Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer lagging considerably, crashing [Solved]

Started by Theo Haris , Dec 08 2012 08:14 AM

  • This topic is locked This topic is locked

#1
Theo Haris
Posted 08 December 2012 - 08:14 AM

Theo Haris

    Member

  • Member
  • PipPip
  • 43 posts
Hello everyone!

During the past days, my computer has been lagging considerably, taking minutes to boot, although it is a fairly new one and didn't do so before. It has also crashed three times, and restarted, jeopardizing my work. I have been into a few fishy websites and I fear that it might have been infected, although I use Noscript for Internet navigation. I would be very grateful if you could tell me whether it is infected or not.

I have used Avast antivirus to check for viruses, and none have shown. I have also scanned it with Malwarebytes, again no threats detected.

Here is the OTL log:

OTL logfile created on: 8/12/2012 4:02:08 μμ - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Resident\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

5,86 Gb Total Physical Memory | 3,59 Gb Available Physical Memory | 61,39% Memory free
11,71 Gb Paging File | 9,36 Gb Available in Paging File | 79,96% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450,66 Gb Total Space | 291,94 Gb Free Space | 64,78% Space Free | Partition Type: NTFS

Computer Name: RESIDENT-PC | User Name: Resident | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/12/08 15:37:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
PRC - [2012/12/05 14:48:04 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2012/10/31 00:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/10/26 13:17:52 | 000,079,384 | ---- | M] (Google) -- C:\Users\Resident\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2012/10/10 15:34:11 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_287.exe
PRC - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/02/02 17:16:56 | 002,671,936 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2011/10/16 13:44:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/08/25 04:03:44 | 000,120,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
PRC - [2011/08/25 04:03:42 | 000,169,352 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
PRC - [2011/07/01 04:51:14 | 000,418,896 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe
PRC - [2011/07/01 04:51:14 | 000,343,632 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe
PRC - [2011/07/01 04:51:12 | 001,103,440 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2011/07/01 04:51:12 | 000,353,360 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2011/05/30 04:54:14 | 000,036,456 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
PRC - [2011/05/13 02:59:00 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/04/30 09:32:54 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/04/24 03:29:20 | 000,256,832 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
PRC - [2011/04/24 03:28:38 | 000,297,280 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
PRC - [2011/04/22 18:44:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2011/02/01 23:41:24 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2011/02/01 23:41:20 | 000,326,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/11/21 05:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/11/17 03:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2007/02/22 17:32:12 | 000,118,784 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe


========== Modules (No Company Name) ==========

MOD - [2012/12/05 14:48:04 | 002,397,152 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2012/10/10 15:34:11 | 009,814,968 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll
MOD - [2011/08/25 04:03:42 | 000,206,216 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll
MOD - [2011/08/25 04:03:42 | 000,169,352 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
MOD - [2011/04/24 03:29:56 | 000,465,640 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
MOD - [2010/01/21 00:34:10 | 008,793,952 | ---- | M] () -- C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll
MOD - [2010/01/09 19:18:18 | 004,254,560 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
MOD - [2005/07/30 20:00:40 | 000,114,688 | ---- | M] () -- C:\Windows\SysWOW64\OdiOlDVR.dll
MOD - [2004/06/21 09:14:54 | 000,053,248 | ---- | M] () -- C:\Windows\SysWOW64\OdiAPI.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/10/31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011/08/02 21:59:46 | 000,872,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2011/04/22 18:44:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV:64bit: - [2010/11/30 01:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/23 03:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2012/12/05 14:48:04 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/10/10 15:34:12 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/01/14 20:11:19 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/10/16 13:44:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/07/01 04:51:12 | 000,353,360 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2011/06/21 22:55:04 | 000,173,424 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2011/06/07 22:25:12 | 000,191,752 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/05/30 04:54:14 | 000,036,456 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2011/05/13 02:59:00 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011/04/30 09:32:54 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2011/04/24 03:29:20 | 000,256,832 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2011/02/01 23:41:24 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/01 23:41:20 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/10/22 12:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/10/12 19:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/06/02 00:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/10/31 00:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/31 00:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/31 00:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/31 00:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/31 00:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 18:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/04/07 18:09:16 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/14 20:10:05 | 000,062,776 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:64bit: - [2012/01/14 20:10:05 | 000,022,648 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:64bit: - [2012/01/14 20:10:05 | 000,020,520 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:64bit: - [2011/10/16 13:44:00 | 000,028,992 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2011/09/20 12:02:55 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2011/09/20 12:02:55 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2011/07/14 07:35:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/07/14 07:35:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/06/10 20:16:10 | 012,230,912 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/05/16 23:57:32 | 000,051,240 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiMSa.sys -- (bScsiMSa)
DRV:64bit: - [2011/05/10 05:42:16 | 000,425,000 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2011/05/06 19:11:12 | 000,086,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiSDa.sys -- (bScsiSDa)
DRV:64bit: - [2011/04/26 20:07:36 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/04/05 13:26:26 | 000,142,632 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2011/02/10 08:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 08:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/21 03:15:30 | 000,019,496 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdmp.sys -- (b57xdmp)
DRV:64bit: - [2011/01/21 03:15:28 | 000,067,624 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdbd.sys -- (b57xdbd)
DRV:64bit: - [2010/11/30 01:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 05:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/09 12:26:46 | 002,377,216 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/10/20 02:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 10:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2009/09/29 12:20:06 | 000,022,528 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VNUSB.sys -- (VNUSB)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 02:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2006/04/07 16:06:38 | 000,038,496 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\VNUSB.sys -- (VNUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "en.wikipedia.org"
FF - prefs.js..extensions.enabledAddons: %7B0538E3E3-7E9B-4d49-8831-A227C80A7AD3%7D:2.2.2
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.3
FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20120926
FF - prefs.js..extensions.enabledAddons: %7Bbee6eb20-01e0-ebd1-da83-080329fb9a3a%7D:1.21
FF - prefs.js..extensions.enabledAddons: %7BDB2EA31C-58F5-48b7-8D60-CB0739257904%7D:0.25.1
FF - prefs.js..extensions.enabledAddons: %7Bdc572301-7619-498c-a57d-39143191b318%7D:0.4.0.3.1
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Resident\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Resident\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/11/10 00:12:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/09/10 14:50:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 14:48:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/09/10 14:50:32 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 14:48:04 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/04/07 17:19:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\Extensions
[2012/12/05 13:37:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions
[2012/10/09 16:11:43 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2012/10/03 21:59:36 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012/11/23 13:28:31 | 000,000,000 | ---D | M] (Flash and Video Download) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
[2012/11/22 03:34:40 | 000,372,581 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\[email protected]
[2012/12/05 13:37:47 | 000,531,070 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2012/11/24 04:22:39 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/07/31 12:33:31 | 000,084,005 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{DB2EA31C-58F5-48b7-8D60-CB0739257904}.xpi
[2012/11/30 19:25:32 | 000,710,866 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
[2012/12/07 12:59:18 | 000,002,112 | ---- | M] () -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\searchplugins\wot-safe-search.xml
[2012/12/05 14:47:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012/12/05 14:47:59 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/12/05 14:48:04 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/09/10 18:54:11 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/10/12 19:15:31 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - HKCU..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe File not found
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Users\Resident\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Users\Resident\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91FBD89D-0960-4A8E-BE9B-CEA020D04099}: DhcpNameServer = 10.2.241.161 10.2.12.70
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A25632C6-3B7A-4140-80F8-FF819C4AA108}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{325d0a3a-98f1-11e1-9b7e-dc0ea1521902}\Shell - "" = AutoRun
O33 - MountPoints2\{325d0a3a-98f1-11e1-9b7e-dc0ea1521902}\Shell\AutoRun\command - "" = E:\LaunchU3.exe
O33 - MountPoints2\{97e37c28-80c2-11e1-8c4c-dc0ea1521902}\Shell - "" = AutoRun
O33 - MountPoints2\{97e37c28-80c2-11e1-8c4c-dc0ea1521902}\Shell\AutoRun\command - "" = "F:\Adobe CS5\Set-up.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/08 15:49:32 | 000,000,000 | ---D | C] -- C:\Users\Resident\AppData\Roaming\Malwarebytes
[2012/12/08 15:49:24 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/12/08 15:37:41 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
[2012/12/08 02:39:27 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Papers
[2012/12/05 14:47:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/12/02 22:55:58 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Fall 2012 Plagiarism reports
[2012/12/02 15:23:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/12/02 15:23:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/11/30 14:20:00 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Club
[2012/11/26 22:35:40 | 000,000,000 | ---D | C] -- C:\Users\Resident\Documents\Yoga
[2012/11/24 17:20:28 | 000,000,000 | ---D | C] -- C:\Users\Resident\AppData\Roaming\SPSSInc
[2012/11/23 19:51:37 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/11/20 00:42:06 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\GE
[2012/11/19 19:56:35 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Minor

========== Files - Modified Within 30 Days ==========

[2012/12/08 15:49:25 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/08 15:37:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
[2012/12/08 15:34:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/12/08 15:09:00 | 000,001,206 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001UA.job
[2012/12/08 15:05:00 | 000,001,188 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/08 14:09:44 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/08 14:09:44 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/08 13:57:56 | 000,001,184 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/08 13:57:47 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/12/08 13:57:40 | 420,368,383 | -HS- | M] () -- C:\hiberfil.sys
[2012/12/07 13:09:00 | 000,001,154 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001Core.job
[2012/12/03 21:44:49 | 001,364,140 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/12/03 21:44:49 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/12/03 21:44:49 | 000,559,960 | ---- | M] () -- C:\Windows\SysNative\perfh008.dat
[2012/12/03 21:44:49 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/12/03 21:44:49 | 000,089,586 | ---- | M] () -- C:\Windows\SysNative\perfc008.dat
[2012/11/28 17:08:22 | 000,084,437 | ---- | M] () -- C:\Users\Resident\Desktop\Valaoras proposals.zip
[2012/11/26 17:40:14 | 636,618,513 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/11/21 19:58:55 | 000,059,715 | ---- | M] () -- C:\Users\Resident\Documents\Europass-CV-121121-ManolatouDimitropoulou(1).pdf
[2012/11/17 03:18:28 | 000,432,264 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/11/10 00:12:43 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt

========== Files Created - No Company Name ==========

[2012/12/08 15:49:25 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/11/28 17:08:22 | 000,084,437 | ---- | C] () -- C:\Users\Resident\Desktop\Proposals.zip
[2012/11/23 19:51:34 | 636,618,513 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/11/21 19:58:54 | 000,059,715 | ---- | C] () -- C:\Users\Resident\Documents\Europass-CV(1).pdf
[2012/11/16 12:36:54 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012/11/16 12:27:06 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012/10/14 17:03:14 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\OdiOlDVR.dll
[2012/10/14 17:03:14 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\OdiAPI.dll
[2012/09/10 14:44:00 | 000,245,941 | ---- | C] () -- C:\Windows\hpoins19.dat
[2012/09/10 14:44:00 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2012/09/09 21:09:06 | 000,000,132 | ---- | C] () -- C:\Windows\wininit.ini
[2012/06/04 14:36:23 | 000,005,120 | ---- | C] () -- C:\Users\Resident\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/07 17:49:10 | 000,008,192 | -HS- | C] () -- C:\Windows\SysWow64\srvany.exe
[2011/10/14 06:59:21 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/10/14 06:59:21 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/10/14 06:59:20 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/10/14 06:59:19 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/10/14 06:59:18 | 013,906,944 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

========== ZeroAccess Check ==========

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/09/20 15:20:03 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\.gephi
[2012/04/08 20:14:25 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\calibre
[2012/04/07 18:14:01 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\DAEMON Tools Pro
[2012/09/24 10:57:53 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\Dropbox
[2012/04/07 21:46:01 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\FloodLightGames
[2012/04/11 15:59:06 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\Mystery of Mortlake Mansion
[2012/04/07 17:08:35 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\newsXpresso
[2012/04/07 17:03:16 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\PowerCinema
[2012/04/11 15:55:20 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\runic games
[2012/11/24 17:20:28 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\SPSSInc
[2012/07/13 16:22:52 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\SubtitlesModifier
[2012/12/04 05:08:04 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\uTorrent
[2012/05/30 21:39:25 | 000,000,000 | ---D | M] -- C:\Users\Resident\AppData\Roaming\WildTangent

========== Purity Check ==========



< End of report >


Thank you very much for your help!
  • 0

Advertisements

#2
emeraldnzl
Posted 16 December 2012 - 12:55 AM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello Theo Haris,

Sorry for the delay, bit busy around here.

Now

Please download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools.

  • Double click on ComboFix.exe & follow the prompts.
  • Your desktop may go blank. This is normal.
  • ComboFix may reboot your machine. This is normal too.

**Note: Do not mouseclick combo-fix's window while it's running. That may cause it to stall**

When finished, it will produce a log for you. Please include the C:\ComboFix.txt in your next reply.
  • 0

#3
Theo Haris
Posted 16 December 2012 - 07:34 AM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Hi Emerald!

Thank you for helping out with this; I understand completely about any delays.

You will find the ComboFix log pasted at the end of this entry. I wanted to let you know that a few things have taken place since I last posted. My computer has crashed severely three times, restarting and saying that it was unable to read from the hard drive, or that it couldn't load the OS. Turning it off and on again, it worked. Two times also I received the message that the graphics driver card has crashed, but was retrieved by Windows.

A friend told me that it's perhaps an issue with overheating, but the fan works perfectly. I'm not sure what those mean, I thought I'd let you know.

Thank you once more for helping me out.

Here's the ComboFix log:


ComboFix 12-12-14.01 - Resident 16/12/2012 15:20:27.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1253.30.1032.18.5996.4319 [GMT 2:00]
Running from: c:\users\Resident\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Resident\AppData\Roaming\Microsoft\Windows\Recent\Untitled.pdf
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2012-11-16 to 2012-12-16 )))))))))))))))))))))))))))))))
.
.
2012-12-16 13:26 . 2012-12-16 13:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-16 13:26 . 2012-12-16 13:26 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-12-14 11:50 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpengine.dll
2012-12-12 12:15 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-12-08 13:49 . 2012-12-08 13:49 -------- d-----w- c:\users\Resident\AppData\Roaming\Malwarebytes
2012-12-08 13:49 . 2012-12-08 13:49 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-12-08 13:49 . 2012-12-08 13:49 -------- d-----w- c:\programdata\Malwarebytes
2012-12-08 13:49 . 2012-09-29 17:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-02 13:23 . 2012-12-02 13:23 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-11-24 15:20 . 2012-11-24 15:20 -------- d-----w- c:\users\Resident\AppData\Roaming\SPSSInc
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-13 21:39 . 2012-04-08 00:28 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-12-11 21:34 . 2012-04-07 17:54 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-11 21:34 . 2011-10-14 04:45 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-30 22:51 . 2012-06-06 23:23 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 22:51 . 2012-06-06 23:23 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 22:51 . 2012-06-06 23:23 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 22:51 . 2012-06-06 23:23 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-10-30 22:51 . 2012-06-06 23:23 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 22:51 . 2012-06-06 23:23 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 22:50 . 2012-06-06 23:23 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-10-30 22:50 . 2012-06-06 23:23 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-16 08:38 . 2012-11-28 11:29 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-28 11:29 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-28 11:29 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-10-15 16:59 . 2012-06-06 23:23 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-10-09 18:17 . 2012-11-16 10:25 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2012-10-09 18:17 . 2012-11-16 10:25 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2012-10-09 17:40 . 2012-11-16 10:25 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40 . 2012-11-16 10:25 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2012-10-04 16:40 . 2012-12-12 12:15 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-10-03 17:56 . 2012-11-16 10:25 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-03 17:44 . 2012-11-16 10:25 303104 ----a-w- c:\windows\system32\nlasvc.dll
2012-10-03 17:44 . 2012-11-16 10:25 70656 ----a-w- c:\windows\system32\nlaapi.dll
2012-10-03 17:44 . 2012-11-16 10:25 246272 ----a-w- c:\windows\system32\netcorehc.dll
2012-10-03 17:44 . 2012-11-16 10:25 18944 ----a-w- c:\windows\system32\netevent.dll
2012-10-03 17:44 . 2012-11-16 10:25 216576 ----a-w- c:\windows\system32\ncsi.dll
2012-10-03 17:42 . 2012-11-16 10:25 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-10-03 16:42 . 2012-11-16 10:25 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2012-10-03 16:42 . 2012-11-16 10:25 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2012-10-03 16:42 . 2012-11-16 10:25 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2012-10-03 16:07 . 2012-11-16 10:25 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
2012-09-25 22:47 . 2012-11-16 10:24 78336 ----a-w- c:\windows\SysWow64\synceng.dll
2012-09-25 22:46 . 2012-11-16 10:24 95744 ----a-w- c:\windows\system32\synceng.dll
2012-09-24 20:16 . 2012-10-22 12:44 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-09-20 13:19 . 2012-09-20 13:19 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-20 13:19 . 2012-09-20 13:19 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-04-07 15:48 8192 --sha-w- c:\windows\SysWOW64\srvany.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 94208 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2011-06-01 506712]
"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-09-20 341360]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888]
"hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-09 49208]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216]
.
c:\users\Resident\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2010-1-21 243072]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Device Detector 3.lnk - c:\program files (x86)\Olympus\DeviceDetector\DevDtct2.exe [2012-10-14 118784]
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-06-07 191752]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 TurboBoost;Intel® Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R3 WatAdminSvc;Υπηρεσία Τεχνολογιών ενεργοποίησης των Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-08 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2011-10-16 28992]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-07 283200]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2012-01-14 22648]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2012-01-14 20520]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2012-01-14 62776]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-05-13 249648]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2011-07-01 353360]
S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2011-08-02 872552]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-04-30 13592]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2011-04-22 244624]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2011-04-24 256832]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]
S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\drivers\b57xdbd.sys [2011-01-21 67624]
S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\drivers\b57xdmp.sys [2011-01-21 19496]
S3 bScsiMSa;bScsiMSa;c:\windows\system32\drivers\bScsiMSa.sys [2011-05-16 51240]
S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys [2011-05-06 86056]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2011-04-05 142632]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-15 317440]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2011-05-10 425000]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2011-02-10 82432]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2011-02-10 181760]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-07 21:34]
.
2012-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-15 12:42]
.
2012-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-07-15 12:42]
.
2012-12-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001Core.job
- c:\users\Resident\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-17 18:54]
.
2012-12-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001UA.job
- c:\users\Resident\AppData\Local\Google\Update\GoogleUpdate.exe [2012-04-17 18:54]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2012-02-14 22:58 97792 ----a-w- c:\users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-06-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-06-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-06-21 416024]
"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-08-16 12673128]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-08-16 2277480]
"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 112512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Supplementary Scan -------
.
uStart Page = hxxp://acer.msn.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://acer.msn.com
mStart Page = hxxp://acer.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Resident\AppData\Roaming\Mozilla\Firefox\Profiles\t2vlamvy.default\
FF - prefs.js: browser.startup.homepage - en.wikipedia.org
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2012-10-18 19:27; {bee6eb20-01e0-ebd1-da83-080329fb9a3a}; c:\users\Resident\AppData\Roaming\Mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - ExtSQL: !HIDDEN! 2012-09-10 15:50; [email protected]; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-RESTART_STICKY_NOTES - c:\windows\System32\StikyNot.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-12-16 15:28:18
ComboFix-quarantined-files.txt 2012-12-16 13:28
.
Pre-Run: 7 Κατάλογοι 329.227.878.400 διαθέσιμα byte
Post-Run: 16 Κατάλογοι 331.001.962.496 διαθέσιμα byte
.
- - End Of File - - ED7A75068C2781641419AE34E4F89E9C
  • 0

#4
emeraldnzl
Posted 16 December 2012 - 01:15 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

I received the message that the graphics driver card has crashed


Your graphics card may be the problem.

Please download Event Viewer by Vino Rosso and save it to your desktop.
  • Double-click VEW.exe
  • Under 'Select log to query', Check the System box
  • Under 'Select type to list', Check Error & Warning boxes
  • Under Number or date of Events > 'Number of events' Type 20 in the 1 to 20 box
  • Click the Run button.
Notepad will open with a log. Please post the log back here.

Next

Download aswMBR.exe ( 4.5mb ) to your desktop.

Double click the aswMBR.exe to run it.

Posted ImageClick the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

When you return please post
  • event log
  • aswMBR log
  • 0

#5
Theo Haris
Posted 16 December 2012 - 01:59 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Thank you very much.

I had to run VEW as admin, otherwise notepad wouldn't open the file. I also changed the language settings to English, since again it wouldn't run.

The log is below:

Vino's Event Viewer v01c run on Windows 2008 in English
Report run at 16/12/2012 9:50:55 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Critical Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - Warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



I couldn't run aswMBR.exe, because I get a window saying it's not a valid Win32 application...
  • 0

#6
emeraldnzl
Posted 16 December 2012 - 02:13 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

I had to run VEW as admin,


Yes, I should have said to run as administrator.

Nothing showing there. Did you do these things:

  • Under 'Select log to query', Check the System box
  • Under 'Select type to list', Check Error & Warning boxes
  • Under Number or date of Events > 'Number of events' Type 20 in the 1 to 20 box

  • 0

#7
Theo Haris
Posted 16 December 2012 - 02:19 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Yes, and I did it just now again in case I did something wrong. The same results appear...
  • 0

#8
emeraldnzl
Posted 16 December 2012 - 02:22 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hmm... let's see if this one tells us anything.

Please download Farbar Service Scanner and run.

  • Make sure the following options are checked:


  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center/Action Center
  • Windows Update
  • Other Services

[*]Press Scan
[*]A log (FSS.txt) will be created in the same directory the tool is run.
[*]Copy and paste the log back here.
[/list]
  • 0

#9
Theo Haris
Posted 16 December 2012 - 02:25 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Here you go. That one has worked (I think). Thank you once more for your time.

============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

#10
emeraldnzl
Posted 16 December 2012 - 02:31 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Everything working okay there.

Moving along then:

Please download MBRCheck.exe to your Desktop. Run the application.

If no infection is found, it will produce a report on the desktop. Post that report in your next reply.

If an infection is found, you will be presented with the following dialog:

Enter 'Y' and hit ENTER for more options, or 'N' to exit:


Type N and press Enter. A report will be produced on the desktop. Post that report in your next reply.

After that

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Put a checkmark beside loaded modules.

    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Posted Image

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
When you return please post
  • MBRCheck report
  • log.txt
  • 0

Advertisements

#11
Theo Haris
Posted 16 December 2012 - 02:44 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
MBRCheck didn't find any infections, while TDSS found six threats. Here are the logs:

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer: Acer
BIOS Manufacturer: Acer
System Manufacturer: Acer
System Product Name: Aspire 5755G
Logical Drives Mask: 0x0000002c

Kernel Drivers (total 199):
0x0324F000 \SystemRoot\system32\ntoskrnl.exe
0x03206000 \SystemRoot\system32\hal.dll
0x00B96000 \SystemRoot\system32\kdcom.dll
0x00CBA000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00D09000 \SystemRoot\system32\PSHED.dll
0x00D1D000 \SystemRoot\system32\CLFS.SYS
0x00EE2000 \SystemRoot\system32\CI.dll
0x00E00000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00EC2000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00FA2000 \SystemRoot\system32\drivers\ACPI.sys
0x00ED2000 \SystemRoot\system32\drivers\WMILIB.SYS
0x00D7B000 \SystemRoot\system32\drivers\msisadrv.sys
0x00D85000 \SystemRoot\system32\drivers\pci.sys
0x00DB8000 \SystemRoot\system32\drivers\vdrvroot.sys
0x00DC5000 \SystemRoot\System32\drivers\partmgr.sys
0x00DDA000 \SystemRoot\system32\drivers\compbatt.sys
0x00DE3000 \SystemRoot\system32\drivers\BATTC.SYS
0x00C00000 \SystemRoot\system32\drivers\volmgr.sys
0x00C15000 \SystemRoot\System32\drivers\volmgrx.sys
0x00C71000 \SystemRoot\System32\drivers\mountmgr.sys
0x01064000 \SystemRoot\system32\drivers\iaStor.sys
0x01000000 \SystemRoot\system32\drivers\atapi.sys
0x01009000 \SystemRoot\system32\drivers\ataport.SYS
0x01033000 \SystemRoot\system32\drivers\amdxata.sys
0x0142E000 \SystemRoot\system32\drivers\fltmgr.sys
0x0147A000 \SystemRoot\system32\drivers\fileinfo.sys
0x01602000 \SystemRoot\System32\Drivers\Ntfs.sys
0x0148E000 \SystemRoot\System32\Drivers\msrpc.sys
0x017A5000 \SystemRoot\System32\Drivers\ksecdd.sys
0x014EC000 \SystemRoot\System32\Drivers\cng.sys
0x017C0000 \SystemRoot\System32\drivers\pcw.sys
0x017D1000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x01833000 \SystemRoot\system32\drivers\ndis.sys
0x01925000 \SystemRoot\system32\drivers\NETIO.SYS
0x01985000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01A11000 \SystemRoot\System32\drivers\tcpip.sys
0x01C12000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x01C5C000 \SystemRoot\system32\drivers\volsnap.sys
0x01CA8000 \SystemRoot\System32\Drivers\spldr.sys
0x01CB0000 \SystemRoot\System32\drivers\rdyboost.sys
0x01CEA000 \SystemRoot\system32\DRIVERS\nvpciflt.sys
0x01CF4000 \SystemRoot\System32\Drivers\mup.sys
0x01D06000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01D0F000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01D49000 \SystemRoot\system32\drivers\disk.sys
0x01D5F000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x01D9D000 \SystemRoot\system32\DRIVERS\dtsoftbus01.sys
0x03E00000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x046D0000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x047C4000 \SystemRoot\system32\DRIVERS\mwlPSDFilter.sys
0x047CF000 \SystemRoot\System32\Drivers\Null.SYS
0x047D8000 \SystemRoot\System32\Drivers\Beep.SYS
0x047DF000 \SystemRoot\System32\drivers\vga.sys
0x04600000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x04625000 \SystemRoot\System32\drivers\watchdog.sys
0x04635000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x0463E000 \SystemRoot\system32\drivers\rdpencdd.sys
0x04647000 \SystemRoot\system32\drivers\rdprefmp.sys
0x04650000 \SystemRoot\System32\Drivers\Msfs.SYS
0x0465B000 \SystemRoot\System32\Drivers\Npfs.SYS
0x0466C000 \SystemRoot\system32\DRIVERS\tdx.sys
0x0468E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x0469B000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x019AF000 \SystemRoot\System32\DRIVERS\netbt.sys
0x0155E000 \SystemRoot\system32\drivers\afd.sys
0x046AD000 \SystemRoot\System32\Drivers\aswrdr2.sys
0x046BD000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x047ED000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x01800000 \SystemRoot\system32\DRIVERS\pacer.sys
0x03E2A000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x041EF000 \SystemRoot\system32\DRIVERS\netbios.sys
0x017DB000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x01DE6000 \SystemRoot\system32\drivers\termdd.sys
0x072A5000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x072F6000 \SystemRoot\system32\drivers\nsiproxy.sys
0x07302000 \SystemRoot\system32\DRIVERS\mwlPSDVDisk.sys
0x07315000 \SystemRoot\system32\DRIVERS\mwlPSDNServ.sys
0x0731D000 \SystemRoot\system32\drivers\mssmbios.sys
0x07328000 \SystemRoot\System32\drivers\discache.sys
0x07337000 \SystemRoot\System32\Drivers\dfsc.sys
0x07355000 \SystemRoot\system32\drivers\blbdrive.sys
0x07366000 \SystemRoot\System32\Drivers\aswSP.SYS
0x073C7000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x0F4C0000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x030AE000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x031A2000 \SystemRoot\System32\drivers\dxgmms1.sys
0x08438000 \SystemRoot\system32\DRIVERS\igdkmd64.sys
0x08FE3000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x08400000 \SystemRoot\system32\drivers\usbehci.sys
0x03000000 \SystemRoot\system32\drivers\USBPORT.SYS
0x08411000 \SystemRoot\system32\drivers\HDAudBus.sys
0x1013F000 \SystemRoot\system32\DRIVERS\k57nd60a.sys
0x03056000 \SystemRoot\system32\DRIVERS\bScsiSDa.sys
0x03075000 \SystemRoot\system32\DRIVERS\SCSIPORT.SYS
0x031E8000 \SystemRoot\system32\drivers\bScsiMSa.sys
0x101A9000 \SystemRoot\system32\drivers\b57xdbd.sys
0x0786A000 \SystemRoot\system32\DRIVERS\athrx.sys
0x07AB4000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x07AC1000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys
0x07AF2000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x07AF4000 \SystemRoot\system32\drivers\i8042prt.sys
0x07B12000 \SystemRoot\system32\drivers\kbdclass.sys
0x07B21000 \SystemRoot\system32\DRIVERS\ETD.sys
0x07B46000 \SystemRoot\system32\drivers\mouclass.sys
0x07B55000 \SystemRoot\system32\drivers\CmBatt.sys
0x07B5A000 \??\C:\Windows\system32\drivers\UBHelper.sys
0x07B62000 \??\C:\Windows\system32\drivers\NTIDrvr.sys
0x07B6A000 \SystemRoot\system32\drivers\wmiacpi.sys
0x07B73000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x07B89000 \SystemRoot\system32\drivers\CompositeBus.sys
0x07B99000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x07BAF000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x07BD3000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x07800000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x0782F000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x07BDF000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x0784A000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x07864000 \SystemRoot\system32\drivers\swenum.sys
0x101BD000 \SystemRoot\system32\drivers\ks.sys
0x0F400000 \SystemRoot\system32\DRIVERS\umbus.sys
0x0F412000 \SystemRoot\system32\drivers\usbhub.sys
0x0F46C000 \SystemRoot\system32\DRIVERS\nusb3hub.sys
0x0F485000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x09280000 \SystemRoot\system32\drivers\RTKVHD64.sys
0x09569000 \SystemRoot\system32\drivers\portcls.sys
0x095A6000 \SystemRoot\system32\drivers\drmk.sys
0x095C8000 \SystemRoot\system32\drivers\ksthunk.sys
0x09200000 \SystemRoot\system32\DRIVERS\IntcDAud.sys
0x09253000 \SystemRoot\system32\drivers\b57xdmp.sys
0x0925B000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x000A0000 \SystemRoot\System32\win32k.sys
0x095CE000 \SystemRoot\System32\drivers\Dxapi.sys
0x07200000 \SystemRoot\System32\Drivers\usbvideo.sys
0x095DA000 \SystemRoot\System32\Drivers\crashdmp.sys
0x03E40000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x095E8000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x0F49A000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00570000 \SystemRoot\System32\TSDDD.dll
0x00600000 \SystemRoot\System32\cdd.dll
0x0722E000 \SystemRoot\system32\drivers\luafv.sys
0x07251000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x08FF4000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x0F4A8000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x05887000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x058DA000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x058ED000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x05905000 \SystemRoot\system32\DRIVERS\TurboB.sys
0x0590C000 \SystemRoot\system32\drivers\HTTP.sys
0x059D5000 \SystemRoot\system32\DRIVERS\bowser.sys
0x05800000 \SystemRoot\System32\drivers\mpsdrv.sys
0x05818000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x0AADC000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x0AB2A000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x0AB4E000 \SystemRoot\system32\drivers\peauth.sys
0x0ABF4000 \SystemRoot\System32\Drivers\secdrv.SYS
0x0AA00000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x0AA31000 \SystemRoot\System32\drivers\tcpipreg.sys
0x0AA43000 \SystemRoot\System32\DRIVERS\srv2.sys
0x0B2C1000 \SystemRoot\System32\DRIVERS\srv.sys
0x77B60000 \Windows\System32\ntdll.dll
0x476F0000 \Windows\System32\smss.exe
0xFFE80000 \Windows\System32\apisetschema.dll
0xFFA90000 \Windows\System32\autochk.exe
0xFFC90000 \Windows\System32\setupapi.dll
0xFFC10000 \Windows\System32\shlwapi.dll
0x77A40000 \Windows\System32\kernel32.dll
0xFFB70000 \Windows\System32\clbcatq.dll
0xFFA60000 \Windows\System32\msctf.dll
0x77830000 \Windows\System32\iertutil.dll
0x77D30000 \Windows\System32\psapi.dll
0x776D0000 \Windows\System32\wininet.dll
0xFF990000 \Windows\System32\usp10.dll
0xFF920000 \Windows\System32\gdi32.dll
0xFF8C0000 \Windows\System32\Wldap32.dll
0xFF8B0000 \Windows\System32\lpk.dll
0xFF8A0000 \Windows\System32\nsi.dll
0xFEB10000 \Windows\System32\shell32.dll
0x775D0000 \Windows\System32\user32.dll
0x77480000 \Windows\System32\urlmon.dll
0xFEA30000 \Windows\System32\oleaut32.dll
0xFE900000 \Windows\System32\rpcrt4.dll
0xFE8D0000 \Windows\System32\imm32.dll
0x77D20000 \Windows\System32\normaliz.dll
0xFE6C0000 \Windows\System32\ole32.dll
0xFE670000 \Windows\System32\ws2_32.dll
0xFE650000 \Windows\System32\imagehlp.dll
0xFE5D0000 \Windows\System32\difxapi.dll
0xFE4F0000 \Windows\System32\advapi32.dll
0xFE450000 \Windows\System32\comdlg32.dll
0xFE430000 \Windows\System32\sechost.dll
0xFE390000 \Windows\System32\msvcrt.dll
0xFE350000 \Windows\System32\wintrust.dll
0xFE330000 \Windows\System32\devobj.dll
0xFE290000 \Windows\System32\comctl32.dll
0xFE120000 \Windows\System32\crypt32.dll
0xFE0E0000 \Windows\System32\cfgmgr32.dll
0xFE070000 \Windows\System32\KernelBase.dll
0xFE060000 \Windows\System32\msasn1.dll
0x76930000 \Windows\SysWOW64\normaliz.dll

Processes (total 106):
0 System Idle Process
4 System
376 C:\Windows\System32\smss.exe
560 csrss.exe
640 C:\Windows\System32\wininit.exe
664 csrss.exe
704 C:\Windows\System32\winlogon.exe
748 C:\Windows\System32\services.exe
776 C:\Windows\System32\lsass.exe
784 C:\Windows\System32\lsm.exe
892 C:\Windows\System32\svchost.exe
968 C:\Windows\System32\nvvsvc.exe
1008 C:\Windows\System32\svchost.exe
584 C:\Windows\System32\svchost.exe
668 C:\Windows\System32\svchost.exe
884 C:\Windows\System32\svchost.exe
1072 C:\Windows\System32\audiodg.exe
1112 C:\Windows\System32\svchost.exe
1200 C:\Windows\System32\svchost.exe
1300 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
1312 C:\Windows\System32\nvvsvc.exe
1360 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1604 C:\Windows\System32\spoolsv.exe
1632 C:\Windows\System32\svchost.exe
1716 C:\Windows\System32\taskhost.exe
1756 C:\Windows\System32\dwm.exe
1780 C:\Windows\explorer.exe
1840 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
828 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
1672 C:\Program Files (x86)\Launch Manager\dsiwmis.exe
2072 C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
2080 C:\Program Files (x86)\Launch Manager\LMworker.exe
2088 C:\Program Files (x86)\Launch Manager\LMutilps32.exe
2112 C:\Windows\System32\svchost.exe
2136 C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
2160 C:\Windows\SysWOW64\svchost.exe
2188 C:\Program Files\Acer\Acer Updater\UpdaterService.exe
2224 C:\Windows\System32\svchost.exe
2252 C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
2344 C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
2372 C:\Windows\System32\svchost.exe
2448 C:\Windows\System32\svchost.exe
2488 C:\Windows\System32\svchost.exe
2708 C:\Windows\System32\taskeng.exe
3096 C:\Windows\System32\svchost.exe
3160 C:\Windows\System32\svchost.exe
3312 C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
3320 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
3748 C:\Windows\System32\rundll32.exe
3940 C:\Windows\System32\igfxtray.exe
3948 C:\Windows\System32\hkcmd.exe
4032 C:\Windows\System32\igfxpers.exe
4040 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
4064 C:\Program Files\Elantech\ETDCtrl.exe
3368 C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
1212 C:\Windows\System32\SearchIndexer.exe
3536 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
3492 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
3448 C:\Program Files\Windows Media Player\wmpnetwk.exe
4236 C:\Program Files\Elantech\ETDCtrlHelper.exe
4248 C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
4288 C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe
4312 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
4380 C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
4456 C:\Windows\System32\svchost.exe
4548 C:\Windows\System32\igfxext.exe
4592 C:\Windows\System32\igfxsrvc.exe
4648 C:\Windows\System32\wbem\unsecapp.exe
4728 WmiPrvSE.exe
4860 C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
4868 C:\Program Files (x86)\Launch Manager\LManager.exe
4876 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
4884 C:\Dolby PCEE4\pcee4.exe
4924 C:\Program Files\AVAST Software\Avast\AvastUI.exe
4976 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
4984 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
5096 C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
4320 C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
3960 C:\Windows\System32\StikyNot.exe
5224 C:\Program Files (x86)\Mozilla Firefox\firefox.exe
5260 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
5304 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
5388 dllhost.exe
5508 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
5812 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
5880 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
3328 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
4508 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
4616 C:\Program Files (x86)\Windows Media Player\wmplayer.exe
3404 C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
3836 C:\Program Files\EgisTec IPS\PmmUpdate.exe
6088 C:\Program Files\EgisTec IPS\EgisUpdate.exe
2960 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
1216 C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
4952 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
4000 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
3684 C:\Users\Resident\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
4188 C:\Program Files\Microsoft Office\Office14\WINWORD.EXE
596 C:\Windows\System32\svchost.exe
5280 C:\Windows\System32\VSSVC.exe
1124 C:\Windows\System32\SearchProtocolHost.exe
1828 C:\Windows\System32\SearchFilterHost.exe
6064 dllhost.exe
3440 dllhost.exe
5892 C:\Users\Resident\Desktop\MBRCheck.exe
672 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000003`c6500000 (NTFS)

PhysicalDrive0 Model Number: HitachiHTS547550A9E384, Rev: JE3OA60A

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done!




And of the TDSS:


22:38:22.0897 1296 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:38:24.0910 1296 ============================================================
22:38:24.0910 1296 Current date / time: 2012/12/16 22:38:24.0910
22:38:24.0910 1296 SystemInfo:
22:38:24.0910 1296
22:38:24.0910 1296 OS Version: 6.1.7601 ServicePack: 1.0
22:38:24.0910 1296 Product type: Workstation
22:38:24.0910 1296 ComputerName: RESIDENT-PC
22:38:24.0910 1296 UserName: Resident
22:38:24.0910 1296 Windows directory: C:\Windows
22:38:24.0910 1296 System windows directory: C:\Windows
22:38:24.0910 1296 Running under WOW64
22:38:24.0910 1296 Processor architecture: Intel x64
22:38:24.0910 1296 Number of processors: 4
22:38:24.0910 1296 Page size: 0x1000
22:38:24.0910 1296 Boot type: Normal boot
22:38:24.0910 1296 ============================================================
22:38:25.0783 1296 BG loaded
22:38:26.0173 1296 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:38:26.0189 1296 ============================================================
22:38:26.0189 1296 \Device\Harddisk0\DR0:
22:38:26.0189 1296 MBR partitions:
22:38:26.0189 1296 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x32000
22:38:26.0189 1296 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E32800, BlocksNum 0x38553000
22:38:26.0189 1296 ============================================================
22:38:26.0282 1296 C: <-> \Device\Harddisk0\DR0\Partition2
22:38:26.0282 1296 ============================================================
22:38:26.0282 1296 Initialize success
22:38:26.0282 1296 ============================================================
22:40:12.0176 1652 ============================================================
22:40:12.0176 1652 Scan started
22:40:12.0176 1652 Mode: Manual; SigCheck; TDLFS;
22:40:12.0176 1652 ============================================================
22:40:13.0861 1652 ================ Scan system memory ========================
22:40:13.0861 1652 System memory - ok
22:40:13.0861 1652 ================ Scan services =============================
22:40:14.0220 1652 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:40:14.0345 1652 1394ohci - ok
22:40:14.0376 1652 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:40:14.0392 1652 ACPI - ok
22:40:14.0423 1652 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:40:14.0454 1652 AcpiPmi - ok
22:40:14.0548 1652 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
22:40:14.0579 1652 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
22:40:14.0579 1652 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
22:40:14.0641 1652 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:40:14.0672 1652 AdobeARMservice - ok
22:40:14.0782 1652 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:40:14.0813 1652 AdobeFlashPlayerUpdateSvc - ok
22:40:14.0875 1652 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:40:14.0922 1652 adp94xx - ok
22:40:14.0953 1652 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:40:14.0969 1652 adpahci - ok
22:40:15.0016 1652 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:40:15.0047 1652 adpu320 - ok
22:40:15.0078 1652 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:40:15.0156 1652 AeLookupSvc - ok
22:40:15.0203 1652 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:40:15.0234 1652 AFD - ok
22:40:15.0265 1652 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:40:15.0281 1652 agp440 - ok
22:40:15.0312 1652 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:40:15.0359 1652 ALG - ok
22:40:15.0390 1652 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:40:15.0406 1652 aliide - ok
22:40:15.0406 1652 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:40:15.0421 1652 amdide - ok
22:40:15.0437 1652 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:40:15.0468 1652 AmdK8 - ok
22:40:15.0484 1652 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:40:15.0499 1652 AmdPPM - ok
22:40:15.0530 1652 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:40:15.0530 1652 amdsata - ok
22:40:15.0562 1652 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:40:15.0562 1652 amdsbs - ok
22:40:15.0577 1652 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:40:15.0593 1652 amdxata - ok
22:40:15.0608 1652 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:40:15.0655 1652 AppID - ok
22:40:15.0686 1652 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:40:15.0718 1652 AppIDSvc - ok
22:40:15.0749 1652 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:40:15.0796 1652 Appinfo - ok
22:40:15.0842 1652 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:40:15.0858 1652 arc - ok
22:40:15.0874 1652 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:40:15.0889 1652 arcsas - ok
22:40:15.0920 1652 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
22:40:15.0936 1652 aswFsBlk - ok
22:40:15.0967 1652 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:40:15.0983 1652 aswMonFlt - ok
22:40:15.0998 1652 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
22:40:16.0014 1652 aswRdr - ok
22:40:16.0045 1652 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:40:16.0061 1652 aswSnx - ok
22:40:16.0092 1652 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:40:16.0092 1652 aswSP - ok
22:40:16.0123 1652 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:40:16.0139 1652 aswTdi - ok
22:40:16.0170 1652 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:40:16.0248 1652 AsyncMac - ok
22:40:16.0279 1652 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:40:16.0279 1652 atapi - ok
22:40:16.0373 1652 [ C8679A07267F030704168E45E27C3D43 ] athr C:\Windows\system32\DRIVERS\athrx.sys
22:40:16.0435 1652 athr - ok
22:40:16.0482 1652 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:40:16.0544 1652 AudioEndpointBuilder - ok
22:40:16.0560 1652 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:40:16.0591 1652 AudioSrv - ok
22:40:16.0654 1652 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:40:16.0685 1652 avast! Antivirus - ok
22:40:16.0732 1652 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:40:16.0794 1652 AxInstSV - ok
22:40:16.0825 1652 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:40:16.0856 1652 b06bdrv - ok
22:40:16.0888 1652 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:40:16.0903 1652 b57nd60a - ok
22:40:16.0934 1652 [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd C:\Windows\system32\drivers\b57xdbd.sys
22:40:16.0950 1652 b57xdbd - ok
22:40:16.0966 1652 [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp C:\Windows\system32\drivers\b57xdmp.sys
22:40:16.0981 1652 b57xdmp - ok
22:40:17.0044 1652 [ 87F3BCF82A63E900AF896CD930BF7E05 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
22:40:17.0075 1652 BBSvc - ok
22:40:17.0122 1652 [ 78779EE07231C658B483B1F38B5088DF ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
22:40:17.0137 1652 BBUpdate - ok
22:40:17.0168 1652 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:40:17.0184 1652 BDESVC - ok
22:40:17.0215 1652 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:40:17.0246 1652 Beep - ok
22:40:17.0309 1652 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:40:17.0387 1652 BFE - ok
22:40:17.0434 1652 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
22:40:17.0496 1652 BITS - ok
22:40:17.0527 1652 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:40:17.0543 1652 blbdrive - ok
22:40:17.0590 1652 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:40:17.0636 1652 bowser - ok
22:40:17.0652 1652 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:40:17.0683 1652 BrFiltLo - ok
22:40:17.0699 1652 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:40:17.0714 1652 BrFiltUp - ok
22:40:17.0777 1652 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:40:17.0855 1652 BridgeMP - ok
22:40:17.0886 1652 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:40:17.0902 1652 Browser - ok
22:40:17.0933 1652 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:40:17.0995 1652 Brserid - ok
22:40:17.0995 1652 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:40:18.0026 1652 BrSerWdm - ok
22:40:18.0058 1652 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:40:18.0073 1652 BrUsbMdm - ok
22:40:18.0089 1652 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:40:18.0104 1652 BrUsbSer - ok
22:40:18.0136 1652 [ 0970D8B7151E9113BF8D44CE2E954DF7 ] bScsiMSa C:\Windows\system32\drivers\bScsiMSa.sys
22:40:18.0167 1652 bScsiMSa - ok
22:40:18.0182 1652 [ 0C1EEE5AF32402D306874B110DE237EC ] bScsiSDa C:\Windows\system32\DRIVERS\bScsiSDa.sys
22:40:18.0198 1652 bScsiSDa - ok
22:40:18.0214 1652 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:40:18.0229 1652 BTHMODEM - ok
22:40:18.0276 1652 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:40:18.0323 1652 bthserv - ok
22:40:18.0338 1652 catchme - ok
22:40:18.0370 1652 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:40:18.0448 1652 cdfs - ok
22:40:18.0463 1652 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:40:18.0479 1652 cdrom - ok
22:40:18.0510 1652 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:40:18.0604 1652 CertPropSvc - ok
22:40:18.0619 1652 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:40:18.0650 1652 circlass - ok
22:40:18.0682 1652 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:40:18.0697 1652 CLFS - ok
22:40:18.0744 1652 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:40:18.0760 1652 clr_optimization_v2.0.50727_32 - ok
22:40:18.0791 1652 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:40:18.0806 1652 clr_optimization_v2.0.50727_64 - ok
22:40:18.0869 1652 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:40:18.0900 1652 clr_optimization_v4.0.30319_32 - ok
22:40:18.0931 1652 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:40:18.0947 1652 clr_optimization_v4.0.30319_64 - ok
22:40:18.0962 1652 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:40:19.0009 1652 CmBatt - ok
22:40:19.0040 1652 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:40:19.0056 1652 cmdide - ok
22:40:19.0087 1652 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:40:19.0118 1652 CNG - ok
22:40:19.0150 1652 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:40:19.0150 1652 Compbatt - ok
22:40:19.0181 1652 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:40:19.0196 1652 CompositeBus - ok
22:40:19.0228 1652 COMSysApp - ok
22:40:19.0259 1652 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:40:19.0259 1652 crcdisk - ok
22:40:19.0290 1652 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:40:19.0306 1652 CryptSvc - ok
22:40:19.0352 1652 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:40:19.0415 1652 DcomLaunch - ok
22:40:19.0462 1652 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:40:19.0493 1652 defragsvc - ok
22:40:19.0524 1652 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:40:19.0555 1652 DfsC - ok
22:40:19.0602 1652 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:40:19.0649 1652 Dhcp - ok
22:40:19.0680 1652 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:40:19.0758 1652 discache - ok
22:40:19.0789 1652 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:40:19.0820 1652 Disk - ok
22:40:19.0852 1652 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:40:19.0883 1652 Dnscache - ok
22:40:19.0898 1652 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:40:19.0945 1652 dot3svc - ok
22:40:19.0976 1652 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:40:20.0023 1652 DPS - ok
22:40:20.0070 1652 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:40:20.0086 1652 drmkaud - ok
22:40:20.0117 1652 [ 9DD3A22F804697606C2B7FF9E912FF6B ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
22:40:20.0132 1652 DsiWMIService - ok
22:40:20.0164 1652 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:40:20.0179 1652 dtsoftbus01 - ok
22:40:20.0226 1652 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:40:20.0273 1652 DXGKrnl - ok
22:40:20.0304 1652 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:40:20.0382 1652 EapHost - ok
22:40:20.0491 1652 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:40:20.0616 1652 ebdrv - ok
22:40:20.0663 1652 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:40:20.0694 1652 EFS - ok
22:40:20.0756 1652 [ 5332EC2BA1C112BD4BB1F38127848FEF ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
22:40:20.0772 1652 EgisTec Ticket Service - ok
22:40:20.0850 1652 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:40:20.0897 1652 ehRecvr - ok
22:40:20.0944 1652 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:40:20.0959 1652 ehSched - ok
22:40:21.0006 1652 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:40:21.0037 1652 elxstor - ok
22:40:21.0131 1652 [ 48425C93B6F36529707206E4FA680CF3 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
22:40:21.0178 1652 ePowerSvc - ok
22:40:21.0193 1652 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:40:21.0209 1652 ErrDev - ok
22:40:21.0256 1652 [ DBAA0C650C9549DC5C599D1E81DEDAAD ] ETD C:\Windows\system32\DRIVERS\ETD.sys
22:40:21.0271 1652 ETD - ok
22:40:21.0318 1652 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:40:21.0380 1652 EventSystem - ok
22:40:21.0396 1652 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:40:21.0427 1652 exfat - ok
22:40:21.0443 1652 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:40:21.0490 1652 fastfat - ok
22:40:21.0521 1652 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:40:21.0568 1652 Fax - ok
22:40:21.0599 1652 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:40:21.0646 1652 fdc - ok
22:40:21.0677 1652 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:40:21.0724 1652 fdPHost - ok
22:40:21.0739 1652 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:40:21.0770 1652 FDResPub - ok
22:40:21.0786 1652 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:40:21.0802 1652 FileInfo - ok
22:40:21.0817 1652 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:40:21.0895 1652 Filetrace - ok
22:40:21.0942 1652 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:40:21.0989 1652 FLEXnet Licensing Service - ok
22:40:22.0004 1652 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:40:22.0020 1652 flpydisk - ok
22:40:22.0036 1652 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:40:22.0051 1652 FltMgr - ok
22:40:22.0098 1652 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:40:22.0129 1652 FontCache - ok
22:40:22.0160 1652 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:40:22.0176 1652 FontCache3.0.0.0 - ok
22:40:22.0192 1652 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:40:22.0207 1652 FsDepends - ok
22:40:22.0254 1652 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:40:22.0270 1652 Fs_Rec - ok
22:40:22.0316 1652 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:40:22.0332 1652 fvevol - ok
22:40:22.0348 1652 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:40:22.0363 1652 gagp30kx - ok
22:40:22.0410 1652 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:40:22.0441 1652 GamesAppService - ok
22:40:22.0472 1652 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:40:22.0519 1652 gpsvc - ok
22:40:22.0566 1652 [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
22:40:22.0597 1652 GREGService - ok
22:40:22.0691 1652 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:40:22.0722 1652 gupdate - ok
22:40:22.0753 1652 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:40:22.0784 1652 gupdatem - ok
22:40:22.0816 1652 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:40:22.0847 1652 hcw85cir - ok
22:40:22.0878 1652 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:40:22.0909 1652 HdAudAddService - ok
22:40:22.0940 1652 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:40:23.0003 1652 HDAudBus - ok
22:40:23.0018 1652 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:40:23.0034 1652 HidBatt - ok
22:40:23.0050 1652 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:40:23.0065 1652 HidBth - ok
22:40:23.0081 1652 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:40:23.0096 1652 HidIr - ok
22:40:23.0128 1652 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:40:23.0159 1652 hidserv - ok
22:40:23.0190 1652 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
22:40:23.0221 1652 HidUsb - ok
22:40:23.0237 1652 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:40:23.0299 1652 hkmsvc - ok
22:40:23.0315 1652 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:40:23.0330 1652 HomeGroupListener - ok
22:40:23.0362 1652 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:40:23.0393 1652 HomeGroupProvider - ok
22:40:23.0486 1652 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:40:23.0518 1652 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
22:40:23.0518 1652 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
22:40:23.0533 1652 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:40:23.0549 1652 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
22:40:23.0564 1652 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
22:40:23.0596 1652 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:40:23.0611 1652 HpSAMD - ok
22:40:23.0689 1652 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:40:23.0720 1652 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
22:40:23.0720 1652 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
22:40:23.0767 1652 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:40:23.0830 1652 HTTP - ok
22:40:23.0845 1652 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:40:23.0861 1652 hwpolicy - ok
22:40:23.0876 1652 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:40:23.0892 1652 i8042prt - ok
22:40:23.0939 1652 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\Windows\system32\drivers\iaStor.sys
22:40:23.0954 1652 iaStor - ok
22:40:24.0001 1652 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:40:24.0032 1652 IAStorDataMgrSvc - ok
22:40:24.0064 1652 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:40:24.0095 1652 iaStorV - ok
22:40:24.0142 1652 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:40:24.0157 1652 idsvc - ok
22:40:24.0438 1652 [ 9937600A1584FF00565D5379EB4C9EDB ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:40:24.0547 1652 igfx - ok
22:40:24.0578 1652 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:40:24.0594 1652 iirsp - ok
22:40:24.0625 1652 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:40:24.0672 1652 IKEEXT - ok
22:40:24.0781 1652 [ CB7DADEF3D83FE2C12655A0BDCBA99F2 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:40:24.0828 1652 IntcAzAudAddService - ok
22:40:24.0890 1652 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:40:24.0937 1652 IntcDAud - ok
22:40:24.0953 1652 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:40:24.0968 1652 intelide - ok
22:40:25.0000 1652 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:40:25.0031 1652 intelppm - ok
22:40:25.0046 1652 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:40:25.0109 1652 IPBusEnum - ok
22:40:25.0124 1652 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:40:25.0140 1652 IpFilterDriver - ok
22:40:25.0202 1652 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:40:25.0234 1652 iphlpsvc - ok
22:40:25.0249 1652 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:40:25.0280 1652 IPMIDRV - ok
22:40:25.0296 1652 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:40:25.0358 1652 IPNAT - ok
22:40:25.0374 1652 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:40:25.0390 1652 IRENUM - ok
22:40:25.0405 1652 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:40:25.0405 1652 isapnp - ok
22:40:25.0421 1652 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:40:25.0436 1652 iScsiPrt - ok
22:40:25.0468 1652 [ 455B75C19BF3F1F2EE3AC10E1169826C ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
22:40:25.0483 1652 k57nd60a - ok
22:40:25.0499 1652 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
22:40:25.0514 1652 kbdclass - ok
22:40:25.0530 1652 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:40:25.0561 1652 kbdhid - ok
22:40:25.0577 1652 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:40:25.0592 1652 KeyIso - ok
22:40:25.0608 1652 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:40:25.0624 1652 KSecDD - ok
22:40:25.0639 1652 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:40:25.0639 1652 KSecPkg - ok
22:40:25.0686 1652 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:40:25.0748 1652 ksthunk - ok
22:40:25.0780 1652 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:40:25.0811 1652 KtmRm - ok
22:40:25.0858 1652 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:40:25.0889 1652 LanmanServer - ok
22:40:25.0920 1652 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:40:25.0951 1652 LanmanWorkstation - ok
22:40:25.0998 1652 [ B705C7097F9A0EC941D02DCE7C7D426C ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
22:40:26.0014 1652 Live Updater Service - ok
22:40:26.0029 1652 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:40:26.0060 1652 lltdio - ok
22:40:26.0092 1652 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:40:26.0123 1652 lltdsvc - ok
22:40:26.0154 1652 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:40:26.0185 1652 lmhosts - ok
22:40:26.0232 1652 [ D75C4B4A8FE6D7FD74A7EECDBAEC729F ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:40:26.0263 1652 LMS - ok
22:40:26.0294 1652 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:40:26.0310 1652 LSI_FC - ok
22:40:26.0326 1652 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:40:26.0341 1652 LSI_SAS - ok
22:40:26.0341 1652 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:40:26.0357 1652 LSI_SAS2 - ok
22:40:26.0357 1652 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:40:26.0372 1652 LSI_SCSI - ok
22:40:26.0404 1652 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:40:26.0435 1652 luafv - ok
22:40:26.0466 1652 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:40:26.0482 1652 Mcx2Svc - ok
22:40:26.0497 1652 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:40:26.0513 1652 megasas - ok
22:40:26.0513 1652 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:40:26.0528 1652 MegaSR - ok
22:40:26.0560 1652 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:40:26.0575 1652 MEIx64 - ok
22:40:26.0653 1652 Microsoft SharePoint Workspace Audit Service - ok
22:40:26.0716 1652 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:40:26.0762 1652 MMCSS - ok
22:40:26.0762 1652 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:40:26.0809 1652 Modem - ok
22:40:26.0825 1652 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:40:26.0887 1652 monitor - ok
22:40:26.0918 1652 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
22:40:26.0934 1652 mouclass - ok
22:40:27.0012 1652 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
22:40:27.0043 1652 mouhid - ok
22:40:27.0059 1652 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:40:27.0090 1652 mountmgr - ok
22:40:27.0184 1652 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:40:27.0215 1652 MozillaMaintenance - ok
22:40:27.0262 1652 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:40:27.0293 1652 mpio - ok
22:40:27.0308 1652 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:40:27.0355 1652 mpsdrv - ok
22:40:27.0386 1652 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:40:27.0433 1652 MpsSvc - ok
22:40:27.0449 1652 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:40:27.0480 1652 MRxDAV - ok
22:40:27.0496 1652 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:40:27.0511 1652 mrxsmb - ok
22:40:27.0527 1652 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:40:27.0542 1652 mrxsmb10 - ok
22:40:27.0558 1652 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:40:27.0558 1652 mrxsmb20 - ok
22:40:27.0574 1652 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:40:27.0589 1652 msahci - ok
22:40:27.0589 1652 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:40:27.0605 1652 msdsm - ok
22:40:27.0620 1652 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:40:27.0652 1652 MSDTC - ok
22:40:27.0698 1652 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:40:27.0792 1652 Msfs - ok
22:40:27.0823 1652 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:40:27.0886 1652 mshidkmdf - ok
22:40:27.0901 1652 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:40:27.0901 1652 msisadrv - ok
22:40:27.0932 1652 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:40:27.0979 1652 MSiSCSI - ok
22:40:27.0979 1652 msiserver - ok
22:40:28.0010 1652 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:40:28.0057 1652 MSKSSRV - ok
22:40:28.0073 1652 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:40:28.0120 1652 MSPCLOCK - ok
22:40:28.0120 1652 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:40:28.0166 1652 MSPQM - ok
22:40:28.0182 1652 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:40:28.0198 1652 MsRPC - ok
22:40:28.0229 1652 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:40:28.0229 1652 mssmbios - ok
22:40:28.0244 1652 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:40:28.0276 1652 MSTEE - ok
22:40:28.0291 1652 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:40:28.0291 1652 MTConfig - ok
22:40:28.0322 1652 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:40:28.0322 1652 Mup - ok
22:40:28.0338 1652 [ C009123B206C56854F4E88596035231D ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
22:40:28.0354 1652 mwlPSDFilter - ok
22:40:28.0369 1652 [ BF3739EEB9F008B1DEBAC115089A53F8 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
22:40:28.0369 1652 mwlPSDNServ - ok
22:40:28.0385 1652 [ 38DD143D95E7A01B86F219DDA9C28779 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
22:40:28.0385 1652 mwlPSDVDisk - ok
22:40:28.0416 1652 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:40:28.0463 1652 napagent - ok
22:40:28.0510 1652 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:40:28.0541 1652 NativeWifiP - ok
22:40:28.0572 1652 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:40:28.0603 1652 NDIS - ok
22:40:28.0634 1652 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:40:28.0681 1652 NdisCap - ok
22:40:28.0697 1652 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:40:28.0728 1652 NdisTapi - ok
22:40:28.0728 1652 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:40:28.0775 1652 Ndisuio - ok
22:40:28.0790 1652 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:40:28.0822 1652 NdisWan - ok
22:40:28.0853 1652 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:40:28.0884 1652 NDProxy - ok
22:40:28.0962 1652 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:40:28.0993 1652 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:40:28.0993 1652 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:40:29.0009 1652 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:40:29.0056 1652 NetBIOS - ok
22:40:29.0087 1652 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:40:29.0118 1652 NetBT - ok
22:40:29.0134 1652 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:40:29.0149 1652 Netlogon - ok
22:40:29.0180 1652 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:40:29.0227 1652 Netman - ok
22:40:29.0227 1652 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:40:29.0274 1652 netprofm - ok
22:40:29.0290 1652 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:40:29.0305 1652 NetTcpPortSharing - ok
22:40:29.0336 1652 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:40:29.0383 1652 nfrd960 - ok
22:40:29.0430 1652 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:40:29.0477 1652 NlaSvc - ok
22:40:29.0586 1652 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:40:29.0633 1652 NOBU - ok
22:40:29.0648 1652 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:40:29.0680 1652 Npfs - ok
22:40:29.0711 1652 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:40:29.0742 1652 nsi - ok
22:40:29.0758 1652 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:40:29.0789 1652 nsiproxy - ok
22:40:29.0867 1652 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:40:29.0914 1652 Ntfs - ok
22:40:29.0976 1652 [ 1873214666F6F0A883742DF91FBC48C9 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
22:40:30.0007 1652 NTI IScheduleSvc - ok
22:40:30.0038 1652 [ EE3BA1024594D5D09E314F206B94069E ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
22:40:30.0054 1652 NTIDrvr - ok
22:40:30.0070 1652 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:40:30.0132 1652 Null - ok
22:40:30.0163 1652 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
22:40:30.0179 1652 nusb3hub - ok
22:40:30.0194 1652 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:40:30.0226 1652 nusb3xhc - ok
22:40:30.0553 1652 [ E97E8C80793EF12C994607CA5645799A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:40:30.0709 1652 nvlddmkm - ok
22:40:30.0725 1652 [ 50612BD6943B9CB20008E9E241DC8B7D ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
22:40:30.0725 1652 nvpciflt - ok
22:40:30.0756 1652 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:40:30.0772 1652 nvraid - ok
22:40:30.0772 1652 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:40:30.0787 1652 nvstor - ok
22:40:30.0865 1652 [ F355C26FDE46EDB911E3E3D749E985AE ] nvsvc C:\Windows\system32\nvvsvc.exe
22:40:30.0912 1652 nvsvc - ok
22:40:31.0006 1652 [ 03AA7307C0D92D38D7AF90E181736B8D ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
22:40:31.0037 1652 nvUpdatusService - ok
22:40:31.0052 1652 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:40:31.0068 1652 nv_agp - ok
22:40:31.0084 1652 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:40:31.0099 1652 ohci1394 - ok
22:40:31.0162 1652 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:40:31.0193 1652 ose64 - ok
22:40:31.0333 1652 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:40:31.0489 1652 osppsvc - ok
22:40:31.0536 1652 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:40:31.0583 1652 p2pimsvc - ok
22:40:31.0598 1652 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:40:31.0614 1652 p2psvc - ok
22:40:31.0645 1652 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:40:31.0661 1652 Parport - ok
22:40:31.0676 1652 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:40:31.0692 1652 partmgr - ok
22:40:31.0723 1652 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:40:31.0754 1652 PcaSvc - ok
22:40:31.0786 1652 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:40:31.0786 1652 pci - ok
22:40:31.0801 1652 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:40:31.0817 1652 pciide - ok
22:40:31.0817 1652 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:40:31.0832 1652 pcmcia - ok
22:40:31.0848 1652 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:40:31.0864 1652 pcw - ok
22:40:31.0879 1652 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:40:31.0926 1652 PEAUTH - ok
22:40:32.0035 1652 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:40:32.0082 1652 PerfHost - ok
22:40:32.0176 1652 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:40:32.0238 1652 pla - ok
22:40:32.0269 1652 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:40:32.0300 1652 PlugPlay - ok
22:40:32.0378 1652 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:40:32.0410 1652 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:40:32.0410 1652 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:40:32.0425 1652 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:40:32.0472 1652 PNRPAutoReg - ok
22:40:32.0503 1652 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:40:32.0534 1652 PNRPsvc - ok
22:40:32.0550 1652 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:40:32.0597 1652 PolicyAgent - ok
22:40:32.0612 1652 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:40:32.0644 1652 Power - ok
22:40:32.0675 1652 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:40:32.0722 1652 PptpMiniport - ok
22:40:32.0737 1652 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:40:32.0753 1652 Processor - ok
22:40:32.0784 1652 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:40:32.0800 1652 ProfSvc - ok
22:40:32.0815 1652 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:40:32.0815 1652 ProtectedStorage - ok
22:40:32.0846 1652 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:40:32.0878 1652 Psched - ok
22:40:32.0940 1652 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:40:33.0002 1652 ql2300 - ok
22:40:33.0002 1652 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:40:33.0018 1652 ql40xx - ok
22:40:33.0034 1652 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:40:33.0049 1652 QWAVE - ok
22:40:33.0065 1652 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:40:33.0096 1652 QWAVEdrv - ok
22:40:33.0127 1652 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:40:33.0158 1652 RasAcd - ok
22:40:33.0174 1652 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:40:33.0205 1652 RasAgileVpn - ok
22:40:33.0236 1652 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:40:33.0268 1652 RasAuto - ok
22:40:33.0283 1652 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:40:33.0330 1652 Rasl2tp - ok
22:40:33.0361 1652 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:40:33.0392 1652 RasMan - ok
22:40:33.0424 1652 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:40:33.0455 1652 RasPppoe - ok
22:40:33.0470 1652 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:40:33.0502 1652 RasSstp - ok
22:40:33.0533 1652 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:40:33.0564 1652 rdbss - ok
22:40:33.0580 1652 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:40:33.0595 1652 rdpbus - ok
22:40:33.0611 1652 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:40:33.0642 1652 RDPCDD - ok
22:40:33.0673 1652 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:40:33.0704 1652 RDPENCDD - ok
22:40:33.0704 1652 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:40:33.0736 1652 RDPREFMP - ok
22:40:33.0767 1652 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:40:33.0782 1652 RDPWD - ok
22:40:33.0814 1652 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:40:33.0829 1652 rdyboost - ok
22:40:33.0845 1652 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:40:33.0876 1652 RemoteAccess - ok
22:40:33.0907 1652 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:40:33.0938 1652 RemoteRegistry - ok
22:40:33.0954 1652 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:40:33.0985 1652 RpcEptMapper - ok
22:40:34.0016 1652 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:40:34.0016 1652 RpcLocator - ok
22:40:34.0048 1652 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
22:40:34.0079 1652 RpcSs - ok
22:40:34.0094 1652 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:40:34.0141 1652 rspndr - ok
22:40:34.0157 1652 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:40:34.0172 1652 SamSs - ok
22:40:34.0188 1652 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:40:34.0204 1652 sbp2port - ok
22:40:34.0219 1652 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:40:34.0250 1652 SCardSvr - ok
22:40:34.0250 1652 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:40:34.0297 1652 scfilter - ok
22:40:34.0328 1652 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:40:34.0375 1652 Schedule - ok
22:40:34.0406 1652 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:40:34.0438 1652 SCPolicySvc - ok
22:40:34.0453 1652 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
22:40:34.0469 1652 sdbus - ok
22:40:34.0500 1652 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:40:34.0516 1652 SDRSVC - ok
22:40:34.0562 1652 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:40:34.0625 1652 secdrv - ok
22:40:34.0656 1652 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:40:34.0687 1652 seclogon - ok
22:40:34.0703 1652 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
22:40:34.0734 1652 SENS - ok
22:40:34.0750 1652 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:40:34.0781 1652 SensrSvc - ok
22:40:34.0812 1652 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:40:34.0828 1652 Serenum - ok
22:40:34.0859 1652 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
22:40:34.0890 1652 Serial - ok
22:40:34.0906 1652 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:40:34.0937 1652 sermouse - ok
22:40:34.0968 1652 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:40:35.0015 1652 SessionEnv - ok
22:40:35.0030 1652 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:40:35.0046 1652 sffdisk - ok
22:40:35.0046 1652 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:40:35.0062 1652 sffp_mmc - ok
22:40:35.0077 1652 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:40:35.0093 1652 sffp_sd - ok
22:40:35.0108 1652 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:40:35.0108 1652 sfloppy - ok
22:40:35.0140 1652 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:40:35.0186 1652 SharedAccess - ok
22:40:35.0202 1652 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:40:35.0249 1652 ShellHWDetection - ok
22:40:35.0296 1652 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:40:35.0311 1652 SiSRaid2 - ok
22:40:35.0311 1652 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:40:35.0327 1652 SiSRaid4 - ok
22:40:35.0358 1652 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:40:35.0389 1652 SkypeUpdate - ok
22:40:35.0420 1652 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:40:35.0467 1652 Smb - ok
22:40:35.0498 1652 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:40:35.0530 1652 SNMPTRAP - ok
22:40:35.0530 1652 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:40:35.0545 1652 spldr - ok
22:40:35.0576 1652 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:40:35.0592 1652 Spooler - ok
22:40:35.0701 1652 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:40:35.0779 1652 sppsvc - ok
22:40:35.0795 1652 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:40:35.0810 1652 sppuinotify - ok
22:40:35.0842 1652 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:40:35.0873 1652 srv - ok
22:40:35.0873 1652 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:40:35.0904 1652 srv2 - ok
22:40:35.0935 1652 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:40:35.0935 1652 srvnet - ok
22:40:35.0966 1652 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:40:36.0013 1652 SSDPSRV - ok
22:40:36.0013 1652 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:40:36.0044 1652 SstpSvc - ok
22:40:36.0060 1652 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:40:36.0076 1652 stexstor - ok
22:40:36.0107 1652 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
22:40:36.0138 1652 StillCam - ok
22:40:36.0169 1652 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:40:36.0185 1652 stisvc - ok
22:40:36.0216 1652 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:40:36.0216 1652 swenum - ok
22:40:36.0247 1652 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:40:36.0294 1652 swprv - ok
22:40:36.0341 1652 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:40:36.0372 1652 SysMain - ok
22:40:36.0403 1652 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:40:36.0419 1652 TabletInputService - ok
22:40:36.0434 1652 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:40:36.0466 1652 TapiSrv - ok
22:40:36.0466 1652 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:40:36.0497 1652 TBS - ok
22:40:36.0575 1652 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:40:36.0637 1652 Tcpip - ok
22:40:36.0684 1652 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:40:36.0700 1652 TCPIP6 - ok
22:40:36.0746 1652 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:40:36.0746 1652 tcpipreg - ok
22:40:36.0778 1652 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:40:36.0793 1652 TDPIPE - ok
22:40:36.0809 1652 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:40:36.0840 1652 TDTCP - ok
22:40:36.0856 1652 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:40:36.0871 1652 tdx - ok
22:40:36.0902 1652 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:40:36.0902 1652 TermDD - ok
22:40:36.0949 1652 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:40:36.0996 1652 TermService - ok
22:40:37.0012 1652 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:40:37.0027 1652 Themes - ok
22:40:37.0043 1652 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:40:37.0074 1652 THREADORDER - ok
22:40:37.0090 1652 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:40:37.0121 1652 TrkWks - ok
22:40:37.0183 1652 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:40:37.0246 1652 TrustedInstaller - ok
22:40:37.0261 1652 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:40:37.0339 1652 tssecsrv - ok
22:40:37.0339 1652 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:40:37.0355 1652 TsUsbFlt - ok
22:40:37.0355 1652 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:40:37.0370 1652 TsUsbGD - ok
22:40:37.0402 1652 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:40:37.0448 1652 tunnel - ok
22:40:37.0480 1652 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
22:40:37.0480 1652 TurboB - ok
22:40:37.0526 1652 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
22:40:37.0526 1652 TurboBoost - ok
22:40:37.0542 1652 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:40:37.0558 1652 uagp35 - ok
22:40:37.0573 1652 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
22:40:37.0589 1652 UBHelper - ok
22:40:37.0604 1652 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:40:37.0636 1652 udfs - ok
22:40:37.0667 1652 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:40:37.0698 1652 UI0Detect - ok
22:40:37.0729 1652 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:40:37.0729 1652 uliagpkx - ok
22:40:37.0760 1652 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:40:37.0776 1652 umbus - ok
22:40:37.0776 1652 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:40:37.0792 1652 UmPass - ok
22:40:37.0932 1652 [ 758C2CE427C343F780A205E28555C98D ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:40:37.0979 1652 UNS - ok
22:40:38.0010 1652 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:40:38.0041 1652 upnphost - ok
22:40:38.0072 1652 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:40:38.0088 1652 usbccgp - ok
22:40:38.0104 1652 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:40:38.0119 1652 usbcir - ok
22:40:38.0135 1652 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:40:38.0166 1652 usbehci - ok
22:40:38.0182 1652 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\drivers\usbhub.sys
22:40:38.0213 1652 usbhub - ok
22:40:38.0228 1652 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:40:38.0244 1652 usbohci - ok
22:40:38.0260 1652 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
22:40:38.0306 1652 usbprint - ok
22:40:38.0322 1652 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:40:38.0338 1652 USBSTOR - ok
22:40:38.0338 1652 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:40:38.0353 1652 usbuhci - ok
22:40:38.0384 1652 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:40:38.0400 1652 usbvideo - ok
22:40:38.0416 1652 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:40:38.0462 1652 UxSms - ok
22:40:38.0462 1652 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:40:38.0478 1652 VaultSvc - ok
22:40:38.0509 1652 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:40:38.0525 1652 vdrvroot - ok
22:40:38.0540 1652 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:40:38.0603 1652 vds - ok
22:40:38.0634 1652 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:40:38.0650 1652 vga - ok
22:40:38.0650 1652 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:40:38.0696 1652 VgaSave - ok
22:40:38.0696 1652 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:40:38.0712 1652 vhdmp - ok
22:40:38.0743 1652 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:40:38.0743 1652 viaide - ok
22:40:38.0790 1652 [ 3F63FA4A5D8A7C1B1A87E342569FBA53 ] VNUSB C:\Windows\system32\Drivers\VNUSB.sys
22:40:38.0837 1652 VNUSB - ok
22:40:38.0852 1652 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:40:38.0884 1652 volmgr - ok
22:40:38.0899 1652 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:40:38.0915 1652 volmgrx - ok
22:40:38.0915 1652 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:40:38.0930 1652 volsnap - ok
22:40:38.0946 1652 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:40:38.0962 1652 vsmraid - ok
22:40:39.0040 1652 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:40:39.0149 1652 VSS - ok
22:40:39.0164 1652 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:40:39.0211 1652 vwifibus - ok
22:40:39.0227 1652 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:40:39.0258 1652 vwififlt - ok
22:40:39.0305 1652 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:40:39.0352 1652 W32Time - ok
22:40:39.0367 1652 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:40:39.0383 1652 WacomPen - ok
22:40:39.0414 1652 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:40:39.0492 1652 WANARP - ok
22:40:39.0492 1652 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:40:39.0523 1652 Wanarpv6 - ok
22:40:39.0586 1652 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:40:39.0632 1652 WatAdminSvc - ok
22:40:39.0679 1652 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:40:39.0710 1652 wbengine - ok
22:40:39.0742 1652 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:40:39.0757 1652 WbioSrvc - ok
22:40:39.0773 1652 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:40:39.0820 1652 wcncsvc - ok
22:40:39.0835 1652 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:40:39.0851 1652 WcsPlugInService - ok
22:40:39.0882 1652 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:40:39.0898 1652 Wd - ok
22:40:39.0929 1652 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:40:39.0976 1652 Wdf01000 - ok
22:40:40.0007 1652 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:40:40.0038 1652 WdiServiceHost - ok
22:40:40.0038 1652 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:40:40.0054 1652 WdiSystemHost - ok
22:40:40.0069 1652 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:40:40.0100 1652 WebClient - ok
22:40:40.0116 1652 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:40:40.0163 1652 Wecsvc - ok
22:40:40.0194 1652 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:40:40.0225 1652 wercplsupport - ok
22:40:40.0256 1652 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:40:40.0288 1652 WerSvc - ok
22:40:40.0319 1652 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:40:40.0350 1652 WfpLwf - ok
22:40:40.0366 1652 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:40:40.0366 1652 WIMMount - ok
22:40:40.0381 1652 WinDefend - ok
22:40:40.0397 1652 WinHttpAutoProxySvc - ok
22:40:40.0459 1652 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:40:40.0522 1652 Winmgmt - ok
22:40:40.0584 1652 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:40:40.0631 1652 WinRM - ok
22:40:40.0678 1652 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:40:40.0709 1652 Wlansvc - ok
22:40:40.0756 1652 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:40:40.0787 1652 wlcrasvc - ok
22:40:40.0896 1652 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:40:40.0943 1652 wlidsvc - ok
22:40:40.0974 1652 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:40:41.0021 1652 WmiAcpi - ok
22:40:41.0052 1652 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:40:41.0099 1652 wmiApSrv - ok
22:40:41.0130 1652 WMPNetworkSvc - ok
22:40:41.0161 1652 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:40:41.0208 1652 WPCSvc - ok
22:40:41.0224 1652 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:40:41.0239 1652 WPDBusEnum - ok
22:40:41.0255 1652 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:40:41.0286 1652 ws2ifsl - ok
22:40:41.0317 1652 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:40:41.0333 1652 wscsvc - ok
22:40:41.0333 1652 WSearch - ok
22:40:41.0426 1652 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:40:41.0489 1652 wuauserv - ok
22:40:41.0520 1652 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:40:41.0551 1652 WudfPf - ok
22:40:41.0582 1652 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:40:41.0598 1652 WUDFRd - ok
22:40:41.0629 1652 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:40:41.0660 1652 wudfsvc - ok
22:40:41.0676 1652 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:40:41.0707 1652 WwanSvc - ok
22:40:41.0707 1652 ================ Scan global ===============================
22:40:41.0738 1652 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:40:41.0770 1652 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
22:40:41.0785 1652 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
22:40:41.0816 1652 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:40:41.0848 1652 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:40:41.0848 1652 [Global] - ok
22:40:41.0848 1652 ================ Scan MBR ==================================
22:40:41.0863 1652 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:40:42.0316 1652 \Device\Harddisk0\DR0 - ok
22:40:42.0316 1652 ================ Scan VBR ==================================
22:40:42.0347 1652 [ 6F8F9B3E29C6180BE3A003B0FCFC576F ] \Device\Harddisk0\DR0\Partition1
22:40:42.0347 1652 \Device\Harddisk0\DR0\Partition1 - ok
22:40:42.0378 1652 [ 64B9EAE0770ADF021F090FC3C9F6BCF5 ] \Device\Harddisk0\DR0\Partition2
22:40:42.0378 1652 \Device\Harddisk0\DR0\Partition2 - ok
22:40:42.0378 1652 ================ Scan active images ========================
22:40:42.0378 1652 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:40:42.0378 1652 C:\Windows\System32\drivers\crashdmp.sys - ok
22:40:42.0394 1652 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:40:42.0394 1652 C:\Windows\System32\drivers\dumpfve.sys - ok
22:40:42.0394 1652 [ 26CF4275034214ECEDD8EC17B0A18A99 ] C:\Windows\System32\drivers\iaStor.sys
22:40:42.0394 1652 C:\Windows\System32\drivers\iaStor.sys - ok
22:40:42.0409 1652 [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
22:40:42.0409 1652 C:\Windows\System32\drivers\dtsoftbus01.sys - ok
22:40:42.0409 1652 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] C:\Windows\System32\drivers\aswSnx.sys
22:40:42.0409 1652 C:\Windows\System32\drivers\aswSnx.sys - ok
22:40:42.0409 1652 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
22:40:42.0425 1652 C:\Windows\System32\drivers\cdrom.sys - ok
22:40:42.0425 1652 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:40:42.0425 1652 C:\Windows\System32\drivers\beep.sys - ok
22:40:42.0425 1652 [ C009123B206C56854F4E88596035231D ] C:\Windows\System32\drivers\mwlPSDFilter.sys
22:40:42.0425 1652 C:\Windows\System32\drivers\mwlPSDFilter.sys - ok
22:40:42.0425 1652 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:40:42.0425 1652 C:\Windows\System32\drivers\null.sys - ok
22:40:42.0440 1652 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:40:42.0440 1652 C:\Windows\System32\drivers\RDPCDD.sys - ok
22:40:42.0440 1652 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:40:42.0440 1652 C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:40:42.0440 1652 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:40:42.0440 1652 C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:40:42.0440 1652 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:40:42.0440 1652 C:\Windows\System32\drivers\vga.sys - ok
22:40:42.0456 1652 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:40:42.0456 1652 C:\Windows\System32\drivers\videoprt.sys - ok
22:40:42.0456 1652 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:40:42.0456 1652 C:\Windows\System32\drivers\watchdog.sys - ok
22:40:42.0456 1652 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:40:42.0456 1652 C:\Windows\System32\drivers\msfs.sys - ok
22:40:42.0456 1652 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:40:42.0456 1652 C:\Windows\System32\drivers\npfs.sys - ok
22:40:42.0472 1652 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
22:40:42.0472 1652 C:\Windows\System32\drivers\tdi.sys - ok
22:40:42.0472 1652 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
22:40:42.0472 1652 C:\Windows\System32\drivers\tdx.sys - ok
22:40:42.0487 1652 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
22:40:42.0487 1652 C:\Windows\System32\drivers\aswTdi.sys - ok
22:40:42.0487 1652 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
22:40:42.0487 1652 C:\Windows\System32\drivers\netbt.sys - ok
22:40:42.0487 1652 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
22:40:42.0487 1652 C:\Windows\System32\drivers\afd.sys - ok
22:40:42.0487 1652 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
22:40:42.0487 1652 C:\Windows\System32\drivers\aswRdr2.sys - ok
22:40:42.0487 1652 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:40:42.0487 1652 C:\Windows\System32\drivers\wfplwf.sys - ok
22:40:42.0503 1652 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
22:40:42.0503 1652 C:\Windows\System32\drivers\ws2ifsl.sys - ok
22:40:42.0503 1652 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
22:40:42.0503 1652 C:\Windows\System32\drivers\pacer.sys - ok
22:40:42.0503 1652 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
22:40:42.0503 1652 C:\Windows\System32\drivers\vwififlt.sys - ok
22:40:42.0503 1652 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:40:42.0503 1652 C:\Windows\System32\drivers\netbios.sys - ok
22:40:42.0503 1652 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
22:40:42.0503 1652 C:\Windows\System32\drivers\wanarp.sys - ok
22:40:42.0518 1652 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:40:42.0518 1652 C:\Windows\System32\drivers\nsiproxy.sys - ok
22:40:42.0518 1652 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
22:40:42.0518 1652 C:\Windows\System32\drivers\rdbss.sys - ok
22:40:42.0518 1652 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
22:40:42.0518 1652 C:\Windows\System32\drivers\termdd.sys - ok
22:40:42.0518 1652 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
22:40:42.0518 1652 C:\Windows\System32\drivers\dfsc.sys - ok
22:40:42.0518 1652 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:40:42.0518 1652 C:\Windows\System32\drivers\discache.sys - ok
22:40:42.0534 1652 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:40:42.0534 1652 C:\Windows\System32\drivers\mssmbios.sys - ok
22:40:42.0534 1652 [ BF3739EEB9F008B1DEBAC115089A53F8 ] C:\Windows\System32\drivers\mwlPSDNserv.sys
22:40:42.0534 1652 C:\Windows\System32\drivers\mwlPSDNserv.sys - ok
22:40:42.0534 1652 [ 38DD143D95E7A01B86F219DDA9C28779 ] C:\Windows\System32\drivers\mwlPSDVDisk.sys
22:40:42.0534 1652 C:\Windows\System32\drivers\mwlPSDVDisk.sys - ok
22:40:42.0534 1652 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:40:42.0534 1652 C:\Windows\System32\drivers\blbdrive.sys - ok
22:40:42.0534 1652 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] C:\Windows\System32\drivers\aswSP.sys
22:40:42.0534 1652 C:\Windows\System32\drivers\aswSP.sys - ok
22:40:42.0550 1652 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
22:40:42.0550 1652 C:\Windows\System32\drivers\tunnel.sys - ok
22:40:42.0550 1652 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
22:40:42.0550 1652 C:\Windows\System32\smss.exe - ok
22:40:42.0550 1652 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
22:40:42.0550 1652 C:\Windows\System32\ntdll.dll - ok
22:40:42.0550 1652 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
22:40:42.0550 1652 C:\Windows\System32\autochk.exe - ok
22:40:42.0550 1652 [ E97E8C80793EF12C994607CA5645799A ] C:\Windows\System32\drivers\nvlddmkm.sys
22:40:42.0550 1652 C:\Windows\System32\drivers\nvlddmkm.sys - ok
22:40:42.0565 1652 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
22:40:42.0565 1652 C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:40:42.0565 1652 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
22:40:42.0565 1652 C:\Windows\System32\drivers\dxgmms1.sys - ok
22:40:42.0565 1652 [ 9937600A1584FF00565D5379EB4C9EDB ] C:\Windows\System32\drivers\igdkmd64.sys
22:40:42.0565 1652 C:\Windows\System32\drivers\igdkmd64.sys - ok
22:40:42.0565 1652 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] C:\Windows\System32\drivers\HECIx64.sys
22:40:42.0565 1652 C:\Windows\System32\drivers\HECIx64.sys - ok
22:40:42.0565 1652 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
22:40:42.0565 1652 C:\Windows\System32\drivers\usbport.sys - ok
22:40:42.0581 1652 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
22:40:42.0581 1652 C:\Windows\System32\drivers\hdaudbus.sys - ok
22:40:42.0581 1652 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
22:40:42.0581 1652 C:\Windows\System32\drivers\usbehci.sys - ok
22:40:42.0581 1652 [ 455B75C19BF3F1F2EE3AC10E1169826C ] C:\Windows\System32\drivers\k57nd60a.sys
22:40:42.0581 1652 C:\Windows\System32\drivers\k57nd60a.sys - ok
22:40:42.0581 1652 [ 0C1EEE5AF32402D306874B110DE237EC ] C:\Windows\System32\drivers\bScsiSDa.sys
22:40:42.0581 1652 C:\Windows\System32\drivers\bScsiSDa.sys - ok
22:40:42.0596 1652 [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
22:40:42.0596 1652 C:\Windows\System32\drivers\scsiport.sys - ok
22:40:42.0596 1652 [ A424CB46A145E5AABF15621550976DF2 ] C:\Windows\System32\drivers\b57xdbd.sys
22:40:42.0596 1652 C:\Windows\System32\drivers\b57xdbd.sys - ok
22:40:42.0596 1652 [ 0970D8B7151E9113BF8D44CE2E954DF7 ] C:\Windows\System32\drivers\bScsiMSa.sys
22:40:42.0596 1652 C:\Windows\System32\drivers\bScsiMSa.sys - ok
22:40:42.0596 1652 [ C8679A07267F030704168E45E27C3D43 ] C:\Windows\System32\drivers\athrx.sys
22:40:42.0596 1652 C:\Windows\System32\drivers\athrx.sys - ok
22:40:42.0596 1652 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
22:40:42.0596 1652 C:\Windows\System32\drivers\vwifibus.sys - ok
22:40:42.0612 1652 [ 7BDEC000D56D485021D9C1E63C2F81CA ] C:\Windows\System32\drivers\nusb3xhc.sys
22:40:42.0612 1652 C:\Windows\System32\drivers\nusb3xhc.sys - ok
22:40:42.0612 1652 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
22:40:42.0612 1652 C:\Windows\System32\drivers\usbd.sys - ok
22:40:42.0612 1652 [ DBAA0C650C9549DC5C599D1E81DEDAAD ] C:\Windows\System32\drivers\ETD.sys
22:40:42.0612 1652 C:\Windows\System32\drivers\ETD.sys - ok
22:40:42.0612 1652 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
22:40:42.0612 1652 C:\Windows\System32\drivers\i8042prt.sys - ok
22:40:42.0612 1652 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:40:42.0612 1652 C:\Windows\System32\drivers\kbdclass.sys - ok
22:40:42.0628 1652 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:40:42.0628 1652 C:\Windows\System32\drivers\mouclass.sys - ok
22:40:42.0628 1652 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
22:40:42.0628 1652 C:\Windows\System32\drivers\CmBatt.sys - ok
22:40:42.0628 1652 [ EE3BA1024594D5D09E314F206B94069E ] C:\Windows\System32\drivers\NTIDrvr.sys
22:40:42.0628 1652 C:\Windows\System32\drivers\NTIDrvr.sys - ok
22:40:42.0628 1652 [ A17D5E1A6DF4EAB0A480F2C490DE4C9D ] C:\Windows\System32\drivers\UBHelper.sys
22:40:42.0628 1652 C:\Windows\System32\drivers\UBHelper.sys - ok
22:40:42.0628 1652 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
22:40:42.0628 1652 C:\Windows\System32\drivers\intelppm.sys - ok
22:40:42.0643 1652 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
22:40:42.0643 1652 C:\Windows\System32\drivers\wmiacpi.sys - ok
22:40:42.0643 1652 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:40:42.0643 1652 C:\Windows\System32\drivers\agilevpn.sys - ok
22:40:42.0643 1652 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
22:40:42.0643 1652 C:\Windows\System32\drivers\CompositeBus.sys - ok
22:40:42.0643 1652 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:40:42.0643 1652 C:\Windows\System32\drivers\ndistapi.sys - ok
22:40:42.0643 1652 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
22:40:42.0643 1652 C:\Windows\System32\drivers\rasl2tp.sys - ok
22:40:42.0659 1652 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
22:40:42.0659 1652 C:\Windows\System32\drivers\ndiswan.sys - ok
22:40:42.0659 1652 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:40:42.0659 1652 C:\Windows\System32\drivers\raspppoe.sys - ok
22:40:42.0659 1652 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
22:40:42.0659 1652 C:\Windows\System32\drivers\raspptp.sys - ok
22:40:42.0659 1652 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:40:42.0659 1652 C:\Windows\System32\drivers\rassstp.sys - ok
22:40:42.0659 1652 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
22:40:42.0659 1652 C:\Windows\System32\drivers\ks.sys - ok
22:40:42.0674 1652 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:40:42.0674 1652 C:\Windows\System32\drivers\swenum.sys - ok
22:40:42.0674 1652 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
22:40:42.0674 1652 C:\Windows\System32\drivers\umbus.sys - ok
22:40:42.0674 1652 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
22:40:42.0674 1652 C:\Windows\System32\drivers\usbhub.sys - ok
22:40:42.0674 1652 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
22:40:42.0674 1652 C:\Windows\System32\gdi32.dll - ok
22:40:42.0674 1652 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:40:42.0674 1652 C:\Windows\System32\difxapi.dll - ok
22:40:42.0690 1652 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
22:40:42.0690 1652 C:\Windows\System32\rpcrt4.dll - ok
22:40:42.0690 1652 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] C:\Windows\System32\drivers\nusb3hub.sys
22:40:42.0690 1652 C:\Windows\System32\drivers\nusb3hub.sys - ok
22:40:42.0690 1652 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
22:40:42.0690 1652 C:\Windows\System32\drivers\ndproxy.sys - ok
22:40:42.0690 1652 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:40:42.0690 1652 C:\Windows\System32\drivers\drmk.sys - ok
22:40:42.0690 1652 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:40:42.0690 1652 C:\Windows\System32\drivers\portcls.sys - ok
22:40:42.0706 1652 [ CB7DADEF3D83FE2C12655A0BDCBA99F2 ] C:\Windows\System32\drivers\RTKVHD64.sys
22:40:42.0706 1652 C:\Windows\System32\drivers\RTKVHD64.sys - ok
22:40:42.0706 1652 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:40:42.0706 1652 C:\Windows\System32\drivers\ksthunk.sys - ok
22:40:42.0706 1652 [ BE4E6FD5A898812B85D5817AD9754A9F ] C:\Windows\System32\drivers\b57xdmp.sys
22:40:42.0706 1652 C:\Windows\System32\drivers\b57xdmp.sys - ok
22:40:42.0706 1652 [ FC727061C0F47C8059E88E05D5C8E381 ] C:\Windows\System32\drivers\IntcDAud.sys
22:40:42.0706 1652 C:\Windows\System32\drivers\IntcDAud.sys - ok
22:40:42.0706 1652 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
22:40:42.0706 1652 C:\Windows\System32\imagehlp.dll - ok
22:40:42.0721 1652 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:40:42.0721 1652 C:\Windows\System32\lpk.dll - ok
22:40:42.0721 1652 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
22:40:42.0721 1652 C:\Windows\System32\user32.dll - ok
22:40:42.0721 1652 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
22:40:42.0721 1652 C:\Windows\System32\Wldap32.dll - ok
22:40:42.0721 1652 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
22:40:42.0721 1652 C:\Windows\System32\msvcrt.dll - ok
22:40:42.0721 1652 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
22:40:42.0721 1652 C:\Windows\System32\drivers\usbccgp.sys - ok
22:40:42.0737 1652 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
22:40:42.0737 1652 C:\Windows\System32\drivers\usbvideo.sys - ok
22:40:42.0737 1652 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:40:42.0737 1652 C:\Windows\System32\msctf.dll - ok
22:40:42.0737 1652 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
22:40:42.0737 1652 C:\Windows\System32\oleaut32.dll - ok
22:40:42.0737 1652 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:40:42.0737 1652 C:\Windows\System32\normaliz.dll - ok
22:40:42.0737 1652 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
22:40:42.0737 1652 C:\Windows\System32\shlwapi.dll - ok
22:40:42.0752 1652 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:40:42.0752 1652 C:\Windows\System32\advapi32.dll - ok
22:40:42.0752 1652 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
22:40:42.0752 1652 C:\Windows\System32\iertutil.dll - ok
22:40:42.0752 1652 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:40:42.0752 1652 C:\Windows\System32\psapi.dll - ok
22:40:42.0752 1652 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
22:40:42.0752 1652 C:\Windows\System32\setupapi.dll - ok
22:40:42.0752 1652 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
22:40:42.0752 1652 C:\Windows\System32\ws2_32.dll - ok
22:40:42.0768 1652 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:40:42.0768 1652 C:\Windows\System32\nsi.dll - ok
22:40:42.0768 1652 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
22:40:42.0768 1652 C:\Windows\System32\ole32.dll - ok
22:40:42.0768 1652 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:40:42.0768 1652 C:\Windows\System32\sechost.dll - ok
22:40:42.0768 1652 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:40:42.0768 1652 C:\Windows\System32\clbcatq.dll - ok
22:40:42.0768 1652 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
22:40:42.0768 1652 C:\Windows\System32\urlmon.dll - ok
22:40:42.0784 1652 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
22:40:42.0784 1652 C:\Windows\System32\wininet.dll - ok
22:40:42.0784 1652 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
22:40:42.0784 1652 C:\Windows\System32\usp10.dll - ok
22:40:42.0784 1652 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
22:40:42.0784 1652 C:\Windows\System32\shell32.dll - ok
22:40:42.0784 1652 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:40:42.0784 1652 C:\Windows\System32\imm32.dll - ok
22:40:42.0784 1652 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
22:40:42.0784 1652 C:\Windows\System32\kernel32.dll - ok
22:40:42.0799 1652 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
22:40:42.0799 1652 C:\Windows\System32\comdlg32.dll - ok
22:40:42.0799 1652 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
22:40:42.0799 1652 C:\Windows\System32\crypt32.dll - ok
22:40:42.0799 1652 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:40:42.0799 1652 C:\Windows\System32\devobj.dll - ok
22:40:42.0799 1652 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
22:40:42.0799 1652 C:\Windows\System32\cfgmgr32.dll - ok
22:40:42.0815 1652 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
22:40:42.0815 1652 C:\Windows\System32\comctl32.dll - ok
22:40:42.0815 1652 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
22:40:42.0815 1652 C:\Windows\System32\KernelBase.dll - ok
22:40:42.0815 1652 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
22:40:42.0815 1652 C:\Windows\System32\msasn1.dll - ok
22:40:42.0815 1652 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
22:40:42.0815 1652 C:\Windows\System32\wintrust.dll - ok
22:40:42.0815 1652 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:40:42.0815 1652 C:\Windows\SysWOW64\normaliz.dll - ok
22:40:42.0830 1652 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:40:42.0830 1652 C:\Windows\System32\drivers\dxapi.sys - ok
22:40:42.0830 1652 [ C58923115CDE6071C3BF2FF063546E9F ] C:\Windows\System32\win32k.sys
22:40:42.0830 1652 C:\Windows\System32\win32k.sys - ok
22:40:42.0830 1652 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
22:40:42.0830 1652 C:\Windows\System32\csrsrv.dll - ok
22:40:42.0830 1652 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:40:42.0830 1652 C:\Windows\System32\csrss.exe - ok
22:40:42.0830 1652 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:40:42.0830 1652 C:\Windows\System32\basesrv.dll - ok
22:40:42.0846 1652 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\System32\winsrv.dll
22:40:42.0846 1652 C:\Windows\System32\winsrv.dll - ok
22:40:42.0846 1652 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:40:42.0846 1652 C:\Windows\System32\drivers\monitor.sys - ok
22:40:42.0846 1652 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:40:42.0846 1652 C:\Windows\System32\tsddd.dll - ok
22:40:42.0846 1652 [ AC59DAA91FBE31C4A26BDE97F00E27E1 ] C:\Windows\System32\KBDHE.DLL
22:40:42.0846 1652 C:\Windows\System32\KBDHE.DLL - ok
22:40:42.0846 1652 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:40:42.0846 1652 C:\Windows\System32\profapi.dll - ok
22:40:42.0862 1652 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
22:40:42.0862 1652 C:\Windows\System32\RpcRtRemote.dll - ok
22:40:42.0862 1652 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:40:42.0862 1652 C:\Windows\System32\sxssrv.dll - ok
22:40:42.0862 1652 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:40:42.0862 1652 C:\Windows\System32\wininit.exe - ok
22:40:42.0862 1652 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
22:40:42.0862 1652 C:\Windows\System32\cdd.dll - ok
22:40:42.0877 1652 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
22:40:42.0877 1652 C:\Windows\System32\KBDUS.DLL - ok
22:40:42.0877 1652 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
22:40:42.0877 1652 C:\Windows\System32\sxs.dll - ok
22:40:42.0877 1652 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:40:42.0877 1652 C:\Windows\System32\WlS0WndH.dll - ok
22:40:42.0877 1652 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:40:42.0877 1652 C:\Windows\System32\cryptbase.dll - ok
22:40:42.0877 1652 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
22:40:42.0877 1652 C:\Windows\System32\apphelp.dll - ok
22:40:42.0893 1652 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
22:40:42.0893 1652 C:\Windows\System32\lsasrv.dll - ok
22:40:42.0893 1652 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
22:40:42.0893 1652 C:\Windows\System32\lsass.exe - ok
22:40:42.0893 1652 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
22:40:42.0893 1652 C:\Windows\System32\lsm.exe - ok
22:40:42.0893 1652 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
22:40:42.0893 1652 C:\Windows\System32\scesrv.dll - ok
22:40:42.0893 1652 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:40:42.0893 1652 C:\Windows\System32\scext.dll - ok
22:40:42.0908 1652 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
22:40:42.0908 1652 C:\Windows\System32\secur32.dll - ok
22:40:42.0908 1652 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
22:40:42.0908 1652 C:\Windows\System32\services.exe - ok
22:40:42.0908 1652 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
22:40:42.0908 1652 C:\Windows\System32\sspicli.dll - ok
22:40:42.0908 1652 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
22:40:42.0908 1652 C:\Windows\System32\sspisrv.dll - ok
22:40:42.0908 1652 [ 8784236EED5079493DA9FC95B28B89F8 ] C:\Windows\System32\WerFault.exe
22:40:42.0908 1652 C:\Windows\System32\WerFault.exe - ok
22:40:42.0924 1652 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:40:42.0924 1652 C:\Windows\System32\sysntfy.dll - ok
22:40:42.0924 1652 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:40:42.0924 1652 C:\Windows\System32\wmsgapi.dll - ok
22:40:42.0924 1652 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
22:40:42.0924 1652 C:\Windows\System32\srvcli.dll - ok
22:40:42.0924 1652 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:40:42.0924 1652 C:\Windows\System32\wer.dll - ok
22:40:42.0924 1652 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
22:40:42.0924 1652 C:\Windows\System32\samsrv.dll - ok
22:40:42.0940 1652 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
22:40:42.0940 1652 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
22:40:42.0940 1652 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:40:42.0940 1652 C:\Windows\System32\cryptdll.dll - ok
22:40:42.0940 1652 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:40:42.0940 1652 C:\Windows\System32\wevtapi.dll - ok
22:40:42.0940 1652 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:40:42.0940 1652 C:\Windows\System32\authz.dll - ok
22:40:42.0940 1652 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:40:42.0940 1652 C:\Windows\System32\cngaudit.dll - ok
22:40:42.0955 1652 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
22:40:42.0955 1652 C:\Windows\System32\ncrypt.dll - ok
22:40:42.0955 1652 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:40:42.0955 1652 C:\Windows\System32\bcrypt.dll - ok
22:40:42.0955 1652 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:40:42.0955 1652 C:\Windows\System32\msprivs.dll - ok
22:40:42.0955 1652 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
22:40:42.0955 1652 C:\Windows\System32\netjoin.dll - ok
22:40:42.0955 1652 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
22:40:42.0955 1652 C:\Windows\System32\winlogon.exe - ok
22:40:42.0971 1652 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:40:42.0971 1652 C:\Windows\System32\negoexts.dll - ok
22:40:42.0971 1652 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
22:40:42.0971 1652 C:\Windows\System32\kerberos.dll - ok
22:40:42.0971 1652 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
22:40:42.0971 1652 C:\Windows\System32\winsta.dll - ok
22:40:42.0971 1652 [ F152755F131ADFE452D534F4E9383590 ] C:\Windows\System32\Faultrep.dll
22:40:42.0971 1652 C:\Windows\System32\Faultrep.dll - ok
22:40:42.0971 1652 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:40:42.0971 1652 C:\Windows\System32\cryptsp.dll - ok
22:40:42.0986 1652 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
22:40:42.0986 1652 C:\Windows\System32\mswsock.dll - ok
22:40:42.0986 1652 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
22:40:42.0986 1652 C:\Windows\System32\wkscli.dll - ok
22:40:42.0986 1652 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
22:40:42.0986 1652 C:\Windows\System32\msv1_0.dll - ok
22:40:42.0986 1652 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:40:42.0986 1652 C:\Windows\System32\wship6.dll - ok
22:40:42.0986 1652 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
22:40:42.0986 1652 C:\Windows\System32\netlogon.dll - ok
22:40:43.0002 1652 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
22:40:43.0002 1652 C:\Windows\System32\dnsapi.dll - ok
22:40:43.0002 1652 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
22:40:43.0002 1652 C:\Windows\System32\logoncli.dll - ok
22:40:43.0002 1652 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
22:40:43.0002 1652 C:\Windows\System32\schannel.dll - ok
22:40:43.0002 1652 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:40:43.0002 1652 C:\Windows\System32\wdigest.dll - ok
22:40:43.0018 1652 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:40:43.0018 1652 C:\Windows\System32\pku2u.dll - ok
22:40:43.0018 1652 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:40:43.0018 1652 C:\Windows\System32\rsaenh.dll - ok
22:40:43.0018 1652 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
22:40:43.0018 1652 C:\Windows\System32\TSpkg.dll - ok
22:40:43.0018 1652 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
22:40:43.0018 1652 C:\Windows\System32\bcryptprimitives.dll - ok
22:40:43.0018 1652 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
22:40:43.0018 1652 C:\Windows\System32\LIVESSP.DLL - ok
22:40:43.0033 1652 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
22:40:43.0033 1652 C:\Windows\System32\credssp.dll - ok
22:40:43.0033 1652 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:40:43.0033 1652 C:\Windows\System32\efslsaext.dll - ok
22:40:43.0033 1652 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
22:40:43.0033 1652 C:\Windows\System32\scecli.dll - ok
22:40:43.0033 1652 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:40:43.0033 1652 C:\Windows\System32\ubpm.dll - ok
22:40:43.0033 1652 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
22:40:43.0033 1652 C:\Windows\System32\netutils.dll - ok
22:40:43.0049 1652 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:40:43.0049 1652 C:\Windows\System32\svchost.exe - ok
22:40:43.0049 1652 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
22:40:43.0049 1652 C:\Windows\System32\umpnpmgr.dll - ok
22:40:43.0049 1652 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:40:43.0049 1652 C:\Windows\System32\devrtl.dll - ok
22:40:43.0049 1652 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:40:43.0049 1652 C:\Windows\System32\gpapi.dll - ok
22:40:43.0064 1652 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:40:43.0064 1652 C:\Windows\System32\SPInf.dll - ok
22:40:43.0064 1652 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
22:40:43.0064 1652 C:\Windows\System32\userenv.dll - ok
22:40:43.0064 1652 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:40:43.0064 1652 C:\Windows\System32\pcwum.dll - ok
22:40:43.0064 1652 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:40:43.0064 1652 C:\Windows\System32\umpo.dll - ok
22:40:43.0064 1652 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:40:43.0064 1652 C:\Windows\System32\powrprof.dll - ok
22:40:43.0080 1652 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:40:43.0080 1652 C:\Windows\System32\drivers\luafv.sys - ok
22:40:43.0080 1652 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] C:\Windows\System32\drivers\aswFsBlk.sys
22:40:43.0080 1652 C:\Windows\System32\drivers\aswFsBlk.sys - ok
22:40:43.0080 1652 [ B50CDD87772D6A11CB90924AAD399DF8 ] C:\Windows\System32\drivers\aswMonFlt.sys
22:40:43.0080 1652 C:\Windows\System32\drivers\aswMonFlt.sys - ok
22:40:43.0080 1652 [ F355C26FDE46EDB911E3E3D749E985AE ] C:\Windows\System32\nvvsvc.exe
22:40:43.0080 1652 C:\Windows\System32\nvvsvc.exe - ok
22:40:43.0080 1652 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:40:43.0080 1652 C:\Windows\System32\wtsapi32.dll - ok
22:40:43.0096 1652 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:40:43.0096 1652 C:\Windows\System32\dwmapi.dll - ok
22:40:43.0096 1652 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
22:40:43.0096 1652 C:\Windows\System32\pdh.dll - ok
22:40:43.0096 1652 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
22:40:43.0096 1652 C:\Windows\System32\rpcss.dll - ok
22:40:43.0096 1652 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:40:43.0096 1652 C:\Windows\System32\RpcEpMap.dll - ok
22:40:43.0111 1652 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:40:43.0111 1652 C:\Windows\System32\wshqos.dll - ok
22:40:43.0111 1652 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:40:43.0111 1652 C:\Windows\System32\WSHTCPIP.DLL - ok
22:40:43.0111 1652 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:40:43.0111 1652 C:\Windows\System32\FirewallAPI.dll - ok
22:40:43.0111 1652 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
22:40:43.0111 1652 C:\Windows\System32\LogonUI.exe - ok
22:40:43.0111 1652 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
22:40:43.0111 1652 C:\Windows\System32\authui.dll - ok
22:40:43.0127 1652 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:40:43.0127 1652 C:\Windows\System32\version.dll - ok
22:40:43.0127 1652 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
22:40:43.0127 1652 C:\Windows\System32\wevtsvc.dll - ok
22:40:43.0127 1652 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
22:40:43.0127 1652 C:\Windows\System32\cryptui.dll - ok
22:40:43.0127 1652 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
22:40:43.0127 1652 C:\Windows\System32\audiosrv.dll - ok
22:40:43.0127 1652 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:40:43.0127 1652 C:\Windows\System32\mmcss.dll - ok
22:40:43.0142 1652 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:40:43.0142 1652 C:\Windows\System32\ntmarta.dll - ok
22:40:43.0142 1652 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:40:43.0142 1652 C:\Windows\System32\avrt.dll - ok
22:40:43.0142 1652 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:40:43.0142 1652 C:\Windows\System32\netprofm.dll - ok
22:40:43.0142 1652 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
22:40:43.0142 1652 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
22:40:43.0158 1652 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:40:43.0158 1652 C:\Windows\System32\adtschema.dll - ok
22:40:43.0158 1652 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:40:43.0158 1652 C:\Windows\System32\MMDevAPI.dll - ok
22:40:43.0158 1652 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
22:40:43.0158 1652 C:\Windows\System32\propsys.dll - ok
22:40:43.0158 1652 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
22:40:43.0158 1652 C:\Windows\System32\MPSSVC.dll - ok
22:40:43.0158 1652 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:40:43.0158 1652 C:\Windows\System32\samlib.dll - ok
22:40:43.0174 1652 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
22:40:43.0174 1652 C:\Windows\System32\shacct.dll - ok
22:40:43.0174 1652 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
22:40:43.0174 1652 C:\Windows\System32\wlansvc.dll - ok
22:40:43.0174 1652 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
22:40:43.0174 1652 C:\Windows\System32\profsvc.dll - ok
22:40:43.0174 1652 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:40:43.0174 1652 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:40:43.0174 1652 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
22:40:43.0174 1652 C:\Windows\System32\drivers\fltMgr.sys - ok
22:40:43.0189 1652 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:40:43.0189 1652 C:\Windows\System32\uxtheme.dll - ok
22:40:43.0189 1652 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:40:43.0189 1652 C:\Windows\System32\PSHED.DLL - ok
22:40:43.0189 1652 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
22:40:43.0189 1652 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
22:40:43.0189 1652 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:40:43.0189 1652 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:40:43.0205 1652 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
22:40:43.0205 1652 C:\Windows\System32\audiodg.exe - ok
22:40:43.0205 1652 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
22:40:43.0205 1652 C:\Windows\System32\gpsvc.dll - ok
22:40:43.0205 1652 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:40:43.0205 1652 C:\Windows\System32\atl.dll - ok
22:40:43.0205 1652 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:40:43.0205 1652 C:\Windows\System32\dui70.dll - ok
22:40:43.0205 1652 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
22:40:43.0205 1652 C:\Windows\System32\nlaapi.dll - ok
22:40:43.0220 1652 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:40:43.0220 1652 C:\Windows\System32\themeservice.dll - ok
22:40:43.0220 1652 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:40:43.0220 1652 C:\Windows\System32\dsrole.dll - ok
22:40:43.0220 1652 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:40:43.0220 1652 C:\Windows\System32\es.dll - ok
22:40:43.0220 1652 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:40:43.0220 1652 C:\Windows\System32\slc.dll - ok
22:40:43.0236 1652 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:40:43.0236 1652 C:\Windows\System32\comres.dll - ok
22:40:43.0236 1652 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:40:43.0236 1652 C:\Windows\System32\Sens.dll - ok
22:40:43.0236 1652 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:40:43.0236 1652 C:\Windows\System32\uxsms.dll - ok
22:40:43.0236 1652 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:40:43.0236 1652 C:\Windows\System32\drivers\lltdio.sys - ok
22:40:43.0236 1652 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
22:40:43.0236 1652 C:\Windows\System32\drivers\nwifi.sys - ok
22:40:43.0252 1652 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
22:40:43.0252 1652 C:\Windows\System32\drivers\ndisuio.sys - ok
22:40:43.0252 1652 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:40:43.0252 1652 C:\Windows\System32\drivers\rspndr.sys - ok
22:40:43.0252 1652 [ FD24F98D2898BE093FE926604BE7DB99 ] C:\Windows\System32\drivers\TurboB.sys
22:40:43.0252 1652 C:\Windows\System32\drivers\TurboB.sys - ok
22:40:43.0252 1652 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:40:43.0252 1652 C:\Windows\System32\duser.dll - ok
22:40:43.0267 1652 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
22:40:43.0267 1652 C:\Windows\System32\SndVolSSO.dll - ok
22:40:43.0267 1652 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:40:43.0267 1652 C:\Windows\System32\hid.dll - ok
22:40:43.0267 1652 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
22:40:43.0267 1652 C:\Windows\System32\IPHLPAPI.DLL - ok
22:40:43.0267 1652 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:40:43.0267 1652 C:\Windows\System32\lmhsvc.dll - ok
22:40:43.0267 1652 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:40:43.0267 1652 C:\Windows\System32\nsisvc.dll - ok
22:40:43.0283 1652 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
22:40:43.0283 1652 C:\Windows\System32\nrpsrv.dll - ok
22:40:43.0283 1652 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:40:43.0283 1652 C:\Windows\System32\winnsi.dll - ok
22:40:43.0283 1652 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
22:40:43.0283 1652 C:\Windows\System32\dhcpcore.dll - ok
22:40:43.0283 1652 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
22:40:43.0283 1652 C:\Windows\System32\dnsrslvr.dll - ok
22:40:43.0283 1652 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
22:40:43.0283 1652 C:\Windows\System32\eapphost.dll - ok
22:40:43.0298 1652 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
22:40:43.0298 1652 C:\Windows\System32\eapsvc.dll - ok
22:40:43.0298 1652 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
22:40:43.0298 1652 C:\Windows\System32\keyiso.dll - ok
22:40:43.0298 1652 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
22:40:43.0298 1652 C:\Windows\System32\dhcpcore6.dll - ok
22:40:43.0298 1652 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:40:43.0298 1652 C:\Windows\System32\FWPUCLNT.DLL - ok
22:40:43.0298 1652 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
22:40:43.0298 1652 C:\Windows\System32\xmllite.dll - ok
22:40:43.0314 1652 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
22:40:43.0314 1652 C:\Windows\System32\umb.dll - ok
22:40:43.0314 1652 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
22:40:43.0314 1652 C:\Windows\System32\wlanmsm.dll - ok
22:40:43.0314 1652 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
22:40:43.0314 1652 C:\Windows\System32\wlansec.dll - ok
22:40:43.0314 1652 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
22:40:43.0314 1652 C:\Windows\System32\WindowsCodecs.dll - ok
22:40:43.0330 1652 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
22:40:43.0330 1652 C:\Windows\System32\onex.dll - ok
22:40:43.0330 1652 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:40:43.0330 1652 C:\Windows\System32\dhcpcsvc.dll - ok
22:40:43.0330 1652 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:40:43.0330 1652 C:\Windows\System32\eappcfg.dll - ok
22:40:43.0330 1652 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:40:43.0330 1652 C:\Windows\System32\eappprxy.dll - ok
22:40:43.0330 1652 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:40:43.0330 1652 C:\Windows\System32\dnsext.dll - ok
22:40:43.0345 1652 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
22:40:43.0345 1652 C:\Windows\System32\dhcpcsvc6.dll - ok
22:40:43.0345 1652 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
22:40:43.0345 1652 C:\Windows\System32\l2gpstore.dll - ok
22:40:43.0345 1652 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
22:40:43.0345 1652 C:\Windows\System32\WinSCard.dll - ok
22:40:43.0345 1652 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:40:43.0345 1652 C:\Windows\System32\wlanutil.dll - ok
22:40:43.0345 1652 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
22:40:43.0345 1652 C:\Windows\System32\wlgpclnt.dll - ok
22:40:43.0345 1652 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
22:40:43.0361 1652 C:\Windows\System32\msxml6.dll - ok
22:40:43.0361 1652 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:40:43.0361 1652 C:\Windows\System32\VaultCredProvider.dll - ok
22:40:43.0361 1652 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:40:43.0361 1652 C:\Windows\System32\winbrand.dll - ok
22:40:43.0361 1652 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:40:43.0361 1652 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:40:43.0361 1652 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:40:43.0361 1652 C:\Windows\System32\BioCredProv.dll - ok
22:40:43.0376 1652 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:40:43.0376 1652 C:\Windows\System32\winbio.dll - ok
22:40:43.0376 1652 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
22:40:43.0376 1652 C:\Windows\System32\credui.dll - ok
22:40:43.0376 1652 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
22:40:43.0376 1652 C:\Windows\System32\netapi32.dll - ok
22:40:43.0376 1652 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:40:43.0376 1652 C:\Windows\System32\vaultcli.dll - ok
22:40:43.0376 1652 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
22:40:43.0376 1652 C:\Windows\System32\samcli.dll - ok
22:40:43.0392 1652 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:40:43.0392 1652 C:\Windows\System32\certCredProvider.dll - ok
22:40:43.0392 1652 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
22:40:43.0392 1652 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
22:40:43.0392 1652 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:40:43.0392 1652 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
22:40:43.0392 1652 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:40:43.0392 1652 C:\Windows\System32\rasplap.dll - ok
22:40:43.0392 1652 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
22:40:43.0392 1652 C:\Windows\SysWOW64\ntdll.dll - ok
22:40:43.0408 1652 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
22:40:43.0408 1652 C:\Windows\System32\netcfgx.dll - ok
22:40:43.0408 1652 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:40:43.0408 1652 C:\Windows\System32\rasapi32.dll - ok
22:40:43.0408 1652 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
22:40:43.0408 1652 C:\Windows\System32\wow64.dll - ok
22:40:43.0408 1652 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
22:40:43.0408 1652 C:\Windows\System32\wow64win.dll - ok
22:40:43.0408 1652 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
22:40:43.0408 1652 C:\Windows\System32\wow64cpu.dll - ok
22:40:43.0423 1652 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
22:40:43.0423 1652 C:\Windows\SysWOW64\kernel32.dll - ok
22:40:43.0423 1652 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:40:43.0423 1652 C:\Windows\System32\rasman.dll - ok
22:40:43.0423 1652 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
22:40:43.0423 1652 C:\Windows\System32\rtutils.dll - ok
22:40:43.0423 1652 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:40:43.0423 1652 C:\Windows\System32\UXInit.dll - ok
22:40:43.0423 1652 [ 907D8FE3D5555D555955A70DB74DA936 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
22:40:43.0423 1652 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
22:40:43.0439 1652 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
22:40:43.0439 1652 C:\Windows\System32\oleacc.dll - ok
22:40:43.0439 1652 [ E5B307114D7011EDB11D9EEDE9681489 ] C:\Windows\System32\nvsvc64.dll
22:40:43.0439 1652 C:\Windows\System32\nvsvc64.dll - ok
22:40:43.0439 1652 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
22:40:43.0439 1652 C:\Windows\System32\UIAutomationCore.dll - ok
22:40:43.0439 1652 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:40:43.0439 1652 C:\Windows\System32\imageres.dll - ok
22:40:43.0439 1652 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:40:43.0439 1652 C:\Windows\System32\msimg32.dll - ok
22:40:43.0454 1652 [ F4898D9A7835F5D6C1299FFBCF06D3B1 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
22:40:43.0454 1652 C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
22:40:43.0454 1652 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
22:40:43.0454 1652 C:\Windows\SysWOW64\KernelBase.dll - ok
22:40:43.0454 1652 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
22:40:43.0454 1652 C:\Windows\SysWOW64\ws2_32.dll - ok
22:40:43.0454 1652 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
22:40:43.0454 1652 C:\Windows\SysWOW64\msvcrt.dll - ok
22:40:43.0454 1652 [ 1658289ABA9E26A3FA6F93AC58581AC8 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
22:40:43.0454 1652 C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
22:40:43.0470 1652 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:40:43.0470 1652 C:\Windows\SysWOW64\rpcrt4.dll - ok
22:40:43.0470 1652 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
22:40:43.0470 1652 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
22:40:43.0470 1652 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
22:40:43.0470 1652 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
22:40:43.0470 1652 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
22:40:43.0470 1652 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
22:40:43.0470 1652 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
22:40:43.0470 1652 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
22:40:43.0486 1652 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
22:40:43.0486 1652 C:\Windows\System32\mscms.dll - ok
22:40:43.0486 1652 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:40:43.0486 1652 C:\Windows\SysWOW64\cryptbase.dll - ok
22:40:43.0486 1652 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:40:43.0486 1652 C:\Windows\SysWOW64\nsi.dll - ok
22:40:43.0486 1652 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:40:43.0486 1652 C:\Windows\SysWOW64\sechost.dll - ok
22:40:43.0486 1652 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
22:40:43.0486 1652 C:\Windows\SysWOW64\sspicli.dll - ok
22:40:43.0501 1652 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
22:40:43.0501 1652 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
22:40:43.0501 1652 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
22:40:43.0501 1652 C:\Windows\SysWOW64\user32.dll - ok
22:40:43.0501 1652 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
22:40:43.0501 1652 C:\Windows\System32\winspool.drv - ok
22:40:43.0501 1652 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
22:40:43.0501 1652 C:\Windows\SysWOW64\gdi32.dll - ok
22:40:43.0501 1652 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
22:40:43.0501 1652 C:\Windows\System32\oledlg.dll - ok
22:40:43.0517 1652 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:40:43.0517 1652 C:\Windows\System32\winmm.dll - ok
22:40:43.0517 1652 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:40:43.0517 1652 C:\Windows\SysWOW64\lpk.dll - ok
22:40:43.0517 1652 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
22:40:43.0517 1652 C:\Windows\SysWOW64\usp10.dll - ok
22:40:43.0517 1652 [ 87C4CC8765E2B9A2B7908C5F4CAFF65C ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
22:40:43.0517 1652 C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
22:40:43.0517 1652 [ 6C95BED37C4EDD5E7342573930F247A2 ] C:\Windows\System32\nvapi64.dll
22:40:43.0532 1652 C:\Windows\System32\nvapi64.dll - ok
22:40:43.0532 1652 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
22:40:43.0532 1652 C:\Windows\SysWOW64\advapi32.dll - ok
22:40:43.0532 1652 [ F9EE4BCBAAEC4411F302B4DA90083FBF ] C:\Windows\System32\nvumdshimx.dll
22:40:43.0532 1652 C:\Windows\System32\nvumdshimx.dll - ok
22:40:43.0532 1652 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
22:40:43.0532 1652 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
22:40:43.0532 1652 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
22:40:43.0532 1652 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
22:40:43.0548 1652 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
22:40:43.0548 1652 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
22:40:43.0548 1652 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:40:43.0548 1652 C:\Windows\SysWOW64\psapi.dll - ok
22:40:43.0548 1652 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:40:43.0548 1652 C:\Windows\SysWOW64\version.dll - ok
22:40:43.0548 1652 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
22:40:43.0548 1652 C:\Windows\SysWOW64\wininet.dll - ok
22:40:43.0548 1652 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
22:40:43.0548 1652 C:\Windows\SysWOW64\wsock32.dll - ok
22:40:43.0564 1652 [ 8C65AAFCA2D90EEEE2790BA84E64E9FE ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
22:40:43.0564 1652 C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
22:40:43.0564 1652 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
22:40:43.0564 1652 C:\Windows\SysWOW64\shlwapi.dll - ok
22:40:43.0564 1652 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
22:40:43.0564 1652 C:\Windows\SysWOW64\iertutil.dll - ok
22:40:43.0564 1652 [ B80D24D5F6FEEB013148ACE72DAC2549 ] C:\Windows\System32\nvsvcr.dll
22:40:43.0564 1652 C:\Windows\System32\nvsvcr.dll - ok
22:40:43.0564 1652 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
22:40:43.0564 1652 C:\Windows\SysWOW64\urlmon.dll - ok
22:40:43.0579 1652 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
22:40:43.0579 1652 C:\Windows\SysWOW64\ole32.dll - ok
22:40:43.0579 1652 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
22:40:43.0579 1652 C:\Windows\SysWOW64\oleaut32.dll - ok
22:40:43.0579 1652 [ 617C4C74E67136040E4082A9298B3416 ] C:\Windows\System32\nvcpl.dll
22:40:43.0579 1652 C:\Windows\System32\nvcpl.dll - ok
22:40:43.0579 1652 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
22:40:43.0579 1652 C:\Windows\SysWOW64\imm32.dll - ok
22:40:43.0579 1652 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:40:43.0579 1652 C:\Windows\SysWOW64\msctf.dll - ok
22:40:43.0595 1652 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
22:40:43.0595 1652 C:\Windows\SysWOW64\dbghelp.dll - ok
22:40:43.0595 1652 [ 06E0D6ADD165F58838B7385068ACB245 ] C:\Program Files\AVAST Software\Avast\1032\Base.dll
22:40:43.0595 1652 C:\Program Files\AVAST Software\Avast\1032\Base.dll - ok
22:40:43.0595 1652 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
22:40:43.0595 1652 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
22:40:43.0595 1652 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
22:40:43.0595 1652 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
22:40:43.0610 1652 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
22:40:43.0610 1652 C:\Windows\System32\shsvcs.dll - ok
22:40:43.0610 1652 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
22:40:43.0610 1652 C:\Windows\SysWOW64\cscapi.dll - ok
22:40:43.0610 1652 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
22:40:43.0610 1652 C:\Windows\SysWOW64\netapi32.dll - ok
22:40:43.0610 1652 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
22:40:43.0610 1652 C:\Windows\SysWOW64\netutils.dll - ok
22:40:43.0610 1652 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
22:40:43.0610 1652 C:\Windows\SysWOW64\srvcli.dll - ok
22:40:43.0626 1652 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
22:40:43.0626 1652 C:\Windows\SysWOW64\wkscli.dll - ok
22:40:43.0626 1652 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
22:40:43.0626 1652 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
22:40:43.0626 1652 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
22:40:43.0626 1652 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
22:40:43.0626 1652 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
22:40:43.0626 1652 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
22:40:43.0626 1652 [ 92A43BECB5BE8A55A1611734670265F3 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
22:40:43.0626 1652 C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
22:40:43.0642 1652 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
22:40:43.0642 1652 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
22:40:43.0642 1652 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
22:40:43.0642 1652 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
22:40:43.0642 1652 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
22:40:43.0642 1652 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
22:40:43.0642 1652 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
22:40:43.0642 1652 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
22:40:43.0657 1652 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
22:40:43.0657 1652 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
22:40:43.0657 1652 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
22:40:43.0657 1652 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
22:40:43.0657 1652 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
22:40:43.0657 1652 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
22:40:43.0657 1652 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:40:43.0657 1652 C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:40:43.0657 1652 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
22:40:43.0657 1652 C:\Windows\SysWOW64\wtsapi32.dll - ok
22:40:43.0673 1652 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
22:40:43.0673 1652 C:\Windows\System32\fveapi.dll - ok
22:40:43.0673 1652 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:40:43.0673 1652 C:\Windows\System32\fvecerts.dll - ok
22:40:43.0673 1652 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:40:43.0673 1652 C:\Windows\System32\tbs.dll - ok
22:40:43.0673 1652 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
22:40:43.0673 1652 C:\Windows\System32\schedsvc.dll - ok
22:40:43.0673 1652 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:40:43.0673 1652 C:\Windows\System32\ktmw32.dll - ok
22:40:43.0688 1652 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:40:43.0688 1652 C:\Windows\System32\wiarpc.dll - ok
22:40:43.0688 1652 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
22:40:43.0688 1652 C:\Windows\System32\taskcomp.dll - ok
22:40:43.0688 1652 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
22:40:43.0688 1652 C:\Windows\System32\drivers\http.sys - ok
22:40:43.0688 1652 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
22:40:43.0688 1652 C:\Windows\System32\spoolsv.exe - ok
22:40:43.0688 1652 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
22:40:43.0688 1652 C:\Windows\System32\BFE.DLL - ok
22:40:43.0704 1652 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
22:40:43.0704 1652 C:\Windows\System32\drivers\bowser.sys - ok
22:40:43.0704 1652 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
22:40:43.0704 1652 C:\Windows\System32\taskeng.exe - ok
22:40:43.0704 1652 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:40:43.0704 1652 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:40:43.0704 1652 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
22:40:43.0704 1652 C:\Windows\SysWOW64\wscapi.dll - ok
22:40:43.0704 1652 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
22:40:43.0704 1652 C:\Windows\SysWOW64\wscisvif.dll - ok
22:40:43.0720 1652 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:40:43.0720 1652 C:\Windows\System32\TSChannel.dll - ok
22:40:43.0720 1652 [ 9184FA2B677CBF2F8E26098980E47304 ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswEngin.dll
22:40:43.0720 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswEngin.dll - ok
22:40:43.0720 1652 [ A94AF354E4EA9C835DCF3E60EC75911C ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnOS.dll
22:40:43.0720 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnOS.dll - ok
22:40:43.0720 1652 [ F8AC522C1DAEED05BDA7C0E4E394BCD7 ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnIS.dll
22:40:43.0720 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnIS.dll - ok
22:40:43.0735 1652 [ 1E7EAFF858538C516D7358C360605E3A ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnBS.dll
22:40:43.0735 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswCmnBS.dll - ok
22:40:43.0735 1652 [ 2E929D6CF669AEF225552EEA9BE7E150 ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswScan.dll
22:40:43.0735 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswScan.dll - ok
22:40:43.0735 1652 [ 1752EE915B9003E1FD1FFB4DE63E538B ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswRep.dll
22:40:43.0735 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswRep.dll - ok
22:40:43.0735 1652 [ CE7828A0EA430338BBCFFC6914462BAA ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswFiDb.dll
22:40:43.0735 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswFiDb.dll - ok
22:40:43.0735 1652 [ 6AC2E27FAA900889A780EF600E14AB1F ] C:\Program Files\AVAST Software\Avast\defs\12121601\algo.dll
22:40:43.0735 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\algo.dll - ok
22:40:43.0751 1652 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:40:43.0751 1652 C:\Windows\System32\dllhost.exe - ok
22:40:43.0751 1652 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:40:43.0751 1652 C:\Windows\System32\IDStore.dll - ok
22:40:43.0751 1652 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
22:40:43.0751 1652 C:\Windows\System32\taskhost.exe - ok
22:40:43.0751 1652 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
22:40:43.0751 1652 C:\Windows\System32\AtBroker.exe - ok
22:40:43.0751 1652 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:40:43.0751 1652 C:\Windows\System32\mpr.dll - ok
22:40:43.0766 1652 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:40:43.0766 1652 C:\Windows\System32\PlaySndSrv.dll - ok
22:40:43.0766 1652 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
22:40:43.0766 1652 C:\Windows\System32\userinit.exe - ok
22:40:43.0766 1652 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:40:43.0766 1652 C:\Windows\System32\dwm.exe - ok
22:40:43.0766 1652 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
22:40:43.0766 1652 C:\Windows\System32\dwmredir.dll - ok
22:40:43.0766 1652 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
22:40:43.0766 1652 C:\Windows\System32\dwmcore.dll - ok
22:40:43.0782 1652 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:40:43.0782 1652 C:\Windows\System32\MsCtfMonitor.dll - ok
22:40:43.0782 1652 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:40:43.0782 1652 C:\Windows\System32\msutb.dll - ok
22:40:43.0782 1652 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
22:40:43.0782 1652 C:\Windows\explorer.exe - ok
22:40:43.0782 1652 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
22:40:43.0782 1652 C:\Windows\System32\HotStartUserAgent.dll - ok
22:40:43.0782 1652 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
22:40:43.0782 1652 C:\Windows\System32\d3d10_1.dll - ok
22:40:43.0798 1652 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
22:40:43.0798 1652 C:\Windows\System32\d3d10_1core.dll - ok
22:40:43.0798 1652 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
22:40:43.0798 1652 C:\Windows\System32\dxgi.dll - ok
22:40:43.0798 1652 [ 71D3270248200BE20A1E957FCE4AA78C ] C:\Windows\System32\igd10umd64.dll
22:40:43.0798 1652 C:\Windows\System32\igd10umd64.dll - ok
22:40:43.0798 1652 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
22:40:43.0798 1652 C:\Windows\System32\drivers\mpsdrv.sys - ok
22:40:43.0813 1652 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
22:40:43.0813 1652 C:\Windows\System32\drivers\mrxsmb.sys - ok
22:40:43.0813 1652 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
22:40:43.0813 1652 C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:40:43.0813 1652 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
22:40:43.0813 1652 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
22:40:43.0813 1652 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
22:40:43.0813 1652 C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:40:43.0813 1652 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
22:40:43.0813 1652 C:\Windows\System32\wkssvc.dll - ok
22:40:43.0829 1652 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:40:43.0829 1652 C:\Windows\System32\rasadhlp.dll - ok
22:40:43.0829 1652 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
22:40:43.0829 1652 C:\Windows\System32\wfapigp.dll - ok
22:40:43.0829 1652 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:40:43.0829 1652 C:\Windows\System32\pcasvc.dll - ok
22:40:43.0829 1652 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
22:40:43.0829 1652 C:\Windows\System32\snmptrap.exe - ok
22:40:43.0829 1652 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
22:40:43.0829 1652 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
22:40:43.0844 1652 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
22:40:43.0844 1652 C:\Windows\System32\sstpsvc.dll - ok
22:40:43.0844 1652 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
22:40:43.0844 1652 C:\Windows\System32\provsvc.dll - ok
22:40:43.0844 1652 [ 50D28F3F8B7C17056520C80A29EFE17C ] C:\Windows\System32\lpksetup.exe
22:40:43.0844 1652 C:\Windows\System32\lpksetup.exe - ok
22:40:43.0844 1652 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
22:40:43.0844 1652 C:\Windows\System32\dpx.dll - ok
22:40:43.0844 1652 [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
22:40:43.0844 1652 C:\Windows\System32\comsvcs.dll - ok
22:40:43.0860 1652 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:40:43.0860 1652 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
22:40:43.0860 1652 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
22:40:43.0860 1652 C:\Windows\System32\localspl.dll - ok
22:40:43.0860 1652 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
22:40:43.0860 1652 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
22:40:43.0860 1652 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
22:40:43.0860 1652 C:\Windows\SysWOW64\shell32.dll - ok
22:40:43.0860 1652 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
22:40:43.0860 1652 C:\Windows\System32\uDWM.dll - ok
22:40:43.0876 1652 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:40:43.0876 1652 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:40:43.0876 1652 [ 2C74E3372BC4AD53DDF03C361A1F1952 ] C:\Windows\SysWOW64\nvinit.dll
22:40:43.0876 1652 C:\Windows\SysWOW64\nvinit.dll - ok
22:40:43.0876 1652 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
22:40:43.0876 1652 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
22:40:43.0876 1652 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
22:40:43.0876 1652 C:\Windows\SysWOW64\crypt32.dll - ok
22:40:43.0876 1652 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:40:43.0876 1652 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:40:43.0891 1652 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:40:43.0891 1652 C:\Windows\SysWOW64\winnsi.dll - ok
22:40:43.0891 1652 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
22:40:43.0891 1652 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
22:40:43.0891 1652 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
22:40:43.0891 1652 C:\Windows\SysWOW64\secur32.dll - ok
22:40:43.0891 1652 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
22:40:43.0891 1652 C:\Windows\SysWOW64\msasn1.dll - ok
22:40:43.0907 1652 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
22:40:43.0907 1652 C:\Windows\SysWOW64\wintrust.dll - ok
22:40:43.0907 1652 [ 78779EE07231C658B483B1F38B5088DF ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
22:40:43.0907 1652 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
22:40:43.0907 1652 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
22:40:43.0907 1652 C:\Windows\SysWOW64\imagehlp.dll - ok
22:40:43.0907 1652 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
22:40:43.0907 1652 C:\Windows\SysWOW64\msi.dll - ok
22:40:43.0907 1652 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
22:40:43.0907 1652 C:\Windows\SysWOW64\winhttp.dll - ok
22:40:43.0922 1652 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
22:40:43.0922 1652 C:\Windows\SysWOW64\webio.dll - ok
22:40:43.0922 1652 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:40:43.0922 1652 C:\Windows\SysWOW64\clbcatq.dll - ok
22:40:43.0922 1652 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:40:43.0922 1652 C:\Windows\SysWOW64\profapi.dll - ok
22:40:43.0922 1652 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:40:43.0922 1652 C:\Windows\SysWOW64\SensApi.dll - ok
22:40:43.0922 1652 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\SysWOW64\msxml6.dll
22:40:43.0922 1652 C:\Windows\SysWOW64\msxml6.dll - ok
22:40:43.0938 1652 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
22:40:43.0938 1652 C:\Windows\System32\ExplorerFrame.dll - ok
22:40:43.0938 1652 [ 9DD3A22F804697606C2B7FF9E912FF6B ] C:\Program Files (x86)\Launch Manager\dsiwmis.exe
22:40:43.0938 1652 C:\Program Files (x86)\Launch Manager\dsiwmis.exe - ok
22:40:43.0938 1652 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
22:40:43.0938 1652 C:\Windows\System32\cryptnet.dll - ok
22:40:43.0938 1652 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
22:40:43.0938 1652 C:\Windows\System32\cryptsvc.dll - ok
22:40:43.0938 1652 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
22:40:43.0938 1652 C:\Windows\System32\dps.dll - ok
22:40:43.0954 1652 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
22:40:43.0954 1652 C:\Windows\System32\vssapi.dll - ok
22:40:43.0954 1652 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:40:43.0954 1652 C:\Windows\SysWOW64\cryptsp.dll - ok
22:40:43.0954 1652 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:40:43.0954 1652 C:\Windows\SysWOW64\rsaenh.dll - ok
22:40:43.0954 1652 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
22:40:43.0954 1652 C:\Windows\System32\taskschd.dll - ok
22:40:43.0954 1652 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
22:40:43.0954 1652 C:\Windows\SysWOW64\setupapi.dll - ok
22:40:43.0969 1652 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
22:40:43.0969 1652 C:\Windows\SysWOW64\userenv.dll - ok
22:40:43.0969 1652 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
22:40:43.0969 1652 C:\Windows\SysWOW64\devobj.dll - ok
22:40:43.0969 1652 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
22:40:43.0969 1652 C:\Windows\SysWOW64\winmm.dll - ok
22:40:43.0969 1652 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
22:40:43.0969 1652 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
22:40:43.0969 1652 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
22:40:43.0969 1652 C:\Windows\System32\msi.dll - ok
22:40:43.0985 1652 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:40:43.0985 1652 C:\Windows\System32\vsstrace.dll - ok
22:40:43.0985 1652 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:40:43.0985 1652 C:\Windows\SysWOW64\ntmarta.dll - ok
22:40:43.0985 1652 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
22:40:43.0985 1652 C:\Windows\SysWOW64\Wldap32.dll - ok
22:40:43.0985 1652 [ 1EEF6ACBBE1D5DCD2EE545895DA87454 ] C:\Users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
22:40:43.0985 1652 C:\Users\Resident\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll - ok
22:40:43.0985 1652 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
22:40:43.0985 1652 C:\Windows\System32\dbghelp.dll - ok
22:40:44.0000 1652 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
22:40:44.0000 1652 C:\Windows\System32\msvcp60.dll - ok
22:40:44.0000 1652 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:40:44.0000 1652 C:\Windows\System32\EhStorShell.dll - ok
22:40:44.0000 1652 [ 97BB37731F04CEBC15C4FD09C8CE5176 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
22:40:44.0000 1652 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
22:40:44.0000 1652 [ 0D7BE936A44E6B70F822D272A5CEBC22 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
22:40:44.0000 1652 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
22:40:44.0000 1652 [ 18E756E0FE2FFCD5DE35F6B9F91244A6 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll
22:40:44.0016 1652 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll - ok
22:40:44.0016 1652 [ BE165318E0052A91F7EA36F515B5F2B1 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll
22:40:44.0016 1652 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcp90.dll - ok
22:40:44.0016 1652 [ 2189278AB7A6FA4428188606D93D202B ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
22:40:44.0016 1652 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
22:40:44.0016 1652 [ 53FE14BD8160EBE29EF29B0A5366F34A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
22:40:44.0016 1652 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
22:40:44.0016 1652 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:40:44.0016 1652 C:\Windows\System32\IconCodecService.dll - ok
22:40:44.0032 1652 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
22:40:44.0032 1652 C:\Windows\SysWOW64\apphelp.dll - ok
22:40:44.0032 1652 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
22:40:44.0032 1652 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
22:40:44.0032 1652 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
22:40:44.0032 1652 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
22:40:44.0032 1652 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
22:40:44.0032 1652 C:\Windows\SysWOW64\mstask.dll - ok
22:40:44.0032 1652 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
22:40:44.0032 1652 C:\Windows\System32\cscapi.dll - ok
22:40:44.0047 1652 [ 48425C93B6F36529707206E4FA680CF3 ] C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
22:40:44.0047 1652 C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe - ok
22:40:44.0047 1652 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
22:40:44.0047 1652 C:\Windows\SysWOW64\winsta.dll - ok
22:40:44.0047 1652 [ A824317EA303679481EF1039A5D66212 ] C:\Program Files (x86)\Launch Manager\LMworker.exe
22:40:44.0047 1652 C:\Program Files (x86)\Launch Manager\LMworker.exe - ok
22:40:44.0047 1652 [ 21ACFD2B4BF6C0F4D9080A437E400E88 ] C:\Program Files (x86)\Launch Manager\LMutilps32.exe
22:40:44.0047 1652 C:\Program Files (x86)\Launch Manager\LMutilps32.exe - ok
22:40:44.0063 1652 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
22:40:44.0063 1652 C:\Windows\SysWOW64\samcli.dll - ok
22:40:44.0063 1652 [ F50D3E9B6E2B457F2BFED8F5EB4ED59A ] C:\Program Files (x86)\Launch Manager\NTKCUtl.dll
22:40:44.0063 1652 C:\Program Files (x86)\Launch Manager\NTKCUtl.dll - ok
22:40:44.0063 1652 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:40:44.0063 1652 C:\Windows\SysWOW64\dwmapi.dll - ok
22:40:44.0063 1652 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:40:44.0063 1652 C:\Windows\SysWOW64\uxtheme.dll - ok
22:40:44.0063 1652 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
22:40:44.0063 1652 C:\Windows\SysWOW64\fltLib.dll - ok
22:40:44.0078 1652 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
22:40:44.0078 1652 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
22:40:44.0078 1652 [ 352CC5F802D8EDE1FAAE6D3E50664958 ] C:\Program Files (x86)\Launch Manager\LmSmbKel.dll
22:40:44.0078 1652 C:\Program Files (x86)\Launch Manager\LmSmbKel.dll - ok
22:40:44.0078 1652 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
22:40:44.0078 1652 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
22:40:44.0078 1652 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
22:40:44.0078 1652 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
22:40:44.0078 1652 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
22:40:44.0078 1652 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
22:40:44.0094 1652 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
22:40:44.0094 1652 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
22:40:44.0094 1652 [ F29AA7284FBDD313AF9F423D49F9AC89 ] C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll
22:40:44.0094 1652 C:\Program Files\Acer\Acer ePower Management\PowerSettingControl.dll - ok
22:40:44.0094 1652 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
22:40:44.0094 1652 C:\Windows\System32\FDResPub.dll - ok
22:40:44.0094 1652 [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
22:40:44.0094 1652 C:\Program Files (x86)\Acer\Registration\GREGsvc.exe - ok
22:40:44.0110 1652 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
22:40:44.0110 1652 C:\Windows\SysWOW64\svchost.exe - ok
22:40:44.0110 1652 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
22:40:44.0110 1652 C:\Windows\System32\WSDApi.dll - ok
22:40:44.0110 1652 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
22:40:44.0110 1652 C:\Windows\System32\webservices.dll - ok
22:40:44.0110 1652 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:40:44.0110 1652 C:\Windows\System32\fundisc.dll - ok
22:40:44.0110 1652 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
22:40:44.0110 1652 C:\Windows\System32\FXSMON.dll - ok
22:40:44.0125 1652 [ C5E82BCFD577AF98F3A7937A69A338B9 ] C:\Windows\System32\HPZ3LWN7.DLL
22:40:44.0125 1652 C:\Windows\System32\HPZ3LWN7.DLL - ok
22:40:44.0125 1652 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
22:40:44.0125 1652 C:\Windows\System32\PrintIsolationProxy.dll - ok
22:40:44.0125 1652 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:40:44.0125 1652 C:\Windows\System32\spoolss.dll - ok
22:40:44.0125 1652 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:40:44.0125 1652 C:\Windows\System32\tcpmon.dll - ok
22:40:44.0125 1652 [ B705C7097F9A0EC941D02DCE7C7D426C ] C:\Program Files\Acer\Acer Updater\UpdaterService.exe
22:40:44.0125 1652 C:\Program Files\Acer\Acer Updater\UpdaterService.exe - ok
22:40:44.0141 1652 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:40:44.0141 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
22:40:44.0141 1652 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
22:40:44.0141 1652 C:\Windows\System32\IKEEXT.DLL - ok
22:40:44.0141 1652 [ 4909501F53DA2EB6603848944C45F524 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
22:40:44.0141 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
22:40:44.0141 1652 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
22:40:44.0141 1652 C:\Windows\SysWOW64\winspool.drv - ok
22:40:44.0156 1652 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
22:40:44.0156 1652 C:\Windows\System32\vpnikeapi.dll - ok
22:40:44.0156 1652 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
22:40:44.0156 1652 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
22:40:44.0156 1652 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
22:40:44.0156 1652 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
22:40:44.0156 1652 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
22:40:44.0156 1652 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
22:40:44.0156 1652 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
22:40:44.0156 1652 C:\Windows\System32\HPZinw12.dll - ok
22:40:44.0172 1652 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:40:44.0172 1652 C:\Windows\System32\wsock32.dll - ok
22:40:44.0172 1652 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:40:44.0172 1652 C:\Windows\System32\netman.dll - ok
22:40:44.0172 1652 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
22:40:44.0172 1652 C:\Windows\System32\winhttp.dll - ok
22:40:44.0172 1652 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
22:40:44.0172 1652 C:\Windows\System32\webio.dll - ok
22:40:44.0172 1652 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
22:40:44.0172 1652 C:\Windows\System32\httpapi.dll - ok
22:40:44.0188 1652 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:40:44.0188 1652 C:\Windows\System32\snmpapi.dll - ok
22:40:44.0188 1652 [ 72A7C1EC4D3BF38CB115395AD721AE3C ] C:\Program Files\AVAST Software\Avast\defs\12121601\ArPot.dll
22:40:44.0188 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\ArPot.dll - ok
22:40:44.0188 1652 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
22:40:44.0188 1652 C:\Windows\System32\wsnmp32.dll - ok
22:40:44.0188 1652 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:40:44.0188 1652 C:\Windows\System32\usbmon.dll - ok
22:40:44.0188 1652 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:40:44.0188 1652 C:\Windows\System32\WSDMon.dll - ok
22:40:44.0203 1652 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:40:44.0203 1652 C:\Windows\System32\fdPnp.dll - ok
22:40:44.0203 1652 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:40:44.0203 1652 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:40:44.0203 1652 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
22:40:44.0203 1652 C:\Windows\System32\win32spl.dll - ok
22:40:44.0203 1652 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
22:40:44.0203 1652 C:\Windows\System32\inetpp.dll - ok
22:40:44.0203 1652 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
22:40:44.0203 1652 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
22:40:44.0219 1652 [ 9392C25DEEDA9A79FDBF6559D47EAB1F ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
22:40:44.0219 1652 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
22:40:44.0219 1652 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
22:40:44.0219 1652 C:\Windows\System32\mgmtapi.dll - ok
22:40:44.0219 1652 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
22:40:44.0219 1652 C:\Windows\System32\PrintIsolationHost.exe - ok
22:40:44.0219 1652 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
22:40:44.0219 1652 C:\Windows\System32\tcpmib.dll - ok
22:40:44.0234 1652 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
22:40:44.0234 1652 C:\Windows\System32\nlasvc.dll - ok
22:40:44.0234 1652 [ 5839A8027D6D324A7CD494051A96628C ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:40:44.0234 1652 C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe - ok
22:40:44.0234 1652 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
22:40:44.0234 1652 C:\Windows\System32\ncsi.dll - ok
22:40:44.0234 1652 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
22:40:44.0234 1652 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
22:40:44.0234 1652 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:40:44.0234 1652 C:\Windows\System32\ssdpapi.dll - ok
22:40:44.0250 1652 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll
22:40:44.0250 1652 C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll - ok
22:40:44.0250 1652 [ 1873214666F6F0A883742DF91FBC48C9 ] C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
22:40:44.0250 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe - ok
22:40:44.0250 1652 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
22:40:44.0250 1652 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
22:40:44.0250 1652 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
22:40:44.0250 1652 C:\Windows\SysWOW64\oleacc.dll - ok
22:40:44.0250 1652 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:40:44.0250 1652 C:\Windows\System32\aepic.dll - ok
22:40:44.0266 1652 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:40:44.0266 1652 C:\Windows\System32\sfc.dll - ok
22:40:44.0266 1652 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\unidrv.dll
22:40:44.0266 1652 C:\Windows\System32\spool\drivers\x64\3\unidrv.dll - ok
22:40:44.0266 1652 [ 7DD3B82EABFCF8CB82E39E2E9547C0A1 ] C:\Program Files (x86)\NTI\Acer Backup Manager\Pehook.dll
22:40:44.0266 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\Pehook.dll - ok
22:40:44.0266 1652 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:40:44.0266 1652 C:\Windows\System32\drivers\PEAuth.sys - ok
22:40:44.0266 1652 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:40:44.0266 1652 C:\Windows\System32\sfc_os.dll - ok
22:40:44.0281 1652 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:40:44.0281 1652 C:\Windows\System32\drivers\secdrv.sys - ok
22:40:44.0281 1652 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
22:40:44.0281 1652 C:\Windows\System32\HPZipm12.dll - ok
22:40:44.0281 1652 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
22:40:44.0281 1652 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
22:40:44.0281 1652 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
22:40:44.0281 1652 C:\Windows\System32\seclogon.dll - ok
22:40:44.0281 1652 [ 5C304121590B578916B1B658707CD38A ] C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule.dll
22:40:44.0281 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule.dll - ok
22:40:44.0297 1652 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
22:40:44.0297 1652 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
22:40:44.0297 1652 [ 898617D27DD24D3E426F08D462521C9C ] C:\Program Files (x86)\NTI\Acer Backup Manager\SyncDll.dll
22:40:44.0297 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\SyncDll.dll - ok
22:40:44.0297 1652 [ 47DAACCB81F4FA958F4DE5855827DF22 ] C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
22:40:44.0297 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll - ok
22:40:44.0297 1652 [ E06E026FD9F20E8865E6A500E4726C45 ] C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
22:40:44.0297 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll - ok
22:40:44.0312 1652 [ 37B499357915EA3E7F958EA2FF826D4B ] C:\Program Files (x86)\NTI\Acer Backup Manager\agent_stub.dll
22:40:44.0312 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\agent_stub.dll - ok
22:40:44.0312 1652 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
22:40:44.0312 1652 C:\Windows\System32\drivers\srvnet.sys - ok
22:40:44.0312 1652 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
22:40:44.0312 1652 C:\Windows\System32\drivers\tcpipreg.sys - ok
22:40:44.0312 1652 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
22:40:44.0312 1652 C:\Windows\System32\tapisrv.dll - ok
22:40:44.0312 1652 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
22:40:44.0312 1652 C:\Program Files\Windows Defender\MpSvc.dll - ok
22:40:44.0328 1652 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
22:40:44.0328 1652 C:\Program Files\Windows Defender\MpClient.dll - ok
22:40:44.0328 1652 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
22:40:44.0328 1652 C:\Windows\System32\esent.dll - ok
22:40:44.0328 1652 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:40:44.0328 1652 C:\Windows\System32\aeevts.dll - ok
22:40:44.0328 1652 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
22:40:44.0328 1652 C:\Windows\System32\wiaservc.dll - ok
22:40:44.0344 1652 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
22:40:44.0344 1652 C:\Windows\System32\drivers\srv2.sys - ok
22:40:44.0344 1652 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
22:40:44.0344 1652 C:\Windows\System32\sysmain.dll - ok
22:40:44.0344 1652 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
22:40:44.0344 1652 C:\Windows\System32\wbemcomn.dll - ok
22:40:44.0344 1652 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:40:44.0344 1652 C:\Windows\System32\wbem\WMIsvc.dll - ok
22:40:44.0344 1652 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
22:40:44.0344 1652 C:\Windows\System32\rasmans.dll - ok
22:40:44.0359 1652 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
22:40:44.0359 1652 C:\Windows\System32\rastapi.dll - ok
22:40:44.0359 1652 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
22:40:44.0359 1652 C:\Windows\System32\tapi32.dll - ok
22:40:44.0359 1652 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:40:44.0359 1652 C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:40:44.0359 1652 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
22:40:44.0359 1652 C:\Windows\System32\unimdm.tsp - ok
22:40:44.0359 1652 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
22:40:44.0359 1652 C:\Windows\System32\uniplat.dll - ok
22:40:44.0375 1652 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
22:40:44.0375 1652 C:\Windows\System32\kmddsp.tsp - ok
22:40:44.0375 1652 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
22:40:44.0375 1652 C:\Windows\System32\ndptsp.tsp - ok
22:40:44.0375 1652 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
22:40:44.0375 1652 C:\Windows\System32\hidphone.tsp - ok
22:40:44.0375 1652 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
22:40:44.0375 1652 C:\Windows\System32\rasppp.dll - ok
22:40:44.0375 1652 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
22:40:44.0375 1652 C:\Windows\System32\vpnike.dll - ok
22:40:44.0390 1652 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
22:40:44.0390 1652 C:\Windows\System32\raschap.dll - ok
22:40:44.0390 1652 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:40:44.0390 1652 C:\Windows\System32\wiatrace.dll - ok
22:40:44.0390 1652 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:40:44.0390 1652 C:\Windows\System32\trkwks.dll - ok
22:40:44.0390 1652 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
22:40:44.0390 1652 C:\Windows\SysWOW64\mswsock.dll - ok
22:40:44.0390 1652 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:40:44.0390 1652 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:40:44.0406 1652 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:40:44.0406 1652 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:40:44.0406 1652 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:40:44.0406 1652 C:\Windows\System32\wbem\fastprox.dll - ok
22:40:44.0406 1652 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
22:40:44.0406 1652 C:\Windows\SysWOW64\nlaapi.dll - ok
22:40:44.0406 1652 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
22:40:44.0406 1652 C:\Windows\System32\drivers\srv.sys - ok
22:40:44.0422 1652 [ 6797CEB7D07B09A0D79612657BCC6CCA ] C:\Windows\System32\spool\drivers\x64\3\HPZUIWN7.DLL
22:40:44.0422 1652 C:\Windows\System32\spool\drivers\x64\3\HPZUIWN7.DLL - ok
22:40:44.0422 1652 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
22:40:44.0422 1652 C:\Windows\System32\iphlpsvc.dll - ok
22:40:44.0422 1652 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
22:40:44.0422 1652 C:\Windows\System32\sqmapi.dll - ok
22:40:44.0422 1652 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:40:44.0422 1652 C:\Windows\System32\ntdsapi.dll - ok
22:40:44.0422 1652 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:40:44.0422 1652 C:\Windows\System32\wbem\wbemprox.dll - ok
22:40:44.0437 1652 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
22:40:44.0437 1652 C:\Windows\SysWOW64\NapiNSP.dll - ok
22:40:44.0437 1652 [ CFB3EEDF620E7F32464A3091BA76D5E8 ] C:\Program Files\AVAST Software\Avast\defs\12121601\exts.dll
22:40:44.0437 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\exts.dll - ok
22:40:44.0437 1652 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:40:44.0437 1652 C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:40:44.0437 1652 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
22:40:44.0437 1652 C:\Windows\SysWOW64\dnsapi.dll - ok
22:40:44.0437 1652 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
22:40:44.0437 1652 C:\Windows\SysWOW64\winrnr.dll - ok
22:40:44.0453 1652 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
22:40:44.0453 1652 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
22:40:44.0453 1652 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
22:40:44.0453 1652 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
22:40:44.0453 1652 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:40:44.0453 1652 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:40:44.0453 1652 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
22:40:44.0453 1652 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
22:40:44.0468 1652 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:40:44.0468 1652 C:\Windows\SysWOW64\rasadhlp.dll - ok
22:40:44.0468 1652 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
22:40:44.0468 1652 C:\Windows\SysWOW64\security.dll - ok
22:40:44.0468 1652 [ 26BA928D3FBA2A12589A8A9B1A47FB08 ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswAR.dll
22:40:44.0468 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswAR.dll - ok
22:40:44.0468 1652 [ 0D0FA4434A9434641AB0A6332AC5560A ] C:\Program Files\AVAST Software\Avast\defs\12121601\aswRawFS.dll
22:40:44.0468 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\aswRawFS.dll - ok
22:40:44.0468 1652 [ 8B4DBEEF5D88009AF0CFF29DE6729951 ] C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookDispatch.dll
22:40:44.0468 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookDispatch.dll - ok
22:40:44.0484 1652 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
22:40:44.0484 1652 C:\Windows\System32\ntprint.dll - ok
22:40:44.0484 1652 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:40:44.0484 1652 C:\Windows\SysWOW64\wship6.dll - ok
22:40:44.0484 1652 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
22:40:44.0484 1652 C:\Windows\System32\wdscore.dll - ok
22:40:44.0484 1652 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
22:40:44.0484 1652 C:\Windows\System32\srvsvc.dll - ok
22:40:44.0484 1652 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
22:40:44.0484 1652 C:\Windows\System32\browser.dll - ok
22:40:44.0500 1652 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
22:40:44.0500 1652 C:\Windows\System32\ipnathlp.dll - ok
22:40:44.0500 1652 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
22:40:44.0500 1652 C:\Windows\System32\mprapi.dll - ok
22:40:44.0500 1652 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
22:40:44.0500 1652 C:\Windows\System32\netshell.dll - ok
22:40:44.0500 1652 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:40:44.0500 1652 C:\Windows\System32\netmsg.dll - ok
22:40:44.0500 1652 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
22:40:44.0500 1652 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
22:40:44.0515 1652 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
22:40:44.0515 1652 C:\Windows\SysWOW64\comdlg32.dll - ok
22:40:44.0515 1652 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:40:44.0515 1652 C:\Windows\SysWOW64\powrprof.dll - ok
22:40:44.0515 1652 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
22:40:44.0515 1652 C:\Windows\AppPatch\AcGenral.dll - ok
22:40:44.0515 1652 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:40:44.0515 1652 C:\Windows\SysWOW64\msimg32.dll - ok
22:40:44.0531 1652 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:40:44.0531 1652 C:\Windows\SysWOW64\oledlg.dll - ok
22:40:44.0531 1652 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
22:40:44.0531 1652 C:\Windows\SysWOW64\msacm32.dll - ok
22:40:44.0531 1652 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:40:44.0531 1652 C:\Windows\SysWOW64\sfc.dll - ok
22:40:44.0531 1652 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:40:44.0531 1652 C:\Windows\SysWOW64\sfc_os.dll - ok
22:40:44.0531 1652 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:40:44.0531 1652 C:\Windows\SysWOW64\mpr.dll - ok
22:40:44.0531 1652 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
22:40:44.0546 1652 C:\Program Files\Windows Defender\MpRTP.dll - ok
22:40:44.0546 1652 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
22:40:44.0546 1652 C:\Windows\System32\tdh.dll - ok
22:40:44.0546 1652 [ D527EF4364D2D00443470940B177EAD4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpengine.dll
22:40:44.0546 1652 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpengine.dll - ok
22:40:44.0546 1652 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpasbase.vdm
22:40:44.0546 1652 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpasbase.vdm - ok
22:40:44.0546 1652 [ DA8CBCC158B2B2D538C2D75D05CB33D3 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpasdlta.vdm
22:40:44.0546 1652 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BBA06764-CF88-4792-A268-1CD9412C4D4E}\mpasdlta.vdm - ok
22:40:44.0562 1652 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:40:44.0562 1652 C:\Windows\System32\hnetcfg.dll - ok
22:40:44.0562 1652 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
22:40:44.0562 1652 C:\Program Files\Windows Defender\MsMpLics.dll - ok
22:40:44.0562 1652 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
22:40:44.0562 1652 C:\Windows\System32\wscapi.dll - ok
22:40:44.0562 1652 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
22:40:44.0562 1652 C:\Windows\System32\wscisvif.dll - ok
22:40:44.0562 1652 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
22:40:44.0562 1652 C:\Windows\System32\wscproxystub.dll - ok
22:40:44.0578 1652 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:40:44.0578 1652 C:\Windows\SysWOW64\bcrypt.dll - ok
22:40:44.0578 1652 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
22:40:44.0578 1652 C:\Windows\SysWOW64\ncrypt.dll - ok
22:40:44.0578 1652 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
22:40:44.0578 1652 C:\Windows\System32\clusapi.dll - ok
22:40:44.0578 1652 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
22:40:44.0578 1652 C:\Windows\System32\sscore.dll - ok
22:40:44.0578 1652 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:40:44.0578 1652 C:\Windows\System32\resutils.dll - ok
22:40:44.0593 1652 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
22:40:44.0593 1652 C:\Windows\System32\wbem\wbemcore.dll - ok
22:40:44.0593 1652 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:40:44.0593 1652 C:\Windows\System32\wbem\esscli.dll - ok
22:40:44.0593 1652 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:40:44.0593 1652 C:\Windows\System32\wbem\wbemsvc.dll - ok
22:40:44.0593 1652 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:40:44.0593 1652 C:\Windows\System32\wbem\wmiutils.dll - ok
22:40:44.0609 1652 [ CDA59C183B3DB8CF35380836ADD74AAD ] C:\Windows\System32\compstui.dll
22:40:44.0609 1652 C:\Windows\System32\compstui.dll - ok
22:40:44.0609 1652 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:40:44.0609 1652 C:\Windows\System32\wbem\repdrvfs.dll - ok
22:40:44.0609 1652 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
22:40:44.0609 1652 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
22:40:44.0609 1652 [ 78F62B741B80433065EEC2DFDC273A55 ] C:\Program Files (x86)\NTI\Acer Backup Manager\BookmarkDLL.dll
22:40:44.0609 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\BookmarkDLL.dll - ok
22:40:44.0609 1652 [ 4514F3F5D641F7F3BC7C655B07DC67B0 ] C:\Program Files (x86)\NTI\Acer Backup Manager\WinSetDLL.dll
22:40:44.0609 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\WinSetDLL.dll - ok
22:40:44.0624 1652 [ 66F1BF58843E814AA0ACF586CFD8E94B ] C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
22:40:44.0624 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll - ok
22:40:44.0624 1652 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
22:40:44.0624 1652 C:\Windows\SysWOW64\mapi32.dll - ok
22:40:44.0624 1652 [ 021B54CF2CCA4AD82735E7CFBDC26DF8 ] C:\Program Files (x86)\NTI\Acer Backup Manager\VssAgent.dll
22:40:44.0624 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\VssAgent.dll - ok
22:40:44.0624 1652 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\SysWOW64\vssapi.dll
22:40:44.0624 1652 C:\Windows\SysWOW64\vssapi.dll - ok
22:40:44.0624 1652 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
22:40:44.0624 1652 C:\Windows\SysWOW64\atl.dll - ok
22:40:44.0640 1652 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
22:40:44.0640 1652 C:\Windows\SysWOW64\vsstrace.dll - ok
22:40:44.0640 1652 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:40:44.0640 1652 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:40:44.0640 1652 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:40:44.0640 1652 C:\Windows\System32\ncobjapi.dll - ok
22:40:44.0640 1652 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:40:44.0640 1652 C:\Windows\System32\wbem\wbemess.dll - ok
22:40:44.0656 1652 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
22:40:44.0656 1652 C:\Windows\System32\appinfo.dll - ok
22:40:44.0656 1652 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:40:44.0656 1652 C:\Windows\System32\wdi.dll - ok
22:40:44.0656 1652 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
22:40:44.0656 1652 C:\Windows\System32\wpdbusenum.dll - ok
22:40:44.0656 1652 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:40:44.0656 1652 C:\Windows\System32\Apphlpdm.dll - ok
22:40:44.0656 1652 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
22:40:44.0656 1652 C:\Windows\System32\diagperf.dll - ok
22:40:44.0671 1652 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:40:44.0671 1652 C:\Windows\System32\perftrack.dll - ok
22:40:44.0671 1652 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
22:40:44.0671 1652 C:\Windows\System32\PortableDeviceApi.dll - ok
22:40:44.0671 1652 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:40:44.0671 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
22:40:44.0671 1652 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
22:40:44.0671 1652 C:\Windows\System32\mprmsg.dll - ok
22:40:44.0671 1652 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
22:40:44.0687 1652 C:\Windows\System32\ndiscapCfg.dll - ok
22:40:44.0687 1652 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
22:40:44.0687 1652 C:\Windows\System32\rascfg.dll - ok
22:40:44.0687 1652 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
22:40:44.0687 1652 C:\Windows\SysWOW64\shfolder.dll - ok
22:40:44.0687 1652 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
22:40:44.0687 1652 C:\Windows\SysWOW64\sxs.dll - ok
22:40:44.0687 1652 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:40:44.0687 1652 C:\Windows\System32\npmproxy.dll - ok
22:40:44.0702 1652 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:40:44.0702 1652 C:\Windows\System32\pnpts.dll - ok
22:40:44.0702 1652 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:40:44.0702 1652 C:\Windows\System32\radardt.dll - ok
22:40:44.0702 1652 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:40:44.0702 1652 C:\Windows\System32\FXSRESM.dll - ok
22:40:44.0702 1652 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
22:40:44.0702 1652 C:\Windows\System32\tcpipcfg.dll - ok
22:40:44.0702 1652 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:40:44.0702 1652 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:40:44.0718 1652 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:40:44.0718 1652 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:40:44.0718 1652 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
22:40:44.0718 1652 C:\Windows\System32\wdiasqmmodule.dll - ok
22:40:44.0718 1652 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:40:44.0718 1652 C:\Windows\System32\aelupsvc.dll - ok
22:40:44.0718 1652 [ 8CF4B0337B06CCC624C20EE4C934767E ] C:\Windows\System32\lpksetupproxyserv.dll
22:40:44.0718 1652 C:\Windows\System32\lpksetupproxyserv.dll - ok
22:40:44.0718 1652 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
22:40:44.0718 1652 C:\Windows\System32\runonce.exe - ok
22:40:44.0734 1652 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
22:40:44.0734 1652 C:\Windows\servicing\TrustedInstaller.exe - ok
22:40:44.0734 1652 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:40:44.0734 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
22:40:44.0734 1652 [ F4E1FE4312D350A6198DBF6E0EAE22A8 ] C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe
22:40:44.0734 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe - ok
22:40:44.0734 1652 [ D5D8D0D64F410B9F05E2BC00EC92EFC2 ] C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
22:40:44.0734 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe - ok
22:40:44.0749 1652 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
22:40:44.0749 1652 C:\Windows\System32\IPSECSVC.DLL - ok
22:40:44.0749 1652 [ 61B6FB932CF78CAB7A1EF9F118A1A38E ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe
22:40:44.0749 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DMREngine.exe - ok
22:40:44.0749 1652 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
22:40:44.0749 1652 C:\Windows\System32\nci.dll - ok
22:40:44.0749 1652 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
22:40:44.0749 1652 C:\Windows\System32\wlaninst.dll - ok
22:40:44.0749 1652 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
22:40:44.0749 1652 C:\Windows\System32\wwaninst.dll - ok
22:40:44.0765 1652 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:40:44.0765 1652 C:\Windows\System32\rundll32.exe - ok
22:40:44.0765 1652 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
22:40:44.0765 1652 C:\Windows\SysWOW64\runonce.exe - ok
22:40:44.0765 1652 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
22:40:44.0765 1652 C:\Windows\SysWOW64\propsys.dll - ok
22:40:44.0765 1652 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
22:40:44.0765 1652 C:\Windows\System32\actxprxy.dll - ok
22:40:44.0765 1652 [ 86D177F43030F61A8610259A2E8F07FE ] C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
22:40:44.0765 1652 C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL - ok
22:40:44.0780 1652 [ AD107A1DB95DA914933151A446CD1483 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
22:40:44.0780 1652 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
22:40:44.0780 1652 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
22:40:44.0780 1652 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
22:40:44.0780 1652 [ 1071BCBA5BC0FA83C6C612C3A9F24EC5 ] C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdt.dll
22:40:44.0780 1652 C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdt.dll - ok
22:40:44.0780 1652 [ F692AED7F27FCA5E34C32849EB458CB9 ] C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdtr.dll
22:40:44.0780 1652 C:\Program Files\NVIDIA Corporation\NvUpdate\NvUpdtr.dll - ok
22:40:44.0780 1652 [ FFC54FA19FD67DDE232CFC0A87B0B1A7 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
22:40:44.0780 1652 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
22:40:44.0796 1652 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
22:40:44.0796 1652 C:\Windows\SysWOW64\cmd.exe - ok
22:40:44.0796 1652 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
22:40:44.0796 1652 C:\Windows\System32\conhost.exe - ok
22:40:44.0796 1652 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:40:44.0796 1652 C:\Windows\System32\dimsjob.dll - ok
22:40:44.0796 1652 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:40:44.0796 1652 C:\Windows\System32\pautoenr.dll - ok
22:40:44.0796 1652 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:40:44.0796 1652 C:\Windows\SysWOW64\winbrand.dll - ok
22:40:44.0812 1652 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
22:40:44.0812 1652 C:\Windows\SysWOW64\ieframe.dll - ok
22:40:44.0812 1652 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
22:40:44.0812 1652 C:\Windows\System32\certcli.dll - ok
22:40:44.0812 1652 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:40:44.0812 1652 C:\Windows\System32\NapiNSP.dll - ok
22:40:44.0812 1652 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
22:40:44.0812 1652 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
22:40:44.0827 1652 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:40:44.0827 1652 C:\Windows\System32\pnrpnsp.dll - ok
22:40:44.0827 1652 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:40:44.0827 1652 C:\Windows\System32\winrnr.dll - ok
22:40:44.0827 1652 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
22:40:44.0827 1652 C:\Windows\System32\FwRemoteSvr.dll - ok
22:40:44.0827 1652 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:40:44.0827 1652 C:\Windows\SysWOW64\gpapi.dll - ok
22:40:44.0827 1652 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
22:40:44.0827 1652 C:\Windows\System32\CertEnroll.dll - ok
22:40:44.0843 1652 [ 6FCBEBA6FCA3133E6ED9BE35D7390D37 ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll
22:40:44.0843 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll - ok
22:40:44.0843 1652 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
22:40:44.0843 1652 C:\Windows\SysWOW64\shdocvw.dll - ok
22:40:44.0843 1652 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Resident\AppData\Local\Temp\72450581-27EA-4AF7-88D2-1D6C3E1376EF.exe
22:40:44.0843 1652 C:\Users\Resident\AppData\Local\Temp\72450581-27EA-4AF7-88D2-1D6C3E1376EF.exe - ok
22:40:44.0843 1652 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
22:40:44.0843 1652 C:\Windows\SysWOW64\p2pcollab.dll - ok
22:40:44.0843 1652 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
22:40:44.0843 1652 C:\Windows\SysWOW64\cryptnet.dll - ok
22:40:44.0858 1652 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
22:40:44.0858 1652 C:\Windows\SysWOW64\credssp.dll - ok
22:40:44.0858 1652 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:40:44.0858 1652 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:40:44.0858 1652 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
22:40:44.0858 1652 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
22:40:44.0858 1652 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:40:44.0858 1652 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:40:44.0858 1652 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:40:44.0858 1652 C:\Windows\SysWOW64\rasapi32.dll - ok
22:40:44.0874 1652 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:40:44.0874 1652 C:\Windows\SysWOW64\rasman.dll - ok
22:40:44.0874 1652 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
22:40:44.0874 1652 C:\Windows\SysWOW64\rtutils.dll - ok
22:40:44.0874 1652 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:40:44.0874 1652 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:40:44.0874 1652 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:40:44.0874 1652 C:\Windows\SysWOW64\EhStorShell.dll - ok
22:40:44.0890 1652 [ F14823F07336AA84D2F5C26834D851E9 ] C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll
22:40:44.0890 1652 C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll - ok
22:40:44.0890 1652 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
22:40:44.0890 1652 C:\Windows\SysWOW64\ntshrui.dll - ok
22:40:44.0890 1652 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:40:44.0890 1652 C:\Windows\SysWOW64\slc.dll - ok
22:40:44.0890 1652 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:40:44.0890 1652 C:\Windows\SysWOW64\imageres.dll - ok
22:40:44.0890 1652 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
22:40:44.0890 1652 C:\Windows\SysWOW64\msvcp60.dll - ok
22:40:44.0905 1652 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
22:40:44.0905 1652 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
22:40:44.0905 1652 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
22:40:44.0905 1652 C:\Windows\SysWOW64\devrtl.dll - ok
22:40:44.0905 1652 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
22:40:44.0905 1652 C:\Windows\System32\ie4uinit.exe - ok
22:40:44.0905 1652 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
22:40:44.0905 1652 C:\Windows\System32\iedkcs32.dll - ok
22:40:44.0905 1652 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
22:40:44.0905 1652 C:\Windows\System32\timedate.cpl - ok
22:40:44.0921 1652 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
22:40:44.0921 1652 C:\Windows\System32\shdocvw.dll - ok
22:40:44.0921 1652 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
22:40:44.0921 1652 C:\Windows\System32\msiltcfg.dll - ok
22:40:44.0921 1652 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:40:44.0921 1652 C:\Windows\System32\linkinfo.dll - ok
22:40:44.0921 1652 [ 661CEEDE98A2E0E5CDD7DE239EB38353 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
22:40:44.0921 1652 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
22:40:44.0921 1652 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
22:40:44.0921 1652 C:\Windows\System32\gameux.dll - ok
22:40:44.0936 1652 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
22:40:44.0936 1652 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
22:40:44.0936 1652 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
22:40:44.0936 1652 C:\Windows\System32\msftedit.dll - ok
22:40:44.0936 1652 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
22:40:44.0936 1652 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
22:40:44.0936 1652 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
22:40:44.0936 1652 C:\Windows\System32\msls31.dll - ok
22:40:44.0952 1652 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:40:44.0952 1652 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:40:44.0952 1652 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
22:40:44.0952 1652 C:\Windows\System32\thumbcache.dll - ok
22:40:44.0952 1652 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
22:40:44.0952 1652 C:\Windows\System32\DeviceCenter.dll - ok
22:40:44.0952 1652 [ BA9E8BF3E91C14DE99FDB1FA946D07AF ] C:\Windows\System32\igfxtray.exe
22:40:44.0952 1652 C:\Windows\System32\igfxtray.exe - ok
22:40:44.0952 1652 [ B20857C91A3E992A5AC93D8625C53CAE ] C:\Windows\System32\hkcmd.exe
22:40:44.0952 1652 C:\Windows\System32\hkcmd.exe - ok
22:40:44.0968 1652 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
22:40:44.0968 1652 C:\Windows\System32\spp.dll - ok
22:40:44.0968 1652 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
22:40:44.0968 1652 C:\Windows\System32\srclient.dll - ok
22:40:44.0968 1652 [ 533AAF43F472643E09C3360F5154D1CF ] C:\Windows\System32\hccutils.dll
22:40:44.0968 1652 C:\Windows\System32\hccutils.dll - ok
22:40:44.0968 1652 [ D61010E64E3D81977913AA59D94DCDA1 ] C:\Windows\System32\igfxsrvc.exe
22:40:44.0968 1652 C:\Windows\System32\igfxsrvc.exe - ok
22:40:44.0968 1652 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
22:40:44.0968 1652 C:\Windows\System32\stobject.dll - ok
22:40:44.0983 1652 [ B74D932ECDAA68E69D4AE57D66FFB2A9 ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetShow.dll
22:40:44.0983 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetShow.dll - ok
22:40:44.0983 1652 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
22:40:44.0983 1652 C:\Windows\SysWOW64\ddraw.dll - ok
22:40:44.0983 1652 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\98947433.sys
22:40:44.0983 1652 C:\Windows\System32\drivers\98947433.sys - ok
22:40:44.0983 1652 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
22:40:44.0983 1652 C:\Windows\SysWOW64\riched20.dll - ok
22:40:44.0983 1652 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:40:44.0983 1652 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:40:44.0999 1652 [ 29E120E36791B2E620CC398847C28E12 ] C:\Windows\System32\igfxpers.exe
22:40:44.0999 1652 C:\Windows\System32\igfxpers.exe - ok
22:40:44.0999 1652 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:40:44.0999 1652 C:\Windows\SysWOW64\duser.dll - ok
22:40:44.0999 1652 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:40:44.0999 1652 C:\Windows\SysWOW64\dui70.dll - ok
22:40:44.0999 1652 [ F45595F8553E606CF7D82FB47BC10CFA ] C:\Windows\System32\igfxsrvc.dll
22:40:44.0999 1652 C:\Windows\System32\igfxsrvc.dll - ok
22:40:44.0999 1652 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
22:40:44.0999 1652 C:\Windows\System32\sxsstore.dll - ok
22:40:45.0014 1652 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
22:40:45.0014 1652 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
22:40:45.0014 1652 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:40:45.0014 1652 C:\Windows\System32\SensApi.dll - ok
22:40:45.0014 1652 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
22:40:45.0014 1652 C:\Windows\servicing\CbsApi.dll - ok
22:40:45.0014 1652 [ DB70FE36AC8F594E9E69479C076BADB8 ] C:\Windows\System32\HelpPaneProxy.dll
22:40:45.0014 1652 C:\Windows\System32\HelpPaneProxy.dll - ok
22:40:45.0030 1652 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
22:40:45.0030 1652 C:\Windows\SysWOW64\dciman32.dll - ok
22:40:45.0030 1652 [ D8DB57C88D480E4C8AE037C2FE15E93B ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\Common\CLRCEngine3.dll
22:40:45.0030 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\Common\CLRCEngine3.dll - ok
22:40:45.0030 1652 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
22:40:45.0030 1652 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
22:40:45.0030 1652 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
22:40:45.0030 1652 C:\Windows\SysWOW64\d3d9.dll - ok
22:40:45.0030 1652 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:40:45.0030 1652 C:\Windows\SysWOW64\d3d8thk.dll - ok
22:40:45.0046 1652 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
22:40:45.0046 1652 C:\Windows\SysWOW64\olepro32.dll - ok
22:40:45.0046 1652 [ 681929C57401E17844C1D2E8D88A3EF2 ] C:\Program Files (x86)\Acer\clear.fi Client\ExtractDeviceIcon.exe
22:40:45.0046 1652 C:\Program Files (x86)\Acer\clear.fi Client\ExtractDeviceIcon.exe - ok
22:40:45.0046 1652 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
22:40:45.0046 1652 C:\Windows\System32\mscoree.dll - ok
22:40:45.0046 1652 [ A54149E161DD9E5307D97DE7414BC6FA ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLHttpDownload.dll
22:40:45.0046 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLHttpDownload.dll - ok
22:40:45.0061 1652 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
22:40:45.0061 1652 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
22:40:45.0061 1652 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
22:40:45.0061 1652 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
22:40:45.0061 1652 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
22:40:45.0061 1652 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
22:40:45.0061 1652 [ 1A044999D53B26E55B4402EA7FDCD889 ] C:\Windows\System32\igfxdev.dll
22:40:45.0061 1652 C:\Windows\System32\igfxdev.dll - ok
22:40:45.0061 1652 [ 105CFE016CCB20175BEACEC146F175AB ] C:\Windows\System32\IccLibDll_x64.dll
22:40:45.0061 1652 C:\Windows\System32\IccLibDll_x64.dll - ok
22:40:45.0077 1652 [ 4ADD13FCF18EBC762D24A4DB12B1D547 ] C:\Windows\System32\igfxrell.lrc
22:40:45.0077 1652 C:\Windows\System32\igfxrell.lrc - ok
22:40:45.0077 1652 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
22:40:45.0077 1652 C:\Windows\System32\ntshrui.dll - ok
22:40:45.0077 1652 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
22:40:45.0077 1652 C:\Windows\System32\spfileq.dll - ok
22:40:45.0077 1652 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
22:40:45.0077 1652 C:\Windows\System32\batmeter.dll - ok
22:40:45.0077 1652 [ EE82B533F5E1E597FDD385A4814DC047 ] C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DeviceStage.exe
22:40:45.0077 1652 C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\DeviceStage.exe - ok
22:40:45.0092 1652 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
22:40:45.0092 1652 C:\Windows\System32\SyncCenter.dll - ok
22:40:45.0092 1652 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
22:40:45.0092 1652 C:\Windows\System32\networkexplorer.dll - ok
22:40:45.0092 1652 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
22:40:45.0092 1652 C:\Windows\System32\UIAnimation.dll - ok
22:40:45.0092 1652 [ 8886E0697B0A93C521F99099EF643450 ] C:\Windows\System32\wscript.exe
22:40:45.0092 1652 C:\Windows\System32\wscript.exe - ok
22:40:45.0092 1652 [ 43A4C6CE22F59B07600ED0D87010AAD2 ] C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll
22:40:45.0092 1652 C:\Program Files (x86)\DAEMON Tools Pro\DTShl64.dll - ok
22:40:45.0108 1652 [ 6E6602DE23AB3776007702FC9540E8E9 ] C:\Windows\System32\vbscript.dll
22:40:45.0108 1652 C:\Windows\System32\vbscript.dll - ok
22:40:45.0108 1652 [ EF4248D28C2940AE6D46470AC2479A4F ] C:\Windows\System32\msisip.dll
22:40:45.0108 1652 C:\Windows\System32\msisip.dll - ok
22:40:45.0108 1652 [ 67CE7A83CF4AA78A05EA26D4443CE5F3 ] C:\Windows\System32\scrobj.dll
22:40:45.0108 1652 C:\Windows\System32\scrobj.dll - ok
22:40:45.0108 1652 [ 6E74D0AE00231D87CD213CD7BDC27E37 ] C:\Windows\System32\wshext.dll
22:40:45.0108 1652 C:\Windows\System32\wshext.dll - ok
22:40:45.0108 1652 [ 754A0C324ECA95AE4F708D01EF27060E ] C:\Windows\System32\wbem\wbemdisp.dll
22:40:45.0108 1652 C:\Windows\System32\wbem\wbemdisp.dll - ok
22:40:45.0124 1652 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
22:40:45.0124 1652 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
22:40:45.0124 1652 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
22:40:45.0124 1652 C:\Windows\System32\prnfldr.dll - ok
22:40:45.0124 1652 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
22:40:45.0124 1652 C:\Windows\System32\DXP.dll - ok
22:40:45.0124 1652 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:40:45.0124 1652 C:\Windows\System32\Syncreg.dll - ok
22:40:45.0124 1652 [ 3B3277631453C93FDB1879D6BF0B260B ] C:\Program Files\Elantech\ETDCtrl.exe
22:40:45.0124 1652 C:\Program Files\Elantech\ETDCtrl.exe - ok
22:40:45.0139 1652 [ 4909B8D34D8C0AC79BCDDDEA3759FE8E ] C:\Program Files\Elantech\ETDFavorite.dll
22:40:45.0139 1652 C:\Program Files\Elantech\ETDFavorite.dll - ok
22:40:45.0139 1652 [ 9F0F881AC75623A7669310C39DDDC3D5 ] C:\Program Files\Elantech\ETDApix.dll
22:40:45.0139 1652 C:\Program Files\Elantech\ETDApix.dll - ok
22:40:45.0139 1652 [ 67368E8B1AA0A5E3E8D98096BEF41996 ] C:\Program Files\Elantech\ETDCmds.dll
22:40:45.0139 1652 C:\Program Files\Elantech\ETDCmds.dll - ok
22:40:45.0139 1652 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:40:45.0139 1652 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:40:45.0155 1652 [ A3287F8EB6182FB060C818524C7D6A63 ] C:\Windows\System32\dxtrans.dll
22:40:45.0155 1652 C:\Windows\System32\dxtrans.dll - ok
22:40:45.0155 1652 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
22:40:45.0155 1652 C:\Windows\System32\AudioSes.dll - ok
22:40:45.0155 1652 [ FE5D33917C5265EC9322299733D63A12 ] C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
22:40:45.0155 1652 C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe - ok
22:40:45.0155 1652 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:40:45.0155 1652 C:\Windows\ehome\ehSSO.dll - ok
22:40:45.0155 1652 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
22:40:45.0155 1652 C:\Windows\System32\ActionCenter.dll - ok
22:40:45.0170 1652 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
22:40:45.0170 1652 C:\Windows\System32\WPDShServiceObj.dll - ok
22:40:45.0170 1652 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:40:45.0170 1652 C:\Windows\System32\PortableDeviceTypes.dll - ok
22:40:45.0170 1652 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:40:45.0170 1652 C:\Windows\System32\AltTab.dll - ok
22:40:45.0170 1652 [ 4938A4350327E1A5DEB0CD134AC1AAA3 ] C:\Windows\System32\ddrawex.dll
22:40:45.0170 1652 C:\Windows\System32\ddrawex.dll - ok
22:40:45.0170 1652 [ FD2031A7D5BBB95DC8A763D20B352A46 ] C:\Windows\System32\imgutil.dll
22:40:45.0170 1652 C:\Windows\System32\imgutil.dll - ok
22:40:45.0186 1652 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
22:40:45.0186 1652 C:\Windows\System32\ddraw.dll - ok
22:40:45.0186 1652 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
22:40:45.0186 1652 C:\Windows\System32\pnidui.dll - ok
22:40:45.0186 1652 [ A4C1851F2A1475D92568EF8CA305E336 ] C:\Program Files\Elantech\ETDCtrlHelper.exe
22:40:45.0186 1652 C:\Program Files\Elantech\ETDCtrlHelper.exe - ok
22:40:45.0186 1652 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
22:40:45.0186 1652 C:\Windows\System32\consent.exe - ok
22:40:45.0186 1652 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
22:40:45.0186 1652 C:\Windows\System32\QUTIL.DLL - ok
22:40:45.0202 1652 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:40:45.0202 1652 C:\Windows\System32\FXSST.dll - ok
22:40:45.0202 1652 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
22:40:45.0202 1652 C:\Windows\System32\dciman32.dll - ok
22:40:45.0202 1652 [ 2F31597DA72FE328E1F7FEBF8548759C ] C:\Windows\System32\pngfilt.dll
22:40:45.0202 1652 C:\Windows\System32\pngfilt.dll - ok
22:40:45.0202 1652 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
22:40:45.0202 1652 C:\Windows\System32\FXSAPI.dll - ok
22:40:45.0202 1652 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
22:40:45.0202 1652 C:\Windows\System32\srchadmin.dll - ok
22:40:45.0217 1652 [ B88E5340A5A50B53310B00DA455FB4FA ] C:\Windows\System32\wbem\stdprov.dll
22:40:45.0217 1652 C:\Windows\System32\wbem\stdprov.dll - ok
22:40:45.0217 1652 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
22:40:45.0217 1652 C:\Windows\System32\SearchIndexer.exe - ok
22:40:45.0217 1652 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
22:40:45.0217 1652 C:\Windows\System32\FXSSVC.exe - ok
22:40:45.0217 1652 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
22:40:45.0217 1652 C:\Windows\System32\bthprops.cpl - ok
22:40:45.0233 1652 [ 01AEA2F16FE0C522DDFD7FAFFC959C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll
22:40:45.0233 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll - ok
22:40:45.0233 1652 [ 5DADA908E14051D65DB1991CB0B1F58D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:40:45.0233 1652 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
22:40:45.0233 1652 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
22:40:45.0233 1652 C:\Windows\System32\ieframe.dll - ok
22:40:45.0233 1652 [ E813DCB38C1084FD92A58B2C40740449 ] C:\Windows\System32\igfxress.dll
22:40:45.0233 1652 C:\Windows\System32\igfxress.dll - ok
22:40:45.0233 1652 [ 9123EAB21EC5C828E881FCF8B11754C7 ] C:\Program Files (x86)\DAEMON Tools Pro\DTCommonRes.dll
22:40:45.0233 1652 C:\Program Files (x86)\DAEMON Tools Pro\DTCommonRes.dll - ok
22:40:45.0248 1652 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
22:40:45.0248 1652 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
22:40:45.0248 1652 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
22:40:45.0248 1652 C:\Windows\System32\tquery.dll - ok
22:40:45.0248 1652 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
22:40:45.0248 1652 C:\Windows\System32\dsound.dll - ok
22:40:45.0248 1652 [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
22:40:45.0248 1652 C:\Windows\System32\opengl32.dll - ok
22:40:45.0248 1652 [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
22:40:45.0248 1652 C:\Windows\System32\glu32.dll - ok
22:40:45.0264 1652 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
22:40:45.0264 1652 C:\Windows\System32\mssrch.dll - ok
22:40:45.0264 1652 [ D21B261BCE25D9BE45E3A596D2A1C74A ] C:\Program Files (x86)\DAEMON Tools Pro\Engine.dll
22:40:45.0264 1652 C:\Program Files (x86)\DAEMON Tools Pro\Engine.dll - ok
22:40:45.0264 1652 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
22:40:45.0264 1652 C:\Windows\System32\RtkCfg64.dll - ok
22:40:45.0264 1652 [ 6D68FEE7F61C6A871224031B7FE623B7 ] C:\Windows\System32\RtkAPO64.dll
22:40:45.0264 1652 C:\Windows\System32\RtkAPO64.dll - ok
22:40:45.0264 1652 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
22:40:45.0264 1652 C:\Windows\System32\AudioEng.dll - ok
22:40:45.0280 1652 [ 8B211FFCCC2C08DDC0FD023E70A13DD8 ] C:\Windows\System32\R4EEA64A.dll
22:40:45.0280 1652 C:\Windows\System32\R4EEA64A.dll - ok
22:40:45.0280 1652 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:40:45.0280 1652 C:\Windows\System32\msidle.dll - ok
22:40:45.0280 1652 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:40:45.0280 1652 C:\Windows\System32\mssprxy.dll - ok
22:40:45.0280 1652 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\SysWOW64\msxml3.dll
22:40:45.0280 1652 C:\Windows\SysWOW64\msxml3.dll - ok
22:40:45.0280 1652 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:40:45.0280 1652 C:\Windows\System32\rasdlg.dll - ok
22:40:45.0295 1652 [ 4DE1EBB2314E2F10AC9EC83138193F8B ] C:\Program Files (x86)\DAEMON Tools Pro\imgengine.dll
22:40:45.0295 1652 C:\Program Files (x86)\DAEMON Tools Pro\imgengine.dll - ok
22:40:45.0295 1652 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
22:40:45.0295 1652 C:\Windows\System32\dot3api.dll - ok
22:40:45.0295 1652 [ E897F9B62E611D59FDFAB82FC829B93A ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:40:45.0295 1652 C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - ok
22:40:45.0295 1652 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:40:45.0295 1652 C:\Windows\System32\wlanhlp.dll - ok
22:40:45.0311 1652 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:40:45.0311 1652 C:\Windows\System32\wlanapi.dll - ok
22:40:45.0311 1652 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
22:40:45.0311 1652 C:\Windows\System32\msxml3.dll - ok
22:40:45.0311 1652 [ F0474296AC4E0E6BDE733C1B8513E41A ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
22:40:45.0311 1652 C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe - ok
22:40:45.0311 1652 [ 08F41D439573071E0D9559A87B3B4A63 ] C:\Program Files\Acer\Acer ePower Management\BrightnessControl.dll
22:40:45.0311 1652 C:\Program Files\Acer\Acer ePower Management\BrightnessControl.dll - ok
22:40:45.0311 1652 [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
22:40:45.0311 1652 C:\Windows\System32\dxva2.dll - ok
22:40:45.0326 1652 [ 41905052445D8481457E824C27DB14A2 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
22:40:45.0326 1652 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
22:40:45.0326 1652 [ FA33A21EE03B324DD4D2D9D75710CAF6 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
22:40:45.0326 1652 C:\Program Files\Microsoft Office\Office14\BCSSync.exe - ok
22:40:45.0326 1652 [ C73AD671B6516DBBA2721E1A1395C116 ] C:\Program Files\Acer\Acer ePower Management\CommonControl.dll
22:40:45.0326 1652 C:\Program Files\Acer\Acer ePower Management\CommonControl.dll - ok
22:40:45.0326 1652 [ 5744FFF8E72D105C138DAE9E17BB29FE ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
22:40:45.0326 1652 C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
22:40:45.0326 1652 [ B22CB67919EBAD88B0E8BB9CDA446010 ] C:\Windows\System32\StikyNot.exe
22:40:45.0326 1652 C:\Windows\System32\StikyNot.exe - ok
22:40:45.0342 1652 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
22:40:45.0342 1652 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
22:40:45.0342 1652 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:40:45.0342 1652 C:\Windows\System32\WWanAPI.dll - ok
22:40:45.0342 1652 [ AFAFD74780A0BB4EBE76CDE10C9CCE43 ] C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
22:40:45.0342 1652 C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll - ok
22:40:45.0342 1652 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:40:45.0342 1652 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
22:40:45.0358 1652 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:40:45.0358 1652 C:\Windows\System32\wwapi.dll - ok
22:40:45.0358 1652 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
22:40:45.0358 1652 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
22:40:45.0358 1652 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
22:40:45.0358 1652 C:\Windows\System32\QAGENT.DLL - ok
22:40:45.0358 1652 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
22:40:45.0358 1652 C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
22:40:45.0358 1652 [ 8BE887F1743FBB39ED2C9CA2937742D6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll
22:40:45.0358 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll - ok
22:40:45.0373 1652 [ 0A69272204F37AC304B80FE5BDFB223D ] C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe
22:40:45.0373 1652 C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe - ok
22:40:45.0373 1652 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
22:40:45.0373 1652 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
22:40:45.0373 1652 [ C2EFE31691B0220BA2D366F6ECD9EEBC ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
22:40:45.0373 1652 C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
22:40:45.0373 1652 [ 0D360F06B168A6F37ACA9D9F958245DA ] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
22:40:45.0373 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe - ok
22:40:45.0373 1652 [ 4D8CAE21D3617DBC539F0A7ACEB66FAD ] C:\Program Files (x86)\Mozilla Firefox\nspr4.dll
22:40:45.0389 1652 C:\Program Files (x86)\Mozilla Firefox\nspr4.dll - ok
22:40:45.0389 1652 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
22:40:45.0389 1652 C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
22:40:45.0389 1652 [ A9117F57D940498C6230B4C49D2C7C77 ] C:\Windows\SysWOW64\OdiAPI.dll
22:40:45.0389 1652 C:\Windows\SysWOW64\OdiAPI.dll - ok
22:40:45.0389 1652 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
22:40:45.0389 1652 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
22:40:45.0389 1652 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
22:40:45.0389 1652 C:\Windows\SysWOW64\mfc42.dll - ok
22:40:45.0404 1652 [ 2D64A5315260AAD1D6BEEE65D2681DB3 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
22:40:45.0404 1652 C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
22:40:45.0404 1652 [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
22:40:45.0404 1652 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
22:40:45.0404 1652 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:40:45.0404 1652 C:\Windows\System32\wbem\NCProv.dll - ok
22:40:45.0404 1652 [ D79D19EC66106119DCD45D042C6B5170 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll
22:40:45.0404 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll - ok
22:40:45.0404 1652 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
22:40:45.0404 1652 C:\Windows\System32\wbem\cimwin32.dll - ok
22:40:45.0420 1652 [ 6F255F96534FCF5FF4B611B52C1AB813 ] C:\Program Files (x86)\Mozilla Firefox\plc4.dll
22:40:45.0420 1652 C:\Program Files (x86)\Mozilla Firefox\plc4.dll - ok
22:40:45.0420 1652 [ 9ABC4E3B00CFA3A47D5569F5B49FE42F ] C:\Program Files (x86)\Launch Manager\LManager.exe
22:40:45.0420 1652 C:\Program Files (x86)\Launch Manager\LManager.exe - ok
22:40:45.0420 1652 [ B54921381A950C8215FB363B485C432B ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
22:40:45.0420 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok
22:40:45.0420 1652 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
22:40:45.0420 1652 C:\Windows\SysWOW64\odbc32.dll - ok
22:40:45.0436 1652 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
22:40:45.0436 1652 C:\Windows\System32\wmdrmdev.dll - ok
22:40:45.0436 1652 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
22:40:45.0436 1652 C:\Windows\SysWOW64\odbcint.dll - ok
22:40:45.0436 1652 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
22:40:45.0436 1652 C:\Windows\System32\framedynos.dll - ok
22:40:45.0436 1652 [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
22:40:45.0436 1652 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
22:40:45.0436 1652 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
22:40:45.0436 1652 C:\Windows\System32\drmv2clt.dll - ok
22:40:45.0451 1652 [ 6B85D6ADEF244F9077BD7874610574A9 ] C:\Program Files (x86)\Mozilla Firefox\plds4.dll
22:40:45.0451 1652 C:\Program Files (x86)\Mozilla Firefox\plds4.dll - ok
22:40:45.0451 1652 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
22:40:45.0451 1652 C:\Windows\SysWOW64\msiltcfg.dll - ok
22:40:45.0451 1652 [ 15A9691C1F00631BC5475CEEF9A6EA62 ] C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll
22:40:45.0451 1652 C:\Program Files (x86)\Mozilla Firefox\nssutil3.dll - ok
22:40:45.0451 1652 [ C2FF17734176CD15221C10044EF0BA1A ] C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
22:40:45.0451 1652 C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - ok
22:40:45.0451 1652 [ 567088543742DE6F2123CE79869E3E97 ] C:\Program Files (x86)\Olympus\DeviceDetector\DevDtctResource.dll
22:40:45.0451 1652 C:\Program Files (x86)\Olympus\DeviceDetector\DevDtctResource.dll - ok
22:40:45.0467 1652 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
22:40:45.0467 1652 C:\Windows\SysWOW64\wlanapi.dll - ok
22:40:45.0467 1652 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
22:40:45.0467 1652 C:\Windows\SysWOW64\wlanutil.dll - ok
22:40:45.0467 1652 [ A07F12FA297F3F074D496B333C259AFA ] C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL
22:40:45.0467 1652 C:\Program Files (x86)\Launch Manager\COMFNUTL.DLL - ok
22:40:45.0467 1652 [ 0206166F245BE09DC9C1550AFB2C0B8D ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
22:40:45.0467 1652 C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
22:40:45.0467 1652 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
22:40:45.0467 1652 C:\Windows\System32\wmp.dll - ok
22:40:45.0482 1652 [ 4E2BFC88C6E482EA9483E6FBAC3EB52E ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
22:40:45.0482 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll - ok
22:40:45.0482 1652 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
22:40:45.0482 1652 C:\Windows\SysWOW64\mscms.dll - ok
22:40:45.0482 1652 [ 9D51EA92A612B37E76E5E4621650C50A ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
22:40:45.0482 1652 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe - ok
22:40:45.0482 1652 [ 446E9961379B64D9D2604BFDDADD8999 ] C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
22:40:45.0482 1652 C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE - ok
22:40:45.0498 1652 [ 3379C1C874F54B7EE480779222A6EA24 ] C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL
22:40:45.0498 1652 C:\Program Files\Microsoft Office\Office14\1033\ONINTL.DLL - ok
22:40:45.0498 1652 [ 9F135327116E63D522BFEF39F37CB2E6 ] C:\Program Files (x86)\Mozilla Firefox\smime3.dll
22:40:45.0498 1652 C:\Program Files (x86)\Mozilla Firefox\smime3.dll - ok
22:40:45.0498 1652 [ AD1ABD5713FCC3FE0BA32A004EF71040 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
22:40:45.0498 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc - ok
22:40:45.0498 1652 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
22:40:45.0498 1652 C:\Windows\System32\mfplat.dll - ok
22:40:45.0498 1652 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
22:40:45.0498 1652 C:\Windows\SysWOW64\sti.dll - ok
22:40:45.0514 1652 [ BF0A9D0AA8706C5E694A63354DC7FDB2 ] C:\Program Files (x86)\NTI\Acer Backup Manager\LUInterface.dll
22:40:45.0514 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\LUInterface.dll - ok
22:40:45.0514 1652 [ 757B525F092CDB097B6727C6CAE2DDC6 ] C:\Windows\System32\igfxext.exe
22:40:45.0514 1652 C:\Windows\System32\igfxext.exe - ok
22:40:45.0514 1652 [ BFFE6B72AD586B066472C8A9F99CC08E ] C:\Windows\SysWOW64\OdiOlDVR.dll
22:40:45.0514 1652 C:\Windows\SysWOW64\OdiOlDVR.dll - ok
22:40:45.0514 1652 [ 1F36981C4DEEAA88858317C1642CE160 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
22:40:45.0514 1652 C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll - ok
22:40:45.0514 1652 [ 632A6D75FEEABC846EE9AEC33345EF34 ] C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL
22:40:45.0514 1652 C:\Program Files (x86)\Launch Manager\CDROMUTL.DLL - ok
22:40:45.0529 1652 [ F5720ED4EEA3D62A3C9AF0950F2B7D23 ] C:\Program Files (x86)\Mozilla Firefox\ssl3.dll
22:40:45.0529 1652 C:\Program Files (x86)\Mozilla Firefox\ssl3.dll - ok
22:40:45.0529 1652 [ E6CC0FA3C1040C791EB3F4BA6C789411 ] C:\Dolby PCEE4\pcee4.exe
22:40:45.0529 1652 C:\Dolby PCEE4\pcee4.exe - ok
22:40:45.0529 1652 [ 2FD8D0F6EFB93087BA84C48748BF6826 ] C:\Program Files (x86)\NTI\Acer Backup Manager\MUI\0408\Lang.dll
22:40:45.0529 1652 C:\Program Files (x86)\NTI\Acer Backup Manager\MUI\0408\Lang.dll - ok
22:40:45.0529 1652 [ 8B923389C2748547C10E95F0AFCD236D ] C:\Windows\System32\igfxexps.dll
22:40:45.0529 1652 C:\Windows\System32\igfxexps.dll - ok
22:40:45.0545 1652 [ 69259DD752862F5665413AFCFB4C0B0E ] C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL
22:40:45.0545 1652 C:\Program Files (x86)\Launch Manager\MIXERUTL.DLL - ok
22:40:45.0545 1652 [ 3D2706E87D3E4433DB929B86207CA928 ] C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll
22:40:45.0545 1652 C:\Program Files (x86)\Mozilla Firefox\mozsqlite3.dll - ok
22:40:45.0545 1652 [ A53F59BC46766CE79E407AB6F451100D ] C:\Program Files (x86)\Launch Manager\WND2FILE.DLL
22:40:45.0545 1652 C:\Program Files (x86)\Launch Manager\WND2FILE.DLL - ok
22:40:45.0545 1652 [ 52652560BCE03F232CE6AF381D82CE5F ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
22:40:45.0545 1652 C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
22:40:45.0545 1652 [ C23C087CEBABB8B5CD6EB8DBA08EB7F7 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
22:40:45.0545 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll - ok
22:40:45.0560 1652 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
22:40:45.0560 1652 C:\Windows\System32\blackbox.dll - ok
22:40:45.0560 1652 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
22:40:45.0560 1652 C:\Windows\System32\wbem\unsecapp.exe - ok
22:40:45.0560 1652 [ D35187E38B0BD6E116C2CE582CAC4273 ] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
22:40:45.0560 1652 C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe - ok
22:40:45.0560 1652 [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
22:40:45.0560 1652 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
22:40:45.0560 1652 [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
22:40:45.0560 1652 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
22:40:45.0576 1652 [ 71FC112959B07D686E71541BD9D4F237 ] C:\Program Files (x86)\Launch Manager\PowerUtl.dll
22:40:45.0576 1652 C:\Program Files (x86)\Launch Manager\PowerUtl.dll - ok
22:40:45.0576 1652 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
22:40:45.0576 1652 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
22:40:45.0576 1652 [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
22:40:45.0576 1652 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
22:40:45.0576 1652 [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
22:40:45.0576 1652 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
22:40:45.0592 1652 [ 3B7C614DA4A6B35FF40C139D70569EAA ] C:\Program Files\AVAST Software\Avast\1032\uiLangRes.dll
22:40:45.0592 1652 C:\Program Files\AVAST Software\Avast\1032\uiLangRes.dll - ok
22:40:45.0592 1652 [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
22:40:45.0592 1652 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
22:40:45.0592 1652 [ 20D30D8717E9DFF90224B5AB37410D9D ] C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL
22:40:45.0592 1652 C:\Program Files (x86)\Launch Manager\OSDUTL2.DLL - ok
22:40:45.0592 1652 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
22:40:45.0592 1652 C:\Windows\System32\riched20.dll - ok
22:40:45.0592 1652 [ FD5A0A28AAEA0421039242A9D592212B ] C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL
22:40:45.0592 1652 C:\Program Files (x86)\Launch Manager\SZUPFUTL.DLL - ok
22:40:45.0607 1652 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
22:40:45.0607 1652 C:\Windows\SysWOW64\hid.dll - ok
22:40:45.0607 1652 [ 35AC4B63CBB9FB6B4472913E9948B517 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:40:45.0607 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
22:40:45.0607 1652 [ A7ECC154CAE1967D0C68BFEA4ADDACC4 ] C:\Program Files (x86)\EgisTec MyWinLocker\MWLUtility.dll
22:40:45.0607 1652 C:\Program Files (x86)\EgisTec MyWinLocker\MWLUtility.dll - ok
22:40:45.0607 1652 [ A38B82A306CDDA0BB141225F92FC9F85 ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
22:40:45.0607 1652 C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
22:40:45.0607 1652 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
22:40:45.0607 1652 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
22:40:45.0623 1652 [ B510912AABB9DFF2713DC7E64CA2C476 ] C:\Windows\SysWOW64\VNUSB.dll
22:40:45.0623 1652 C:\Windows\SysWOW64\VNUSB.dll - ok
22:40:45.0623 1652 [ 9847BD963549569627DA0AB5AD4362B3 ] C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll
22:40:45.0623 1652 C:\Program Files (x86)\Launch Manager\RadioWndUtl.dll - ok
22:40:45.0623 1652 [ 6ECAB4B8456B2EEDFA298843691A04B3 ] C:\Windows\SysWOW64\STRDEVAPI.dll
22:40:45.0623 1652 C:\Windows\SysWOW64\STRDEVAPI.dll - ok
22:40:45.0623 1652 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
22:40:45.0623 1652 C:\Windows\System32\upnp.dll - ok
22:40:45.0638 1652 [ A7D638F45317CB04FC6D718714050F50 ] C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
22:40:45.0638 1652 C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe - ok
22:40:45.0638 1652 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
22:40:45.0638 1652 C:\Windows\System32\ssdpsrv.dll - ok
22:40:45.0638 1652 [ 08923EFF5D1138C61E1487B07689CFE9 ] C:\Program Files (x86)\EgisTec MyWinLocker\x64\CryptoAPI.dll
22:40:45.0638 1652 C:\Program Files (x86)\EgisTec MyWinLocker\x64\CryptoAPI.dll - ok
22:40:45.0638 1652 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
22:40:45.0638 1652 C:\Windows\System32\wbem\wmiprov.dll - ok
22:40:45.0638 1652 [ 8C22C6088057A00EAE7D963600F26EEB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
22:40:45.0638 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
22:40:45.0654 1652 [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
22:40:45.0654 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
22:40:45.0654 1652 [ 01D461C0CC749AC06E6B2C75627EB384 ] C:\Program Files (x86)\Launch Manager\aipflib.dll
22:40:45.0654 1652 C:\Program Files (x86)\Launch Manager\aipflib.dll - ok
22:40:45.0654 1652 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files (x86)\QuickTime\QTTask.exe
22:40:45.0654 1652 C:\Program Files (x86)\QuickTime\QTTask.exe - ok
22:40:45.0654 1652 [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
22:40:45.0654 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
22:40:45.0670 1652 [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
22:40:45.0670 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
22:40:45.0670 1652 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
22:40:45.0670 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
22:40:45.0670 1652 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
22:40:45.0670 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
22:40:45.0670 1652 [ EADFC95980BC24DF3C7EE5B2CD38F043 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll
22:40:45.0670 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll - ok
22:40:45.0670 1652 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
22:40:45.0670 1652 C:\Windows\System32\SearchProtocolHost.exe - ok
22:40:45.0685 1652 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
22:40:45.0685 1652 C:\Windows\System32\webcheck.dll - ok
22:40:45.0685 1652 [ 4C44A99BB7584D6B70507987BE786259 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
22:40:45.0685 1652 C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
22:40:45.0685 1652 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:40:45.0685 1652 C:\Windows\System32\mlang.dll - ok
22:40:45.0685 1652 [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
22:40:45.0685 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
22:40:45.0701 1652 [ 4D774B94671141D491CFCB4CA3650EBF ] C:\Program Files (x86)\Mozilla Firefox\xpcom.dll
22:40:45.0701 1652 C:\Program Files (x86)\Mozilla Firefox\xpcom.dll - ok
22:40:45.0701 1652 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
22:40:45.0701 1652 C:\Windows\System32\msshooks.dll - ok
22:40:45.0701 1652 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
22:40:45.0701 1652 C:\Windows\SysWOW64\DWrite.dll - ok
22:40:45.0701 1652 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
22:40:45.0701 1652 C:\Windows\System32\imapi2.dll - ok
22:40:45.0701 1652 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
22:40:45.0701 1652 C:\Windows\System32\SearchFilterHost.exe - ok
22:40:45.0716 1652 [ 72860972F8196EBB3C896F53D2B95470 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
22:40:45.0716 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe - ok
22:40:45.0716 1652 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
22:40:45.0716 1652 C:\Windows\System32\hgcpl.dll - ok
22:40:45.0716 1652 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
22:40:45.0716 1652 C:\Windows\System32\sti.dll - ok
22:40:45.0716 1652 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
22:40:45.0716 1652 C:\Windows\System32\FntCache.dll - ok
22:40:45.0716 1652 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
22:40:45.0716 1652 C:\Windows\System32\fdPHost.dll - ok
22:40:45.0732 1652 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
22:40:45.0732 1652 C:\Windows\SysWOW64\wiatrace.dll - ok
22:40:45.0732 1652 [ A1DB45E9A459220349E1A2854B7CE7FB ] C:\Program Files (x86)\EgisTec MyWinLocker\CryptoAPI.dll
22:40:45.0732 1652 C:\Program Files (x86)\EgisTec MyWinLocker\CryptoAPI.dll - ok
22:40:45.0732 1652 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
22:40:45.0732 1652 C:\Windows\System32\fdWSD.dll - ok
22:40:45.0732 1652 [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
22:40:45.0732 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
22:40:45.0732 1652 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
22:40:45.0732 1652 C:\Windows\System32\mssph.dll - ok
22:40:45.0748 1652 [ 5DD2D09A0804CF1A9443F5A3D6FE01B0 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll
22:40:45.0748 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll - ok
22:40:45.0748 1652 [ 4A1E87C018F7CDD05C9E080991C1C354 ] C:\Windows\SysWOW64\DW90USB.DLL
22:40:45.0748 1652 C:\Windows\SysWOW64\DW90USB.DLL - ok
22:40:45.0748 1652 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
22:40:45.0748 1652 C:\Windows\System32\mapi32.dll - ok
22:40:45.0748 1652 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
22:40:45.0748 1652 C:\Windows\System32\wmploc.DLL - ok
22:40:45.0763 1652 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
22:40:45.0763 1652 C:\Windows\System32\fdSSDP.dll - ok
22:40:45.0763 1652 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
22:40:45.0763 1652 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
22:40:45.0763 1652 [ 018B39911427DE68CA21D0575F575277 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc
22:40:45.0763 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc - ok
22:40:45.0763 1652 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
22:40:45.0763 1652 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
22:40:45.0763 1652 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
22:40:45.0763 1652 C:\Windows\System32\fdProxy.dll - ok
22:40:45.0779 1652 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
22:40:45.0779 1652 C:\Windows\System32\ListSvc.dll - ok
22:40:45.0779 1652 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
22:40:45.0779 1652 C:\Windows\System32\P2P.dll - ok
22:40:45.0779 1652 [ 6A9ADA6CA2C766C9197E2F4C9E5F22B1 ] C:\Program Files (x86)\Launch Manager\MMDUtl.dll
22:40:45.0779 1652 C:\Program Files (x86)\Launch Manager\MMDUtl.dll - ok
22:40:45.0779 1652 [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
22:40:45.0779 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
22:40:45.0794 1652 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
22:40:45.0794 1652 C:\Windows\System32\IdListen.dll - ok
22:40:45.0794 1652 [ 384EAA703F243B6D51798BA921B799EA ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
22:40:45.0794 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll - ok
22:40:45.0794 1652 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
22:40:45.0794 1652 C:\Windows\System32\hgprint.dll - ok
22:40:45.0794 1652 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
22:40:45.0794 1652 C:\Windows\System32\p2pcollab.dll - ok
22:40:45.0794 1652 [ 76F39902E25F43FE9450AD3D6A14D0D8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\60ab562d9fe10d1782ed705ef2beb95a\WindowsBase.ni.dll
22:40:45.0794 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\60ab562d9fe10d1782ed705ef2beb95a\WindowsBase.ni.dll - ok
22:40:45.0810 1652 [ BE7919E8505F8AF593BDD195E616FB95 ] C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
22:40:45.0810 1652 C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe - ok
22:40:45.0810 1652 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
22:40:45.0810 1652 C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
22:40:45.0810 1652 [ 520B9EF148145FDE39E4FB77E0C7FC48 ] C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
22:40:45.0810 1652 C:\Program Files (x86)\Mozilla Firefox\components\browsercomps.dll - ok
22:40:45.0810 1652 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
22:40:45.0810 1652 C:\Windows\System32\pnrpsvc.dll - ok
22:40:45.0810 1652 [ 063F592B4C0AE7F786BC1A1460FB380E ] C:\Program Files (x86)\Launch Manager\VistaVol.dll
22:40:45.0810 1652 C:\Program Files (x86)\Launch Manager\VistaVol.dll - ok
22:40:45.0826 1652 [ 6943DA2DE6D889AAE7C287A8DDE71B3B ] C:\Program Files\Acer\Acer ePower Management\SysHook.dll
22:40:45.0826 1652 C:\Program Files\Acer\Acer ePower Management\SysHook.dll - ok
22:40:45.0826 1652 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
22:40:45.0826 1652 C:\Windows\SysWOW64\MMDevAPI.dll - ok
22:40:45.0826 1652 [ 643B92A9BD4D2209952D2D39AEBA9C8A ] C:\Program Files\Acer\Acer ePower Management\SetAPM.exe
22:40:45.0826 1652 C:\Program Files\Acer\Acer ePower Management\SetAPM.exe - ok
22:40:45.0826 1652 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
22:40:45.0826 1652 C:\Windows\SysWOW64\AudioSes.dll - ok
22:40:45.0841 1652 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
22:40:45.0841 1652 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
22:40:45.0841 1652 [ 3C69CE161C7007E9AD53A325492D446A ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll
22:40:45.0841 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll - ok
22:40:45.0841 1652 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
22:40:45.0841 1652 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
22:40:45.0841 1652 [ 22385EE33688B10B61DA1D8CA9549E4B ] C:\Users\Resident\AppData\Local\Temp\clear.fiClient\cabarc.exe
22:40:45.0841 1652 C:\Users\Resident\AppData\Local\Temp\clear.fiClient\cabarc.exe - ok
22:40:45.0841 1652 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
22:40:45.0841 1652 C:\Windows\SysWOW64\wbemcomn.dll - ok
22:40:45.0857 1652 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
22:40:45.0857 1652 C:\Windows\SysWOW64\wshqos.dll - ok
22:40:45.0857 1652 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
22:40:45.0857 1652 C:\Windows\System32\QAGENTRT.DLL - ok
22:40:45.0857 1652 [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
22:40:45.0857 1652 C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:40:45.0857 1652 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
22:40:45.0857 1652 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
22:40:45.0857 1652 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
22:40:45.0857 1652 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
22:40:45.0872 1652 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
22:40:45.0872 1652 C:\Windows\System32\fveui.dll - ok
22:40:45.0872 1652 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
22:40:45.0872 1652 C:\Windows\System32\p2psvc.dll - ok
22:40:45.0872 1652 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
22:40:45.0872 1652 C:\Windows\SysWOW64\ntdsapi.dll - ok
22:40:45.0872 1652 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
22:40:45.0872 1652 C:\Windows\System32\P2PGraph.dll - ok
22:40:45.0872 1652 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
22:40:45.0872 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
22:40:45.0888 1652 [ B0A41262968DD6FCE3933527892D4A24 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
22:40:45.0888 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll - ok
22:40:45.0888 1652 [ 8A6B867FC26B9850D446D2D86E5DB071 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
22:40:45.0888 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
22:40:45.0888 1652 [ 72AB8C3F8AB7B550A896357C9E0896DA ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\2abfa3ca7ad3cc6f199158e6663f3006\PresentationCore.ni.dll
22:40:45.0888 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\2abfa3ca7ad3cc6f199158e6663f3006\PresentationCore.ni.dll - ok
22:40:45.0888 1652 [ 57E8C7791AB2596AFB8EE1273C2DF1F8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
22:40:45.0888 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
22:40:45.0904 1652 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
22:40:45.0904 1652 C:\Windows\System32\wmpps.dll - ok
22:40:45.0904 1652 [ AC9787996D9FD976F270DE51E4DF821B ] C:\Windows\SysWOW64\igd10umd32.dll
22:40:45.0904 1652 C:\Windows\SysWOW64\igd10umd32.dll - ok
22:40:45.0904 1652 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
22:40:45.0904 1652 C:\Windows\System32\wmpmde.dll - ok
22:40:45.0904 1652 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
22:40:45.0904 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
22:40:45.0904 1652 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
22:40:45.0904 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
22:40:45.0919 1652 [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
22:40:45.0919 1652 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
22:40:45.0919 1652 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:40:45.0919 1652 C:\Windows\System32\dssenh.dll - ok
22:40:45.0919 1652 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
22:40:45.0919 1652 C:\Windows\System32\WinSATAPI.dll - ok
22:40:45.0919 1652 [ C733EBBDD79892B96C9980EBDC0CA704 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c217382951ed46e82a9a3e27bd6379e7\PresentationFramework.ni.dll
22:40:45.0919 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\c217382951ed46e82a9a3e27bd6379e7\PresentationFramework.ni.dll - ok
22:40:45.0919 1652 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
22:40:45.0919 1652 C:\Windows\System32\MSMPEG2ENC.DLL - ok
22:40:45.0935 1652 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
22:40:45.0935 1652 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
22:40:45.0935 1652 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
22:40:45.0935 1652 C:\Windows\System32\devenum.dll - ok
22:40:45.0935 1652 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
22:40:45.0935 1652 C:\Windows\System32\msdmo.dll - ok
22:40:45.0935 1652 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
22:40:45.0935 1652 C:\Windows\SysWOW64\d3d10_1.dll - ok
22:40:45.0935 1652 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
22:40:45.0935 1652 C:\Windows\SysWOW64\d3d10_1core.dll - ok
22:40:45.0950 1652 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
22:40:45.0950 1652 C:\Windows\SysWOW64\dxgi.dll - ok
22:40:45.0950 1652 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
22:40:45.0950 1652 C:\Windows\SysWOW64\d2d1.dll - ok
22:40:45.0950 1652 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
22:40:45.0950 1652 C:\Windows\System32\upnphost.dll - ok
22:40:45.0950 1652 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
22:40:45.0950 1652 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
22:40:45.0950 1652 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
22:40:45.0966 1652 C:\Windows\SysWOW64\d3d10.dll - ok
22:40:45.0966 1652 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
22:40:45.0966 1652 C:\Windows\System32\udhisapi.dll - ok
22:40:45.0966 1652 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
22:40:45.0966 1652 C:\Windows\SysWOW64\d3d10core.dll - ok
22:40:45.0966 1652 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
22:40:45.0966 1652 C:\Windows\System32\drprov.dll - ok
22:40:45.0966 1652 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
22:40:45.0966 1652 C:\Windows\System32\ntlanman.dll - ok
22:40:45.0982 1652 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
22:40:45.0982 1652 C:\Windows\System32\davclnt.dll - ok
22:40:45.0982 1652 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
22:40:45.0982 1652 C:\Windows\System32\davhlpr.dll - ok
22:40:45.0982 1652 [ B439EFB7F218ED0849B4CC2D4A7FE1D3 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\63ba654893f4fc924ff75cf785744150\System.Core.ni.dll
22:40:45.0982 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\63ba654893f4fc924ff75cf785744150\System.Core.ni.dll - ok
22:40:45.0982 1652 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
22:40:45.0982 1652 C:\Windows\System32\drttransport.dll - ok
22:40:45.0982 1652 [ A4B3A9FFA483F8CB36E56C19448DDE36 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll
22:40:45.0982 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll - ok
22:40:45.0997 1652 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
22:40:45.0997 1652 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
22:40:45.0997 1652 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
22:40:45.0997 1652 C:\Windows\SysWOW64\dsound.dll - ok
22:40:45.0997 1652 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
22:40:45.0997 1652 C:\Windows\System32\drt.dll - ok
22:40:45.0997 1652 [ 83D0C449C534CC014799BEC0A060726C ] C:\Program Files\AVAST Software\Avast\defs\12121601\uiext.dll
22:40:45.0997 1652 C:\Program Files\AVAST Software\Avast\defs\12121601\uiext.dll - ok
22:40:45.0997 1652 [ 5D0E28A22860E487148B2820309C0063 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll
22:40:45.0997 1652 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll - ok
22:40:46.0013 1652 [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
22:40:46.0013 1652 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
22:40:46.0013 1652 [ AF7038413C6506180FAE58B0194A2F23 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll
22:40:46.0013 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll - ok
22:40:46.0013 1652 [ 00E86A80CA56510D2C9F09E8C6CC25C6 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll
22:40:46.0013 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll - ok
22:40:46.0013 1652 [ E5E697AB8431EE8144030F81F66D9853 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll
22:40:46.0013 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll - ok
22:40:46.0028 1652 [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\SysWOW64\feclient.dll
22:40:46.0028 1652 C:\Windows\SysWOW64\feclient.dll - ok
22:40:46.0028 1652 [ 2D9E979E6636C9367765E22A6DC1CB3C ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
22:40:46.0028 1652 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
22:40:46.0028 1652 [ 2D64E8AB4E9EEE20FF5B8E359AF4299C ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll
22:40:46.0028 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpocxi08.dll - ok
22:40:46.0028 1652 [ 9B301B3FAE10015350B96B58AB24F046 ] C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
22:40:46.0028 1652 C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll - ok
22:40:46.0028 1652 [ A76EF1E73D914B1B6997A9A552DE9115 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll
22:40:46.0028 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcob08.dll - ok
22:40:46.0044 1652 [ 36624D0BE8C39899A908E81591F45EA1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll
22:40:46.0044 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpodio08.dll - ok
22:40:46.0044 1652 [ F16EEA6CCA9D8A7D1193AE80E43FBBC7 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
22:40:46.0044 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe - ok
22:40:46.0044 1652 [ E54631B36DB25082B7998AE7538BA8C8 ] C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
22:40:46.0044 1652 C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - ok
22:40:46.0044 1652 [ AB1F1374CE30F0679263A05EF40AFDDC ] C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
22:40:46.0044 1652 C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe - ok
22:40:46.0060 1652 [ 9662E514A77389EB6F7E846DB8B44C4D ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
22:40:46.0060 1652 C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
22:40:46.0060 1652 [ CF7C83513AD0F22070B6795590F6BA68 ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
22:40:46.0060 1652 C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
22:40:46.0060 1652 [ D9FA57CBA32ABA63D5C30B854F660F07 ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
22:40:46.0060 1652 C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
22:40:46.0060 1652 [ 8A9FACCB684500829F7D0BCC67B386CC ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
22:40:46.0060 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe - ok
22:40:46.0060 1652 [ 2944201BCD2BCC92897551A95757DDBE ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
22:40:46.0060 1652 C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
22:40:46.0075 1652 [ 80950EC856F2E9DBA3B888ECB7151578 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll
22:40:46.0075 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqwso08.dll - ok
22:40:46.0075 1652 [ 1CD5C2DFD2A5BF6DA720386679F3C449 ] C:\Windows\SysWOW64\HPZipr12.dll
22:40:46.0075 1652 C:\Windows\SysWOW64\HPZipr12.dll - ok
22:40:46.0075 1652 [ 38D2DAE3D63914239C28982D8BB0CD94 ] C:\Windows\System32\hpzisn12.dll
22:40:46.0075 1652 C:\Windows\System32\hpzisn12.dll - ok
22:40:46.0075 1652 [ BFB58920F1EEA290AE511EDFA94FA2EF ] C:\Windows\System32\hpzipt12.dll
22:40:46.0075 1652 C:\Windows\System32\hpzipt12.dll - ok
22:40:46.0091 1652 [ 2C9A49F4A54FD09DF13F1847EA2AEDAD ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
22:40:46.0091 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll - ok
22:40:46.0091 1652 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
22:40:46.0091 1652 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
22:40:46.0091 1652 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
22:40:46.0091 1652 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
22:40:46.0091 1652 [ DFC3912556BD5F8B782104E7EB4A6FCE ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll
22:40:46.0091 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsti08.dll - ok
22:40:46.0091 1652 [ 347A39B69AC03B8F56D8807B989F5CA8 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll
22:40:46.0091 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpb01.dll - ok
22:40:46.0106 1652 [ 75FB0906492A376F38EB48B3E69BE193 ] C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
22:40:46.0106 1652 C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok
22:40:46.0106 1652 [ 883008A9B5BFF94A153D99DBA54CB5C1 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
22:40:46.0106 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe - ok
22:40:46.0106 1652 [ 517F9E33B92FDD34DF41C1A5C533EAA2 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll
22:40:46.0106 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.dll - ok
22:40:46.0106 1652 [ 7F359C723A1AED068276C2706F420A62 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc
22:40:46.0106 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc - ok
22:40:46.0122 1652 [ B4FEBBAC47297242F04EF7F14FE6DF99 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
22:40:46.0122 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll - ok
22:40:46.0122 1652 [ 1D5C66A3CB5931A5E5D10A47929131FD ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc
22:40:46.0122 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc - ok
22:40:46.0122 1652 [ CBBAF06C2AC8882D239C8DC5BFA197FD ] C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll
22:40:46.0122 1652 C:\Program Files (x86)\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll - ok
22:40:46.0122 1652 [ CC190B07E357BCD40C2AFB57B9A67B7F ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll
22:40:46.0122 1652 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpreh.dll - ok
22:40:46.0122 1652 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:40:46.0122 1652 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:40:46.0138 1652 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:40:46.0138 1652 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:40:46.0138 1652 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
22:40:46.0138 1652 C:\Windows\SysWOW64\mscoree.dll - ok
22:40:46.0138 1652 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:40:46.0138 1652 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:40:46.0138 1652 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:40:46.0138 1652 C:\Windows\System32\msvcr100_clr0400.dll - ok
22:40:46.0138 1652 [ 70AA1FF6775F75F5FC34FE44490F2A1B ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_el.dll
22:40:46.0138 1652 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_el.dll - ok
22:40:46.0153 1652 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:40:46.0153 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
22:40:46.0153 1652 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
22:40:46.0153 1652 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
22:40:46.0153 1652 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
22:40:46.0153 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
22:40:46.0153 1652 [ 31D59387099070963EAD4CE14C5B5F04 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
22:40:46.0153 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll - ok
22:40:46.0169 1652 [ 6D6596E046CA6A61DE250AD3A281A1AF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
22:40:46.0169 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll - ok
22:40:46.0169 1652 [ 233591D169AFD1CDF53B5F60BA0F0969 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
22:40:46.0169 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
22:40:46.0169 1652 [ DAB499D1DC76D58BDFC3C1DD0AE739C9 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
22:40:46.0169 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
22:40:46.0169 1652 [ 93524E23592B00A9EEFEF6BC073FCB28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\96e989f76461a8f57c4d1d9bf2ebe7b8\IAStorDataMgrSvc.ni.exe
22:40:46.0169 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\96e989f76461a8f57c4d1d9bf2ebe7b8\IAStorDataMgrSvc.ni.exe - ok
22:40:46.0184 1652 [ 30B94A855F4C86212F98BB184A30CA96 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\17796f2951c17ebf92dd4b7c9b3ce556\System.ServiceProcess.ni.dll
22:40:46.0184 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\17796f2951c17ebf92dd4b7c9b3ce556\System.ServiceProcess.ni.dll - ok
22:40:46.0184 1652 [ B8FA3D151D6F0D59F45459BE4F78F348 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
22:40:46.0184 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
22:40:46.0184 1652 [ 2D5653DAF6ECA1EC64EAAEF46DE99F78 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
22:40:46.0184 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
22:40:46.0184 1652 [ 4323C4253A35D04A75F1B5D78A987C28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\db82f0a25bcb3ce535cc1cb727b1762e\IAStorDataMgr.ni.dll
22:40:46.0184 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\db82f0a25bcb3ce535cc1cb727b1762e\IAStorDataMgr.ni.dll - ok
22:40:46.0184 1652 [ 5F19D9645C2D28054410EBF5275EF076 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\089236f41e5accbc3654fb51ce25277f\IAStorUtil.ni.dll
22:40:46.0184 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\089236f41e5accbc3654fb51ce25277f\IAStorUtil.ni.dll - ok
22:40:46.0200 1652 [ 7221E380FB8BFCF0160B9D4E704E7E77 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll
22:40:46.0200 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\c64ca3678261c8ffcd9e7efd1af6ed54\System.Configuration.ni.dll - ok
22:40:46.0200 1652 [ 43104328E99680FCF282E71CC45CB5D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
22:40:46.0200 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll - ok
22:40:46.0200 1652 [ 78B476DB024D3245E1E159E50DBB305F ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll
22:40:46.0200 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\413288993ff690e8251d2dbe32bee01f\System.Runtime.Remoting.ni.dll - ok
22:40:46.0200 1652 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
22:40:46.0200 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
22:40:46.0216 1652 [ B77A57E0C2B4793F38548D97CC8D7F11 ] C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_el_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll
22:40:46.0216 1652 C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_el_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll - ok
22:40:46.0216 1652 [ 697E15B789B595C23614970D5BB35107 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\el-GR\IAStorDataMgr.resources.dll
22:40:46.0216 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\el-GR\IAStorDataMgr.resources.dll - ok
22:40:46.0216 1652 [ 4C4D97FFA3C5F46D1281D1308BDBA3C3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5b072da2b324bd14aa8f970a9fd1dfc7\IsdiInterop.ni.dll
22:40:46.0216 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5b072da2b324bd14aa8f970a9fd1dfc7\IsdiInterop.ni.dll - ok
22:40:46.0216 1652 [ A596BAFD1033CB6E457FD2D3BF8635A8 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
22:40:46.0216 1652 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
22:40:46.0216 1652 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
22:40:46.0231 1652 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
22:40:46.0231 1652 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
22:40:46.0231 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
22:40:46.0231 1652 [ D75C4B4A8FE6D7FD74A7EECDBAEC729F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:40:46.0231 1652 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
22:40:46.0231 1652 [ 858716CED10DBBF0BC5748F71ED2F59D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll
22:40:46.0231 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\b311b783e1efaa9527f4c2c9680c44d1\WindowsBase.ni.dll - ok
22:40:46.0231 1652 [ B414F1F941A7E6D71A8EDC52151EEAEE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\cb5acf4c838ef0dec864065683d5d38b\IAStorCommon.ni.dll
22:40:46.0231 1652 C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\cb5acf4c838ef0dec864065683d5d38b\IAStorCommon.ni.dll - ok
22:40:46.0247 1652 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
22:40:46.0247 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
22:40:46.0247 1652 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
22:40:46.0247 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
22:40:46.0247 1652 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
22:40:46.0247 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
22:40:46.0247 1652 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
22:40:46.0247 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
22:40:46.0262 1652 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
22:40:46.0262 1652 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
22:40:46.0262 1652 [ 03AA7307C0D92D38D7AF90E181736B8D ] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
22:40:46.0262 1652 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe - ok
22:40:46.0262 1652 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
22:40:46.0262 1652 C:\Windows\System32\sppsvc.exe - ok
22:40:46.0262 1652 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
22:40:46.0262 1652 C:\Windows\System32\drivers\spsys.sys - ok
22:40:46.0262 1652 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
22:40:46.0262 1652 C:\Windows\System32\wscsvc.dll - ok
22:40:46.0278 1652 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
22:40:46.0278 1652 C:\Windows\SysWOW64\wscproxystub.dll - ok
22:40:46.0278 1652 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
22:40:46.0278 1652 C:\Windows\System32\wuaueng.dll - ok
22:40:46.0278 1652 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
22:40:46.0278 1652 C:\Windows\System32\wuapi.dll - ok
22:40:46.0278 1652 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
22:40:46.0278 1652 C:\Windows\System32\cabinet.dll - ok
22:40:46.0294 1652 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
22:40:46.0294 1652 C:\Windows\System32\wups.dll - ok
22:40:46.0294 1652 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
22:40:46.0294 1652 C:\Windows\System32\mspatcha.dll - ok
22:40:46.0294 1652 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
22:40:46.0294 1652 C:\Windows\System32\wups2.dll - ok
22:40:46.0294 1652 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
22:40:46.0294 1652 C:\Windows\System32\sppwinob.dll - ok
22:40:46.0294 1652 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
22:40:46.0294 1652 C:\Windows\System32\sppobjs.dll - ok
22:40:46.0309 1652 [ 758C2CE427C343F780A205E28555C98D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:40:46.0309 1652 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
22:40:46.0309 1652 [ D480C9220BFE667DE65A46CDE80EA7E9 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll
22:40:46.0309 1652 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusStrings.dll - ok
22:40:46.0309 1652 [ 122F89E0905FC656D56F65CD7A2E9B4D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll
22:40:46.0309 1652 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\xerces-c_2_7.dll - ok
22:40:46.0309 1652 ============================================================
22:40:46.0309 1652 Scan finished
22:40:46.0309 1652 ============================================================
22:40:46.0325 4184 Detected object count: 6
22:40:46.0325 4184 Actual detected object count: 6
22:40:55.0170 4184 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0170 4184 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:40:55.0170 4184 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0170 4184 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:40:55.0170 4184 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0170 4184 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:40:55.0170 4184 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0170 4184 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:40:55.0186 4184 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0186 4184 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:40:55.0186 4184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
22:40:55.0186 4184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip



Thank you once more for your help.
  • 0

#12
emeraldnzl
Posted 16 December 2012 - 02:53 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
All looking pretty clean.

Now

  • Close all windows and open OTL again.
  • under the Extra Registry heading please check Use SafeList
  • Under the Custom Scan box paste this in:
    drives
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan won't take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.
Note: If the log doesn't appear where you saved OTL when you downloaded it then a copy of the OTL fix log is saved in a text file at

:\_OTL\MovedFiles
in most cases this will be C:\_OTL\MovedFiles
  • 0

#13
Theo Haris
Posted 16 December 2012 - 03:08 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Thank you very much. Here are the two logs.

The OTL.txt:

OTL logfile created on: 16/12/2012 10:56:29 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Resident\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Ηνωμένες Πολιτείες | Language: ENU | Date Format: d/M/yyyy

5.86 Gb Total Physical Memory | 4.27 Gb Available Physical Memory | 73.01% Memory free
11.71 Gb Paging File | 10.02 Gb Available in Paging File | 85.60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.66 Gb Total Space | 308.01 Gb Free Space | 68.35% Space Free | Partition Type: NTFS

Computer Name: RESIDENT-PC | User Name: Resident | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/12/08 15:37:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
PRC - [2012/10/31 00:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/10/31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/02/02 17:16:56 | 002,671,936 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
PRC - [2011/10/16 13:44:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/08/25 04:03:44 | 000,120,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
PRC - [2011/08/25 04:03:42 | 000,169,352 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
PRC - [2011/07/01 04:51:14 | 000,418,896 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe
PRC - [2011/07/01 04:51:14 | 000,343,632 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe
PRC - [2011/07/01 04:51:12 | 001,103,440 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2011/07/01 04:51:12 | 000,353,360 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2011/05/30 04:54:14 | 000,036,456 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
PRC - [2011/05/13 02:59:00 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/04/30 09:32:54 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011/04/24 03:29:20 | 000,256,832 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
PRC - [2011/04/24 03:28:38 | 000,297,280 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
PRC - [2011/04/22 18:44:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2011/02/01 23:41:24 | 002,656,280 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2011/02/01 23:41:20 | 000,326,168 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/11/21 05:24:27 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2010/11/17 03:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2007/02/22 17:32:12 | 000,118,784 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe


========== Modules (No Company Name) ==========

MOD - [2011/08/25 04:03:42 | 000,206,216 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll
MOD - [2011/08/25 04:03:42 | 000,169,352 | ---- | M] () -- C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
MOD - [2011/04/24 03:29:56 | 000,465,640 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
MOD - [2005/07/30 20:00:40 | 000,114,688 | ---- | M] () -- C:\Windows\SysWOW64\OdiOlDVR.dll
MOD - [2004/06/21 09:14:54 | 000,053,248 | ---- | M] () -- C:\Windows\SysWOW64\OdiAPI.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/10/31 00:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2011/08/02 21:59:46 | 000,872,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2011/04/22 18:44:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV:64bit: - [2010/11/30 01:00:56 | 000,149,504 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -- (TurboBoost)
SRV:64bit: - [2010/09/23 03:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2012/12/11 23:34:19 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/05 14:48:04 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/11/09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/07/27 12:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/01/14 20:11:19 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011/10/16 13:44:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/07/01 04:51:12 | 000,353,360 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2011/06/21 22:55:04 | 000,173,424 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2011/06/07 22:25:12 | 000,191,752 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/05/30 04:54:14 | 000,036,456 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe -- (GREGService)
SRV - [2011/05/13 02:59:00 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2011/04/30 09:32:54 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2011/04/24 03:29:20 | 000,256,832 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2011/02/01 23:41:24 | 002,656,280 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011/02/01 23:41:20 | 000,326,168 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2010/10/22 12:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/10/12 19:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/06/02 00:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/10/31 00:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2012/10/31 00:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2012/10/31 00:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2012/10/31 00:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/10/31 00:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2012/10/15 18:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/04/07 18:09:16 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012/03/01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/01/14 20:10:05 | 000,062,776 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:64bit: - [2012/01/14 20:10:05 | 000,022,648 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:64bit: - [2012/01/14 20:10:05 | 000,020,520 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:64bit: - [2011/10/16 13:44:00 | 000,028,992 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2011/09/20 12:02:55 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2011/09/20 12:02:55 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2011/07/14 07:35:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/07/14 07:35:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/06/10 20:16:10 | 012,230,912 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/05/16 23:57:32 | 000,051,240 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiMSa.sys -- (bScsiMSa)
DRV:64bit: - [2011/05/10 05:42:16 | 000,425,000 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2011/05/06 19:11:12 | 000,086,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiSDa.sys -- (bScsiSDa)
DRV:64bit: - [2011/04/26 20:07:36 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011/04/05 13:26:26 | 000,142,632 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2011/02/10 08:52:34 | 000,181,760 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2011/02/10 08:52:34 | 000,082,432 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2011/01/21 03:15:30 | 000,019,496 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdmp.sys -- (b57xdmp)
DRV:64bit: - [2011/01/21 03:15:28 | 000,067,624 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdbd.sys -- (b57xdbd)
DRV:64bit: - [2010/11/30 01:00:04 | 000,016,120 | ---- | M] (Intel® Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:64bit: - [2010/11/21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 05:23:47 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/09 12:26:46 | 002,377,216 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/10/20 02:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2010/10/15 10:28:18 | 000,317,440 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2009/09/29 12:20:06 | 000,022,528 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VNUSB.sys -- (VNUSB)
DRV:64bit: - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/14 02:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/06/10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2006/04/07 16:06:38 | 000,038,496 | ---- | M] (OLYMPUS IMAGING CORP.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\VNUSB.sys -- (VNUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "en.wikipedia.org"
FF - prefs.js..extensions.enabledAddons: %7B0538E3E3-7E9B-4d49-8831-A227C80A7AD3%7D:2.2.2
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.3
FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20120926
FF - prefs.js..extensions.enabledAddons: %7BDB2EA31C-58F5-48b7-8D60-CB0739257904%7D:0.25.1
FF - prefs.js..extensions.enabledAddons: %7Bdc572301-7619-498c-a57d-39143191b318%7D:0.4.0.3.1
FF - prefs.js..extensions.enabledAddons: %7Bbee6eb20-01e0-ebd1-da83-080329fb9a3a%7D:1.22
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_135.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Resident\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Resident\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Resident\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/11/10 00:12:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/09/10 14:50:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 14:48:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/09/10 14:50:32 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/12/05 14:48:04 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2012/04/07 17:19:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\Extensions
[2012/12/13 13:38:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions
[2012/10/09 16:11:43 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
[2012/10/03 21:59:36 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012/12/13 13:38:25 | 000,000,000 | ---D | M] (Flash and Video Download) -- C:\Users\Resident\AppData\Roaming\mozilla\Firefox\Profiles\t2vlamvy.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
[2012/11/22 03:34:40 | 000,372,581 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\[email protected]
[2012/12/05 13:37:47 | 000,531,070 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2012/11/24 04:22:39 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/07/31 12:33:31 | 000,084,005 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{DB2EA31C-58F5-48b7-8D60-CB0739257904}.xpi
[2012/11/30 19:25:32 | 000,710,866 | ---- | M] () (No name found) -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
[2012/12/14 13:53:28 | 000,002,112 | ---- | M] () -- C:\Users\Resident\AppData\Roaming\mozilla\firefox\profiles\t2vlamvy.default\searchplugins\wot-safe-search.xml
[2012/12/05 14:47:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012/12/05 14:47:59 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/12/05 14:48:04 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/09/10 18:54:11 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/10/12 19:15:31 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2012/12/16 15:26:40 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" File not found
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BackupManagerTray] C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - Startup: C:\Users\Resident\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Users\Resident\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk = File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 333 W Evelyn Ave. Mountain View, CA 94041)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91FBD89D-0960-4A8E-BE9B-CEA020D04099}: DhcpNameServer = 10.2.241.161 10.2.12.70
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A25632C6-3B7A-4140-80F8-FF819C4AA108}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20:64bit: - AppInit_DLLs: (C:\Windows\System32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/16 22:35:09 | 002,213,976 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Resident\Desktop\tdsskiller.exe
[2012/12/16 22:23:49 | 000,697,869 | ---- | C] (Farbar) -- C:\Users\Resident\Desktop\FSS.exe
[2012/12/16 21:41:27 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/12/16 21:35:09 | 001,671,168 | ---- | C] (AVAST Software) -- C:\Users\Resident\Desktop\aswMBR.exe
[2012/12/16 15:18:36 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/12/16 15:18:36 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/12/16 15:18:36 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/12/16 15:18:18 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/12/16 15:17:57 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/12/16 15:09:37 | 005,010,912 | R--- | C] (Swearware) -- C:\Users\Resident\Desktop\ComboFix.exe
[2012/12/15 23:23:42 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\The_Wire
[2012/12/14 00:10:14 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Quiz
[2012/12/14 00:09:13 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Values
[2012/12/13 04:05:45 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012/12/13 04:05:45 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012/12/13 04:05:42 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012/12/13 04:05:41 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012/12/13 04:05:41 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012/12/13 04:05:41 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012/12/13 04:05:40 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012/12/13 04:05:40 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012/12/13 04:05:39 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012/12/13 04:05:39 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012/12/13 04:05:39 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012/12/13 04:05:38 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012/12/13 04:05:34 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012/12/13 04:05:34 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012/12/13 04:05:34 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2012/12/12 15:41:26 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\WID2
[2012/12/12 14:15:47 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012/12/12 14:15:47 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012/12/12 14:15:47 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012/12/12 14:15:47 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012/12/12 14:15:40 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012/12/12 14:15:40 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012/12/12 14:15:39 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012/12/12 14:15:39 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012/12/12 14:15:38 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012/12/12 14:15:38 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012/12/12 14:15:38 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012/12/12 14:15:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012/12/12 14:15:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012/12/12 14:15:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012/12/12 14:15:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012/12/12 14:15:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012/12/12 14:15:37 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/12/12 14:15:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012/12/12 14:15:36 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012/12/12 14:15:36 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012/12/12 14:15:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012/12/12 14:15:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012/12/12 14:15:35 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012/12/12 14:15:35 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012/12/12 14:15:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012/12/12 14:15:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012/12/12 14:15:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012/12/12 14:15:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/12/12 14:15:35 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/12/12 14:15:34 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012/12/12 14:15:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012/12/12 14:15:33 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012/12/12 14:15:33 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012/12/12 14:15:33 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012/12/12 14:15:33 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012/12/12 14:15:33 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012/12/12 14:15:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012/12/12 14:15:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012/12/12 14:15:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012/12/12 14:15:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012/12/12 14:15:21 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2012/12/12 14:15:21 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2012/12/08 15:49:32 | 000,000,000 | ---D | C] -- C:\Users\Resident\AppData\Roaming\Malwarebytes
[2012/12/08 15:49:24 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2012/12/08 15:49:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/12/08 15:37:41 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
[2012/12/08 02:39:27 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Value comparison papers
[2012/12/05 14:47:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2012/12/02 22:55:58 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Fall 2012 Plagiarism reports
[2012/12/02 15:23:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/12/02 15:23:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/11/30 14:20:00 | 000,000,000 | ---D | C] -- C:\Users\Resident\Desktop\Sustainability Club
[2012/11/26 22:35:40 | 000,000,000 | ---D | C] -- C:\Users\Resident\Documents\Agni Yoga
[2012/11/24 17:20:28 | 000,000,000 | ---D | C] -- C:\Users\Resident\AppData\Roaming\SPSSInc
[2012/11/23 19:51:37 | 000,000,000 | ---D | C] -- C:\Windows\Minidump

========== Files - Modified Within 30 Days ==========

[2012/12/16 22:45:06 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/16 22:45:06 | 000,016,976 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/16 22:37:35 | 000,001,184 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/16 22:37:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/12/16 22:37:05 | 420,368,383 | -HS- | M] () -- C:\hiberfil.sys
[2012/12/16 22:35:13 | 002,213,976 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Resident\Desktop\tdsskiller.exe
[2012/12/16 22:34:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/12/16 22:33:34 | 000,080,384 | ---- | M] () -- C:\Users\Resident\Desktop\MBRCheck.exe
[2012/12/16 22:23:55 | 000,697,869 | ---- | M] (Farbar) -- C:\Users\Resident\Desktop\FSS.exe
[2012/12/16 22:09:00 | 000,001,206 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001UA.job
[2012/12/16 22:05:00 | 000,001,188 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/16 21:40:46 | 000,432,752 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/12/16 21:35:25 | 001,671,168 | ---- | M] (AVAST Software) -- C:\Users\Resident\Desktop\aswMBR.exe
[2012/12/16 21:34:58 | 000,061,440 | ---- | M] ( ) -- C:\Users\Resident\Desktop\VEW.exe
[2012/12/16 15:26:40 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2012/12/16 15:10:06 | 005,010,912 | R--- | M] (Swearware) -- C:\Users\Resident\Desktop\ComboFix.exe
[2012/12/15 23:23:32 | 000,316,804 | ---- | M] () -- C:\Users\Resident\Desktop\The_Wire
[2012/12/15 22:49:40 | 000,018,161 | ---- | M] () -- C:\Users\Resident\Documents\Curriculum Vitae.pdf
[2012/12/14 14:01:53 | 001,364,140 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/12/14 14:01:53 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/12/14 14:01:53 | 000,559,960 | ---- | M] () -- C:\Windows\SysNative\perfh008.dat
[2012/12/14 14:01:53 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/12/14 14:01:53 | 000,089,586 | ---- | M] () -- C:\Windows\SysNative\perfc008.dat
[2012/12/12 13:09:00 | 000,001,154 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2489475875-556501952-1685469658-1001Core.job
[2012/12/11 23:34:18 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012/12/11 23:34:18 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/12/10 02:28:57 | 000,650,137 | ---- | M] () -- C:\Users\Resident\Documents\Screen Shot 2012-12-10 at 1.25.10 AM.png
[2012/12/08 15:49:25 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/12/08 15:37:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Resident\Desktop\OTL.exe
[2012/11/21 19:58:55 | 000,059,715 | ---- | M] () -- C:\Users\Resident\Documents\(1).pdf

========== Files Created - No Company Name ==========

[2012/12/16 22:33:33 | 000,080,384 | ---- | C] () -- C:\Users\Resident\Desktop\MBRCheck.exe
[2012/12/16 21:34:57 | 000,061,440 | ---- | C] ( ) -- C:\Users\Resident\Desktop\VEW.exe
[2012/12/16 15:18:36 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/12/16 15:18:36 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/12/16 15:18:36 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/12/16 15:18:36 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/12/16 15:18:36 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/12/15 23:23:32 | 000,316,804 | ---- | C] () -- C:\Users\Resident\Desktop\The_Wire.zip
[2012/12/15 22:49:40 | 000,018,161 | ---- | C] () -- C:\Users\Resident\Documents\Curriculum Vitae.pdf
[2012/12/10 02:28:57 | 000,650,137 | ---- | C] () -- C:\Users\Resident\Documents\Screen Shot 2012-12-10 at 1.25.10 AM.png
[2012/12/08 15:49:25 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/11/21 19:58:54 | 000,059,715 | ---- | C] () -- C:\Users\Resident\Documents\(1).pdf
[2012/10/14 17:03:14 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\OdiOlDVR.dll
[2012/10/14 17:03:14 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\OdiAPI.dll
[2012/09/10 14:44:00 | 000,245,941 | ---- | C] () -- C:\Windows\hpoins19.dat
[2012/09/10 14:44:00 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2012/06/04 14:36:23 | 000,005,120 | ---- | C] () -- C:\Users\Resident\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/07 17:49:10 | 000,008,192 | -HS- | C] () -- C:\Windows\SysWow64\srvany.exe
[2011/10/14 06:59:21 | 000,963,116 | ---- | C] () -- C:\Windows\SysWow64\igkrng600.bin
[2011/10/14 06:59:21 | 000,218,304 | ---- | C] () -- C:\Windows\SysWow64\igfcg600m.bin
[2011/10/14 06:59:20 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2011/10/14 06:59:19 | 000,145,804 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng600.bin
[2011/10/14 06:59:18 | 013,906,944 | ---- | C] () -- C:\Windows\SysWow64\ig4icd32.dll

========== ZeroAccess Check ==========

[2009/07/14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 07:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Drive Information ==========

Physical Drives
---------------

Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: Hitachi HTS547550A9E384
Partitions: 3
Status: OK
Status Info: 0

Partitions
---------------

DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 15.00GB
Starting Offset: 1048576
Hidden sectors: 0


DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 100.00MB
Starting Offset: 16107175936
Hidden sectors: 0


DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 451.00GB
Starting Offset: 16212033536
Hidden sectors: 0


========== Files - Unicode (All) ==========
[2012/12/16 17:26:31 | 000,000,000 | ---D | M](C:\Users\Resident\Desktop\????) -- C:\Users\Resident\Desktop\Έργο
[2012/12/15 22:49:07 | 000,000,000 | ---D | M](C:\Users\Resident\Documents\?????af???) -- C:\Users\Resident\Documents\Βιογραφικά
[2012/10/24 14:43:39 | 000,015,155 | ---- | M] ()(C:\Users\Resident\Documents\???ast???? ??-??a??? ?p????????a?.docx) -- C:\Users\Resident\Documents\Επικοινωνίας.docx
[2012/10/24 13:41:03 | 000,015,155 | ---- | C] ()(C:\Users\Resident\Documents\???ast???? ??-??a??? ?p????????a?.docx) -- C:\Users\Resident\Documents\Επικοινωνίας.docx
[2012/10/14 17:27:29 | 000,000,000 | ---D | M](C:\Users\Resident\Documents\S??) -- C:\Users\Resident\Documents\ΣηΚ
[2012/09/05 12:22:34 | 000,000,000 | ---D | M](C:\Users\Resident\Documents\????e?a) -- C:\Users\Resident\Documents\Βοήθεια
[2012/07/10 21:10:36 | 000,000,000 | ---D | C](C:\Users\Resident\Documents\S??) -- C:\Users\Resident\Documents\ΣηΚ
[2012/04/11 15:58:00 | 000,001,158 | ---- | M] ()(C:\Users\Resident\Desktop\????afa.lnk) -- C:\Users\Resident\Desktop\Έγγραφα.lnk
[2012/04/11 15:58:00 | 000,001,158 | ---- | C] ()(C:\Users\Resident\Desktop\????afa.lnk) -- C:\Users\Resident\Desktop\Έγγραφα.lnk
[2012/04/07 20:23:12 | 000,000,000 | ---D | M](C:\Users\Resident\Documents\St?????) -- C:\Users\Resident\Documents\Στέλιου
[2012/04/07 20:23:02 | 000,000,000 | ---D | M](C:\Users\Resident\Documents\??µ???????? apas????s?) -- C:\Users\Resident\Documents\Δημιουργική απασχόληση
[2012/04/07 20:23:02 | 000,000,000 | ---D | C](C:\Users\Resident\Documents\St?????) -- C:\Users\Resident\Documents\Στέλιου
[2012/04/07 20:22:51 | 000,000,000 | ---D | C](C:\Users\Resident\Documents\??µ???????? apas????s?) -- C:\Users\Resident\Documents\Δημιουργική απασχόληση
[2012/04/07 20:22:48 | 000,000,000 | ---D | C](C:\Users\Resident\Documents\????e?a) -- C:\Users\Resident\Documents\Βοήθεια
[2012/04/07 20:22:48 | 000,000,000 | ---D | C](C:\Users\Resident\Documents\?????af???) -- C:\Users\Resident\Documents\Βιογραφικά
[2012/04/07 20:17:23 | 000,000,000 | ---D | C](C:\Users\Resident\Desktop\????) -- C:\Users\Resident\Desktop\Έργο
[2012/04/07 15:29:18 | 000,000,000 | -HSD | M](C:\Users\Resident\Documents\?a ß??te? µ??) -- C:\Users\Resident\Documents\Τα βίντεό μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | M](C:\Users\Resident\Documents\?? e????e? µ??) -- C:\Users\Resident\Documents\Οι εικόνες μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | M](C:\Users\Resident\Documents\? µ??s??? µ??) -- C:\Users\Resident\Documents\Η μουσική μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | M](C:\Users\Resident\?a ????af? µ??) -- C:\Users\Resident\Τα έγγραφά μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | M](C:\Users\Resident\?a ????af? µ??) -- C:\Users\Resident\Τα έγγραφά μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | C](C:\Users\Resident\Documents\?a ß??te? µ??) -- C:\Users\Resident\Documents\Τα βίντεό μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | C](C:\Users\Resident\Documents\?? e????e? µ??) -- C:\Users\Resident\Documents\Οι εικόνες μου
[2012/04/07 15:29:18 | 000,000,000 | -HSD | C](C:\Users\Resident\Documents\? µ??s??? µ??) -- C:\Users\Resident\Documents\Η μουσική μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | M](C:\Users\Public\Documents\?a ß??te? µ??) -- C:\Users\Public\Documents\Τα βίντεό μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | M](C:\Users\Public\Documents\?? e????e? µ??) -- C:\Users\Public\Documents\Οι εικόνες μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | M](C:\Users\Public\Documents\? µ??s??? µ??) -- C:\Users\Public\Documents\Η μουσική μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | M](C:\ProgramData\?p?f??e?a e??as?a?) -- C:\ProgramData\Επιφάνεια εργασίας
[2012/04/07 15:27:44 | 000,000,000 | -HSD | M](C:\ProgramData\?p?f??e?a e??as?a?) -- C:\ProgramData\Επιφάνεια εργασίας
[2012/04/07 15:27:44 | 000,000,000 | -HSD | C](C:\Users\Public\Documents\?a ß??te? µ??) -- C:\Users\Public\Documents\Τα βίντεό μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | C](C:\Users\Public\Documents\?? e????e? µ??) -- C:\Users\Public\Documents\Οι εικόνες μου
[2012/04/07 15:27:44 | 000,000,000 | -HSD | C](C:\Users\Public\Documents\? µ??s??? µ??) -- C:\Users\Public\Documents\Η μουσική μου
(C:\Users\Resident\?a ????af? µ??) -- C:\Users\Resident\Τα έγγραφά μου
(C:\ProgramData\?p?f??e?a e??as?a?) -- C:\ProgramData\Επιφάνεια εργασίας

< End of report >


And the Extras.txt:

OTL Extras logfile created on: 16/12/2012 10:56:29 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Resident\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Ηνωμένες Πολιτείες | Language: ENU | Date Format: d/M/yyyy

5.86 Gb Total Physical Memory | 4.27 Gb Available Physical Memory | 73.01% Memory free
11.71 Gb Paging File | 10.02 Gb Available in Paging File | 85.60% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.66 Gb Total Space | 308.01 Gb Free Space | 68.35% Space Free | Partition Type: NTFS

Computer Name: RESIDENT-PC | User Name: Resident | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03B71E09-13D8-424B-8D01-AF24208D1770}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{07881E2E-C520-4CD0-854D-816F20BBDA01}" = rport=137 | protocol=17 | dir=out | app=system |
"{09B583A0-3962-4DDF-A78F-AE0C0971A7BF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{12BF5B29-3B93-4AB9-A2C3-7D369CCEE953}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{16AB0E6B-1351-43F5-8793-2992A205F8D7}" = rport=138 | protocol=17 | dir=out | app=system |
"{249ACB66-685E-43E9-BD13-35C2E7B9A0F2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{27F72CA9-2D88-4890-9A94-E5E577C9697D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2E908742-2D9E-4CDD-BD21-49E8F51BAA15}" = lport=138 | protocol=17 | dir=in | app=system |
"{38C93AA8-397F-4B8F-A668-6F1303FD26C6}" = lport=445 | protocol=6 | dir=in | app=system |
"{39F78708-2E3C-46B1-BCF8-AF09E4D758C6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{3CA162F2-2777-4F38-A9B4-95FB98EFCC4A}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{462AA03A-EC05-482B-81BA-C69D735EE3C5}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{52D45AB0-9FE5-479C-95CE-4ABB3F0746D1}" = rport=445 | protocol=6 | dir=out | app=system |
"{6D3F11B0-D749-4BE6-94CC-5511B1E90D5A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{70450166-64AD-4937-A074-13E2BD12FCAE}" = lport=139 | protocol=6 | dir=in | app=system |
"{7CCA3EEB-B51F-49CD-A272-5E2D78839629}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{7EF8E2F2-E171-4786-B5D0-BA508FFF515B}" = rport=139 | protocol=6 | dir=out | app=system |
"{8E2069E8-C92C-4CD9-8F6F-FE6732C4C4BB}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{A64F3551-E05F-4C42-92B4-52D9493AF456}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{B831C4C3-70D0-44D9-BB73-AADB6CFF978C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C4D45122-8350-4353-9D89-7E4F695206DA}" = lport=10243 | protocol=6 | dir=in | app=system |
"{CE8498D0-4B59-4365-AEF0-DC9581FA8BE7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{CF8C314D-2F93-42B3-ABAB-5F9BE4EFA8BF}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D65EE1D0-3714-4281-B72D-D56FA4831ABA}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D9545082-00D9-4F11-9F15-DFA11EE8B324}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DD3E3FFB-76BC-4A7C-AE1D-D99037BFA3E3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{E85242F9-D9A1-4954-8590-F85B3AC9FC66}" = lport=137 | protocol=17 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{068147D6-700C-4474-A1AF-217B31742975}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fiagent.exe |
"{0824BACF-2318-4599-898D-8F8B24890CB7}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{0BCD7828-77A7-42CE-AF75-3D2F521A83A3}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{0E3F8415-F287-4A1D-9307-50AF27D8D928}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqnrs08.exe |
"{0F73F942-FAA6-441A-BB9D-3F80F276D8F0}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{1163561E-9700-40F4-9823-CECF613904DB}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{1E4ECEFF-237B-4F33-92DD-9783247103EE}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{1FB7EA92-1812-4112-BE8F-E29D68B6ED83}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{2AC7B02C-ADE5-47AD-8B91-D1D3373CB64A}" = protocol=58 | dir=in | [email protected],-28545 |
"{2DE6E47E-C3A7-4EB2-87E1-7AB7EEB95F95}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{2E5619C1-9806-4FBE-9B53-5896087AD030}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3198C9D7-7C36-40EB-91D1-E4C008BA0056}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{320B5EC2-B098-401B-83AF-9710CB3D9E6E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{3294B4C6-53D2-4DE8-80FC-D951EBDB991A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{334F4562-6748-4EF4-A9C4-22C64A39A947}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{343D9D3C-4282-49A4-803D-EEC85E2D094F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{34D3BA65-9F95-4697-B7A1-A8CBBE7A7C0C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3A263937-43D3-4521-B508-6C046494287F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
"{3FC70F29-9A42-419D-B24C-338EF05238C1}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{3FDF53BA-1CDB-4C13-8824-B1336EE96B40}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{40FEBB44-1CC4-4DB4-8B63-ABA32B5ADC9C}" = protocol=17 | dir=in | app=c:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe |
"{41BFED84-86D5-4633-879F-B5C73E78B672}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{42B57E12-0226-4FC3-ABD9-342097D245AE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4A1DBDB8-BA8A-4734-8472-635EE2E7AEA1}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{4D29FC58-AAB9-44D3-926A-2D770BA752F5}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4DFA582D-49BE-48BA-AD82-C6268B27B95A}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{52839979-5466-4A07-9F9F-A381F9501EA6}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5CD06692-5852-4311-B651-CD28EBA3620A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6039F152-B1B2-47C4-9530-FC636BD43D0A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{625E4408-0834-43D2-98F3-C3F3A88EBCAC}" = protocol=58 | dir=out | [email protected],-28546 |
"{6ACCC7DE-18EC-4424-B80D-F2E867049279}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{6E0B53E6-A47C-4394-AE39-5CEC51EF0E90}" = protocol=1 | dir=out | [email protected],-28544 |
"{6E376DE8-ACE1-4BB5-8488-A874CD42EA2B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{74052D66-485B-429B-9B87-C707358B9C4A}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{78ECAD35-149F-4DFF-B5BA-8CC8DCB209D2}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{7C31305B-0039-43D4-85A5-4CC35D8FDC90}" = protocol=1 | dir=in | [email protected],-28543 |
"{7C518556-FDB6-4E01-B608-631E2E74AEC3}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8463FC7A-E30F-46A5-8C62-820A0971B82B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{84B62536-0668-4671-B5CF-EBEC9A83370B}" = dir=in | app=c:\program files (x86)\acer\clear.fi\movie\touchmovie.exe |
"{8DFA3546-755B-47CB-A4A7-C2281853BA01}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\clml\clmlsvc.exe |
"{92F818F2-B557-4D84-9697-73F28D807923}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{95B801DB-33DE-4D48-AA81-03ADA3D54F6D}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{9B33668B-5218-48BD-A8D6-A8C21F8ACAAF}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{9CB46786-B4F8-4CA8-8234-76F0F71F2D20}" = protocol=6 | dir=out | app=system |
"{A16D682C-8EC0-4B78-863B-5733F0B3A6BA}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{A1980E79-1246-448F-89CC-C12FEAE2F729}" = dir=in | app=c:\program files (x86)\acer\clear.fi\movie\touchmovieservice.exe |
"{B23F4BAB-ABD3-40EE-B660-14A8E708158F}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"{B429F15F-85B6-4F27-ABBB-EDB2C119CA54}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B4A4B2AB-E775-4890-AC67-3D05CF2FDCE8}" = dir=in | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
"{B7EC93CA-BBF8-4EF5-965F-C12D05850609}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{BE24F25F-F42F-41D7-9B8D-04D1FC71F643}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{BFE0F9F7-5AF0-49DD-939A-C982AA841434}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{C22D059F-7F42-490F-8CE7-83415B8D4640}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CA8C4D9D-4262-4E0B-878E-EA89C27B0E29}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
"{CB4C4C6A-E4A0-4CAE-B9B2-A2D6ACF33B3F}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{D9947FF1-2DF5-41ED-AE97-50C9491ABE70}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{DACAE5DE-0A17-46B3-A5F7-6412BF289E81}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{DDCC9EB2-E89F-4CBF-8ED4-CBEAD74A6859}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
"{DEA0F1A1-78BA-4D48-B1C8-AA4CC44D37E7}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{DFD9EB15-0689-46B8-86BA-0666D3452553}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\clear.fi.exe |
"{E7F15230-D46E-44DF-BB74-919FC703932A}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"{E8A75E6C-04DF-4258-B8F7-27B4A073C1CD}" = protocol=6 | dir=in | app=c:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe |
"{EB1AEAC7-9D6D-476F-AE01-58DFD8B7FE7D}" = dir=in | app=c:\users\resident\appdata\local\temp\7zs712d\setup\hpznui40.exe |
"{EB6AA807-9CBD-412A-812B-60B803F5FA05}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{F066FF81-4AD8-4F11-B38B-1169DAD6604D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F936A2C3-DF97-4493-BC62-DCA4EDDA24D5}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
"{FB9937F1-B4D4-4FC4-813B-7B3B8FA4B78A}" = dir=in | app=c:\program files (x86)\acer\clear.fi\mvp\kernel\dmr\dmrengine.exe |
"TCP Query User{5604B91E-C8FB-4048-8C04-ABED6BB0AE4E}C:\Program Files (x86)\SPSSInc\statistics17\statistics.exe" = protocol=6 | dir=in | app=c:\program files (x86)\spssinc\statistics17\statistics.exe |
"TCP Query User{57E6BF71-FB8F-4879-8AE3-697462A7F768}C:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{C10079E3-FE09-4AA4-AA8B-13C743173ADB}C:\Program Files (x86)\SPSSInc\statistics17\statistics.exe" = protocol=17 | dir=in | app=c:\program files (x86)\spssinc\statistics17\statistics.exe |
"UDP Query User{D810FB22-7EED-470C-B32B-FE9874C9611D}C:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\resident\appdata\roaming\dropbox\bin\dropbox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}" = Network64
"{0919C44F-F18A-4E3B-A737-03685272CE72}" = Windows Live Remote Service Resources
"{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker
"{1553D712-B35F-4A82-BC72-D6B11A94BE3E}" = Windows Live Remote Service Resources
"{1685AE50-97ED-485B-80F6-145071EE14B0}" = Windows Live Remote Service Resources
"{17A4FD95-A507-43F1-BC92-D8572AF8340A}" = Windows Live Remote Service Resources
"{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
"{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources
"{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
"{22AB5CFD-B3DB-414E-9F99-4D024CCF1DA6}" = Windows Live Remote Client Resources
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{2C1A6191-9804-4FDC-AB01-6F9183C91A13}" = Windows Live Remote Client Resources
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{34384A2A-2CA2-4446-AB0E-1F360BA2AAC5}" = Windows Live Remote Service Resources
"{350FD0E7-175A-4F86-84EF-05B77FCD7161}" = Windows Live Remote Service Resources
"{3921492E-82D2-4180-8124-E347AD2F2DB4}" = Windows Live Remote Client Resources
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{4710662C-8204-4334-A977-B1AC9E547819}" = Broadcom Card Reader Driver Installer
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4C2E49C0-9276-4324-841D-774CCCE5DB48}" = Windows Live Remote Client Resources
"{5141AA6E-5FAC-4473-BFFB-BEE69DDC7F2B}" = Windows Live Remote Service Resources
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{57F2BD1C-14A3-4785-8E48-2075B96EB2DF}" = Windows Live Remote Service Resources
"{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
"{5F44A3A1-5D24-4708-8776-66B42B174C64}" = Windows Live Remote Client Resources
"{5FCD6EFE-C2E7-4D77-8212-4BA223D8DF8E}" = Windows Live Remote Client Resources
"{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources
"{61407251-7F7D-4303-810D-226A04D5CFF3}" = Windows Live Remote Service Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources
"{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}" = Network64
"{6C9D3F1D-DBBE-46F9-96A0-726CC72935AF}" = Windows Live Remote Service Resources
"{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources
"{702A632F-99CE-4E2D-B8F2-BF980E9CF62F}" = Windows Live Remote Client Resources
"{7AEC844D-448A-455E-A34E-E1032196BBCD}" = Windows Live Remote Service Resources
"{825C7D3F-D0B3-49D5-A42B-CBB0FBE85E99}" = Windows Live Remote Client Resources
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{850B8072-2EA7-4EDC-B930-7FE569495E76}" = Windows Live Remote Client Resources
"{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources
"{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0408-1000-0000000FF1CE}" = Microsoft Office Access MUI (Greek) 2010
"{90140000-0015-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0409-1000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0408-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Greek) 2010
"{90140000-0016-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-1000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0017-0408-1000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (Greek) 2010
"{90140000-0017-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{FCFED329-19F2-4450-9777-66D81F08E8EC}" = Microsoft SharePoint Designer 2010 Service Pack 1 (SP1)
"{90140000-0018-0408-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Greek) 2010
"{90140000-0018-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0408-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Greek) 2010
"{90140000-0019-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0408-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Greek) 2010
"{90140000-001A-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0408-1000-0000000FF1CE}" = Microsoft Office Word MUI (Greek) 2010
"{90140000-001B-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-1000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.OMUI.el-gr_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0408-1000-0000000FF1CE}" = Microsoft Office Proof (Greek) 2010
"{90140000-001F-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{C237F777-8DD0-4200-8540-7D4112C9B97F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0408-1000-0000000FF1CE}" = Microsoft Office Proofing (Greek) 2010
"{90140000-002C-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{E6D97278-C584-4766-8F76-F9EF7FDFCD4F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-1000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0408-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Greek) 2010
"{90140000-0043-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{E8722DB8-67AB-4238-AF30-EE2B62FC32CF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0409-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (English) 2010
"{90140000-0044-0408-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Greek) 2010
"{90140000-0044-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-006E-0408-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Greek) 2010
"{90140000-006E-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{734A3927-FD2A-4628-9FD8-CE06840CFD29}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-1000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0408-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Greek) 2010
"{90140000-00A1-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00BA-0408-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Greek) 2010
"{90140000-00BA-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{39D7D104-10FA-4DD1-82A2-A6C34865E6CB}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-1000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0100-0408-1000-0000000FF1CE}" = Microsoft Office O MUI (Greek) 2010
"{90140000-0100-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{F074CA23-3528-4AC4-A8BB-491DC7BBEE0D}" = Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
"{90140000-0101-0408-1000-0000000FF1CE}" = Microsoft Office X MUI (Greek) 2010
"{90140000-0101-0408-1000-0000000FF1CE}_Office14.OMUI.el-gr_{666E945E-FF51-4BF5-B047-B0DD918F2DEF}" = Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
"{90140000-0115-0409-1000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-1000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97A295A7-8840-4B35-BB61-27A8F4512CA3}" = Windows Live Remote Service Resources
"{9E9C960F-7F47-46D5-A95D-950B354DE2B8}" = Windows Live Remote Service Resources
"{9EC10607-4F0B-336D-80FE-B869F4D55ABC}" = Microsoft .NET Framework 4 Client Profile ELL Language Pack
"{A060182D-CDBE-4AD6-B9B4-860B435D6CBD}" = Windows Live Remote Client Resources
"{A508D5A2-3AC1-4594-A718-A663D6D3CF11}" = Windows Live Remote Service Resources
"{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources
"{B0BF8602-EA52-4B0A-A2BD-EDABB0977030}" = Windows Live Remote Client Resources
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 285.64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 285.64
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B61ED343-0B14-4241-999C-490CB1A20DA4}" = HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B
"{B680A663-1A15-47A5-A07C-7DF9A97558B7}" = Windows Live Remote Client Resources
"{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
"{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}" = Intel® Turbo Boost Technology Monitor 2.0
"{C504EC13-E122-4939-BD6E-EE5A3BAA5FEC}" = Windows Live Remote Client Resources
"{C91DCB72-F5BB-410D-A91A-314F5D1B4284}" = Broadcom NetLink Controller
"{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources
"{CFF3C688-2198-4BC3-A399-598226949C39}" = Windows Live Remote Client Resources
"{D1C1556C-7FF3-48A3-A5D6-7126F0FAFB66}" = Windows Live Remote Client Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{ED421F97-E1C3-4E78-9F54-A53888215D58}" = Windows Live Remote Client Resources
"{EFB20CF5-1A6D-41F3-8895-223346CE6291}" = Windows Live Remote Service Resources
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}" = Windows Live Remote Service Resources
"{FAA3933C-6F0D-4350-B66B-9D7F7031343E}" = Windows Live Remote Service Resources
"{FAD0EC0B-753B-4A97-AD34-32AC1EC8DB69}" = Windows Live Remote Client Resources
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"75BD84FDFF77342C2A347F729669CBD84CE11B04" = Πακέτο προγραμμάτων οδήγησης των Windows - OLYMPUS IMAGING CORP. (VNUSB) VNUSB (09/29/2009 2.0.0.0)
"Elantech" = ETDWare PS/2-X64 8.0.6.3_WHQL
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Photosmart Essential" = HP Photosmart Essential 3.5
"HP Smart Web Printing" = HP Smart Web Printing 4.51
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile ELL Language Pack" = Πακέτο γλωσσών για τα Ελληνικά του Microsoft .NET Framework 4 Client Profile
"Office14.OMUI.el-gr" = Microsoft Office Language Pack 2010 - Greek/Ελληνικά
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Recuva" = Recuva
"Shop for HP Supplies" = Shop for HP Supplies
"WinRAR archiver" = WinRAR 4.11 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh
"{0557BBDA-69D3-4FA4-A93C-A5300F7034B4}" = Windows Live Writer
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{062E4D94-8306-46D5-81B6-45E6AD09C799}" = Windows Live Messenger
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{06B05153-97E4-427E-B1A8-E098F6C5E52F}" = Windows Live Essentials
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Backup Manager V3
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}" = Windows Liven sähköposti
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0E4EDFCB-DC4D-4339-AB85-A8444E85D37B}" = 2600
"{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail
"{104066F4-5897-4067-85D3-4C88B67CCF75}" = AIO_Scan
"{110668B7-54C6-47C9-BAC4-1CE77F156AF5}" = Windows Live Mesh
"{11417707-1F72-4279-95A3-01E0B898BBF5}" = Windows Live Mesh
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar
"{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack
"{133D9D67-D475-4407-AC3C-D558087B2453}" = Windows Live Movie Maker
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{14C4C3B6-F1F4-401F-8C86-03E8E19AAC8C}" = clear.fi
"{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A72337E-D126-4BAF-AC89-E6122DB71866}" = Windows Liven valokuvavalikoima
"{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}" = Windows Live UX Platform Language Pack
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{249EE21B-8EDD-4F36-8A23-E580E9DBE80A}" = Windows Live Mail
"{24DF33E0-F924-4D0D-9B96-11F28F0D602D}" = Windows Live UX Platform Language Pack
"{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}" = Windows Live Writer
"{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}" = Evernote v. 4.5.1
"{28B9D2D8-4304-483F-AD71-51890A063A74}" = Windows Live Photo Common
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack
"{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}" = Windows Live Writer Resources
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{2F54E453-8C93-4B3B-936A-233C909E6CAC}" = Windows Live Messenger
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
"{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}" = Windows Live Mesh
"{3B72C1E0-26A1-40F6-8516-D50C651DFB3C}" = Windows Live Essentials
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}" = Norton Online Backup
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery
"{43AAE145-83CF-4C96-9A5E-756CEFCE879F}" = clear.fi Client
"{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{43D16DA8-BF42-3C62-89D3-3AD47829DC2E}" = Google Talk Plugin
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{443B561F-DE1B-4DEF-ADD9-484B684653C7}" = Windows Live Messenger
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{46B65150-F8AA-42F2-94FB-2729A8AE5F7E}" = SPSS Statistics 17.0
"{4736B0ED-F6A1-48EC-A1B7-C053027648F1}" = Galeria fotogràfica del Windows Live
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{48F597DD-D397-4CFA-91A0-4C033A0113BD}" = Windows Live Mail
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A04DB63-8F81-4EF4-9D09-61A2057EF419}" = Windows Live Essentials
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4B744C85-DBB1-4038-B989-4721EB22C582}" = Windows Live Messenger
"{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack
"{4C774C35-E0AF-72E1-136A-2BF666702268}" = Fooz Kids
"{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack
"{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack
"{51722911-C391-4118-97BF-B50100D2AB15}_is1" = Gephi 0.8.1
"{523DF2BB-3A85-4047-9898-29DC8AEB7E69}" = Windows Live UX Platform Language Pack
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{542DA303-FB91-4731-9F37-6E518368D3B9}" = Windows Live Messenger
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5495E9A4-501A-4D4C-87C9-E80916CA9478}" = Windows Live UX Platform Language Pack
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5B079F85-A24D-4642-BF1A-32D5A6B3A003}" = calibre
"{5C2F5C1B-9732-4F81-8FBF-6711627DC508}" = Windows Live Fotogalleri
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{5DA7D148-D2D2-4C67-8444-2F0F9BD88A06}" = Windows Live Writer
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
"{625D45F0-5DCB-48BF-8770-C240A84DAAEB}" = Windows Live Mesh
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources
"{681B698F-C997-42C3-B184-B489C6CA24C9}" = HPPhotoSmartDiscLabelContent1
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}" = Windows Live Writer Resources
"{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack
"{6A67578E-095B-4661-88F7-0B199CEC3371}" = Windows Live Messenger
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E8AFC13-F7B8-41D8-88AB-F1D0CFC56305}" = Windows Live Messenger
"{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}" = Windows Live Movie Maker
"{6F215D53-6560-4E65-B268-3358508C6D6D}" = 2600Trb
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App (Acer Games)
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71527C7C-5289-4CB2-88C9-23344C0FF6C1}" = Windows Live Movie Maker
"{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer
"{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7327080F-6673-421F-BBD9-B618F357EEB3}" = Windows Live UX Platform Language Pack
"{734104DE-C2BF-412F-BB97-FCCE1EC94229}" = Windows Live Writer Resources
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack
"{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack
"{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live
"{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{78DBE8CE-61F6-4D6C-806C-A0FFF65F5E1D}" = Windows Live Messenger
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}" = Windows Live Photo Common
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7C2A3479-A5A0-412B-B0E6-6D64CBB9B251}" = Windows Live Photo Common
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7D926AD2-16D6-42C2-8CA1-AB09E96040BA}" = Windows Live Writer Resources
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources
"{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{820D0BA3-ACD7-4FB9-A3A7-0ADF0C66A4BE}" = Windows Live Messenger
"{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials
"{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{861B1145-7762-4794-B40C-3FF0A389DFE6}" = Windows Live Photo Gallery
"{885F1BCD-C344-4758-85BD-09640CF449A5}" = Windows Live Photo Gallery
"{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A4B0C5D-035C-4643-B80F-AFF81534D117}" = 2600_Help
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CF5D47D-27B7-49D6-A14F-10550B92749D}" = Windows Live UX Platform Language Pack
"{8D68CE08-9A14-4B7B-9857-3C646A2F34C7}" = Fooz Kids Platform
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
"{8FF3891F-01B5-4A71-BFCD-20761890471C}" = Windows Live Messenger
"{924B4D82-1B97-48EB-8F1E-55C4353C22DB}" = Windows Live Mail
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail
"{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker
"{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}" = AIO_CDB_Software
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB0B2113-5B96-4B95-8AD1-44613384911F}" = Windows Live Mesh
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AC76BA86-7AD7-FFFF-7B44-AA0000000001}" = Adobe Reader X (10.1.4) MUI
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh
"{AFE499B5-FCC4-45E6-A1A5-3C51AE0E539B}" = Mobipocket Creator 4.2
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common
"{B2E90616-C50D-4B89-A40D-92377AC669E5}" = Windows Live Messenger
"{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common
"{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{B906C11A-D193-4143-9FA7-E2EE8A5A8F21}" = clear.fi
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}" = Dolby Advanced Audio v2
"{BAEE89D5-6E87-4F89-9603-A1C100479181}" = Windows Live Messenger
"{BD0C3887-64E6-41D8-9A38-BC6F34369352}" = Windows Live Messenger
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{BFC47A0B-D487-4DF0-889E-D6D392DF31E0}" = Windows Live Messenger
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{C28D96C0-6A90-459E-A077-A6706F4EC0FC}" = Bing Bar
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C95A5A77-622F-45CA-9540-84468FCB18B1}" = Windows Live Messenger
"{C9E1343D-E21E-4508-A1BE-04A089EC137D}" = Windows Live Messenger
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CBFD061C-4B27-4A89-ADD8-210316EEFA11}" = Windows Live Messenger
"{CD442136-9115-4236-9C14-278F6A9DCB3F}" = Windows Live Movie Maker
"{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common
"{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer
"{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack
"{D31169F2-CD71-4337-B783-3E53F29F4CAD}" = Windows Live Mail
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6CBB3B2-F510-483D-AE0D-1CF3F43CF1EE}" = Windows Live Writer Resources
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{D79113E7-274C-470B-BD46-01B10219DF6A}" = HPPhotosmartEssential
"{DA29F644-2420-4448-8128-1331BE588999}" = Windows Live Writer
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker
"{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail
"{DC635845-46D3-404B-BCB1-FC4A91091AFA}" = SmartWebPrinting
"{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}" = Windows Live Writer
"{DDC1E1BD-7615-4186-89E1-F5F43F9B6491}" = Windows Live Movie Maker
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5DD4723-FE0B-436E-A815-DC23CF902A0B}" = Windows Live UX Platform Language Pack
"{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer
"{E7112940-5F8E-4918-B9FE-251F2F8DC81F}" = AIO_CDB_ProductContext
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live
"{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack
"{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心
"{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Processor Graphics
"{F0F5D89A-197C-495B-827E-3E98B811CD2E}" = Windows Live Photo Common
"{F0F9505B-3ACF-4158-9311-D0285136AA00}" = Windows Live Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F35DC85A-E96B-496B-ABE7-F04192824856}" = Windows Live Messenger
"{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack
"{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources
"{F783464C-C7C6-4E9B-AC40-BC90E5414BAF}" = Windows Live Messenger
"{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos
"{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FB91E774-867B-4567-ACE7-8144EF036068}" = Olympus Digital Wave Player
"{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"{FFFA0584-8E3D-4195-8283-CCA3AD73C746}" = Windows Live Messenger
"Acer Registration" = Acer Registration
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"avast" = avast! Free Antivirus
"DAEMON Tools Pro" = DAEMON Tools Pro
"FoozKids" = Fooz Kids
"Identity Card" = Identity Card
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}" = Acer Backup Manager
"InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = clear.fi
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.1.1000
"Mozilla Firefox 17.0.1 (x86 en-US)" = Mozilla Firefox 17.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Subtitles modifier_is1" = Subtitles modifier 2.96
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.1
"WildTangent acer Master Uninstall" = Acer Games
"WinLiveSuite" = Windows Live Essentials
"WTA-01116889-68fa-43fb-9b2a-77736ce1f189" = Insaniquarium Deluxe
"WTA-0995765d-bf2b-4b65-9c91-a42069cbdeb8" = Plants vs. Zombies - Game of the Year
"WTA-1249d92d-4266-45b7-b4c7-282bc75d727f" = Jewel Match 3
"WTA-162f53b3-23e7-416c-970e-86f6a45929db" = Polar Bowler
"WTA-2daf5dc8-a32f-4964-94ad-cae8d85ea079" = Virtual Villagers 4 - The Tree of Life
"WTA-4b3423db-4276-4cac-b7fe-223946a7ee1e" = Zuma Deluxe
"WTA-633cacb7-ca7d-4fb1-86cf-f92721e0378b" = Torchlight
"WTA-67a70a1e-aa57-4e96-bf0d-00a25b43d64d" = Penguins!
"WTA-7acdc6eb-2549-4eb7-b40a-33998440e3eb" = Agatha Christie - Death on the Nile
"WTA-86f250c9-aa13-4e40-be38-e712072921dc" = Final Drive: Nitro
"WTA-960ad3a0-ee2e-447f-ab72-b281c0cfcccb" = FATE
"WTA-964bd854-029d-4049-ba44-1c285299bb0d" = Jewel Quest Solitaire
"WTA-98dfe5e4-853e-4384-98f7-6c809e3a9be1" = Wedding Dash
"WTA-a020d2cc-8699-4e3f-a19d-ab0817caeb0a" = Chuzzle Deluxe
"WTA-a6b5f73a-eb75-4114-96bd-d7dc0187f646" = Bejeweled 2 Deluxe
"WTA-b20aebb6-fc9b-4e09-9286-0812d38cd45d" = Farm Frenzy 3 - Madagascar
"WTA-c02631f0-e71e-4cb8-bc39-546a4b3e8f0b" = Mystery of Mortlake Mansion
"WTA-c8684b67-035b-435c-81e9-157774c0cefd" = Crazy Chicken Kart 2
"WTA-df75aa1d-2387-4afe-a3a8-ccb0920dfeea" = Slingo Deluxe
"WTA-fb910dca-fc81-4d04-8e98-2eb84e3ed531" = John Deere Drive Green

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Dropbox" = Dropbox

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/10/2012 7:46:20 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/10/2012 4:41:54 PM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 10/10/2012 6:18:24 PM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 11/10/2012 2:01:07 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 11/10/2012 1:48:35 PM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 14/10/2012 6:04:17 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 15/10/2012 5:25:23 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 15/10/2012 9:23:00 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 16/10/2012 5:34:24 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

Error - 17/10/2012 7:52:09 AM | Computer Name = Resident-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.

Error - 14/11/2012 7:47:29 PM | Computer Name = Resident-PC | Source = Disk | ID = 262159
Description = ? s?s?e??, \Device\Harddisk0\DR0, de? e??a? a??µ? ?t??µ? ??a p??sßas?.


< End of report >


Thank you!
  • 0

#14
emeraldnzl
Posted 16 December 2012 - 03:34 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Please run OTL.exe
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :Commands
[CreateRestorePoint]

:OTL
SRV - [2010/06/02 00:31:28 | 002,804,568 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)

:Files
ipconfig /flushdns /c

:Commands
[ResetHosts]
[emptytemp]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • It will produce a log for you on reboot, please post that log in your next reply. The log is saved in the same location as OTL.
Next

Please run Chkdsk:

  • Right click on the Start > Open Windows Explorer.
  • Select the hard drive letter (usually local disk C) for which you want to run the Chkdsk utility.
  • Right-click on the driver letter and select Properties > Tools.
  • Under the Error-Checking section of the window, click the Check Now button. If you have User Account Controls enabled, a window will pop up asking permission to continue. Click Continue.
  • Click to have Chkdsk Automatically fix file system errors and to Scan for and attempt recovery of bad sectors.
  • Click Start.
  • Chkdsk might take a very long time to run, depending on the number of files and folders, the size of the volume, disk performance, and available system resources (such as processor and memory).

Chkdsk will not run if the drive you wish to check is in use. You will requested to schedule Chkdsk. Click Schedule Check Disk, it then will run the next time you boot your computer. Shut down your computer and then turn it back on, Chkdsk will run.

So when you return please post
  • OTL fix.txt
  • tell me how chkdsk went
  • 0

#15
Theo Haris
Posted 16 December 2012 - 06:52 PM

Theo Haris

    Member

  • Topic Starter
  • Member
  • PipPip
  • 43 posts
Dear emerald,

I did as you told me. I ran the fix with OLT and I got the log. It was all fine - saying that the fix was successful. Then I ran CHKDSK, which told me the disk was clean. But now I'm looking for the OLTfix.txt and it's not on the desktop, nor in the :/_OTL/ folder - there is only a Moved Files subfolder there. I don't see it even in the history of notepad. Should I run it again? Or do something else?
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP