dll
09:45:26.0139 0864 C:\Windows\System32\netutils.dll - ok
09:45:26.0139 0864 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
09:45:26.0139 0864 C:\Windows\System32\vaultcli.dll - ok
09:45:26.0155 0864 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
09:45:26.0155 0864 C:\Windows\System32\winbio.dll - ok
09:45:26.0155 0864 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\System32\wkscli.dll
09:45:26.0155 0864 C:\Windows\System32\wkscli.dll - ok
09:45:26.0155 0864 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\System32\samcli.dll
09:45:26.0155 0864 C:\Windows\System32\samcli.dll - ok
09:45:26.0155 0864 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
09:45:26.0155 0864 C:\Windows\System32\certCredProvider.dll - ok
09:45:26.0171 0864 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
09:45:26.0171 0864 C:\Windows\System32\rasplap.dll - ok
09:45:26.0171 0864 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
09:45:26.0171 0864 C:\Windows\System32\rasapi32.dll - ok
09:45:26.0171 0864 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
09:45:26.0171 0864 C:\Windows\System32\rasman.dll - ok
09:45:26.0186 0864 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\System32\rtutils.dll
09:45:26.0186 0864 C:\Windows\System32\rtutils.dll - ok
09:45:26.0186 0864 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\System32\oleacc.dll
09:45:26.0186 0864 C:\Windows\System32\oleacc.dll - ok
09:45:26.0186 0864 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
09:45:26.0186 0864 C:\Windows\System32\UIAutomationCore.dll - ok
09:45:26.0202 0864 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
09:45:26.0202 0864 C:\Windows\System32\netprofm.dll - ok
09:45:26.0202 0864 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\System32\shsvcs.dll
09:45:26.0202 0864 C:\Windows\System32\shsvcs.dll - ok
09:45:26.0202 0864 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
09:45:26.0202 0864 C:\Windows\System32\UXInit.dll - ok
09:45:26.0202 0864 [ A04BB13F8A72F8B6E8B4071723E4E336 ] C:\Windows\System32\schedsvc.dll
09:45:26.0202 0864 C:\Windows\System32\schedsvc.dll - ok
09:45:26.0217 0864 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
09:45:26.0217 0864 C:\Windows\System32\ktmw32.dll - ok
09:45:26.0217 0864 [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
09:45:26.0217 0864 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
09:45:26.0217 0864 [ E6D90DC604F407B3B5E0FD285E46B2A0 ] C:\Windows\System32\fveapi.dll
09:45:26.0217 0864 C:\Windows\System32\fveapi.dll - ok
09:45:26.0233 0864 [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
09:45:26.0233 0864 C:\Windows\System32\fvecerts.dll - ok
09:45:26.0233 0864 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
09:45:26.0233 0864 C:\Windows\System32\tbs.dll - ok
09:45:26.0233 0864 [ 1C3E8371377E988B683797A132EFFE1B ] C:\Windows\System32\taskcomp.dll
09:45:26.0233 0864 C:\Windows\System32\taskcomp.dll - ok
09:45:26.0233 0864 [ E2D56AE1D40E3725084054CD8E9CFBB1 ] C:\Windows\System32\wiarpc.dll
09:45:26.0233 0864 C:\Windows\System32\wiarpc.dll - ok
09:45:26.0249 0864 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
09:45:26.0249 0864 C:\Windows\System32\imageres.dll - ok
09:45:26.0249 0864 [ 871917B07A141BFF43D76D8844D48106 ] C:\Windows\System32\drivers\http.sys
09:45:26.0249 0864 C:\Windows\System32\drivers\http.sys - ok
09:45:26.0249 0864 [ 9AEA093B8F9C37CF45538382CABA2475 ] C:\Windows\System32\spoolsv.exe
09:45:26.0249 0864 C:\Windows\System32\spoolsv.exe - ok
09:45:26.0249 0864 [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\System32\taskeng.exe
09:45:26.0249 0864 C:\Windows\System32\taskeng.exe - ok
09:45:26.0264 0864 [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
09:45:26.0264 0864 C:\Windows\System32\adtschema.dll - ok
09:45:26.0264 0864 [ 382C804C92811BE57829D8E550A900E2 ] C:\Windows\System32\termsrv.dll
09:45:26.0264 0864 C:\Windows\System32\termsrv.dll - ok
09:45:26.0264 0864 [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
09:45:26.0264 0864 C:\Windows\System32\TSChannel.dll - ok
09:45:26.0280 0864 [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
09:45:26.0280 0864 C:\Windows\System32\drivers\fltMgr.sys - ok
09:45:26.0280 0864 [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
09:45:26.0280 0864 C:\Windows\System32\PSHED.DLL - ok
09:45:26.0280 0864 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe
09:45:26.0280 0864 C:\Windows\System32\rundll32.exe - ok
09:45:26.0280 0864 [ 9835584E999D25004E1EE8E5F3E3B881 ] C:\Windows\System32\MPSSVC.dll
09:45:26.0280 0864 C:\Windows\System32\MPSSVC.dll - ok
09:45:26.0295 0864 [ 1319CD4619E96B156911CA3897563EBC ] C:\Windows\System32\ci.dll
09:45:26.0295 0864 C:\Windows\System32\ci.dll - ok
09:45:26.0295 0864 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
09:45:26.0295 0864 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
09:45:26.0295 0864 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
09:45:26.0295 0864 C:\Windows\System32\dllhost.exe - ok
09:45:26.0311 0864 [ 1E2BAC209D184BB851E1A187D8A29136 ] C:\Windows\System32\BFE.DLL
09:45:26.0311 0864 C:\Windows\System32\BFE.DLL - ok
09:45:26.0311 0864 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
09:45:26.0311 0864 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
09:45:26.0311 0864 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\System32\netcfgx.dll
09:45:26.0311 0864 C:\Windows\System32\netcfgx.dll - ok
09:45:26.0327 0864 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
09:45:26.0327 0864 C:\Windows\System32\IDStore.dll - ok
09:45:26.0327 0864 [ 7FA8BA5A780E4757964AC9D4238302B9 ] C:\Windows\System32\taskhost.exe
09:45:26.0327 0864 C:\Windows\System32\taskhost.exe - ok
09:45:26.0327 0864 [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\System32\AtBroker.exe
09:45:26.0327 0864 C:\Windows\System32\AtBroker.exe - ok
09:45:26.0327 0864 [ 7319102526BD11B45FD66335CF90CA12 ] C:\Windows\System32\HotStartUserAgent.dll
09:45:26.0327 0864 C:\Windows\System32\HotStartUserAgent.dll - ok
09:45:26.0342 0864 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
09:45:26.0342 0864 C:\Windows\System32\mpr.dll - ok
09:45:26.0342 0864 [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\System32\userinit.exe
09:45:26.0342 0864 C:\Windows\System32\userinit.exe - ok
09:45:26.0342 0864 [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
09:45:26.0342 0864 C:\Windows\System32\dwm.exe - ok
09:45:26.0342 0864 [ 754AFC50022C95DA7C86B7020DB78136 ] C:\Windows\System32\dwmredir.dll
09:45:26.0342 0864 C:\Windows\System32\dwmredir.dll - ok
09:45:26.0358 0864 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll
09:45:26.0358 0864 C:\Windows\System32\MsCtfMonitor.dll - ok
09:45:26.0358 0864 [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\System32\dwmcore.dll
09:45:26.0358 0864 C:\Windows\System32\dwmcore.dll - ok
09:45:26.0358 0864 [ 8B88EBBB05A0E56B7DCC708498C02B3E ] C:\Windows\explorer.exe
09:45:26.0358 0864 C:\Windows\explorer.exe - ok
09:45:26.0373 0864 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\System32\ExplorerFrame.dll
09:45:26.0373 0864 C:\Windows\System32\ExplorerFrame.dll - ok
09:45:26.0373 0864 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
09:45:26.0373 0864 C:\Program Files\Bonjour\mdnsNSP.dll - ok
09:45:26.0373 0864 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
09:45:26.0373 0864 C:\Windows\System32\rasadhlp.dll - ok
09:45:26.0389 0864 [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\System32\msutb.dll
09:45:26.0389 0864 C:\Windows\System32\msutb.dll - ok
09:45:26.0389 0864 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
09:45:26.0389 0864 C:\Windows\System32\EhStorShell.dll - ok
09:45:26.0389 0864 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
09:45:26.0389 0864 C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
09:45:26.0389 0864 [ 74AF6AA2E8B3180AADAE5FE8813CB1CD ] C:\Windows\System32\localspl.dll
09:45:26.0389 0864 C:\Windows\System32\localspl.dll - ok
09:45:26.0405 0864 [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
09:45:26.0405 0864 C:\Windows\System32\spoolss.dll - ok
09:45:26.0405 0864 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\System32\winspool.drv
09:45:26.0405 0864 C:\Windows\System32\winspool.drv - ok
09:45:26.0405 0864 [ 126F8331BD023178C7F0EF2F5EDE16B3 ] C:\Windows\System32\FXSMON.dll
09:45:26.0405 0864 C:\Windows\System32\FXSMON.dll - ok
09:45:26.0420 0864 [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\Windows\System32\msonpmon.dll
09:45:26.0420 0864 C:\Windows\System32\msonpmon.dll - ok
09:45:26.0420 0864 [ 03CF941D031F30272D3063E5A4D686F5 ] C:\Windows\System32\PrintIsolationProxy.dll
09:45:26.0420 0864 C:\Windows\System32\PrintIsolationProxy.dll - ok
09:45:26.0420 0864 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\System32\mscms.dll
09:45:26.0420 0864 C:\Windows\System32\mscms.dll - ok
09:45:26.0420 0864 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll
09:45:26.0420 0864 C:\Windows\System32\PlaySndSrv.dll - ok
09:45:26.0436 0864 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\System32\dxva2.dll
09:45:26.0436 0864 C:\Windows\System32\dxva2.dll - ok
09:45:26.0436 0864 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\System32\icm32.dll
09:45:26.0436 0864 C:\Windows\System32\icm32.dll - ok
09:45:26.0436 0864 [ 368B2BEE3F88BFB883D2C74A258DE6F6 ] C:\Windows\AppPatch\AcLayers.dll
09:45:26.0436 0864 C:\Windows\AppPatch\AcLayers.dll - ok
09:45:26.0451 0864 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\System32\d3d10_1.dll
09:45:26.0451 0864 C:\Windows\System32\d3d10_1.dll - ok
09:45:26.0451 0864 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\System32\d3d10_1core.dll
09:45:26.0451 0864 C:\Windows\System32\d3d10_1core.dll - ok
09:45:26.0451 0864 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\System32\dxgi.dll
09:45:26.0451 0864 C:\Windows\System32\dxgi.dll - ok
09:45:26.0451 0864 [ 54AF46DC37E63E1E85EB619033953309 ] C:\Windows\System32\d3d10level9.dll
09:45:26.0451 0864 C:\Windows\System32\d3d10level9.dll - ok
09:45:26.0467 0864 [ 4A9328AB779F2E06ED233552AAD11D7F ] C:\Windows\System32\KBDIULATT.dll
09:45:26.0467 0864 C:\Windows\System32\KBDIULATT.dll - ok
09:45:26.0467 0864 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] C:\Windows\System32\drivers\bowser.sys
09:45:26.0467 0864 C:\Windows\System32\drivers\bowser.sys - ok
09:45:26.0467 0864 [ 6384DF15C83363A7CA779D710A17400B ] C:\Windows\System32\igdumd32.dll
09:45:26.0467 0864 C:\Windows\System32\igdumd32.dll - ok
09:45:26.0483 0864 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
09:45:26.0483 0864 C:\Windows\System32\drivers\mpsdrv.sys - ok
09:45:26.0483 0864 [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll
09:45:26.0483 0864 C:\Windows\System32\uDWM.dll - ok
09:45:26.0483 0864 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] C:\Windows\System32\drivers\mrxsmb.sys
09:45:26.0483 0864 C:\Windows\System32\drivers\mrxsmb.sys - ok
09:45:26.0483 0864 [ 6D17A4791ACA19328C685D256349FEFC ] C:\Windows\System32\drivers\mrxsmb10.sys
09:45:26.0483 0864 C:\Windows\System32\drivers\mrxsmb10.sys - ok
09:45:26.0498 0864 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
09:45:26.0498 0864 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
09:45:26.0498 0864 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\System32\msi.dll
09:45:26.0498 0864 C:\Windows\System32\msi.dll - ok
09:45:26.0498 0864 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
09:45:26.0498 0864 C:\Windows\System32\snmpapi.dll - ok
09:45:26.0514 0864 [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
09:45:26.0514 0864 C:\Windows\System32\tcpmon.dll - ok
09:45:26.0514 0864 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
09:45:26.0514 0864 C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
09:45:26.0514 0864 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
09:45:26.0514 0864 C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
09:45:26.0514 0864 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
09:45:26.0529 0864 C:\Windows\System32\msimg32.dll - ok
09:45:26.0529 0864 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
09:45:26.0529 0864 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
09:45:26.0529 0864 [ 3EC541C196DE18ED9A0D0AC82A694D4C ] C:\Windows\System32\cscui.dll
09:45:26.0529 0864 C:\Windows\System32\cscui.dll - ok
09:45:26.0529 0864 [ 57A51217581614DE07F30E34D6BB4993 ] C:\Windows\System32\cscdll.dll
09:45:26.0529 0864 C:\Windows\System32\cscdll.dll - ok
09:45:26.0545 0864 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\System32\cscapi.dll
09:45:26.0545 0864 C:\Windows\System32\cscapi.dll - ok
09:45:26.0545 0864 [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
09:45:26.0545 0864 C:\Windows\System32\usbmon.dll - ok
09:45:26.0545 0864 [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\System32\wsnmp32.dll
09:45:26.0545 0864 C:\Windows\System32\wsnmp32.dll - ok
09:45:26.0561 0864 [ B81F204D146000BE76651A50670A5E9E ] C:\Windows\System32\drivers\mrxsmb20.sys
09:45:26.0561 0864 C:\Windows\System32\drivers\mrxsmb20.sys - ok
09:45:26.0561 0864 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\System32\ntshrui.dll
09:45:26.0561 0864 C:\Windows\System32\ntshrui.dll - ok
09:45:26.0561 0864 [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
09:45:26.0561 0864 C:\Windows\System32\wfapigp.dll - ok
09:45:26.0561 0864 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
09:45:26.0561 0864 C:\Windows\System32\IconCodecService.dll - ok
09:45:26.0576 0864 [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
09:45:26.0576 0864 C:\Windows\System32\pcasvc.dll - ok
09:45:26.0576 0864 [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
09:45:26.0576 0864 C:\Windows\System32\snmptrap.exe - ok
09:45:26.0576 0864 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files\Google\Update\GoogleUpdate.exe
09:45:26.0576 0864 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
09:45:26.0592 0864 [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
09:45:26.0592 0864 C:\Windows\System32\WSDMon.dll - ok
09:45:26.0592 0864 [ 58405E4F68BA8E4057C6E914F326ABA2 ] C:\Windows\System32\wkssvc.dll
09:45:26.0592 0864 C:\Windows\System32\wkssvc.dll - ok
09:45:26.0592 0864 [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\System32\WSDApi.dll
09:45:26.0592 0864 C:\Windows\System32\WSDApi.dll - ok
09:45:26.0592 0864 [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\System32\webservices.dll
09:45:26.0592 0864 C:\Windows\System32\webservices.dll - ok
09:45:26.0607 0864 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll
09:45:26.0607 0864 C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok
09:45:26.0607 0864 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\System32\dbghelp.dll
09:45:26.0607 0864 C:\Windows\System32\dbghelp.dll - ok
09:45:26.0607 0864 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
09:45:26.0607 0864 C:\Windows\System32\drivers\parport.sys - ok
09:45:26.0623 0864 [ 9E989429631A0588C60C430FD7DB7576 ] C:\Windows\System32\drivers\aksfridge.sys
09:45:26.0623 0864 C:\Windows\System32\drivers\aksfridge.sys - ok
09:45:26.0623 0864 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
09:45:26.0623 0864 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
09:45:26.0623 0864 [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
09:45:26.0623 0864 C:\Windows\System32\PeerDistSh.dll - ok
09:45:26.0623 0864 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\System32\provsvc.dll
09:45:26.0623 0864 C:\Windows\System32\provsvc.dll - ok
09:45:26.0639 0864 [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
09:45:26.0639 0864 C:\Windows\System32\sstpsvc.dll - ok
09:45:26.0639 0864 [ 3DEBBECF665DCDDE3A95D9B902010817 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:45:26.0639 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
09:45:26.0639 0864 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\System32\winmm.dll
09:45:26.0639 0864 C:\Windows\System32\winmm.dll - ok
09:45:26.0654 0864 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
09:45:26.0654 0864 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
09:45:26.0654 0864 [ 60C079CB2150760263D1FE5FF6218961 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
09:45:26.0654 0864 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
09:45:26.0654 0864 [ 2503287BD19AE52E36E9DE42834A2AC0 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
09:45:26.0654 0864 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
09:45:26.0670 0864 [ 054B87C872292A960B9B8A834B34DFA7 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
09:45:26.0670 0864 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
09:45:26.0670 0864 [ DF1C1CD0C7EE95CC00D71E9E415E7BCD ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
09:45:26.0670 0864 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
09:45:26.0670 0864 [ 794950DB77AA590C2964ECA0A5874A09 ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
09:45:26.0670 0864 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
09:45:26.0685 0864 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
09:45:26.0685 0864 C:\Windows\System32\wsock32.dll - ok
09:45:26.0685 0864 [ 250BF888DDBE88D61EB19A9D4957C794 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
09:45:26.0685 0864 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
09:45:26.0685 0864 [ FD86C605FD7AD4A41C01EC7A4A1E1C5D ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
09:45:26.0685 0864 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
09:45:26.0685 0864 [ A3609397EF273B03295DBB10274BE12C ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
09:45:26.0685 0864 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
09:45:26.0701 0864 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
09:45:26.0701 0864 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
09:45:26.0701 0864 [ 37CF2461CB5E40C4CFAB82C8FC79A2BC ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
09:45:26.0701 0864 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
09:45:26.0701 0864 [ 1224BC6DE919F8CD8C1C945280E63852 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
09:45:26.0701 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
09:45:26.0717 0864 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
09:45:26.0717 0864 C:\Windows\System32\dnssd.dll - ok
09:45:26.0717 0864 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
09:45:26.0717 0864 C:\Program Files\Bonjour\mDNSResponder.exe - ok
09:45:26.0717 0864 [ 00A99DA54C14969A899ED316D16E9A9E ] C:\Windows\System32\efssvc.dll
09:45:26.0717 0864 C:\Windows\System32\efssvc.dll - ok
09:45:26.0717 0864 [ F3222C893BD2F5821A0179E5C71E88FB ] C:\Windows\System32\fdPHost.dll
09:45:26.0717 0864 C:\Windows\System32\fdPHost.dll - ok
09:45:26.0732 0864 [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\System32\fdWSD.dll
09:45:26.0732 0864 C:\Windows\System32\fdWSD.dll - ok
09:45:26.0732 0864 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\Windows\System32\drivers\mdmxsdk.sys
09:45:26.0732 0864 C:\Windows\System32\drivers\mdmxsdk.sys - ok
09:45:26.0732 0864 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] C:\Windows\System32\FDResPub.dll
09:45:26.0732 0864 C:\Windows\System32\FDResPub.dll - ok
09:45:26.0748 0864 [ 905B5BF5BE0A86E8412801BF20357195 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
09:45:26.0748 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
09:45:26.0748 0864 [ 06E771AA596B8761107AB57E99F128D7 ] C:\Windows\System32\cryptsvc.dll
09:45:26.0748 0864 C:\Windows\System32\cryptsvc.dll - ok
09:45:26.0748 0864 [ 6316957BB3431DFB06BFFA98C0F1926E ] C:\Windows\System32\cryptnet.dll
09:45:26.0748 0864 C:\Windows\System32\cryptnet.dll - ok
09:45:26.0748 0864 [ 3F6D9269E7B3A754B1C2F8533DC7F318 ] C:\Windows\System32\efscore.dll
09:45:26.0748 0864 C:\Windows\System32\efscore.dll - ok
09:45:26.0763 0864 [ 359C3AC547AA1D24EED35BE3AB3759DC ] C:\Windows\System32\efsutil.dll
09:45:26.0763 0864 C:\Windows\System32\efsutil.dll - ok
09:45:26.0763 0864 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] C:\Windows\System32\dps.dll
09:45:26.0763 0864 C:\Windows\System32\dps.dll - ok
09:45:26.0763 0864 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
09:45:26.0763 0864 C:\Windows\System32\mlang.dll - ok
09:45:26.0779 0864 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
09:45:26.0779 0864 C:\Windows\System32\netman.dll - ok
09:45:26.0779 0864 [ F95622F161474511B8D80D6B093AA610 ] C:\Windows\System32\IKEEXT.DLL
09:45:26.0779 0864 C:\Windows\System32\IKEEXT.DLL - ok
09:45:26.0779 0864 [ 5845B1C54380FB980F68024B3A8B1E66 ] C:\Windows\System32\vpnikeapi.dll
09:45:26.0779 0864 C:\Windows\System32\vpnikeapi.dll - ok
09:45:26.0795 0864 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
09:45:26.0795 0864 C:\Windows\System32\fdPnp.dll - ok
09:45:26.0795 0864 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
09:45:26.0795 0864 C:\Windows\System32\fundisc.dll - ok
09:45:26.0795 0864 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
09:45:26.0795 0864 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
09:45:26.0795 0864 [ CD72C6406BA561BED6D42CB145E55307 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
09:45:26.0795 0864 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
09:45:26.0810 0864 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\System32\winhttp.dll
09:45:26.0810 0864 C:\Windows\System32\winhttp.dll - ok
09:45:26.0810 0864 [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\System32\fdSSDP.dll
09:45:26.0810 0864 C:\Windows\System32\fdSSDP.dll - ok
09:45:26.0810 0864 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
09:45:26.0810 0864 C:\Windows\System32\ssdpapi.dll - ok
09:45:26.0810 0864 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\System32\webio.dll
09:45:26.0810 0864 C:\Windows\System32\webio.dll - ok
09:45:26.0826 0864 [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\System32\httpapi.dll
09:45:26.0826 0864 C:\Windows\System32\httpapi.dll - ok
09:45:26.0826 0864 [ BE3953C7DAE4ECC89134CF64A903F8ED ] C:\Windows\System32\win32spl.dll
09:45:26.0826 0864 C:\Windows\System32\win32spl.dll - ok
09:45:26.0826 0864 [ D27DDE7E0444C7F1819F958469EB7D93 ] C:\Windows\System32\inetpp.dll
09:45:26.0826 0864 C:\Windows\System32\inetpp.dll - ok
09:45:26.0826 0864 [ 912084381D30D8B89EC4E293053F4710 ] C:\Windows\System32\nlasvc.dll
09:45:26.0841 0864 C:\Windows\System32\nlasvc.dll - ok
09:45:26.0841 0864 [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
09:45:26.0841 0864 C:\Windows\System32\drivers\PEAuth.sys - ok
09:45:26.0841 0864 [ 75EA62927355189876081EF863064982 ] C:\Windows\System32\ncsi.dll
09:45:26.0841 0864 C:\Windows\System32\ncsi.dll - ok
09:45:26.0841 0864 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
09:45:26.0841 0864 C:\Windows\System32\drivers\secdrv.sys - ok
09:45:26.0857 0864 [ A59B3A4442C52060CC7A85293AA3546F ] C:\Windows\System32\seclogon.dll
09:45:26.0857 0864 C:\Windows\System32\seclogon.dll - ok
09:45:26.0857 0864 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\System32\vssapi.dll
09:45:26.0857 0864 C:\Windows\System32\vssapi.dll - ok
09:45:26.0857 0864 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
09:45:26.0857 0864 C:\Windows\System32\vsstrace.dll - ok
09:45:26.0857 0864 [ CF87A1DE791347E75B98885214CED2B8 ] C:\Windows\System32\sppsvc.exe
09:45:26.0857 0864 C:\Windows\System32\sppsvc.exe - ok
09:45:26.0873 0864 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] C:\Windows\System32\drivers\srvnet.sys
09:45:26.0873 0864 C:\Windows\System32\drivers\srvnet.sys - ok
09:45:26.0873 0864 [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
09:45:26.0873 0864 C:\Windows\System32\ssdpsrv.dll - ok
09:45:26.0873 0864 [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
09:45:26.0873 0864 C:\Windows\System32\drivers\spsys.sys - ok
09:45:26.0873 0864 [ CCA24162E055C3714CE5A88B100C64ED ] C:\Windows\System32\drivers\tcpipreg.sys
09:45:26.0873 0864 C:\Windows\System32\drivers\tcpipreg.sys - ok
09:45:26.0888 0864 [ 15A317674A08DF26BE65164D959E9203 ] C:\Windows\System32\drivers\XAudio.exe
09:45:26.0888 0864 C:\Windows\System32\drivers\XAudio.exe - ok
09:45:26.0888 0864 [ 88AF537264F2B818DA15479CEEAF5D7C ] C:\Windows\System32\drivers\XAudio.sys
09:45:26.0888 0864 C:\Windows\System32\drivers\XAudio.sys - ok
09:45:26.0888 0864 [ 613BF4820361543956909043A265C6AC ] C:\Windows\System32\tapisrv.dll
09:45:26.0888 0864 C:\Windows\System32\tapisrv.dll - ok
09:45:26.0904 0864 [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
09:45:26.0904 0864 C:\Windows\System32\wbem\WMIsvc.dll - ok
09:45:26.0904 0864 [ 326A5BDD4F299EA8B4843BB78F06A6B8 ] C:\Windows\System32\icaapi.dll
09:45:26.0904 0864 C:\Windows\System32\icaapi.dll - ok
09:45:26.0904 0864 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\System32\wbemcomn.dll
09:45:26.0904 0864 C:\Windows\System32\wbemcomn.dll - ok
09:45:26.0904 0864 [ A29E036A5A3B37C7530F3EA1CF385129 ] C:\Windows\System32\lsmproxy.dll
09:45:26.0904 0864 C:\Windows\System32\lsmproxy.dll - ok
09:45:26.0919 0864 [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
09:45:26.0919 0864 C:\Windows\System32\wbem\WinMgmtR.dll - ok
09:45:26.0919 0864 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] C:\Windows\System32\drivers\srv2.sys
09:45:26.0919 0864 C:\Windows\System32\drivers\srv2.sys - ok
09:45:26.0919 0864 [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\Windows\System32\wbem\WmiDcPrv.dll
09:45:26.0919 0864 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
09:45:26.0935 0864 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\System32\wbem\fastprox.dll
09:45:26.0935 0864 C:\Windows\System32\wbem\fastprox.dll - ok
09:45:26.0935 0864 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
09:45:26.0935 0864 C:\Windows\System32\ntdsapi.dll - ok
09:45:26.0935 0864 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
09:45:26.0935 0864 C:\Windows\System32\wbem\wbemprox.dll - ok
09:45:26.0935 0864 [ E1FB3706030FB4578A0D72C2FC3689E4 ] C:\Windows\System32\wiaservc.dll
09:45:26.0935 0864 C:\Windows\System32\wiaservc.dll - ok
09:45:26.0951 0864 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
09:45:26.0951 0864 C:\Windows\System32\wiatrace.dll - ok
09:45:26.0951 0864 [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\Windows\System32\wsdchngr.dll
09:45:26.0951 0864 C:\Windows\System32\wsdchngr.dll - ok
09:45:26.0951 0864 [ 36650D618CA34C9D357DFD3D89B2C56F ] C:\Windows\System32\sysmain.dll
09:45:26.0951 0864 C:\Windows\System32\sysmain.dll - ok
09:45:26.0951 0864 [ 4D65A07B795D6674312F879D09AA7663 ] C:\Windows\System32\iphlpsvc.dll
09:45:26.0951 0864 C:\Windows\System32\iphlpsvc.dll - ok
09:45:26.0966 0864 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] C:\Windows\System32\drivers\srv.sys
09:45:26.0966 0864 C:\Windows\System32\drivers\srv.sys - ok
09:45:26.0966 0864 [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\System32\sqmapi.dll
09:45:26.0966 0864 C:\Windows\System32\sqmapi.dll - ok
09:45:26.0966 0864 [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\Windows\System32\wdscore.dll
09:45:26.0966 0864 C:\Windows\System32\wdscore.dll - ok
09:45:26.0982 0864 [ CB9E04DC05EACF5B9A36CA276D475006 ] C:\Windows\System32\rasmans.dll
09:45:26.0982 0864 C:\Windows\System32\rasmans.dll - ok
09:45:26.0982 0864 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] C:\Windows\System32\browser.dll
09:45:26.0982 0864 C:\Windows\System32\browser.dll - ok
09:45:26.0982 0864 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
09:45:26.0982 0864 C:\Windows\System32\netmsg.dll - ok
09:45:26.0997 0864 [ D64AF876D53ECA3668BB97B51B4E70AB ] C:\Windows\System32\srvsvc.dll
09:45:26.0997 0864 C:\Windows\System32\srvsvc.dll - ok
09:45:26.0997 0864 [ B2E1E4A16EDD02396F451F915FA3CBFA ] C:\Windows\System32\rastapi.dll
09:45:26.0997 0864 C:\Windows\System32\rastapi.dll - ok
09:45:26.0997 0864 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\System32\tapi32.dll
09:45:26.0997 0864 C:\Windows\System32\tapi32.dll - ok
09:45:26.0997 0864 [ 89E783711AF91AF09E1EF30EF3107446 ] C:\Windows\System32\sscore.dll
09:45:26.0997 0864 C:\Windows\System32\sscore.dll - ok
09:45:27.0013 0864 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
09:45:27.0013 0864 C:\Windows\System32\hnetcfg.dll - ok
09:45:27.0013 0864 [ AE9898D5600A232CD8AE3298692162E5 ] C:\Windows\System32\clusapi.dll
09:45:27.0013 0864 C:\Windows\System32\clusapi.dll - ok
09:45:27.0013 0864 [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\Windows\System32\resutils.dll
09:45:27.0013 0864 C:\Windows\System32\resutils.dll - ok
09:45:27.0013 0864 [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\Windows\System32\nci.dll
09:45:27.0013 0864 C:\Windows\System32\nci.dll - ok
09:45:27.0029 0864 [ 585EB475E7AF55C9065256E8FFB751A1 ] C:\Windows\System32\wbem\wbemcore.dll
09:45:27.0029 0864 C:\Windows\System32\wbem\wbemcore.dll - ok
09:45:27.0029 0864 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
09:45:27.0029 0864 C:\Windows\System32\wbem\esscli.dll - ok
09:45:27.0029 0864 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
09:45:27.0029 0864 C:\Windows\System32\wbem\wbemsvc.dll - ok
09:45:27.0044 0864 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
09:45:27.0044 0864 C:\Windows\System32\wbem\wmiutils.dll - ok
09:45:27.0044 0864 [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
09:45:27.0044 0864 C:\Windows\System32\wbem\repdrvfs.dll - ok
09:45:27.0044 0864 [ 3CDE2911462FEC80064A409C07710C06 ] C:\Windows\System32\wbem\WmiPrvSD.dll
09:45:27.0044 0864 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
09:45:27.0044 0864 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
09:45:27.0060 0864 C:\Windows\System32\ncobjapi.dll - ok
09:45:27.0060 0864 [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
09:45:27.0060 0864 C:\Windows\System32\wbem\wbemess.dll - ok
09:45:27.0060 0864 [ ACB364B9075A45C0736E5C47BE5CAE19 ] C:\Windows\System32\IPBusEnum.dll
09:45:27.0060 0864 C:\Windows\System32\IPBusEnum.dll - ok
09:45:27.0060 0864 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] C:\Windows\System32\Mcx2Svc.dll
09:45:27.0060 0864 C:\Windows\System32\Mcx2Svc.dll - ok
09:45:27.0075 0864 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
09:45:27.0075 0864 C:\Windows\System32\trkwks.dll - ok
09:45:27.0075 0864 [ 26F2383A97CD632E883F0644F3BFF700 ] C:\Windows\ehome\ehtrace.dll
09:45:27.0075 0864 C:\Windows\ehome\ehtrace.dll - ok
09:45:27.0075 0864 [ 81544484FF846802637E3FA7D2968B0A ] C:\Windows\System32\spool\drivers\w32x86\3\BRUFX05C.DLL
09:45:27.0075 0864 C:\Windows\System32\spool\drivers\w32x86\3\BRUFX05C.DLL - ok
09:45:27.0075 0864 [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\Windows\System32\wmi.dll
09:45:27.0075 0864 C:\Windows\System32\wmi.dll - ok
09:45:27.0091 0864 [ BA54A966F873B043FDFCDA0B77937855 ] C:\Windows\System32\mgmtapi.dll
09:45:27.0091 0864 C:\Windows\System32\mgmtapi.dll - ok
09:45:27.0091 0864 [ 640A476C8867AEAAD8FF9F59A61AFE2F ] C:\Windows\System32\PrintIsolationHost.exe
09:45:27.0091 0864 C:\Windows\System32\PrintIsolationHost.exe - ok
09:45:27.0091 0864 [ 73D084E7EE4ED56EEC3396B995572A85 ] C:\Windows\System32\spool\drivers\w32x86\3\Brlfx05C.dll
09:45:27.0091 0864 C:\Windows\System32\spool\drivers\w32x86\3\Brlfx05C.dll - ok
09:45:27.0107 0864 [ 03F364F70669D6CCDFBB648C735A1CC1 ] C:\Windows\System32\tcpmib.dll
09:45:27.0107 0864 C:\Windows\System32\tcpmib.dll - ok
09:45:27.0107 0864 [ 2DC03543284DF9BF594623A2646D42A1 ] C:\Windows\System32\BrWi209d.dll
09:45:27.0107 0864 C:\Windows\System32\BrWi209d.dll - ok
09:45:27.0107 0864 [ B11F7DB91E12BBCA71BE88BFB2120FAF ] C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
09:45:27.0107 0864 C:\Program Files\Brother\BrUtilities\BrLogAPI.dll - ok
09:45:27.0122 0864 [ 2607A85B6466C0110EA8ABB9D8CC83FC ] C:\Windows\System32\regapi.dll
09:45:27.0122 0864 C:\Windows\System32\regapi.dll - ok
09:45:27.0122 0864 [ ECF9DB36222E2486CBC286210E7E47E7 ] C:\Windows\System32\BrNetSti.dll
09:45:27.0122 0864 C:\Windows\System32\BrNetSti.dll - ok
09:45:27.0122 0864 [ 9CC228C7AFD7E535819662D2F952C482 ] C:\Windows\System32\BrMuSNMP.dll
09:45:27.0122 0864 C:\Windows\System32\BrMuSNMP.dll - ok
09:45:27.0122 0864 [ 377F0C1DDBFA6A43CB7E7568BC0ECED0 ] C:\Windows\System32\unimdm.tsp
09:45:27.0122 0864 C:\Windows\System32\unimdm.tsp - ok
09:45:27.0138 0864 [ E675DE8CF57D8814218733B3DAE896D7 ] C:\Windows\System32\uniplat.dll
09:45:27.0138 0864 C:\Windows\System32\uniplat.dll - ok
09:45:27.0138 0864 [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\System32\ndiscapCfg.dll
09:45:27.0138 0864 C:\Windows\System32\ndiscapCfg.dll - ok
09:45:27.0138 0864 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
09:45:27.0138 0864 C:\Windows\System32\NapiNSP.dll - ok
09:45:27.0138 0864 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
09:45:27.0138 0864 C:\Windows\System32\pnrpnsp.dll - ok
09:45:27.0153 0864 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
09:45:27.0153 0864 C:\Windows\System32\winrnr.dll - ok
09:45:27.0153 0864 [ 954AAF2028CD907B7F7ED40FFFD9D27F ] C:\Windows\System32\rdpwsx.dll
09:45:27.0153 0864 C:\Windows\System32\rdpwsx.dll - ok
09:45:27.0153 0864 [ E460AFD3A201408919ADB05977095E8D ] C:\Windows\System32\tlscsp.dll
09:45:27.0153 0864 C:\Windows\System32\tlscsp.dll - ok
09:45:27.0169 0864 [ 3A11396EAC2414012155AB14E5C1E332 ] C:\Windows\System32\sppwinob.dll
09:45:27.0169 0864 C:\Windows\System32\sppwinob.dll - ok
09:45:27.0169 0864 [ 53CA6BF58658815FCB472205291DD953 ] C:\Windows\System32\unimdmat.dll
09:45:27.0169 0864 C:\Windows\System32\unimdmat.dll - ok
09:45:27.0169 0864 [ 4EAF682E27490A3D45C0EBB6537EE6A8 ] C:\Windows\System32\modemui.dll
09:45:27.0169 0864 C:\Windows\System32\modemui.dll - ok
09:45:27.0169 0864 [ E2F6CC0D191361EE94FEA3957653F531 ] C:\Windows\System32\hidphone.tsp
09:45:27.0169 0864 C:\Windows\System32\hidphone.tsp - ok
09:45:27.0185 0864 [ F3FB146CDBDD26FCD0CF7941C547BEE4 ] C:\Windows\System32\kmddsp.tsp
09:45:27.0185 0864 C:\Windows\System32\kmddsp.tsp - ok
09:45:27.0185 0864 [ AA11A26692E0DB2996CAEFE9EC61F61F ] C:\Windows\System32\ndptsp.tsp
09:45:27.0185 0864 C:\Windows\System32\ndptsp.tsp - ok
09:45:27.0200 0864 [ 22959D50AD9AC1DBE44BB1C5E8A34A19 ] C:\Windows\System32\spool\drivers\w32x86\3\BROCH10A.DLL
09:45:27.0200 0864 C:\Windows\System32\spool\drivers\w32x86\3\BROCH10A.DLL - ok
09:45:27.0200 0864 [ FF725FC19B450B2EA892DD0779B2D380 ] C:\Windows\System32\spool\drivers\w32x86\3\BRUIC10A.DLL
09:45:27.0200 0864 C:\Windows\System32\spool\drivers\w32x86\3\BRUIC10A.DLL - ok
09:45:27.0200 0864 [ 6E250E2B6153D1371B2D9D02CE94E60F ] C:\Windows\System32\spool\drivers\w32x86\3\BRDSM080.DLL
09:45:27.0200 0864 C:\Windows\System32\spool\drivers\w32x86\3\BRDSM080.DLL - ok
09:45:27.0200 0864 [ 7C4AD571651EE1DFC6D369D07F9AE781 ] C:\Windows\System32\spool\drivers\w32x86\3\BRLGC10A_0409.DLL
09:45:27.0216 0864 C:\Windows\System32\spool\drivers\w32x86\3\BRLGC10A_0409.DLL - ok
09:45:27.0216 0864 [ 239ACBB49D6A02010215EEF0E82792DE ] C:\Windows\System32\spool\drivers\w32x86\3\BRPSM080.DLL
09:45:27.0216 0864 C:\Windows\System32\spool\drivers\w32x86\3\BRPSM080.DLL - ok
09:45:27.0216 0864 [ 6BA461432ED23119901794D93944D5F6 ] C:\Windows\System32\spool\drivers\w32x86\3\BROFX05C.DLL
09:45:27.0216 0864 C:\Windows\System32\spool\drivers\w32x86\3\BROFX05C.DLL - ok
09:45:27.0216 0864 [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\System32\fdProxy.dll
09:45:27.0216 0864 C:\Windows\System32\fdProxy.dll - ok
09:45:27.0231 0864 [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\System32\rascfg.dll
09:45:27.0231 0864 C:\Windows\System32\rascfg.dll - ok
09:45:27.0231 0864 [ 421D9645B72CD341ECDBB0FCE06C97DE ] C:\Windows\System32\sppobjs.dll
09:45:27.0231 0864 C:\Windows\System32\sppobjs.dll - ok
09:45:27.0231 0864 [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\System32\mprapi.dll
09:45:27.0231 0864 C:\Windows\System32\mprapi.dll - ok
09:45:27.0231 0864 [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\System32\mprmsg.dll
09:45:27.0231 0864 C:\Windows\System32\mprmsg.dll - ok
09:45:27.0247 0864 [ 67F9B5C7E215B48F9256757E9CC09A7B ] C:\Windows\System32\rasppp.dll
09:45:27.0247 0864 C:\Windows\System32\rasppp.dll - ok
09:45:27.0247 0864 [ CAFC0B884E5590B5E80D84F592388B3D ] C:\Windows\System32\tcpipcfg.dll
09:45:27.0247 0864 C:\Windows\System32\tcpipcfg.dll - ok
09:45:27.0247 0864 [ 80B562B5B59ED850C328DD75F964F3D8 ] C:\Windows\System32\vpnike.dll
09:45:27.0247 0864 C:\Windows\System32\vpnike.dll - ok
09:45:27.0247 0864 [ 207CF171B1C6B8AE50C1FBF87363EEBC ] C:\Windows\System32\raschap.dll
09:45:27.0263 0864 C:\Windows\System32\raschap.dll - ok
09:45:27.0263 0864 [ D1A079A0DE2EA524513B6930C24527A2 ] C:\Windows\System32\ipnathlp.dll
09:45:27.0263 0864 C:\Windows\System32\ipnathlp.dll - ok
09:45:27.0263 0864 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\System32\netshell.dll
09:45:27.0263 0864 C:\Windows\System32\netshell.dll - ok
09:45:27.0263 0864 [ 5FEAB868CAEDBBD1B7A145CA8261E4AA ] C:\Windows\System32\WerFault.exe
09:45:27.0263 0864 C:\Windows\System32\WerFault.exe - ok
09:45:27.0278 0864 [ B973FCFC50DC1434E1970A146F7E3885 ] C:\Windows\System32\drivers\rdpdr.sys
09:45:27.0278 0864 C:\Windows\System32\drivers\rdpdr.sys - ok
09:45:27.0278 0864 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
09:45:27.0278 0864 C:\Windows\System32\wdi.dll - ok
09:45:27.0278 0864 [ FB1959012294D6AD43E5304DF65E3C26 ] C:\Windows\System32\appinfo.dll
09:45:27.0278 0864 C:\Windows\System32\appinfo.dll - ok
09:45:27.0278 0864 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
09:45:27.0278 0864 C:\Windows\System32\npmproxy.dll - ok
09:45:27.0294 0864 [ 409994A8EACEEE4E328749C0353527A0 ] C:\Windows\System32\umrdp.dll
09:45:27.0294 0864 C:\Windows\System32\umrdp.dll - ok
09:45:27.0294 0864 [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
09:45:27.0294 0864 C:\Windows\System32\perftrack.dll - ok
09:45:27.0294 0864 [ 58D2343C32DF596FB6132B54395DE5DB ] C:\Windows\System32\rdpcorekmts.dll
09:45:27.0294 0864 C:\Windows\System32\rdpcorekmts.dll - ok
09:45:27.0309 0864 [ 08E420D873E4FD85241EE2421B02C4A4 ] C:\Windows\System32\wersvc.dll
09:45:27.0309 0864 C:\Windows\System32\wersvc.dll - ok
09:45:27.0309 0864 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] C:\Windows\System32\drivers\tdtcp.sys
09:45:27.0309 0864 C:\Windows\System32\drivers\tdtcp.sys - ok
09:45:27.0309 0864 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\System32\wer.dll
09:45:27.0309 0864 C:\Windows\System32\wer.dll - ok
09:45:27.0325 0864 [ F031683E6D1FEA157ABB2FF260B51E61 ] C:\Windows\System32\drivers\rdpwd.sys
09:45:27.0325 0864 C:\Windows\System32\drivers\rdpwd.sys - ok
09:45:27.0325 0864 [ 254BB140EEE3C59D6114C1A86B636877 ] C:\Windows\System32\drivers\tssecsrv.sys
09:45:27.0325 0864 C:\Windows\System32\drivers\tssecsrv.sys - ok
09:45:27.0325 0864 [ ECF036299AA554B5E0455262857B39D0 ] C:\Windows\System32\diagperf.dll
09:45:27.0325 0864 C:\Windows\System32\diagperf.dll - ok
09:45:27.0325 0864 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\System32\Faultrep.dll
09:45:27.0325 0864 C:\Windows\System32\Faultrep.dll - ok
09:45:27.0341 0864 [ AA53356D60AF47EACC85BC617A4F3F66 ] C:\Windows\System32\wpdbusenum.dll
09:45:27.0341 0864 C:\Windows\System32\wpdbusenum.dll - ok
09:45:27.0341 0864 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
09:45:27.0341 0864 C:\Windows\System32\Apphlpdm.dll - ok
09:45:27.0341 0864 [ 319C6B309773D063541D01DF8AC6F55F ] C:\Windows\System32\certprop.dll
09:45:27.0341 0864 C:\Windows\System32\certprop.dll - ok
09:45:27.0356 0864 [ 4AE380F39A0032EAB7DD953030B26D28 ] C:\Windows\System32\SessEnv.dll
09:45:27.0356 0864 C:\Windows\System32\SessEnv.dll - ok
09:45:27.0356 0864 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\System32\PortableDeviceApi.dll
09:45:27.0356 0864 C:\Windows\System32\PortableDeviceApi.dll - ok
09:45:27.0356 0864 [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
09:45:27.0356 0864 C:\Windows\System32\aepic.dll - ok
09:45:27.0356 0864 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
09:45:27.0356 0864 C:\Windows\System32\sfc.dll - ok
09:45:27.0372 0864 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
09:45:27.0372 0864 C:\Windows\System32\sfc_os.dll - ok
09:45:27.0372 0864 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
09:45:27.0372 0864 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
09:45:27.0372 0864 [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
09:45:27.0372 0864 C:\Windows\System32\pnpts.dll - ok
09:45:27.0372 0864 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll
09:45:27.0372 0864 C:\Windows\System32\radardt.dll - ok
09:45:27.0387 0864 [ F0016853FA3F38F55FD868FF74C0359B ] C:\Windows\System32\wdiasqmmodule.dll
09:45:27.0387 0864 C:\Windows\System32\wdiasqmmodule.dll - ok
09:45:27.0387 0864 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\System32\runonce.exe
09:45:27.0387 0864 C:\Windows\System32\runonce.exe - ok
09:45:27.0387 0864 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
09:45:27.0387 0864 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
09:45:27.0403 0864 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll
09:45:27.0403 0864 C:\Windows\System32\dimsjob.dll - ok
09:45:27.0403 0864 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
09:45:27.0403 0864 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
09:45:27.0403 0864 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll
09:45:27.0403 0864 C:\Windows\System32\pautoenr.dll - ok
09:45:27.0419 0864 [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\Windows\System32\certcli.dll
09:45:27.0419 0864 C:\Windows\System32\certcli.dll - ok
09:45:27.0419 0864 [ 29BC473072568C072EC8B176498DE996 ] C:\Windows\System32\CertEnroll.dll
09:45:27.0419 0864 C:\Windows\System32\CertEnroll.dll - ok
09:45:27.0419 0864 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\System32\msxml3.dll
09:45:27.0419 0864 C:\Windows\System32\msxml3.dll - ok
09:45:27.0419 0864 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\System32\cmd.exe
09:45:27.0419 0864 C:\Windows\System32\cmd.exe - ok
09:45:27.0434 0864 [ 7B162F044B225FE0CF25CACB5F05B07E ] C:\Windows\System32\conhost.exe
09:45:27.0434 0864 C:\Windows\System32\conhost.exe - ok
09:45:27.0434 0864 [ 32E15ECF5854F5610BC895490BC3246A ] C:\Windows\System32\ieframe.dll
09:45:27.0434 0864 C:\Windows\System32\ieframe.dll - ok
09:45:27.0434 0864 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\System32\shdocvw.dll
09:45:27.0434 0864 C:\Windows\System32\shdocvw.dll - ok
09:45:27.0450 0864 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\joe\AppData\Local\Temp\94127792-5F45-4988-9B2F-00B3378500AE.exe
09:45:27.0450 0864 C:\Users\joe\AppData\Local\Temp\94127792-5F45-4988-9B2F-00B3378500AE.exe - ok
09:45:27.0450 0864 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
09:45:27.0450 0864 C:\Windows\System32\SensApi.dll - ok
09:45:27.0450 0864 [ 8E8C92DD50F6B34907813AFDC0C8F7DD ] C:\Windows\System32\dbgeng.dll
09:45:27.0450 0864 C:\Windows\System32\dbgeng.dll - ok
09:45:27.0450 0864 [ 53946B69BA0836BD95B03759530C81EC ] C:\Windows\System32\IPSECSVC.DLL
09:45:27.0450 0864 C:\Windows\System32\IPSECSVC.DLL - ok
09:45:27.0465 0864 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
09:45:27.0465 0864 C:\Windows\System32\FwRemoteSvr.dll - ok
09:45:27.0465 0864 [ DFD505BD444B3AB29B34A54D95A463CA ] C:\Program Files\Common Files\Apple\Mobile Device Support\AirTrafficHost.dll
09:45:27.0465 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AirTrafficHost.dll - ok
09:45:27.0465 0864 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll
09:45:27.0465 0864 C:\Windows\System32\aelupsvc.dll - ok
09:45:27.0481 0864 [ 9472B0E0670E17A61445FF208D4BC68E ] C:\Program Files\Common Files\Apple\Mobile Device Support\AOSKit.dll
09:45:27.0481 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AOSKit.dll - ok
09:45:27.0481 0864 [ EACCB89C0904CF277C62892068331E9B ] C:\Program Files\Common Files\Apple\Mobile Device Support\AOSUtils.dll
09:45:27.0481 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AOSUtils.dll - ok
09:45:27.0481 0864 [ 011084E79BD2ABAF950A4C80D68317FE ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleISSupport.dll
09:45:27.0481 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleISSupport.dll - ok
09:45:27.0497 0864 [ BD67F5060F3F4438AD19B898D0A54A46 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup.exe
09:45:27.0497 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup.exe - ok
09:45:27.0497 0864 [ 6D80171342BAAD21529B83FBEA6DEBE4 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup_main.dll
09:45:27.0497 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup_main.dll - ok
09:45:27.0497 0864 [ 031D7D9D76180BB7E8F80B2EE74289EF ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
09:45:27.0497 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe - ok
09:45:27.0512 0864 [ 292D767A51333EB202D3E2F04F9D21E5 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper_main.dll
09:45:27.0512 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper_main.dll - ok
09:45:27.0512 0864 [ 5840E72771306D313F958A3F5D0099FB ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileSync.exe
09:45:27.0512 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileSync.exe - ok
09:45:27.0512 0864 [ 74923352680EBD8953C2940613638639 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileSync_main.dll
09:45:27.0512 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileSync_main.dll - ok
09:45:27.0512 0864 [ 1F94D8065E9810384FAA5EF1EFDE90C6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncMapiInterface.dll
09:45:27.0512 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncMapiInterface.dll - ok
09:45:27.0528 0864 [ 714C602C1B8CEF17E25C753F1BACF78D ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
09:45:27.0528 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe - ok
09:45:27.0528 0864 [ 7F6EB28CAADA7027D0776072912AD265 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.exe
09:45:27.0528 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.exe - ok
09:45:27.0528 0864 [ 71292CA69861CFDFC8C4217B59B65922 ] C:\Program Files\Common Files\Apple\Mobile Device Support\ATH.dll
09:45:27.0528 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\ATH.dll - ok
09:45:27.0543 0864 [ 63851AD9352E5147793AE67DCBB95922 ] C:\Program Files\Common Files\Apple\Mobile Device Support\ATH.exe
09:45:27.0543 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\ATH.exe - ok
09:45:27.0543 0864 [ A8E9E4B8C0628664A6B94C10D3782782 ] C:\Program Files\Common Files\Apple\Mobile Device Support\ATH_main.dll
09:45:27.0543 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\ATH_main.dll - ok
09:45:27.0543 0864 [ 12C9D98A70F446F76D6DD75FA04B9909 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.DotMacSync.client.exe
09:45:27.0543 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.DotMacSync.client.exe - ok
09:45:27.0559 0864 [ 093CFA752FE0962FE9DF057094425440 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.DotMacSync.client_main.dll
09:45:27.0559 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.DotMacSync.client_main.dll - ok
09:45:27.0559 0864 [ F45C7AE815E6DA8ACB7FC6A804A65422 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.IE.client.exe
09:45:27.0559 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.IE.client.exe - ok
09:45:27.0559 0864 [ 820C8276AD24D948977009446332769B ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.IE.client_main.dll
09:45:27.0559 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.IE.client_main.dll - ok
09:45:27.0575 0864 [ 2DDCADB6C5F829E602C6941D690E9DD9 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Outlook.client.exe
09:45:27.0575 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Outlook.client.exe - ok
09:45:27.0575 0864 [ 950A8953CE30FD3DA0940828C6F6BA4A ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Outlook.client_main.dll
09:45:27.0575 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Outlook.client_main.dll - ok
09:45:27.0575 0864 [ 55C106A95B55C4824F68DBCD7107C802 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Safari.client.exe
09:45:27.0575 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Safari.client.exe - ok
09:45:27.0590 0864 [ 172DD93D2E7EB44D3B864D5C62E3A368 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Safari.client_main.dll
09:45:27.0590 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.Safari.client_main.dll - ok
09:45:27.0590 0864 [ 17B8D08DDC3809BA1ACF5CC0FA8A71C0 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsContacts.client.exe
09:45:27.0590 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsContacts.client.exe - ok
09:45:27.0590 0864 [ 38BB519D1738D0C5066A60F733DF2A72 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsContacts.client_main.dll
09:45:27.0590 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsContacts.client_main.dll - ok
09:45:27.0606 0864 [ 15DA269DC8E488407D8AEE99B223B9F7 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsMail.client.exe
09:45:27.0606 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsMail.client.exe - ok
09:45:27.0606 0864 [ 1DD3286FE24D9F974D8D98956BFFDBB8 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsMail.client_main.dll
09:45:27.0606 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.apple.WindowsMail.client_main.dll - ok
09:45:27.0606 0864 [ 76A03B40078A4B5E9F8E6F5CACA64FF1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.google.ContactSync.client.exe
09:45:27.0606 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.google.ContactSync.client.exe - ok
09:45:27.0621 0864 [ 7A54DCF4FA13F573380A82BA92D088E5 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.google.ContactSync.client_main.dll
09:45:27.0621 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.google.ContactSync.client_main.dll - ok
09:45:27.0621 0864 [ 6804448AF76A1CE22BF8C74CAC4831FC ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.yahoo.go.sync.client.exe
09:45:27.0621 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.yahoo.go.sync.client.exe - ok
09:45:27.0621 0864 [ 7EEDDACD8A7B9A571FC340DC44802B07 ] C:\Program Files\Common Files\Apple\Mobile Device Support\com.yahoo.go.sync.client_main.dll
09:45:27.0621 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\com.yahoo.go.sync.client_main.dll - ok
09:45:27.0637 0864 [ 6CCEFFCA0F4A24F7EDEEB3F012146D86 ] C:\Program Files\Common Files\Apple\Mobile Device Support\DeviceLink.dll
09:45:27.0637 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\DeviceLink.dll - ok
09:45:27.0637 0864 [ D374EDFE62E12E288DE6B4CFB4588544 ] C:\Program Files\Common Files\Apple\Mobile Device Support\DotMacSyncManager.dll
09:45:27.0637 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\DotMacSyncManager.dll - ok
09:45:27.0637 0864 [ B62A4F0A72A9AEA383DA12F7B9FB7E18 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iSyncConduit.dll
09:45:27.0637 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\iSyncConduit.dll - ok
09:45:27.0653 0864 [ 06A4250C9E3606CAE3F68DA45702F342 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
09:45:27.0653 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
09:45:27.0653 0864 [ 5AF6421CC2C2F356A843F850D4B97C2D ] C:\Program Files\Common Files\Apple\Mobile Device Support\libcurl.dll
09:45:27.0653 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\libcurl.dll - ok
09:45:27.0653 0864 [ 89002AFDEA5BFF12CF92A1007B584998 ] C:\Program Files\Common Files\Apple\Mobile Device Support\libeay32.dll
09:45:27.0653 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\libeay32.dll - ok
09:45:27.0668 0864 [ E5232AC4CF22EBB1CA75448EE404171B ] C:\Program Files\Common Files\Apple\Mobile Device Support\MapiHelper.dll
09:45:27.0668 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MapiHelper.dll - ok
09:45:27.0668 0864 [ 4A1A0D7E220507D69F89578855021860 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MDCrashReportTool.exe
09:45:27.0668 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MDCrashReportTool.exe - ok
09:45:27.0668 0864 [ 5072C47F7AF10AD119FB191A95549862 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MDCrashReportTool_main.dll
09:45:27.0668 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MDCrashReportTool_main.dll - ok
09:45:27.0668 0864 [ 6509FF67168D06EB0529BAACE771162F ] C:\Program Files\Common Files\Apple\Mobile Device Support\Mingler.exe
09:45:27.0668 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\Mingler.exe - ok
09:45:27.0684 0864 [ A39DD798F3454B35309AE35B39DFC314 ] C:\Program Files\Common Files\Apple\Mobile Device Support\Mingler_main.dll
09:45:27.0684 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\Mingler_main.dll - ok
09:45:27.0684 0864 [ 4E9AE9F5CEB18CB65AF8D35C1C885C66 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeAccountDLL.dll
09:45:27.0684 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeAccountDLL.dll - ok
09:45:27.0684 0864 [ B9C1B78DA276F254BFDA950B2DFFBA59 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll
09:45:27.0684 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeNotification.dll - ok
09:45:27.0699 0864 [ 40706021DE46450EE0621FDA1DA39296 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeOutlookAddInTool.exe
09:45:27.0699 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeOutlookAddInTool.exe - ok
09:45:27.0699 0864 [ 055A2EFBE9A33F13984388B544682780 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeServices.exe
09:45:27.0699 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeServices.exe - ok
09:45:27.0699 0864 [ DB3E2963721E98D3AE3E28F88C0965C6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeServices_main.dll
09:45:27.0699 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeServices_main.dll - ok
09:45:27.0699 0864 [ 6A8C64E33D9A9E4F58F4065D96D41E64 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeSync.dll
09:45:27.0699 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeSync.dll - ok
09:45:27.0715 0864 [ C06B9CAD8BE415EDD91FD750C2A0241A ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.dll
09:45:27.0715 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.dll - ok
09:45:27.0715 0864 [ A9B495789CE9F5BF94CE529757053B24 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutlookChangeNotifierAddIn.dll
09:45:27.0715 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutlookChangeNotifierAddIn.dll - ok
09:45:27.0715 0864 [ 4F31217BCA5DF4BE462F6BDAF32B7417 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.dll
09:45:27.0715 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.dll - ok
09:45:27.0731 0864 [ 140B7A235B0623D3891BEC74D633CBEC ] C:\Program Files\Common Files\Apple\Mobile Device Support\ssleay32.dll
09:45:27.0731 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\ssleay32.dll - ok
09:45:27.0731 0864 [ 60DE52A483C84252C9930871E8F1D62D ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncDiagnostics.exe
09:45:27.0731 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncDiagnostics.exe - ok
09:45:27.0731 0864 [ 801D19447CC746298356A55C98B13155 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncDiagnostics_main.dll
09:45:27.0731 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncDiagnostics_main.dll - ok
09:45:27.0746 0864 [ 96725FB33FF2139B163F0A5F8BD22BE6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\syncli.exe
09:45:27.0746 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\syncli.exe - ok
09:45:27.0746 0864 [ 4200AAB33A50FF830F047344F5292D61 ] C:\Program Files\Common Files\Apple\Mobile Device Support\syncli_main.dll
09:45:27.0746 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\syncli_main.dll - ok
09:45:27.0746 0864 [ F8530510ADF4981D7210D50A35A45380 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncPlanObserver.exe
09:45:27.0746 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncPlanObserver.exe - ok
09:45:27.0762 0864 [ C9C7AE04FD40AAF4495AC20C859BF0F3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncPlanObserver_main.dll
09:45:27.0762 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncPlanObserver_main.dll - ok
09:45:27.0762 0864 [ 8FD4E7F895B6455DA0B6A3A133F0144B ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe
09:45:27.0762 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe - ok
09:45:27.0762 0864 [ 35BBFC5B7FF5DEB926618582AE2C3E7F ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer_main.dll
09:45:27.0762 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer_main.dll - ok
09:45:27.0762 0864 [ F12DAE7DAE01687E329129E71C12B936 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices.dll
09:45:27.0777 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices.dll - ok
09:45:27.0777 0864 [ AB678F4D8E44814F41CE52EA12B828EA ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServicesUI.dll
09:45:27.0777 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServicesUI.dll - ok
09:45:27.0777 0864 [ E144C8BF0B424802BAF5441E9996DDF7 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.dll
09:45:27.0777 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.dll - ok
09:45:27.0777 0864 [ 2D3E105AB1C22C04C45B83387AD18123 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandler.exe
09:45:27.0777 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandler.exe - ok
09:45:27.0793 0864 [ C6F074C8BFE84C880C520C3E1033F259 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandlerDLL.dll
09:45:27.0793 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandlerDLL.dll - ok
09:45:27.0793 0864 [ D43A661D168D73DE4EAC1BDDD20E3378 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandler_main.dll
09:45:27.0793 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUIHandler_main.dll - ok
09:45:27.0809 0864 [ 57082191F81B65D993CB4CC88898606A ] C:\Program Files\Common Files\Apple\Mobile Device Support\upgradedb.exe
09:45:27.0809 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\upgradedb.exe - ok
09:45:27.0809 0864 [ E81A7CB8A2D31312B21093FB67D4656E ] C:\Program Files\Common Files\Apple\Mobile Device Support\upgradedb_main.dll
09:45:27.0809 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\upgradedb_main.dll - ok
09:45:27.0809 0864 [ EF294A2159EAE77D837D51141F158EC1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\XMPP.dll
09:45:27.0809 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\XMPP.dll - ok
09:45:27.0824 0864 [ B7B49476C18BFECF81D3189F8EDB822D ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\da.lproj\AppleSyncPrefLocalized.dll
09:45:27.0824 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\da.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0824 0864 [ 1D9A8E4C1227B049D3FC9A5E58F2332B ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\de.lproj\AppleSyncPrefLocalized.dll
09:45:27.0824 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\de.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0824 0864 [ 06C93406C5C9C29F2380FF6600AB1320 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll
09:45:27.0824 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\en.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0840 0864 [ 941D9B442855EAAEEE4B202D5E692D4F ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\es.lproj\AppleSyncPrefLocalized.dll
09:45:27.0840 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\es.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0840 0864 [ 855B8494870157F70B9D98B8A96266B9 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\fi.lproj\AppleSyncPrefLocalized.dll
09:45:27.0840 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\fi.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0840 0864 [ 76FAD11E27AE8304F6E07E2B43065508 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\fr.lproj\AppleSyncPrefLocalized.dll
09:45:27.0840 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\fr.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0855 0864 [ D3265147E7043B62E5A27EEFC53B235F ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\it.lproj\AppleSyncPrefLocalized.dll
09:45:27.0855 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\it.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0855 0864 [ A00986D8F79B531AF28023E4124E3CBE ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ja.lproj\AppleSyncPrefLocalized.dll
09:45:27.0855 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ja.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0855 0864 [ 75DE963584399D59DAECA6348F9111A2 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ko.lproj\AppleSyncPrefLocalized.dll
09:45:27.0855 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ko.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0871 0864 [ CC4D4973958FBDBAD55EA519A32C9FB7 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\nb.lproj\AppleSyncPrefLocalized.dll
09:45:27.0871 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\nb.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0871 0864 [ BEA9BB55AEFE0EDD7AD0EFE0ADA02F92 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\nl.lproj\AppleSyncPrefLocalized.dll
09:45:27.0871 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\nl.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0871 0864 [ F57B87A1B99509134484BAB651BBD905 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ru.lproj\AppleSyncPrefLocalized.dll
09:45:27.0871 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\ru.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0887 0864 [ 17452B3C42CEE35736D2143C383BFF3A ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\sv.lproj\AppleSyncPrefLocalized.dll
09:45:27.0887 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\sv.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0887 0864 [ 02E06B3F0A2087EE080DFCDF634285D9 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\zh_CN.lproj\AppleSyncPrefLocalized.dll
09:45:27.0887 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\zh_CN.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0887 0864 [ DB573BFBB923B5F974220A0A93B4B281 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\zh_TW.lproj\AppleSyncPrefLocalized.dll
09:45:27.0887 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncPref.resources\zh_TW.lproj\AppleSyncPrefLocalized.dll - ok
09:45:27.0902 0864 [ 7394EA0E58008D7B0AB9A3D637F27729 ] C:\Program Files\Common Files\Apple\Mobile Device Support\Drivers\usbaaplrc.dll
09:45:27.0902 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\Drivers\usbaaplrc.dll - ok
09:45:27.0902 0864 [ 42C993810208D53D55E0EBDE170C1AFA ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\da.lproj\MobileMeUILocalized.dll
09:45:27.0902 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\da.lproj\MobileMeUILocalized.dll - ok
09:45:27.0902 0864 [ 44E195B0966D7C6376DD46FE550B68D4 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\de.lproj\MobileMeUILocalized.dll
09:45:27.0902 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\de.lproj\MobileMeUILocalized.dll - ok
09:45:27.0902 0864 [ 0B27DF5ADAF9D406FDA5E00A5D70F594 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\en.lproj\MobileMeUILocalized.dll
09:45:27.0902 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\en.lproj\MobileMeUILocalized.dll - ok
09:45:27.0918 0864 [ 7EB7B490C262745C1207A58D889C0FF2 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\es.lproj\MobileMeUILocalized.dll
09:45:27.0918 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\es.lproj\MobileMeUILocalized.dll - ok
09:45:27.0918 0864 [ 4DDA68D31268E994FB1DA0199D382FC3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\fi.lproj\MobileMeUILocalized.dll
09:45:27.0918 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\fi.lproj\MobileMeUILocalized.dll - ok
09:45:27.0918 0864 [ D51C5CA64DE2B35E2854F8CDC7EFC98F ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\fr.lproj\MobileMeUILocalized.dll
09:45:27.0918 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\fr.lproj\MobileMeUILocalized.dll - ok
09:45:27.0933 0864 [ 5E101497AB0AAB28011EDE45CFCA8AAD ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\it.lproj\MobileMeUILocalized.dll
09:45:27.0933 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\it.lproj\MobileMeUILocalized.dll - ok
09:45:27.0933 0864 [ 09EDFA122144ACFEED8FA96CF7DBF218 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ja.lproj\MobileMeUILocalized.dll
09:45:27.0933 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ja.lproj\MobileMeUILocalized.dll - ok
09:45:27.0933 0864 [ CE32EFCB4DFBC051EB8386147C5BAB72 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ko.lproj\MobileMeUILocalized.dll
09:45:27.0933 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ko.lproj\MobileMeUILocalized.dll - ok
09:45:27.0949 0864 [ 1675A000FFD1052CA8382DE23F946889 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\nb.lproj\MobileMeUILocalized.dll
09:45:27.0949 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\nb.lproj\MobileMeUILocalized.dll - ok
09:45:27.0949 0864 [ 6128187C83B28ED2F26196E21E093894 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\nl.lproj\MobileMeUILocalized.dll
09:45:27.0949 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\nl.lproj\MobileMeUILocalized.dll - ok
09:45:27.0949 0864 [ 78BE643A578CAFE744BD31A9E61145A1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ru.lproj\MobileMeUILocalized.dll
09:45:27.0949 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\ru.lproj\MobileMeUILocalized.dll - ok
09:45:27.0965 0864 [ 8AE580D7AB716DD2CC4AB1660E314280 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\sv.lproj\MobileMeUILocalized.dll
09:45:27.0965 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\sv.lproj\MobileMeUILocalized.dll - ok
09:45:27.0965 0864 [ 89820E3DCC589FE786A3C0F1DF1F3FA3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\zh_CN.lproj\MobileMeUILocalized.dll
09:45:27.0965 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\zh_CN.lproj\MobileMeUILocalized.dll - ok
09:45:27.0965 0864 [ 8CC802C8E903E2A363A593CFEDD46568 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\zh_TW.lproj\MobileMeUILocalized.dll
09:45:27.0965 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileMeUI.resources\zh_TW.lproj\MobileMeUILocalized.dll - ok
09:45:27.0980 0864 [ A9970042BE512C7981B36E689C5F3F9F ] C:\Program Files\Common Files\Apple\Mobile Device Support\NetDrivers\WdfCoInstaller01009.dll
09:45:27.0980 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\NetDrivers\WdfCoInstaller01009.dll - ok
09:45:27.0980 0864 [ E111DF9EBE23569B64FB38B9B978FC6E ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\da.lproj\OutMMe32Localized.dll
09:45:27.0980 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\da.lproj\OutMMe32Localized.dll - ok
09:45:27.0980 0864 [ 30EDBA62EFEED9BE7157A04E400A5D1C ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\de.lproj\OutMMe32Localized.dll
09:45:27.0980 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\de.lproj\OutMMe32Localized.dll - ok
09:45:27.0996 0864 [ F04EBEBAE6695A4F4C057FB1E0DD93A2 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\en.lproj\OutMMe32Localized.dll
09:45:27.0996 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\en.lproj\OutMMe32Localized.dll - ok
09:45:27.0996 0864 [ 0C4E600AFDD47C32E390956C0920A51C ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\es.lproj\OutMMe32Localized.dll
09:45:27.0996 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\es.lproj\OutMMe32Localized.dll - ok
09:45:27.0996 0864 [ 90B91335F849653460D202AEDA8481CC ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\fi.lproj\OutMMe32Localized.dll
09:45:27.0996 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\fi.lproj\OutMMe32Localized.dll - ok
09:45:28.0011 0864 [ CDEED8A7CF8C9B4F96E7B18040B4C3E0 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\fr.lproj\OutMMe32Localized.dll
09:45:28.0011 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\fr.lproj\OutMMe32Localized.dll - ok
09:45:28.0011 0864 [ 59D7CC43E27B04AA37EEAACADD4B82F3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\it.lproj\OutMMe32Localized.dll
09:45:28.0011 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\it.lproj\OutMMe32Localized.dll - ok
09:45:28.0011 0864 [ A95216208803B5F47705E103D4FDEA06 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ja.lproj\OutMMe32Localized.dll
09:45:28.0011 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ja.lproj\OutMMe32Localized.dll - ok
09:45:28.0027 0864 [ F8B122C5DA563EBA8AC3EBD27617DCFA ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ko.lproj\OutMMe32Localized.dll
09:45:28.0027 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ko.lproj\OutMMe32Localized.dll - ok
09:45:28.0027 0864 [ 6CBC4DAADDF478EA05F971549A046DE1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\nb.lproj\OutMMe32Localized.dll
09:45:28.0027 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\nb.lproj\OutMMe32Localized.dll - ok
09:45:28.0027 0864 [ 93466813D23594E72F91B77BE3BC1904 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\nl.lproj\OutMMe32Localized.dll
09:45:28.0027 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\nl.lproj\OutMMe32Localized.dll - ok
09:45:28.0043 0864 [ 00A859C7E047AE6785767E7A1D0445C1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ru.lproj\OutMMe32Localized.dll
09:45:28.0043 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\ru.lproj\OutMMe32Localized.dll - ok
09:45:28.0043 0864 [ 60D80484FEF5FCE0B1AA8A23D8681680 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\sv.lproj\OutMMe32Localized.dll
09:45:28.0043 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\sv.lproj\OutMMe32Localized.dll - ok
09:45:28.0043 0864 [ 340DEDE3BA68A5A86C6C024CD69FF77C ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\zh_CN.lproj\OutMMe32Localized.dll
09:45:28.0043 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\zh_CN.lproj\OutMMe32Localized.dll - ok
09:45:28.0058 0864 [ C4EAB5FCE3F68FEA1D15AD41B8767319 ] C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\zh_TW.lproj\OutMMe32Localized.dll
09:45:28.0058 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\OutMMe32.resources\zh_TW.lproj\OutMMe32Localized.dll - ok
09:45:28.0058 0864 [ 03B9FA41BFD07EBEA1DDA49A33F2C791 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.IE\com.apple.IE.isRegistered.dll
09:45:28.0058 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.IE\com.apple.IE.isRegistered.dll - ok
09:45:28.0058 0864 [ 5DC104F24F7C10B34577D9D99837B100 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.Outlook\com.apple.Outlook.isRegistered.dll
09:45:28.0058 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.Outlook\com.apple.Outlook.isRegistered.dll - ok
09:45:28.0058 0864 [ B7BFCEEA75A5AAE3A73F1B7CC017FC2E ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.Safari\com.apple.Safari.isRegistered.dll
09:45:28.0058 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.Safari\com.apple.Safari.isRegistered.dll - ok
09:45:28.0074 0864 [ 118989CE4C9E21BB8A8D114B26619A01 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.WindowsContacts\com.apple.WindowsContacts.isRegistered.dll
09:45:28.0074 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.WindowsContacts\com.apple.WindowsContacts.isRegistered.dll - ok
09:45:28.0074 0864 [ C49F768F9867C64B1FC0732E1F855C59 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.WindowsMail\com.apple.WindowsMail.isRegistered.dll
09:45:28.0074 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.apple.WindowsMail\com.apple.WindowsMail.isRegistered.dll - ok
09:45:28.0074 0864 [ 0C303B9AA770F9326814BA2C37FD0FD1 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.google.ContactSync\com.google.ContactSync.isRegistered.dll
09:45:28.0074 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.google.ContactSync\com.google.ContactSync.isRegistered.dll - ok
09:45:28.0089 0864 [ 8641FF4D8ADDDCB4115208AD56CAFFE0 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.yahoo.go.sync\com.yahoo.go.sync.isRegistered.dll
09:45:28.0089 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServices\Clients\com.yahoo.go.sync\com.yahoo.go.sync.isRegistered.dll - ok
09:45:28.0089 0864 [ 7B2323576149CA840E54708E377BDEDB ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\da.lproj\SyncUICoreLocalized.dll
09:45:28.0089 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\da.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0089 0864 [ 3A9E32C2B5F2E35133B9BBFDC20F243C ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\de.lproj\SyncUICoreLocalized.dll
09:45:28.0089 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\de.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0105 0864 [ 4A67304E98A2380D680AA7C8218BD43B ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\en.lproj\SyncUICoreLocalized.dll
09:45:28.0105 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\en.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0105 0864 [ 029014CCEFB334FF1A7B85E3EB90BB8E ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\es.lproj\SyncUICoreLocalized.dll
09:45:28.0105 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\es.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0105 0864 [ 91267FBD09B49C62ECEF898F025F5380 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\fi.lproj\SyncUICoreLocalized.dll
09:45:28.0105 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\fi.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0121 0864 [ EE6BD6848660DA2B409BBE23D8363AE6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\fr.lproj\SyncUICoreLocalized.dll
09:45:28.0121 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\fr.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0121 0864 [ E57DBFB9723E1E48DD4371727E35BB19 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\it.lproj\SyncUICoreLocalized.dll
09:45:28.0121 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\it.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0121 0864 [ 23E9B74A4B40BD5839FC594BC173C5CB ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ja.lproj\SyncUICoreLocalized.dll
09:45:28.0121 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ja.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0121 0864 [ AD065651C4B93B0C08411E158C6584A5 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ko.lproj\SyncUICoreLocalized.dll
09:45:28.0121 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ko.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0136 0864 [ E1E8EEE29E4109DA6B445CAA8EB36BAD ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\nb.lproj\SyncUICoreLocalized.dll
09:45:28.0136 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\nb.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0136 0864 [ 625813C2F9BF9F7165B0EE50DD49E4A5 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\nl.lproj\SyncUICoreLocalized.dll
09:45:28.0136 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\nl.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0136 0864 [ 7DEB877998C2A58B4B72A9DC00FEF928 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\pl.lproj\SyncUICoreLocalized.dll
09:45:28.0136 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\pl.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0152 0864 [ 2C6E59CA59887A8FDF41C39498914F3F ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\pt_PT.lproj\SyncUICoreLocalized.dll
09:45:28.0152 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\pt_PT.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0152 0864 [ 46447185E487CC29DDCC606AF25BD685 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ru.lproj\SyncUICoreLocalized.dll
09:45:28.0152 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\ru.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0152 0864 [ 852B9803F31F2BE16F6868777D02B243 ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\sv.lproj\SyncUICoreLocalized.dll
09:45:28.0152 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\sv.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0167 0864 [ 17887B21982FA55C4E33DFFA17B5F1CA ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\zh_CN.lproj\SyncUICoreLocalized.dll
09:45:28.0167 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\zh_CN.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0167 0864 [ 1F4320291EFC925E5AE5116EA355CFAF ] C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\zh_TW.lproj\SyncUICoreLocalized.dll
09:45:28.0167 0864 C:\Program Files\Common Files\Apple\Mobile Device Support\SyncUICore.resources\zh_TW.lproj\SyncUICoreLocalized.dll - ok
09:45:28.0167 0864 [ C9905EA4C326DAB778B9297BA5BD1889 ] C:\Windows\System32\wermgr.exe
09:45:28.0167 0864 C:\Windows\System32\wermgr.exe - ok
09:45:28.0183 0864 [ BB3C7E48088D37417EB37F1A9E3D2449 ] C:\Windows\System32\werui.dll
09:45:28.0183 0864 C:\Windows\System32\werui.dll - ok
09:45:28.0183 0864 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
09:45:28.0183 0864 C:\Windows\System32\dssenh.dll - ok
09:45:28.0183 0864 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
09:45:28.0183 0864 C:\Windows\System32\ie4uinit.exe - ok
09:45:28.0199 0864 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
09:45:28.0199 0864 C:\Windows\System32\iedkcs32.dll - ok
09:45:28.0199 0864 [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\System32\timedate.cpl
09:45:28.0199 0864 C:\Windows\System32\timedate.cpl - ok
09:45:28.0199 0864 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\System32\actxprxy.dll
09:45:28.0199 0864 C:\Windows\System32\actxprxy.dll - ok
09:45:28.0214 0864 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
09:45:28.0214 0864 C:\Windows\System32\msiltcfg.dll - ok
09:45:28.0214 0864 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
09:45:28.0214 0864 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - ok
09:45:28.0214 0864 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
09:45:28.0214 0864 C:\Windows\System32\linkinfo.dll - ok
09:45:28.0214 0864 [ 93569D46D79F9756ED077156496AFE23 ] C:\Program Files\Internet Explorer\iexplore.exe
09:45:28.0214 0864 C:\Program Files\Internet Explorer\iexplore.exe - ok
09:45:28.0230 0864 [ B0222BD0F9D97488D691BCC02B051A92 ] C:\Windows\ehome\ehshell.exe
09:45:28.0230 0864 C:\Windows\ehome\ehshell.exe - ok
09:45:28.0230 0864 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files\Windows Media Player\wmplayer.exe
09:45:28.0230 0864 C:\Program Files\Windows Media Player\wmplayer.exe - ok
09:45:28.0230 0864 [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\System32\msftedit.dll
09:45:28.0230 0864 C:\Windows\System32\msftedit.dll - ok
09:45:28.0245 0864 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll
09:45:28.0245 0864 C:\Windows\System32\msls31.dll - ok
09:45:28.0245 0864 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
09:45:28.0245 0864 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
09:45:28.0245 0864 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
09:45:28.0245 0864 C:\Windows\System32\aeevts.dll - ok
09:45:28.0245 0864 [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\System32\gameux.dll
09:45:28.0245 0864 C:\Windows\System32\gameux.dll - ok
09:45:28.0261 0864 [ 2A39F32E0067CBF221611FE1FA8C6D8F ] C:\Windows\System32\DeviceCenter.dll
09:45:28.0261 0864 C:\Windows\System32\DeviceCenter.dll - ok
09:45:28.0261 0864 [ 6581B52E133CC6D00661C58968C7E212 ] C:\Windows\System32\SearchFolder.dll
09:45:28.0261 0864 C:\Windows\System32\SearchFolder.dll - ok
09:45:28.0261 0864 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
09:45:28.0261 0864 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
09:45:28.0261 0864 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\System32\networkexplorer.dll
09:45:28.0261 0864 C:\Windows\System32\networkexplorer.dll - ok
09:45:28.0277 0864 [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\System32\thumbcache.dll
09:45:28.0277 0864 C:\Windows\System32\thumbcache.dll - ok
09:45:28.0277 0864 [ 37BF603C3685289CA684C4D3400A9DE7 ] C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
09:45:28.0277 0864 C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
09:45:28.0277 0864 [ 2E17E8CD4D77BF831AC5F8C2C49233C7 ] C:\Program Files\Google\Chrome\Application\chrome.exe
09:45:28.0277 0864 C:\Program Files\Google\Chrome\Application\chrome.exe - ok
09:45:28.0292 0864 [ ED4D8DED89B133BA11BF526E11B5B843 ] C:\Program Files\Adobe\Adobe Photoshop CS5\Photoshop.exe
09:45:28.0292 0864 C:\Program Files\Adobe\Adobe Photoshop CS5\Photoshop.exe - ok
09:45:28.0292 0864 [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\System32\stobject.dll
09:45:28.0292 0864 C:\Windows\System32\stobject.dll - ok
09:45:28.0292 0864 [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\System32\batmeter.dll
09:45:28.0292 0864 C:\Windows\System32\batmeter.dll - ok
09:45:28.0292 0864 [ B8E421C0890356CD4A793D8A346D9096 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
09:45:28.0292 0864 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
09:45:28.0308 0864 [ 07C4EBD3107799774FA3103956CD1C40 ] C:\Program Files\Nuance\PaperPort\IndexSearch.exe
09:45:28.0308 0864 C:\Program Files\Nuance\PaperPort\IndexSearch.exe - ok
09:45:28.0308 0864 [ E5F1D2C7D51C816437BBE2306828BC4B ] C:\Program Files\Nuance\PaperPort\pptd40nt.exe
09:45:28.0308 0864 C:\Program Files\Nuance\PaperPort\pptd40nt.exe - ok
09:45:28.0308 0864 [ D378BFFB70923139D6A4F546864AA61C ] C:\Windows\System32\notepad.exe
09:45:28.0308 0864 C:\Windows\System32\notepad.exe - ok
09:45:28.0323 0864 [ 874650BF7C7063FB2455E0498456D29C ] C:\Program Files\Nuance\PaperPort\XMaxUtil.dll
09:45:28.0323 0864 C:\Program Files\Nuance\PaperPort\XMaxUtil.dll - ok
09:45:28.0323 0864 [ E2BF206E5164569500742637B5459402 ] C:\Program Files\Nuance\PaperPort\BliceCtr.dll
09:45:28.0323 0864 C:\Program Files\Nuance\PaperPort\BliceCtr.dll - ok
09:45:28.0323 0864 [ 0D1D2FBAE112BDDB9F77B7BC7A956D3A ] C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe
09:45:28.0323 0864 C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe - ok
09:45:28.0339 0864 [ 519835D8C5215B09DC6D60F356625A66 ] C:\Program Files\Nuance\PaperPort\MaxRes.dll
09:45:28.0339 0864 C:\Program Files\Nuance\PaperPort\MaxRes.dll - ok
09:45:28.0339 0864 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\System32\wdmaud.drv
09:45:28.0339 0864 C:\Windows\System32\wdmaud.drv - ok
09:45:28.0339 0864 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
09:45:28.0339 0864 C:\Windows\System32\oledlg.dll - ok
09:45:28.0339 0864 [ CFB1E2B76E115A65F8F1D2C798D1D66F ] C:\Program Files\Nuance\PaperPort\Ereg\EregRes_eng.dll
09:45:28.0339 0864 C:\Program Files\Nuance\PaperPort\Ereg\EregRes_eng.dll - ok
09:45:28.0355 0864 [ 6DFFB528637A207DC57BB99C3C20EF07 ] C:\Program Files\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe
09:45:28.0355 0864 C:\Program Files\Panda Security\Panda Cloud Cleaner\PCloudCleaner.exe - ok
09:45:28.0355 0864 [ 2F2C1E01EEB61231390759CF4EA2FE55 ] C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
09:45:28.0355 0864 C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
09:45:28.0355 0864 [ E585445D5021971FAE10393F0F1C3961 ] C:\Windows\System32\qmgr.dll
09:45:28.0355 0864 C:\Windows\System32\qmgr.dll - ok
09:45:28.0355 0864 [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll
09:45:28.0355 0864 C:\Windows\System32\bitsigd.dll - ok
09:45:28.0370 0864 [ 0552A8684BF7566F744D5B19FF6AEC6B ] C:\Windows\System32\bitsperf.dll
09:45:28.0370 0864 C:\Windows\System32\bitsperf.dll - ok
09:45:28.0370 0864 [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\System32\upnp.dll
09:45:28.0370 0864 C:\Windows\System32\upnp.dll - ok
09:45:28.0370 0864 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\System32\qmgrprxy.dll
09:45:28.0370 0864 C:\Windows\System32\qmgrprxy.dll - ok
09:45:28.0370 0864 [ 992776DD978494547DD1CE211D978868 ] C:\Program Files\Nuance\PaperPort\BindRes.dll
09:45:28.0370 0864 C:\Program Files\Nuance\PaperPort\BindRes.dll - ok
09:45:28.0386 0864 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
09:45:28.0386 0864 C:\Windows\System32\ksuser.dll - ok
09:45:28.0386 0864 [ 2A0DD9961ED969EB10781DBC57EBA9CC ] C:\Program Files\QuickTime\QuickTimePlayer.exe
09:45:28.0386 0864 C:\Program Files\QuickTime\QuickTimePlayer.exe - ok
09:45:28.0386 0864 [ E8B6A667BC9AE46CDF7BF19DFE6D74FE ] C:\Program Files\Canon\Picture Style Editor\PSEditor.exe
09:45:28.0386 0864 C:\Program Files\Canon\Picture Style Editor\PSEditor.exe - ok
09:45:28.0401 0864 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\61822871.sys
09:45:28.0401 0864 C:\Windows\System32\drivers\61822871.sys - ok
09:45:28.0401 0864 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\System32\AudioSes.dll
09:45:28.0401 0864 C:\Windows\System32\AudioSes.dll - ok
09:45:28.0401 0864 [ 6422BA2352CF6632CCAFA6F1237EFF6F ] C:\Program Files\Vuze\Azureus.exe
09:45:28.0401 0864 C:\Program Files\Vuze\Azureus.exe - ok
09:45:28.0417 0864 [ 9F0ACAA725CF5A391AF7E2067AE45746 ] C:\Program Files\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
09:45:28.0417 0864 C:\Program Files\Nuance\PDF Viewer Plus\pdfPro5Hook.exe - ok
09:45:28.0417 0864 [ 687B71C161B246ECE1A13D24AACF0413 ] C:\Program Files\Microsoft Security Client\msseces.exe
09:45:28.0417 0864 C:\Program Files\Microsoft Security Client\msseces.exe - ok
09:45:28.0417 0864 [ 154420A93E4F676AA33A055A116255D9 ] C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe
09:45:28.0417 0864 C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe - ok
09:45:28.0417 0864 [ 2E12B0E2DB1B5AC1EB1E13DC09CF7F58 ] C:\Program Files\ControlCenter4\BrCcBoot.exe
09:45:28.0417 0864 C:\Program Files\ControlCenter4\BrCcBoot.exe - ok
09:45:28.0433 0864 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
09:45:28.0433 0864 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
09:45:28.0433 0864 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\System32\sti.dll
09:45:28.0433 0864 C:\Windows\System32\sti.dll - ok
09:45:28.0433 0864 [ 6C025DD33D45965CAE677534BFBEC408 ] C:\Program Files\ControlCenter4\BrCtrlCntr.exe
09:45:28.0433 0864 C:\Program Files\ControlCenter4\BrCtrlCntr.exe - ok
09:45:28.0448 0864 [ F1BDE714E32B974803FD30B228A85F89 ] C:\Program Files\ControlCenter4\BrCcDevMan.dll
09:45:28.0448 0864 C:\Program Files\ControlCenter4\BrCcDevMan.dll - ok
09:45:28.0448 0864 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\System32\prnfldr.dll
09:45:28.0448 0864 C:\Windows\System32\prnfldr.dll - ok
09:45:28.0448 0864 [ 0DB9BD8D45F6CC34C311841DCA9A44B1 ] C:\Program Files\ControlCenter4\BrCcAssoc.dll
09:45:28.0448 0864 C:\Program Files\ControlCenter4\BrCcAssoc.dll - ok
09:45:28.0464 0864 [ 0A3ABA0B39C957D75D27B568384F8B57 ] C:\Program Files\ControlCenter4\BrCcExtPg.dll
09:45:28.0464 0864 C:\Program Files\ControlCenter4\BrCcExtPg.dll - ok
09:45:28.0464 0864 [ E97295DE2A9FDE547FEAB4FE41DF16CA ] C:\Windows\System32\mspaint.exe
09:45:28.0464 0864 C:\Windows\System32\mspaint.exe - ok
09:45:28.0464 0864 [ 40FF9FD21E13C878F41BA1D06688B46B ] C:\Program Files\Microsoft Games\Rise Of Legends\legends.exe
09:45:28.0464 0864 C:\Program Files\Microsoft Games\Rise Of Legends\legends.exe - ok
09:45:28.0464 0864 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
09:45:28.0464 0864 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
09:45:28.0479 0864 [ DF5F5DA91097AEC042295634B2E52729 ] C:\Program Files\Nuance\PDF Viewer Plus\cnvres_eng.dll
09:45:28.0479 0864 C:\Program Files\Nuance\PDF Viewer Plus\cnvres_eng.dll - ok
09:45:28.0479 0864 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\System32\riched20.dll
09:45:28.0479 0864 C:\Windows\System32\riched20.dll - ok
09:45:28.0479 0864 [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\System32\regsvr32.exe
09:45:28.0479 0864 C:\Windows\System32\regsvr32.exe - ok
09:45:28.0495 0864 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\System32\shfolder.dll
09:45:28.0495 0864 C:\Windows\System32\shfolder.dll - ok
09:45:28.0495 0864 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
09:45:28.0495 0864 C:\Windows\AppPatch\AcGenral.dll - ok
09:45:28.0495 0864 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
09:45:28.0495 0864 C:\Windows\System32\msacm32.dll - ok
09:45:28.0495 0864 [ 602F7A721C4E684CA16629CC4587FF9D ] C:\PROGRA~1\MICROS~2\Office12\OIS.EXE
09:45:28.0495 0864 C:\PROGRA~1\MICROS~2\Office12\OIS.EXE - ok
09:45:28.0511 0864 [ 5170D04359E5D54A06B084AA5D833115 ] C:\Program Files\Windows Photo Viewer\PhotoViewer.dll
09:45:28.0511 0864 C:\Program Files\Windows Photo Viewer\PhotoViewer.dll - ok
09:45:28.0511 0864 [ 346FA50E19439983EA049B36385D88AF ] C:\Program Files\QuickTime\PictureViewer.exe
09:45:28.0511 0864 C:\Program Files\QuickTime\PictureViewer.exe - ok
09:45:28.0511 0864 [ 7CE65D331015BFDE2A0C3931072EFCAC ] C:\Program Files\iTunes\iTunes.exe
09:45:28.0511 0864 C:\Program Files\iTunes\iTunes.exe - ok
09:45:28.0526 0864 [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\System32\Wpc.dll
09:45:28.0526 0864 C:\Windows\System32\Wpc.dll - ok
09:45:28.0526 0864 [ A51892E7DC4BBC7875C7D30549A86DA2 ] C:\Program Files\Voobly\voobly.exe
09:45:28.0526 0864 C:\Program Files\Voobly\voobly.exe - ok
09:45:28.0526 0864 [ 3DEE33B755F9D4DC6C0A1ECDD0242808 ] C:\Program Files\Bible\Olb.Exe
09:45:28.0526 0864 C:\Program Files\Bible\Olb.Exe - ok
09:45:28.0526 0864 [ 7F42FFCD6FF7CA558C2D95DADCD5EFA9 ] C:\Program Files\Browny02\Brother\BrStMonW.exe
09:45:28.0526 0864 C:\Program Files\Browny02\Brother\BrStMonW.exe - ok
09:45:28.0542 0864 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
09:45:28.0542 0864 C:\Windows\System32\msacm32.drv - ok
09:45:28.0542 0864 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
09:45:28.0542 0864 C:\Windows\System32\midimap.dll - ok
09:45:28.0542 0864 [ 020751735A3CB526F3144666AA6E9EC9 ] C:\Program Files\Medieval Software\Medieval CUE Splitter\CUE_Splitter.exe
09:45:28.0542 0864 C:\Program Files\Medieval Software\Medieval CUE Splitter\CUE_Splitter.exe - ok
09:45:28.0557 0864 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
09:45:28.0557 0864 C:\Windows\System32\AudioEng.dll - ok
09:45:28.0557 0864 [ CAA5E8DE421C5875731CD3BA5233F162 ] C:\Program Files\Browny02\Brother\BrStMonWRes.dll
09:45:28.0557 0864 C:\Program Files\Browny02\Brother\BrStMonWRes.dll - ok
09:45:28.0557 0864 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
09:45:28.0557 0864 C:\Windows\System32\AUDIOKSE.dll - ok
09:45:28.0557 0864 [ 46D8871766D176874081CFE82D188084 ] C:\Program Files\Black Isle\Icewind Dale II\IWD2.exe
09:45:28.0557 0864 C:\Program Files\Black Isle\Icewind Dale II\IWD2.exe - ok
09:45:28.0573 0864 [ 30DB37B14B0DDC4EC16193F8D0718B11 ] C:\Windows\System32\AEADIAPR.dll
09:45:28.0573 0864 C:\Windows\System32\AEADIAPR.dll - ok
09:45:28.0573 0864 [ 3E790F627FF9D5FA610BD2ACF66016B3 ] C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
09:45:28.0573 0864 C:\Program Files\Microsoft Office\Office12\WINWORD.EXE - ok
09:45:28.0573 0864 [ 59B7280D73906B43B13B273A1F9CC3DD ] C:\Windows\System32\xpsrchvw.exe
09:45:28.0573 0864 C:\Windows\System32\xpsrchvw.exe - ok
09:45:28.0589 0864 [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\System32\hhctrl.ocx
09:45:28.0589 0864 C:\Windows\System32\hhctrl.ocx - ok
09:45:28.0589 0864 [ 03A22FECEC25A0FA4E7DBACCE3742856 ] C:\Windows\Installer\{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}\iTunesIco.exe
09:45:28.0589 0864 C:\Windows\Installer\{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}\iTunesIco.exe - ok
09:45:28.0589 0864 [ 66F516A78C1D220FE0F429DF5EF0DE5D ] C:\Windows\System32\ntvdm.exe
09:45:28.0589 0864 C:\Windows\System32\ntvdm.exe - ok
09:45:28.0604 0864 [ A23D1D59160B59D29006117EE0722EC2 ] C:\Program Files\Microsoft Office\Office12\MSOHTMED.EXE
09:45:28.0604 0864 C:\Program Files\Microsoft Office\Office12\MSOHTMED.EXE - ok
09:45:28.0604 0864 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
09:45:28.0604 0864 C:\Windows\System32\UIAnimation.dll - ok
09:45:28.0604 0864 [ 2476608083BAAFEEC6EF1B0D0AC6CCFC ] C:\Windows\System32\ntvdmd.dll
09:45:28.0604 0864 C:\Windows\System32\ntvdmd.dll - ok
09:45:28.0620 0864 [ 5447AF432CDA61159ADDE218C468FFD9 ] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
09:45:28.0620 0864 C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
09:45:28.0620 0864 [ B3DD214F23037E3D3C27D6C9447B40B5 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
09:45:28.0620 0864 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
09:45:28.0620 0864 [ CBE1129BC0DE531F848432FD38C3B35F ] C:\Program Files\FLAC\FLAC frontend.exe
09:45:28.0620 0864 C:\Program Files\FLAC\FLAC frontend.exe - ok
09:45:28.0620 0864 [ ADDB05C93272A62606599B24730BD645 ] C:\Windows\System32\DXP.dll
09:45:28.0620 0864 C:\Windows\System32\DXP.dll - ok
09:45:28.0635 0864 [ EC5BFD7B7269B60AE30A103105C71C1A ] C:\Windows\System32\vdmredir.dll
09:45:28.0635 0864 C:\Windows\System32\vdmredir.dll - ok
09:45:28.0635 0864 [ 9ED9F21D73F9D71E30EAB71835E656EB ] C:\Users\joe\Desktop\tdsskiller.exe
09:45:28.0635 0864 C:\Users\joe\Desktop\tdsskiller.exe - ok
09:45:28.0635 0864 [ 43B18040C01F0A03EBFF6ACC3D72FD8A ] C:\Windows\System32\pcadm.dll
09:45:28.0635 0864 C:\Windows\System32\pcadm.dll - ok
09:45:28.0651 0864 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
09:45:28.0651 0864 C:\Windows\System32\Syncreg.dll - ok
09:45:28.0651 0864 [ D5B783DACE1BBDD382A63C894BAB8E1E ] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
09:45:28.0651 0864 C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe - ok
09:45:28.0651 0864 [ CE48BA1F5CEA1E6E93CC1B0EC62343B4 ] C:\Program Files\Punch! Home Design - AS4000\PunchHomeAS4000.exe
09:45:28.0651 0864 C:\Program Files\Punch! Home Design - AS4000\PunchHomeAS4000.exe - ok
09:45:28.0667 0864 [ 114E5342884A174F0E261526F07B63A1 ] C:\Program Files\Common Files\Adobe\CS5ServiceManager\libcurl.dll
09:45:28.0667 0864 C:\Program Files\Common Files\Adobe\CS5ServiceManager\libcurl.dll - ok
09:45:28.0667 0864 [ 6307849B9BE3C206DB46A62316BF191F ] C:\Program Files\Common Files\Adobe\CS5ServiceManager\libeay32.dll
09:45:28.0667 0864 C:\Program Files\Common Files\Adobe\CS5ServiceManager\libeay32.dll - ok
09:45:28.0667 0864 [ AAA55B127EC38BDEBD2A3891A2E5FD54 ] C:\Program Files\Common Files\Adobe\CS5ServiceManager\ssleay32.dll
09:45:28.0667 0864 C:\Program Files\Common Files\Adobe\CS5ServiceManager\ssleay32.dll - ok
09:45:28.0667 0864 [ 726EBFAFF3B8056B2E0CF6E3C52A9099 ] C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
09:45:28.0667 0864 C:\Program Files\Microsoft Office\Office12\EXCEL.EXE - ok
09:45:28.0682 0864 [ 907B50DE97ED835EFE151F203818216D ] C:\Program Files\Common Files\Adobe\CS5ServiceManager\zlib1.dll
09:45:28.0682 0864 C:\Program Files\Common Files\Adobe\CS5ServiceManager\zlib1.dll - ok
09:45:28.0682 0864 [ 5158BBE267025E0A7288D7DDC10C8590 ] C:\Program Files\Canon\EOS Utility\EOS Utility.exe
09:45:28.0682 0864 C:\Program Files\Canon\EOS Utility\EOS Utility.exe - ok
09:45:28.0682 0864 [ D7B3C93459E33A6440D76046C0EC95AF ] C:\Program Files\ControlCenter4\BrCcFaxRx.dll
09:45:28.0682 0864 C:\Program Files\ControlCenter4\BrCcFaxRx.dll - ok
09:45:28.0698 0864 [ 426E9C9E6A2250D61C5C5783417A7DF5 ] C:\Program Files\ControlCenter4\BrCcUxSys.exe
09:45:28.0698 0864 C:\Program Files\ControlCenter4\BrCcUxSys.exe - ok
09:45:28.0698 0864 [ 6AA7883986D3B351CB068919DAF2F309 ] C:\Program Files\ControlCenter4\BrCcDlgRc.dll
09:45:28.0698 0864 C:\Program Files\ControlCenter4\BrCcDlgRc.dll - ok
09:45:28.0698 0864 [ 649B5AA7A518CF14B128D73059C3A55A ] C:\Program Files\ControlCenter4\BrCcGrImg.dll
09:45:28.0698 0864 C:\Program Files\ControlCenter4\BrCcGrImg.dll - ok
09:45:28.0698 0864 [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
09:45:28.0698 0864 C:\Windows\ehome\ehSSO.dll - ok
09:45:28.0713 0864 [ 9A3A254B0816DFCCB57DD53F9F738ABE ] C:\Program Files\PFPortChecker\PFPortChecker.exe
09:45:28.0713 0864 C:\Program Files\PFPortChecker\PFPortChecker.exe - ok
09:45:28.0713 0864 [ 316281A7C79D41C6B4B65BCE41A9ED40 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
09:45:28.0713 0864 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
09:45:28.0713 0864 [ B525099C04DBE7DCB2C911377D880471 ] C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe
09:45:28.0713 0864 C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe - ok
09:45:28.0729 0864 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
09:45:28.0729 0864 C:\Windows\System32\AltTab.dll - ok
09:45:28.0729 0864 [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\System32\WPDShServiceObj.dll
09:45:28.0729 0864 C:\Windows\System32\WPDShServiceObj.dll - ok
09:45:28.0729 0864 [ 3F6468DD7D3B47A17169B0D775885014 ] C:\Windows\System32\SynCOM.dll
09:45:28.0729 0864 C:\Windows\System32\SynCOM.dll - ok
09:45:28.0745 0864 [ 4244D560E5018B7309C46BFBB05F3640 ] C:\Program Files\Monkey's Audio\Monkey's Audio.exe
09:45:28.0745 0864 C:\Program Files\Monkey's Audio\Monkey's Audio.exe - ok
09:45:28.0745 0864 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
09:45:28.0745 0864 C:\Windows\System32\PortableDeviceTypes.dll - ok
09:45:28.0745 0864 [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\System32\pnidui.dll
09:45:28.0745 0864 C:\Windows\System32\pnidui.dll - ok
09:45:28.0745 0864 [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\System32\QUTIL.DLL
09:45:28.0745 0864 C:\Windows\System32\QUTIL.DLL - ok
09:45:28.0760 0864 [ F60D7BA291B9812AE9A77CF95689818E ] C:\hp\kbd\kbd.exe
09:45:28.0760 0864 C:\hp\kbd\kbd.exe - ok
09:45:28.0760 0864 [ CF4274CEEA9F7791FB7FC40A066BC2C7 ] C:\Windows\System32\cscobj.dll
09:45:28.0760 0864 C:\Windows\System32\cscobj.dll - ok
09:45:28.0760 0864 [ 20BB1D03777AD9C02F39332541E0EA3B ] C:\Program Files\Amazon\MP3 Downloader\AmazonMP3Downloader.exe
09:45:28.0760 0864 C:\Program Files\Amazon\MP3 Downloader\AmazonMP3Downloader.exe - ok
09:45:28.0776 0864 [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\System32\SearchIndexer.exe
09:45:28.0776 0864 C:\Windows\System32\SearchIndexer.exe - ok
09:45:28.0776 0864 [ 3DCD7967B629A8DA1ABE2515ECF6AEF7 ] C:\hp\kbd\led.dll
09:45:28.0776 0864 C:\hp\kbd\led.dll - ok
09:45:28.0776 0864 [ EB04496E490812BAA345F699C5FA5F3D ] C:\hp\kbd\usb.dll
09:45:28.0776 0864 C:\hp\kbd\usb.dll - ok
09:45:28.0776 0864 [ 58E2E6C3DE6ABDD30D545784C2C98A59 ] C:\hp\kbd\ps2.dll
09:45:28.0776 0864 C:\hp\kbd\ps2.dll - ok
09:45:28.0791 0864 [ E7C473A093C8FDEAA50BF3A26EB072C8 ] C:\hp\kbd\msg.dll
09:45:28.0791 0864 C:\hp\kbd\msg.dll - ok
09:45:28.0791 0864 [ 8EAFBCDA7EE4A833214B22EC520C28EC ] C:\hp\kbd\osd.dll
09:45:28.0791 0864 C:\hp\kbd\osd.dll - ok
09:45:28.0791 0864 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\System32\tquery.dll
09:45:28.0791 0864 C:\Windows\System32\tquery.dll - ok
09:45:28.0791 0864 [ D1791D49E2EA07C0ED7C700C49209A39 ] C:\hp\kbd\sct.dll
09:45:28.0791 0864 C:\hp\kbd\sct.dll - ok
09:45:28.0807 0864 [ 278FEB61DBE530000C08B8C9481B198B ] C:\hp\kbd\onl.dll
09:45:28.0807 0864 C:\hp\kbd\onl.dll - ok
09:45:28.0807 0864 [ 271D596A1ED42394744FF9EBE7D39264 ] C:\hp\kbd\aol.dll
09:45:28.0807 0864 C:\hp\kbd\aol.dll - ok
09:45:28.0807 0864 [ 06A4797981C5E3E63AF117232504FAA7 ] C:\hp\kbd\url.dll
09:45:28.0807 0864 C:\hp\kbd\url.dll - ok
09:45:28.0823 0864 [ C12DE5303E91E0F80797776F357972EA ] C:\hp\kbd\cfg.dll
09:45:28.0823 0864 C:\hp\kbd\cfg.dll - ok
09:45:28.0823 0864 [ 870A855E446AAE72A33217C8E4C939D3 ] C:\hp\kbd\msikbdif.dll
09:45:28.0823 0864 C:\hp\kbd\msikbdif.dll - ok
09:45:28.0823 0864 [ 126B75D50756FE204283D418AE1A66DF ] C:\Windows\System32\msvcirt.dll
09:45:28.0823 0864 C:\Windows\System32\msvcirt.dll - ok
09:45:28.0823 0864 [ 00AFC59555C605A006C6A11ED42A65D1 ] C:\Program Files\ControlCenter4\BrCcLUsa.dll
09:45:28.0823 0864 C:\Program Files\ControlCenter4\BrCcLUsa.dll - ok
09:45:28.0838 0864 [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\System32\mssrch.dll
09:45:28.0838 0864 C:\Windows\System32\mssrch.dll - ok
09:45:28.0838 0864 [ 80F22B49DAC95AC83155E32AA4F7444D ] C:\Users\joe\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe
09:45:28.0838 0864 C:\Users\joe\AppData\Roaming\GameRanger\GameRanger\GameRanger.exe - ok
09:45:28.0838 0864 [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\System32\esent.dll
09:45:28.0838 0864 C:\Windows\System32\esent.dll - ok
09:45:28.0838 0864 [ 765A44F54E251CE17ED90F246FD362F4 ] C:\Program Files\ControlCenter4\BrCcScan.dll
09:45:28.0838 0864 C:\Program Files\ControlCenter4\BrCcScan.dll - ok
09:45:28.0854 0864 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\System32\bthprops.cpl
09:45:28.0854 0864 C:\Windows\System32\bthprops.cpl - ok
09:45:28.0854 0864 [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\System32\srchadmin.dll
09:45:28.0854 0864 C:\Windows\System32\srchadmin.dll - ok
09:45:28.0854 0864 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
09:45:28.0854 0864 C:\Windows\System32\msidle.dll - ok
09:45:28.0869 0864 [ EBB1B7BFAD67421C8E110CEBF4D61F19 ] C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
09:45:28.0869 0864 C:\Program Files\Lenovo\TrackPoint\tp4serv.exe - ok
09:45:28.0869 0864 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
09:45:28.0869 0864 C:\Windows\System32\mssprxy.dll - ok
09:45:28.0869 0864 [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\System32\ActionCenter.dll
09:45:28.0869 0864 C:\Windows\System32\ActionCenter.dll - ok
09:45:28.0885 0864 [ 140BDA90145182966ACF582B28A4C8EF ] C:\Users\joe\Documents\Vuze Downloads\Age Of Empires I - Rise Of Rome Expansion Rip - (ServiusTheBear)\EMPIRESX.EXE
09:45:28.0885 0864 C:\Users\joe\Documents\Vuze Downloads\Age Of Empires I - Rise Of Rome Expansion Rip - (ServiusTheBear)\EMPIRESX.EXE - ok
09:45:28.0885 0864 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
09:45:28.0885 0864 C:\Windows\System32\rasdlg.dll - ok
09:45:28.0885 0864 [ 804D1B3F83682288619DF795543BF382 ] C:\Windows\System32\consent.exe
09:45:28.0885 0864 C:\Windows\System32\consent.exe - ok
09:45:28.0885 0864 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\System32\en-US\tquery.dll.mui
09:45:28.0885 0864 C:\Windows\System32\en-US\tquery.dll.mui - ok
09:45:28.0901 0864 [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\System32\dot3api.dll
09:45:28.0901 0864 C:\Windows\System32\dot3api.dll - ok
09:45:28.0901 0864 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
09:45:28.0901 0864 C:\Windows\System32\wlanhlp.dll - ok
09:45:28.0901 0864 [ 8C3FBFB228EBEBC934E88B8025BFFAD2 ] C:\Program Files\Lenovo\TrackPoint\US\tp4uires.dll
09:45:28.0901 0864 C:\Program Files\Lenovo\TrackPoint\US\tp4uires.dll - ok
09:45:28.0901 0864 [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
09:45:28.0901 0864 C:\Windows\System32\FXSST.dll - ok
09:45:28.0916 0864 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
09:45:28.0916 0864 C:\Windows\System32\wlanapi.dll - ok
09:45:28.0916 0864 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
09:45:28.0916 0864 C:\Windows\System32\FXSAPI.dll - ok
09:45:28.0916 0864 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
09:45:28.0916 0864 C:\Windows\System32\FXSRESM.dll - ok
09:45:28.0916 0864 [ A2B666C98A71A5C2E62D5BBA8D04E208 ] C:\Users\joe\Documents\Vuze Downloads\Age Of Empires I - Rise Of Rome Expansion Rip - (ServiusTheBear)\Empires.exe
09:45:28.0916 0864 C:\Users\joe\Documents\Vuze Downloads\Age Of Empires I - Rise Of Rome Expansion Rip - (ServiusTheBear)\Empires.exe - ok
09:45:28.0932 0864 [ BC60F7192CCBF9864EF55E4FA2F42079 ] C:\Windows\System32\igfxtray.exe
09:45:28.0932 0864 C:\Windows\System32\igfxtray.exe - ok
09:45:28.0932 0864 [ CE22FB0AE7C1D5FA2FFFE45DD63D72ED ] C:\Windows\System32\hccutils.dll
09:45:28.0932 0864 C:\Windows\System32\hccutils.dll - ok
09:45:28.0932 0864 [ 4768FB8867352D871F013BBF8043022F ] C:\Windows\System32\igfxsrvc.exe
09:45:28.0932 0864 C:\Windows\System32\igfxsrvc.exe - ok
09:45:28.0947 0864 [ D30E9F4C5A0AB08D2CFF16591A06D957 ] C:\Windows\System32\igfxsrvc.dll
09:45:28.0947 0864 C:\Windows\System32\igfxsrvc.dll - ok
09:45:28.0947 0864 [ 4BB5E273B65E276DBA2DAC045874AB1D ] C:\Windows\System32\igfxdev.dll
09:45:28.0947 0864 C:\Windows\System32\igfxdev.dll - ok
09:45:28.0947 0864 [ 967EA5B213E9984CBE270205DF37755B ] C:\Windows\System32\FXSSVC.exe
09:45:28.0947 0864 C:\Windows\System32\FXSSVC.exe - ok
09:45:28.0947 0864 [ 1B63F8FFFFFFDA1E03AED970C7383FFE ] C:\Windows\System32\hkcmd.exe
09:45:28.0947 0864 C:\Windows\System32\hkcmd.exe - ok
09:45:28.0963 0864 [ 53683A331F8A1BB20ADD0330F1DE6388 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
09:45:28.0963 0864 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
09:45:28.0963 0864 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
09:45:28.0963 0864 C:\Windows\System32\WWanAPI.dll - ok
09:45:28.0963 0864 [ 6CE7A33CEE0F10026C688F7B79C312DB ] C:\Windows\System32\igfxrenu.lrc
09:45:28.0963 0864 C:\Windows\System32\igfxrenu.lrc - ok
09:45:28.0979 0864 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
09:45:28.0979 0864 C:\Windows\System32\wwapi.dll - ok
09:45:28.0979 0864 [ A0628531672C0C38C64D4CA170C4A2FE ] C:\Program Files\Microsoft Games\Age of Mythology Gold Edition\aom.exe
09:45:28.0979 0864 C:\Program Files\Microsoft Games\Age of Mythology Gold Edition\aom.exe - ok
09:45:28.0979 0864 [ 8F8AB20AA863EA95A421B9D54C74F20C ] C:\Program Files\Windows Media Player\wmpnssci.dll
09:45:28.0979 0864 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
09:45:28.0979 0864 [ 20AA5135C856C44B08333365EBFA8087 ] C:\Program Files\Internet Explorer\ieproxy.dll
09:45:28.0979 0864 C:\Program Files\Internet Explorer\ieproxy.dll - ok
09:45:28.0994 0864 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] C:\Program Files\Windows Media Player\wmpnetwk.exe
09:45:28.0994 0864 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
09:45:28.0994 0864 [ 868722237AA095367491785E5C41EF0D ] C:\Program Files\Internet Explorer\IEShims.dll
09:45:28.0994 0864 C:\Program Files\Internet Explorer\IEShims.dll - ok
09:45:28.0994 0864 [ 2CC34EFF09799A50FA44299599F6589F ] C:\Windows\System32\ieui.dll
09:45:28.0994 0864 C:\Windows\System32\ieui.dll - ok
09:45:29.0010 0864 [ 74D2E69309BAB46737E6746F33AA4FA8 ] C:\Program Files\Internet Explorer\sqmapi.dll
09:45:29.0010 0864 C:\Program Files\Internet Explorer\sqmapi.dll - ok
09:45:29.0010 0864 [ 5E8E869E1342308752A37A2C90CCA79D ] C:\Windows\System32\mshtml.dll
09:45:29.0010 0864 C:\Windows\System32\mshtml.dll - ok
09:45:29.0010 0864 [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\System32\QAGENT.DLL
09:45:29.0010 0864 C:\Windows\System32\QAGENT.DLL - ok
09:45:29.0025 0864 [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\System32\wmdrmdev.dll
09:45:29.0025 0864 C:\Windows\System32\wmdrmdev.dll - ok
09:45:29.0025 0864 [ A2636716C37ABD1EE9B4C6F56B685BB2 ] C:\Windows\System32\igfxpers.exe
09:45:29.0025 0864 C:\Windows\System32\igfxpers.exe - ok
09:45:29.0025 0864 [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\System32\drmv2clt.dll
09:45:29.0025 0864 C:\Windows\System32\drmv2clt.dll - ok
09:45:29.0025 0864 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
09:45:29.0025 0864 C:\Windows\System32\mfplat.dll - ok
09:45:29.0041 0864 [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll
09:45:29.0041 0864 C:\Windows\System32\wbem\NCProv.dll - ok
09:45:29.0041 0864 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\System32\d2d1.dll
09:45:29.0041 0864 C:\Windows\System32\d2d1.dll - ok
09:45:29.0041 0864 [ AFD15F701B550037FFDDE6B18171479D ] C:\Program Files\Analog Devices\Core\smax4pnp.exe
09:45:29.0041 0864 C:\Program Files\Analog Devices\Core\smax4pnp.exe - ok
09:45:29.0041 0864 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\System32\wmp.dll
09:45:29.0041 0864 C:\Windows\System32\wmp.dll - ok
09:45:29.0057 0864 [ 1F3FF6C062B311FE410EC89F6BFAC213 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
09:45:29.0057 0864 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
09:45:29.0057 0864 [ FC33CBBB9CADCEC307DA010FE763D04C ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
09:45:29.0057 0864 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
09:45:29.0057 0864 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\System32\DWrite.dll
09:45:29.0057 0864 C:\Windows\System32\DWrite.dll - ok
09:45:29.0072 0864 [ EEA46BF5D63A96B21E24FD0EFE4CAD56 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
09:45:29.0072 0864 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
09:45:29.0072 0864 [ 7D5846BD568DA6B48949C7BFA4384E2F ] C:\Program Files\Microsoft Games\Age of Mythology Gold Edition\aomx.exe
09:45:29.0072 0864 C:\Program Files\Microsoft Games\Age of Mythology Gold Edition\aomx.exe - ok
09:45:29.0072 0864 [ 65C17199D33B35392124DC9A7CFCC49F ] C:\Program Files\Analog Devices\Core\smwdmif.dll
09:45:29.0072 0864 C:\Program Files\Analog Devices\Core\smwdmif.dll - ok
09:45:29.0088 0864 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] C:\Windows\System32\FntCache.dll
09:45:29.0088 0864 C:\Windows\System32\FntCache.dll - ok
09:45:29.0088 0864 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
09:45:29.0088 0864 C:\Windows\System32\dsound.dll - ok
09:45:29.0088 0864 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\System32\ieapfltr.dll
09:45:29.0088 0864 C:\Windows\System32\ieapfltr.dll - ok
09:45:29.0088 0864 [ 9F179DA6BF972F2B8B7F90978D02D719 ] C:\Windows\System32\jscript9.dll
09:45:29.0088 0864 C:\Windows\System32\jscript9.dll - ok
09:45:29.0103 0864 [ C28FD3B37B6F18751C99E6022A2A9782 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
09:45:29.0103 0864 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
09:45:29.0103 0864 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\System32\wmploc.DLL
09:45:29.0103 0864 C:\Windows\System32\wmploc.DLL - ok
09:45:29.0103 0864 [ AF43C4F7F3C8BC95DAD95024F96CDC4A ] C:\Program Files\QuickTime\QTTask.exe
09:45:29.0103 0864 C:\Program Files\QuickTime\QTTask.exe - ok
09:45:29.0103 0864 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\System32\msimtf.dll
09:45:29.0103 0864 C:\Windows\System32\msimtf.dll - ok
09:45:29.0119 0864 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
09:45:29.0119 0864 C:\Windows\System32\webcheck.dll - ok
09:45:29.0119 0864 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\System32\d3d10.dll
09:45:29.0119 0864 C:\Windows\System32\d3d10.dll - ok
09:45:29.0119 0864 [ 547F78746F20901C770E8653B242217C ] C:\Windows\System32\d3d10core.dll
09:45:29.0119 0864 C:\Windows\System32\d3d10core.dll - ok
09:45:29.0135 0864 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\System32\dxtrans.dll
09:45:29.0135 0864 C:\Windows\System32\dxtrans.dll - ok
09:45:29.0135 0864 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\System32\ddrawex.dll
09:45:29.0135 0864 C:\Windows\System32\ddrawex.dll - ok
09:45:29.0135 0864 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\System32\ddraw.dll
09:45:29.0135 0864 C:\Windows\System32\ddraw.dll - ok
09:45:29.0135 0864 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\System32\dciman32.dll
09:45:29.0135 0864 C:\Windows\System32\dciman32.dll - ok
09:45:29.0150 0864 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\System32\dxtmsft.dll
09:45:29.0150 0864 C:\Windows\System32\dxtmsft.dll - ok
09:45:29.0150 0864 [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\System32\SyncCenter.dll
09:45:29.0150 0864 C:\Windows\System32\SyncCenter.dll - ok
09:45:29.0150 0864 [ 444EB38A256BE60F2013488C49D2AB3F ] C:\Program Files\iTunes\iTunesHelper.exe
09:45:29.0150 0864 C:\Program Files\iTunes\iTunesHelper.exe - ok
09:45:29.0166 0864 [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\System32\imapi2.dll
09:45:29.0166 0864 C:\Windows\System32\imapi2.dll - ok
09:45:29.0166 0864 [ BBF53397690BA8931C21352D246C744C ] C:\Program Files\iTunes\iTunesHelper.dll
09:45:29.0166 0864 C:\Program Files\iTunes\iTunesHelper.dll - ok
09:45:29.0166 0864 [ 4EB0C6C3EF4D8885CF2B5D0062F31E44 ] C:\Program Files\DivX\DivX Update\DivXUpdate.exe
09:45:29.0166 0864 C:\Program Files\DivX\DivX Update\DivXUpdate.exe - ok
09:45:29.0166 0864 [ CA4674BAEB26BAEE4E54AE588C2C74FB ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
09:45:29.0166 0864 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
09:45:29.0181 0864 [ F70AF9EB44CC52C2DA23BA23A69AE977 ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
09:45:29.0181 0864 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
09:45:29.0181 0864 [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\System32\hgcpl.dll
09:45:29.0181 0864 C:\Windows\System32\hgcpl.dll - ok
09:45:29.0181 0864 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\System32\cabinet.dll
09:45:29.0181 0864 C:\Windows\System32\cabinet.dll - ok
09:45:29.0197 0864 [ EB4CDF2ECA64FBACAFBAD2B04B1B2862 ] C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
09:45:29.0197 0864 C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll - ok
09:45:29.0197 0864 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] C:\Windows\System32\ListSvc.dll
09:45:29.0197 0864 C:\Windows\System32\ListSvc.dll - ok
09:45:29.0197 0864 [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\System32\P2P.dll
09:45:29.0197 0864 C:\Windows\System32\P2P.dll - ok
09:45:29.0197 0864 [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6 ] C:\Windows\System32\IdListen.dll
09:45:29.0197 0864 C:\Windows\System32\IdListen.dll - ok
09:45:29.0213 0864 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
09:45:29.0213 0864 C:\Windows\System32\p2pcollab.dll - ok
09:45:29.0213 0864 [ 6BF7676296D5359AFC135A5397000053 ] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
09:45:29.0213 0864 C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe - ok
09:45:29.0213 0864 [ F059EB4C9C256F62F196EAA439E28F74 ] C:\Windows\System32\hgprint.dll
09:45:29.0213 0864 C:\Windows\System32\hgprint.dll - ok
09:45:29.0228 0864 [ A16852B04C0A5654B0B8DFD5E1A25718 ] C:\Program Files\MagicDisc\MagicDisc.exe
09:45:29.0228 0864 C:\Program Files\MagicDisc\MagicDisc.exe - ok
09:45:29.0228 0864 [ 82A8521DDC60710C3D3D3E7325209BEC ] C:\Windows\System32\pnrpsvc.dll
09:45:29.0228 0864 C:\Windows\System32\pnrpsvc.dll - ok
09:45:29.0228 0864 [ E970929B7FC9CE646A78B5ECABAF9136 ] C:\ProgramData\FLEXnet\Connect\11\agent.exe
09:45:29.0228 0864 C:\ProgramData\FLEXnet\Connect\11\agent.exe - ok
09:45:29.0228 0864 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\System32\msisip.dll
09:45:29.0228 0864 C:\Windows\System32\msisip.dll - ok
09:45:29.0244 0864 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] C:\Windows\System32\QAGENTRT.DLL
09:45:29.0244 0864 C:\Windows\System32\QAGENTRT.DLL - ok
09:45:29.0244 0864 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
09:45:29.0244 0864 C:\Windows\System32\fveui.dll - ok
09:45:29.0244 0864 [ E8F6851E4600CD3674422487EE240941 ] C:\Windows\System32\wshext.dll
09:45:29.0244 0864 C:\Windows\System32\wshext.dll - ok
09:45:29.0259 0864 [ 59C3DDD501E39E006DAC31BF55150D91 ] C:\Windows\System32\p2psvc.dll
09:45:29.0259 0864 C:\Windows\System32\p2psvc.dll - ok
09:45:29.0259 0864 [ 178FE38B7740F598391EB2F51AE4CCAC ] C:\Program Files\iPod\bin\iPodService.exe
09:45:29.0259 0864 C:\Program Files\iPod\bin\iPodService.exe - ok
09:45:29.0259 0864 [ 2875B386B45B8A77E2343C5E129AE50C ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
09:45:29.0259 0864 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll - ok
09:45:29.0259 0864 [ E9AF8B12CFFC04C0F4399ED8E4D3826E ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
09:45:29.0259 0864 C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
09:45:29.0275 0864 [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\System32\P2PGraph.dll
09:45:29.0275 0864 C:\Windows\System32\P2PGraph.dll - ok
09:45:29.0275 0864 [ B8A7305083996A333089119E63C29D51 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
09:45:29.0275 0864 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
09:45:29.0275 0864 [ 7732270D44BB0F8C3111848F9E1A0B53 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
09:45:29.0275 0864 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
09:45:29.0291 0864 [ A664679445BFF4FA5A39D933F1AD7F12 ] C:\Windows\System32\inetcpl.cpl
09:45:29.0291 0864 C:\Windows\System32\inetcpl.cpl - ok
09:45:29.0291 0864 [ ED6F6FBBCDEC95483B7351E23F4FCDF6 ] C:\Windows\System32\IEAdvpack.dll
09:45:29.0291 0864 C:\Windows\System32\IEAdvpack.dll - ok
09:45:29.0291 0864 [ AA3B91B70E79BCE70AD3B190789B9574 ] C:\Windows\System32\drttransport.dll
09:45:29.0291 0864 C:\Windows\System32\drttransport.dll - ok
09:45:29.0306 0864 [ EE29FCC244C8033E2F748D863DCBF378 ] C:\Windows\System32\drt.dll
09:45:29.0306 0864 C:\Windows\System32\drt.dll - ok
09:45:29.0306 0864 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:45:29.0306 0864 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
09:45:29.0306 0864 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
09:45:29.0306 0864 C:\Windows\System32\msvcr100_clr0400.dll - ok
09:45:29.0306 0864 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\System32\mscoree.dll
09:45:29.0306 0864 C:\Windows\System32\mscoree.dll - ok
09:45:29.0322 0864 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll
09:45:29.0322 0864 C:\Program Files\Google\Update\1.3.21.123\goopdateres_en.dll - ok
09:45:29.0322 0864 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
09:45:29.0322 0864 C:\Windows\System32\wuaueng.dll - ok
09:45:29.0322 0864 [ CC4B58A05130AB0F743C8A84E5B2B79C ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv02.key
09:45:29.0322 0864 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv02.key - ok
09:45:29.0337 0864 [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll
09:45:29.0337 0864 C:\Windows\System32\mspatcha.dll - ok
09:45:29.0337 0864 [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\System32\wmpps.dll
09:45:29.0337 0864 C:\Windows\System32\wmpps.dll - ok
09:45:29.0337 0864 [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\System32\wmpmde.dll
09:45:29.0337 0864 C:\Windows\System32\wmpmde.dll - ok
09:45:29.0337 0864 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\System32\WinSATAPI.dll
09:45:29.0337 0864 C:\Windows\System32\WinSATAPI.dll - ok
09:45:29.0353 0864 [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
09:45:29.0353 0864 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
09:45:29.0353 0864 [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\System32\MSMPEG2ENC.DLL
09:45:29.0353 0864 C:\Windows\System32\MSMPEG2ENC.DLL - ok
09:45:29.0353 0864 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\System32\devenum.dll
09:45:29.0353 0864 C:\Windows\System32\devenum.dll - ok
09:45:29.0353 0864 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\System32\msdmo.dll
09:45:29.0353 0864 C:\Windows\System32\msdmo.dll - ok
09:45:29.0369 0864 [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\System32\upnphost.dll
09:45:29.0369 0864 C:\Windows\System32\upnphost.dll - ok
09:45:29.0369 0864 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\System32\wbem\WmiPrvSE.exe
09:45:29.0369 0864 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
09:45:29.0369 0864 [ C6B0509AA89F656247694E2D6ABF7255 ] C:\Windows\System32\wbem\wmiprov.dll
09:45:29.0369 0864 C:\Windows\System32\wbem\wmiprov.dll - ok
09:45:29.0384 0864 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
09:45:29.0384 0864 C:\Windows\System32\wups.dll - ok
09:45:29.0384 0864 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
09:45:29.0384 0864 C:\Windows\System32\wups2.dll - ok
09:45:29.0384 0864 [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
09:45:29.0384 0864 C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
09:45:29.0384 0864 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\System32\drprov.dll
09:45:29.0384 0864 C:\Windows\System32\drprov.dll - ok
09:45:29.0400 0864 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\System32\ntlanman.dll
09:45:29.0400 0864 C:\Windows\System32\ntlanman.dll - ok
09:45:29.0400 0864 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\System32\davclnt.dll
09:45:29.0400 0864 C:\Windows\System32\davclnt.dll - ok
09:45:29.0400 0864 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\System32\davhlpr.dll
09:45:29.0400 0864 C:\Windows\System32\davhlpr.dll - ok
09:45:29.0400 0864 [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\System32\udhisapi.dll
09:45:29.0400 0864 C:\Windows\System32\udhisapi.dll - ok
09:45:29.0415 0864 [ C52E66F5FB59B4FC986771B891BE426E ] C:\Windows\System32\url.dll
09:45:29.0415 0864 C:\Windows\System32\url.dll - ok
09:45:29.0415 0864 [ 57348ED5916CF4A8D55680B31A482B35 ] C:\Windows\System32\Macromed\Flash\Flash10q.ocx
09:45:29.0415 0864 C:\Windows\System32\Macromed\Flash\Flash10q.ocx - ok
09:45:29.0415 0864 [ 0DB4461BA040B442E5C801FC940761DD ] C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.exe
09:45:29.0415 0864 C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.exe - ok
09:45:29.0431 0864 [ 75F9CE47499B40966C7F106E52DE69CD ] C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.dll
09:45:29.0431 0864 C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.dll - ok
09:45:29.0431 0864 [ 68563AC389F92EE79F1C714288BA1DCE ] C:\Windows\System32\imgutil.dll
09:45:29.0431 0864 C:\Windows\System32\imgutil.dll - ok
09:45:29.0431 0864 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\System32\WindowsCodecsExt.dll
09:45:29.0431 0864 C:\Windows\System32\WindowsCodecsExt.dll - ok
09:45:29.0447 0864 [ 347AAE83C7C7B787CED89544532AA47D ] C:\Windows\System32\PhotoMetadataHandler.dll
09:45:29.0447 0864 C:\Windows\System32\PhotoMetadataHandler.dll - ok
09:45:29.0447 0864 [ CB67C2B94302DC94BC15ED6553A5C1C7 ] C:\Windows\System32\wbem\cimwin32.dll
09:45:29.0447 0864 C:\Windows\System32\wbem\cimwin32.dll - ok
09:45:29.0447 0864 [ D0481FB85BEEDD30A0884BE327880F80 ] C:\Windows\System32\framedynos.dll
09:45:29.0447 0864 C:\Windows\System32\framedynos.dll - ok
09:45:29.0447 0864 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
09:45:29.0447 0864 C:\Windows\System32\security.dll - ok
09:45:29.0462 0864 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\System32\browcli.dll
09:45:29.0462 0864 C:\Windows\System32\browcli.dll - ok
09:45:29.0462 0864 [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\System32\schedcli.dll
09:45:29.0462 0864 C:\Windows\System32\schedcli.dll - ok
09:45:29.0462 0864 [ 43BE3B9CA431F88E049928DC45C4365C ] C:\Windows\System32\wbem\wmipcima.dll
09:45:29.0462 0864 C:\Windows\System32\wbem\wmipcima.dll - ok
09:45:29.0462 0864 [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\System32\wscinterop.dll
09:45:29.0462 0864 C:\Windows\System32\wscinterop.dll - ok
09:45:29.0478 0864 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\System32\wscapi.dll
09:45:29.0478 0864 C:\Windows\System32\wscapi.dll - ok
09:45:29.0478 0864 [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\System32\wscui.cpl
09:45:29.0478 0864 C:\Windows\System32\wscui.cpl - ok
09:45:29.0478 0864 [ 1869BD251211FB6275067372A45682D6 ] C:\Windows\System32\werconcpl.dll
09:45:29.0478 0864 C:\Windows\System32\werconcpl.dll - ok
09:45:29.0493 0864 [ AC804569BB2364FB6017370258A4091B ] C:\Windows\System32\wercplsupport.dll
09:45:29.0493 0864 C:\Windows\System32\wercplsupport.dll - ok
09:45:29.0493 0864 [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\System32\hcproviders.dll
09:45:29.0493 0864 C:\Windows\System32\hcproviders.dll - ok
09:45:29.0493 0864 [ 52799EAD792B0E9AE7FD4BA5BD18FE5C ] C:\Windows\System32\wbem\WMIADAP.exe
09:45:29.0493 0864 C:\Windows\System32\wbem\WMIADAP.exe - ok
09:45:29.0493 0864 [ 529879612A7FAE235914E3AA6A9A669C ] C:\Windows\System32\loadperf.dll
09:45:29.0493 0864 C:\Windows\System32\loadperf.dll - ok
09:45:29.0509 0864 [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\System32\SearchProtocolHost.exe
09:45:29.0509 0864 C:\Windows\System32\SearchProtocolHost.exe - ok
09:45:29.0509 0864 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
09:45:29.0509 0864 C:\Windows\System32\msshooks.dll - ok
09:45:29.0509 0864 [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\System32\SearchFilterHost.exe
09:45:29.0509 0864 C:\Windows\System32\SearchFilterHost.exe - ok
09:45:29.0509 0864 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
09:45:29.0509 0864 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
09:45:29.0525 0864 [ 987323F0247D023AD1AE52195540ECE0 ] C:\Windows\System32\mssvp.dll
09:45:29.0525 0864 C:\Windows\System32\mssvp.dll - ok
09:45:29.0525 0864 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\System32\mapi32.dll
09:45:29.0525 0864 C:\Windows\System32\mapi32.dll - ok
09:45:29.0525 0864 [ 8B57A1AD493653BB57F281FE75DD175B ] C:\Windows\System32\NaturalLanguage6.dll
09:45:29.0525 0864 C:\Windows\System32\NaturalLanguage6.dll - ok
09:45:29.0540 0864 [ 2992932C1AB1D29A1A4A9E8CB8530CBF ] C:\Windows\System32\NlsData0009.dll
09:45:29.0540 0864 C:\Windows\System32\NlsData0009.dll - ok
09:45:29.0540 0864 [ C8CB301BF896C7C556BBE963FADF5BB6 ] C:\Windows\System32\NlsLexicons0009.dll
09:45:29.0540 0864 C:\Windows\System32\NlsLexicons0009.dll - ok
09:45:29.0540 0864 ============================================================
09:45:29.0540 0864 Scan finished
09:45:29.0540 0864 ============================================================
09:45:29.0556 3540 Detected object count: 3
09:45:29.0556 3540 Actual detected object count: 3
09:46:17.0916 3540 aksfridge ( UnsignedFile.Multi.Generic ) - skipped by user
09:46:17.0916 3540 aksfridge ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:46:17.0916 3540 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
09:46:17.0916 3540 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:46:17.0916 3540 mcdbus ( UnsignedFile.Multi.Generic ) - skipped by user
09:46:17.0916 3540 mcdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:46:50.0489 2944 Deinitialize success
  • 0

#4
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
second step log:



Farbar Service Scanner Version: 06-08-2012
Ran by joe (administrator) on 18-09-2012 at 09:56:47
Running from "C:\Users\joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WGTORGZA"
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Google.com is offline
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-09-12 09:43] - [2012-08-22 10:16] - 1292144 ____A (Microsoft Corporation) A5EBB8F648000E88B7D9390B514976BF

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

#5
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
OTL txt:

OTL logfile created on: 9/18/2012 10:01:39 AM - Run 2
OTL by OldTimer - Version 3.2.63.0 Folder = C:\Users\joe\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.10 Gb Available Physical Memory | 55.26% Memory free
3.98 Gb Paging File | 2.97 Gb Available in Paging File | 74.64% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111.69 Gb Total Space | 5.56 Gb Free Space | 4.98% Space Free | Partition Type: NTFS
Drive E: | 629.55 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: LENOVO | User Name: joe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/18 09:56:16 | 000,693,235 | ---- | M] (Farbar) -- C:\Users\joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WGTORGZA\FSS.exe
PRC - [2012/09/17 19:57:46 | 000,600,576 | ---- | M] (OldTimer Tools) -- C:\Users\joe\Downloads\OTL.exe
PRC - [2011/07/28 16:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011/05/16 10:12:46 | 000,240,288 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10q_ActiveX.exe
PRC - [2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 05:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/10/22 22:29:14 | 001,196,032 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\ControlCenter4\BrCcUxSys.exe
PRC - [2010/10/22 22:24:28 | 000,331,776 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files\ControlCenter4\BrCtrlCntr.exe
PRC - [2010/03/09 01:42:02 | 000,029,984 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\Nuance\PaperPort\pptd40nt.exe
PRC - [2010/03/05 21:11:30 | 000,636,192 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
PRC - [2009/11/24 08:59:50 | 000,093,032 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
PRC - [2009/05/05 17:06:06 | 000,222,496 | ---- | M] (Acresso Corporation) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
PRC - [2009/02/23 19:43:12 | 000,576,000 | ---- | M] (MagicISO, Inc.) -- C:\Program Files\MagicDisc\MagicDisc.exe


========== Modules (No Company Name) ==========

MOD - [2011/07/28 16:09:42 | 000,096,112 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2011/07/28 16:08:12 | 001,259,376 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2009/02/27 17:38:20 | 000,139,264 | R--- | M] () -- C:\Program Files\Brother\BrUtilities\BrLogAPI.dll


========== Services (SafeList) ==========

SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)


========== Driver Services (SafeList) ==========

DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/03/28 10:17:11 | 006,000,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (netw5v32)
DRV - [2011/03/07 10:38:13 | 000,639,224 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2010/11/20 05:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 05:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 05:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 03:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 03:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 02:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 02:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 02:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/06/19 16:44:14 | 000,290,816 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tifm21.sys -- (tifm21)
DRV - [2009/02/24 18:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mcdbus.sys -- (mcdbus)
DRV - [2007/03/12 20:48:56 | 000,351,744 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aksfridge.sys -- (aksfridge)
DRV - [2006/11/27 17:44:52 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2005/11/16 17:18:00 | 001,461,376 | ---- | M] (Adaptec Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\avcuwil2.sys -- (AvcUWil2)
DRV - [2001/06/04 06:00:00 | 000,014,112 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PS2.sys -- (Ps2)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 50 D3 20 79 BC C4 CB 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {13C58C4C-3B99-47FB-B6C9-EC245A456C14}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{13C58C4C-3B99-47FB-B6C9-EC245A456C14}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\..\SearchScopes\{74B42998-2FDA-4F39-A187-19C1329BE793}: "URL" = http://us.yhs4.searc...p={searchTerms}
IE - HKCU\..\SearchScopes\{EA563F42-2083-4C88-B72D-DBC9F139E3A0}: "URL" = http://search.condui...&ctid=CT3198785
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\joe\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101710.dll (Amazon.com, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\joe\AppData\Local\RewardsArcade\498\Firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012/07/18 19:53:56 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Blekko (Enabled)
CHR - default_search_provider: search_url = http://safesearchr.l...q={searchTerms}
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\joe\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: Surf Canyon = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjagnifjocnddgeknajocbkkhlgibem\3.4.1_0\
CHR - Extension: Surf Canyon = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcjagnifjocnddgeknajocbkkhlgibem\3.4.1_1\
CHR - Extension: WhiteSmoke US = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdhffggcfjnkigeciffmipblemhphbjl\10.11.21.5_0\
CHR - Extension: WhiteSmoke US = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdhffggcfjnkigeciffmipblemhphbjl\10.11.21.5_1\
CHR - Extension: YouTube = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: RewardsArcade = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcmagccbogebndpoodhhhafmofelpffh\1.20.109_0\crossrider
CHR - Extension: RewardsArcade = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcmagccbogebndpoodhhhafmofelpffh\1.20.109_0\
CHR - Extension: Privacy SafeGuard = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\geggofhlfbcmanadhknllmlajiafopoh\1.1_0\
CHR - Extension: Privacy SafeGuard = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\geggofhlfbcmanadhknllmlajiafopoh\1.1_1\
CHR - Extension: Privacy SafeGuard = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\geggofhlfbcmanadhknllmlajiafopoh\1.1_2\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_0\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_1\
CHR - Extension: DivX Plus Web Player HTML5 \u003Cvideo\u003E = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.145_2\
CHR - Extension: Gmail = C:\Users\joe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/09/16 21:09:43 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (PlusIEEventHelper Class) - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Viewer Plus\bin\PlusIEContextMenu.dll (Zeon Corporation)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BrStsMon00] C:\Program Files\Browny02\Brother\BrStMonW.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [ControlCenter4] C:\Program Files\ControlCenter4\BrCcBoot.exe (Brother Industries, Ltd.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IndexSearch] C:\Program Files\Nuance\PaperPort\IndexSearch.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PaperPort PTD] C:\Program Files\Nuance\PaperPort\pptd40nt.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PDF5 Registry Controller] C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PDFHook] C:\Program Files\Nuance\PDF Viewer Plus\pdfPro5Hook.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [PPort12reminder] C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe File not found
O4 - HKLM..\Run: [TrackPointSrv] C:\Program Files\Lenovo\TrackPoint\tp4serv.exe (Lenovo Group Limited)
O4 - HKCU..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Acresso Corporation)
O4 - HKCU..\Run: [Voobly] C:\Program Files\Voobly\voobly.exe (Voobly)
O4 - Startup: C:\Users\joe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Open with PDF Viewer Plus - C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005/11/14 09:38:55 | 000,000,230 | R--- | M] () - E:\Autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2006/04/18 09:56:54 | 001,003,520 | R--- | M] (Microsoft Corporation) - E:\autorun.exe -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/09/18 09:28:34 | 002,212,440 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\joe\Desktop\tdsskiller.exe
[2012/09/17 19:58:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/09/17 12:37:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Security
[2012/09/17 12:37:36 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2012/09/17 12:05:10 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2012/09/17 11:36:47 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb
[2012/09/17 11:34:01 | 000,000,000 | ---D | C] -- C:\Users\joe\AppData\Roaming\Ad-Aware Antivirus
[2012/09/16 22:33:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/09/16 21:17:22 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2012/09/16 21:16:04 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/09/16 15:25:09 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/09/10 09:20:01 | 000,000,000 | ---D | C] -- C:\Users\joe\AppData\Roaming\PrettyFlow
[2012/09/10 09:20:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrettyFlow
[2012/09/10 09:19:47 | 000,000,000 | ---D | C] -- C:\Users\joe\Documents\PrettyFlow
[2012/09/10 09:19:47 | 000,000,000 | ---D | C] -- C:\ProgramData\PrettyFlow
[2012/09/10 09:19:47 | 000,000,000 | ---D | C] -- C:\Program Files\PrettyFlow
[2012/08/31 10:45:54 | 000,000,000 | ---D | C] -- C:\Users\joe\Desktop\textures
[2012/08/25 09:16:14 | 000,000,000 | ---D | C] -- C:\Users\joe\Documents\Amazon MP3
[2012/08/25 09:16:14 | 000,000,000 | ---D | C] -- C:\Users\joe\AppData\Roaming\Amazon
[2012/08/25 09:15:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amazon
[2012/08/25 09:15:43 | 000,000,000 | ---D | C] -- C:\Program Files\Amazon
[2012/08/25 08:27:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Privacy SafeGuard
[2012/08/25 08:27:07 | 000,000,000 | ---D | C] -- C:\Program Files\PrivacySafeGuard
[2012/08/24 22:40:20 | 000,000,000 | ---D | C] -- C:\Program Files\OpenApp
[2012/08/24 22:39:40 | 000,000,000 | ---D | C] -- C:\Program Files\smartdl
[2012/08/23 23:48:09 | 000,000,000 | ---D | C] -- C:\Users\joe\Documents\My Games
[2012/08/22 11:37:43 | 000,000,000 | ---D | C] -- C:\Users\joe\Desktop\wedding july
[2012/08/21 19:29:38 | 000,000,000 | ---D | C] -- C:\Users\joe\AppData\Local\Unity
[2012/08/21 19:21:31 | 000,000,000 | ---D | C] -- C:\Users\joe\Desktop\Anatomy

========== Files - Modified Within 30 Days ==========

[2012/09/18 09:55:16 | 000,629,182 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/18 09:55:16 | 000,108,366 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/18 09:53:25 | 000,010,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/18 09:53:25 | 000,010,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/18 09:48:19 | 000,000,876 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/09/18 09:48:14 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\BNLTODW.job
[2012/09/18 09:48:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/18 09:48:01 | 1603,133,440 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/18 09:29:21 | 002,212,440 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\joe\Desktop\tdsskiller.exe
[2012/09/18 09:20:00 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/09/17 12:37:42 | 000,001,240 | ---- | M] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
[2012/09/17 11:54:38 | 000,000,105 | ---- | M] () -- C:\prefs.js
[2012/09/17 08:22:38 | 000,002,198 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012/09/16 21:09:43 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/09/14 20:16:06 | 000,118,784 | RHS- | M] () -- C:\Windows\System32\KBDIULATT.dll
[2012/09/09 16:44:19 | 000,014,807 | ---- | M] () -- C:\Users\joe\Desktop\edited.jpg
[2012/09/08 14:32:48 | 000,292,666 | ---- | M] () -- C:\Users\joe\Desktop\komal's logo.psd
[2012/09/08 14:30:49 | 000,030,729 | ---- | M] () -- C:\Users\joe\Desktop\komal's logo.jpg
[2012/09/07 15:20:02 | 000,071,386 | ---- | M] () -- C:\Users\joe\Desktop\emaan.jpg
[2012/09/06 14:57:13 | 000,567,289 | ---- | M] () -- C:\Users\joe\Desktop\seth and komal.jpg
[2012/09/04 14:24:05 | 000,002,286 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/08/29 08:21:00 | 000,001,265 | ---- | M] () -- C:\Users\joe\Desktop\ADOBE PHOTOSHOP CS5 TRAINING MANUAL - Shortcut.lnk
[2012/08/26 12:26:48 | 003,804,104 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/08/26 09:08:45 | 000,002,099 | ---- | M] () -- C:\Users\Public\Desktop\Rise Of Legends.lnk
[2012/08/25 23:06:07 | 002,869,631 | ---- | M] () -- C:\Users\joe\Documents\fair book.pdf
[2012/08/25 09:15:48 | 000,002,157 | ---- | M] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2012/08/25 08:27:13 | 000,000,660 | RHS- | M] () -- C:\Users\joe\ntuser.pol
[2012/08/25 08:26:17 | 000,001,794 | ---- | M] () -- C:\Users\Public\Desktop\Vuze.lnk
[2012/08/25 08:26:17 | 000,001,794 | ---- | M] () -- C:\Users\joe\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2012/08/23 23:39:52 | 000,001,270 | ---- | M] () -- C:\Users\joe\Desktop\Age of Mythology - The Titans Expansion.lnk
[2012/08/23 23:39:52 | 000,001,263 | ---- | M] () -- C:\Users\joe\Desktop\Age of Mythology.lnk
[2012/08/22 13:22:00 | 000,209,269 | ---- | M] () -- C:\torrent.exe

========== Files Created - No Company Name ==========

[2012/09/17 12:37:42 | 000,001,240 | ---- | C] () -- C:\Users\Public\Desktop\Panda Cloud Cleaner.lnk
[2012/09/17 11:54:38 | 000,000,105 | ---- | C] () -- C:\prefs.js
[2012/09/16 22:33:33 | 000,001,915 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/09/14 20:16:06 | 000,000,314 | ---- | C] () -- C:\Windows\tasks\BNLTODW.job
[2012/09/14 20:16:04 | 000,118,784 | RHS- | C] () -- C:\Windows\System32\KBDIULATT.dll
[2012/09/09 16:44:09 | 000,014,807 | ---- | C] () -- C:\Users\joe\Desktop\edited.jpg
[2012/09/08 14:32:47 | 000,292,666 | ---- | C] () -- C:\Users\joe\Desktop\komal's logo.psd
[2012/09/08 14:24:11 | 000,030,729 | ---- | C] () -- C:\Users\joe\Desktop\komal's logo.jpg
[2012/09/07 15:20:00 | 000,071,386 | ---- | C] () -- C:\Users\joe\Desktop\emaan.jpg
[2012/09/06 14:57:04 | 000,567,289 | ---- | C] () -- C:\Users\joe\Desktop\seth and komal.jpg
[2012/08/26 09:08:45 | 000,002,099 | ---- | C] () -- C:\Users\Public\Desktop\Rise Of Legends.lnk
[2012/08/25 23:06:07 | 002,869,631 | ---- | C] () -- C:\Users\joe\Documents\fair book.pdf
[2012/08/25 09:15:48 | 000,002,157 | ---- | C] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2012/08/25 08:27:13 | 000,000,660 | RHS- | C] () -- C:\Users\joe\ntuser.pol
[2012/08/23 23:39:52 | 000,001,270 | ---- | C] () -- C:\Users\joe\Desktop\Age of Mythology - The Titans Expansion.lnk
[2012/08/23 23:39:52 | 000,001,263 | ---- | C] () -- C:\Users\joe\Desktop\Age of Mythology.lnk
[2012/08/22 13:22:00 | 000,209,269 | ---- | C] () -- C:\torrent.exe
[2012/01/27 19:27:59 | 000,017,680 | ---- | C] () -- C:\Windows\System32\SpoonUninstall-dBpoweramp Music Converter.dat
[2012/01/27 19:27:57 | 006,908,648 | ---- | C] () -- C:\Windows\System32\SpoonUninstall.exe
[2011/04/25 12:34:12 | 000,003,584 | ---- | C] () -- C:\Users\joe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/21 15:10:14 | 000,007,605 | ---- | C] () -- C:\Users\joe\AppData\Local\Resmon.ResmonCfg
[2011/03/29 19:57:08 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/03/29 19:54:50 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/03/28 10:32:07 | 000,001,746 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011/03/04 23:31:48 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/02/13 21:21:47 | 001,396,715 | ---- | C] () -- C:\Users\joe\AppData\Roaming\UserTile.png
[2011/02/08 14:45:26 | 000,000,248 | ---- | C] () -- C:\Windows\Brpfx04a.ini
[2011/02/08 14:45:26 | 000,000,093 | ---- | C] () -- C:\Windows\brpcfx.ini
[2011/02/08 14:45:04 | 000,000,336 | ---- | C] () -- C:\Windows\BRCALIB.INI
[2011/02/08 14:43:36 | 000,000,066 | ---- | C] () -- C:\Windows\Brfaxrx.ini
[2011/02/08 14:43:36 | 000,000,000 | ---- | C] () -- C:\Windows\brdfxspd.dat
[2011/02/08 14:43:15 | 000,045,056 | ---- | C] () -- C:\Windows\System32\BRTCPCON.DLL
[2011/02/08 14:43:10 | 000,000,114 | ---- | C] () -- C:\Windows\System32\BRLMW03A.INI
[2011/02/08 14:43:08 | 000,000,050 | ---- | C] () -- C:\Windows\System32\BRADC10A.DAT
[2011/02/07 21:03:37 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat
[2009/12/07 15:11:30 | 000,000,362 | RHS- | C] () -- C:\ProgramData\ntuser.pol

========== ZeroAccess Check ==========

[2009/07/13 21:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

========== LOP Check ==========

[2012/09/17 11:34:08 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Ad-Aware Antivirus
[2012/08/25 09:16:14 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Amazon
[2012/09/14 08:58:34 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Azureus
[2012/07/23 20:06:46 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Canon
[2011/03/24 19:49:05 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/09/10 09:12:08 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Chief Architect X2
[2011/02/22 17:09:59 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\ControlCenter4
[2011/03/06 19:16:42 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\DAEMON Tools Lite
[2011/03/06 18:44:23 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\DAEMON Tools Pro
[2011/03/26 17:08:36 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\DeviceDoctorSoftware
[2011/04/09 12:43:35 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\fltk.org
[2011/03/25 22:43:27 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\GameRanger
[2011/02/08 14:38:52 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Nuance
[2012/09/10 09:26:21 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\PrettyFlow
[2011/09/14 22:10:29 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\redsn0w
[2011/03/07 12:56:41 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/03/25 13:12:59 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\uTorrent
[2012/09/18 09:48:14 | 000,000,314 | ---- | M] () -- C:\Windows\Tasks\BNLTODW.job
[2012/08/19 16:44:08 | 000,032,610 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2012/08/22 13:22:00 | 000,209,269 | ---- | M] () -- C:\torrent.exe

< MD5 for: EXPLORER.EXE >
[2011/02/25 22:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009/07/13 18:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011/02/25 22:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009/10/30 22:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011/02/25 22:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010/11/20 05:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/24 22:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009/08/02 22:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/02 22:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/30 23:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

< MD5 for: SERVICES.EXE >
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\erdnt\cache\services.exe
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/13 18:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SVCHOST.EXE >
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/13 18:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/20 05:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010/11/20 05:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/20 05:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009/07/13 18:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009/10/27 23:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009/10/27 22:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010/11/20 05:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010/11/20 05:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/20 05:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009/07/13 18:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< %systemroot%\*. /mp /s >

< %systemdrive%\$Recycle.Bin|@;true;true;true >

========== Alternate Data Streams ==========

@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:1E093A07

< End of report >
  • 0

#6
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Extra txt :




OTL Extras logfile created on: 9/17/2012 7:59:59 PM - Run 1
OTL by OldTimer - Version 3.2.63.0 Folder = C:\Users\joe\Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.08 Gb Available Physical Memory | 54.23% Memory free
3.98 Gb Paging File | 2.79 Gb Available in Paging File | 70.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111.69 Gb Total Space | 5.58 Gb Free Space | 5.00% Space Free | Partition Type: NTFS
Drive E: | 629.55 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: LENOVO | User Name: joe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03D417FD-1571-4ACE-816F-48D134E040FE}" = lport=3390 | protocol=6 | dir=in | app=system |
"{0470E21D-E462-409A-A90C-E37159DE1C89}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{06C8D07C-7086-4915-BE8E-F78AB9632BFD}" = rport=138 | protocol=17 | dir=out | app=system |
"{0B5D2750-76CF-4A82-90F4-53C6563684AF}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0D2D1BE2-D371-4FB3-93E5-F644B62C2898}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{192D6EAF-B781-4A15-9036-7EE2797F9267}" = rport=16000 | protocol=17 | dir=in | app=c:\program files\14 degrees east\fallout tactics\fallouttacticslauncher.exe |
"{1C8CBB22-AAE1-45CA-AEF2-AD2D39D492A5}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{248F9CFA-1EB7-43D6-B4B6-4F16A0B9174D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{370014DB-D4AA-48BB-BCA1-7A9CD02CFA67}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{378CB740-A4BC-46C8-BB66-961A710FBA3B}" = lport=10244 | protocol=6 | dir=in | app=system |
"{445B0F8B-C2B7-4367-9BFC-53222B21B49C}" = lport=2869 | protocol=6 | dir=in | app=system |
"{473812CB-E4F5-444A-9DE3-5FF2DBE3A576}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{483A2749-546C-49C4-B871-03C7BB5AB677}" = lport=2869 | protocol=6 | dir=in | app=system |
"{5123A663-8E41-4095-B648-F197C0EC69FD}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{53407AF2-5001-44E2-A02D-4E1E472B7841}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{576E72E9-20BF-4F19-A645-AA223C89843C}" = lport=139 | protocol=6 | dir=in | app=system |
"{5C12169F-5EA8-46C9-9ACD-9BBF0786213B}" = rport=137 | protocol=17 | dir=out | app=system |
"{5F32D380-47F0-4CF2-844B-C294D8F0DCBC}" = lport=3390 | protocol=6 | dir=in | app=system |
"{6015F45C-B8D7-40F2-BE3A-9FED2B5ACEAD}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{62B8FB77-1045-42F3-A065-B8DC80EB7089}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6847B998-542D-41DB-94F0-D87FD9AB69FE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6BF101BB-74E9-4601-9BA5-3C23916D492D}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{753D0BAA-2949-4FE8-B318-7A502BAEC782}" = rport=16000 | protocol=17 | dir=out | name=gr |
"{78FF559E-B44E-4746-9907-7F42FA148F1E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{7A519C87-F35E-48E2-AAB7-187D918F5A45}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{80407917-7820-4620-9BC0-D07211F12072}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{80C36537-9E30-40A0-9ABC-21AF1CB6DDCA}" = lport=1900 | protocol=17 | dir=in | name=udp 1900 |
"{8458978B-05CE-48AB-9529-F3D080B0EB65}" = lport=137 | protocol=17 | dir=in | app=system |
"{858874F3-772C-41B6-BB42-3182150F3D83}" = lport=554 | protocol=6 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{864FB164-804D-4035-9CF0-9A3886C1EFAD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{8D9DB710-27D7-40D5-8332-7F8D38A10CF0}" = rport=445 | protocol=6 | dir=out | app=system |
"{96499CDB-0FC1-4703-9608-D5104F4DD4CB}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9717C677-BFF1-4E06-9BBC-47FAEB11CBCC}" = lport=10244 | protocol=6 | dir=in | app=system |
"{9F108981-538B-423A-9820-90C2B4C4FC20}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A7E5A8B9-F2E7-469D-AADF-6E2F3E87CEFF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A895B6F7-1008-4580-B226-C7B85657C395}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{AB1B5736-B72A-4C1F-9951-2B05991DFF57}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{AE414D26-5FCB-4CF5-B3CD-1EC1C98B1094}" = rport=139 | protocol=6 | dir=out | app=system |
"{AFD28B48-73D3-4061-A50D-BE63F4F3E2CD}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{B00FD18B-E9CE-4E6F-B5CF-8EEE029DD379}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B0994CB8-DA40-4E05-A3AF-C84BC3F07F0E}" = lport=7777 | protocol=17 | dir=in | app=%systemroot%\ehome\ehshell.exe |
"{B3F291A5-5B5F-4DE4-B7F2-72626C408F42}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B6380A68-E3F6-4753-8F35-7795990A5A2A}" = lport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B6B3AEF9-9CFC-402C-A13E-ECE73EEEB847}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BBB63F7B-E3B6-4FF1-ADDC-748D0CA5C0D6}" = lport=16000 | protocol=17 | dir=in | name=game rangers port |
"{BD5FA18C-46F6-4023-9E6A-32A293F1A3C6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C610AB1A-8C18-453E-97F6-173DC3CE5BC6}" = lport=2869 | protocol=6 | dir=in | name=tcp 2869 |
"{CA241AD4-6CBD-4061-9219-FA5F222FF6E9}" = lport=138 | protocol=17 | dir=in | app=system |
"{CAA39A39-A536-4908-A23D-B857AC84DC4C}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{CF5919F2-C811-4444-A622-79AB0941E258}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D7762B71-F3B5-4D5E-A106-8CC0AE6145E3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{DAFD003E-F3DB-454F-9F68-1CB1B20DC6C8}" = lport=445 | protocol=6 | dir=in | app=system |
"{DE1EC93D-D95B-415C-8DBB-846B9CB280FA}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E6F19209-FB47-42AE-A65C-ED81C98246A3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E940D9C5-8795-40E2-84F8-7E75774398DC}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EBD19C79-2A4F-4C8C-A9A2-606FCD9BC4F6}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F5E03B61-E9C8-4C0E-8B67-9732FFCE3488}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F6DD9775-8D07-472C-B5C9-CFBEBD232309}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{FD8D29D1-463A-4CAD-9967-CCD3FDEF9BB3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FE4EFB94-B905-45DF-954C-FFCA6A6677E2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FEFEA6AE-7178-4A88-B2FD-C1304985C4E1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07634A5E-451C-4311-872E-BB796ACA3ED2}" = protocol=17 | dir=in | app=c:\program files\microsoft security client\msseces.exe |
"{096E8F26-0832-4505-ACD8-3437969A704A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0979FB06-628A-4224-ABC3-2009713DF770}" = dir=out | app=c:\users\joe\appdata\local\temp\_teef9e.exe |
"{0A57A126-AD5B-40B7-90E5-948B93D1E9CD}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{0EA0C0EA-73EA-488B-AF94-C37840DEEE68}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{121B2EBB-8B04-47FA-AA7A-0184B36FC7A3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{22AF1113-923B-475F-97EC-8E8003186A66}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{298B16CF-6DDF-4F58-8607-E809D2B09A93}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{2DC6712D-AAC5-4ED4-A5FA-016AD14D9A0D}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{3023ED23-2E7E-47AE-931E-C9D787A9A0FC}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{39C9C202-BA17-44E8-B0C4-78A2AB1BA5A4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3F5A69A5-923A-421C-AD22-775A6ABCCAEA}" = protocol=6 | dir=out | svc=mcx2svc | app=%systemroot%\system32\svchost.exe |
"{3FB2AF3B-D7A0-465F-9CA0-3B0CDB1ECF27}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{45B7FD95-49EB-4A6F-9882-8AD00D1E18F1}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{471264ED-E072-41FA-B8CD-C011ED00706A}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"{49054AD0-5977-4D49-AE20-67963A365C59}" = dir=in | app=pfportchecker.exe |
"{492211C9-766B-4B92-8B18-B6694E75C942}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{499C3543-1D44-41E3-AF65-12FE7BC48DC3}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcrmgr.exe |
"{4D7D0235-C5F2-420E-8876-6426E0C4F8AC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4F1103B4-30DB-4CF7-8094-2A353D9AC653}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{586E9DAF-FB92-47DC-9AC4-64993392DF51}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5C737DFF-515B-41E7-90F4-7034DFDBB82D}" = protocol=6 | dir=out | app=system |
"{6B31FAE5-7235-4F4D-A47B-719B49F9EEEC}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{6DD336AE-CAA3-4D2A-AB28-2BB4658E8C7E}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6DF373EC-A11F-4AAA-91FB-17032C2849A6}" = protocol=58 | dir=in | [email protected],-28545 |
"{78AC0DC1-E957-4C73-BCC9-A395CC986F43}" = dir=in | app=c:\users\joe\appdata\local\temp\_teef9e.exe |
"{7B7E5FEF-3D9E-4FF8-B7D3-117D60B63DD7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{7D1CA3C7-4C65-49E3-91D4-A489FB669F8A}" = protocol=6 | dir=out | app=%systemroot%\ehome\mcx2prov.exe |
"{808A010B-9A46-40CB-B7C8-028A67E3E986}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{828DFBB0-DC19-4E8F-8768-ABA997D77BEB}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{8B1E7183-B437-4EAF-AB73-D67F3DDED3C1}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{8F99DF17-E92E-41F1-A486-5A2154973C9C}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{8FE91DAD-3F46-4632-AF5A-CAACE73EE74B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{952CBECB-F3F7-4ED4-B29F-8E7299F09118}" = protocol=6 | dir=in | app=c:\program files\microsoft security client\msseces.exe |
"{991245DF-71A9-4646-BDBC-61C5C926AB53}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{9943E4BE-8DEA-4EA6-BE46-759A87F3B515}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{99639336-64DC-409B-8A4F-1B7F2FD38F69}" = protocol=1 | dir=out | [email protected],-28544 |
"{9DEE8069-2DC4-40C2-BDE0-569DA1CF853B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A6E963AF-ED4E-4608-B685-00074AAC62DA}" = protocol=17 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"{AC5C57C1-5622-4B07-AB8A-202B20FAA0E4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BD20FD05-0980-45A9-B979-FAB7B9A654AE}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{BDF33823-0557-407A-B146-BA3F154F4488}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BEB4F076-1BB7-416B-BB48-998DF824E44A}" = protocol=6 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C0826CD4-F958-4902-893F-73B5501E459C}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{C0E127E9-AD6B-4F7F-90AD-CA2F588776A1}" = dir=in | app=pfportchecker.exe |
"{C23B23FA-6FB5-4BB2-838F-47E8F76A0BC5}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{C43C8E4A-34FF-4EE5-984B-2C1E0DAD60E7}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{C9EBF3FE-586A-4053-AA50-5CEB2A0ACB69}" = protocol=1 | dir=in | [email protected],-28543 |
"{DB44FEAA-6298-4BD8-85B1-3D3D24C4B380}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DEB28BE4-AADB-4ED1-8E5A-572DEE114DCE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E2B05226-B4E3-4C27-884C-94693627391D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{E7DAEE69-E51D-4582-AD1B-99DBD15E2B50}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{EC7B506B-A7AB-4011-83B2-333EC01E70A4}" = protocol=17 | dir=in | app=c:\program files\7-zip\7zfm.exe |
"{F06707EF-DADD-4CDF-A4E5-037C51AB3397}" = protocol=58 | dir=out | [email protected],-28546 |
"{F146BE03-F99D-4BBE-A983-874EF6C36487}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{F21DEA30-B5FC-408C-AEBC-230FC4011C6D}" = protocol=6 | dir=in | app=c:\program files\7-zip\7zfm.exe |
"{F2B216A1-6DE9-4797-9AFF-466B1A9BACFE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F656D0B9-64B5-4AF1-A159-40391F277BF0}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F700FA17-185C-4FAA-A213-6C37F88339FA}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{FAE854D7-37FA-4942-A4DA-9EBD94B90822}" = protocol=17 | dir=in | app=c:\program files\microsoft games\ants\ants.exe |
"{FB541C23-A694-43FB-B239-3E3A588AF358}" = protocol=6 | dir=out | app=%systemroot%\ehome\ehshell.exe |
"TCP Query User{18F3932F-53CA-492F-AAE8-983D43A2CD34}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"TCP Query User{2E47D075-5644-4B3D-B52F-C3012A8D4063}C:\program files\voobly\voobly.exe" = protocol=6 | dir=in | app=c:\program files\voobly\voobly.exe |
"TCP Query User{3ECEF6FF-6BEB-4DE3-BFD5-240276BBBE99}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.exe" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.exe |
"TCP Query User{63768CD6-5969-491E-9CBE-3723CD20BEF0}C:\program files\voobly\gamedata\ants\ants.exe" = protocol=6 | dir=in | app=c:\program files\voobly\gamedata\ants\ants.exe |
"TCP Query User{6658CE67-4217-4601-8185-82CADD828C91}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{792DF947-10C8-40DA-A52F-D6CFD6835CAF}C:\program files\black isle\icewind dale ii\iwd2.exe" = protocol=6 | dir=in | app=c:\program files\black isle\icewind dale ii\iwd2.exe |
"TCP Query User{7C3CBDEC-A8B8-4161-884A-BF709589EE8A}C:\program files\pfportchecker\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files\pfportchecker\pfportchecker.exe |
"TCP Query User{83F3D2A2-E3DB-42FE-B638-85E2798177E0}C:\program files\team17\worms world party\wwp.exe" = protocol=6 | dir=in | app=c:\program files\team17\worms world party\wwp.exe |
"TCP Query User{A43BA827-F9A6-4AAF-A1B9-A4D464578060}C:\windows\system32\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\system32\dplaysvr.exe |
"TCP Query User{AA5176A1-3269-4E47-B815-685883C842DF}C:\program files\gamespy arcade\aphex.exe" = protocol=6 | dir=in | app=c:\program files\gamespy arcade\aphex.exe |
"TCP Query User{ECD0CD90-AFEB-4F84-87A1-B543C31041D3}C:\users\joe\appdata\roaming\gameranger\gameranger\gameranger.exe" = protocol=6 | dir=in | app=c:\users\joe\appdata\roaming\gameranger\gameranger\gameranger.exe |
"TCP Query User{F11E8CD2-31A2-4912-AED0-61F956582832}C:\program files\14 degrees east\fallout tactics\bos.exe" = protocol=6 | dir=in | app=c:\program files\14 degrees east\fallout tactics\bos.exe |
"UDP Query User{2052672D-DA6E-48AB-99A0-0F92A7041E3C}C:\program files\voobly\gamedata\ants\ants.exe" = protocol=17 | dir=in | app=c:\program files\voobly\gamedata\ants\ants.exe |
"UDP Query User{637E0AF2-20B0-4E74-A9F6-DC05129DD0F4}C:\program files\voobly\voobly.exe" = protocol=17 | dir=in | app=c:\program files\voobly\voobly.exe |
"UDP Query User{6AF3DAE5-A9A8-4D64-8E54-F34F0C09AD5A}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{6F527B7B-373D-4CEB-B41E-C8FB13A77F93}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.icd |
"UDP Query User{7BE66DFC-A86D-43F8-9F83-EA47156317C1}C:\program files\team17\worms world party\wwp.exe" = protocol=17 | dir=in | app=c:\program files\team17\worms world party\wwp.exe |
"UDP Query User{9F40F6B6-2A5F-4DD6-A8EC-217CD1F26EAF}C:\program files\gamespy arcade\aphex.exe" = protocol=17 | dir=in | app=c:\program files\gamespy arcade\aphex.exe |
"UDP Query User{C9C1D127-A5A5-48B7-81A0-42D4FF7BFCDB}C:\program files\14 degrees east\fallout tactics\bos.exe" = protocol=17 | dir=in | app=c:\program files\14 degrees east\fallout tactics\bos.exe |
"UDP Query User{CC69C499-C608-486A-B225-31B1E4219D62}C:\windows\system32\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\system32\dplaysvr.exe |
"UDP Query User{D71EFD34-F199-4390-ADB8-84A349744F84}C:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.exe" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires ii\age2_x1\age2_x1.exe |
"UDP Query User{D8C28067-4E7E-4EC8-BCDD-0D780CD24B5A}C:\program files\black isle\icewind dale ii\iwd2.exe" = protocol=17 | dir=in | app=c:\program files\black isle\icewind dale ii\iwd2.exe |
"UDP Query User{F4123038-066D-4AF3-90BA-7E7F68D02F90}C:\program files\pfportchecker\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files\pfportchecker\pfportchecker.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}" = Scansoft PDF Professional
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}" = Rosetta Stone Version 3
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216024FF}" = Java™ 6 Update 24
"{28656860-4728-433C-8AD4-D1A930437BC8}" = Nuance PDF Viewer Plus
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{588C135F-0B15-4A02-8F2D-04697BE2904E}" = Icewind Dale II
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}" = Nuance PaperPort 12
"{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}" = PaperPort Image Printer
"{710BF966-43C8-4216-A8EC-BC4E169FF7C1}" = MobileMe Control Panel
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1" = Panda Cloud Cleaner
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{979742CC-2CBB-49D8-9BEE-C2F7875F5393}" = Brother MFL-Pro Suite MFC-9560CDW
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A29549FD-65F3-440C-A552-6B8114CF319D}" = Skype Toolbars
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.4
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{B54B8CD3-E12B-4C29-AF5A-2101E2FF5F53}" = TIPCI
"{B618B8E1-FB71-4237-8361-C3EA3EF15EF7}" = SavetheChildren Reminder by We-Care.com v4.1.18.4
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{B820C985-D9F1-45B5-A7F5-0C5863CBEA04}_is1" = Privacy SafeGuard version 1.1
"{B96D2269-568B-4CBF-9332-12FAE8B158F7}" = Medieval CUE Splitter
"{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D575FBAA-D6D6-4221-A2C4-67541DB7AB5E}_is1" = Device Doctor
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"8461-7759-5462-8226" = Vuze
"Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Age of Empires 2.0" = Microsoft Age of Empires II
"Age of Empires II: The Conquerors Expansion 1.0" = Microsoft Age of Empires II: The Conquerors Expansion
"Age of Mythology Gold Edition 1.00" = Age of Mythology Gold Edition 1.00
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.17
"Canon MOV Decoder" = Canon MOV Decoder
"Canon MOV Encoder" = Canon MOV Encoder
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_10140588" = ThinkPad Modem
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"dBpoweramp Music Converter" = dBpoweramp Music Converter
"DiskAid_is1" = DiskAid 4.11
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"DivX Setup" = DivX Setup
"ENTERPRISE" = Microsoft Office Enterprise 2007
"EOS Utility" = Canon Utilities EOS Utility
"FLAC" = FLAC 1.2.1b (remove only)
"Google Chrome" = Google Chrome
"HDMI" = Intel® Graphics Media Accelerator Driver
"InstallShield_{B54B8CD3-E12B-4C29-AF5A-2101E2FF5F53}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"InstallShield_{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends
"Magic APE to MP3 Converter_is1" = Magic APE to MP3 Converter 3.72
"MagicDisc 2.7.106" = MagicDisc 2.7.106
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Monkey's Audio_is1" = Monkey's Audio
"MyCamera Download Plugin" = CANON iMAGE GATEWAY MyCamera Download Plugin
"OnlineBible" = Online Bible 12.08.02
"PFPortChecker" = PFPortChecker 1.0.39
"Picture Style Editor" = Canon Utilities Picture Style Editor
"Power Management Driver" = ThinkPad Power Management Driver
"PrettyFlow_is1" = Pretty Flow 2.4.0.127
"Punch! Home Design - AS4000" = Punch! Home Design - AS4000
"RTPatch_is1" = RTPatch Update
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TrackPoint" = ThinkPad TrackPoint Driver
"vfd-ob" = VideoFileDownload
"VLC media player" = VLC media player 0.9.9
"Voobly_is1" = Voobly
"ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GameRanger" = GameRanger
"OnlineBible" = Online Bible 12.08.02
"UnityWebPlayer" = Unity Web Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9/17/2012 11:03:33 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:03:33.045]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:04:08 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:04:08.270]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:04:28 PM | Computer Name = lenovo | Source = Application Error | ID = 1000
Description = Faulting application name: AppleMobileDeviceService.exe, version:
17.88.0.8, time stamp: 0x4e66ceff Faulting module name: KERNELBASE.dll, version:
6.1.7601.17651, time stamp: 0x4e2111c0 Exception code: 0xc06d007e Fault offset: 0x0000d36f
Faulting
process id: 0x560 Faulting application start time: 0x01cd954a510e76d5 Faulting application
path: C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Faulting
module path: C:\Windows\system32\KERNELBASE.dll Report Id: 8ec48736-013d-11e2-8636-001636e16e9f

Error - 9/17/2012 11:04:43 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:04:43.510]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:05:18 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:05:18.674]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:05:28 PM | Computer Name = lenovo | Source = Application Error | ID = 1000
Description = Faulting application name: AppleMobileDeviceService.exe, version:
17.88.0.8, time stamp: 0x4e66ceff Faulting module name: KERNELBASE.dll, version:
6.1.7601.17651, time stamp: 0x4e2111c0 Exception code: 0xc06d007e Fault offset: 0x0000d36f
Faulting
process id: 0x15f8 Faulting application start time: 0x01cd954a75108885 Faulting application
path: C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Faulting
module path: C:\Windows\system32\KERNELBASE.dll Report Id: b2cb5ba7-013d-11e2-8636-001636e16e9f

Error - 9/17/2012 11:05:53 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:05:53.890]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:06:29 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:06:29.077]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

Error - 9/17/2012 11:06:29 PM | Computer Name = lenovo | Source = Application Error | ID = 1000
Description = Faulting application name: AppleMobileDeviceService.exe, version:
17.88.0.8, time stamp: 0x4e66ceff Faulting module name: KERNELBASE.dll, version:
6.1.7601.17651, time stamp: 0x4e2111c0 Exception code: 0xc06d007e Fault offset: 0x0000d36f
Faulting
process id: 0x15ac Faulting application start time: 0x01cd954a9921a494 Faulting application
path: C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
Faulting
module path: C:\Windows\system32\KERNELBASE.dll Report Id: d6d55395-013d-11e2-8636-001636e16e9f

Error - 9/17/2012 11:07:04 PM | Computer Name = lenovo | Source = Brother BrLog | ID = 1001
Description = STI BrtSTI: [2012/09/17 20:07:04.268]: [00000780]: GetDeviceIpAddress:
GetAddressByName [BRW00225851BA0C] Error

[ Media Center Events ]
Error - 8/3/2012 3:06:37 PM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 12:06:11 PM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/4/2012 12:16:16 AM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:16:02 PM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/5/2012 1:18:04 PM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 10:17:48 AM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/6/2012 12:59:36 AM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:59:22 PM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/6/2012 12:52:02 PM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:51:45 AM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/7/2012 11:06:33 AM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 8:06:14 AM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/7/2012 12:46:16 PM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:45:53 AM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

Error - 8/8/2012 12:33:52 AM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:33:51 PM - Error connecting to the internet. 9:33:52 PM - Unable
to contact server..

Error - 8/8/2012 12:34:36 AM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 9:34:21 PM - Error connecting to the internet. 9:34:21 PM - Unable
to contact server..

Error - 8/8/2012 1:06:43 PM | Computer Name = lenovo | Source = MCUpdate | ID = 0
Description = 10:06:29 AM - Failed to retrieve EpgListings (Error: HeadendId 29329603
is invalid.)

[ OSession Events ]
Error - 4/28/2011 7:50:15 PM | Computer Name = lenovo | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7803
seconds with 1200 seconds of active time. This session ended with a crash.

Error - 4/23/2012 4:25:20 PM | Computer Name = lenovo | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 2, Application Name: Microsoft Office Access, Application Version:
12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1434
seconds with 840 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 9/17/2012 11:00:27 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 15 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:01:27 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 16 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:02:27 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 17 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:03:28 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 18 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:04:28 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 19 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:05:29 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 20 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:06:29 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 21 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:07:30 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 22 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:08:31 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 23 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.

Error - 9/17/2012 11:09:32 PM | Computer Name = lenovo | Source = Service Control Manager | ID = 7031
Description = The Apple Mobile Device service terminated unexpectedly. It has done
this 24 time(s). The following corrective action will be taken in 60000 milliseconds:
Restart the service.


< End of report >
  • 0

#7
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi BeaverSniffer,

Step 1

Download and Install Combofix
Download ComboFix from one of the following locations:

Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop *

IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

  • Double click on ComboFix.exe &amp; follow the prompts.
  • Accept the disclaimer and allow to update if it asks

    Posted Image

    Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.


Please make sure you include the combo fix log in your next reply

Step 2

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Step 3

Please don't forget to include these items in your reply:

  • Combofix log
  • MiniToolBox log
It would be helpful if you could post each log in separate post using "Add Reply" button
  • 0

#8
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
combo fix log:


ComboFix 12-09-18.06 - joe 09/18/2012 14:16:09.3.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2038.1286 [GMT -7:00]
Running from: c:\users\joe\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-08-18 to 2012-09-18 )))))))))))))))))))))))))))))))
.
.
2012-09-18 21:22 . 2012-09-18 21:22 -------- d-----w- c:\users\Mcx1-LENOVO\AppData\Local\temp
2012-09-18 21:22 . 2012-09-18 21:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-18 02:58 . 2012-09-18 02:58 -------- d-----w- C:\_OTL
2012-09-17 19:37 . 2012-09-17 19:37 -------- d-----w- c:\program files\Panda Security
2012-09-17 19:05 . 2012-09-17 19:05 -------- d-----w- c:\program files\NortonInstaller
2012-09-17 18:54 . 2012-09-17 18:54 105 ----a-w- C:\prefs.js
2012-09-17 18:36 . 2012-09-17 19:50 -------- d-----w- c:\program files\adawaretb
2012-09-17 18:34 . 2012-09-17 18:34 -------- d-----w- c:\users\joe\AppData\Roaming\Ad-Aware Antivirus
2012-09-17 05:33 . 2012-09-17 05:33 -------- d-----w- c:\program files\Microsoft Security Client
2012-09-15 03:16 . 2012-09-15 03:16 118784 --sha-r- c:\windows\system32\KBDIULATT.dll
2012-09-12 16:43 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 16:43 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 16:43 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 16:43 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 16:43 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-12 16:42 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-10 16:20 . 2012-09-10 16:26 -------- d-----w- c:\users\joe\AppData\Roaming\PrettyFlow
2012-09-10 16:19 . 2012-09-10 16:20 -------- d-----w- c:\programdata\PrettyFlow
2012-09-10 16:19 . 2012-09-10 16:19 -------- d-----w- c:\program files\PrettyFlow
2012-08-25 16:16 . 2012-08-25 16:16 -------- d-----w- c:\users\joe\AppData\Roaming\Amazon
2012-08-25 16:15 . 2012-08-25 16:15 -------- d-----w- c:\program files\Amazon
2012-08-25 15:27 . 2012-09-16 22:50 -------- d-----w- c:\program files\PrivacySafeGuard
2012-08-25 05:40 . 2012-08-25 05:41 -------- d-----w- c:\program files\OpenApp
2012-08-25 05:39 . 2012-08-25 14:51 -------- d-----w- c:\program files\smartdl
2012-08-22 20:22 . 2012-08-22 20:22 209269 ----a-w- C:\torrent.exe
2012-08-22 02:29 . 2012-08-22 02:29 -------- d-----w- c:\users\joe\AppData\Local\Unity
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-08 17:06 . 2010-01-31 07:52 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore-2\Microsoft.MediaCenter.Sports.UI.dll
2012-08-08 17:05 . 2009-12-07 22:15 4283672 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-08-08 17:02 . 2010-05-22 01:57 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-07-31 16:01 . 2009-12-07 22:15 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-07-31 15:49 . 2010-02-08 21:15 4283672 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-07-31 15:49 . 2010-06-03 04:08 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-07-25 04:25 . 2009-12-25 04:12 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-07-18 17:47 . 2012-08-15 18:43 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-06 19:11 . 2009-12-07 22:15 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-07-04 21:14 . 2012-08-15 18:42 102912 ----a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-15 18:42 41984 ----a-w- c:\windows\system32\browcli.dll
2012-06-29 00:16 . 2012-08-15 21:41 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-06-29 00:09 . 2012-08-15 21:41 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-06-29 00:08 . 2012-08-15 21:41 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 00:04 . 2012-08-15 21:41 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-06-29 00:00 . 2012-08-15 21:41 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-06-25 23:04 . 2012-06-25 23:04 1394248 ----a-w- c:\windows\system32\msxml4.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-06 222496]
"Voobly"="c:\program files\Voobly\voobly.exe" [2011-04-03 131072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-27 30040]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"IndexSearch"="c:\program files\Nuance\PaperPort\IndexSearch.exe" [2010-03-09 46368]
"PaperPort PTD"="c:\program files\Nuance\PaperPort\pptd40nt.exe" [2010-03-09 29984]
"PPort12reminder"="c:\program files\Nuance\PaperPort\Ereg\Ereg.exe" [2010-02-09 328992]
"PDFHook"="c:\program files\Nuance\PDF Viewer Plus\pdfpro5hook.exe" [2010-03-06 636192]
"PDF5 Registry Controller"="c:\program files\Nuance\PDF Viewer Plus\RegistryController.exe" [2010-03-06 62752]
"ControlCenter4"="c:\program files\ControlCenter4\BrCcBoot.exe" [2010-10-23 139264]
"BrStsMon00"="c:\program files\Browny02\Brother\BrStMonW.exe" [2010-06-10 2621440]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-09-18 1565992]
"KBD"="c:\hp\KBD\KBD.EXE" [2001-07-06 61440]
"TrackPointSrv"="c:\program files\Lenovo\TrackPoint\tp4serv.exe" [2009-11-24 93032]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-08-07 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-08-07 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-08-07 150552]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2009-05-19 1314816]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-11-02 59240]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-02 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-12-08 421736]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-27 931200]
.
c:\users\joe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MagicDisc.lnk - c:\program files\MagicDisc\MagicDisc.exe [2011-3-25 576000]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AvcUWil2;Adaptec AVC-3210/3310/3610 USB Device;c:\windows\system32\DRIVERS\avcuwil2.sys [x]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [x]
S3 Tp4Track;PS/2 TrackPoint Driver;c:\windows\system32\DRIVERS\tp4track.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-18 c:\windows\Tasks\BNLTODW.job
- c:\windows\system32\KBDIULATT.dll [2012-09-15 03:16]
.
2012-09-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-02 23:10]
.
2012-09-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-02 23:10]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Open with PDF Viewer Plus - c:\program files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\4565242534: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\45F6E61637B6564702C4962627162797: DhcpNameServer = 64.139.101.8 206.253.194.65
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\7416274656E60225F6F6D6020223E24374: DhcpNameServer = 64.139.97.3 206.253.94.65 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\7416274656E60225F6F6D6025374: DhcpNameServer = 64.139.97.3 206.253.94.65 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\A457E6364796F6E60277563747: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\A457E6364796F6E6E2E45647: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{9926C82A-C0FB-424D-A2D8-82841ECF61D0}\C45737B6D27657563747: DhcpNameServer = 63.142.192.5 63.142.192.6
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-SwitchBoard - c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SafeBoot-36067001.sys
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-09-18 14:25:52
ComboFix-quarantined-files.txt 2012-09-18 21:25
.
Pre-Run: 5,974,962,176 bytes free
Post-Run: 5,803,900,928 bytes free
.
- - End Of File - - D4F05EAA173DA5FBE8BCC08249CDBD03
  • 0

#9
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
minitool box log





MiniToolBox by Farbar Version: 23-07-2012
Ran by joe (administrator) on 18-09-2012 at 14:33:08
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : lenovo
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
Physical Address. . . . . . . . . : 00-19-D2-C1-16-FB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3d56:5a42:a007:aef2%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.106(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, September 18, 2012 9:48:16 AM
Lease Expires . . . . . . . . . . : Wednesday, September 19, 2012 2:23:43 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 218110418
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-AF-32-9C-00-16-36-E1-6E-9F
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
Physical Address. . . . . . . . . : 00-16-36-E1-6E-9F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.wildblue.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:14ab:3c46:c071:39ab(Preferred)
Link-local IPv6 Address . . . . . : fe80::14ab:3c46:c071:39ab%15(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2001:4860:4007:801::1002
74.125.224.199
74.125.224.192
74.125.224.200
74.125.224.201
74.125.224.206
74.125.224.195
74.125.224.194
74.125.224.198
74.125.224.196
74.125.224.197
74.125.224.193


Pinging google.com [74.125.224.199] with 32 bytes of data:
Reply from 74.125.224.199: bytes=32 time=87ms TTL=54
Reply from 74.125.224.199: bytes=32 time=299ms TTL=54

Ping statistics for 74.125.224.199:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 87ms, Maximum = 299ms, Average = 193ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=580ms TTL=54
Reply from 72.30.38.140: bytes=32 time=266ms TTL=54

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 266ms, Maximum = 580ms, Average = 423ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 19 d2 c1 16 fb ......Intel® PRO/Wireless 3945ABG Network Connection
10...00 16 36 e1 6e 9f ......Broadcom NetXtreme Gigabit Ethernet
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.106 26
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.106 281
192.168.1.106 255.255.255.255 On-link 192.168.1.106 281
192.168.1.255 255.255.255.255 On-link 192.168.1.106 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.106 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.106 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
15 58 ::/0 On-link
1 306 ::1/128 On-link
15 58 2001::/32 On-link
15 306 2001:0:9d38:953c:14ab:3c46:c071:39ab/128
On-link
11 281 fe80::/64 On-link
15 306 fe80::/64 On-link
15 306 fe80::14ab:3c46:c071:39ab/128
On-link
11 281 fe80::3d56:5a42:a007:aef2/128
On-link
1 306 ff00::/8 On-link
15 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/18/2012 02:33:14 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:33:14.843]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:32:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: AppleMobileDeviceService.exe, version: 17.88.0.8, time stamp: 0x4e66ceff
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e2111c0
Exception code: 0xc06d007e
Fault offset: 0x0000d36f
Faulting process id: 0x62c
Faulting application start time: 0xAppleMobileDeviceService.exe0
Faulting application path: AppleMobileDeviceService.exe1
Faulting module path: AppleMobileDeviceService.exe2
Report Id: AppleMobileDeviceService.exe3

Error: (09/18/2012 02:32:39 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:32:39.525]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:32:04 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:32:04.300]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:31:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: AppleMobileDeviceService.exe, version: 17.88.0.8, time stamp: 0x4e66ceff
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e2111c0
Exception code: 0xc06d007e
Fault offset: 0x0000d36f
Faulting process id: 0x354
Faulting application start time: 0xAppleMobileDeviceService.exe0
Faulting application path: AppleMobileDeviceService.exe1
Faulting module path: AppleMobileDeviceService.exe2
Report Id: AppleMobileDeviceService.exe3

Error: (09/18/2012 02:31:29 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:31:29.075]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:30:53 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:30:53.850]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:30:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: AppleMobileDeviceService.exe, version: 17.88.0.8, time stamp: 0x4e66ceff
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e2111c0
Exception code: 0xc06d007e
Fault offset: 0x0000d36f
Faulting process id: 0x97c
Faulting application start time: 0xAppleMobileDeviceService.exe0
Faulting application path: AppleMobileDeviceService.exe1
Faulting module path: AppleMobileDeviceService.exe2
Report Id: AppleMobileDeviceService.exe3

Error: (09/18/2012 02:30:18 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2012/09/18 14:30:18.625]: [00000368]: GetDeviceIpAddress: GetAddressByName [BRW00225851BA0C] Error

Error: (09/18/2012 02:29:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: AppleMobileDeviceService.exe, version: 17.88.0.8, time stamp: 0x4e66ceff
Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e2111c0
Exception code: 0xc06d007e
Fault offset: 0x0000d36f
Faulting process id: 0xc1c
Faulting application start time: 0xAppleMobileDeviceService.exe0
Faulting application path: AppleMobileDeviceService.exe1
Faulting module path: AppleMobileDeviceService.exe2
Report Id: AppleMobileDeviceService.exe3


System errors:
=============
Error: (09/18/2012 02:32:52 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 283 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:31:52 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 282 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:30:51 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 281 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:29:51 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 280 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:28:51 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 279 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:27:50 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 278 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:26:50 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 277 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:25:50 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 276 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:24:49 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 275 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (09/18/2012 02:23:47 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly. It has done this 274 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (04/23/2012 01:25:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6606.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1434 seconds with 840 seconds of active time. This session ended with a crash.

Error: (04/28/2011 04:50:15 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7803 seconds with 1200 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Ad-Aware Browsing Protection (Version: 1.0.0.5)
Adobe AIR (Version: 1.5.3.9120)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.14)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader 9.4.4 (Version: 9.4.4)
Age of Mythology Gold Edition 1.00
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite MFC-9560CDW (Version: 1.0.21.0)
CANON iMAGE GATEWAY MyCamera Download Plugin (Version: 3.1.1.2)
Canon MOV Decoder (Version: 1.8.0.7)
Canon MOV Encoder (Version: 1.6.0.1)
Canon Utilities EOS Utility (Version: 2.10.2.0)
Canon Utilities Picture Style Editor (Version: 1.9.0.0)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.5.0.9)
dBpoweramp Music Converter (Version: Release 14.2)
Device Doctor
DiskAid 4.11 (Version: 4.11)
DivX Converter (Version: 7.1.0)
DivX Plus DirectShow Filters
DivX Setup (Version: 2.6.1.9)
DivX Version Checker (Version: 7.1.0.9)
FLAC 1.2.1b (remove only) (Version: 1.2.1b)
GameRanger
Google Chrome (Version: 21.0.1180.89)
Google Update Helper (Version: 1.3.21.123)
Icewind Dale II (Version: 1.00.000)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1867)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (Version: 6.0.240)
KBD
Magic APE to MP3 Converter 3.72
MagicDisc 2.7.106
Medieval CUE Splitter (Version: 1.2.0)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Monkey's Audio
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nuance PaperPort 12 (Version: 12.1.0000)
Nuance PDF Viewer Plus (Version: 5.30.3290)
Online Bible 12.08.02
Panda Cloud Cleaner (Version: 1.0.28)
PaperPort Image Printer (Version: 1.00.0001)
PDF Settings CS5 (Version: 10.0)
PFPortChecker 1.0.39 (Version: 1.0.39)
Pretty Flow 2.4.0.127
Privacy SafeGuard version 1.1 (Version: 1.1)
Punch! Home Design - AS4000
QuickTime (Version: 7.71.80.42)
Rise Of Legends (Version: 1.00.0000)
Rosetta Stone Version 3 (Version: 3.3.5.2)
RTPatch Update
SavetheChildren Reminder by We-Care.com v4.1.18.4 (Version: 4.1.18.4)
Scansoft PDF Professional
Skype Toolbars (Version: 5.2.4170)
Synaptics Pointing Device Driver (Version: 14.0.6.0)
Texas Instruments PCIxx21/x515/xx12 drivers. (Version: 2.00.0005)
ThinkPad Modem (Version: 7.62.00)
ThinkPad Power Management Driver (Version: 1.43)
ThinkPad TrackPoint Driver (Version: 4.71.0.0)
TIPCI (Version: 2.00.0005)
Unity Web Player (Version: 2.6.1f3_31223)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VideoFileDownload (Version: 1.0)
VLC media player 0.9.9 (Version: 0.9.9)
Voobly (Version: Voobly)
Vuze (Version: 4.7)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 2038.49 MB
Available physical RAM: 1047.37 MB
Total Pagefile: 4076.98 MB
Available Pagefile: 3046.62 MB
Total Virtual: 2047.88 MB
Available Virtual: 1936.67 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:111.69 GB) (Free:5.47 GB) NTFS
3 Drive e: (ROL DISK 1) (CDROM) (Total:0.61 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\LENOVO

Administrator Guest joe
Mcx1-LENOVO

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
  • 0

#10
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi BeaverSniffer,

Do you still get redirected?
Do you get redirected in all browsers or just one?
Is there any other PC connected to your router and does it too get redirected?
  • 0

Advertisements


#11
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
the redirecting has not stopped yet and still can't open the microsoft security esstianls
  • 0

#12
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
i get redirected in all the browsers and there is only one PC connected
  • 0

#13
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
OK. Please give me some time to do little research and I'll be back to you soon.
  • 0

#14
BeaverSniffer

BeaverSniffer

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Ok, Thank you!
  • 0

#15
maliprog

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
I'm afraid that your router is hacked and we need to reset it to its default configuration.

Write down configuration information such as IP addresses, security keys, opened ports and services, etc., that you modified. (The default username is admin and the password is either password or 1234. Try these before resetting the router.)

Resseting can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router. Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).

After this test your PC for redirection and come back with results.

I hope that this will solve your redirect problem.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP