Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Windows 7 will not reboot. Please help! [Solved]

Started by mikison , Nov 25 2012 08:07 PM

Page 4 of 9
2
3
4
5
6

This topic is locked

#46
CompCav

Posted 26 November 2012 - 10:08 PM

Member 5k

Expert
12,454 posts

Please run Farbar Service Scanner. Yes this is infection again.

Type the following in the edit box after "Search:".

afd.sys

Click Search Files button and post the log (FSS.txt) it makes to your reply.

#47
mikison

Posted 26 November 2012 - 10:24 PM

Member

Topic Starter
Member
94 posts

Farbar Service Scanner Version: 09-11-2012
Ran by Owner (administrator) on 26-11-2012 at 23:18:47
Windows 7 Home Premium Service Pack 1 (X64)

************************************************
======== Search: "afd.sys" =========

C:\Windows\System32\drivers\AFD.SYS
[2012-02-16 00:42] - [2012-11-26 22:14] - 0022368 ____A (AVG Technologies CZ, s.r.o. ) 42B7E1AA0C7EC54652A50585793F1885

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21887_none_364f3a028e605345\afd.sys
[2012-02-16 00:42] - [2011-12-27 23:01] - 0498176 ____A (Microsoft Corporation) 36A14FD1A23F57046361733B792CA8DB

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21712_none_3695e61e8e2c13d4\afd.sys
[2011-06-14 22:54] - [2011-04-24 22:09] - 0499200 ____A (Microsoft Corporation) F4AD06143EAC303F55D0E86C40802976

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys
[2012-02-16 00:42] - [2011-12-27 22:59] - 0498688 ____A (Microsoft Corporation) 1C7857B62DE5994A75B054A9FD4C3825

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17603_none_3618198975057170\afd.sys
[2011-06-14 22:54] - [2011-04-24 21:34] - 0499200 ____A (Microsoft Corporation) D5B031C308A409A0A576BFF4CF083D30

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17514_none_360e4801750ca991\afd.sys
[2011-07-01 09:27] - [2010-11-20 04:23] - 0499712 ____A (Microsoft Corporation) D31DC7A16DEA4A9BAF179F3D6FBDB38C

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.21115_none_34b263fe91032456\afd.sys
[2012-02-16 00:42] - [2011-12-27 23:01] - 0499200 ____A (Microsoft Corporation) CCA39961E76B491DDF44B1E90FC8971D

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.20951_none_3483491e9126fe55\afd.sys
[2011-06-14 22:54] - [2011-04-24 21:44] - 0499712 ____A (Microsoft Corporation) FBFF8B7C9D116229E9208A0D1CAEB49B

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16937_none_34154fcd77f3bbda\afd.sys
[2012-02-16 00:42] - [2011-12-27 22:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16802_none_3430bc3977dfec2d\afd.sys
[2011-06-14 22:54] - [2011-04-24 21:44] - 0499712 ____A (Microsoft Corporation) 6EF20DDF3172E97D69F596FB90602F29

C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16385_none_33dd3439781e25f7\afd.sys
[2009-07-13 18:21] - [2009-07-13 18:21] - 0500224 ____A (Microsoft Corporation) B9384E03479D2506BC924C16A3DB87BC

====== End Of Search ======

#48
CompCav

Posted 26 November 2012 - 10:28 PM

Member 5k

Expert
12,454 posts

One or more of the identified infections is known to use a backdoor.

This allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would advice you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the infection has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

We can still attempt to clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do.

If you choose to continue do this:

Rerun your current copy of ComboFix, it should see the file and replace it. If it does not then we will create a script to specifically replace the file. We need this file in place for your internet service to work properly.

#49
mikison

Posted 26 November 2012 - 10:38 PM

Member

Topic Starter
Member
94 posts

I would like to kill the infection right now and use the computer without connecting it to the internet until later this week when I can do a clean install. Are you able to help me do a clean install also? Should I worry about my laptop connected to the same network?

Do you happen to know which of the following situations apply in my case?

If the computer was connected to the Internet for a long time with the backdoor installed, or if the malware used ICQ to actively contact hackers, then it is more likely the backdoor was used. Therefore there is a high risk if re-formatting and re-installing is not done.

If the backdoor merely opens a port to listen the risk is slightly lower.

If the backdoor merely opens a port to listen and the computer was behind a working firewall or NAT router, then the risk of the backdoor being used is greatly reduced. Therefore there is probably a much lower risk if re-formatting and re-installing is not done.

Most search hijackers and pop-up producing adware contain a capability for the maker to automatically update them and to add additional adware. In other words, most of them install backdoors of some sort.

In a case where only search hijackers and pop-up producing adware are found we should not automatically recommend re-formatting provided the malware can be removed another way, and providing the computer requires only normal levels of security. Hijackers and adware are written for advertising money, and their authors are not normally interested in anything more malicious than getting click-through payments from advertisers. Seldom is a backdoor in adware used by the maker to install anything other than more hijackers and ad-ware. [/i]However, there is the potential for any backdoor to be used by others, not just the original author, so the situation with adware and search hijackers is generally one of much lower risk, not no risk. The use of the computer has to be considered, as well as the nature of the specific adware found.

#50
CompCav

Posted 26 November 2012 - 10:42 PM

Member 5k

Expert
12,454 posts

There is no way to tell but it came back with a vengance in attacking your internet capability. It also had a serious rootkit Phar that we had to hit three times to kill.

Please rerun Combofix.

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks

Posted Image

When finished, it produces a log for you.
Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

After the run you may have internet problems or access to something problems. Simply reboot the computer.

I can help you do the format and reinstall, it is built in for Windows 7 systems.

#51
CompCav

Posted 26 November 2012 - 10:53 PM

Member 5k

Expert
12,454 posts

If ComboFix replaced it then rerun TDSSKiller like this:

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

If ComboFix did not replace the file then run this ComboFix script first and then run the TDSSKiller:

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Open notepad and copy/paste the text in the quotebox below into it:

File::

Folder::

FCopy:: 
C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys | c:\windows\system32\drivers\afd.sys


Registry::

Driver::

Save this as CFScript.txt, in the same location as ComboFix.exe

Posted Image

Referring to the picture above, drag CFScript into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

I am off to bed and will check back tomorrow am.

Regards,

CompCav

#52
mikison

Posted 26 November 2012 - 11:03 PM

Member

Topic Starter
Member
94 posts

Here is the Combo Fix text file. I do not know how to tell if it replaced the file. I will wait for your reply to see if I should do the TDSS Killer.

ComboFix 12-11-26.02 - Owner 11/26/2012 23:45:19.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3839.2083 [GMT -5:00]
Running from: c:\users\Owner\Desktop\ComboFix.exe
AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-10-27 to 2012-11-27 )))))))))))))))))))))))))))))))
.
.
2012-11-27 04:52 . 2012-11-27 04:52 -------- d-----w- c:\users\test\AppData\Local\temp
2012-11-27 04:52 . 2012-11-27 04:52 -------- d-----w- c:\users\Miki\AppData\Local\temp
2012-11-27 04:52 . 2012-11-27 04:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-27 04:52 . 2012-11-27 04:52 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-11-27 03:48 . 2012-11-27 03:48 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-11-27 03:48 . 2012-11-27 03:48 588728 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll
2012-11-27 03:48 . 2012-11-27 03:48 43960 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll
2012-11-27 03:48 . 2012-11-27 03:48 157352 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-11-27 03:48 . 2012-11-27 03:48 129976 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-11-27 00:20 . 2012-11-27 00:21 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-27 00:20 . 2012-11-27 00:21 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-26 22:46 . 2012-11-26 22:45 289768 ----a-w- c:\windows\system32\javaws.exe
2012-11-26 22:46 . 2012-11-26 22:45 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-11-26 22:45 . 2012-11-26 22:45 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-11-26 22:45 . 2012-11-26 22:45 189416 ----a-w- c:\windows\system32\javaw.exe
2012-11-26 22:45 . 2012-11-26 22:45 188904 ----a-w- c:\windows\system32\java.exe
2012-11-26 16:31 . 2012-11-26 16:31 -------- d-----w- c:\program files (x86)\ESET
2012-11-26 12:21 . 2012-08-23 08:19 4916224 ----a-w- c:\windows\SysWow64\mstscax.dll
2012-11-26 12:21 . 2012-08-23 08:13 5773824 ----a-w- c:\windows\system32\mstscax.dll
2012-11-26 08:42 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-26 08:42 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-26 08:42 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2012-11-26 08:42 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-26 08:11 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-26 08:11 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-26 08:11 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-26 08:11 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-26 08:11 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-26 08:11 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-26 08:11 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-26 08:09 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-11-26 08:09 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-11-26 08:09 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-11-26 08:09 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-11-26 08:09 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-11-26 08:00 . 2012-06-02 05:48 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-11-26 07:58 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-26 07:57 . 2012-03-31 05:42 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-11-26 07:44 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-11-26 07:44 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-11-26 07:44 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-11-26 07:44 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-11-26 07:40 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-11-26 07:40 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-11-26 07:40 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-11-26 07:40 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-11-26 07:40 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-11-26 07:40 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-11-26 06:52 . 2012-11-26 06:52 -------- d-----w- c:\users\Owner\AppData\Roaming\AVG2013
2012-11-26 06:50 . 2012-11-26 06:50 -------- d-----w- c:\users\Owner\AppData\Roaming\TuneUp Software
2012-11-26 06:47 . 2012-11-26 06:50 -------- d-----w- c:\programdata\AVG2013
2012-11-26 06:44 . 2012-11-27 00:49 -------- d-----w- c:\users\Owner\AppData\Local\Avg2013
2012-11-26 06:44 . 2012-11-26 06:44 -------- d-----w- c:\users\Owner\AppData\Local\MFAData
2012-11-26 06:08 . 2012-11-26 13:18 -------- d-----w- C:\TDSSKiller_Quarantine
2012-11-26 05:31 . 2012-11-26 05:31 -------- d-----w- C:\FRST
2012-11-05 00:22 . 2012-11-05 00:22 -------- d-----w- c:\users\Owner\AppData\Local\leawo
2012-11-04 21:35 . 2012-08-21 18:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files\iPod
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files\iTunes
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files (x86)\iTunes
2012-11-04 21:24 . 2012-11-04 21:24 -------- d-----w- c:\users\Owner\AppData\Roaming\com.leawo.imediago
2012-11-04 21:24 . 2012-11-26 04:04 -------- d-----w- c:\program files (x86)\Leawo
2012-11-02 02:52 . 2012-11-02 02:52 75928 ----a-w- c:\windows\system32\drivers\dc3d.sys
2012-11-02 02:52 . 2012-11-02 02:52 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-27 03:14 . 2012-02-16 05:42 22368 ----a-w- c:\windows\system32\drivers\AFD.SYS
2012-11-27 03:14 . 2009-07-14 00:10 22368 ----a-w- c:\windows\system32\drivers\WS2IFSL.SYS
2012-11-26 22:45 . 2011-08-10 10:04 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-11-15 21:05 . 2011-06-28 05:19 5642 --s-a-w- c:\programdata\KGyGaAvL.sys
2012-11-08 21:19 . 2012-08-30 19:50 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-30 02:04 . 2010-09-04 12:41 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-10-22 18:02 . 2012-10-22 18:02 154464 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2012-10-15 08:48 . 2012-10-15 08:48 63328 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2012-10-05 08:32 . 2012-10-05 08:32 111456 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2012-10-02 08:30 . 2012-10-02 08:30 185696 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-09-30 00:54 . 2011-08-10 05:17 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-29 02:42 . 2012-09-29 02:42 2177704 ----a-w- c:\windows\system32\coin92.dll
2012-09-21 08:46 . 2012-09-21 08:46 200032 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2012-09-21 08:46 . 2012-09-21 08:46 225120 ----a-w- c:\windows\system32\drivers\avgloga.sys
2012-09-14 08:05 . 2012-09-14 08:05 40800 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2012-09-04 15:39 . 2010-07-12 08:34 50296 ----a-w- c:\windows\system32\drivers\avgfwd6a.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"= "c:\progra~2\WIC55D~1\ToolBar\searchqudtx.dll" [BU]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll" [BU]
.
[HKEY_CLASSES_ROOT\clsid\{99079a25-328f-4bd4-be04-00955acaa0a7}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Owner\AppData\Local\Akamai\netsession_win.exe" [2012-10-09 4441920]
"Corel Photo Downloader"="c:\program files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" [2011-09-07 522752]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UCam_Menu"="c:\program files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"YouCam Mirror Tray icon"="c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe" [2009-11-24 167008]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" [2010-02-22 1016832]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"tvncontrol"="c:\program files (x86)\TightVNC\tvnserver.exe" [2010-07-08 815704]
"Corel File Shell Monitor"="c:\program files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe" [BU]
"Standby"="c:\program files (x86)\Common Files\Corel\Standby\Standby.exe" [2010-08-06 105632]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"Google Desktop Search"="c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" [2010-09-07 30192]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640]
"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"HFALoader"="c:\program files (x86)\Hamster Soft\Hamster Free Zip Archiver\HamsterArc.exe" [2012-03-06 2260480]
"Garmin Lifetime Updater"="c:\program files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-05-23 1466760]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-06-13 296056]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-10 421776]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-07 3143800]
"Carbonite Backup"="c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe" [2012-11-08 1065032]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-24 926896]
.
c:\users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-12-21 227712]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Auto run of VideoCam Suite 1.0.lnk - c:\program files (x86)\Panasonic\VideoCamSuite\VideoCamSuiteAutoStart.exe [2011-2-12 161160]
Device Detector 4.lnk - c:\program files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe [2009-2-25 397312]
Directrec Configuration Tool.lnk - c:\program files (x86)\OLYMPUS\DirectrecConfig\DirectrecConfigurationTool.exe [2009-2-25 2367488]
Event Reminder.lnk - c:\program files (x86)\The Print Shop 23.1\Remind.exe [2010-6-21 344064]
Google Calendar Sync.lnk - c:\program files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
.
R2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2012-11-02 1340976]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-07 5814392]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-07 30192]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-04 1255736]
R3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-11-08 30568]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-13 202752]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
S2 Greg_Service;GRegService;c:\program files (x86)\Gateway\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064]
S2 tvnserver;TightVNC Server;c:\program files (x86)\TightVNC\tvnserver.exe [2010-07-08 815704]
S2 Updater Service;Updater Service;c:\program files\Gateway\Gateway Updater\UpdaterService.exe [2010-01-28 243232]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2012-11-02 75928]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-17 32344]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2010-03-29 925984]
S3 Olympus DVR Service;Olympus DVR Service;c:\program files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe [2009-02-25 167936]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-09 239136]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-12-19 314400]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2012-03-07 29288]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-27 00:21]
.
2012-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-06 22:20]
.
2012-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-06 22:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"="c:\program files (x86)\TouchSettings\TouchPortalOBR.exe" [2010-02-04 153416]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-09 10103840]
"TouchPortal"="c:\program files (x86)\Gateway\Gateway Touch Suite\TouchPortal.exe" [2010-04-19 6314016]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2726728]
"RunDLLEntry_THXCfg"="c:\windows\system32\THXCfg64.dll" [2009-09-30 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-07-10 499608]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
Trusted Zone: airse.com
Trusted Zone: arise.com\*.ns
Trusted Zone: facebook.com\www
Trusted Zone: rccl.com\arisectx
Trusted Zone: signmeup.com\www
Trusted Zone: tcpalm.com\www
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB
DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} - hxxps://www.icloud.com/system/iCloud.cab
DPF: {F3DCFC89-8C6E-4052-9176-B7806D188FD5} - hxxp://www.disneyphotopass.com/Scripts/ImageUploader7.cab
DPF: {F8EB59EC-35A8-4B59-8F67-B3E19147FED6} - hxxp://www.dishonline.com/widevine/installer/WidevineMediaTransformer.exe
FF - ProfilePath - c:\users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\i3w97kuc.default\
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-{9D425283-D487-4337-BAB6-AB8354A81457} - (no file)
Toolbar-10 - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{16D3836E-B1D6-43CA-A8C5-2DC4FCB1F8E7} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-{FBBC4667-2521-4E78-B1BD-8706F774549B} - c:\programdata\{249B9E04-F0FC-434D-B0D8-12D3EDFF3B77}\Best Buy Software Installer Setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-11-26 23:54:49
ComboFix-quarantined-files.txt 2012-11-27 04:54
ComboFix2.txt 2012-11-27 03:08
ComboFix3.txt 2012-11-26 04:39
ComboFix4.txt 2010-03-01 01:19
.
Pre-Run: 398,637,592,576 bytes free
Post-Run: 398,564,028,416 bytes free
.
- - End Of File - - D2083FC2F966878BFD3A301F4B1B76FE

#53
mikison

Posted 26 November 2012 - 11:08 PM

Member

Topic Starter
Member
94 posts

I do not know what file to look for to see if Combo Fix replaced it or not.

#54
CompCav

Posted 27 November 2012 - 05:39 AM

Member 5k

Expert
12,454 posts

afd.sys was not replaced in the log so please run the ComboFix script in post #51 and follow that with TDSSKiller as instructed in post #51.

#55
mikison

Posted 27 November 2012 - 08:26 AM

Member

Topic Starter
Member
94 posts

Below are the files requested.

ComboFix 12-11-26.02 - Owner 11/27/2012 7:27.4.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3839.1935 [GMT -5:00]
Running from: c:\users\Owner\Desktop\ComboFix.exe
Command switches used :: c:\users\Owner\Desktop\CFScript.txt
AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
--------------- FCopy ---------------
.
c:\windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys --> c:\windows\system32\drivers\afd.sys
.
((((((((((((((((((((((((( Files Created from 2012-10-27 to 2012-11-27 )))))))))))))))))))))))))))))))
.
.
2012-11-27 12:32 . 2012-11-27 12:32 -------- d-----w- c:\users\test\AppData\Local\temp
2012-11-27 12:32 . 2012-11-27 12:32 -------- d-----w- c:\users\Miki\AppData\Local\temp
2012-11-27 12:32 . 2012-11-27 12:32 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-27 12:32 . 2012-11-27 12:32 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2012-11-27 03:48 . 2012-11-27 03:48 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-11-27 03:48 . 2012-11-27 03:48 588728 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll
2012-11-27 03:48 . 2012-11-27 03:48 43960 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll
2012-11-27 03:48 . 2012-11-27 03:48 157352 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-11-27 03:48 . 2012-11-27 03:48 129976 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-11-27 00:20 . 2012-11-27 00:21 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-27 00:20 . 2012-11-27 00:21 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-11-26 22:46 . 2012-11-26 22:45 289768 ----a-w- c:\windows\system32\javaws.exe
2012-11-26 22:46 . 2012-11-26 22:45 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-11-26 22:45 . 2012-11-26 22:45 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-11-26 22:45 . 2012-11-26 22:45 189416 ----a-w- c:\windows\system32\javaw.exe
2012-11-26 22:45 . 2012-11-26 22:45 188904 ----a-w- c:\windows\system32\java.exe
2012-11-26 16:31 . 2012-11-26 16:31 -------- d-----w- c:\program files (x86)\ESET
2012-11-26 12:21 . 2012-08-23 08:19 4916224 ----a-w- c:\windows\SysWow64\mstscax.dll
2012-11-26 12:21 . 2012-08-23 08:13 5773824 ----a-w- c:\windows\system32\mstscax.dll
2012-11-26 08:42 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-11-26 08:42 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-11-26 08:42 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui
2012-11-26 08:42 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-11-26 08:11 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-11-26 08:11 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-11-26 08:11 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-11-26 08:11 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-11-26 08:11 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2012-11-26 08:11 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2012-11-26 08:11 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-11-26 08:09 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-11-26 08:09 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2012-11-26 08:09 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2012-11-26 08:09 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2012-11-26 08:09 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2012-11-26 08:00 . 2012-06-02 05:48 95600 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-11-26 07:58 . 2012-09-14 19:19 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-26 07:57 . 2012-03-31 05:42 1732096 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-11-26 07:44 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-11-26 07:44 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-11-26 07:44 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-11-26 07:44 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-11-26 07:40 . 2012-06-02 05:41 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-11-26 07:40 . 2012-06-02 05:41 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-11-26 07:40 . 2012-06-02 05:41 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-11-26 07:40 . 2012-06-02 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-11-26 07:40 . 2012-06-02 04:36 1159680 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-11-26 07:40 . 2012-06-02 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-11-26 06:52 . 2012-11-26 06:52 -------- d-----w- c:\users\Owner\AppData\Roaming\AVG2013
2012-11-26 06:50 . 2012-11-26 06:50 -------- d-----w- c:\users\Owner\AppData\Roaming\TuneUp Software
2012-11-26 06:47 . 2012-11-26 06:50 -------- d-----w- c:\programdata\AVG2013
2012-11-26 06:44 . 2012-11-27 00:49 -------- d-----w- c:\users\Owner\AppData\Local\Avg2013
2012-11-26 06:44 . 2012-11-26 06:44 -------- d-----w- c:\users\Owner\AppData\Local\MFAData
2012-11-26 06:08 . 2012-11-26 13:18 -------- d-----w- C:\TDSSKiller_Quarantine
2012-11-26 05:31 . 2012-11-26 05:31 -------- d-----w- C:\FRST
2012-11-05 00:22 . 2012-11-05 00:22 -------- d-----w- c:\users\Owner\AppData\Local\leawo
2012-11-04 21:35 . 2012-08-21 18:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files\iPod
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files\iTunes
2012-11-04 21:34 . 2012-11-26 04:06 -------- d-----w- c:\program files (x86)\iTunes
2012-11-04 21:24 . 2012-11-04 21:24 -------- d-----w- c:\users\Owner\AppData\Roaming\com.leawo.imediago
2012-11-04 21:24 . 2012-11-26 04:04 -------- d-----w- c:\program files (x86)\Leawo
2012-11-02 02:52 . 2012-11-02 02:52 75928 ----a-w- c:\windows\system32\drivers\dc3d.sys
2012-11-02 02:52 . 2012-11-02 02:52 1795952 ----a-w- c:\windows\system32\WdfCoInstaller01011.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-27 03:14 . 2009-07-14 00:10 22368 ----a-w- c:\windows\system32\drivers\WS2IFSL.SYS
2012-11-26 22:45 . 2011-08-10 10:04 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-11-15 21:05 . 2011-06-28 05:19 5642 --s-a-w- c:\programdata\KGyGaAvL.sys
2012-11-08 21:19 . 2012-08-30 19:50 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-30 02:04 . 2010-09-04 12:41 66395536 ----a-w- c:\windows\system32\MRT.exe
2012-10-22 18:02 . 2012-10-22 18:02 154464 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2012-10-15 08:48 . 2012-10-15 08:48 63328 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2012-10-05 08:32 . 2012-10-05 08:32 111456 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2012-10-02 08:30 . 2012-10-02 08:30 185696 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2012-09-30 00:54 . 2011-08-10 05:17 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-29 02:42 . 2012-09-29 02:42 2177704 ----a-w- c:\windows\system32\coin92.dll
2012-09-21 08:46 . 2012-09-21 08:46 200032 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2012-09-21 08:46 . 2012-09-21 08:46 225120 ----a-w- c:\windows\system32\drivers\avgloga.sys
2012-09-14 08:05 . 2012-09-14 08:05 40800 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2012-09-04 15:39 . 2010-07-12 08:34 50296 ----a-w- c:\windows\system32\drivers\avgfwd6a.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"= "c:\progra~2\WIC55D~1\ToolBar\searchqudtx.dll" [BU]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll" [BU]
.
[HKEY_CLASSES_ROOT\clsid\{99079a25-328f-4bd4-be04-00955acaa0a7}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2012-11-08 14:01 1019976 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 94208 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Owner\AppData\Local\Akamai\netsession_win.exe" [2012-10-09 4441920]
"Corel Photo Downloader"="c:\program files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" [2011-09-07 522752]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UCam_Menu"="c:\program files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"YouCam Mirror Tray icon"="c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe" [2009-11-24 167008]
"THX Audio Control Panel"="c:\program files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" [2010-02-22 1016832]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"tvncontrol"="c:\program files (x86)\TightVNC\tvnserver.exe" [2010-07-08 815704]
"Corel File Shell Monitor"="c:\program files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\CorelIOMonitor.exe" [BU]
"Standby"="c:\program files (x86)\Common Files\Corel\Standby\Standby.exe" [2010-08-06 105632]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"Google Desktop Search"="c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe" [2010-09-07 30192]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640]
"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"HFALoader"="c:\program files (x86)\Hamster Soft\Hamster Free Zip Archiver\HamsterArc.exe" [2012-03-06 2260480]
"Garmin Lifetime Updater"="c:\program files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-05-23 1466760]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-06-13 296056]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-10 421776]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-07 3143800]
"Carbonite Backup"="c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe" [2012-11-08 1065032]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-24 926896]
.
c:\users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-12-21 227712]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Auto run of VideoCam Suite 1.0.lnk - c:\program files (x86)\Panasonic\VideoCamSuite\VideoCamSuiteAutoStart.exe [2011-2-12 161160]
Device Detector 4.lnk - c:\program files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe [2009-2-25 397312]
Directrec Configuration Tool.lnk - c:\program files (x86)\OLYMPUS\DirectrecConfig\DirectrecConfigurationTool.exe [2009-2-25 2367488]
Event Reminder.lnk - c:\program files (x86)\The Print Shop 23.1\Remind.exe [2010-6-21 344064]
Google Calendar Sync.lnk - c:\program files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
.
R2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2012-11-02 1340976]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-07 5814392]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [2010-09-07 30192]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-04 1255736]
R3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-11-08 30568]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-13 202752]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
S2 Greg_Service;GRegService;c:\program files (x86)\Gateway\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-07-16 2673064]
S2 tvnserver;TightVNC Server;c:\program files (x86)\TightVNC\tvnserver.exe [2010-07-08 815704]
S2 Updater Service;Updater Service;c:\program files\Gateway\Gateway Updater\UpdaterService.exe [2010-01-28 243232]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2012-11-02 75928]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [2009-11-17 32344]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2010-03-29 925984]
S3 Olympus DVR Service;Olympus DVR Service;c:\program files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe [2009-02-25 167936]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-09 239136]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-12-19 314400]
S3 WsAudio_DeviceS(1);WsAudio_DeviceS(1);c:\windows\system32\drivers\WsAudio_DeviceS(1).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(2);WsAudio_DeviceS(2);c:\windows\system32\drivers\WsAudio_DeviceS(2).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(3);WsAudio_DeviceS(3);c:\windows\system32\drivers\WsAudio_DeviceS(3).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(4);WsAudio_DeviceS(4);c:\windows\system32\drivers\WsAudio_DeviceS(4).sys [2012-03-07 29288]
S3 WsAudio_DeviceS(5);WsAudio_DeviceS(5);c:\windows\system32\drivers\WsAudio_DeviceS(5).sys [2012-03-07 29288]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-27 00:21]
.
2012-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-06 22:20]
.
2012-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-06 22:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2012-11-08 13:53 1292360 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-15 00:32 97792 ----a-w- c:\users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TouchORB"="c:\program files (x86)\TouchSettings\TouchPortalOBR.exe" [2010-02-04 153416]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-03-09 10103840]
"TouchPortal"="c:\program files (x86)\Gateway\Gateway Touch Suite\TouchPortal.exe" [2010-04-19 6314016]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2726728]
"RunDLLEntry_THXCfg"="c:\windows\system32\THXCfg64.dll" [2009-09-30 17920]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-07-10 499608]
"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2011-08-10 1873256]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
Trusted Zone: airse.com
Trusted Zone: arise.com\*.ns
Trusted Zone: facebook.com\www
Trusted Zone: rccl.com\arisectx
Trusted Zone: signmeup.com\www
Trusted Zone: tcpalm.com\www
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB
DPF: {82E5DF24-51E8-47CD-864A-F4BD5005AA73} - hxxps://www.icloud.com/system/iCloud.cab
DPF: {F3DCFC89-8C6E-4052-9176-B7806D188FD5} - hxxp://www.disneyphotopass.com/Scripts/ImageUploader7.cab
DPF: {F8EB59EC-35A8-4B59-8F67-B3E19147FED6} - hxxp://www.dishonline.com/widevine/installer/WidevineMediaTransformer.exe
FF - ProfilePath - c:\users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\i3w97kuc.default\
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Toolbar-{9D425283-D487-4337-BAB6-AB8354A81457} - (no file)
Toolbar-10 - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{16D3836E-B1D6-43CA-A8C5-2DC4FCB1F8E7} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-{FBBC4667-2521-4E78-B1BD-8706F774549B} - c:\programdata\{249B9E04-F0FC-434D-B0D8-12D3EDFF3B77}\Best Buy Software Installer Setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-11-27 07:34:00
ComboFix-quarantined-files.txt 2012-11-27 12:33
ComboFix2.txt 2012-11-27 04:54
ComboFix3.txt 2012-11-27 03:08
ComboFix4.txt 2012-11-26 04:39
ComboFix5.txt 2012-11-27 12:26
.
Pre-Run: 398,469,877,760 bytes free
Post-Run: 398,398,459,904 bytes free
.
- - End Of File - - 6572674C215132EF5E39CE4780790893

07:41:55.0885 1520 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
07:41:55.0932 1520 ============================================================
07:41:55.0932 1520 Current date / time: 2012/11/27 07:41:55.0932
07:41:55.0932 1520 SystemInfo:
07:41:55.0932 1520
07:41:55.0932 1520 OS Version: 6.1.7601 ServicePack: 1.0
07:41:55.0932 1520 Product type: Workstation
07:41:55.0932 1520 ComputerName: MIKI-PC
07:41:55.0932 1520 UserName: Owner
07:41:55.0932 1520 Windows directory: C:\Windows
07:41:55.0932 1520 System windows directory: C:\Windows
07:41:55.0932 1520 Running under WOW64
07:41:55.0932 1520 Processor architecture: Intel x64
07:41:55.0932 1520 Number of processors: 2
07:41:55.0932 1520 Page size: 0x1000
07:41:55.0932 1520 Boot type: Normal boot
07:41:55.0932 1520 ============================================================
07:41:57.0367 1520 BG loaded
07:41:58.0085 1520 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:41:58.0100 1520 ============================================================
07:41:58.0100 1520 \Device\Harddisk0\DR0:
07:41:58.0116 1520 MBR partitions:
07:41:58.0116 1520 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000
07:41:58.0116 1520 ============================================================
07:41:58.0272 1520 C: <-> \Device\Harddisk0\DR0\Partition1
07:41:58.0272 1520 ============================================================
07:41:58.0272 1520 Initialize success
07:41:58.0272 1520 ============================================================
07:43:55.0604 2196 ============================================================
07:43:55.0604 2196 Scan started
07:43:55.0605 2196 Mode: Manual; SigCheck; TDLFS;
07:43:55.0605 2196 ============================================================
07:44:35.0377 1880 ============================================================
07:44:35.0377 1880 Scan started
07:44:35.0377 1880 Mode: Manual; SigCheck; TDLFS;
07:44:35.0377 1880 ============================================================
07:44:38.0126 1880 ================ Scan system memory ========================
07:44:38.0126 1880 System memory - ok
07:44:38.0127 1880 ================ Scan services =============================
07:44:39.0950 1880 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
07:44:40.0343 1880 1394ohci - ok
07:44:40.0500 1880 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
07:44:40.0541 1880 ACPI - ok
07:44:40.0586 1880 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
07:44:41.0066 1880 AcpiPmi - ok
07:44:41.0758 1880 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
07:44:41.0790 1880 AdobeARMservice - ok
07:44:42.0791 1880 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:44:42.0860 1880 AdobeFlashPlayerUpdateSvc - ok
07:44:43.0026 1880 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
07:44:43.0088 1880 adp94xx - ok
07:44:43.0188 1880 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
07:44:43.0227 1880 adpahci - ok
07:44:43.0267 1880 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
07:44:43.0320 1880 adpu320 - ok
07:44:43.0411 1880 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
07:44:44.0372 1880 AeLookupSvc - ok
07:44:44.0449 1880 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
07:44:44.0495 1880 agp440 - ok
07:44:45.0556 1880 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
07:44:45.0557 1880 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
07:44:45.0567 1880 Akamai ( HiddenFile.Multi.Generic ) - warning
07:44:45.0568 1880 Akamai - detected HiddenFile.Multi.Generic (1)
07:44:45.0642 1880 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
07:44:45.0818 1880 ALG - ok
07:44:45.0909 1880 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
07:44:45.0967 1880 aliide - ok
07:44:46.0137 1880 [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
07:44:46.0407 1880 AMD External Events Utility - ok
07:44:46.0518 1880 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
07:44:46.0585 1880 amdide - ok
07:44:46.0723 1880 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
07:44:46.0897 1880 AmdK8 - ok
07:44:48.0313 1880 [ 9673319070166E26660EBA4EDF316FA2 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
07:44:48.0467 1880 amdkmdag - ok
07:44:48.0568 1880 [ 430D06D63952848E64CBBF23B5C1479E ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
07:44:48.0632 1880 amdkmdap - ok
07:44:48.0699 1880 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
07:44:48.0778 1880 AmdPPM - ok
07:44:48.0854 1880 [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
07:44:48.0884 1880 amdsata - ok
07:44:49.0029 1880 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
07:44:49.0080 1880 amdsbs - ok
07:44:49.0163 1880 [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
07:44:49.0190 1880 amdxata - ok
07:44:49.0298 1880 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
07:44:50.0559 1880 AppID - ok
07:44:50.0649 1880 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
07:44:50.0789 1880 AppIDSvc - ok
07:44:50.0950 1880 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
07:44:51.0047 1880 Appinfo - ok
07:44:51.0312 1880 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:44:51.0336 1880 Apple Mobile Device - ok
07:44:51.0591 1880 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
07:44:51.0665 1880 arc - ok
07:44:51.0700 1880 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
07:44:51.0720 1880 arcsas - ok
07:44:51.0921 1880 aspnet_state - ok
07:44:51.0997 1880 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
07:44:52.0127 1880 AsyncMac - ok
07:44:52.0205 1880 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
07:44:52.0264 1880 atapi - ok
07:44:52.0438 1880 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
07:44:52.0477 1880 AtiPcie - ok
07:44:52.0628 1880 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:44:52.0739 1880 AudioEndpointBuilder - ok
07:44:52.0787 1880 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
07:44:52.0840 1880 AudioSrv - ok
07:44:53.0208 1880 [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys
07:44:53.0230 1880 Avgfwfd - ok
07:44:55.0971 1880 [ 733D86815BEB34E2982BC7F561C35AE3 ] avgfws C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
07:44:56.0020 1880 avgfws - ok
07:45:07.0770 1880 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
07:45:07.0851 1880 AVGIDSAgent - ok
07:45:07.0947 1880 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
07:45:07.0980 1880 AVGIDSDriver - ok
07:45:08.0103 1880 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
07:45:08.0156 1880 AVGIDSHA - ok
07:45:08.0368 1880 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
07:45:08.0402 1880 Avgldx64 - ok
07:45:08.0616 1880 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
07:45:08.0667 1880 Avgloga - ok
07:45:08.0772 1880 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
07:45:08.0798 1880 Avgmfx64 - ok
07:45:08.0921 1880 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
07:45:08.0948 1880 Avgrkx64 - ok
07:45:09.0070 1880 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
07:45:09.0099 1880 Avgtdia - ok
07:45:09.0253 1880 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
07:45:09.0279 1880 avgtp - ok
07:45:09.0405 1880 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
07:45:09.0433 1880 avgwd - ok
07:45:09.0544 1880 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
07:45:10.0178 1880 AxInstSV - ok
07:45:10.0407 1880 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
07:45:10.0595 1880 b06bdrv - ok
07:45:10.0787 1880 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
07:45:10.0914 1880 b57nd60a - ok
07:45:11.0014 1880 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
07:45:11.0128 1880 BDESVC - ok
07:45:11.0233 1880 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
07:45:11.0334 1880 Beep - ok
07:45:11.0669 1880 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
07:45:11.0867 1880 BFE - ok
07:45:11.0992 1880 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen C:\Windows\SysWOW64\bgsvcgen.exe
07:45:12.0014 1880 bgsvcgen - ok
07:45:12.0249 1880 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
07:45:12.0416 1880 BITS - ok
07:45:12.0492 1880 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
07:45:12.0624 1880 blbdrive - ok
07:45:13.0101 1880 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:45:13.0128 1880 Bonjour Service - ok
07:45:13.0228 1880 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
07:45:13.0365 1880 bowser - ok
07:45:13.0393 1880 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:45:13.0855 1880 BrFiltLo - ok
07:45:13.0910 1880 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:45:14.0003 1880 BrFiltUp - ok
07:45:14.0312 1880 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
07:45:14.0415 1880 BridgeMP - ok
07:45:14.0520 1880 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
07:45:14.0664 1880 Browser - ok
07:45:14.0824 1880 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
07:45:15.0048 1880 Brserid - ok
07:45:15.0099 1880 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
07:45:15.0184 1880 BrSerWdm - ok
07:45:15.0223 1880 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
07:45:15.0322 1880 BrUsbMdm - ok
07:45:15.0345 1880 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
07:45:15.0415 1880 BrUsbSer - ok
07:45:15.0425 1880 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
07:45:15.0540 1880 BTHMODEM - ok
07:45:15.0681 1880 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
07:45:15.0798 1880 bthserv - ok
07:45:18.0378 1880 [ 12E44CBF45E914B7124EBC0CBFDCCC10 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
07:45:18.0469 1880 CarboniteService - ok
07:45:18.0520 1880 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
07:45:18.0618 1880 cdfs - ok
07:45:18.0860 1880 [ 9EDD76D0800A022AE10B9243D0224E72 ] cdrbsdrv C:\Windows\system32\drivers\cdrbsdrv.sys
07:45:18.0884 1880 cdrbsdrv - ok
07:45:19.0103 1880 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
07:45:19.0175 1880 cdrom - ok
07:45:19.0313 1880 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
07:45:19.0425 1880 CertPropSvc - ok
07:45:19.0547 1880 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
07:45:19.0583 1880 circlass - ok
07:45:19.0739 1880 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
07:45:19.0793 1880 CLFS - ok
07:45:19.0861 1880 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:45:19.0972 1880 clr_optimization_v2.0.50727_32 - ok
07:45:20.0229 1880 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:45:20.0298 1880 clr_optimization_v2.0.50727_64 - ok
07:45:20.0708 1880 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:45:20.0904 1880 clr_optimization_v4.0.30319_32 - ok
07:45:21.0057 1880 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:45:21.0127 1880 clr_optimization_v4.0.30319_64 - ok
07:45:21.0282 1880 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
07:45:21.0385 1880 CmBatt - ok
07:45:21.0476 1880 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
07:45:21.0536 1880 cmdide - ok
07:45:21.0774 1880 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
07:45:21.0835 1880 CNG - ok
07:45:21.0873 1880 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
07:45:21.0917 1880 Compbatt - ok
07:45:22.0041 1880 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
07:45:22.0159 1880 CompositeBus - ok
07:45:22.0194 1880 COMSysApp - ok
07:45:22.0241 1880 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
07:45:22.0297 1880 crcdisk - ok
07:45:22.0482 1880 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
07:45:22.0642 1880 CryptSvc - ok
07:45:22.0814 1880 [ E6CE7188CC47AE5DAFDAF552D370C52F ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
07:45:22.0839 1880 dc3d - ok
07:45:23.0058 1880 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
07:45:23.0158 1880 DcomLaunch - ok
07:45:23.0283 1880 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
07:45:23.0375 1880 defragsvc - ok
07:45:23.0458 1880 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
07:45:23.0643 1880 DfsC - ok
07:45:23.0871 1880 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
07:45:24.0046 1880 Dhcp - ok
07:45:24.0111 1880 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
07:45:24.0198 1880 discache - ok
07:45:24.0255 1880 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
07:45:24.0298 1880 Disk - ok
07:45:24.0396 1880 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
07:45:24.0514 1880 Dnscache - ok
07:45:24.0619 1880 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
07:45:24.0746 1880 dot3svc - ok
07:45:24.0808 1880 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
07:45:24.0913 1880 DPS - ok
07:45:25.0048 1880 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
07:45:25.0159 1880 drmkaud - ok
07:45:25.0400 1880 [ 3EEF0B3489EDBF725564E17C77CABAFD ] dsNcAdpt C:\Windows\system32\DRIVERS\dsNcAdpt.sys
07:45:25.0539 1880 dsNcAdpt - ok
07:45:25.0799 1880 [ 824C188936FDC1B20FB32192B57CDEBA ] dsNcService C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
07:45:25.0828 1880 dsNcService - ok
07:45:26.0072 1880 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
07:45:26.0114 1880 DXGKrnl - ok
07:45:26.0170 1880 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
07:45:26.0294 1880 EapHost - ok
07:45:26.0915 1880 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
07:45:27.0109 1880 ebdrv - ok
07:45:27.0190 1880 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
07:45:27.0314 1880 EFS - ok
07:45:27.0716 1880 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
07:45:28.0017 1880 ehRecvr - ok
07:45:28.0066 1880 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
07:45:28.0288 1880 ehSched - ok
07:45:28.0486 1880 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
07:45:28.0566 1880 elxstor - ok
07:45:28.0626 1880 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
07:45:28.0720 1880 ErrDev - ok
07:45:29.0048 1880 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
07:45:29.0165 1880 EventSystem - ok
07:45:29.0223 1880 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
07:45:29.0338 1880 exfat - ok
07:45:29.0395 1880 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
07:45:29.0567 1880 fastfat - ok
07:45:29.0815 1880 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
07:45:29.0991 1880 Fax - ok
07:45:30.0060 1880 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
07:45:30.0124 1880 fdc - ok
07:45:30.0266 1880 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
07:45:30.0388 1880 fdPHost - ok
07:45:30.0454 1880 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
07:45:30.0594 1880 FDResPub - ok
07:45:30.0678 1880 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
07:45:30.0739 1880 FileInfo - ok
07:45:30.0760 1880 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
07:45:30.0945 1880 Filetrace - ok
07:45:30.0980 1880 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
07:45:31.0106 1880 flpydisk - ok
07:45:31.0305 1880 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
07:45:31.0332 1880 FltMgr - ok
07:45:31.0786 1880 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
07:45:31.0936 1880 FontCache - ok
07:45:32.0077 1880 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:45:32.0099 1880 FontCache3.0.0.0 - ok
07:45:32.0184 1880 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
07:45:32.0228 1880 FsDepends - ok
07:45:32.0330 1880 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
07:45:32.0377 1880 fssfltr - ok
07:45:32.0782 1880 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
07:45:32.0859 1880 fsssvc - ok
07:45:32.0890 1880 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
07:45:32.0912 1880 Fs_Rec - ok
07:45:33.0056 1880 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
07:45:33.0133 1880 fvevol - ok
07:45:33.0208 1880 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
07:45:33.0243 1880 gagp30kx - ok
07:45:33.0431 1880 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
07:45:33.0458 1880 GamesAppService - ok
07:45:33.0613 1880 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:45:33.0633 1880 GEARAspiWDM - ok
07:45:33.0824 1880 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] GoogleDesktopManager-051210-111108 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
07:45:33.0855 1880 GoogleDesktopManager-051210-111108 - ok
07:45:33.0952 1880 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
07:45:34.0058 1880 gpsvc - ok
07:45:34.0338 1880 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
07:45:34.0370 1880 Greg_Service - ok
07:45:34.0502 1880 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:45:34.0515 1880 gupdate - ok
07:45:34.0639 1880 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:45:34.0659 1880 gupdatem - ok
07:45:34.0696 1880 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
07:45:34.0812 1880 hcw85cir - ok
07:45:34.0924 1880 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:45:35.0048 1880 HdAudAddService - ok
07:45:35.0122 1880 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
07:45:35.0178 1880 HDAudBus - ok
07:45:35.0204 1880 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
07:45:35.0279 1880 HidBatt - ok
07:45:35.0306 1880 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
07:45:35.0385 1880 HidBth - ok
07:45:35.0412 1880 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
07:45:35.0482 1880 HidIr - ok
07:45:35.0538 1880 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
07:45:35.0586 1880 hidserv - ok
07:45:35.0715 1880 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
07:45:35.0744 1880 HidUsb - ok
07:45:35.0792 1880 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
07:45:35.0896 1880 hkmsvc - ok
07:45:35.0976 1880 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:45:36.0124 1880 HomeGroupListener - ok
07:45:36.0177 1880 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:45:36.0234 1880 HomeGroupProvider - ok
07:45:36.0316 1880 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
07:45:36.0359 1880 HpSAMD - ok
07:45:36.0569 1880 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
07:45:36.0634 1880 HTTP - ok
07:45:36.0655 1880 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
07:45:36.0675 1880 hwpolicy - ok
07:45:36.0750 1880 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
07:45:36.0785 1880 i8042prt - ok
07:45:36.0962 1880 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
07:45:37.0033 1880 iaStorV - ok
07:45:37.0446 1880 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
07:45:37.0527 1880 IDriverT ( UnsignedFile.Multi.Generic ) - warning
07:45:37.0527 1880 IDriverT - detected UnsignedFile.Multi.Generic (1)
07:45:37.0667 1880 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:45:37.0745 1880 idsvc - ok
07:45:37.0826 1880 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
07:45:37.0864 1880 iirsp - ok
07:45:38.0113 1880 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
07:45:38.0182 1880 IKEEXT - ok
07:45:38.0377 1880 [ E80469090249F7D6D64BE772CFA8C4C1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
07:45:38.0423 1880 IntcAzAudAddService - ok
07:45:38.0459 1880 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
07:45:38.0495 1880 intelide - ok
07:45:38.0577 1880 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
07:45:38.0649 1880 intelppm - ok
07:45:38.0692 1880 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
07:45:38.0805 1880 IPBusEnum - ok
07:45:38.0863 1880 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:45:38.0984 1880 IpFilterDriver - ok
07:45:39.0109 1880 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
07:45:39.0188 1880 iphlpsvc - ok
07:45:39.0232 1880 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
07:45:39.0281 1880 IPMIDRV - ok
07:45:39.0364 1880 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
07:45:39.0439 1880 IPNAT - ok
07:45:39.0644 1880 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
07:45:39.0675 1880 iPod Service - ok
07:45:39.0730 1880 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
07:45:40.0025 1880 IRENUM - ok
07:45:40.0078 1880 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
07:45:40.0126 1880 isapnp - ok
07:45:40.0215 1880 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
07:45:40.0264 1880 iScsiPrt - ok
07:45:40.0357 1880 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
07:45:40.0382 1880 itecir - ok
07:45:40.0449 1880 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
07:45:40.0476 1880 kbdclass - ok
07:45:40.0550 1880 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
07:45:40.0629 1880 kbdhid - ok
07:45:40.0647 1880 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
07:45:40.0667 1880 KeyIso - ok
07:45:40.0793 1880 [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER C:\Windows\system32\DRIVERS\KMWDFILTER.sys
07:45:40.0835 1880 KMWDFILTER - ok
07:45:40.0897 1880 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
07:45:40.0927 1880 KSecDD - ok
07:45:40.0971 1880 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
07:45:41.0039 1880 KSecPkg - ok
07:45:41.0115 1880 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
07:45:41.0208 1880 ksthunk - ok
07:45:41.0296 1880 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
07:45:41.0403 1880 KtmRm - ok
07:45:41.0536 1880 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
07:45:41.0636 1880 LanmanServer - ok
07:45:41.0713 1880 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:45:41.0816 1880 LanmanWorkstation - ok
07:45:41.0967 1880 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
07:45:42.0079 1880 lltdio - ok
07:45:42.0131 1880 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
07:45:42.0246 1880 lltdsvc - ok
07:45:42.0271 1880 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
07:45:42.0350 1880 lmhosts - ok
07:45:42.0597 1880 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC C:\Windows\system32\lpdsvc.dll
07:45:42.0719 1880 LPDSVC - ok
07:45:42.0761 1880 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
07:45:42.0808 1880 LSI_FC - ok
07:45:42.0862 1880 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
07:45:42.0885 1880 LSI_SAS - ok
07:45:42.0905 1880 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:45:42.0919 1880 LSI_SAS2 - ok
07:45:42.0933 1880 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:45:42.0951 1880 LSI_SCSI - ok
07:45:42.0967 1880 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
07:45:43.0068 1880 luafv - ok
07:45:43.0101 1880 [ 8FF2D95CBA49B405C5DE27039FF0BF35 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys
07:45:43.0108 1880 MBfilt - ok
07:45:43.0148 1880 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
07:45:43.0226 1880 Mcx2Svc - ok
07:45:43.0242 1880 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
07:45:43.0319 1880 megasas - ok
07:45:43.0409 1880 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
07:45:43.0449 1880 MegaSR - ok
07:45:43.0598 1880 Microsoft SharePoint Workspace Audit Service - ok
07:45:43.0654 1880 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
07:45:43.0739 1880 MMCSS - ok
07:45:43.0754 1880 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
07:45:43.0809 1880 Modem - ok
07:45:43.0850 1880 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
07:45:43.0927 1880 monitor - ok
07:45:44.0006 1880 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
07:45:44.0022 1880 mouclass - ok
07:45:44.0049 1880 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
07:45:44.0094 1880 mouhid - ok
07:45:44.0170 1880 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
07:45:44.0212 1880 mountmgr - ok
07:45:44.0349 1880 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:45:44.0386 1880 MozillaMaintenance - ok
07:45:44.0431 1880 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
07:45:44.0471 1880 mpio - ok
07:45:44.0513 1880 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
07:45:44.0586 1880 mpsdrv - ok
07:45:44.0692 1880 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
07:45:44.0794 1880 MpsSvc - ok
07:45:44.0866 1880 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
07:45:44.0949 1880 MRxDAV - ok
07:45:45.0014 1880 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
07:45:45.0100 1880 mrxsmb - ok
07:45:45.0161 1880 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:45:45.0220 1880 mrxsmb10 - ok
07:45:45.0245 1880 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:45:45.0289 1880 mrxsmb20 - ok
07:45:45.0338 1880 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
07:45:45.0361 1880 msahci - ok
07:45:45.0420 1880 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
07:45:45.0456 1880 msdsm - ok
07:45:45.0508 1880 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
07:45:45.0582 1880 MSDTC - ok
07:45:45.0683 1880 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
07:45:45.0788 1880 Msfs - ok
07:45:45.0849 1880 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
07:45:45.0928 1880 mshidkmdf - ok
07:45:45.0967 1880 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
07:45:46.0025 1880 msisadrv - ok
07:45:46.0077 1880 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
07:45:46.0168 1880 MSiSCSI - ok
07:45:46.0174 1880 msiserver - ok
07:45:46.0246 1880 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
07:45:46.0274 1880 MSKSSRV - ok
07:45:46.0317 1880 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
07:45:46.0395 1880 MSPCLOCK - ok
07:45:46.0401 1880 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
07:45:46.0429 1880 MSPQM - ok
07:45:46.0525 1880 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
07:45:46.0570 1880 MsRPC - ok
07:45:46.0608 1880 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
07:45:46.0616 1880 mssmbios - ok
07:45:46.0670 1880 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
07:45:46.0768 1880 MSTEE - ok
07:45:46.0774 1880 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
07:45:46.0807 1880 MTConfig - ok
07:45:46.0832 1880 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
07:45:46.0842 1880 Mup - ok
07:45:46.0925 1880 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
07:45:47.0055 1880 napagent - ok
07:45:47.0124 1880 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
07:45:47.0165 1880 NativeWifiP - ok
07:45:47.0368 1880 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
07:45:47.0404 1880 NDIS - ok
07:45:47.0472 1880 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
07:45:47.0603 1880 NdisCap - ok
07:45:47.0658 1880 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
07:45:47.0745 1880 NdisTapi - ok
07:45:47.0806 1880 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
07:45:47.0897 1880 Ndisuio - ok
07:45:47.0928 1880 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
07:45:48.0014 1880 NdisWan - ok
07:45:48.0087 1880 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
07:45:48.0158 1880 NDProxy - ok
07:45:48.0340 1880 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
07:45:48.0413 1880 Nero BackItUp Scheduler 4.0 - ok
07:45:48.0536 1880 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
07:45:48.0635 1880 NetBIOS - ok
07:45:48.0686 1880 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
07:45:48.0765 1880 NetBT - ok
07:45:48.0815 1880 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
07:45:48.0843 1880 Netlogon - ok
07:45:48.0888 1880 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
07:45:48.0987 1880 Netman - ok
07:45:49.0076 1880 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
07:45:49.0168 1880 netprofm - ok
07:45:49.0300 1880 [ 6B605ADC90A1DD4A9BD94FC23EF52884 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
07:45:49.0333 1880 netr28x - ok
07:45:49.0370 1880 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:45:49.0392 1880 NetTcpPortSharing - ok
07:45:49.0448 1880 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
07:45:49.0475 1880 nfrd960 - ok
07:45:49.0545 1880 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
07:45:49.0630 1880 NlaSvc - ok
07:45:49.0640 1880 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
07:45:49.0694 1880 Npfs - ok
07:45:49.0742 1880 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
07:45:49.0849 1880 nsi - ok
07:45:49.0870 1880 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
07:45:49.0898 1880 nsiproxy - ok
07:45:50.0134 1880 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
07:45:50.0182 1880 Ntfs - ok
07:45:50.0317 1880 [ 4C08A14D04E62963E96E0BB57BBC953B ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
07:45:50.0339 1880 NuidFltr - ok
07:45:50.0361 1880 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
07:45:50.0453 1880 Null - ok
07:45:50.0511 1880 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
07:45:50.0554 1880 nvraid - ok
07:45:50.0646 1880 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
07:45:50.0692 1880 nvstor - ok
07:45:50.0771 1880 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
07:45:50.0814 1880 nv_agp - ok
07:45:50.0855 1880 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
07:45:50.0885 1880 ohci1394 - ok
07:45:51.0121 1880 [ 3CE1890BDBEAC17F804C25036BBF5329 ] Olympus DVR Service C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe
07:45:51.0151 1880 Olympus DVR Service ( UnsignedFile.Multi.Generic ) - warning
07:45:51.0151 1880 Olympus DVR Service - detected UnsignedFile.Multi.Generic (1)
07:45:51.0280 1880 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:45:51.0309 1880 ose - ok
07:45:51.0698 1880 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:45:51.0791 1880 osppsvc - ok
07:45:51.0911 1880 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
07:45:51.0969 1880 p2pimsvc - ok
07:45:52.0120 1880 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
07:45:52.0180 1880 p2psvc - ok
07:45:52.0202 1880 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
07:45:52.0230 1880 Parport - ok
07:45:52.0294 1880 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
07:45:52.0323 1880 partmgr - ok
07:45:52.0330 1880 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
07:45:52.0365 1880 PcaSvc - ok
07:45:52.0463 1880 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
07:45:52.0486 1880 pci - ok
07:45:52.0536 1880 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
07:45:52.0546 1880 pciide - ok
07:45:52.0587 1880 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
07:45:52.0609 1880 pcmcia - ok
07:45:52.0620 1880 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
07:45:52.0631 1880 pcw - ok
07:45:52.0653 1880 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
07:45:52.0723 1880 PEAUTH - ok
07:45:52.0903 1880 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
07:45:52.0942 1880 PerfHost - ok
07:45:53.0100 1880 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
07:45:53.0177 1880 pla - ok
07:45:53.0221 1880 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
07:45:53.0277 1880 PlugPlay - ok
07:45:53.0302 1880 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
07:45:53.0327 1880 PNRPAutoReg - ok
07:45:53.0349 1880 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
07:45:53.0361 1880 PNRPsvc - ok
07:45:53.0436 1880 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
07:45:53.0459 1880 Point64 - ok
07:45:53.0555 1880 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
07:45:53.0615 1880 PolicyAgent - ok
07:45:53.0703 1880 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
07:45:53.0787 1880 Power - ok
07:45:53.0838 1880 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
07:45:53.0866 1880 PptpMiniport - ok
07:45:53.0899 1880 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
07:45:53.0928 1880 Processor - ok
07:45:53.0969 1880 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
07:45:54.0003 1880 ProfSvc - ok
07:45:54.0022 1880 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:45:54.0032 1880 ProtectedStorage - ok
07:45:54.0079 1880 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
07:45:54.0123 1880 Psched - ok
07:45:54.0175 1880 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
07:45:54.0184 1880 PSI_SVC_2 - ok
07:45:54.0605 1880 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
07:45:54.0648 1880 ql2300 - ok
07:45:54.0662 1880 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
07:45:54.0686 1880 ql40xx - ok
07:45:54.0719 1880 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
07:45:54.0781 1880 QWAVE - ok
07:45:54.0811 1880 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
07:45:54.0847 1880 QWAVEdrv - ok
07:45:54.0852 1880 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
07:45:54.0891 1880 RasAcd - ok
07:45:54.0937 1880 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
07:45:54.0996 1880 RasAgileVpn - ok
07:45:55.0049 1880 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
07:45:55.0090 1880 RasAuto - ok
07:45:55.0120 1880 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
07:45:55.0148 1880 Rasl2tp - ok
07:45:55.0292 1880 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
07:45:55.0351 1880 RasMan - ok
07:45:55.0362 1880 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
07:45:55.0405 1880 RasPppoe - ok
07:45:55.0426 1880 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
07:45:55.0498 1880 RasSstp - ok
07:45:55.0536 1880 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
07:45:55.0604 1880 rdbss - ok
07:45:55.0623 1880 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
07:45:55.0654 1880 rdpbus - ok
07:45:55.0658 1880 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
07:45:55.0690 1880 RDPCDD - ok
07:45:55.0707 1880 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
07:45:55.0735 1880 RDPENCDD - ok
07:45:55.0743 1880 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
07:45:55.0780 1880 RDPREFMP - ok
07:45:55.0840 1880 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
07:45:55.0886 1880 RdpVideoMiniport - ok
07:45:55.0922 1880 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
07:45:55.0990 1880 RDPWD - ok
07:45:56.0017 1880 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
07:45:56.0037 1880 rdyboost - ok
07:45:56.0068 1880 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
07:45:56.0098 1880 RemoteAccess - ok
07:45:56.0129 1880 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
07:45:56.0237 1880 RemoteRegistry - ok
07:45:56.0294 1880 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
07:45:56.0374 1880 RimUsb - ok
07:45:56.0440 1880 [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
07:45:56.0503 1880 RimVSerPort - ok
07:45:56.0531 1880 [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
07:45:56.0612 1880 ROOTMODEM - ok
07:45:56.0673 1880 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
07:45:56.0739 1880 RpcEptMapper - ok
07:45:56.0807 1880 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
07:45:56.0831 1880 RpcLocator - ok
07:45:56.0872 1880 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
07:45:56.0922 1880 RpcSs - ok
07:45:56.0927 1880 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
07:45:56.0956 1880 rspndr - ok
07:45:57.0012 1880 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
07:45:57.0043 1880 RSUSBSTOR - ok
07:45:57.0086 1880 [ 66F9F7161D147B6486A22FEB9425930D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
07:45:57.0102 1880 RTL8167 - ok
07:45:57.0131 1880 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
07:45:57.0144 1880 SamSs - ok
07:45:57.0238 1880 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
07:45:57.0296 1880 sbp2port - ok
07:45:57.0317 1880 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
07:45:57.0355 1880 SCardSvr - ok
07:45:57.0430 1880 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
07:45:57.0531 1880 scfilter - ok
07:45:57.0595 1880 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
07:45:57.0691 1880 Schedule - ok
07:45:57.0728 1880 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
07:45:57.0755 1880 SCPolicySvc - ok
07:45:57.0840 1880 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
07:45:57.0934 1880 SDRSVC - ok
07:45:57.0996 1880 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
07:45:58.0096 1880 secdrv - ok
07:45:58.0136 1880 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
07:45:58.0225 1880 seclogon - ok
07:45:58.0300 1880 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
07:45:58.0404 1880 SENS - ok
07:45:58.0445 1880 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
07:45:58.0520 1880 SensrSvc - ok
07:45:58.0531 1880 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
07:45:58.0563 1880 Serenum - ok
07:45:58.0586 1880 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
07:45:58.0612 1880 Serial - ok
07:45:58.0654 1880 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
07:45:58.0690 1880 sermouse - ok
07:45:58.0746 1880 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
07:45:58.0775 1880 SessionEnv - ok
07:45:58.0805 1880 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
07:45:58.0895 1880 sffdisk - ok
07:45:58.0912 1880 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
07:45:58.0953 1880 sffp_mmc - ok
07:45:58.0985 1880 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
07:45:59.0062 1880 sffp_sd - ok
07:45:59.0071 1880 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
07:45:59.0091 1880 sfloppy - ok
07:45:59.0204 1880 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
07:45:59.0312 1880 SharedAccess - ok
07:45:59.0430 1880 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:45:59.0547 1880 ShellHWDetection - ok
07:45:59.0592 1880 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:45:59.0602 1880 SiSRaid2 - ok
07:45:59.0608 1880 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
07:45:59.0618 1880 SiSRaid4 - ok
07:45:59.0636 1880 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
07:45:59.0675 1880 Smb - ok
07:45:59.0720 1880 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
07:45:59.0761 1880 SNMPTRAP - ok
07:45:59.0767 1880 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
07:45:59.0780 1880 spldr - ok
07:45:59.0839 1880 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
07:45:59.0912 1880 Spooler - ok
07:46:00.0643 1880 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
07:46:00.0741 1880 sppsvc - ok
07:46:00.0824 1880 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
07:46:00.0902 1880 sppuinotify - ok
07:46:00.0949 1880 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
07:46:01.0035 1880 srv - ok
07:46:01.0104 1880 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
07:46:01.0177 1880 srv2 - ok
07:46:01.0206 1880 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
07:46:01.0223 1880 srvnet - ok
07:46:01.0330 1880 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
07:46:01.0399 1880 SSDPSRV - ok
07:46:01.0427 1880 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
07:46:01.0464 1880 SstpSvc - ok
07:46:01.0488 1880 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
07:46:01.0497 1880 stexstor - ok
07:46:01.0603 1880 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
07:46:01.0664 1880 stisvc - ok
07:46:01.0698 1880 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
07:46:01.0710 1880 swenum - ok
07:46:01.0919 1880 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
07:46:01.0967 1880 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
07:46:01.0967 1880 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
07:46:02.0023 1880 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
07:46:02.0187 1880 swprv - ok
07:46:02.0685 1880 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
07:46:02.0758 1880 SysMain - ok
07:46:02.0795 1880 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:46:02.0857 1880 TabletInputService - ok
07:46:02.0947 1880 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
07:46:03.0032 1880 TapiSrv - ok
07:46:03.0059 1880 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
07:46:03.0089 1880 TBS - ok
07:46:03.0542 1880 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
07:46:03.0598 1880 Tcpip - ok
07:46:03.0627 1880 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
07:46:03.0660 1880 TCPIP6 - ok
07:46:03.0698 1880 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
07:46:03.0707 1880 tcpipreg - ok
07:46:03.0742 1880 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
07:46:03.0815 1880 TDPIPE - ok
07:46:03.0848 1880 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
07:46:03.0863 1880 TDTCP - ok
07:46:03.0912 1880 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
07:46:03.0976 1880 tdx - ok
07:46:04.0627 1880 [ 2BBB318EA9F34FDC508CEA4AAB98D770 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
07:46:04.0678 1880 TeamViewer7 - ok
07:46:04.0738 1880 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
07:46:04.0767 1880 TermDD - ok
07:46:04.0925 1880 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
07:46:05.0022 1880 TermService - ok
07:46:05.0058 1880 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
07:46:05.0107 1880 Themes - ok
07:46:05.0153 1880 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
07:46:05.0193 1880 THREADORDER - ok
07:46:05.0242 1880 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
07:46:05.0328 1880 TrkWks - ok
07:46:05.0383 1880 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:46:05.0475 1880 TrustedInstaller - ok
07:46:05.0532 1880 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
07:46:05.0624 1880 tssecsrv - ok
07:46:05.0675 1880 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
07:46:05.0737 1880 TsUsbFlt - ok
07:46:05.0796 1880 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
07:46:05.0850 1880 tunnel - ok
07:46:05.0980 1880 [ 711561440FDC396CB6E4C69C13375A38 ] tvnserver C:\Program Files (x86)\TightVNC\tvnserver.exe
07:46:06.0012 1880 tvnserver - ok
07:46:06.0040 1880 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
07:46:06.0050 1880 uagp35 - ok
07:46:06.0085 1880 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
07:46:06.0139 1880 udfs - ok
07:46:06.0182 1880 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
07:46:06.0194 1880 UI0Detect - ok
07:46:06.0247 1880 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
07:46:06.0258 1880 uliagpkx - ok
07:46:06.0310 1880 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
07:46:06.0337 1880 umbus - ok
07:46:06.0356 1880 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
07:46:06.0388 1880 UmPass - ok
07:46:06.0492 1880 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
07:46:06.0518 1880 Updater Service - ok
07:46:06.0634 1880 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
07:46:06.0751 1880 upnphost - ok
07:46:06.0824 1880 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
07:46:06.0905 1880 USBAAPL64 - ok
07:46:06.0959 1880 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
07:46:07.0024 1880 usbccgp - ok
07:46:07.0051 1880 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
07:46:07.0073 1880 usbcir - ok
07:46:07.0089 1880 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
07:46:07.0142 1880 usbehci - ok
07:46:07.0216 1880 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
07:46:07.0258 1880 usbhub - ok
07:46:07.0291 1880 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
07:46:07.0300 1880 usbohci - ok
07:46:07.0349 1880 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
07:46:07.0396 1880 usbprint - ok
07:46:07.0435 1880 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
07:46:07.0481 1880 usbscan - ok
07:46:07.0509 1880 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:46:07.0595 1880 USBSTOR - ok
07:46:07.0616 1880 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
07:46:07.0644 1880 usbuhci - ok
07:46:07.0703 1880 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
07:46:07.0741 1880 usbvideo - ok
07:46:07.0796 1880 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
07:46:07.0889 1880 UxSms - ok
07:46:07.0914 1880 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
07:46:07.0924 1880 VaultSvc - ok
07:46:07.0997 1880 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
07:46:08.0026 1880 vdrvroot - ok
07:46:08.0255 1880 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
07:46:08.0357 1880 vds - ok
07:46:08.0399 1880 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
07:46:08.0458 1880 vga - ok
07:46:08.0481 1880 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
07:46:08.0542 1880 VgaSave - ok
07:46:08.0587 1880 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
07:46:08.0620 1880 vhdmp - ok
07:46:08.0660 1880 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
07:46:08.0676 1880 viaide - ok
07:46:08.0726 1880 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
07:46:08.0743 1880 volmgr - ok
07:46:08.0814 1880 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
07:46:08.0839 1880 volmgrx - ok
07:46:08.0902 1880 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
07:46:08.0947 1880 volsnap - ok
07:46:08.0988 1880 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
07:46:09.0004 1880 vsmraid - ok
07:46:09.0331 1880 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
07:46:09.0468 1880 VSS - ok
07:46:09.0485 1880 vToolbarUpdater13.2.0 - ok
07:46:09.0491 1880 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
07:46:09.0509 1880 vwifibus - ok
07:46:09.0515 1880 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
07:46:09.0537 1880 vwififlt - ok
07:46:09.0558 1880 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
07:46:09.0572 1880 vwifimp - ok
07:46:09.0641 1880 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
07:46:09.0765 1880 W32Time - ok
07:46:09.0784 1880 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
07:46:09.0845 1880 WacomPen - ok
07:46:09.0939 1880 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
07:46:09.0991 1880 WANARP - ok
07:46:10.0012 1880 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
07:46:10.0039 1880 Wanarpv6 - ok
07:46:10.0130 1880 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
07:46:10.0205 1880 WatAdminSvc - ok
07:46:10.0511 1880 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
07:46:10.0619 1880 wbengine - ok
07:46:10.0693 1880 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
07:46:10.0767 1880 WbioSrvc - ok
07:46:10.0863 1880 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
07:46:10.0927 1880 wcncsvc - ok
07:46:10.0948 1880 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:46:11.0030 1880 WcsPlugInService - ok
07:46:11.0083 1880 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
07:46:11.0123 1880 Wd - ok
07:46:11.0268 1880 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
07:46:11.0331 1880 Wdf01000 - ok
07:46:11.0353 1880 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
07:46:11.0474 1880 WdiServiceHost - ok
07:46:11.0479 1880 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
07:46:11.0500 1880 WdiSystemHost - ok
07:46:11.0541 1880 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
07:46:11.0614 1880 WebClient - ok
07:46:11.0653 1880 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
07:46:11.0703 1880 Wecsvc - ok
07:46:11.0725 1880 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
07:46:11.0754 1880 wercplsupport - ok
07:46:11.0790 1880 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
07:46:11.0820 1880 WerSvc - ok
07:46:11.0865 1880 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
07:46:11.0918 1880 WfpLwf - ok
07:46:11.0953 1880 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
07:46:11.0963 1880 WIMMount - ok
07:46:11.0989 1880 WinDefend - ok
07:46:11.0994 1880 WinHttpAutoProxySvc - ok
07:46:12.0275 1880 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
07:46:12.0344 1880 Winmgmt - ok
07:46:12.0609 1880 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
07:46:12.0706 1880 WinRM - ok
07:46:12.0773 1880 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
07:46:12.0785 1880 WinUsb - ok
07:46:12.0814 1880 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
07:46:12.0836 1880 Wlansvc - ok
07:46:12.0911 1880 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
07:46:12.0934 1880 wlcrasvc - ok
07:46:13.0077 1880 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:46:13.0116 1880 wlidsvc - ok
07:46:13.0170 1880 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
07:46:13.0215 1880 WmiAcpi - ok
07:46:13.0298 1880 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
07:46:13.0361 1880 wmiApSrv - ok
07:46:13.0400 1880 WMPNetworkSvc - ok
07:46:13.0414 1880 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
07:46:13.0453 1880 WPCSvc - ok
07:46:13.0491 1880 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
07:46:13.0511 1880 WPDBusEnum - ok
07:46:13.0565 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
07:46:13.0578 1880 WsAudio_DeviceS(1) - ok
07:46:13.0616 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
07:46:13.0628 1880 WsAudio_DeviceS(2) - ok
07:46:13.0654 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
07:46:13.0666 1880 WsAudio_DeviceS(3) - ok
07:46:13.0707 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
07:46:13.0719 1880 WsAudio_DeviceS(4) - ok
07:46:13.0753 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
07:46:13.0766 1880 WsAudio_DeviceS(5) - ok
07:46:13.0814 1880 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
07:46:13.0855 1880 wscsvc - ok
07:46:13.0897 1880 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
07:46:13.0928 1880 WSDPrintDevice - ok
07:46:14.0000 1880 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
07:46:14.0042 1880 WSDScan - ok
07:46:14.0048 1880 WSearch - ok
07:46:14.0587 1880 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
07:46:14.0633 1880 wuauserv - ok
07:46:14.0681 1880 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
07:46:14.0782 1880 WudfPf - ok
07:46:14.0822 1880 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
07:46:14.0848 1880 WUDFRd - ok
07:46:14.0885 1880 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
07:46:14.0928 1880 wudfsvc - ok
07:46:15.0013 1880 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
07:46:15.0111 1880 WwanSvc - ok
07:46:15.0185 1880 ================ Scan global ===============================
07:46:15.0232 1880 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
07:46:15.0282 1880 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
07:46:15.0295 1880 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
07:46:15.0425 1880 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
07:46:15.0538 1880 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
07:46:15.0545 1880 [Global] - ok
07:46:15.0547 1880 ================ Scan MBR ==================================
07:46:15.0593 1880 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:46:19.0580 1880 \Device\Harddisk0\DR0 - ok
07:46:19.0581 1880 ================ Scan VBR ==================================
07:46:19.0612 1880 [ 56474B715FE83F8F865E3A557D102766 ] \Device\Harddisk0\DR0\Partition1
07:46:19.0615 1880 \Device\Harddisk0\DR0\Partition1 - ok
07:46:19.0616 1880 ================ Scan active images ========================
07:46:19.0623 1880 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
07:46:19.0623 1880 C:\Windows\System32\drivers\crashdmp.sys - ok
07:46:19.0630 1880 [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
07:46:19.0630 1880 C:\Windows\System32\drivers\Diskdump.sys - ok
07:46:19.0636 1880 [ 53D8D46D51D390ABDB54ECA623165CB7 ] C:\Windows\System32\drivers\amdsata.sys
07:46:19.0636 1880 C:\Windows\System32\drivers\amdsata.sys - ok
07:46:19.0643 1880 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
07:46:19.0643 1880 C:\Windows\System32\drivers\dumpfve.sys - ok
07:46:19.0649 1880 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
07:46:19.0649 1880 C:\Windows\System32\drivers\cdrom.sys - ok
07:46:19.0655 1880 [ 9EDD76D0800A022AE10B9243D0224E72 ] C:\Windows\System32\drivers\cdrbsdrv.sys
07:46:19.0655 1880 C:\Windows\System32\drivers\cdrbsdrv.sys - ok
07:46:19.0660 1880 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
07:46:19.0660 1880 C:\Windows\System32\drivers\null.sys - ok
07:46:19.0665 1880 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
07:46:19.0665 1880 C:\Windows\System32\drivers\beep.sys - ok
07:46:19.0671 1880 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
07:46:19.0671 1880 C:\Windows\System32\drivers\avgtpx64.sys - ok
07:46:19.0676 1880 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
07:46:19.0676 1880 C:\Windows\System32\drivers\videoprt.sys - ok
07:46:19.0681 1880 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
07:46:19.0681 1880 C:\Windows\System32\drivers\watchdog.sys - ok
07:46:19.0687 1880 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
07:46:19.0687 1880 C:\Windows\System32\drivers\vga.sys - ok
07:46:19.0692 1880 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
07:46:19.0692 1880 C:\Windows\System32\drivers\RDPCDD.sys - ok
07:46:19.0697 1880 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
07:46:19.0697 1880 C:\Windows\System32\drivers\RDPENCDD.sys - ok
07:46:19.0702 1880 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
07:46:19.0702 1880 C:\Windows\System32\drivers\RDPREFMP.sys - ok
07:46:19.0707 1880 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
07:46:19.0707 1880 C:\Windows\System32\drivers\msfs.sys - ok
07:46:19.0712 1880 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
07:46:19.0712 1880 C:\Windows\System32\drivers\npfs.sys - ok
07:46:19.0718 1880 [ 3D1FFAA3358CA0D8A298DEA8BECFC468 ] C:\Windows\System32\drivers\avgfwd6a.sys
07:46:19.0718 1880 C:\Windows\System32\drivers\avgfwd6a.sys - ok
07:46:19.0723 1880 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
07:46:19.0723 1880 C:\Windows\System32\drivers\tdi.sys - ok
07:46:19.0728 1880 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
07:46:19.0728 1880 C:\Windows\System32\drivers\tdx.sys - ok
07:46:19.0734 1880 [ 6E634525613D48A1D1657FB21F21F3B2 ] C:\Windows\System32\drivers\avgtdia.sys
07:46:19.0734 1880 C:\Windows\System32\drivers\avgtdia.sys - ok
07:46:19.0739 1880 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
07:46:19.0739 1880 C:\Windows\System32\drivers\netbt.sys - ok
07:46:19.0745 1880 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
07:46:19.0745 1880 C:\Windows\System32\drivers\afd.sys - ok
07:46:19.0750 1880 [ 42B7E1AA0C7EC54652A50585793F1885 ] C:\Windows\System32\drivers\WS2IFSL.SYS
07:46:19.0750 1880 C:\Windows\System32\drivers\WS2IFSL.SYS - ok
07:46:19.0755 1880 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
07:46:19.0755 1880 C:\Windows\System32\drivers\wfplwf.sys - ok
07:46:19.0760 1880 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
07:46:19.0760 1880 C:\Windows\System32\drivers\pacer.sys - ok
07:46:19.0765 1880 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
07:46:19.0765 1880 C:\Windows\System32\drivers\vwififlt.sys - ok
07:46:19.0771 1880 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
07:46:19.0771 1880 C:\Windows\System32\drivers\netbios.sys - ok
07:46:19.0776 1880 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
07:46:19.0776 1880 C:\Windows\System32\drivers\wanarp.sys - ok
07:46:19.0781 1880 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
07:46:19.0781 1880 C:\Windows\System32\drivers\termdd.sys - ok
07:46:19.0786 1880 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
07:46:19.0786 1880 C:\Windows\System32\drivers\rdbss.sys - ok
07:46:19.0792 1880 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
07:46:19.0792 1880 C:\Windows\System32\drivers\nsiproxy.sys - ok
07:46:19.0797 1880 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
07:46:19.0797 1880 C:\Windows\System32\drivers\mssmbios.sys - ok
07:46:19.0802 1880 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
07:46:19.0802 1880 C:\Windows\System32\drivers\discache.sys - ok
07:46:19.0808 1880 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
07:46:19.0808 1880 C:\Windows\System32\drivers\dfsc.sys - ok
07:46:19.0813 1880 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
07:46:19.0813 1880 C:\Windows\System32\drivers\blbdrive.sys - ok
07:46:19.0817 1880 [ 5989592A91A17587799792A81E1541D4 ] C:\Windows\System32\drivers\avgldx64.sys
07:46:19.0818 1880 C:\Windows\System32\drivers\avgldx64.sys - ok
07:46:19.0823 1880 [ 388056EBD5FE6718FE669078DBE37897 ] C:\Windows\System32\drivers\avgidsdrivera.sys
07:46:19.0823 1880 C:\Windows\System32\drivers\avgidsdrivera.sys - ok
07:46:19.0828 1880 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
07:46:19.0829 1880 C:\Windows\System32\drivers\tunnel.sys - ok
07:46:19.0834 1880 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
07:46:19.0834 1880 C:\Windows\System32\drivers\amdppm.sys - ok
07:46:19.0839 1880 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
07:46:19.0839 1880 C:\Windows\System32\ntdll.dll - ok
07:46:19.0842 1880 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
07:46:19.0842 1880 C:\Windows\System32\smss.exe - ok
07:46:19.0848 1880 [ 430D06D63952848E64CBBF23B5C1479E ] C:\Windows\System32\drivers\atikmpag.sys
07:46:19.0848 1880 C:\Windows\System32\drivers\atikmpag.sys - ok
07:46:19.0853 1880 [ 9673319070166E26660EBA4EDF316FA2 ] C:\Windows\System32\drivers\atipmdag.sys
07:46:19.0853 1880 C:\Windows\System32\drivers\atipmdag.sys - ok
07:46:19.0859 1880 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
07:46:19.0859 1880 C:\Windows\System32\drivers\dxgkrnl.sys - ok
07:46:19.0864 1880 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
07:46:19.0864 1880 C:\Windows\System32\drivers\dxgmms1.sys - ok
07:46:19.0869 1880 [ 66F9F7161D147B6486A22FEB9425930D ] C:\Windows\System32\drivers\Rt64win7.sys
07:46:19.0869 1880 C:\Windows\System32\drivers\Rt64win7.sys - ok
07:46:19.0874 1880 [ 6B605ADC90A1DD4A9BD94FC23EF52884 ] C:\Windows\System32\drivers\netr28x.sys
07:46:19.0874 1880 C:\Windows\System32\drivers\netr28x.sys - ok
07:46:19.0880 1880 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
07:46:19.0880 1880 C:\Windows\System32\drivers\vwifibus.sys - ok
07:46:19.0885 1880 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
07:46:19.0885 1880 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
07:46:19.0890 1880 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
07:46:19.0890 1880 C:\Windows\System32\drivers\usbport.sys - ok
07:46:19.0896 1880 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
07:46:19.0896 1880 C:\Windows\System32\drivers\usbohci.sys - ok
07:46:19.0901 1880 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
07:46:19.0901 1880 C:\Windows\System32\drivers\usbehci.sys - ok
07:46:19.0906 1880 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
07:46:19.0906 1880 C:\Windows\System32\drivers\hdaudbus.sys - ok
07:46:19.0912 1880 [ 8D990A44B4F2B68E2C56A3724EC3EB84 ] C:\Windows\System32\drivers\itecir.sys
07:46:19.0912 1880 C:\Windows\System32\drivers\itecir.sys - ok
07:46:19.0917 1880 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
07:46:19.0917 1880 C:\Windows\System32\drivers\wmiacpi.sys - ok
07:46:19.0923 1880 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
07:46:19.0923 1880 C:\Windows\System32\drivers\CompositeBus.sys - ok
07:46:19.0929 1880 [ 3EEF0B3489EDBF725564E17C77CABAFD ] C:\Windows\System32\drivers\dsNcAdpt.sys
07:46:19.0929 1880 C:\Windows\System32\drivers\dsNcAdpt.sys - ok
07:46:19.0934 1880 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
07:46:19.0934 1880 C:\Windows\System32\drivers\ks.sys - ok
07:46:19.0940 1880 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
07:46:19.0940 1880 C:\Windows\System32\drivers\drmk.sys - ok
07:46:19.0945 1880 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
07:46:19.0945 1880 C:\Windows\System32\drivers\portcls.sys - ok
07:46:19.0950 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys
07:46:19.0950 1880 C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys - ok
07:46:19.0955 1880 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
07:46:19.0955 1880 C:\Windows\System32\drivers\ksthunk.sys - ok
07:46:19.0961 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys
07:46:19.0961 1880 C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys - ok
07:46:19.0966 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys
07:46:19.0966 1880 C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys - ok
07:46:19.0972 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys
07:46:19.0972 1880 C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys - ok
07:46:19.0977 1880 [ AD12F5C7251BB8D575D560894E73CBBA ] C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys
07:46:19.0977 1880 C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys - ok
07:46:19.0982 1880 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
07:46:19.0982 1880 C:\Windows\System32\drivers\agilevpn.sys - ok
07:46:19.0987 1880 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
07:46:19.0987 1880 C:\Windows\System32\drivers\rasl2tp.sys - ok
07:46:19.0992 1880 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
07:46:19.0992 1880 C:\Windows\System32\drivers\ndistapi.sys - ok
07:46:19.0998 1880 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
07:46:19.0998 1880 C:\Windows\System32\drivers\ndiswan.sys - ok
07:46:20.0003 1880 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
07:46:20.0003 1880 C:\Windows\System32\drivers\raspppoe.sys - ok
07:46:20.0008 1880 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
07:46:20.0009 1880 C:\Windows\System32\drivers\raspptp.sys - ok
07:46:20.0014 1880 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
07:46:20.0014 1880 C:\Windows\System32\drivers\rassstp.sys - ok
07:46:20.0020 1880 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
07:46:20.0020 1880 C:\Windows\System32\drivers\kbdclass.sys - ok
07:46:20.0025 1880 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
07:46:20.0025 1880 C:\Windows\System32\drivers\mouclass.sys - ok
07:46:20.0030 1880 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
07:46:20.0030 1880 C:\Windows\System32\drivers\swenum.sys - ok
07:46:20.0035 1880 [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys
07:46:20.0036 1880 C:\Windows\System32\drivers\circlass.sys - ok
07:46:20.0040 1880 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
07:46:20.0041 1880 C:\Windows\System32\drivers\umbus.sys - ok
07:46:20.0046 1880 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
07:46:20.0046 1880 C:\Windows\System32\drivers\usbhub.sys - ok
07:46:20.0051 1880 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
07:46:20.0051 1880 C:\Windows\System32\drivers\ndproxy.sys - ok
07:46:20.0056 1880 [ E80469090249F7D6D64BE772CFA8C4C1 ] C:\Windows\System32\drivers\RTKVHD64.sys
07:46:20.0056 1880 C:\Windows\System32\drivers\RTKVHD64.sys - ok
07:46:20.0062 1880 [ 8FF2D95CBA49B405C5DE27039FF0BF35 ] C:\Windows\System32\drivers\MBfilt64.sys
07:46:20.0062 1880 C:\Windows\System32\drivers\MBfilt64.sys - ok
07:46:20.0067 1880 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
07:46:20.0067 1880 C:\Windows\System32\drivers\hidclass.sys - ok
07:46:20.0072 1880 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] C:\Windows\System32\drivers\hidir.sys
07:46:20.0072 1880 C:\Windows\System32\drivers\hidir.sys - ok
07:46:20.0078 1880 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
07:46:20.0078 1880 C:\Windows\System32\drivers\hidparse.sys - ok
07:46:20.0083 1880 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
07:46:20.0083 1880 C:\Windows\System32\drivers\kbdhid.sys - ok
07:46:20.0088 1880 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
07:46:20.0088 1880 C:\Windows\System32\drivers\mouhid.sys - ok
07:46:20.0094 1880 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
07:46:20.0094 1880 C:\Windows\System32\autochk.exe - ok
07:46:20.0097 1880 [ DC83C9F4130F447EAD187879708C8035 ] C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
07:46:20.0097 1880 C:\PROGRA~2\AVG\AVG2013\avgrsa.exe - ok
07:46:20.0103 1880 [ 19A3E3E587D4D369F6EA753DF02F33CD ] C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll
07:46:20.0103 1880 C:\Program Files (x86)\AVG\AVG2013\avgsysa.dll - ok
07:46:20.0107 1880 [ 70D1A44B0D05FEC737CC2C9662D6FB70 ] C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll
07:46:20.0107 1880 C:\Program Files (x86)\AVG\AVG2013\avgntopenssla.dll - ok
07:46:20.0113 1880 [ 4848422594D3B6A6BFF438AF0B6D030D ] C:\Program Files (x86)\AVG\AVG2013\avgloga.dll
07:46:20.0113 1880 C:\Program Files (x86)\AVG\AVG2013\avgloga.dll - ok
07:46:20.0118 1880 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
07:46:20.0118 1880 C:\Windows\System32\drivers\usbccgp.sys - ok
07:46:20.0124 1880 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
07:46:20.0124 1880 C:\Windows\System32\drivers\usbd.sys - ok
07:46:20.0130 1880 [ E6CE7188CC47AE5DAFDAF552D370C52F ] C:\Windows\System32\drivers\dc3d.sys
07:46:20.0130 1880 C:\Windows\System32\drivers\dc3d.sys - ok
07:46:20.0135 1880 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
07:46:20.0135 1880 C:\Windows\System32\drivers\hidusb.sys - ok
07:46:20.0139 1880 [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] C:\Windows\System32\drivers\point64.sys
07:46:20.0139 1880 C:\Windows\System32\drivers\point64.sys - ok
07:46:20.0145 1880 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
07:46:20.0145 1880 C:\Windows\System32\drivers\usbvideo.sys - ok
07:46:20.0150 1880 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] C:\Windows\System32\drivers\RtsUStor.sys
07:46:20.0150 1880 C:\Windows\System32\drivers\RtsUStor.sys - ok
07:46:20.0155 1880 [ 3972FF09D00347B843B4A2300B4E90CB ] C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll
07:46:20.0155 1880 C:\PROGRA~2\AVG\AVG2013\avgchjwa.dll - ok
07:46:20.0160 1880 [ 2C19A4BC4D3C714F890A58B4C942077F ] C:\PROGRA~2\AVG\AVG2013\avgclita.dll
07:46:20.0160 1880 C:\PROGRA~2\AVG\AVG2013\avgclita.dll - ok
07:46:20.0166 1880 [ B4CF2DAC753DD785FD92076B3CD36CED ] C:\PROGRA~2\AVG\AVG2013\avgcclia.dll
07:46:20.0166 1880 C:\PROGRA~2\AVG\AVG2013\avgcclia.dll - ok
07:46:20.0170 1880 [ CF433BC29D4089D264F24A1ED371941D ] C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
07:46:20.0170 1880 C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe - ok
07:46:20.0176 1880 [ 451DF5AEFA99C39ABB2B63F79C9FBC87 ] C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll
07:46:20.0176 1880 C:\Program Files (x86)\AVG\AVG2013\avgcorea.dll - ok
07:46:20.0181 1880 [ C297715529E28F7283EE621CCFDB1DDB ] C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll
07:46:20.0181 1880 C:\Program Files (x86)\AVG\AVG2013\avgcerta.dll - ok
07:46:20.0187 1880 [ 06F3F7E9E9B29C32F8702B541E4C2156 ] C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll
07:46:20.0187 1880 C:\Program Files (x86)\AVG\AVG2013\avgchcla.dll - ok
07:46:20.0192 1880 [ 275061F56FC648ED884C38A93EAB6FC6 ] C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll
07:46:20.0192 1880 C:\Program Files (x86)\AVG\AVG2013\avgcomma.dll - ok
07:46:20.0198 1880 [ AAD184F33A9A4A2AECF3CB5247651D01 ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll
07:46:20.0198 1880 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitea.dll - ok
07:46:20.0202 1880 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
07:46:20.0202 1880 C:\Windows\System32\setupapi.dll - ok
07:46:20.0208 1880 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
07:46:20.0208 1880 C:\Windows\System32\msctf.dll - ok
07:46:20.0213 1880 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
07:46:20.0213 1880 C:\Windows\System32\rpcrt4.dll - ok
07:46:20.0218 1880 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
07:46:20.0218 1880 C:\Windows\System32\sechost.dll - ok
07:46:20.0223 1880 [ E519FD2CE6D57062400537C95C3B17FD ] C:\Windows\System32\urlmon.dll
07:46:20.0223 1880 C:\Windows\System32\urlmon.dll - ok
07:46:20.0229 1880 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
07:46:20.0229 1880 C:\Windows\System32\nsi.dll - ok
07:46:20.0234 1880 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
07:46:20.0234 1880 C:\Windows\System32\psapi.dll - ok
07:46:20.0239 1880 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
07:46:20.0239 1880 C:\Windows\System32\usp10.dll - ok
07:46:20.0244 1880 [ A19DB004D954BBC9C4EC125711E1D1C2 ] C:\Windows\System32\wininet.dll
07:46:20.0244 1880 C:\Windows\System32\wininet.dll - ok
07:46:20.0250 1880 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
07:46:20.0250 1880 C:\Windows\System32\imagehlp.dll - ok
07:46:20.0255 1880 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
07:46:20.0255 1880 C:\Windows\System32\user32.dll - ok
07:46:20.0260 1880 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
07:46:20.0260 1880 C:\Windows\System32\imm32.dll - ok
07:46:20.0265 1880 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
07:46:20.0265 1880 C:\Windows\System32\lpk.dll - ok
07:46:20.0270 1880 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
07:46:20.0270 1880 C:\Windows\System32\oleaut32.dll - ok
07:46:20.0275 1880 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
07:46:20.0275 1880 C:\Windows\System32\advapi32.dll - ok
07:46:20.0282 1880 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
07:46:20.0282 1880 C:\Windows\System32\difxapi.dll - ok
07:46:20.0287 1880 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
07:46:20.0287 1880 C:\Windows\System32\ole32.dll - ok
07:46:20.0292 1880 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
07:46:20.0292 1880 C:\Windows\System32\msvcrt.dll - ok
07:46:20.0297 1880 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
07:46:20.0297 1880 C:\Windows\System32\ws2_32.dll - ok
07:46:20.0303 1880 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
07:46:20.0303 1880 C:\Windows\System32\shell32.dll - ok
07:46:20.0308 1880 [ D25968D163EC487A50C8C6A91D4134B4 ] C:\Windows\System32\iertutil.dll
07:46:20.0308 1880 C:\Windows\System32\iertutil.dll - ok
07:46:20.0314 1880 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
07:46:20.0314 1880 C:\Windows\System32\clbcatq.dll - ok
07:46:20.0319 1880 [ EAF41CFBA5281834CBC383C710AC7965 ] C:\Windows\System32\kernel32.dll
07:46:20.0319 1880 C:\Windows\System32\kernel32.dll - ok
07:46:20.0324 1880 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
07:46:20.0324 1880 C:\Windows\System32\gdi32.dll - ok
07:46:20.0330 1880 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
07:46:20.0330 1880 C:\Windows\System32\comdlg32.dll - ok
07:46:20.0335 1880 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
07:46:20.0335 1880 C:\Windows\System32\normaliz.dll - ok
07:46:20.0340 1880 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
07:46:20.0340 1880 C:\Windows\System32\shlwapi.dll - ok
07:46:20.0345 1880 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
07:46:20.0345 1880 C:\Windows\System32\Wldap32.dll - ok
07:46:20.0349 1880 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
07:46:20.0349 1880 C:\Windows\System32\cfgmgr32.dll - ok
07:46:20.0354 1880 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
07:46:20.0354 1880 C:\Windows\System32\devobj.dll - ok
07:46:20.0359 1880 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
07:46:20.0359 1880 C:\Windows\System32\comctl32.dll - ok
07:46:20.0366 1880 [ CF0997050DB2B359D7F4103092296A1B ] C:\Windows\System32\KernelBase.dll
07:46:20.0366 1880 C:\Windows\System32\KernelBase.dll - ok
07:46:20.0371 1880 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
07:46:20.0371 1880 C:\Windows\System32\wintrust.dll - ok
07:46:20.0376 1880 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
07:46:20.0376 1880 C:\Windows\System32\crypt32.dll - ok
07:46:20.0383 1880 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
07:46:20.0383 1880 C:\Windows\System32\msasn1.dll - ok
07:46:20.0388 1880 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
07:46:20.0388 1880 C:\Windows\SysWOW64\normaliz.dll - ok
07:46:20.0393 1880 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
07:46:20.0393 1880 C:\Windows\System32\drivers\dxapi.sys - ok
07:46:20.0399 1880 [ 34B419EDEAC6F12B34908DE3758F98C9 ] C:\Windows\System32\win32k.sys
07:46:20.0399 1880 C:\Windows\System32\win32k.sys - ok
07:46:20.0404 1880 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
07:46:20.0404 1880 C:\Windows\System32\csrss.exe - ok
07:46:20.0409 1880 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
07:46:20.0409 1880 C:\Windows\System32\basesrv.dll - ok
07:46:20.0415 1880 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
07:46:20.0415 1880 C:\Windows\System32\csrsrv.dll - ok
07:46:20.0424 1880 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\System32\winsrv.dll
07:46:20.0424 1880 C:\Windows\System32\winsrv.dll - ok
07:46:20.0427 1880 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
07:46:20.0427 1880 C:\Windows\System32\drivers\monitor.sys - ok
07:46:20.0433 1880 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
07:46:20.0433 1880 C:\Windows\System32\tsddd.dll - ok
07:46:20.0438 1880 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
07:46:20.0439 1880 C:\Windows\System32\profapi.dll - ok
07:46:20.0444 1880 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
07:46:20.0444 1880 C:\Windows\System32\sxssrv.dll - ok
07:46:20.0450 1880 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
07:46:20.0450 1880 C:\Windows\System32\wininit.exe - ok
07:46:20.0455 1880 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
07:46:20.0455 1880 C:\Windows\System32\RpcRtRemote.dll - ok
07:46:20.0461 1880 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
07:46:20.0461 1880 C:\Windows\System32\KBDUS.DLL - ok
07:46:20.0467 1880 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
07:46:20.0467 1880 C:\Windows\System32\cdd.dll - ok
07:46:20.0472 1880 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
07:46:20.0472 1880 C:\Windows\System32\WlS0WndH.dll - ok
07:46:20.0478 1880 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
07:46:20.0478 1880 C:\Windows\System32\sxs.dll - ok
07:46:20.0484 1880 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
07:46:20.0484 1880 C:\Windows\System32\cryptbase.dll - ok
07:46:20.0490 1880 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
07:46:20.0490 1880 C:\Windows\System32\apphelp.dll - ok
07:46:20.0495 1880 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
07:46:20.0495 1880 C:\Windows\System32\lsm.exe - ok
07:46:20.0501 1880 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
07:46:20.0502 1880 C:\Windows\System32\services.exe - ok
07:46:20.0507 1880 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
07:46:20.0507 1880 C:\Windows\System32\sspicli.dll - ok
07:46:20.0514 1880 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
07:46:20.0514 1880 C:\Windows\System32\sysntfy.dll - ok
07:46:20.0518 1880 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
07:46:20.0518 1880 C:\Windows\System32\wmsgapi.dll - ok
07:46:20.0524 1880 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
07:46:20.0525 1880 C:\Windows\System32\lsasrv.dll - ok
07:46:20.0530 1880 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
07:46:20.0530 1880 C:\Windows\System32\lsass.exe - ok
07:46:20.0535 1880 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
07:46:20.0535 1880 C:\Windows\System32\scesrv.dll - ok
07:46:20.0542 1880 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
07:46:20.0542 1880 C:\Windows\System32\scext.dll - ok
07:46:20.0546 1880 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
07:46:20.0546 1880 C:\Windows\System32\secur32.dll - ok
07:46:20.0552 1880 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
07:46:20.0552 1880 C:\Windows\System32\srvcli.dll - ok
07:46:20.0558 1880 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
07:46:20.0558 1880 C:\Windows\System32\sspisrv.dll - ok
07:46:20.0562 1880 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
07:46:20.0563 1880 C:\Windows\System32\cryptdll.dll - ok
07:46:20.0569 1880 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
07:46:20.0569 1880 C:\Windows\System32\samsrv.dll - ok
07:46:20.0574 1880 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
07:46:20.0574 1880 C:\Windows\System32\wevtapi.dll - ok
07:46:20.0582 1880 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
07:46:20.0582 1880 C:\Windows\System32\authz.dll - ok
07:46:20.0585 1880 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
07:46:20.0585 1880 C:\Windows\System32\bcrypt.dll - ok
07:46:20.0591 1880 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
07:46:20.0591 1880 C:\Windows\System32\cngaudit.dll - ok
07:46:20.0596 1880 [ 9B3718651DDE8A75FC4E8D6542A250D8 ] C:\Windows\System32\ncrypt.dll
07:46:20.0596 1880 C:\Windows\System32\ncrypt.dll - ok
07:46:20.0600 1880 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
07:46:20.0600 1880 C:\Windows\System32\msprivs.dll - ok
07:46:20.0605 1880 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
07:46:20.0605 1880 C:\Windows\System32\netjoin.dll - ok
07:46:20.0610 1880 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
07:46:20.0610 1880 C:\Windows\System32\cryptsp.dll - ok
07:46:20.0616 1880 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
07:46:20.0616 1880 C:\Windows\System32\kerberos.dll - ok
07:46:20.0621 1880 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
07:46:20.0621 1880 C:\Windows\System32\mswsock.dll - ok
07:46:20.0626 1880 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
07:46:20.0626 1880 C:\Windows\System32\negoexts.dll - ok
07:46:20.0631 1880 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
07:46:20.0631 1880 C:\Windows\System32\wship6.dll - ok
07:46:20.0637 1880 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
07:46:20.0637 1880 C:\Windows\System32\msv1_0.dll - ok
07:46:20.0642 1880 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
07:46:20.0642 1880 C:\Windows\System32\netlogon.dll - ok
07:46:20.0647 1880 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
07:46:20.0647 1880 C:\Windows\System32\winlogon.exe - ok
07:46:20.0654 1880 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
07:46:20.0654 1880 C:\Windows\System32\dnsapi.dll - ok
07:46:20.0658 1880 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
07:46:20.0658 1880 C:\Windows\System32\logoncli.dll - ok
07:46:20.0662 1880 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
07:46:20.0662 1880 C:\Windows\System32\schannel.dll - ok
07:46:20.0668 1880 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
07:46:20.0668 1880 C:\Windows\System32\wdigest.dll - ok
07:46:20.0673 1880 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
07:46:20.0673 1880 C:\Windows\System32\winsta.dll - ok
07:46:20.0679 1880 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
07:46:20.0679 1880 C:\Windows\System32\rsaenh.dll - ok
07:46:20.0684 1880 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
07:46:20.0684 1880 C:\Windows\System32\pku2u.dll - ok
07:46:20.0690 1880 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
07:46:20.0690 1880 C:\Windows\System32\TSpkg.dll - ok
07:46:20.0695 1880 [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
07:46:20.0695 1880 C:\Windows\System32\LIVESSP.DLL - ok
07:46:20.0701 1880 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
07:46:20.0701 1880 C:\Windows\System32\bcryptprimitives.dll - ok
07:46:20.0706 1880 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
07:46:20.0706 1880 C:\Windows\System32\credssp.dll - ok
07:46:20.0712 1880 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
07:46:20.0712 1880 C:\Windows\System32\efslsaext.dll - ok
07:46:20.0718 1880 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
07:46:20.0718 1880 C:\Windows\System32\scecli.dll - ok
07:46:20.0723 1880 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
07:46:20.0723 1880 C:\Windows\System32\ubpm.dll - ok
07:46:20.0728 1880 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
07:46:20.0728 1880 C:\Windows\System32\devrtl.dll - ok
07:46:20.0733 1880 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
07:46:20.0734 1880 C:\Windows\System32\SPInf.dll - ok
07:46:20.0738 1880 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
07:46:20.0738 1880 C:\Windows\System32\svchost.exe - ok
07:46:20.0744 1880 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
07:46:20.0744 1880 C:\Windows\System32\umpnpmgr.dll - ok
07:46:20.0749 1880 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
07:46:20.0749 1880 C:\Windows\System32\gpapi.dll - ok
07:46:20.0755 1880 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
07:46:20.0755 1880 C:\Windows\System32\userenv.dll - ok
07:46:20.0760 1880 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
07:46:20.0760 1880 C:\Windows\System32\pcwum.dll - ok
07:46:20.0766 1880 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
07:46:20.0766 1880 C:\Windows\System32\umpo.dll - ok
07:46:20.0771 1880 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
07:46:20.0771 1880 C:\Windows\System32\powrprof.dll - ok
07:46:20.0777 1880 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
07:46:20.0777 1880 C:\Windows\System32\drivers\luafv.sys - ok
07:46:20.0783 1880 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
07:46:20.0783 1880 C:\Windows\System32\drivers\WUDFPf.sys - ok
07:46:20.0788 1880 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
07:46:20.0788 1880 C:\Windows\System32\rpcss.dll - ok
07:46:20.0794 1880 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
07:46:20.0794 1880 C:\Windows\System32\RpcEpMap.dll - ok
07:46:20.0799 1880 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
07:46:20.0799 1880 C:\Windows\System32\WSHTCPIP.DLL - ok
07:46:20.0804 1880 [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] C:\Windows\System32\atiesrxx.exe
07:46:20.0804 1880 C:\Windows\System32\atiesrxx.exe - ok
07:46:20.0809 1880 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
07:46:20.0809 1880 C:\Windows\System32\wshqos.dll - ok
07:46:20.0814 1880 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
07:46:20.0814 1880 C:\Windows\System32\FirewallAPI.dll - ok
07:46:20.0820 1880 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
07:46:20.0820 1880 C:\Windows\System32\version.dll - ok
07:46:20.0826 1880 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
07:46:20.0826 1880 C:\Windows\System32\wtsapi32.dll - ok
07:46:20.0831 1880 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
07:46:20.0831 1880 C:\Windows\System32\LogonUI.exe - ok
07:46:20.0836 1880 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
07:46:20.0836 1880 C:\Windows\System32\authui.dll - ok
07:46:20.0842 1880 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
07:46:20.0842 1880 C:\Windows\System32\cryptui.dll - ok
07:46:20.0847 1880 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
07:46:20.0847 1880 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
07:46:20.0850 1880 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
07:46:20.0850 1880 C:\Windows\System32\propsys.dll - ok
07:46:20.0855 1880 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
07:46:20.0855 1880 C:\Windows\System32\samlib.dll - ok
07:46:20.0861 1880 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
07:46:20.0861 1880 C:\Windows\System32\shacct.dll - ok
07:46:20.0866 1880 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
07:46:20.0866 1880 C:\Windows\System32\wevtsvc.dll - ok
07:46:20.0871 1880 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
07:46:20.0872 1880 C:\Windows\System32\uxtheme.dll - ok
07:46:20.0877 1880 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
07:46:20.0877 1880 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
07:46:20.0883 1880 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
07:46:20.0883 1880 C:\Windows\System32\dui70.dll - ok
07:46:20.0888 1880 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
07:46:20.0888 1880 C:\Windows\System32\duser.dll - ok
07:46:20.0893 1880 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
07:46:20.0893 1880 C:\Windows\System32\audiosrv.dll - ok
07:46:20.0899 1880 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
07:46:20.0899 1880 C:\Windows\System32\avrt.dll - ok
07:46:20.0905 1880 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
07:46:20.0905 1880 C:\Windows\System32\MMDevAPI.dll - ok
07:46:20.0911 1880 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
07:46:20.0911 1880 C:\Windows\System32\dwmapi.dll - ok
07:46:20.0917 1880 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
07:46:20.0917 1880 C:\Windows\System32\hid.dll - ok
07:46:20.0922 1880 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
07:46:20.0922 1880 C:\Windows\System32\mmcss.dll - ok
07:46:20.0927 1880 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
07:46:20.0927 1880 C:\Windows\System32\SndVolSSO.dll - ok
07:46:20.0933 1880 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
07:46:20.0933 1880 C:\Windows\System32\xmllite.dll - ok
07:46:20.0938 1880 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
07:46:20.0938 1880 C:\Windows\System32\ntmarta.dll - ok
07:46:20.0944 1880 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
07:46:20.0944 1880 C:\Windows\System32\provsvc.dll - ok
07:46:20.0950 1880 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
07:46:20.0950 1880 C:\Windows\System32\WindowsCodecs.dll - ok
07:46:20.0956 1880 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
07:46:20.0956 1880 C:\Windows\System32\winbrand.dll - ok
07:46:20.0961 1880 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
07:46:20.0961 1880 C:\Windows\System32\adtschema.dll - ok
07:46:20.0968 1880 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
07:46:20.0968 1880 C:\Windows\System32\BioCredProv.dll - ok
07:46:20.0973 1880 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
07:46:20.0973 1880 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
07:46:20.0978 1880 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
07:46:20.0978 1880 C:\Windows\System32\VaultCredProvider.dll - ok
07:46:20.0983 1880 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
07:46:20.0984 1880 C:\Windows\System32\winbio.dll - ok
07:46:20.0989 1880 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
07:46:20.0989 1880 C:\Windows\System32\audiodg.exe - ok
07:46:20.0995 1880 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
07:46:20.0995 1880 C:\Windows\System32\certCredProvider.dll - ok
07:46:21.0001 1880 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
07:46:21.0001 1880 C:\Windows\System32\credui.dll - ok
07:46:21.0006 1880 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
07:46:21.0006 1880 C:\Windows\System32\netapi32.dll - ok
07:46:21.0011 1880 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
07:46:21.0012 1880 C:\Windows\System32\netutils.dll - ok
07:46:21.0015 1880 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
07:46:21.0015 1880 C:\Windows\System32\samcli.dll - ok
07:46:21.0021 1880 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
07:46:21.0021 1880 C:\Windows\System32\vaultcli.dll - ok
07:46:21.0026 1880 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
07:46:21.0026 1880 C:\Windows\System32\wkscli.dll - ok
07:46:21.0031 1880 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
07:46:21.0031 1880 C:\Windows\System32\wlansvc.dll - ok
07:46:21.0037 1880 [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
07:46:21.0037 1880 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
07:46:21.0042 1880 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
07:46:21.0042 1880 C:\Windows\System32\gpsvc.dll - ok
07:46:21.0047 1880 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
07:46:21.0048 1880 C:\Windows\System32\netprofm.dll - ok
07:46:21.0054 1880 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
07:46:21.0054 1880 C:\Windows\System32\profsvc.dll - ok
07:46:21.0059 1880 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
07:46:21.0059 1880 C:\Windows\System32\atl.dll - ok
07:46:21.0065 1880 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
07:46:21.0065 1880 C:\Windows\System32\themeservice.dll - ok
07:46:21.0070 1880 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
07:46:21.0071 1880 C:\Windows\System32\dsrole.dll - ok
07:46:21.0076 1880 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
07:46:21.0076 1880 C:\Windows\System32\es.dll - ok
07:46:21.0081 1880 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
07:46:21.0081 1880 C:\Windows\System32\nlaapi.dll - ok
07:46:21.0087 1880 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
07:46:21.0087 1880 C:\Windows\System32\rasapi32.dll - ok
07:46:21.0092 1880 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
07:46:21.0092 1880 C:\Windows\System32\rasplap.dll - ok
07:46:21.0098 1880 [ 5D6C8E9179C317B7F47F1476A388054D ] C:\Windows\System32\dsNcSmartCardProv.dll
07:46:21.0098 1880 C:\Windows\System32\dsNcSmartCardProv.dll - ok
07:46:21.0101 1880 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
07:46:21.0101 1880 C:\Windows\System32\mprapi.dll - ok
07:46:21.0107 1880 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
07:46:21.0107 1880 C:\Windows\System32\rasdlg.dll - ok
07:46:21.0111 1880 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
07:46:21.0112 1880 C:\Windows\System32\rasman.dll - ok
07:46:21.0117 1880 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
07:46:21.0117 1880 C:\Windows\System32\rtutils.dll - ok
07:46:21.0123 1880 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
07:46:21.0123 1880 C:\Windows\System32\slc.dll - ok
07:46:21.0128 1880 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
07:46:21.0128 1880 C:\Windows\System32\WinSCard.dll - ok
07:46:21.0133 1880 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
07:46:21.0133 1880 C:\Windows\System32\Sens.dll - ok
07:46:21.0139 1880 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] C:\Windows\System32\TabSvc.dll
07:46:21.0139 1880 C:\Windows\System32\TabSvc.dll - ok
07:46:21.0144 1880 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
07:46:21.0144 1880 C:\Windows\System32\uxsms.dll - ok
07:46:21.0149 1880 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
07:46:21.0149 1880 C:\Windows\System32\WUDFPlatform.dll - ok
07:46:21.0154 1880 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
07:46:21.0154 1880 C:\Windows\System32\WUDFSvc.dll - ok
07:46:21.0159 1880 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
07:46:21.0160 1880 C:\Windows\System32\drivers\lltdio.sys - ok
07:46:21.0165 1880 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
07:46:21.0165 1880 C:\Windows\System32\drivers\nwifi.sys - ok
07:46:21.0171 1880 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
07:46:21.0171 1880 C:\Windows\System32\drivers\ndisuio.sys - ok
07:46:21.0177 1880 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
07:46:21.0177 1880 C:\Windows\System32\drivers\rspndr.sys - ok
07:46:21.0182 1880 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
07:46:21.0182 1880 C:\Windows\System32\nsisvc.dll - ok
07:46:21.0188 1880 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
07:46:21.0188 1880 C:\Windows\System32\keyiso.dll - ok
07:46:21.0194 1880 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
07:46:21.0194 1880 C:\Windows\System32\eapphost.dll - ok
07:46:21.0199 1880 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
07:46:21.0199 1880 C:\Windows\System32\eapsvc.dll - ok
07:46:21.0205 1880 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
07:46:21.0205 1880 C:\Windows\System32\dnsrslvr.dll - ok
07:46:21.0210 1880 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
07:46:21.0210 1880 C:\Windows\System32\umb.dll - ok
07:46:21.0215 1880 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
07:46:21.0216 1880 C:\Windows\System32\winnsi.dll - ok
07:46:21.0221 1880 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
07:46:21.0221 1880 C:\Windows\System32\wlanmsm.dll - ok
07:46:21.0227 1880 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
07:46:21.0227 1880 C:\Windows\System32\eappprxy.dll - ok
07:46:21.0232 1880 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
07:46:21.0232 1880 C:\Windows\System32\onex.dll - ok
07:46:21.0238 1880 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
07:46:21.0238 1880 C:\Windows\System32\wlansec.dll - ok
07:46:21.0243 1880 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
07:46:21.0243 1880 C:\Windows\System32\dhcpcsvc.dll - ok
07:46:21.0248 1880 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
07:46:21.0248 1880 C:\Windows\System32\FWPUCLNT.DLL - ok
07:46:21.0253 1880 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
07:46:21.0253 1880 C:\Windows\System32\winmm.dll - ok
07:46:21.0258 1880 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
07:46:21.0258 1880 C:\Windows\System32\comres.dll - ok
07:46:21.0263 1880 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
07:46:21.0263 1880 C:\Windows\System32\IPHLPAPI.DLL - ok
07:46:21.0269 1880 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
07:46:21.0269 1880 C:\Windows\System32\wdmaud.drv - ok
07:46:21.0275 1880 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
07:46:21.0275 1880 C:\Windows\System32\drivers\fltMgr.sys - ok
07:46:21.0280 1880 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
07:46:21.0280 1880 C:\Windows\System32\eappcfg.dll - ok
07:46:21.0285 1880 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
07:46:21.0285 1880 C:\Windows\System32\l2gpstore.dll - ok
07:46:21.0290 1880 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
07:46:21.0290 1880 C:\Windows\System32\PSHED.DLL - ok
07:46:21.0295 1880 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
07:46:21.0295 1880 C:\Windows\System32\wlanutil.dll - ok
07:46:21.0300 1880 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
07:46:21.0300 1880 C:\Windows\System32\wlgpclnt.dll - ok
07:46:21.0305 1880 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
07:46:21.0306 1880 C:\Windows\System32\msxml6.dll - ok
07:46:21.0311 1880 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
07:46:21.0311 1880 C:\Windows\System32\dnsext.dll - ok
07:46:21.0316 1880 [ 7F67E8778A16AB8E996B1C71AB8FE660 ] C:\Windows\System32\dsNcCredProv.dll
07:46:21.0316 1880 C:\Windows\System32\dsNcCredProv.dll - ok
07:46:21.0321 1880 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
07:46:21.0321 1880 C:\Windows\System32\ksuser.dll - ok
07:46:21.0326 1880 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
07:46:21.0326 1880 C:\Windows\System32\dhcpcsvc6.dll - ok
07:46:21.0331 1880 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
07:46:21.0332 1880 C:\Windows\System32\MPSSVC.dll - ok
07:46:21.0338 1880 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
07:46:21.0338 1880 C:\Windows\System32\AudioSes.dll - ok
07:46:21.0344 1880 [ 3CFC5F1870A85D28420EEA968B8D42AC ] C:\Windows\System32\atieclxx.exe
07:46:21.0344 1880 C:\Windows\System32\atieclxx.exe - ok
07:46:21.0349 1880 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
07:46:21.0349 1880 C:\Windows\System32\UXInit.dll - ok
07:46:21.0353 1880 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
07:46:21.0353 1880 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
07:46:21.0359 1880 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
07:46:21.0359 1880 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
07:46:21.0364 1880 [ 8495C787B6FB11ACACD39DDAAC859D2E ] C:\Windows\System32\atiadlxx.dll
07:46:21.0364 1880 C:\Windows\System32\atiadlxx.dll - ok
07:46:21.0370 1880 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
07:46:21.0370 1880 C:\Windows\System32\shsvcs.dll - ok
07:46:21.0375 1880 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
07:46:21.0375 1880 C:\Windows\System32\ktmw32.dll - ok
07:46:21.0381 1880 [ DF6737304C458AFB28AA214AEB7D7ECD ] C:\Windows\System32\Magnification.dll
07:46:21.0381 1880 C:\Windows\System32\Magnification.dll - ok
07:46:21.0386 1880 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
07:46:21.0386 1880 C:\Windows\System32\schedsvc.dll - ok
07:46:21.0392 1880 [ 02E20372D9D6D28E37BA9704EDC90B67 ] C:\Windows\System32\wisptis.exe
07:46:21.0392 1880 C:\Windows\System32\wisptis.exe - ok
07:46:21.0398 1880 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
07:46:21.0398 1880 C:\Windows\System32\d3d8thk.dll - ok
07:46:21.0404 1880 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
07:46:21.0405 1880 C:\Windows\System32\d3d9.dll - ok
07:46:21.0410 1880 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
07:46:21.0410 1880 C:\Windows\System32\oleacc.dll - ok
07:46:21.0416 1880 [ DAF3E300311D2B78174AE52B231981BD ] C:\Windows\System32\Tabbtn.dll
07:46:21.0416 1880 C:\Windows\System32\Tabbtn.dll - ok
07:46:21.0422 1880 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
07:46:21.0422 1880 C:\Windows\System32\fveapi.dll - ok
07:46:21.0427 1880 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
07:46:21.0427 1880 C:\Windows\System32\fvecerts.dll - ok
07:46:21.0432 1880 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
07:46:21.0432 1880 C:\Windows\System32\tbs.dll - ok
07:46:21.0438 1880 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
07:46:21.0438 1880 C:\Windows\System32\wiarpc.dll - ok
07:46:21.0443 1880 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
07:46:21.0444 1880 C:\Windows\System32\taskcomp.dll - ok
07:46:21.0449 1880 [ 708B094FD0A6C8D16CABC5F5806BE816 ] C:\Windows\System32\atimuixx.dll
07:46:21.0449 1880 C:\Windows\System32\atimuixx.dll - ok
07:46:21.0455 1880 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
07:46:21.0455 1880 C:\Windows\System32\msacm32.drv - ok
07:46:21.0460 1880 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
07:46:21.0460 1880 C:\Windows\System32\midimap.dll - ok
07:46:21.0466 1880 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
07:46:21.0466 1880 C:\Windows\System32\msacm32.dll - ok
07:46:21.0472 1880 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
07:46:21.0472 1880 C:\Windows\System32\AudioEng.dll - ok
07:46:21.0477 1880 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
07:46:21.0477 1880 C:\Windows\System32\AUDIOKSE.dll - ok
07:46:21.0483 1880 [ 04CFE870C30640C9A369E0FE8C654B98 ] C:\Windows\System32\MBWrp64.dll
07:46:21.0483 1880 C:\Windows\System32\MBWrp64.dll - ok
07:46:21.0488 1880 [ CD462769666DE02452B2FAEE172FD6D8 ] C:\Windows\System32\MBTHX64.dll
07:46:21.0488 1880 C:\Windows\System32\MBTHX64.dll - ok
07:46:21.0494 1880 [ 04364610411E9DA5BAB2179E2442277A ] C:\Windows\System32\RtkAPO64.dll
07:46:21.0494 1880 C:\Windows\System32\RtkAPO64.dll - ok
07:46:21.0499 1880 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
07:46:21.0499 1880 C:\Windows\System32\UIAutomationCore.dll - ok
07:46:21.0504 1880 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
07:46:21.0504 1880 C:\Windows\System32\netcfgx.dll - ok
07:46:21.0509 1880 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
07:46:21.0509 1880 C:\Windows\System32\WMALFXGFXDSP.dll - ok
07:46:21.0515 1880 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
07:46:21.0515 1880 C:\Windows\System32\drivers\vwifimp.sys - ok
07:46:21.0521 1880 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
07:46:21.0521 1880 C:\Windows\System32\mfplat.dll - ok
07:46:21.0526 1880 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
07:46:21.0526 1880 C:\Windows\System32\drivers\http.sys - ok
07:46:21.0531 1880 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
07:46:21.0531 1880 C:\Windows\System32\spoolsv.exe - ok
07:46:21.0537 1880 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
07:46:21.0537 1880 C:\Windows\System32\imageres.dll - ok
07:46:21.0542 1880 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
07:46:21.0542 1880 C:\Windows\System32\BFE.DLL - ok
07:46:21.0547 1880 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
07:46:21.0547 1880 C:\Windows\System32\drivers\bowser.sys - ok
07:46:21.0553 1880 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
07:46:21.0553 1880 C:\Windows\System32\drivers\mpsdrv.sys - ok
07:46:21.0560 1880 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
07:46:21.0560 1880 C:\Windows\System32\drivers\mrxsmb.sys - ok
07:46:21.0565 1880 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
07:46:21.0565 1880 C:\Windows\System32\drivers\mrxsmb10.sys - ok
07:46:21.0571 1880 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
07:46:21.0572 1880 C:\Windows\System32\drivers\mrxsmb20.sys - ok
07:46:21.0576 1880 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
07:46:21.0576 1880 C:\Windows\System32\wfapigp.dll - ok
07:46:21.0581 1880 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
07:46:21.0581 1880 C:\Windows\System32\wkssvc.dll - ok
07:46:21.0586 1880 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
07:46:21.0586 1880 C:\Windows\System32\mscms.dll - ok
07:46:21.0592 1880 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
07:46:21.0592 1880 C:\Windows\System32\pcasvc.dll - ok
07:46:21.0596 1880 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
07:46:21.0596 1880 C:\Windows\System32\snmptrap.exe - ok
07:46:21.0599 1880 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
07:46:21.0599 1880 C:\Windows\System32\lmhsvc.dll - ok
07:46:21.0605 1880 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
07:46:21.0605 1880 C:\Windows\System32\dhcpcore.dll - ok
07:46:21.0611 1880 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
07:46:21.0611 1880 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
07:46:21.0616 1880 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
07:46:21.0616 1880 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
07:46:21.0622 1880 [ B1EA9681502EE57F87DB71D726288A5B ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
07:46:21.0622 1880 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
07:46:21.0627 1880 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
07:46:21.0627 1880 C:\Windows\SysWOW64\ntdll.dll - ok
07:46:21.0632 1880 [ D29902687A6110FE637F87189C6A3FB5 ] C:\Windows\System32\wow64.dll
07:46:21.0632 1880 C:\Windows\System32\wow64.dll - ok
07:46:21.0637 1880 [ E9EEC159B08BFDD76FAD2C1C333223B3 ] C:\Windows\System32\wow64cpu.dll
07:46:21.0637 1880 C:\Windows\System32\wow64cpu.dll - ok
07:46:21.0643 1880 [ CFBE90EF20EE550F4A6B74CED16DAFCA ] C:\Windows\System32\wow64win.dll
07:46:21.0643 1880 C:\Windows\System32\wow64win.dll - ok
07:46:21.0648 1880 [ 9B98D47916EAD4F69EF51B56B0C2323C ] C:\Windows\SysWOW64\kernel32.dll
07:46:21.0648 1880 C:\Windows\SysWOW64\kernel32.dll - ok
07:46:21.0654 1880 [ 53BB811ED12D2C867B354390FABF9612 ] C:\Windows\SysWOW64\KernelBase.dll
07:46:21.0654 1880 C:\Windows\SysWOW64\KernelBase.dll - ok
07:46:21.0660 1880 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
07:46:21.0660 1880 C:\Windows\SysWOW64\gdi32.dll - ok
07:46:21.0665 1880 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
07:46:21.0665 1880 C:\Windows\SysWOW64\lpk.dll - ok
07:46:21.0670 1880 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
07:46:21.0670 1880 C:\Windows\SysWOW64\user32.dll - ok
07:46:21.0676 1880 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
07:46:21.0676 1880 C:\Windows\SysWOW64\usp10.dll - ok
07:46:21.0680 1880 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
07:46:21.0680 1880 C:\Windows\SysWOW64\advapi32.dll - ok
07:46:21.0686 1880 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
07:46:21.0686 1880 C:\Windows\SysWOW64\msvcrt.dll - ok
07:46:21.0691 1880 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
07:46:21.0691 1880 C:\Windows\SysWOW64\rpcrt4.dll - ok
07:46:21.0696 1880 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
07:46:21.0696 1880 C:\Windows\SysWOW64\sechost.dll - ok
07:46:21.0701 1880 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
07:46:21.0701 1880 C:\Windows\SysWOW64\sspicli.dll - ok
07:46:21.0706 1880 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
07:46:21.0706 1880 C:\Windows\SysWOW64\cryptbase.dll - ok
07:46:21.0712 1880 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
07:46:21.0712 1880 C:\Windows\SysWOW64\shell32.dll - ok
07:46:21.0718 1880 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] C:\Windows\System32\lpdsvc.dll
07:46:21.0718 1880 C:\Windows\System32\lpdsvc.dll - ok
07:46:21.0723 1880 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
07:46:21.0723 1880 C:\Windows\SysWOW64\ole32.dll - ok
07:46:21.0729 1880 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
07:46:21.0729 1880 C:\Windows\SysWOW64\oleaut32.dll - ok
07:46:21.0734 1880 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
07:46:21.0734 1880 C:\Windows\SysWOW64\shlwapi.dll - ok
07:46:21.0739 1880 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
07:46:21.0740 1880 C:\Windows\SysWOW64\crypt32.dll - ok
07:46:21.0745 1880 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
07:46:21.0745 1880 C:\Windows\SysWOW64\msasn1.dll - ok
07:46:21.0750 1880 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
07:46:21.0750 1880 C:\Windows\SysWOW64\wintrust.dll - ok
07:46:21.0756 1880 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
07:46:21.0756 1880 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
07:46:21.0761 1880 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
07:46:21.0761 1880 C:\Windows\SysWOW64\imm32.dll - ok
07:46:21.0766 1880 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
07:46:21.0766 1880 C:\Windows\SysWOW64\msctf.dll - ok
07:46:21.0771 1880 [ 38DABD323F34974CFB7C565EA1DB62A4 ] C:\PROGRA~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll
07:46:21.0771 1880 C:\PROGRA~2\Google\GOOGLE~3\GoogleDesktopNetwork3.dll - ok
07:46:21.0777 1880 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
07:46:21.0777 1880 C:\Windows\System32\hnetcfg.dll - ok
07:46:21.0781 1880 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
07:46:21.0781 1880 C:\Windows\SysWOW64\nsi.dll - ok
07:46:21.0786 1880 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
07:46:21.0786 1880 C:\Windows\SysWOW64\ws2_32.dll - ok
07:46:21.0792 1880 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
07:46:21.0792 1880 C:\Windows\SysWOW64\svchost.exe - ok
07:46:21.0798 1880 [ B9B98E08EC127900025F42462D3D0A66 ] C:\Program Files (x86)\Common Files\Akamai\netsession_win_ce5ba24.dll
07:46:21.0798 1880 C:\Program Files (x86)\Common Files\Akamai\netsession_win_ce5ba24.dll - ok
07:46:21.0803 1880 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
07:46:21.0803 1880 C:\Windows\SysWOW64\pdh.dll - ok
07:46:21.0809 1880 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
07:46:21.0809 1880 C:\Windows\SysWOW64\psapi.dll - ok
07:46:21.0815 1880 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
07:46:21.0815 1880 C:\Windows\SysWOW64\winhttp.dll - ok
07:46:21.0820 1880 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
07:46:21.0820 1880 C:\Windows\SysWOW64\profapi.dll - ok
07:46:21.0826 1880 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
07:46:21.0826 1880 C:\Windows\SysWOW64\userenv.dll - ok
07:46:21.0831 1880 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
07:46:21.0831 1880 C:\Windows\SysWOW64\webio.dll - ok
07:46:21.0837 1880 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
07:46:21.0837 1880 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
07:46:21.0843 1880 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
07:46:21.0843 1880 C:\Windows\SysWOW64\netapi32.dll - ok
07:46:21.0848 1880 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
07:46:21.0848 1880 C:\Windows\SysWOW64\netutils.dll - ok
07:46:21.0851 1880 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
07:46:21.0851 1880 C:\Windows\SysWOW64\srvcli.dll - ok
07:46:21.0857 1880 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
07:46:21.0857 1880 C:\Windows\SysWOW64\winnsi.dll - ok
07:46:21.0863 1880 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
07:46:21.0863 1880 C:\Windows\SysWOW64\wkscli.dll - ok
07:46:21.0868 1880 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
07:46:21.0868 1880 C:\Windows\SysWOW64\wtsapi32.dll - ok
07:46:21.0874 1880 [ 3178C47DB9F1615E5334029607BD3459 ] C:\Windows\SysWOW64\iertutil.dll
07:46:21.0874 1880 C:\Windows\SysWOW64\iertutil.dll - ok
07:46:21.0879 1880 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
07:46:21.0879 1880 C:\Windows\SysWOW64\logoncli.dll - ok
07:46:21.0885 1880 [ 9CB0D2A9A77D91D9614355EE9FF00519 ] C:\Windows\SysWOW64\wininet.dll
07:46:21.0885 1880 C:\Windows\SysWOW64\wininet.dll - ok
07:46:21.0891 1880 [ FC4EE980C3BD87D35816EC55007E00B5 ] C:\Windows\SysWOW64\urlmon.dll
07:46:21.0892 1880 C:\Windows\SysWOW64\urlmon.dll - ok
07:46:21.0897 1880 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:46:21.0897 1880 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
07:46:21.0903 1880 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
07:46:21.0903 1880 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
07:46:21.0910 1880 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
07:46:21.0910 1880 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
07:46:21.0915 1880 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
07:46:21.0915 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
07:46:21.0921 1880 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
07:46:21.0921 1880 C:\Windows\SysWOW64\version.dll - ok
07:46:21.0927 1880 [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
07:46:21.0927 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
07:46:21.0934 1880 [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
07:46:21.0934 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
07:46:21.0939 1880 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
07:46:21.0939 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
07:46:21.0946 1880 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
07:46:21.0946 1880 C:\Windows\System32\sstpsvc.dll - ok
07:46:21.0951 1880 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
07:46:21.0951 1880 C:\Windows\SysWOW64\wsock32.dll - ok
07:46:21.0957 1880 [ 26655CA3645C49DA4A79AC18FE84EE11 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
07:46:21.0957 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
07:46:21.0963 1880 [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
07:46:21.0963 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
07:46:21.0969 1880 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
07:46:21.0969 1880 C:\Windows\SysWOW64\winmm.dll - ok
07:46:21.0974 1880 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
07:46:21.0974 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
07:46:21.0981 1880 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
07:46:21.0981 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
07:46:21.0986 1880 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
07:46:21.0986 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
07:46:21.0993 1880 [ 24AA9776D6AB032071B61C88089AEA59 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
07:46:21.0993 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
07:46:21.0998 1880 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
07:46:21.0998 1880 C:\Windows\SysWOW64\credssp.dll - ok
07:46:22.0003 1880 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
07:46:22.0003 1880 C:\Windows\SysWOW64\cryptdll.dll - ok
07:46:22.0009 1880 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
07:46:22.0009 1880 C:\Windows\SysWOW64\cryptsp.dll - ok
07:46:22.0014 1880 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
07:46:22.0015 1880 C:\Windows\SysWOW64\msv1_0.dll - ok
07:46:22.0019 1880 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
07:46:22.0020 1880 C:\Windows\SysWOW64\secur32.dll - ok
07:46:22.0025 1880 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
07:46:22.0026 1880 C:\Windows\SysWOW64\security.dll - ok
07:46:22.0031 1880 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
07:46:22.0031 1880 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
07:46:22.0036 1880 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
07:46:22.0037 1880 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
07:46:22.0042 1880 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
07:46:22.0042 1880 C:\Windows\SysWOW64\winsta.dll - ok
07:46:22.0048 1880 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
07:46:22.0048 1880 C:\Windows\SysWOW64\mswsock.dll - ok
07:46:22.0053 1880 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
07:46:22.0053 1880 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
07:46:22.0060 1880 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
07:46:22.0060 1880 C:\Windows\SysWOW64\wship6.dll - ok
07:46:22.0066 1880 [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
07:46:22.0066 1880 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
07:46:22.0072 1880 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
07:46:22.0072 1880 C:\Windows\SysWOW64\dnsapi.dll - ok
07:46:22.0078 1880 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
07:46:22.0078 1880 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
07:46:22.0084 1880 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
07:46:22.0084 1880 C:\Windows\SysWOW64\setupapi.dll - ok
07:46:22.0089 1880 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
07:46:22.0089 1880 C:\Windows\SysWOW64\cfgmgr32.dll - ok
07:46:22.0095 1880 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
07:46:22.0095 1880 C:\Windows\SysWOW64\devobj.dll - ok
07:46:22.0100 1880 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
07:46:22.0100 1880 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
07:46:22.0106 1880 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
07:46:22.0106 1880 C:\Windows\SysWOW64\rasadhlp.dll - ok
07:46:22.0112 1880 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
07:46:22.0112 1880 C:\Windows\SysWOW64\dnssd.dll - ok
07:46:22.0118 1880 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
07:46:22.0118 1880 C:\Windows\SysWOW64\ntmarta.dll - ok
07:46:22.0124 1880 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
07:46:22.0124 1880 C:\Windows\SysWOW64\Wldap32.dll - ok
07:46:22.0129 1880 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
07:46:22.0129 1880 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
07:46:22.0135 1880 [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
07:46:22.0135 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
07:46:22.0141 1880 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
07:46:22.0141 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
07:46:22.0147 1880 [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
07:46:22.0147 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
07:46:22.0153 1880 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
07:46:22.0153 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
07:46:22.0158 1880 [ 733D86815BEB34E2982BC7F561C35AE3 ] C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
07:46:22.0158 1880 C:\Program Files (x86)\AVG\AVG2013\avgfws.exe - ok
07:46:22.0164 1880 [ 40D70FDA37369916B6078EC4DF4BE49F ] C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll
07:46:22.0164 1880 C:\Program Files (x86)\AVG\AVG2013\avgsysx.dll - ok
07:46:22.0169 1880 [ 9E151637F7376FEE2BC630809E40C12D ] C:\Program Files (x86)\AVG\AVG2013\avgfwcfg3dllx.dll
07:46:22.0169 1880 C:\Program Files (x86)\AVG\AVG2013\avgfwcfg3dllx.dll - ok
07:46:22.0175 1880 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
07:46:22.0175 1880 C:\Windows\SysWOW64\msvcr100.dll - ok
07:46:22.0181 1880 [ F820B93E4ABCCABD698A175FD5FC83FE ] C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll
07:46:22.0181 1880 C:\Program Files (x86)\AVG\AVG2013\avgntsqlitex.dll - ok
07:46:22.0186 1880 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
07:46:22.0186 1880 C:\Windows\SysWOW64\rasapi32.dll - ok
07:46:22.0192 1880 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
07:46:22.0192 1880 C:\Windows\SysWOW64\rasman.dll - ok
07:46:22.0198 1880 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
07:46:22.0198 1880 C:\Windows\SysWOW64\snmpapi.dll - ok
07:46:22.0203 1880 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
07:46:22.0203 1880 C:\Windows\SysWOW64\rsaenh.dll - ok
07:46:22.0210 1880 [ 42836D10270B1940F9A2FF77AE679537 ] C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll
07:46:22.0210 1880 C:\Program Files (x86)\AVG\AVG2013\avgntopensslx.dll - ok
07:46:22.0215 1880 [ 1C2E1FC9F8ED794CC191E92F27D1391C ] C:\Program Files (x86)\AVG\AVG2013\avglogx.dll
07:46:22.0215 1880 C:\Program Files (x86)\AVG\AVG2013\avglogx.dll - ok
07:46:22.0221 1880 [ 4AC74A462F3A0506B929F599B5E1B1FB ] C:\Windows\System32\atmfd.dll
07:46:22.0221 1880 C:\Windows\System32\atmfd.dll - ok
07:46:22.0227 1880 [ A6251155B7017D4B4A77A3531A8DA6D8 ] C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll
07:46:22.0227 1880 C:\Program Files (x86)\AVG\AVG2013\avgcommx.dll - ok
07:46:22.0232 1880 [ F59BEDB7C098DAE90DC5C9EB5296621A ] C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll
07:46:22.0232 1880 C:\Program Files (x86)\AVG\AVG2013\avgcfgx.dll - ok
07:46:22.0237 1880 [ 56C73C5BC1656656CAC38A23B4310466 ] C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
07:46:22.0237 1880 C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe - ok
07:46:22.0244 1880 [ 3977E4863FBA44B07B278A115074544A ] C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll
07:46:22.0244 1880 C:\Program Files (x86)\AVG\AVG2013\avgcslx.dll - ok
07:46:22.0249 1880 [ F036DB9CF05B3C21405403FF074A78D9 ] C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll
07:46:22.0249 1880 C:\Program Files (x86)\AVG\AVG2013\avgopensslx.dll - ok
07:46:22.0255 1880 [ 76FFA2433FEB42E78FB5421A50C8FBE3 ] C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll
07:46:22.0255 1880 C:\Program Files (x86)\AVG\AVG2013\avgclitx.dll - ok
07:46:22.0261 1880 [ 9F3CB28822DE5AFA691809102F8D640C ] C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll
07:46:22.0261 1880 C:\Program Files (x86)\AVG\AVG2013\avgcorex.dll - ok
07:46:22.0267 1880 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
07:46:22.0267 1880 C:\Windows\SysWOW64\msvcp100.dll - ok
07:46:22.0272 1880 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
07:46:22.0272 1880 C:\Windows\SysWOW64\rtutils.dll - ok
07:46:22.0278 1880 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
07:46:22.0278 1880 C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe - ok
07:46:22.0283 1880 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] C:\Windows\SysWOW64\bgsvcgen.exe
07:46:22.0283 1880 C:\Windows\SysWOW64\bgsvcgen.exe - ok
07:46:22.0288 1880 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
07:46:22.0288 1880 C:\Program Files\Bonjour\mDNSResponder.exe - ok
07:46:22.0293 1880 [ 12E44CBF45E914B7124EBC0CBFDCCC10 ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
07:46:22.0293 1880 C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe - ok
07:46:22.0299 1880 [ 95EFDCB44DD093EDAD447F1D21C8A3F7 ] C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll
07:46:22.0299 1880 C:\Program Files (x86)\AVG\AVG2013\avgcertx.dll - ok
07:46:22.0305 1880 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
07:46:22.0305 1880 C:\Windows\SysWOW64\clbcatq.dll - ok
07:46:22.0311 1880 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
07:46:22.0311 1880 C:\Windows\SysWOW64\hnetcfg.dll - ok
07:46:22.0316 1880 [ 6F19639188F792BBB234B2A3FCB0C8C9 ] C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll
07:46:22.0317 1880 C:\Program Files (x86)\AVG\AVG2013\avgchclx.dll - ok
07:46:22.0322 1880 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
07:46:22.0322 1880 C:\Windows\SysWOW64\atl.dll - ok
07:46:22.0329 1880 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
07:46:22.0329 1880 C:\Windows\SysWOW64\sfc.dll - ok
07:46:22.0334 1880 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
07:46:22.0334 1880 C:\Windows\SysWOW64\sfc_os.dll - ok
07:46:22.0339 1880 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
07:46:22.0339 1880 C:\Windows\SysWOW64\slc.dll - ok
07:46:22.0345 1880 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
07:46:22.0345 1880 C:\Windows\SysWOW64\gpapi.dll - ok
07:46:22.0350 1880 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
07:46:22.0350 1880 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
07:46:22.0353 1880 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
07:46:22.0353 1880 C:\Windows\System32\taskeng.exe - ok
07:46:22.0359 1880 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
07:46:22.0359 1880 C:\Windows\System32\dbghelp.dll - ok
07:46:22.0365 1880 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
07:46:22.0365 1880 C:\Windows\System32\msi.dll - ok
07:46:22.0370 1880 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
07:46:22.0370 1880 C:\Windows\System32\mpr.dll - ok
07:46:22.0375 1880 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
07:46:22.0375 1880 C:\Windows\System32\pdh.dll - ok
07:46:22.0381 1880 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
07:46:22.0381 1880 C:\Windows\System32\vssapi.dll - ok
07:46:22.0386 1880 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
07:46:22.0386 1880 C:\Windows\System32\vsstrace.dll - ok
07:46:22.0394 1880 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
07:46:22.0394 1880 C:\Windows\System32\TSChannel.dll - ok
07:46:22.0398 1880 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
07:46:22.0398 1880 C:\Windows\System32\dllhost.exe - ok
07:46:22.0403 1880 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
07:46:22.0403 1880 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
07:46:22.0409 1880 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
07:46:22.0409 1880 C:\Windows\System32\IDStore.dll - ok
07:46:22.0415 1880 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
07:46:22.0415 1880 C:\Windows\System32\taskhost.exe - ok
07:46:22.0422 1880 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
07:46:22.0422 1880 C:\Windows\System32\AtBroker.exe - ok
07:46:22.0428 1880 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
07:46:22.0428 1880 C:\Windows\System32\userinit.exe - ok
07:46:22.0434 1880 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
07:46:22.0434 1880 C:\Windows\System32\MsCtfMonitor.dll - ok
07:46:22.0439 1880 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
07:46:22.0439 1880 C:\Windows\System32\dwm.exe - ok
07:46:22.0444 1880 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
07:46:22.0445 1880 C:\Windows\System32\dwmcore.dll - ok
07:46:22.0450 1880 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
07:46:22.0450 1880 C:\Windows\System32\dwmredir.dll - ok
07:46:22.0455 1880 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
07:46:22.0455 1880 C:\Windows\System32\d3d10_1.dll - ok
07:46:22.0460 1880 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
07:46:22.0460 1880 C:\Windows\System32\d3d10_1core.dll - ok
07:46:22.0467 1880 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
07:46:22.0467 1880 C:\Windows\System32\dxgi.dll - ok
07:46:22.0472 1880 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
07:46:22.0472 1880 C:\Windows\System32\msutb.dll - ok
07:46:22.0477 1880 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
07:46:22.0477 1880 C:\Windows\explorer.exe - ok
07:46:22.0483 1880 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
07:46:22.0483 1880 C:\Windows\System32\ExplorerFrame.dll - ok
07:46:22.0488 1880 [ 759FA5BAF889505730E1A9565AC7B653 ] C:\Windows\System32\aticfx64.dll
07:46:22.0488 1880 C:\Windows\System32\aticfx64.dll - ok
07:46:22.0494 1880 [ 048CF41208831E695A6551259087F33C ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll
07:46:22.0494 1880 C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll - ok
07:46:22.0500 1880 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
07:46:22.0500 1880 C:\Windows\System32\PlaySndSrv.dll - ok
07:46:22.0505 1880 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
07:46:22.0505 1880 C:\Windows\System32\HotStartUserAgent.dll - ok
07:46:22.0510 1880 [ 86E4F8BCC544101B46628ACDF47412CC ] C:\Windows\System32\atiuxp64.dll
07:46:22.0511 1880 C:\Windows\System32\atiuxp64.dll - ok
07:46:22.0516 1880 [ 1EEF6ACBBE1D5DCD2EE545895DA87454 ] C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
07:46:22.0516 1880 C:\Users\Owner\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll - ok
07:46:22.0522 1880 [ D32F602CC8D1A64526AB4F669FAEA54D ] C:\Windows\System32\atidxx64.dll
07:46:22.0522 1880 C:\Windows\System32\atidxx64.dll - ok
07:46:22.0528 1880 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
07:46:22.0528 1880 C:\Windows\System32\msvcp60.dll - ok
07:46:22.0534 1880 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
07:46:22.0534 1880 C:\Windows\System32\EhStorShell.dll - ok
07:46:22.0539 1880 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
07:46:22.0539 1880 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
07:46:22.0544 1880 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
07:46:22.0544 1880 C:\Windows\System32\uDWM.dll - ok
07:46:22.0550 1880 [ 2DC0C4DE960A20BC2840D72E7B98A144 ] C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
07:46:22.0550 1880 C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe - ok
07:46:22.0555 1880 [ 2ABFB305022FA93E87273E2A21E4B30A ] C:\Windows\System32\TabbtnEx.dll
07:46:22.0555 1880 C:\Windows\System32\TabbtnEx.dll - ok
07:46:22.0561 1880 [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
07:46:22.0561 1880 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
07:46:22.0567 1880 [ 8F2AE8122F98E20549165F9D526E4430 ] C:\Program Files (x86)\AVG\AVG2013\avgwd.dll
07:46:22.0567 1880 C:\Program Files (x86)\AVG\AVG2013\avgwd.dll - ok
07:46:22.0572 1880 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
07:46:22.0572 1880 C:\Program Files\Bonjour\mdnsNSP.dll - ok
07:46:22.0578 1880 [ F2951A689BDEC25591E3F99D1EDFD721 ] C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
07:46:22.0578 1880 C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll - ok
07:46:22.0584 1880 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
07:46:22.0584 1880 C:\Windows\System32\dps.dll - ok
07:46:22.0589 1880 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
07:46:22.0589 1880 C:\Windows\System32\cryptsvc.dll - ok
07:46:22.0597 1880 [ 824C188936FDC1B20FB32192B57CDEBA ] C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
07:46:22.0597 1880 C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe - ok
07:46:22.0600 1880 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
07:46:22.0600 1880 C:\Windows\System32\rasadhlp.dll - ok
07:46:22.0605 1880 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
07:46:22.0605 1880 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
07:46:22.0608 1880 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
07:46:22.0608 1880 C:\Windows\System32\taskschd.dll - ok
07:46:22.0614 1880 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
07:46:22.0614 1880 C:\Windows\System32\cryptnet.dll - ok
07:46:22.0620 1880 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
07:46:22.0620 1880 C:\Windows\System32\localspl.dll - ok
07:46:22.0626 1880 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
07:46:22.0626 1880 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
07:46:22.0631 1880 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
07:46:22.0632 1880 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
07:46:22.0636 1880 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
07:46:22.0636 1880 C:\Windows\SysWOW64\dbghelp.dll - ok
07:46:22.0641 1880 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
07:46:22.0641 1880 C:\Windows\System32\msimg32.dll - ok
07:46:22.0647 1880 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
07:46:22.0647 1880 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
07:46:22.0652 1880 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
07:46:22.0652 1880 C:\Windows\System32\spoolss.dll - ok
07:46:22.0658 1880 [ 2DC64A3446C8C6E020E781456B46573D ] C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe
07:46:22.0658 1880 C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe - ok
07:46:22.0664 1880 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
07:46:22.0664 1880 C:\Windows\System32\winspool.drv - ok
07:46:22.0670 1880 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
07:46:22.0670 1880 C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
07:46:22.0675 1880 [ CE6616AF5A7B437A88F951B07B477D99 ] C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
07:46:22.0675 1880 C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll - ok
07:46:22.0681 1880 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
07:46:22.0681 1880 C:\Windows\SysWOW64\mfc42.dll - ok
07:46:22.0687 1880 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
07:46:22.0687 1880 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
07:46:22.0693 1880 [ 39108FC94EE1FEA6ED043CC8FD3F1BC0 ] C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll
07:46:22.0693 1880 C:\Program Files (x86)\AVG\AVG2013\avgsecapix.dll - ok
07:46:22.0699 1880 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
07:46:22.0699 1880 C:\Windows\System32\PrintIsolationProxy.dll - ok
07:46:22.0705 1880 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
07:46:22.0705 1880 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
07:46:22.0710 1880 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
07:46:22.0710 1880 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
07:46:22.0716 1880 [ 488256C0AFA4D9C1CB3084C2956288DF ] C:\Windows\System32\CNMLMAE.DLL
07:46:22.0717 1880 C:\Windows\System32\CNMLMAE.DLL - ok
07:46:22.0722 1880 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
07:46:22.0722 1880 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
07:46:22.0728 1880 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
07:46:22.0728 1880 C:\Windows\System32\msftedit.dll - ok
07:46:22.0733 1880 [ 2490423CB5B228E337F1E14E3F9B6310 ] C:\Windows\System32\CNMXLMAE.DLL
07:46:22.0733 1880 C:\Windows\System32\CNMXLMAE.DLL - ok
07:46:22.0739 1880 [ AFAFD74780A0BB4EBE76CDE10C9CCE43 ] C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
07:46:22.0739 1880 C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll - ok
07:46:22.0744 1880 [ 540F5216118AB5AA221DC37242A36CEF ] C:\Windows\System32\CNMLM7L.DLL
07:46:22.0744 1880 C:\Windows\System32\CNMLM7L.DLL - ok
07:46:22.0750 1880 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
07:46:22.0750 1880 C:\Windows\System32\efssvc.dll - ok
07:46:22.0755 1880 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
07:46:22.0755 1880 C:\Windows\System32\NapiNSP.dll - ok
07:46:22.0760 1880 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
07:46:22.0760 1880 C:\Windows\SysWOW64\imagehlp.dll - ok
07:46:22.0765 1880 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
07:46:22.0766 1880 C:\Windows\System32\efscore.dll - ok
07:46:22.0771 1880 [ A14F896D4E5314E4E8732F894661F03B ] C:\Windows\System32\CNMN6PPM.DLL
07:46:22.0771 1880 C:\Windows\System32\CNMN6PPM.DLL - ok
07:46:22.0776 1880 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
07:46:22.0776 1880 C:\Windows\System32\pnrpnsp.dll - ok
07:46:22.0782 1880 [ 816FD5A6F3C2F3D600900096632FC60E ] C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
07:46:22.0782 1880 C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe - ok
07:46:22.0787 1880 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
07:46:22.0787 1880 C:\Windows\SysWOW64\msi.dll - ok
07:46:22.0792 1880 [ 6DBF331B98006EF1BA5626B9C900F71A ] C:\Windows\System32\ddmon64x.dll
07:46:22.0792 1880 C:\Windows\System32\ddmon64x.dll - ok
07:46:22.0797 1880 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
07:46:22.0797 1880 C:\Windows\System32\efsutil.dll - ok
07:46:22.0803 1880 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
07:46:22.0803 1880 C:\Windows\System32\winrnr.dll - ok
07:46:22.0808 1880 [ 1DECC6EC725EA002C2C1AF73CD47C6FF ] C:\Windows\System32\lprmon.dll
07:46:22.0808 1880 C:\Windows\System32\lprmon.dll - ok
07:46:22.0814 1880 [ B90C159F334A30CB9ACE41917020B0D3 ] C:\Windows\System32\lprhelp.dll
07:46:22.0814 1880 C:\Windows\System32\lprhelp.dll - ok
07:46:22.0819 1880 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
07:46:22.0819 1880 C:\Windows\System32\FXSMON.dll - ok
07:46:22.0825 1880 [ 8BEA0348E53222D9D09FEDB6B074C554 ] C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll
07:46:22.0825 1880 C:\Program Files (x86)\AVG\AVG2013\avgxpl.dll - ok
07:46:22.0830 1880 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
07:46:22.0831 1880 C:\Windows\System32\tcpmon.dll - ok
07:46:22.0837 1880 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
07:46:22.0837 1880 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
07:46:22.0842 1880 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
07:46:22.0842 1880 C:\Windows\System32\snmpapi.dll - ok
07:46:22.0848 1880 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
07:46:22.0848 1880 C:\Windows\System32\wsnmp32.dll - ok
07:46:22.0853 1880 [ D56806ECFF5C590F54D02CBB9F2D857B ] C:\Program Files\Common Files\Microsoft Shared\ink\rtscom.dll
07:46:22.0853 1880 C:\Program Files\Common Files\Microsoft Shared\ink\rtscom.dll - ok
07:46:22.0857 1880 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
07:46:22.0857 1880 C:\Windows\System32\usbmon.dll - ok
07:46:22.0862 1880 [ 1E44158CFA78520343CE5C10CA2CD235 ] C:\Program Files\Common Files\Microsoft Shared\ink\mshwgst.dll
07:46:22.0862 1880 C:\Program Files\Common Files\Microsoft Shared\ink\mshwgst.dll - ok
07:46:22.0869 1880 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
07:46:22.0869 1880 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
07:46:22.0874 1880 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
07:46:22.0874 1880 C:\Windows\SysWOW64\cscapi.dll - ok
07:46:22.0879 1880 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
07:46:22.0879 1880 C:\Windows\SysWOW64\wevtapi.dll - ok
07:46:22.0884 1880 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
07:46:22.0884 1880 C:\Windows\System32\WSDMon.dll - ok
07:46:22.0890 1880 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
07:46:22.0890 1880 C:\Windows\System32\WSDApi.dll - ok
07:46:22.0895 1880 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
07:46:22.0895 1880 C:\Windows\System32\IKEEXT.DLL - ok
07:46:22.0902 1880 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
07:46:22.0902 1880 C:\Windows\System32\netman.dll - ok
07:46:22.0907 1880 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
07:46:22.0907 1880 C:\Windows\System32\nlasvc.dll - ok
07:46:22.0912 1880 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
07:46:22.0912 1880 C:\Windows\System32\aepic.dll - ok
07:46:22.0918 1880 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
07:46:22.0918 1880 C:\Windows\System32\ncsi.dll - ok
07:46:22.0923 1880 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
07:46:22.0923 1880 C:\Windows\System32\sfc.dll - ok
07:46:22.0930 1880 [ EE4309C3BEBB9CA54E5A84E412023E0F ] C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll
07:46:22.0930 1880 C:\Program Files (x86)\AVG\AVG2013\avgwdwsc.dll - ok
07:46:22.0934 1880 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
07:46:22.0934 1880 C:\Windows\System32\sfc_os.dll - ok
07:46:22.0939 1880 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
07:46:22.0939 1880 C:\Windows\System32\webservices.dll - ok
07:46:22.0944 1880 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
07:46:22.0944 1880 C:\Windows\System32\winhttp.dll - ok
07:46:22.0950 1880 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
07:46:22.0950 1880 C:\Windows\System32\drivers\PEAuth.sys - ok
07:46:22.0956 1880 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
07:46:22.0956 1880 C:\Windows\System32\netshell.dll - ok
07:46:22.0961 1880 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
07:46:22.0961 1880 C:\Windows\SysWOW64\wscapi.dll - ok
07:46:22.0967 1880 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
07:46:22.0967 1880 C:\Windows\SysWOW64\apphelp.dll - ok
07:46:22.0972 1880 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
07:46:22.0972 1880 C:\Windows\System32\vpnikeapi.dll - ok
07:46:22.0978 1880 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
07:46:22.0978 1880 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
07:46:22.0984 1880 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
07:46:22.0984 1880 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
07:46:22.0989 1880 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
07:46:22.0989 1880 C:\Windows\System32\webio.dll - ok
07:46:22.0995 1880 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
07:46:22.0995 1880 C:\Windows\SysWOW64\wbemcomn.dll - ok
07:46:23.0000 1880 [ 2FC6C98A23864B2E50E53B4848939EAF ] C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
07:46:23.0000 1880 C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe - ok
07:46:23.0006 1880 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
07:46:23.0006 1880 C:\Windows\System32\ssdpapi.dll - ok
07:46:23.0011 1880 [ 8622AE563E2AC2F8BF9FAFEE726FC7B8 ] C:\Program Files (x86)\AVG\AVG2013\avgsched.dll
07:46:23.0011 1880 C:\Program Files (x86)\AVG\AVG2013\avgsched.dll - ok
07:46:23.0017 1880 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
07:46:23.0017 1880 C:\Windows\System32\fundisc.dll - ok
07:46:23.0022 1880 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
07:46:23.0022 1880 C:\Windows\System32\fdPnp.dll - ok
07:46:23.0028 1880 [ 2C58EB7106AB5316127CAAC366B5EC29 ] C:\Program Files (x86)\AVG\AVG2013\winspamcatcher.dll
07:46:23.0028 1880 C:\Program Files (x86)\AVG\AVG2013\winspamcatcher.dll - ok
07:46:23.0032 1880 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
07:46:23.0033 1880 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
07:46:23.0038 1880 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
07:46:23.0038 1880 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
07:46:23.0044 1880 [ F036CFB275D0C55F4E45FBBF5F98B3C8 ] C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
07:46:23.0044 1880 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe - ok
07:46:23.0050 1880 [ FF9AFBD2864BBEA6A9E7F90F8C94F6B7 ] C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll
07:46:23.0050 1880 C:\Program Files (x86)\AVG\AVG2013\avgidpsdkx.dll - ok
07:46:23.0056 1880 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
07:46:23.0056 1880 C:\Windows\System32\aeevts.dll - ok
07:46:23.0061 1880 [ B5ED5424F3719BA248C6A1497DF2407C ] C:\Windows\System32\spool\prtprocs\x64\CNMPDAE.DLL
07:46:23.0061 1880 C:\Windows\System32\spool\prtprocs\x64\CNMPDAE.DLL - ok
07:46:23.0066 1880 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
07:46:23.0066 1880 C:\Windows\System32\cscapi.dll - ok
07:46:23.0072 1880 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
07:46:23.0072 1880 C:\Windows\SysWOW64\mstask.dll - ok
07:46:23.0078 1880 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
07:46:23.0079 1880 C:\Windows\SysWOW64\winspool.drv - ok
07:46:23.0085 1880 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
07:46:23.0085 1880 C:\Windows\System32\win32spl.dll - ok
07:46:23.0090 1880 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
07:46:23.0090 1880 C:\Windows\System32\IconCodecService.dll - ok
07:46:23.0095 1880 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
07:46:23.0095 1880 C:\Windows\SysWOW64\oleacc.dll - ok
07:46:23.0101 1880 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
07:46:23.0101 1880 C:\Windows\System32\msvcr100.dll - ok
07:46:23.0106 1880 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
07:46:23.0106 1880 C:\Windows\SysWOW64\netshell.dll - ok
07:46:23.0109 1880 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
07:46:23.0109 1880 C:\Windows\System32\drivers\secdrv.sys - ok
07:46:23.0115 1880 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
07:46:23.0115 1880 C:\Windows\System32\inetpp.dll - ok
07:46:23.0121 1880 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
07:46:23.0121 1880 C:\Windows\System32\seclogon.dll - ok
07:46:23.0126 1880 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
07:46:23.0126 1880 C:\Windows\SysWOW64\devrtl.dll - ok
07:46:23.0131 1880 [ DD2751B165C7DC4EC44E70C05D96523B ] C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll
07:46:23.0131 1880 C:\Program Files (x86)\AVG\AVG2013\avgcfga.dll - ok
07:46:23.0137 1880 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
07:46:23.0137 1880 C:\Windows\System32\drivers\srvnet.sys - ok
07:46:23.0141 1880 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
07:46:23.0141 1880 C:\Windows\System32\httpapi.dll - ok
07:46:23.0147 1880 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
07:46:23.0147 1880 C:\Windows\System32\tapisrv.dll - ok
07:46:23.0153 1880 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
07:46:23.0153 1880 C:\Windows\System32\wiaservc.dll - ok
07:46:23.0158 1880 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
07:46:23.0158 1880 C:\Windows\System32\drivers\tcpipreg.sys - ok
07:46:23.0163 1880 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
07:46:23.0163 1880 C:\Windows\System32\wiatrace.dll - ok
07:46:23.0168 1880 [ 2BBB318EA9F34FDC508CEA4AAB98D770 ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
07:46:23.0168 1880 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe - ok
07:46:23.0173 1880 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
07:46:23.0174 1880 C:\Windows\SysWOW64\nlaapi.dll - ok
07:46:23.0179 1880 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
07:46:23.0179 1880 C:\Windows\System32\dot3api.dll - ok
07:46:23.0185 1880 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
07:46:23.0185 1880 C:\Windows\System32\wlanhlp.dll - ok
07:46:23.0191 1880 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
07:46:23.0191 1880 C:\Windows\System32\wlanapi.dll - ok
07:46:23.0196 1880 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
07:46:23.0196 1880 C:\Windows\System32\wbem\wbemprox.dll - ok
07:46:23.0202 1880 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
07:46:23.0202 1880 C:\Windows\System32\wbemcomn.dll - ok
07:46:23.0207 1880 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
07:46:23.0207 1880 C:\Windows\SysWOW64\mpr.dll - ok
07:46:23.0212 1880 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
07:46:23.0212 1880 C:\Windows\SysWOW64\SensApi.dll - ok
07:46:23.0217 1880 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
07:46:23.0218 1880 C:\Windows\System32\trkwks.dll - ok
07:46:23.0223 1880 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
07:46:23.0223 1880 C:\Windows\SysWOW64\dwmapi.dll - ok
07:46:23.0228 1880 [ 711561440FDC396CB6E4C69C13375A38 ] C:\Program Files (x86)\TightVNC\tvnserver.exe
07:46:23.0228 1880 C:\Program Files (x86)\TightVNC\tvnserver.exe - ok
07:46:23.0234 1880 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
07:46:23.0234 1880 C:\Windows\SysWOW64\uxtheme.dll - ok
07:46:23.0239 1880 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
07:46:23.0239 1880 C:\Windows\System32\ntprint.dll - ok
07:46:23.0245 1880 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
07:46:23.0245 1880 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
07:46:23.0252 1880 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
07:46:23.0252 1880 C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe - ok
07:46:23.0257 1880 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
07:46:23.0257 1880 C:\Windows\SysWOW64\NapiNSP.dll - ok
07:46:23.0263 1880 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
07:46:23.0263 1880 C:\Windows\SysWOW64\pnrpnsp.dll - ok
07:46:23.0269 1880 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
07:46:23.0269 1880 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
07:46:23.0275 1880 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
07:46:23.0275 1880 C:\Windows\SysWOW64\winrnr.dll - ok
07:46:23.0280 1880 [ F3F571288CDE445881102E385BF3471F ] C:\Windows\SysWOW64\Magnification.dll
07:46:23.0280 1880 C:\Windows\SysWOW64\Magnification.dll - ok
07:46:23.0286 1880 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
07:46:23.0286 1880 C:\Windows\System32\wbem\WMIsvc.dll - ok
07:46:23.0292 1880 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
07:46:23.0292 1880 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
07:46:23.0297 1880 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
07:46:23.0297 1880 C:\Program Files\Windows Defender\MpSvc.dll - ok
07:46:23.0302 1880 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
07:46:23.0302 1880 C:\Windows\SysWOW64\d3d9.dll - ok
07:46:23.0308 1880 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
07:46:23.0308 1880 C:\Windows\System32\wbem\WinMgmtR.dll - ok
07:46:23.0313 1880 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
07:46:23.0313 1880 C:\Windows\System32\wbem\wbemcore.dll - ok
07:46:23.0318 1880 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
07:46:23.0318 1880 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
07:46:23.0324 1880 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
07:46:23.0324 1880 C:\Windows\System32\wbem\fastprox.dll - ok
07:46:23.0329 1880 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
07:46:23.0329 1880 C:\Program Files\Windows Defender\MpClient.dll - ok
07:46:23.0336 1880 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
07:46:23.0336 1880 C:\Windows\System32\ntdsapi.dll - ok
07:46:23.0341 1880 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
07:46:23.0341 1880 C:\Windows\System32\wbem\esscli.dll - ok
07:46:23.0347 1880 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
07:46:23.0347 1880 C:\Windows\SysWOW64\d3d8thk.dll - ok
07:46:23.0352 1880 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
07:46:23.0352 1880 C:\Windows\System32\SensApi.dll - ok
07:46:23.0360 1880 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
07:46:23.0360 1880 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
07:46:23.0366 1880 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
07:46:23.0366 1880 C:\Windows\System32\wer.dll - ok
07:46:23.0372 1880 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
07:46:23.0372 1880 C:\Windows\System32\wbem\wbemsvc.dll - ok
07:46:23.0377 1880 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
07:46:23.0377 1880 C:\Windows\System32\rasmans.dll - ok
07:46:23.0382 1880 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
07:46:23.0382 1880 C:\Windows\System32\drivers\srv2.sys - ok
07:46:23.0388 1880 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
07:46:23.0388 1880 C:\Windows\System32\iphlpsvc.dll - ok
07:46:23.0394 1880 [ 63DCDFFCBB7E41540F4D64CCED66536B ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
07:46:23.0394 1880 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
07:46:23.0399 1880 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
07:46:23.0399 1880 C:\Windows\System32\sqmapi.dll - ok
07:46:23.0405 1880 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
07:46:23.0405 1880 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
07:46:23.0410 1880 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
07:46:23.0410 1880 C:\Windows\System32\msxml3.dll - ok
07:46:23.0415 1880 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
07:46:23.0415 1880 C:\Windows\System32\wdscore.dll - ok
07:46:23.0422 1880 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
07:46:23.0422 1880 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
07:46:23.0427 1880 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
07:46:23.0427 1880 C:\Windows\System32\rastapi.dll - ok
07:46:23.0432 1880 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
07:46:23.0433 1880 C:\Windows\System32\drivers\srv.sys - ok
07:46:23.0438 1880 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
07:46:23.0438 1880 C:\Windows\System32\tapi32.dll - ok
07:46:23.0444 1880 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
07:46:23.0444 1880 C:\Windows\SysWOW64\ntdsapi.dll - ok
07:46:23.0450 1880 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
07:46:23.0450 1880 C:\Windows\System32\wbem\wmiutils.dll - ok
07:46:23.0456 1880 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
07:46:23.0456 1880 C:\Windows\System32\srvsvc.dll - ok
07:46:23.0461 1880 [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
07:46:23.0461 1880 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
07:46:23.0467 1880 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
07:46:23.0467 1880 C:\Windows\System32\browser.dll - ok
07:46:23.0473 1880 [ 859CFCE4A0F72916911BD9F6C6E84581 ] C:\Windows\SysWOW64\ncrypt.dll
07:46:23.0473 1880 C:\Windows\SysWOW64\ncrypt.dll - ok
07:46:23.0479 1880 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
07:46:23.0479 1880 C:\Windows\System32\netmsg.dll - ok
07:46:23.0484 1880 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
07:46:23.0484 1880 C:\Windows\SysWOW64\bcrypt.dll - ok
07:46:23.0491 1880 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
07:46:23.0491 1880 C:\Windows\System32\wbem\repdrvfs.dll - ok
07:46:23.0496 1880 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
07:46:23.0496 1880 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
07:46:23.0501 1880 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
07:46:23.0501 1880 C:\Windows\System32\nci.dll - ok
07:46:23.0507 1880 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
07:46:23.0507 1880 C:\Windows\System32\unimdm.tsp - ok
07:46:23.0513 1880 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
07:46:23.0513 1880 C:\Windows\System32\uniplat.dll - ok
07:46:23.0519 1880 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
07:46:23.0519 1880 C:\Windows\System32\kmddsp.tsp - ok
07:46:23.0525 1880 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
07:46:23.0525 1880 C:\Windows\System32\sscore.dll - ok
07:46:23.0530 1880 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
07:46:23.0530 1880 C:\Windows\System32\clusapi.dll - ok
07:46:23.0535 1880 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
07:46:23.0535 1880 C:\Windows\System32\ndptsp.tsp - ok
07:46:23.0541 1880 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
07:46:23.0541 1880 C:\Windows\System32\dssenh.dll - ok
07:46:23.0546 1880 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
07:46:23.0547 1880 C:\Windows\System32\hidphone.tsp - ok
07:46:23.0552 1880 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
07:46:23.0552 1880 C:\Windows\System32\resutils.dll - ok
07:46:23.0558 1880 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
07:46:23.0558 1880 C:\Windows\System32\rasppp.dll - ok
07:46:23.0566 1880 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
07:46:23.0566 1880 C:\Windows\System32\vpnike.dll - ok
07:46:23.0570 1880 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
07:46:23.0570 1880 C:\Windows\System32\raschap.dll - ok
07:46:23.0576 1880 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
07:46:23.0576 1880 C:\Windows\System32\ipnathlp.dll - ok
07:46:23.0581 1880 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
07:46:23.0581 1880 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
07:46:23.0586 1880 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
07:46:23.0586 1880 C:\Windows\System32\ncobjapi.dll - ok
07:46:23.0591 1880 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
07:46:23.0591 1880 C:\Windows\System32\wbem\wbemess.dll - ok
07:46:23.0596 1880 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] C:\Windows\System32\drivers\ipnat.sys
07:46:23.0596 1880 C:\Windows\System32\drivers\ipnat.sys - ok
07:46:23.0605 1880 [ 637FEFAEBE228336D83DC4B0774C80F1 ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
07:46:23.0605 1880 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe - ok
07:46:23.0608 1880 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
07:46:23.0608 1880 C:\Windows\SysWOW64\netprofm.dll - ok
07:46:23.0613 1880 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
07:46:23.0613 1880 C:\Windows\SysWOW64\avicap32.dll - ok
07:46:23.0618 1880 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
07:46:23.0618 1880 C:\Windows\SysWOW64\drprov.dll - ok
07:46:23.0624 1880 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
07:46:23.0624 1880 C:\Windows\SysWOW64\msvfw32.dll - ok
07:46:23.0629 1880 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
07:46:23.0629 1880 C:\Windows\SysWOW64\ntlanman.dll - ok
07:46:23.0634 1880 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
07:46:23.0634 1880 C:\Windows\SysWOW64\comdlg32.dll - ok
07:46:23.0639 1880 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
07:46:23.0639 1880 C:\Windows\SysWOW64\davclnt.dll - ok
07:46:23.0645 1880 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
07:46:23.0645 1880 C:\Windows\SysWOW64\msimg32.dll - ok
07:46:23.0651 1880 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
07:46:23.0651 1880 C:\Windows\SysWOW64\davhlpr.dll - ok
07:46:23.0658 1880 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
07:46:23.0658 1880 C:\Windows\SysWOW64\samcli.dll - ok
07:46:23.0661 1880 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
07:46:23.0661 1880 C:\Windows\System32\alg.exe - ok
07:46:23.0666 1880 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
07:46:23.0666 1880 C:\Windows\System32\wdi.dll - ok
07:46:23.0672 1880 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
07:46:23.0672 1880 C:\Windows\System32\appinfo.dll - ok
07:46:23.0677 1880 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
07:46:23.0677 1880 C:\Windows\System32\perftrack.dll - ok
07:46:23.0682 1880 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
07:46:23.0682 1880 C:\Windows\SysWOW64\browcli.dll - ok
07:46:23.0688 1880 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
07:46:23.0688 1880 C:\Windows\System32\wsock32.dll - ok
07:46:23.0693 1880 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
07:46:23.0693 1880 C:\Windows\System32\diagperf.dll - ok
07:46:23.0698 1880 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
07:46:23.0698 1880 C:\Windows\System32\wpdbusenum.dll - ok
07:46:23.0703 1880 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
07:46:23.0703 1880 C:\Windows\System32\hidserv.dll - ok
07:46:23.0708 1880 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
07:46:23.0708 1880 C:\Windows\SysWOW64\riched20.dll - ok
07:46:23.0713 1880 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
07:46:23.0713 1880 C:\Windows\System32\PortableDeviceApi.dll - ok
07:46:23.0718 1880 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
07:46:23.0718 1880 C:\Windows\System32\runonce.exe - ok
07:46:23.0724 1880 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
07:46:23.0724 1880 C:\Windows\System32\npmproxy.dll - ok
07:46:23.0729 1880 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
07:46:23.0729 1880 C:\Windows\SysWOW64\npmproxy.dll - ok
07:46:23.0734 1880 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
07:46:23.0734 1880 C:\Windows\SysWOW64\runonce.exe - ok
07:46:23.0739 1880 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
07:46:23.0739 1880 C:\Windows\System32\pnpts.dll - ok
07:46:23.0744 1880 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
07:46:23.0744 1880 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
07:46:23.0749 1880 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
07:46:23.0749 1880 C:\Windows\System32\aelupsvc.dll - ok
07:46:23.0755 1880 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
07:46:23.0755 1880 C:\Windows\System32\IPSECSVC.DLL - ok
07:46:23.0760 1880 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
07:46:23.0760 1880 C:\Windows\System32\radardt.dll - ok
07:46:23.0765 1880 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
07:46:23.0765 1880 C:\Windows\System32\Apphlpdm.dll - ok
07:46:23.0770 1880 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
07:46:23.0770 1880 C:\Windows\SysWOW64\propsys.dll - ok
07:46:23.0776 1880 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
07:46:23.0776 1880 C:\Windows\System32\ssdpsrv.dll - ok
07:46:23.0781 1880 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
07:46:23.0781 1880 C:\Windows\System32\wdiasqmmodule.dll - ok
07:46:23.0786 1880 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
07:46:23.0786 1880 C:\Windows\System32\FwRemoteSvr.dll - ok
07:46:23.0791 1880 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
07:46:23.0791 1880 C:\Windows\System32\upnphost.dll - ok
07:46:23.0796 1880 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
07:46:23.0796 1880 C:\Windows\System32\dimsjob.dll - ok
07:46:23.0801 1880 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
07:46:23.0801 1880 C:\Windows\System32\pautoenr.dll - ok
07:46:23.0807 1880 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
07:46:23.0807 1880 C:\Windows\System32\certcli.dll - ok
07:46:23.0812 1880 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
07:46:23.0812 1880 C:\Windows\System32\upnp.dll - ok
07:46:23.0817 1880 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
07:46:23.0817 1880 C:\Windows\System32\CertEnroll.dll - ok
07:46:23.0822 1880 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
07:46:23.0822 1880 C:\Windows\System32\ndiscapCfg.dll - ok
07:46:23.0827 1880 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
07:46:23.0827 1880 C:\Windows\System32\rascfg.dll - ok
07:46:23.0832 1880 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
07:46:23.0832 1880 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
07:46:23.0836 1880 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
07:46:23.0836 1880 C:\Windows\SysWOW64\FirewallAPI.dll - ok
07:46:23.0841 1880 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
07:46:23.0842 1880 C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL - ok
07:46:23.0846 1880 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
07:46:23.0846 1880 C:\Windows\System32\mprmsg.dll - ok
07:46:23.0851 1880 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
07:46:23.0851 1880 C:\Windows\System32\tcpipcfg.dll - ok
07:46:23.0857 1880 [ C1F12CFE2799CA36802F5E81EA4335B3 ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Resource_en.dll
07:46:23.0857 1880 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Resource_en.dll - ok
07:46:23.0862 1880 [ 3B19AC2EDA4CBE8F8A257F260BEC8633 ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Resource_de.dll
07:46:23.0862 1880 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Resource_de.dll - ok
07:46:23.0866 1880 [ 76B3A01D91477A7CC503D910B7F6EE55 ] C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_StaticRes.dll
07:46:23.0866 1880 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_StaticRes.dll - ok
07:46:23.0871 1880 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
07:46:23.0871 1880 C:\Windows\SysWOW64\mapi32.dll - ok
07:46:23.0877 1880 [ CF249D56BB0D4685DD6C4828B97B8307 ] C:\Program Files (x86)\TeamViewer\Version7\tv_w32.dll
07:46:23.0877 1880 C:\Program Files (x86)\TeamViewer\Version7\tv_w32.dll - ok
07:46:23.0882 1880 [ FCC8F25A5F5A4D6BD57D917DB7A00D78 ] C:\Windows\SysWOW64\crtdll.dll
07:46:23.0883 1880 C:\Windows\SysWOW64\crtdll.dll - ok
07:46:23.0888 1880 [ 684C5D48DD6A0CCED97C4FE983BCFE47 ] C:\Program Files (x86)\TeamViewer\Version7\tv_w32.exe
07:46:23.0888 1880 C:\Program Files (x86)\TeamViewer\Version7\tv_w32.exe - ok
07:46:23.0894 1880 [ 84C57F59DA45494C5A1C124BD294AA1F ] C:\Program Files (x86)\TeamViewer\Version7\tv_x64.exe
07:46:23.0894 1880 C:\Program Files (x86)\TeamViewer\Version7\tv_x64.exe - ok
07:46:23.0900 1880 [ A6154A954F08E99D27CEA4D3B9563172 ] C:\Windows\SysWOW64\newdev.dll
07:46:23.0900 1880 C:\Windows\SysWOW64\newdev.dll - ok
07:46:23.0905 1880 [ BB7E865599FA258C70DF8B1F70109F6F ] C:\Windows\System32\newdev.dll
07:46:23.0905 1880 C:\Windows\System32\newdev.dll - ok
07:46:23.0911 1880 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
07:46:23.0911 1880 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
07:46:23.0917 1880 [ 70014C076003D1D4822366C79BA3E3E6 ] C:\Program Files (x86)\TeamViewer\Version7\tv_x64.dll
07:46:23.0917 1880 C:\Program Files (x86)\TeamViewer\Version7\tv_x64.dll - ok
07:46:23.0922 1880 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
07:46:23.0922 1880 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
07:46:23.0928 1880 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
07:46:23.0928 1880 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
07:46:23.0933 1880 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
07:46:23.0933 1880 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
07:46:23.0938 1880 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
07:46:23.0938 1880 C:\Windows\System32\wbem\cimwin32.dll - ok
07:46:23.0944 1880 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
07:46:23.0944 1880 C:\Windows\System32\framedynos.dll - ok
07:46:23.0949 1880 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
07:46:23.0949 1880 C:\Windows\System32\wmi.dll - ok
07:46:23.0954 1880 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
07:46:23.0954 1880 C:\Windows\SysWOW64\devenum.dll - ok
07:46:23.0959 1880 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
07:46:23.0959 1880 C:\Windows\SysWOW64\msdmo.dll - ok
07:46:23.0964 1880 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
07:46:23.0964 1880 C:\Windows\SysWOW64\vfwwdm32.dll - ok
07:46:23.0969 1880 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
07:46:23.0969 1880 C:\Windows\SysWOW64\cmd.exe - ok
07:46:23.0975 1880 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
07:46:23.0975 1880 C:\Windows\SysWOW64\MMDevAPI.dll - ok
07:46:23.0980 1880 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
07:46:23.0980 1880 C:\Windows\SysWOW64\wdmaud.drv - ok
07:46:23.0985 1880 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
07:46:23.0985 1880 C:\Windows\SysWOW64\ksuser.dll - ok
07:46:23.0990 1880 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
07:46:23.0990 1880 C:\Windows\SysWOW64\avrt.dll - ok
07:46:23.0997 1880 [ 402B44B31C7183FCF2C4E1083AF317FA ] C:\Windows\System32\conhost.exe
07:46:23.0997 1880 C:\Windows\System32\conhost.exe - ok
07:46:24.0001 1880 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
07:46:24.0001 1880 C:\Windows\SysWOW64\AudioSes.dll - ok
07:46:24.0006 1880 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
07:46:24.0006 1880 C:\Windows\SysWOW64\winbrand.dll - ok
07:46:24.0012 1880 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
07:46:24.0012 1880 C:\Windows\SysWOW64\msacm32.drv - ok
07:46:24.0018 1880 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
07:46:24.0018 1880 C:\Windows\SysWOW64\msacm32.dll - ok
07:46:24.0022 1880 [ A6B73FCB9496DB101F3066CAF5A7DA4B ] C:\Windows\SysWOW64\ieframe.dll
07:46:24.0022 1880 C:\Windows\SysWOW64\ieframe.dll - ok
07:46:24.0028 1880 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
07:46:24.0028 1880 C:\Windows\SysWOW64\midimap.dll - ok
07:46:24.0033 1880 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
07:46:24.0033 1880 C:\Windows\SysWOW64\shdocvw.dll - ok
07:46:24.0038 1880 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Owner\AppData\Local\Temp\D23DF5EF-318D-444D-BE5F-8F69A745EB65.exe
07:46:24.0038 1880 C:\Users\Owner\AppData\Local\Temp\D23DF5EF-318D-444D-BE5F-8F69A745EB65.exe - ok
07:46:24.0044 1880 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
07:46:24.0044 1880 C:\Windows\System32\ie4uinit.exe - ok
07:46:24.0049 1880 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
07:46:24.0049 1880 C:\Windows\System32\iedkcs32.dll - ok
07:46:24.0054 1880 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
07:46:24.0054 1880 C:\Windows\System32\timedate.cpl - ok
07:46:24.0060 1880 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
07:46:24.0060 1880 C:\Windows\System32\actxprxy.dll - ok
07:46:24.0064 1880 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
07:46:24.0064 1880 C:\Windows\SysWOW64\sxs.dll - ok
07:46:24.0069 1880 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
07:46:24.0069 1880 C:\Windows\System32\shdocvw.dll - ok
07:46:24.0075 1880 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\26752661.sys
07:46:24.0075 1880 C:\Windows\System32\drivers\26752661.sys - ok
07:46:24.0080 1880 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
07:46:24.0080 1880 C:\Windows\System32\linkinfo.dll - ok
07:46:24.0085 1880 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
07:46:24.0085 1880 C:\Windows\System32\msiltcfg.dll - ok
07:46:24.0090 1880 [ 625020DE1DBE6A19EDF26916A127AD3D ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\outicon.exe
07:46:24.0090 1880 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\outicon.exe - ok
07:46:24.0096 1880 [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
07:46:24.0096 1880 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
07:46:24.0100 1880 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
07:46:24.0101 1880 C:\Windows\System32\msls31.dll - ok
07:46:24.0106 1880 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
07:46:24.0106 1880 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
07:46:24.0111 1880 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
07:46:24.0111 1880 C:\Windows\System32\gameux.dll - ok
07:46:24.0116 1880 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
07:46:24.0116 1880 C:\Windows\SysWOW64\duser.dll - ok
07:46:24.0119 1880 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
07:46:24.0119 1880 C:\Windows\SysWOW64\dui70.dll - ok
07:46:24.0125 1880 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
07:46:24.0125 1880 C:\Windows\System32\DeviceCenter.dll - ok
07:46:24.0130 1880 [ 180A7380320AF73CCF7F7D8880CA2193 ] C:\Windows\System32\ieframe.dll
07:46:24.0130 1880 C:\Windows\System32\ieframe.dll - ok
07:46:24.0136 1880 [ 9F385D03B1708F6E9C9FA432433CFBAB ] C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe
07:46:24.0136 1880 C:\Program Files (x86)\TouchSettings\TouchPortalOBR.exe - ok
07:46:24.0141 1880 [ 227C38942007EEE6A8EBB26D39166D56 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
07:46:24.0141 1880 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
07:46:24.0147 1880 [ 65A75E4C90DFA630AA9DC1E7B58BFD92 ] C:\Program Files (x86)\Gateway\Gateway Touch Suite\TouchPortal.exe
07:46:24.0147 1880 C:\Program Files (x86)\Gateway\Gateway Touch Suite\TouchPortal.exe - ok
07:46:24.0152 1880 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
07:46:24.0152 1880 C:\Windows\System32\SearchFolder.dll - ok
07:46:24.0157 1880 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
07:46:24.0157 1880 C:\Windows\System32\wbem\unsecapp.exe - ok
07:46:24.0162 1880 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
07:46:24.0163 1880 C:\Windows\System32\StructuredQuery.dll - ok
07:46:24.0168 1880 [ 8629773FE7379BB7095A61936CC6BD24 ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
07:46:24.0168 1880 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
07:46:24.0173 1880 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
07:46:24.0173 1880 C:\Windows\System32\rundll32.exe - ok
07:46:24.0178 1880 [ CA0FD23A6BA504A44AF75C7008BBA9B3 ] C:\Windows\System32\THXCfg64.dll
07:46:24.0178 1880 C:\Windows\System32\THXCfg64.dll - ok
07:46:24.0183 1880 [ 393F021E2A9FA19AC94BA4482E32FC6C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
07:46:24.0183 1880 C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
07:46:24.0189 1880 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
07:46:24.0189 1880 C:\Windows\System32\thumbcache.dll - ok
07:46:24.0194 1880 [ 88CA0FFA894AF4B0D90B93FAA2A0A0D9 ] C:\Program Files\Microsoft IntelliType Pro\itype.exe
07:46:24.0194 1880 C:\Program Files\Microsoft IntelliType Pro\itype.exe - ok
07:46:24.0200 1880 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
07:46:24.0200 1880 C:\Windows\SysWOW64\mscoree.dll - ok
07:46:24.0204 1880 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
07:46:24.0204 1880 C:\Windows\SysWOW64\taskschd.dll - ok
07:46:24.0210 1880 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
07:46:24.0210 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
07:46:24.0215 1880 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
07:46:24.0215 1880 C:\Windows\System32\stobject.dll - ok
07:46:24.0221 1880 [ 37F04C533F3D8BA106B9F52FCE76616A ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
07:46:24.0221 1880 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
07:46:24.0226 1880 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
07:46:24.0226 1880 C:\Windows\System32\wbem\NCProv.dll - ok
07:46:24.0232 1880 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
07:46:24.0232 1880 C:\Windows\System32\wbem\wmiprov.dll - ok
07:46:24.0236 1880 [ 94AD6E6496D500AF2B87D50F9950F9A7 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
07:46:24.0236 1880 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
07:46:24.0242 1880 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
07:46:24.0242 1880 C:\Windows\System32\batmeter.dll - ok
07:46:24.0247 1880 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
07:46:24.0247 1880 C:\Windows\System32\esent.dll - ok
07:46:24.0252 1880 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
07:46:24.0252 1880 C:\Windows\System32\UIAnimation.dll - ok
07:46:24.0258 1880 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll
07:46:24.0258 1880 C:\Program Files\Microsoft IntelliType Pro\SQMAPI.dll - ok
07:46:24.0264 1880 [ 5B72629C8144D1A96490D4C090D28DA1 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
07:46:24.0264 1880 C:\Program Files\Microsoft IntelliPoint\ipoint.exe - ok
07:46:24.0269 1880 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
07:46:24.0269 1880 C:\Windows\System32\dsound.dll - ok
07:46:24.0275 1880 [ 9E465711248B66D72C7E9D3867D5CB19 ] C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll
07:46:24.0275 1880 C:\Program Files\Microsoft IntelliType Pro\dpgmkb.dll - ok
07:46:24.0280 1880 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
07:46:24.0280 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
07:46:24.0285 1880 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
07:46:24.0285 1880 C:\Windows\System32\opengl32.dll - ok
07:46:24.0290 1880 [ 679E82F9D5BE28F5B05064A2F46CE4F2 ] C:\Windows\System32\wbem\mofd.dll
07:46:24.0290 1880 C:\Windows\System32\wbem\mofd.dll - ok
07:46:24.0296 1880 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
07:46:24.0296 1880 C:\Windows\System32\glu32.dll - ok
07:46:24.0301 1880 [ 722909EA9156F50EF1B386D76D4525A5 ] C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
07:46:24.0301 1880 C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe - ok
07:46:24.0306 1880 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
07:46:24.0307 1880 C:\Windows\System32\ddraw.dll - ok
07:46:24.0312 1880 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
07:46:24.0312 1880 C:\Windows\System32\networkexplorer.dll - ok
07:46:24.0317 1880 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
07:46:24.0317 1880 C:\Windows\System32\dciman32.dll - ok
07:46:24.0322 1880 [ 89E3317708F167AE4BAE0000842C8CE7 ] C:\Windows\System32\UIHub.dll
07:46:24.0322 1880 C:\Windows\System32\UIHub.dll - ok
07:46:24.0328 1880 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
07:46:24.0328 1880 C:\Windows\System32\oledlg.dll - ok
07:46:24.0333 1880 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll
07:46:24.0333 1880 C:\Program Files\Microsoft IntelliPoint\SQMAPI.dll - ok
07:46:24.0338 1880 [ 020F5F105F8CFF8F35CAED4E5B75DB20 ] C:\Windows\System32\RtkCfg64.dll
07:46:24.0338 1880 C:\Windows\System32\RtkCfg64.dll - ok
07:46:24.0343 1880 [ 3898DDD17D019A40AD432EDABA5E66F7 ] C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll
07:46:24.0343 1880 C:\Program Files\Microsoft IntelliType Pro\dpgcmd.dll - ok
07:46:24.0349 1880 [ F023A14FE899F5401935CAC119A723CE ] C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
07:46:24.0349 1880 C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe - ok
07:46:24.0354 1880 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
07:46:24.0354 1880 C:\Windows\System32\prnfldr.dll - ok
07:46:24.0360 1880 [ 3CDC9975457E78EE6A9D64599DBB76DD ] C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll
07:46:24.0360 1880 C:\Program Files\Microsoft IntelliPoint\dpgmkb.dll - ok
07:46:24.0366 1880 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
07:46:24.0366 1880 C:\Windows\System32\DXP.dll - ok
07:46:24.0369 1880 [ 9F8F924D528D0FED69071100BCE9A30D ] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
07:46:24.0369 1880 C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe - ok
07:46:24.0374 1880 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
07:46:24.0374 1880 C:\Windows\System32\Syncreg.dll - ok
07:46:24.0380 1880 [ 85EA5C1262CF39BA63E54DB029DA6E63 ] C:\Windows\System32\cleanmgr.exe
07:46:24.0380 1880 C:\Windows\System32\cleanmgr.exe - ok
07:46:24.0385 1880 [ 1E70071E1753E43983B1202CE98AEC6F ] C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
07:46:24.0385 1880 C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe - ok
07:46:24.0390 1880 [ D472095A657B7A29798BEEAE7FB25646 ] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\CoreLanguage.dll
07:46:24.0390 1880 C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\CoreLanguage.dll - ok
07:46:24.0397 1880 [ FC06A07DC10C3412E2787429A72412CA ] C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll
07:46:24.0397 1880 C:\Program Files\Microsoft IntelliType Pro\Components\Commands\DPGHnt\DPGHnt.dll - ok
07:46:24.0402 1880 [ 4EFCDF3DB1BBA69C09622991280C4ACB ] C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe
07:46:24.0402 1880 C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe - ok
07:46:24.0408 1880 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
07:46:24.0408 1880 C:\Windows\ehome\ehSSO.dll - ok
07:46:24.0414 1880 [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe
07:46:24.0414 1880 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\wordicon.exe - ok
07:46:24.0419 1880 [ FC6AEB9413B8F1FEC4E22BF81F6D919C ] C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
07:46:24.0419 1880 C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe - ok
07:46:24.0425 1880 [ 5963633010616B25503EE126F55E8DE4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
07:46:24.0425 1880 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
07:46:24.0431 1880 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
07:46:24.0431 1880 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
07:46:24.0437 1880 [ 8FC069758A9D4BD2A049226C017C083D ] C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe
07:46:24.0437 1880 C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe - ok
07:46:24.0442 1880 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
07:46:24.0442 1880 C:\Windows\System32\ActionCenter.dll - ok
07:46:24.0447 1880 [ C419DF63E0121D72411285780C2FC6CC ] C:\Windows\Updreg.EXE
07:46:24.0447 1880 C:\Windows\Updreg.EXE - ok
07:46:24.0452 1880 [ 31D59387099070963EAD4CE14C5B5F04 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
07:46:24.0452 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll - ok
07:46:24.0458 1880 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
07:46:24.0458 1880 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
07:46:24.0464 1880 [ 7448354E89900479C227DD3118EBD6FD ] C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUITransfer.dll
07:46:24.0464 1880 C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUITransfer.dll - ok
07:46:24.0469 1880 [ DFF1E77E82A343F71956A0D6840ABFFB ] C:\Program Files (x86)\CyberLink\YouCam\MFC71u.dll
07:46:24.0469 1880 C:\Program Files (x86)\CyberLink\YouCam\MFC71u.dll - ok
07:46:24.0474 1880 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
07:46:24.0474 1880 C:\Windows\System32\WPDShServiceObj.dll - ok
07:46:24.0480 1880 [ 125C7306FDF76E2385A53435E5CA6F90 ] C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe
07:46:24.0480 1880 C:\Program Files (x86)\Common Files\Corel\Standby\Standby.exe - ok
07:46:24.0485 1880 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
07:46:24.0485 1880 C:\Windows\System32\FXSST.dll - ok
07:46:24.0490 1880 [ F577910A133A592234EBAAD3F3AFA258 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
07:46:24.0490 1880 C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe - ok
07:46:24.0496 1880 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
07:46:24.0496 1880 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
07:46:24.0502 1880 [ 0AEE5668EB59912F32FF245BFA72465F ] C:\Program Files (x86)\QuickTime\QTTask.exe
07:46:24.0502 1880 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
07:46:24.0507 1880 [ 696A483EFC2D7BAE2734188C1A3EE07D ] C:\Program Files (x86)\CyberLink\YouCam\msvcr71.dll
07:46:24.0507 1880 C:\Program Files (x86)\CyberLink\YouCam\msvcr71.dll - ok
07:46:24.0512 1880 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
07:46:24.0512 1880 C:\Windows\System32\FXSAPI.dll - ok
07:46:24.0517 1880 [ 830DCDBC29A3ABA8D627887F9D1B8746 ] C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Languages\EN\PhotoDownloaderRC.dll
07:46:24.0517 1880 C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Languages\EN\PhotoDownloaderRC.dll - ok
07:46:24.0522 1880 [ FA02920FB5C311B07E30CECF7CBF3A7C ] C:\Program Files (x86)\CyberLink\YouCam\msvcp71.dll
07:46:24.0523 1880 C:\Program Files (x86)\CyberLink\YouCam\msvcp71.dll - ok
07:46:24.0528 1880 [ 3F1D57C8CD1EDF667D7BBEC4C62C39A5 ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe
07:46:24.0529 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe - ok
07:46:24.0534 1880 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F ] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
07:46:24.0534 1880 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe - ok
07:46:24.0539 1880 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
07:46:24.0539 1880 C:\Windows\SysWOW64\msxml3.dll - ok
07:46:24.0545 1880 [ 901AA7A38CE13F14B6BBEC38C0595698 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
07:46:24.0545 1880 C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe - ok
07:46:24.0549 1880 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
07:46:24.0550 1880 C:\Windows\System32\PortableDeviceTypes.dll - ok
07:46:24.0555 1880 [ 451F5628D05075B94F1444117C26400B ] C:\Program Files (x86)\Google\Google Desktop Search\GoogleServices.dll
07:46:24.0555 1880 C:\Program Files (x86)\Google\Google Desktop Search\GoogleServices.dll - ok
07:46:24.0561 1880 [ E1636F57581CAB5D995FD54D2991EF57 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
07:46:24.0561 1880 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe - ok
07:46:24.0568 1880 [ F10FC98CA63D23D9D3C353989A8252EE ] C:\Program Files (x86)\Panasonic\VideoCamSuite\VideoCamSuiteAutoStart.exe
07:46:24.0568 1880 C:\Program Files (x86)\Panasonic\VideoCamSuite\VideoCamSuiteAutoStart.exe - ok
07:46:24.0573 1880 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
07:46:24.0573 1880 C:\Windows\System32\srchadmin.dll - ok
07:46:24.0578 1880 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
07:46:24.0578 1880 C:\Windows\SysWOW64\cabinet.dll - ok
07:46:24.0584 1880 [ 114E5342884A174F0E261526F07B63A1 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libcurl.dll
07:46:24.0584 1880 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libcurl.dll - ok
07:46:24.0589 1880 [ C14CF3A71C99E7AD48ECC928886317AC ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
07:46:24.0589 1880 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe - ok
07:46:24.0594 1880 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
07:46:24.0594 1880 C:\Windows\System32\FXSRESM.dll - ok
07:46:24.0600 1880 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
07:46:24.0600 1880 C:\Windows\System32\FXSSVC.exe - ok
07:46:24.0605 1880 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
07:46:24.0605 1880 C:\Windows\System32\SearchIndexer.exe - ok
07:46:24.0610 1880 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
07:46:24.0610 1880 C:\Windows\SysWOW64\cryptnet.dll - ok
07:46:24.0616 1880 [ 6D92F7FD38888894EC509DFAB6CD3CDA ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll
07:46:24.0616 1880 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll - ok
07:46:24.0619 1880 [ 6307849B9BE3C206DB46A62316BF191F ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libeay32.dll
07:46:24.0619 1880 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\libeay32.dll - ok
07:46:24.0625 1880 [ 356B70B1122CE465E2E39534924A1692 ] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopCommon.dll
07:46:24.0625 1880 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopCommon.dll - ok
07:46:24.0630 1880 [ 3B78ACCCAA5132638E7CF419F4A965C7 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
07:46:24.0630 1880 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE - ok
07:46:24.0636 1880 [ BA8FF281FFB4600046127F3A69764658 ] C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopResources_en.dll
07:46:24.0636 1880 C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktopResources_en.dll - ok
07:46:24.0641 1880 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
07:46:24.0641 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
07:46:24.0647 1880 [ 82CC8F77E9EC61C6B4D48DD4D5CA78E7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
07:46:24.0647 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
07:46:24.0652 1880 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
07:46:24.0653 1880 C:\Windows\System32\ntshrui.dll - ok
07:46:24.0658 1880 [ B3B13025E236417E8B6BC8E96D7773EF ] C:\Windows\SysWOW64\CNMNPPM.DLL
07:46:24.0658 1880 C:\Windows\SysWOW64\CNMNPPM.DLL - ok
07:46:24.0663 1880 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
07:46:24.0663 1880 C:\Windows\System32\sti.dll - ok
07:46:24.0668 1880 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
07:46:24.0668 1880 C:\Windows\SysWOW64\icm32.dll - ok
07:46:24.0673 1880 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
07:46:24.0673 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
07:46:24.0679 1880 [ 93DB1FF92B03D24738A71E6E4992DFD3 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
07:46:24.0679 1880 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
07:46:24.0684 1880 [ D91A522FC31197BB5E17A6C4F1A10DE6 ] C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSTextResource.dll
07:46:24.0684 1880 C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSTextResource.dll - ok
07:46:24.0690 1880 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
07:46:24.0690 1880 C:\Windows\System32\tquery.dll - ok
07:46:24.0694 1880 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
07:46:24.0694 1880 C:\Windows\SysWOW64\imageres.dll - ok
07:46:24.0700 1880 [ F9F1745681EB88D280E2D06C4FA243AF ] C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSDialogResource.dll
07:46:24.0700 1880 C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSDialogResource.dll - ok
07:46:24.0705 1880 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
07:46:24.0705 1880 C:\Windows\System32\AltTab.dll - ok
07:46:24.0710 1880 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
07:46:24.0710 1880 C:\Windows\SysWOW64\sti.dll - ok
07:46:24.0716 1880 [ AAA55B127EC38BDEBD2A3891A2E5FD54 ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\ssleay32.dll
07:46:24.0716 1880 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\ssleay32.dll - ok
07:46:24.0721 1880 [ 31731D46AFE7DC17FC448922608E8B25 ] C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSImageResource.dll
07:46:24.0721 1880 C:\Program Files (x86)\Panasonic\VideoCamSuite\MSResource\MSImageResource.dll - ok
07:46:24.0727 1880 [ 5CEDF292F4573A1F36CC7DE598ECCFC7 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
07:46:24.0727 1880 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
07:46:24.0733 1880 [ EC026A5144252F396AE4FA9EE02C6084 ] C:\Program Files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe
07:46:24.0733 1880 C:\Program Files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe - ok
07:46:24.0739 1880 [ 1C2E98534835927E87D0C1C1F188C1F8 ] C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\joticon.exe
07:46:24.0739 1880 C:\Windows\Installer\{91140000-0011-0000-0000-0000000FF1CE}\joticon.exe - ok
07:46:24.0744 1880 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
07:46:24.0744 1880 C:\Windows\SysWOW64\wiatrace.dll - ok
07:46:24.0750 1880 [ 907B50DE97ED835EFE151F203818216D ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\zlib1.dll
07:46:24.0750 1880 C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\zlib1.dll - ok
07:46:24.0755 1880 [ 9422A2BD1EF0C182C0FA3E39B88934FD ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL
07:46:24.0755 1880 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL - ok
07:46:24.0760 1880 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
07:46:24.0760 1880 C:\Windows\System32\pnidui.dll - ok
07:46:24.0766 1880 [ 21CE524B9628C5D8361B3B1F917CC407 ] C:\Program Files (x86)\OLYMPUS\DeviceDetector\Glossary.dll
07:46:24.0766 1880 C:\Program Files (x86)\OLYMPUS\DeviceDetector\Glossary.dll - ok
07:46:24.0771 1880 [ 4CBD2F6C34F8ED55A765042C08624A83 ] C:\Program Files (x86)\Gateway\Gateway Touch Suite\AcerTouchPortalLib.dll
07:46:24.0771 1880 C:\Program Files (x86)\Gateway\Gateway Touch Suite\AcerTouchPortalLib.dll - ok
07:46:24.0777 1880 [ 6D6596E046CA6A61DE250AD3A281A1AF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
07:46:24.0777 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll - ok
07:46:24.0783 1880 [ 38E8BD6EB6ECE80C367DCC9B54190318 ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\HamsterArc.exe
07:46:24.0783 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\HamsterArc.exe - ok
07:46:24.0789 1880 [ B3147FF5B36B0C8FA95661AA00D33D4E ] C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe
07:46:24.0789 1880 C:\Program Files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe - ok
07:46:24.0794 1880 [ 212BE9AD764E1EACC26994C3E08B25FB ] C:\Program Files (x86)\CyberLink\YouCam\Custom\Lang\Enu\IM.dll
07:46:24.0794 1880 C:\Program Files (x86)\CyberLink\YouCam\Custom\Lang\Enu\IM.dll - ok
07:46:24.0800 1880 [ 9B0A8585F8DB163083E0E3F9DAD3B15A ] C:\Program Files (x86)\OLYMPUS\DeviceDetector\DSSCancel.dll
07:46:24.0800 1880 C:\Program Files (x86)\OLYMPUS\DeviceDetector\DSSCancel.dll - ok
07:46:24.0805 1880 [ 2EECA0358FB56077F84C6F6B795E7746 ] C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvmgr.dll
07:46:24.0805 1880 C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvmgr.dll - ok
07:46:24.0811 1880 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
07:46:24.0811 1880 C:\Windows\System32\mssrch.dll - ok
07:46:24.0816 1880 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
07:46:24.0816 1880 C:\Windows\System32\QUTIL.DLL - ok
07:46:24.0821 1880 [ A60F663BD52AD68053042332AEA7EC1E ] C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olyadsp.dll
07:46:24.0821 1880 C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olyadsp.dll - ok
07:46:24.0826 1880 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
07:46:24.0826 1880 C:\Windows\System32\bthprops.cpl - ok
07:46:24.0832 1880 [ 8E53B67FA3816E854B07C5DC66E10730 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
07:46:24.0832 1880 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
07:46:24.0837 1880 [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
07:46:24.0837 1880 C:\Program Files\DVD Maker\DVDMaker.exe - ok
07:46:24.0843 1880 [ E256FF0D6CA515C0F02BB9CEA0BDCA5F ] C:\Program Files (x86)\OLYMPUS\DirectrecConfig\DirectrecConfigurationTool.exe
07:46:24.0843 1880 C:\Program Files (x86)\OLYMPUS\DirectrecConfig\DirectrecConfigurationTool.exe - ok
07:46:24.0848 1880 [ 51C3E82B7A1B58A698CAE77CCC31E81C ] C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olyadcom.dll
07:46:24.0848 1880 C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olyadcom.dll - ok
07:46:24.0853 1880 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
07:46:24.0853 1880 C:\Windows\System32\mlang.dll - ok
07:46:24.0858 1880 [ 920796052FDEBB1F84D4F920F4FFF97D ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtCore4.dll
07:46:24.0858 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtCore4.dll - ok
07:46:24.0865 1880 [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
07:46:24.0865 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
07:46:24.0868 1880 [ 1D2B51E5291448DA123644A41250F6D6 ] C:\Program Files (x86)\AVG\AVG2013\avgui.exe
07:46:24.0868 1880 C:\Program Files (x86)\AVG\AVG2013\avgui.exe - ok
07:46:24.0873 1880 [ 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
07:46:24.0873 1880 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
07:46:24.0878 1880 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\SysWOW64\shsvcs.dll
07:46:24.0878 1880 C:\Windows\SysWOW64\shsvcs.dll - ok
07:46:24.0884 1880 [ C3489639EC8E181044F6C6BFD3D01AC9 ] C:\Windows\System32\SndVol.exe
07:46:24.0884 1880 C:\Windows\System32\SndVol.exe - ok
07:46:24.0889 1880 [ 0E189F99DF443E60ED4E484D15B52D0E ] C:\Program Files (x86)\The Print Shop 23.1\Remind.exe
07:46:24.0889 1880 C:\Program Files (x86)\The Print Shop 23.1\Remind.exe - ok
07:46:24.0894 1880 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
07:46:24.0894 1880 C:\Windows\SysWOW64\hid.dll - ok
07:46:24.0900 1880 [ FF8CD2FD4356FB411FB14C1EC117C668 ] C:\Windows\System32\url.dll
07:46:24.0900 1880 C:\Windows\System32\url.dll - ok
07:46:24.0905 1880 [ C5B5552E5C1A0079C1F7313E7CC7707E ] C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe
07:46:24.0905 1880 C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe - ok
07:46:24.0911 1880 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
07:46:24.0911 1880 C:\Windows\System32\WWanAPI.dll - ok
07:46:24.0916 1880 [ 7B845BFE314509D08AB5865CB141E332 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
07:46:24.0916 1880 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
07:46:24.0921 1880 [ B80E544DFA36295CB3C4B6D2673BA49B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4a29fb5e489e57ccc97b19ca70db94a8\Microsoft.VisualBasic.ni.dll
07:46:24.0921 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\4a29fb5e489e57ccc97b19ca70db94a8\Microsoft.VisualBasic.ni.dll - ok
07:46:24.0927 1880 [ 3DF8D76576A0AD5F82E541C6F4903A85 ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll
07:46:24.0927 1880 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok
07:46:24.0933 1880 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files (x86)\The Print Shop 23.1\MFC71.dll
07:46:24.0933 1880 C:\Program Files (x86)\The Print Shop 23.1\MFC71.dll - ok
07:46:24.0938 1880 [ A7146C0C90D7BA0F251AC073E655D4D2 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
07:46:24.0938 1880 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
07:46:24.0943 1880 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
07:46:24.0943 1880 C:\Windows\System32\wwapi.dll - ok
07:46:24.0949 1880 [ 3CE1890BDBEAC17F804C25036BBF5329 ] C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe
07:46:24.0949 1880 C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe - ok
07:46:24.0955 1880 [ 858716CED10DBBF0BC5748F71ED2F59D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll
07:46:24.0955 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll - ok
07:46:24.0960 1880 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
07:46:24.0960 1880 C:\Windows\System32\msidle.dll - ok
07:46:24.0966 1880 [ 9DEE004269DADEE715BD572410AA6076 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
07:46:24.0966 1880 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
07:46:24.0971 1880 [ DC2502AE5720D1D2EACB0D7B5A8E7B53 ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe
07:46:24.0971 1880 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok
07:46:24.0976 1880 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
07:46:24.0976 1880 C:\Windows\System32\QAGENT.DLL - ok
07:46:24.0981 1880 [ 043FE3C9088BEADC6A9FFC033C84F20F ] C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
07:46:24.0981 1880 C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE - ok
07:46:24.0986 1880 [ 32288D2A44C99A769A8D3B6D627D7227 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
07:46:24.0987 1880 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
07:46:24.0992 1880 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
07:46:24.0992 1880 C:\Windows\System32\mssprxy.dll - ok
07:46:24.0997 1880 [ 21CE524B9628C5D8361B3B1F917CC407 ] C:\Program Files (x86)\OLYMPUS\DirectrecConfig\Glossary.dll
07:46:24.0998 1880 C:\Program Files (x86)\OLYMPUS\DirectrecConfig\Glossary.dll - ok
07:46:25.0003 1880 [ 8F1BAE0A35F3ED80C0859BF05E4EF6ED ] C:\Program Files\Common Files\Microsoft Shared\ink\IpsPlugin.dll
07:46:25.0003 1880 C:\Program Files\Common Files\Microsoft Shared\ink\IpsPlugin.dll - ok
07:46:25.0008 1880 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
07:46:25.0008 1880 C:\Windows\SysWOW64\oledlg.dll - ok
07:46:25.0013 1880 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\The Print Shop 23.1\msvcr71.dll
07:46:25.0013 1880 C:\Program Files (x86)\The Print Shop 23.1\msvcr71.dll - ok
07:46:25.0019 1880 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
07:46:25.0019 1880 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
07:46:25.0024 1880 [ BC83108B18756547013ED443B8CDB31B ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\msvcp100.dll
07:46:25.0024 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\msvcp100.dll - ok
07:46:25.0030 1880 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
07:46:25.0030 1880 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
07:46:25.0035 1880 [ 255423C760AE5A9D81A44873923B116D ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll
07:46:25.0035 1880 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok
07:46:25.0040 1880 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
07:46:25.0040 1880 C:\Windows\SysWOW64\shfolder.dll - ok
07:46:25.0045 1880 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\msvcr100.dll
07:46:25.0045 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\msvcr100.dll - ok
07:46:25.0051 1880 [ 2301649D1AC03B436E32A6B54B6A5BD5 ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
07:46:25.0051 1880 C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe - ok
07:46:25.0057 1880 [ FE821F6FA60E9DF9FDEE69A23488BBAB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
07:46:25.0057 1880 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
07:46:25.0062 1880 [ 2A72853494912BB034AF7AC1C86EC04E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll
07:46:25.0062 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\4e80768a2d88c7a333e43cbb7a6c0705\System.Drawing.ni.dll - ok
07:46:25.0068 1880 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
07:46:25.0068 1880 C:\Windows\System32\en-US\tquery.dll.mui - ok
07:46:25.0075 1880 [ 6E50CFA46527B39015B750AAD161C5CC ] C:\Program Files\iPod\bin\iPodService.exe
07:46:25.0075 1880 C:\Program Files\iPod\bin\iPodService.exe - ok
07:46:25.0080 1880 [ F731DB7489A0994F682D68A2B21AA5AE ] C:\Windows\System32\TabletPC.cpl
07:46:25.0080 1880 C:\Windows\System32\TabletPC.cpl - ok
07:46:25.0086 1880 [ CA0C67BA7AEBA6AED5DDB852E6EEA811 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
07:46:25.0086 1880 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
07:46:25.0091 1880 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\SysWOW64\mfc100u.dll
07:46:25.0091 1880 C:\Windows\SysWOW64\mfc100u.dll - ok
07:46:25.0097 1880 [ CACF9A00EA82F24BE3151C527F3C712E ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtGui4.dll
07:46:25.0097 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtGui4.dll - ok
07:46:25.0103 1880 [ 84FF6C209447A056E22A29806BFA2C96 ] C:\Program Files\Common Files\Microsoft Shared\ink\FlickLearningWizard.exe
07:46:25.0103 1880 C:\Program Files\Common Files\Microsoft Shared\ink\FlickLearningWizard.exe - ok
07:46:25.0109 1880 [ 8044B0D9959B03894973BBD805CA4F36 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
07:46:25.0109 1880 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
07:46:25.0114 1880 [ 4FB3EC44D763C1977B46F7290DF492D9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\16126cae96ea2422253ae06eeb672abc\mscorlib.ni.dll
07:46:25.0114 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\16126cae96ea2422253ae06eeb672abc\mscorlib.ni.dll - ok
07:46:25.0119 1880 [ 9AF2D062007C2C39BFC04679E13DC0C4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
07:46:25.0119 1880 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
07:46:25.0124 1880 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
07:46:25.0124 1880 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
07:46:25.0130 1880 [ AC6A3801F3CDE7EB41B3F52E9B0A1C2B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll
07:46:25.0130 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d040079bc7148afeca03c5abb6fc3c61\System.Windows.Forms.ni.dll - ok
07:46:25.0137 1880 [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\SysWOW64\mfc100enu.dll
07:46:25.0137 1880 C:\Windows\SysWOW64\mfc100enu.dll - ok
07:46:25.0142 1880 [ EC8771B7E50FEF948A57A1C065AC944B ] C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll
07:46:25.0142 1880 C:\Program Files (x86)\AVG\AVG2013\avgkrnlapix.dll - ok
07:46:25.0148 1880 [ C7DE4414D5F6F9373F913CB86262D512 ] C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
07:46:25.0148 1880 C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe - ok
07:46:25.0154 1880 [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
07:46:25.0154 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
07:46:25.0159 1880 [ 78B476DB024D3245E1E159E50DBB305F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll
07:46:25.0160 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll - ok
07:46:25.0166 1880 [ 5BBC872410379C26C7D9E884C89D95BF ] C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtNetwork4.dll
07:46:25.0166 1880 C:\Program Files (x86)\Hamster Soft\Hamster Free Zip Archiver\QtNetwork4.dll - ok
07:46:25.0172 1880 [ 7221E380FB8BFCF0160B9D4E704E7E77 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll
07:46:25.0172 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll - ok
07:46:25.0178 1880 [ 9730643AB698D3B7F19D9192E4D3E4B0 ] C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll
07:46:25.0178 1880 C:\Program Files (x86)\AVG\AVG2013\avgidpmx.dll - ok
07:46:25.0184 1880 [ E4330FB6560D6CA6BBD8ADDF0056EDB0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\811a7bc79f8f0a5be8065292a320819e\System.ni.dll
07:46:25.0184 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\811a7bc79f8f0a5be8065292a320819e\System.ni.dll - ok
07:46:25.0190 1880 [ B3EE7BD189C5925D4C0D2BBFCA00FDD1 ] C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe
07:46:25.0190 1880 C:\Program Files\Microsoft Games\Minesweeper\MineSweeper.exe - ok
07:46:25.0196 1880 [ DFDF919265139FF792D42DEC0899397E ] C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe
07:46:25.0196 1880 C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe - ok
07:46:25.0202 1880 [ 43104328E99680FCF282E71CC45CB5D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
07:46:25.0202 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll - ok
07:46:25.0210 1880 [ 751EEDB874FD17A6F26B9E2CC5E19170 ] C:\Program Files (x86)\AVG\AVG2013\avglngx.dll
07:46:25.0211 1880 C:\Program Files (x86)\AVG\AVG2013\avglngx.dll - ok
07:46:25.0219 1880 [ 8D1BB1E5A033E8817EF94A9047630165 ] C:\Windows\SysWOW64\mshtml.dll
07:46:25.0219 1880 C:\Windows\SysWOW64\mshtml.dll - ok
07:46:25.0225 1880 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
07:46:25.0225 1880 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
07:46:25.0231 1880 [ EB74C861075ECFA1B51B396615387657 ] C:\Program Files (x86)\AVG\AVG2013\avguires.dll
07:46:25.0231 1880 C:\Program Files (x86)\AVG\AVG2013\avguires.dll - ok
07:46:25.0237 1880 [ 51EEC863C16DBBC5870D58FBC40F549F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\05ebffcb5aac31412fea8c38cbac8df8\WindowsBase.ni.dll
07:46:25.0237 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\05ebffcb5aac31412fea8c38cbac8df8\WindowsBase.ni.dll - ok
07:46:25.0243 1880 [ 9170C065FC76758E5D317B8FBA884F0C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\53d6d827964619285771ed72332d3659\PresentationCore.ni.dll
07:46:25.0243 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\53d6d827964619285771ed72332d3659\PresentationCore.ni.dll - ok
07:46:25.0248 1880 [ 51FCBAE9178BAE573026933317C95CB2 ] C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll
07:46:25.0248 1880 C:\Program Files (x86)\AVG\AVG2013\avgxpla.dll - ok
07:46:25.0254 1880 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
07:46:25.0254 1880 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
07:46:25.0259 1880 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
07:46:25.0259 1880 C:\Windows\System32\msvcp100.dll - ok
07:46:25.0265 1880 [ 9E5868DB59C6D8E949F724DBBC639A31 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ec80905a71750be50dfc7981ad5ae28\PresentationFramework.ni.dll
07:46:25.0265 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1ec80905a71750be50dfc7981ad5ae28\PresentationFramework.ni.dll - ok
07:46:25.0271 1880 [ F7E915FA38C119101873AE5E0E7C8B66 ] C:\Program Files (x86)\AVG\AVG2013\avgapps.dll
07:46:25.0271 1880 C:\Program Files (x86)\AVG\AVG2013\avgapps.dll - ok
07:46:25.0276 1880 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
07:46:25.0276 1880 C:\Windows\SysWOW64\msimtf.dll - ok
07:46:25.0281 1880 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
07:46:25.0281 1880 C:\Windows\SysWOW64\mlang.dll - ok
07:46:25.0287 1880 [ 7E87637EECBACBB11BBA1124B805A747 ] C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll
07:46:25.0287 1880 C:\Program Files (x86)\AVG\AVG2013\avgopenssla.dll - ok
07:46:25.0292 1880 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
07:46:25.0292 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
07:46:25.0297 1880 [ 5A768AFF386B0700C217FC6F79923D42 ] C:\Program Files (x86)\Gateway\Gateway Touch Suite\MTGesture.dll
07:46:25.0297 1880 C:\Program Files (x86)\Gateway\Gateway Touch Suite\MTGesture.dll - ok
07:46:25.0303 1880 [ 73E378D0BEE5EC4C59473E453AA2219F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\58f50a891bafb8fd7149e6eebc2b7b52\PresentationCore.ni.dll
07:46:25.0304 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\58f50a891bafb8fd7149e6eebc2b7b52\PresentationCore.ni.dll - ok
07:46:25.0309 1880 [ 962C8A3AF8CA4ABF553E367368565335 ] C:\Windows\SysWOW64\jscript9.dll
07:46:25.0309 1880 C:\Windows\SysWOW64\jscript9.dll - ok
07:46:25.0314 1880 [ 3314CB593E74552484CE6EFA2CAD296D ] C:\Windows\SysWOW64\atiu9pag.dll
07:46:25.0314 1880 C:\Windows\SysWOW64\atiu9pag.dll - ok
07:46:25.0320 1880 [ 2A8D5931AB8DB4DDADCE8DE8F35D953B ] C:\Windows\SysWOW64\atiumdag.dll
07:46:25.0320 1880 C:\Windows\SysWOW64\atiumdag.dll - ok
07:46:25.0325 1880 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
07:46:25.0325 1880 C:\Windows\SysWOW64\linkinfo.dll - ok
07:46:25.0330 1880 [ 65BFFC10E57586C42B305A520F0085B2 ] C:\Program Files\Adobe\Adobe Photoshop CS5.1 (64 Bit)\Photoshop.exe
07:46:25.0330 1880 C:\Program Files\Adobe\Adobe Photoshop CS5.1 (64 Bit)\Photoshop.exe - ok
07:46:25.0336 1880 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
07:46:25.0336 1880 C:\Windows\SysWOW64\ntshrui.dll - ok
07:46:25.0341 1880 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
07:46:25.0342 1880 C:\Windows\SysWOW64\mscms.dll - ok
07:46:25.0346 1880 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
07:46:25.0346 1880 C:\Windows\SysWOW64\d2d1.dll - ok
07:46:25.0352 1880 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
07:46:25.0352 1880 C:\Windows\SysWOW64\msctfui.dll - ok
07:46:25.0357 1880 [ 80739D6157FDF84E444C659AC3B0E41E ] C:\Windows\SysWOW64\PresentationNative_v0300.dll
07:46:25.0357 1880 C:\Windows\SysWOW64\PresentationNative_v0300.dll - ok
07:46:25.0363 1880 [ E330B92B739001DECC5929E9B57AE405 ] C:\Windows\SysWOW64\atiumdva.dll
07:46:25.0363 1880 C:\Windows\SysWOW64\atiumdva.dll - ok
07:46:25.0368 1880 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
07:46:25.0369 1880 C:\Windows\SysWOW64\DWrite.dll - ok
07:46:25.0374 1880 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
07:46:25.0374 1880 C:\Windows\SysWOW64\samlib.dll - ok
07:46:25.0379 1880 [ F501EA64D9224CEF306BFDF3BE11F478 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\c881e2d2ec912499834feb85c4c2e483\PresentationFramework.ni.dll
07:46:25.0379 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\c881e2d2ec912499834feb85c4c2e483\PresentationFramework.ni.dll - ok
07:46:25.0385 1880 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
07:46:25.0385 1880 C:\Windows\System32\FntCache.dll - ok
07:46:25.0390 1880 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
07:46:25.0390 1880 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
07:46:25.0396 1880 [ A96DF7F02B248C65DF3947D8B0D588EB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7c4de95aa433eb8d81a81caf805947a8\PresentationFramework.Aero.ni.dll
07:46:25.0396 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\7c4de95aa433eb8d81a81caf805947a8\PresentationFramework.Aero.ni.dll - ok
07:46:25.0402 1880 [ 40B28FBD1E4DEF0910E2AC3EAE4D43CF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll
07:46:25.0402 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\66694f9192bd0dddc2eaf90fbcbcd555\System.Management.ni.dll - ok
07:46:25.0408 1880 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
07:46:25.0408 1880 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
07:46:25.0413 1880 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
07:46:25.0413 1880 C:\Windows\SysWOW64\dxgi.dll - ok
07:46:25.0420 1880 [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
07:46:25.0420 1880 C:\Windows\SysWOW64\wshbth.dll - ok
07:46:25.0425 1880 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
07:46:25.0425 1880 C:\Windows\SysWOW64\d3d10_1.dll - ok
07:46:25.0430 1880 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
07:46:25.0431 1880 C:\Windows\SysWOW64\xmllite.dll - ok
07:46:25.0436 1880 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
07:46:25.0436 1880 C:\Windows\SysWOW64\d3d10_1core.dll - ok
07:46:25.0441 1880 [ FB9078B71250E63BCDB80F638FE68D75 ] C:\Program Files (x86)\Gateway\Gateway Touch Suite\Memo_Lib.dll
07:46:25.0441 1880 C:\Program Files (x86)\Gateway\Gateway Touch Suite\Memo_Lib.dll - ok
07:46:25.0446 1880 [ 8ADBD72F4DC0EB90CFD37763BE3ECB27 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
07:46:25.0447 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll - ok
07:46:25.0453 1880 [ EB596E72F63B7C31BE8DF75FA8829B3F ] C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe
07:46:25.0453 1880 C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - ok
07:46:25.0458 1880 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
07:46:25.0458 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
07:46:25.0463 1880 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
07:46:25.0463 1880 C:\Windows\SysWOW64\d3d10warp.dll - ok
07:46:25.0469 1880 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
07:46:25.0469 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
07:46:25.0474 1880 [ 6B67544C146BB95819EDA1EB20F4CFB5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\5e3ccfdf88ccd6a9ff4e6ddae7e3fec6\System.Xaml.ni.dll
07:46:25.0474 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\5e3ccfdf88ccd6a9ff4e6ddae7e3fec6\System.Xaml.ni.dll - ok
07:46:25.0479 1880 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
07:46:25.0479 1880 C:\Windows\SysWOW64\msls31.dll - ok
07:46:25.0485 1880 [ 5259D6B68ABB8253792458FE94D9D006 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
07:46:25.0485 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll - ok
07:46:25.0490 1880 [ 54AAFDF0193F9E7CFA2A579B6F983F3E ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll
07:46:25.0490 1880 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PenIMC.dll - ok
07:46:25.0496 1880 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:46:25.0496 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
07:46:25.0502 1880 [ 37D245B3E4CA534E2453BBD358E8DAFD ] C:\Program Files\Common Files\Microsoft Shared\ink\tpcps.dll
07:46:25.0502 1880 C:\Program Files\Common Files\Microsoft Shared\ink\tpcps.dll - ok
07:46:25.0508 1880 [ ED0A4DD3439D1231B47416604A7D84DC ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tpcps.dll
07:46:25.0508 1880 C:\Program Files (x86)\Common Files\microsoft shared\ink\tpcps.dll - ok
07:46:25.0514 1880 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:46:25.0514 1880 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
07:46:25.0519 1880 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
07:46:25.0519 1880 C:\Windows\System32\msvcr100_clr0400.dll - ok
07:46:25.0525 1880 [ 65052B72C953D27431F1F208A7B5D103 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\752225ca2585aa8f1c46b489e172e920\System.Core.ni.dll
07:46:25.0525 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\752225ca2585aa8f1c46b489e172e920\System.Core.ni.dll - ok
07:46:25.0530 1880 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
07:46:25.0530 1880 C:\Windows\System32\mscoree.dll - ok
07:46:25.0536 1880 [ 518FF3876B04E4AB7D8C9ECAA60B4F1E ] C:\Program Files\Common Files\Microsoft Shared\ink\mshwLatin.dll
07:46:25.0536 1880 C:\Program Files\Common Files\Microsoft Shared\ink\mshwLatin.dll - ok
07:46:25.0541 1880 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
07:46:25.0541 1880 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
07:46:25.0546 1880 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
07:46:25.0547 1880 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
07:46:25.0553 1880 [ 6753D73A6BCC8E0A058BB2773416CA88 ] C:\Windows\System32\Speech\Common\sapi.dll
07:46:25.0553 1880 C:\Windows\System32\Speech\Common\sapi.dll - ok
07:46:25.0558 1880 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
07:46:25.0558 1880 C:\Windows\System32\consent.exe - ok
07:46:25.0563 1880 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
07:46:25.0563 1880 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
07:46:25.0569 1880 [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
07:46:25.0580 1880 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
07:46:25.0583 1880 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
07:46:25.0583 1880 C:\Windows\System32\msdmo.dll - ok
07:46:25.0589 1880 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
07:46:25.0589 1880 C:\Windows\System32\shfolder.dll - ok
07:46:25.0594 1880 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
07:46:25.0595 1880 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
07:46:25.0600 1880 [ 5C0A02A7121D006F3333B15163785FE5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
07:46:25.0600 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
07:46:25.0605 1880 [ A555EC9827745E760BBABB7C6D4CE37F ] C:\Program Files\Internet Explorer\ieproxy.dll
07:46:25.0605 1880 C:\Program Files\Internet Explorer\ieproxy.dll - ok
07:46:25.0611 1880 [ 8FE9D01FA51260A9B5373D46E86D4F9D ] C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe
07:46:25.0611 1880 C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe - ok
07:46:25.0616 1880 [ 9383D302F0D95DB0802308CF250727F3 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
07:46:25.0616 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
07:46:25.0623 1880 [ 781BF72F57CC9E5F85CB109C24D00FDC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
07:46:25.0623 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
07:46:25.0626 1880 [ F924D18569D6E32F867C80F217A185E8 ] C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll
07:46:25.0626 1880 C:\Program Files\Microsoft IntelliPoint\dpgcmd.dll - ok
07:46:25.0631 1880 [ C80DA476BFBAD97D874A0EFE037D7113 ] C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
07:46:25.0632 1880 C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
07:46:25.0637 1880 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
07:46:25.0637 1880 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
07:46:25.0643 1880 [ 6C4366921C0B35BCCE022D033EF54019 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll
07:46:25.0643 1880 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.MapUpdate.Client.Core.dll - ok
07:46:25.0649 1880 [ DAE585379CD93541C635120CF4DBA8C9 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
07:46:25.0649 1880 C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
07:46:25.0655 1880 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
07:46:25.0655 1880 C:\Windows\System32\webcheck.dll - ok
07:46:25.0660 1880 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
07:46:25.0660 1880 C:\Windows\System32\SyncCenter.dll - ok
07:46:25.0665 1880 [ 551E2A306180F3BB1025341526C8D46B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\cb0c00757e89f0b1fe282913ed667212\System.Xml.ni.dll
07:46:25.0665 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\cb0c00757e89f0b1fe282913ed667212\System.Xml.ni.dll - ok
07:46:25.0671 1880 [ 0FEC5F3C533DAE4B68C57EB8432E7881 ] C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll
07:46:25.0671 1880 C:\Program Files\Microsoft IntelliPoint\Components\Commands\DPGHnt\DPGHnt.dll - ok
07:46:25.0677 1880 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
07:46:25.0677 1880 C:\Windows\System32\SearchProtocolHost.exe - ok
07:46:25.0682 1880 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
07:46:25.0682 1880 C:\Windows\System32\msshooks.dll - ok
07:46:25.0688 1880 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
07:46:25.0688 1880 C:\Windows\System32\SearchFilterHost.exe - ok
07:46:25.0694 1880 [ 01AEA2F16FE0C522DDFD7FAFFC959C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll
07:46:25.0694 1880 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll - ok
07:46:25.0699 1880 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
07:46:25.0699 1880 C:\Windows\System32\mssph.dll - ok
07:46:25.0706 1880 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
07:46:25.0706 1880 C:\Windows\System32\imapi2.dll - ok
07:46:25.0711 1880 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
07:46:25.0711 1880 C:\Windows\System32\mapi32.dll - ok
07:46:25.0716 1880 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
07:46:25.0716 1880 C:\Windows\System32\hgcpl.dll - ok
07:46:25.0722 1880 [ 9F668404AB36B97B0FF5C4B140A1F1FE ] C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
07:46:25.0722 1880 C:\Windows\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll - ok
07:46:25.0727 1880 [ DF23B98FA41224DE5B2D537CE890A7D8 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll
07:46:25.0727 1880 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.WpfLocalization.dll - ok
07:46:25.0733 1880 [ 3FC453A0DF75DB13D261ADC02AF7AEDF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d6dc54d6b4aadbc921d00c3b76647e61\System.Xml.Linq.ni.dll
07:46:25.0733 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d6dc54d6b4aadbc921d00c3b76647e61\System.Xml.Linq.ni.dll - ok
07:46:25.0739 1880 [ EBD26E3B45CEC837E3F4C4ADB0ABFB09 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\70705382a499703e7a595fada80b04e6\Accessibility.ni.dll
07:46:25.0739 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\70705382a499703e7a595fada80b04e6\Accessibility.ni.dll - ok
07:46:25.0744 1880 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
07:46:25.0744 1880 C:\Windows\System32\Query.dll - ok
07:46:25.0749 1880 [ C29A9D23783E35C371073E904FEFC036 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\e450f586600c27379b52c1058292cfd9\System.Security.ni.dll
07:46:25.0749 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Security\e450f586600c27379b52c1058292cfd9\System.Security.ni.dll - ok
07:46:25.0755 1880 [ B0A848A66C791872EE70EC11F949031E ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\cbb227c0a77a5b15a1255220984239f2\PresentationFramework.Aero.ni.dll
07:46:25.0756 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\cbb227c0a77a5b15a1255220984239f2\PresentationFramework.Aero.ni.dll - ok
07:46:25.0761 1880 [ AF5EF910ED4FA6EB6859A55073D56615 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9422d0c052186760a4645e10995487f5\System.Drawing.ni.dll
07:46:25.0761 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9422d0c052186760a4645e10995487f5\System.Drawing.ni.dll - ok
07:46:25.0766 1880 [ 38A29D8DACC8106F213E3647E5B6A063 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\c07aa49ffd41a39bffaf653289f44038\CustomMarshalers.ni.dll
07:46:25.0766 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\c07aa49ffd41a39bffaf653289f44038\CustomMarshalers.ni.dll - ok
07:46:25.0772 1880 [ 60A1C9786C8B5D3A78537E79E1A68466 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\caffbced23ee85b40b919ad4a122b7aa\System.Windows.Forms.ni.dll
07:46:25.0772 1880 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\caffbced23ee85b40b919ad4a122b7aa\System.Windows.Forms.ni.dll - ok
07:46:25.0777 1880 [ 8BE887F1743FBB39ED2C9CA2937742D6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll
07:46:25.0778 1880 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll - ok
07:46:25.0783 1880 [ 8761F53F7169EC3BFDBEEEB02A98FBE2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\9da4a463047e657a331eb65b35ab1524\PresentationFramework.Classic.ni.dll
07:46:25.0783 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\9da4a463047e657a331eb65b35ab1524\PresentationFramework.Classic.ni.dll - ok
07:46:25.0789 1880 [ E816F323980D667B3DA2A0A42F033208 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b69cc23e28fe67e9cb6cb0811b76c200\PresentationFramework.Luna.ni.dll
07:46:25.0789 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\b69cc23e28fe67e9cb6cb0811b76c200\PresentationFramework.Luna.ni.dll - ok
07:46:25.0794 1880 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
07:46:25.0794 1880 C:\Windows\System32\NaturalLanguage6.dll - ok
07:46:25.0800 1880 [ 020C2F610BE801B9B50AF1BFF4A5B24B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c9866f6c2cae33d2c38ab32da622a167\System.ServiceProcess.ni.dll
07:46:25.0800 1880 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c9866f6c2cae33d2c38ab32da622a167\System.ServiceProcess.ni.dll - ok
07:46:25.0805 1880 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
07:46:25.0805 1880 C:\Windows\System32\NlsData0009.dll - ok
07:46:25.0810 1880 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
07:46:25.0810 1880 C:\Windows\SysWOW64\powrprof.dll - ok
07:46:25.0816 1880 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
07:46:25.0816 1880 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
07:46:25.0822 1880 [ CAE96C15FBDC0D626B9FD68C9DAC8AA7 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PenIMC.dll
07:46:25.0822 1880 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PenIMC.dll - ok
07:46:25.0828 1880 [ 324ABD5803CB2AC0DED2FA72FD233942 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d66caa46eec69124dab70574db1cc4c0\PresentationFramework.Royale.ni.dll
07:46:25.0828 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d66caa46eec69124dab70574db1cc4c0\PresentationFramework.Royale.ni.dll - ok
07:46:25.0833 1880 [ 1A461A1337498F93BCB35878515060E4 ] C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll
07:46:25.0833 1880 C:\Program Files (x86)\Garmin\Lifetime Updater\Garmin.Cartography.DeviceInteraction.dll - ok
07:46:25.0839 1880 [ 76F39902E25F43FE9450AD3D6A14D0D8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\60ab562d9fe10d1782ed705ef2beb95a\WindowsBase.ni.dll
07:46:25.0839 1880 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\60ab562d9fe10d1782ed705ef2beb95a\WindowsBase.ni.dll - ok
07:46:25.0844 1880 [ E82E0ED8208A357F7D1115D09AFBC0A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\239d84cfdb9de9730c1efb43840ef2eb\System.Core.ni.dll
07:46:25.0845 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\239d84cfdb9de9730c1efb43840ef2eb\System.Core.ni.dll - ok
07:46:25.0850 1880 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
07:46:25.0850 1880 C:\Windows\System32\NlsLexicons0009.dll - ok
07:46:25.0855 1880 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
07:46:25.0855 1880 C:\Windows\System32\wscinterop.dll - ok
07:46:25.0860 1880 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
07:46:25.0860 1880 C:\Windows\System32\wscapi.dll - ok
07:46:25.0865 1880 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
07:46:25.0865 1880 C:\Windows\System32\wscui.cpl - ok
07:46:25.0871 1880 [ 72AB8C3F8AB7B550A896357C9E0896DA ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\2abfa3ca7ad3cc6f199158e6663f3006\PresentationCore.ni.dll
07:46:25.0871 1880 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\2abfa3ca7ad3cc6f199158e6663f3006\PresentationCore.ni.dll - ok
07:46:25.0874 1880 [ C596483CA938BF27AD02431600573A51 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\aa983d1ad8df4422c0859ab4d6e19a83\UIAutomationProvider.ni.dll
07:46:25.0874 1880 C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\aa983d1ad8df4422c0859ab4d6e19a83\UIAutomationProvider.ni.dll - ok
07:46:25.0881 1880 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
07:46:25.0881 1880 C:\Windows\System32\werconcpl.dll - ok
07:46:25.0885 1880 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
07:46:25.0885 1880 C:\Windows\System32\wercplsupport.dll - ok
07:46:25.0891 1880 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
07:46:25.0891 1880 C:\Windows\System32\hcproviders.dll - ok
07:46:25.0896 1880 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
07:46:25.0897 1880 C:\Windows\System32\ELSCore.dll - ok
07:46:25.0901 1880 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
07:46:25.0901 1880 C:\Windows\System32\elsTrans.dll - ok
07:46:25.0907 1880 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
07:46:25.0908 1880 C:\Windows\System32\elslad.dll - ok
07:46:25.0912 1880 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
07:46:25.0912 1880 C:\Windows\System32\NlsData0000.dll - ok
07:46:25.0918 1880 [ 35D2FC047379BF5395EDF2400FBF350A ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\AppFramework.dll
07:46:25.0918 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\AppFramework.dll - ok
07:46:25.0924 1880 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
07:46:25.0924 1880 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
07:46:25.0929 1880 [ 9BDB62D5C4B3AE8807CB61F7503784E7 ] C:\Windows\System32\NlsData0018.dll
07:46:25.0930 1880 C:\Windows\System32\NlsData0018.dll - ok
07:46:25.0934 1880 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
07:46:25.0934 1880 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
07:46:25.0940 1880 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
07:46:25.0940 1880 C:\Windows\System32\sppsvc.exe - ok
07:46:25.0945 1880 [ 3A84190D1D472A3BB9CC4AF141326F13 ] C:\Windows\System32\NlsLexicons0018.dll
07:46:25.0945 1880 C:\Windows\System32\NlsLexicons0018.dll - ok
07:46:25.0951 1880 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
07:46:25.0951 1880 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
07:46:25.0957 1880 [ 06DE801BB1D9D52FDDB67049E7B15C6D ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\AppFramework.XmlSerializers.dll
07:46:25.0957 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\AppFramework.XmlSerializers.dll - ok
07:46:25.0962 1880 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
07:46:25.0962 1880 C:\Windows\System32\drivers\spsys.sys - ok
07:46:25.0967 1880 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
07:46:25.0967 1880 C:\Windows\System32\wmdrmdev.dll - ok
07:46:25.0973 1880 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
07:46:25.0973 1880 C:\Windows\System32\wscsvc.dll - ok
07:46:25.0979 1880 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
07:46:25.0979 1880 C:\Windows\System32\wuaueng.dll - ok
07:46:25.0984 1880 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
07:46:25.0984 1880 C:\Windows\System32\drmv2clt.dll - ok
07:46:25.0991 1880 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
07:46:25.0991 1880 C:\Windows\System32\NlsData000c.dll - ok
07:46:25.0996 1880 [ 3DE8A5288442002327C84AEEF9776DA5 ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01_64.key
07:46:25.0996 1880 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01_64.key - ok
07:46:26.0002 1880 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
07:46:26.0002 1880 C:\Windows\SysWOW64\wscisvif.dll - ok
07:46:26.0007 1880 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
07:46:26.0008 1880 C:\Windows\System32\NlsLexicons000c.dll - ok
07:46:26.0012 1880 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
07:46:26.0012 1880 C:\Windows\System32\cabinet.dll - ok
07:46:26.0018 1880 [ 608A52EDA9E0C8FE78AC30558B52128C ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\CorelGestureSDK.dll
07:46:26.0018 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\CorelGestureSDK.dll - ok
07:46:26.0023 1880 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
07:46:26.0024 1880 C:\Windows\System32\mspatcha.dll - ok
07:46:26.0029 1880 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
07:46:26.0029 1880 C:\Windows\System32\p2pcollab.dll - ok
07:46:26.0033 1880 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
07:46:26.0033 1880 C:\Windows\System32\sppwinob.dll - ok
07:46:26.0039 1880 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
07:46:26.0039 1880 C:\Windows\System32\QAGENTRT.DLL - ok
07:46:26.0044 1880 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
07:46:26.0044 1880 C:\Windows\System32\blackbox.dll - ok
07:46:26.0049 1880 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
07:46:26.0049 1880 C:\Windows\System32\wmp.dll - ok
07:46:26.0054 1880 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
07:46:26.0054 1880 C:\Windows\System32\fveui.dll - ok
07:46:26.0059 1880 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
07:46:26.0059 1880 C:\Windows\System32\wmploc.DLL - ok
07:46:26.0064 1880 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
07:46:26.0064 1880 C:\Windows\System32\wuapi.dll - ok
07:46:26.0069 1880 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
07:46:26.0070 1880 C:\Windows\System32\wups.dll - ok
07:46:26.0075 1880 [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files (x86)\Windows Defender\MpClient.dll
07:46:26.0075 1880 C:\Program Files (x86)\Windows Defender\MpClient.dll - ok
07:46:26.0080 1880 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
07:46:26.0080 1880 C:\Windows\System32\wmpps.dll - ok
07:46:26.0085 1880 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
07:46:26.0085 1880 C:\Windows\System32\wmpmde.dll - ok
07:46:26.0091 1880 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
07:46:26.0091 1880 C:\Windows\System32\WinSATAPI.dll - ok
07:46:26.0096 1880 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
07:46:26.0096 1880 C:\Windows\System32\MSMPEG2ENC.DLL - ok
07:46:26.0101 1880 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
07:46:26.0101 1880 C:\Windows\System32\devenum.dll - ok
07:46:26.0106 1880 [ 34C3CCF9889B3873D8538A7BF1B4AA5A ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\GoldenGateCore.dll
07:46:26.0106 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\GoldenGateCore.dll - ok
07:46:26.0112 1880 [ DF47D25CCBCAA96AADB8F6E86843CFC3 ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\GoldenGateUI.dll
07:46:26.0112 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\GoldenGateUI.dll - ok
07:46:26.0117 1880 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
07:46:26.0117 1880 C:\Windows\System32\udhisapi.dll - ok
07:46:26.0124 1880 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
07:46:26.0124 1880 C:\Windows\System32\drprov.dll - ok
07:46:26.0127 1880 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
07:46:26.0127 1880 C:\Windows\System32\ntlanman.dll - ok
07:46:26.0132 1880 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
07:46:26.0132 1880 C:\Windows\System32\davclnt.dll - ok
07:46:26.0137 1880 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
07:46:26.0137 1880 C:\Windows\System32\davhlpr.dll - ok
07:46:26.0144 1880 [ 521A0161126C070D0CB81CD53E6D5FAC ] C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\Interop.MSXML2.dll
07:46:26.0144 1880 C:\Program Files (x86)\Corel\Corel PaintShop Photo Project Creator\X3\Interop.MSXML2.dll - ok
07:46:26.0148 1880 ============================================================
07:46:26.0148 1880 Scan finished
07:46:26.0148 1880 ============================================================
07:46:26.0160 1876 Detected object count: 4
07:46:26.0160 1876 Actual detected object count: 4
07:46:29.0258 1876 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
07:46:29.0258 1876 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
07:46:29.0259 1876 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
07:46:29.0259 1876 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:46:29.0261 1876 Olympus DVR Service ( UnsignedFile.Multi.Generic ) - skipped by user
07:46:29.0261 1876 Olympus DVR Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:46:29.0264 1876 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
07:46:29.0264 1876 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:46:46.0994 3524 Deinitialize success

#56
CompCav

Posted 27 November 2012 - 08:30 AM

Member 5k

Expert
12,454 posts

Please rerun Farbar Services Scanner and also has there been a change in IE 9 or Outlook?

#57
mikison

Posted 27 November 2012 - 08:37 AM

Member

Topic Starter
Member
94 posts

When I run the FSS, am I scanning or searching again for afd.sys?
No change in Outlook. Not sure about IE9 as I am disconnected from internet. Tried to connect again but now unable to connect to internet at all.

#58
mikison

Posted 27 November 2012 - 08:40 AM

Member

Topic Starter
Member
94 posts

Farbar Service Scanner Version: 09-11-2012
Ran by Owner (administrator) on 27-11-2012 at 09:35:34
Running from "C:\Users\Owner\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error.
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error.
Attempt to access Yahoo.com returned error: Other errors

Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-11-26 02:59] - [2012-10-03 12:56] - 1914248 ____A (Microsoft Corporation) 37608401DFDB388CAF66917F6B2D6FB0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

#59
CompCav

Posted 27 November 2012 - 08:53 AM

Member 5k

Expert
12,454 posts

You have several restore points we can go back to on your computer. Lets' try those.

Here are the instructions:

Open System Restore by clicking the Start button. In the search box, type System Restore, and then, in the list of results, click System Restore. Administrator permission required If you're prompted for an administrator password or confirmation, type the password or provide confirmation.
Follow the steps in the wizard to choose a restore point and restore your computer. On the second page it will list restore points, put a check in the Show more restore points to get a good list.
Pick a restore point three days prior to when you noticed any issues with your computer

Then let me know how it is working.

#60
mikison

Posted 27 November 2012 - 09:00 AM

Member

Topic Starter
Member
94 posts

All the restore points are for yesterday except for one on 11/19/12. I will try that one. That is what started this whole mess to begin with by attempting a system restore.