Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Graphics Driver not working; DOS/Aluron.A [Solved]

Started by Vicky227 , Jan 14 2013 08:17 PM

  • This topic is locked This topic is locked

#1
Vicky227
Posted 14 January 2013 - 08:17 PM

Vicky227

    Member

  • Member
  • PipPip
  • 19 posts
The HP Action Center began informing me that there was a problem with a graphics driver. I went to HP to update the driver, but got lost in a maze of options when they couldn't seem to identify my laptop as being their product. When I googled for information and visited the HP forums, there seemed to be a known problem with Vista operating systems that had been upgraded to Windows 7. I purchased my laptop in 2010 brand new with Windows 7, yet could never figure out whether it is 32-bit or 64 bit; both are listed. I downloaded two free driver programs: DriverUpdate and Slimdrivers, hoping they would fix the driver problem. I uninstalled Slimdrivers, but there is still an annoying pop up everytime I boot up that asks me if I want to update even though Slimdrivers doesn't show up as being installed on my computer. I purchased DriverUpdate and it told me everything was fixed and working properly. Then I ran McAfee's Quick Clean and my computer seemed to be as perky as it was when it was new.

Last month it began having sleep issues. When it went into sleep mode, I had to re-start it to get it to 'wake up'. The next thing that happened was that it wouldn't boot up after being in sleep mode. This happened repeatedly. I did multiple system restores to get it to work. The last time it wouldn't do the system restore in Windows and had to use DOS (which is Greek to me).

This past week I've noticed that there is a long lag time from when I type on the keyboard until it shows up on Google search or in the address bar. I ran McAfee All Access Virus & Spyware, PC Health Boost and got tech support from DriverUpdate that included allowing them to remotely 'fix' whatever the (continuing) driver problem was.

Meantime, Windows Defender must have also run a scan at some point (not sure how, as McAfee provides all the virus protection, or so I thought). It came back with the news that Alureon.A is a malicious virus. Meantime, McAfee doesn't recognize it and DriverUpdate still insists that my drivers are updated.

I am self-taught on the computer and use it the way I drive my car: Turn on the key and go. But I am really, really good at following directions and will be very grateful if someone will walk me through whatever it is I need to do. (Keyboard now acts like it's sticking again.) I saved two versions of OLT, but when I search in the Start window it gives me wrong things. For example, I tried to search by today's date, it gave me things from other dates, years ago. (Typing this is like being in quick sand. It's in slow motion even though I'm typing at 100+ wpm.)

HELP!?!?!?!
Thanks for taking time to read this far.
I really appreciate any help you can offer.




OTL logfile created on: 1/14/2013 12:44:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Vicky\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 1.30 Gb Available Physical Memory | 33.20% Memory free
7.81 Gb Paging File | 4.82 Gb Available in Paging File | 61.78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 452.80 Gb Total Space | 211.99 Gb Free Space | 46.82% Space Free | Partition Type: NTFS
Drive D: | 12.76 Gb Total Space | 2.12 Gb Free Space | 16.64% Space Free | Partition Type: NTFS

Computer Name: LAPTOP | User Name: Vicky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/14 12:43:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Vicky\Downloads\OTL.exe
PRC - [2013/01/10 12:21:39 | 000,699,400 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_146_ActiveX.exe
PRC - [2012/12/23 08:30:58 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
PRC - [2012/11/10 13:01:58 | 000,711,112 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
PRC - [2012/07/27 15:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/07/02 14:12:14 | 028,215,168 | ---- | M] (SlimWare Utilities, Inc.) -- C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
PRC - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/01/29 04:19:42 | 000,602,624 | ---- | M] (Hauppauge Computer Works) -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
PRC - [2010/01/13 17:49:58 | 000,083,456 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
PRC - [2009/07/24 20:24:14 | 000,275,840 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
PRC - [2009/07/24 20:24:02 | 000,427,304 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
PRC - [2009/07/23 22:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2009/07/23 13:37:16 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2009/07/13 20:14:45 | 000,020,480 | ---- | M] () -- \\.\globalroot\systemroot\svchost.exe
PRC - [2009/06/26 06:23:44 | 000,825,152 | R--- | M] (SAC) -- C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe
PRC - [2009/06/04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/11 20:42:07 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
MOD - [2013/01/11 18:40:16 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013/01/11 18:39:39 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/01/11 18:39:31 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
MOD - [2013/01/11 18:39:13 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
MOD - [2013/01/11 18:38:45 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
MOD - [2013/01/11 18:38:35 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/11 18:38:31 | 000,185,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll
MOD - [2013/01/11 18:38:29 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
MOD - [2013/01/11 18:38:14 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013/01/11 18:38:06 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/11 18:36:59 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013/01/11 18:36:58 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/11 18:36:46 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2012/12/23 08:30:58 | 000,997,320 | ---- | M] () -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
MOD - [2012/11/10 13:01:58 | 000,566,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll
MOD - [2012/11/10 13:01:58 | 000,134,600 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll
MOD - [2011/07/05 14:40:49 | 000,123,448 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
MOD - [2010/11/04 20:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2010/01/13 17:45:44 | 000,022,528 | ---- | M] () -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
MOD - [2009/07/24 20:24:16 | 000,275,848 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll
MOD - [2009/07/24 20:24:16 | 000,124,288 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll
MOD - [2009/07/24 20:24:16 | 000,034,088 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll
MOD - [2009/07/24 20:24:14 | 000,349,480 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll
MOD - [2009/07/23 13:37:14 | 000,931,112 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
MOD - [2009/07/15 19:51:04 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
MOD - [2009/07/15 19:51:02 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
MOD - [2009/07/15 19:50:58 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
MOD - [2009/07/15 19:50:56 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
MOD - [2009/07/15 19:50:56 | 000,007,680 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
MOD - [2009/07/15 19:50:54 | 000,005,632 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
MOD - [2009/07/15 19:50:52 | 000,018,944 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
MOD - [2009/07/15 19:50:44 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/11/22 04:42:06 | 000,378,952 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2012/11/09 06:37:30 | 000,177,680 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2012/11/09 06:34:50 | 000,218,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:64bit: - [2012/10/06 07:28:16 | 001,007,288 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe -- (mfecore)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV:64bit: - [2012/01/17 16:12:28 | 000,135,952 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/01/09 12:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/07/16 15:03:58 | 000,030,520 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/27 21:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV:64bit: - [1999/12/31 19:00:00 | 000,314,880 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [1999/12/31 19:00:00 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2013/01/10 12:21:46 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/11/10 13:01:58 | 000,711,112 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- (vToolbarUpdater13.2.0)
SRV - [2012/07/27 15:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/22 12:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/04/13 19:11:18 | 000,231,224 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe -- (MOBKbackup)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/29 04:19:42 | 000,602,624 | ---- | M] (Hauppauge Computer Works) [Auto | Running] -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe -- (HauppaugeTVServer)
SRV - [2009/07/24 20:24:14 | 000,275,840 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe -- (TVCapSvc)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/10 13:01:58 | 000,030,568 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
DRV:64bit: - [2012/11/09 06:40:24 | 000,069,672 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2012/11/09 06:37:42 | 000,339,776 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2012/11/09 06:35:50 | 000,771,096 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2012/11/09 06:34:58 | 000,515,528 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2012/11/09 06:34:18 | 000,309,400 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2012/11/09 06:33:58 | 000,178,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2012/11/02 01:46:50 | 000,328,976 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:64bit: - [2012/11/02 01:46:50 | 000,097,208 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:64bit: - [2012/10/19 09:51:50 | 000,074,120 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\McPvDrv.sys -- (McPvDrv)
DRV:64bit: - [2012/05/28 10:28:18 | 000,197,264 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:64bit: - [2012/03/08 17:40:52 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2012/03/02 15:02:00 | 000,019,456 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandbus64.sys -- (Andbus)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/21 03:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012/01/09 12:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/01/09 12:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/12/12 15:57:04 | 000,018,456 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV:64bit: - [2011/09/22 18:52:02 | 000,043,456 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:64bit: - [2011/09/13 13:30:50 | 000,035,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsnmea.sys -- (zghsnmea)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsmdm.sys -- (zghsmdm)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsdiag.sys -- (zghsdiag)
DRV:64bit: - [2010/11/20 08:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 06:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 04:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/07/16 15:04:04 | 000,030,008 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2010/07/16 15:03:48 | 000,043,320 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2010/07/08 10:54:00 | 000,269,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2010/05/27 22:32:56 | 000,320,560 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/04/13 19:10:24 | 000,066,040 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\MOBK.sys -- (MOBKFilter)
DRV:64bit: - [2010/01/18 15:40:26 | 000,004,608 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rcmirror.sys -- (rcmirror)
DRV:64bit: - [2010/01/13 15:37:18 | 007,675,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw5s64.sys -- (NETw5s64)
DRV:64bit: - [2010/01/11 15:19:24 | 001,634,176 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72DTV.sys -- (hcw72DTV)
DRV:64bit: - [2010/01/11 15:13:28 | 001,631,488 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72ATV.sys -- (hcw72ATV)
DRV:64bit: - [2010/01/11 15:09:00 | 000,038,912 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72ADFilter.sys -- (hcw72ADFilter)
DRV:64bit: - [2009/12/30 11:21:26 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009/07/20 18:33:42 | 007,058,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw1v64.sys -- (NETw1v64)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 19:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2009/07/13 19:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2009/07/13 19:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/07/13 17:31:00 | 000,233,472 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/07/13 16:59:33 | 005,020,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/29 13:17:00 | 000,070,656 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\enecir.sys -- (enecir)
DRV:64bit: - [2009/06/10 16:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 16:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 16:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 15:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 15:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/04 18:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/04/29 10:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2008/12/09 14:26:50 | 000,023,464 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\elrawdsk.sys -- (ElRawDisk)
DRV:64bit: - [1999/12/31 19:00:00 | 010,628,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [1999/12/31 19:00:00 | 001,209,856 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [1999/12/31 19:00:00 | 000,536,064 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [1999/12/31 19:00:00 | 000,145,408 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {22348997-7FD7-4759-AB9D-EB2B7A365617}
IE:64bit: - HKLM\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE:64bit: - HKLM\..\SearchScopes\{22348997-7FD7-4759-AB9D-EB2B7A365617}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\..\SearchScopes,DefaultScope = {22348997-7FD7-4759-AB9D-EB2B7A365617}
IE - HKLM\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{22348997-7FD7-4759-AB9D-EB2B7A365617}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {DECA3892-BA8F-44b8-A993-A466AD694AE4}
IE - HKCU\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{1722BCEB-54FE-4484-B841-4AD3EFC90D93}: "URL" = http://www.facebook....q={searchTerms}
IE - HKCU\..\SearchScopes\{268507ED-1AAF-4AF9-9E28-4B8595C54022}: "URL" = http://search.yahoo....p={SearchTerms}
IE - HKCU\..\SearchScopes\{3CCF5400-1106-4D0A-8B49-65EC9E72B495}: "URL" = http://query.nytimes...s}&opensearch=1
IE - HKCU\..\SearchScopes\{3D52C47D-1F49-45E8-B078-DA03F2432A92}: "URL" = http://search.yahoo....rtPage?}&fr=ie8
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg....sa&d=2012-08-20 15:29:35&v=12.2.0.5&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo....p={searchTerms}
IE - HKCU\..\SearchScopes\{F432AD7E-C954-458D-A941-8F8855B1CFFB}: "URL" = http://www.google.co...Encoding?}&rlz=
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Vicky\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Vicky\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll (Amazon.com, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/01/05 00:21:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013/01/06 17:56:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.5 [2013/01/05 00:22:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK [2013/01/10 12:07:13 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofpahiphpdfimjjeohcldngadhfbaan\2.2_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lambangeielkjcnmioccboaphdfcffib\2.2.4_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (hpBHO Class) - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [mcpltui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe ()
O4 - HKCU..\Run: [SacReminder] C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe (SAC)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - Reg Error: Value error. File not found
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - Reg Error: Value error. File not found
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B5D6DA7-0854-4233-AEB6-B9F36C31E2C7}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\viprotocol - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll ()
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{a2c2043f-1ae6-11e2-96d2-e75bb633f2cd}\Shell - "" = AutoRun
O33 - MountPoints2\{a2c2043f-1ae6-11e2-96d2-e75bb633f2cd}\Shell\AutoRun\command - "" = F:\AutoRun.exe {6CFADEA7-D909-405F-8B40-21DBFBBE0389} 10.2066.1.5B03 PID_0083
O33 - MountPoints2\{da79eeb3-628b-11df-b17f-c620cd366191}\Shell - "" = AutoRun
O33 - MountPoints2\{da79eeb3-628b-11df-b17f-c620cd366191}\Shell\AutoRun\command - "" = F:\LiteAuto.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/14 09:51:55 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{FCA942C4-8E9F-4640-946B-D833A25DB89D}
[2013/01/13 22:54:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC HealthBoost
[2013/01/13 15:14:11 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{B4DF21AE-9C5A-465F-9ECB-B794ECDC232A}
[2013/01/12 07:31:11 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{945CDACE-E77F-42DF-9BC6-EF767EA98AB5}
[2013/01/11 22:28:08 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\LogMeIn Rescue Applet
[2013/01/11 18:35:59 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{846E2B4F-9DF3-4202-AD0A-114829FFA503}
[2013/01/10 12:10:05 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\McAfee File Lock
[2013/01/10 12:09:00 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{E1E9CD68-D6CD-4295-9F6B-07B4BF088856}
[2013/01/08 13:55:31 | 000,197,264 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\HipShieldK.sys
[2013/01/08 13:53:19 | 000,177,680 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\mfevtps.exe
[2013/01/08 11:35:16 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{CD2DCFB1-3BED-4AA6-B7A3-521E6C205432}
[2013/01/07 09:46:51 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{1A91DA4F-B7AA-430A-A57F-696B8609400F}
[2013/01/06 10:27:47 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{3214ECB9-812D-4201-AC10-3B2BEB654ED3}
[2013/01/05 22:27:31 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{6EDF2F38-0F2E-4FE4-85FC-6BE4A64FECE1}
[2013/01/05 10:27:09 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{1B3B1795-2F40-4290-999B-A04E97336A79}
[2013/01/05 01:02:31 | 001,209,856 | ---- | C] (LSI Corporation) -- C:\Windows\SysNative\drivers\agrsm64.sys
[2013/01/05 01:02:30 | 000,064,000 | ---- | C] (LSI Corporation) -- C:\Windows\agrsmdel.exe
[2013/01/05 01:02:30 | 000,030,720 | ---- | C] (LSI Corporation) -- C:\Windows\agrdel64.exe
[2013/01/04 21:55:49 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{FA2A5D69-48AD-43A9-990D-BEB642F6E6F1}
[2013/01/03 02:32:19 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{4E8DE7A2-C06D-4E7B-8FE7-8729FE90E609}
[2013/01/03 01:30:58 | 000,000,000 | -HSD | C] -- C:\found.000
[2013/01/02 08:54:29 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{04C34594-FCDC-4150-910E-730BA6564786}
[2013/01/01 13:01:19 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{37BD1C65-EF21-408C-A064-53FDF3A4EDD5}
[2012/12/31 11:48:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{296D108B-5572-440A-ACF1-0312F97867B3}
[2012/12/30 17:04:45 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Roaming\VS Revo Group
[2012/12/30 12:59:43 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\VS Revo Group
[2012/12/30 12:59:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2012/12/30 12:59:39 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2012/12/30 12:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2012/12/30 12:40:46 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2012/12/30 12:40:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NCH Software
[2012/12/30 12:40:10 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Roaming\NCH Software
[2012/12/29 16:42:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{84E63BC7-0EDD-4880-8CDF-06CC88A54467}
[2012/12/28 15:02:25 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{6E5496C9-13B2-4163-9353-36E940FDAD91}
[2012/12/26 11:53:56 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{9FA3422A-7F99-4E39-92AB-E4F116F0C682}
[2012/12/25 10:13:03 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{34E3DAE4-55EC-4C1C-B819-37BA6FA9B067}
[2012/12/24 07:06:56 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{2BC1E7F9-CC04-447B-9DEB-D69E55548370}
[2012/12/23 08:32:24 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\AVG Secure Search
[2012/12/23 08:32:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{75D9AE40-9CFE-4125-95AD-BD201F89BC5B}
[2012/12/22 12:00:31 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{4AAB53D0-8C76-4771-92DB-9A1006B06C4D}
[2012/12/21 15:46:47 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{2497F5B2-6DD7-4944-ABBD-8D970D64B853}
[2012/12/20 11:46:08 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{F155E549-041C-405C-B21F-0C3CA3CA7DC0}
[2012/12/19 20:48:18 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{5A945A18-A5FF-4395-9440-71A54F0DF2C4}
[2012/12/18 12:04:33 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{1E56BDF9-C3C9-4E21-868B-458D4AA335C5}
[2012/12/17 21:04:37 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{B99B8BC0-A412-4629-84EE-BD37D0048E89}
[2012/12/17 11:27:34 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
[2012/12/16 23:46:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{3D97FE89-858A-47DF-8C38-251DDCA61450}
[2012/12/15 19:36:47 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{102FE0F5-7362-4DBF-83F9-D9FCFB474830}
[15 C:\Users\Vicky\Documents\*.tmp files -> C:\Users\Vicky\Documents\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Users\Vicky\Desktop\*.tmp files -> C:\Users\Vicky\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/14 14:24:26 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000UA.job
[2013/01/14 14:21:08 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/14 14:20:09 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/14 13:20:11 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/14 09:59:40 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/14 09:59:40 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/14 09:51:11 | 000,000,410 | ---- | M] () -- C:\Windows\tasks\SlimDrivers Startup.job
[2013/01/14 09:50:32 | 000,000,418 | ---- | M] () -- C:\Windows\tasks\DriverUpdate Startup.job
[2013/01/14 09:50:11 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/14 09:50:07 | 3145,089,024 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/13 23:26:17 | 000,001,256 | ---- | M] () -- C:\Users\Vicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
[2013/01/13 22:54:28 | 000,001,938 | ---- | M] () -- C:\Users\Public\Desktop\PC HealthBoost.lnk
[2013/01/13 17:24:37 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000Core.job
[2013/01/11 18:34:09 | 000,460,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/10 21:18:26 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2013/01/06 22:59:47 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2013/01/05 01:04:35 | 000,000,200 | ---- | M] () -- C:\Users\Vicky\Desktop\(4) Facebook.url
[2012/12/30 14:02:13 | 043,311,029 | ---- | M] () -- C:\Users\Vicky\Documents\Pastor Fidel 12.30.2012 passion for God communion.wma
[2012/12/30 12:59:40 | 000,001,101 | ---- | M] () -- C:\Users\Vicky\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[2012/12/30 12:59:40 | 000,001,077 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/12/26 11:52:29 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForVicky.job
[2012/12/26 11:52:08 | 483,794,193 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/12/17 14:16:17 | 000,276,297 | ---- | M] () -- C:\Users\Vicky\Documents\Social Security App.pdf
[2012/12/17 11:27:35 | 000,002,229 | ---- | M] () -- C:\Users\Vicky\Desktop\Kindle.lnk
[15 C:\Users\Vicky\Documents\*.tmp files -> C:\Users\Vicky\Documents\*.tmp -> ]
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Users\Vicky\Desktop\*.tmp files -> C:\Users\Vicky\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/08 13:54:47 | 000,002,641 | ---- | C] () -- C:\Windows\SysNative\drivers\mfencrk.inf
[2013/01/08 13:54:46 | 000,002,946 | ---- | C] () -- C:\Windows\SysNative\drivers\mfencbdc.inf
[2013/01/06 22:59:47 | 000,002,175 | ---- | C] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2013/01/05 01:04:34 | 000,000,200 | ---- | C] () -- C:\Users\Vicky\Desktop\(4) Facebook.url
[2012/12/30 14:02:13 | 043,311,029 | ---- | C] () -- C:\Users\Vicky\Documents\Pastor Fidel 12.30.2012 passion for God communion.wma
[2012/12/30 12:59:40 | 000,001,101 | ---- | C] () -- C:\Users\Vicky\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[2012/12/30 12:59:40 | 000,001,077 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/12/17 14:16:17 | 000,276,297 | ---- | C] () -- C:\Users\Vicky\Documents\Social Security App.pdf
[2012/12/17 11:27:35 | 000,002,229 | ---- | C] () -- C:\Users\Vicky\Desktop\Kindle.lnk
[2012/10/20 17:24:44 | 000,584,584 | ---- | C] () -- C:\Windows\adb.exe
[2012/01/30 12:07:29 | 000,000,000 | ---- | C] () -- C:\Users\Vicky\AppData\Local\{9A705876-1C27-4615-B342-F7362611E79B}
[2011/12/23 10:39:45 | 000,103,784 | ---- | C] () -- C:\Users\Vicky\GoToAssistDownloadHelper.exe
[2011/08/20 12:41:07 | 000,034,305 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\UserTile.png
[2011/08/20 08:34:25 | 000,005,120 | ---- | C] () -- C:\Users\Vicky\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/07 15:00:25 | 000,000,418 | ---- | C] () -- C:\Windows\hpwmdl28.dat.temp
[2011/08/07 14:37:52 | 000,207,637 | ---- | C] () -- C:\Windows\hpwins28.dat
[2011/03/02 13:56:09 | 000,001,854 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\GhostObjGAFix.xml
[2010/09/19 18:12:02 | 001,458,251 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp039.JPG
[2010/07/15 22:20:36 | 000,007,605 | ---- | C] () -- C:\Users\Vicky\AppData\Local\Resmon.ResmonCfg
[2010/06/14 18:07:35 | 000,000,600 | ---- | C] () -- C:\Users\Vicky\PUTTY.RND
[2010/06/06 22:14:23 | 000,811,158 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmpFIRST UPLOAD BALCONY DEAUVILLE 5.22.2010 056.JPG
[2010/06/06 21:57:06 | 000,854,285 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp073.JPG
[2010/06/06 09:11:17 | 001,145,161 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp191.JPG
[2010/06/06 09:11:16 | 004,802,537 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp191.0
[2010/05/19 23:26:36 | 000,000,238 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\wklnhst.dat
[2009/07/13 23:54:24 | 000,000,174 | -HS- | C] () -- C:\Program Files\desktop(2039).ini
[2009/07/13 23:54:24 | 000,000,174 | -HS- | C] () -- C:\Program Files (x86)\desktop(2038).ini

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | ---- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/12/29 23:59:27 | 000,000,000 | -HSD | M] -- C:\Users\Vicky\AppData\Roaming\.#
[2010/06/12 19:46:46 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Amazon
[2010/08/19 20:04:12 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/12/15 09:37:11 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Epson
[2012/02/06 11:52:29 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\IObit
[2013/01/05 00:23:34 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\iolo
[2013/01/05 00:23:34 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\JawboneUpdater
[2011/05/23 22:06:09 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\OpenOffice.org
[2010/06/07 05:33:44 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Template
[2012/12/30 17:04:45 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\VS Revo Group
[2011/01/06 23:35:28 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 180 bytes -> C:\Users\Vicky\Documents\Steve Brown Key Biscayne Pres.tiff:3or4kl4x13tuuug3Byamue2s4b

< End of report >


OTL Extras logfile created on: 1/14/2013 12:44:08 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Vicky\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 1.30 Gb Available Physical Memory | 33.20% Memory free
7.81 Gb Paging File | 4.82 Gb Available in Paging File | 61.78% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 452.80 Gb Total Space | 211.99 Gb Free Space | 46.82% Space Free | Partition Type: NTFS
Drive D: | 12.76 Gb Total Space | 2.12 Gb Free Space | 16.64% Space Free | Partition Type: NTFS

Computer Name: LAPTOP | User Name: Vicky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C4E80EE-D431-407B-A408-B5D0C8135D9E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{17C14EB3-87A9-4414-9F4E-ADA60318AA1D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1F6E23B2-7C9F-426F-B6EB-9CDE2F7B68B4}" = rport=139 | protocol=6 | dir=out | app=system |
"{31489B6C-8BD4-47C5-99B5-6312F1AE9822}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3D450BA6-C8CD-4A08-9EC4-4E31C2F0820A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{3D456930-78FA-4D57-AB80-1E586FBBEEA8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3DF5A17A-6349-4DC2-9B1B-88461269C86A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{45DAE2B4-4F5F-4E16-8F0C-8A35010CCEC3}" = lport=138 | protocol=17 | dir=in | app=system |
"{48C05970-2E50-4C6A-8DF9-528E3928D1DF}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{4951432C-7A06-467A-97E1-AF5B0C09DB95}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{57D2FD78-4A37-4672-AA7D-8E835397043E}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{59AECB48-C3B5-48DF-B7BD-50495E5A5E39}" = lport=139 | protocol=6 | dir=in | app=system |
"{5F931128-F851-4997-8027-615293D74F84}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{93714B58-64B2-4756-A5B4-CA50DF6EEF9A}" = rport=445 | protocol=6 | dir=out | app=system |
"{9438A47A-EA44-45CD-B933-CDE40255A4C6}" = rport=137 | protocol=17 | dir=out | app=system |
"{9F8E621B-0DB2-4995-A7F8-CF6EC3073870}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{A234CB71-BBB7-4DA5-BECC-21E58530E637}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A6ADC2FE-EC29-4D54-B978-B6B2E45CE4A2}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{A9F9AF81-6F75-4531-BB3C-5933929CD9D9}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AC603711-B4C5-4B6D-A430-8B8BD54EF73A}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe |
"{B76A57A9-D9FB-414E-A6A1-D7DB80CE23B3}" = lport=445 | protocol=6 | dir=in | app=system |
"{BA2E6391-FF51-49E0-9E40-901C3C53A084}" = lport=10243 | protocol=6 | dir=in | app=system |
"{BC75F981-6DE8-48BA-BA52-0EF1C8070B4F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BFF50B17-C71D-4737-8361-3EA4C290F85B}" = rport=138 | protocol=17 | dir=out | app=system |
"{C687C4A8-C666-4090-803C-3FEBACF939A1}" = rport=10243 | protocol=6 | dir=out | app=system |
"{C75C18B5-EAC7-451B-9D9E-6402FC410284}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C8F92B24-C1E1-4F75-9EAD-35C4E1998134}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{C9F925B3-850B-441F-AA07-4ADC402D81B7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{CEB9EBD2-6D43-4920-9B0F-D003334CE02E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D3673FEE-685C-4C04-9A83-85600D9DE2A5}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DB8069C9-B372-4C07-B6E0-5B98ADD6600A}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{DB942F2E-2ACB-4DF9-9F27-61176C1E9799}" = lport=137 | protocol=17 | dir=in | app=system |
"{E35A1495-0026-4C2C-AE31-123C669EAB6A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E51F338E-BBA6-4F37-8C62-FDFE8EF64A1E}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\outlook.exe |
"{EB73284F-BFF0-4D43-B2F6-F8A2CB569ECF}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F331D5CE-E5BB-4477-A689-2D053A6B268F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F58DB2E0-CF73-43FC-9132-80F38D40DDA5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0567A5C9-D10B-49E1-8E1C-98FAE46D775F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{05DA4A63-2996-40C4-9B50-1FD29C8C6283}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsmart\media\tsmagent.exe |
"{06FE4500-37F8-4F92-8297-101EAC1CDCF4}" = protocol=6 | dir=in | app=c:\program files (x86)\jawbone\jawboneupdater.exe |
"{078930F9-D2DD-4D42-AF27-9C687AB4B34D}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
"{090A3B5F-C2C3-44BE-B299-0865F714E99A}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe |
"{22929745-462F-41FE-B00C-CB36F1117011}" = protocol=58 | dir=out | [email protected],-28546 |
"{22991DE4-78D0-431F-9B49-651D44E20121}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{289002A3-72E8-4F1D-B4E5-4F480BBF9601}" = protocol=58 | dir=in | [email protected],-28545 |
"{2A213D92-B66C-48E8-8DFB-E945DC5ECA23}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\tsmagent.exe |
"{2AF59C97-2B49-454F-971C-C99D7DFB620B}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{2D32D017-5312-4863-A38B-64605C96204B}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposfx08.exe |
"{2E4E1BC9-03CF-43B2-B1D8-A2B0006531AF}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
"{30475C5B-A218-4A4F-AF04-98D81CE9C930}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{35F5D706-D060-4C68-A233-D37634FE0C1E}" = protocol=1 | dir=in | [email protected],-28543 |
"{364CD0E1-5802-4F64-B263-7F63A368D51C}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
"{3E50246C-05EE-42FC-B27F-4696B718A3DB}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
"{49B2E83E-EC5E-4600-A8D3-814260DD69A3}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\onenote.exe |
"{4AD53F74-D7EB-48F6-B8CF-14B98542E0CD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4DC2CEF8-8D21-467E-A152-1DF900C31AE2}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{51DDA275-9087-4FC4-8DF7-B8C532AF1743}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgm.exe |
"{59789903-EF60-4339-8DE4-0CEB95C069E1}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
"{5A016330-058B-4155-A482-38BC921746C1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5E92E47D-7CF9-4ED6-9D6A-47C0AEEC9F14}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{5E9CA4D1-5867-4140-BFF2-02D7F3463F84}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxm08.exe |
"{60FF5887-B181-427E-9EF2-5364BA92BD05}" = protocol=17 | dir=in | app=c:\program files (x86)\epsonnet\epsonnet setup\tool09\eneasyapp.exe |
"{62A54EE6-869C-4449-96AB-0394D5255E31}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{66A5B5E9-C3A3-4BD3-AC0C-3D247EC782BB}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\hpdvdsmart.exe |
"{6CF29FCA-70B2-4CC2-A969-8B3845C30F8B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6F756D4B-9A66-4CD4-82F7-4C01D1ED0FA3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7B5A26A8-95EE-41DB-BD3E-275EBE0AF662}" = protocol=1 | dir=out | [email protected],-28544 |
"{7ECD1728-CED8-4B18-B097-52A10C48B2CE}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqusgh.exe |
"{8052D392-70C8-4E8E-9FA5-A195578546DD}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
"{81F3316E-4666-4929-86DC-B2F3E0775096}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartvideo.exe |
"{824B5AFC-39EE-4B8F-B618-97666904D87E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{84B82BCA-6F05-4AC8-97F6-4DE896C800E3}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartphoto.exe |
"{8721DD6A-27C0-4354-AC55-666FFAD3128A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8C95FF12-F33E-4C50-A71B-B2654F7CD61F}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe |
"{8E749840-C27D-4B15-8FF2-2F9AC20DD96D}" = dir=in | app=c:\program files (x86)\hp\hp software update\hpwucli.exe |
"{94FA33ED-20DA-4FD3-ABC7-8913C9DF7311}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{99150D23-0498-4E4C-A59F-84C74F2C8344}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{9F850EA5-D272-4546-AF51-617833DCF1E5}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpfccopy.exe |
"{A047B9B0-EB1A-45F5-A150-7CDA2B7F8B59}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{A21DB03C-1A14-4BAE-9017-C34B5619326D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A356D671-8D65-431A-8C69-2E2672E5B569}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
"{A577C73C-37A7-4AF6-828E-A8779F697D14}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpzwiz01.exe |
"{AB492F16-1B2B-46E2-92DC-1AF469441049}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpofxs08.exe |
"{ACED5D42-2442-45E2-B699-343095E721E7}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\kernel\clml\clmlsvc.exe |
"{B3229E98-0217-4660-8DE6-F3FAB7DC660B}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
"{B74062E5-A983-467C-8ED7-2E39B803B976}" = protocol=17 | dir=in | app=c:\program files (x86)\jawbone\jawboneupdater.exe |
"{BD1620C0-74B9-41C9-BEB1-726B1A115366}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsmart\media\kernel\clml\clmlsvc.exe |
"{BF45043E-6EE8-4A8D-AA81-0D79BE72FFD8}" = dir=in | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartmusic.exe |
"{C3F02B0C-732A-4A2A-84ED-C1DFD4F57238}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{C6EF2E16-3409-4554-A076-F769B374A59E}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpoews01.exe |
"{C99BBEFA-6A1F-411A-BF94-01348B7A55F8}" = protocol=6 | dir=out | app=system |
"{C9B6FD35-2674-4E26-8B85-8C7ADACEF25F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{CCC9A36F-6E8C-487A-A290-ED86CDFBB403}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CDB55210-4F75-4C07-86C9-B6287384A329}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D34BD06F-769F-47F0-BCAE-3E91C51E1D4F}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"{D4DD4F6C-5D30-4259-8A39-270BDB965165}" = dir=in | app=c:\program files (x86)\hp\digital imaging\smart web printing\smartwebprintexe.exe |
"{D89D6338-F98F-4F18-8D23-CF8A8AD0354A}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{DBF33CC4-81E1-4984-B32E-EA5E7B6654D6}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{DE43A0A8-C6B6-404E-98A1-372CA60A0525}" = protocol=6 | dir=in | app=c:\program files (x86)\epsonnet\epsonnet setup\tool09\eneasyapp.exe |
"{E4065F54-3B37-4190-8365-6586F9BFCEA8}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\live tv\qp.exe |
"{E7A4C32B-8BFD-47FC-AC42-AC01FC501D96}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{EA7DB11A-ACEC-4CF1-A570-B9FEA145C929}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\platform\mcsvchost\mcsvhost.exe |
"{EAAE42D7-732A-4D3C-A9BC-B399FE4805F6}" = dir=in | app=e:\setup\hpznui40.exe |
"{EFF283AE-2AC7-4375-8D70-B6604FCCAD1A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F2F18FBE-8788-4C74-8B08-F027806E4725}" = dir=in | app=c:\program files (x86)\hp\digital imaging\bin\hpqfxt08.exe |
"{F546E29E-1DA0-4A7A-BB9E-77777D8EB3E0}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\live tv\qpservice.exe |
"{FE484378-693A-419A-974C-D4B02BA6F8BC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FEE813AC-5673-45D2-B571-7FA80229A1AB}" = dir=in | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartmusic.exe |
"{FEF8F391-AA55-433C-B896-78BB7A58DA53}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"TCP Query User{478A3FA6-AE07-41FA-9ADE-ED982EBC2916}C:\program files (x86)\microsoft office\office14\groove.exe" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"TCP Query User{8536981A-E7B0-40E2-B958-FCBFB2A851A1}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"TCP Query User{D5A5E39F-1286-4B59-B795-749973491CCF}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=6 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"TCP Query User{E9B3F080-06A4-4001-A6D6-7A92B426D941}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{9297C23D-6EC3-4805-9B7C-0C3719444479}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{D7A57A37-4E24-4C0F-9095-BA73A94D8417}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |
"UDP Query User{DEFF1F88-8F29-4126-A470-5783B0CA27C9}C:\program files (x86)\microsoft office\office14\groove.exe" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office14\groove.exe |
"UDP Query User{FBE88EC6-0EAC-434B-A83A-6032AFCB21A8}C:\program files (x86)\epson software\event manager\eeventmanager.exe" = protocol=17 | dir=in | app=c:\program files (x86)\epson software\event manager\eeventmanager.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{02A5BD31-16AC-45DF-BE9F-A3167BC4AFB2}" = Windows Live Family Safety
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0D87AE67-14EB-4C10-88A5-DA6C3181EB18}" = Windows Live Family Safety
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{1D43631F-81BF-4d29-8260-9EE9110085E4}" = Handset USB Driver
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel® PROSet/Wireless for Bluetooth® + High Speed
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 2.5.9
"{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}" = Network64
"{6CFADEA7-D909-405F-8B40-21DBFBBE0389}_is1" = Handset USB Driver
"{7E0E61CC-1C99-429D-BEA7-C4DD5B898D2A}" = HP Officejet 4500 G510n-z
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{85A42FF0-F0D0-44A3-B226-C124D6E8B1D5}" = HP 3D DriveGuard
"{88E60521-1E4E-4785-B9F1-1798A4BD0C30}" = HP MediaSmart SmartMenu
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2010
"{90140000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A4DDB2AB-ECCD-4C3A-8633-77D5A1A0E542}" = Network64
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{CFF4500E-C5D6-695D-A027-B3D4DDED2CC3}" = McAfee Online Backup
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF21C3E6-97FD-474F-9518-8DCBE94C2854}" = 64 Bit HP CIO Components Installer
"FFE7D41DF3C645075BB149E21988B63996C34187" = ENE CIR Receiver Driver
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Smart Web Printing" = HP Smart Web Printing 4.5
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HPOCR" = OCR Software by I.R.I.S. 13.0
"LSI Soft Modem" = LSI HDA Modem
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Shop for HP Supplies" = Shop for HP Supplies
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"{05891AC5-DC7A-4B6D-B144-FE0DB96B180A}" = DriverUpdate
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}" = Netflix in Windows Media Center
"{0EDBEB2B-7C8D-42E6-8312-0F84394A3223}" = Windows Media Center Add-in for Silverlight
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21A2F5EE-1DC5-488A-BE7E-E526F8C61488}" = DeviceDiscovery
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{254C37AA-6B72-4300-84F6-98A82419187E}" = ActiveCheck component for HP Active Support Library
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java™ 6 Update 31
"{27C467F8-F8EF-4f68-BD72-D63632B2096C}" = McAfee Online Backup
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{2A3A4BD6-6CE0-4E2A-80D2-1D0FF6ACBFBA}" = LG United Mobile Driver
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}" = HP Update
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3A4D5E2D-988D-4ee9-8E7F-3AC200A2B8F5}" = 4500G510nz_Software_Min
"{4313E16C-811B-469F-8815-6EB98085F8B2}" = SlingBoxWatchYourTVAnyWhere
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{43D16DA8-BF42-3C62-89D3-3AD47829DC2E}" = Google Talk Plugin
"{440B915A-0C85-45DB-92AE-75AE14704A64}" = Fax
"{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}" = PowerRecover
"{49A143E9-4A6A-43E7-86B1-388194C79248}" = HP Smart Web Printing
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
"{54CC7901-804D-4155-B353-21F0CC9112AB}" = HP Wireless Assistant
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{5B05FF91-F20C-4832-A8DE-E1912639C17C}" = 4500G510nz
"{5B295588-59C1-4386-9F85-BB4BEDCB0D22}" = HP Customer Experience Enhancements
"{63FBED9C-D995-47DC-A12D-843C570377DC}" = SlimDrivers
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{690879A5-18EF-447B-98D6-B699D51008AB}" = 4500_G510nz_Help
"{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}" = HPSSupply
"{6B9C32DB-DBCD-45A8-B901-3A92A99A2474}" = InstallVC90Support
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.1.0.0
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{82A213BD-B6AA-4281-A2D3-59D51893CC56}" = HP MediaSmart Software Notebook Demo
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{DEA87BE2-FFCC-4F33-9946-FCBE55A1E998}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA93DF4-8902-449E-A42E-4C5923CFBDE3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{4560037C-E356-444A-A015-D21F487D809E}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUS_{D6C6B46A-6CE1-4561-84A0-EFD58B8AB979}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{6BD185A0-E67F-4F77-8BCD-E34EA6AE76DF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90F6051D-A69F-4159-9203-7E20430E1056}" = HP MediaSmart SlingPlayer
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B362566-EC1B-4700-BB9C-EC661BDE2175}" = DocProc
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D318C86-AF4C-409F-A6AC-7183FF4CF424}" = Internet TV for Windows Media Center
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A436F67F-687E-4736-BD2B-537121A804CF}" = HP Product Detection
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AE8705FB-E13C-40A9-8A2D-68D6733FBFC2}" = Status
"{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"{B51605BF-6326-4553-AE96-6D7F1813D5F5}" = HP User Guides 0154
"{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}" = HP Advisor
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DC0A5F99-FD66-433F-9D3A-05DCBA64BE42}" = TrayApp
"{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DF802C05-4660-418c-970C-B988ADB1D316}" = Microsoft Live Search Toolbar
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E2AE8456-CCFE-46C0-8629-71CC507660FC}" = LG SP USB Driver
"{E2D09AC2-4153-4817-AAEB-24F92A8BCE88}" = Windows Media Center Add-in for Flash
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E92D47A1-D27D-430A-8368-0BAFD956507D}" = HP Support Assistant
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Graphics Media Accelerator Driver
"{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL
"{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}" = HP Setup
"{FBA0CA60-8BF2-4381-B819-74F020E165A9}" = LG USB WML Modem Driver
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.17
"AVG Secure Search" = AVG Security Toolbar
"Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.28104)
"Hauppauge WinTV 7" = Hauppauge WinTV 7
"Hauppauge WinTV Infrared Remote" = Hauppauge WinTV Infrared Remote
"Homepage Protection" = Homepage Protection
"HP Smart Web Printing" = HP Smart Web Printing
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = HP MediaSmart Webcam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite
"InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}" = HP MediaSmart Movie Themes
"InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}" = HP MediaSmart Live TV
"InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}" = HP MediaSmart Music/Photo/Video
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
"InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}" = HP MediaSmart DVD
"InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}" = HP MediaSmart Internet TV
"Jawbone Updater" = Jawbone Updater
"MSC" = McAfee All Access – Total Protection
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"PCHealthBoost" = PCHealthBoost 2.2.2
"WinLiveSuite" = Windows Live Essentials
"YTdetect" = Yahoo! Detect

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Amazon Kindle" = Amazon Kindle

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 12/9/2011 11:45:58 AM | Computer Name = Laptop | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

Error - 12/9/2011 8:32:26 PM | Computer Name = Laptop | Source = RasClient | ID = 20227
Description =

Error - 12/9/2011 8:32:26 PM | Computer Name = Laptop | Source = RasClient | ID = 20227
Description =

Error - 12/9/2011 8:33:37 PM | Computer Name = Laptop | Source = RasClient | ID = 20227
Description =

Error - 12/9/2011 8:33:37 PM | Computer Name = Laptop | Source = RasClient | ID = 20227
Description =

Error - 12/9/2011 10:39:49 PM | Computer Name = Laptop | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 9.0.8112.16421 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: 1008 Start
Time: 01ccb6b3efbfe0c9 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id:

Error - 12/10/2011 11:46:24 AM | Computer Name = Laptop | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

Error - 12/10/2011 1:07:27 PM | Computer Name = Laptop | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files (x86)\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value
"MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute
"version" in element "assemblyIdentity" is invalid.

Error - 12/11/2011 12:32:16 AM | Computer Name = Laptop | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

Error - 12/11/2011 11:46:46 AM | Computer Name = Laptop | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Failed extract of third-party root list from auto update cab at: <http://www.download....uthrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

[ Hewlett-Packard Events ]
Error - 12/21/2012 11:51:06 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121221105033.xml
File not created by asset agent

Error - 12/21/2012 11:51:38 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121221105106.xml
File not created by asset agent

Error - 12/21/2012 11:53:32 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121221105300.xml
File not created by asset agent

Error - 12/21/2012 11:54:04 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121221105332.xml
File not created by asset agent

Error - 12/25/2012 3:39:56 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121225023949.xml
File not created by asset agent

Error - 12/28/2012 4:13:54 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121228031322.xml
File not created by asset agent

Error - 12/28/2012 4:14:26 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\121228031354.xml
File not created by asset agent

Error - 1/1/2013 3:13:28 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011301021256.xml
File not created by asset agent

Error - 1/1/2013 3:14:01 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011301021329.xml
File not created by asset agent

Error - 1/8/2013 3:16:28 PM | Computer Name = Laptop | Source = Hewlett-Packard | ID = 0
Description = AAProcessExited() C:\ProgramData\Hewlett-Packard\HP Support Framework\Telemetry\011308021555.xml
File not created by asset agent

[ Media Center Events ]
Error - 1/7/2013 11:13:37 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 10:12:22 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/8/2013 12:42:11 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 11:41:30 AM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/10/2013 1:29:44 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 12:28:13 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/11/2013 7:47:44 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 6:46:59 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/12/2013 12:14:46 AM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 11:09:53 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/12/2013 8:34:42 AM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 7:33:25 AM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/12/2013 11:33:46 AM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 10:25:16 AM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/13/2013 4:31:33 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 3:29:26 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/13/2013 11:38:10 PM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 10:37:35 PM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

Error - 1/14/2013 11:21:05 AM | Computer Name = Laptop | Source = MCUpdate | ID = 0
Description = 10:19:37 AM - Failed to retrieve EpgListings (Error: HeadendId 28483939
is invalid.)

[ System Events ]
Error - 1/12/2013 8:30:22 AM | Computer Name = Laptop | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the HP
Software Framework Service service to connect.

Error - 1/12/2013 8:30:22 AM | Computer Name = Laptop | Source = Service Control Manager | ID = 7000
Description = The HP Software Framework Service service failed to start due to the
following error: %%1053

Error - 1/12/2013 12:35:57 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/13/2013 4:13:58 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/13/2013 5:17:45 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/13/2013 5:17:45 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/13/2013 11:33:20 PM | Computer Name = Laptop | Source = DCOM | ID = 10010
Description =

Error - 1/14/2013 10:51:16 AM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/14/2013 1:37:54 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =

Error - 1/14/2013 1:37:54 PM | Computer Name = Laptop | Source = DCOM | ID = 10016
Description =


< End of report >
  • 0

Advertisements

#2
Jasmyne
Posted 14 January 2013 - 10:54 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
Hi! My name is Jasmyne and Welcome to Geeks to Go!

I'm sorry you are having issues with your computer but I will do my best to resolve them as quickly as possible. I know having an infected computer is frustrating because I was once where you are now! It isn't always a quick & easy fix to remove malware but if you'll stick with me, I'll stick with you until your computer is clean. Throughout this process you may want to print instructions in case you loose internet access unless you have another way to access them aside from the infected computer. Please be patient with me as I am currently in training, and all of my responses to you have to be reviewed by my instructor before I post them. Just keep in mind that you get the advantage as you have 2 people examining your issue. Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask! Never be afraid to ask questions! :)

I am currently reviewing your logs and will reply back with instructions as soon as my instructor approves them.
  • 0

#3
Jasmyne
Posted 15 January 2013 - 06:14 AM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
!! Registry Cleaner Warning !!

  • A registry cleaner will not increase your system's speed or performance, and has the potential to break your registry to the point that your PC is no longer bootable. At Geeks to Go we strongly advise that people stay away from any of the registry cleaners out there. Go here to get more information about why registry cleaners aren't needed. Technet blog also discusses this issue as well as Ed Bott.

    Your logs currently show the installation of this program that has registry cleaners:
  • PC Health Boost

~~~~~~~~~~~~~~~~~~~~

Now that that's out of the way let's get started with the malware removal.

Step 1

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    Posted Image
  • Put a checkmark beside loaded modules.

    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.

    Posted Image
  • Click the Start Scan button.

    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.

    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Posted Image

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

~~~~~~~~~~~~~~~~~~~~ Things Needed for Your Next Post ~~~~~~~~~~~~~~~~~~~~
1. TDSSKiller Log
  • 0

#4
Dakeyras
Posted 19 January 2013 - 09:12 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0

#5
Dakeyras
Posted 20 January 2013 - 08:40 AM

Dakeyras

    Anti-Malware Mammoth

  • Expert
  • 9,772 posts
Topic re-opened at OP's request...
  • 0

#6
Vicky227
Posted 20 January 2013 - 09:19 AM

Vicky227

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Thank you, Jasmyne & Dakeyras! We've only just met but I think I'm falling in love with both of you. :wub:

Jasmyne, I used Revo Pro Uninstaller to remove PC Health Boost and there was an immediate improvement. No more quick-sand keystrokes! I then removed a second pesky program (SlimDrivers). Wondering if I should also remove a program called DriverUpdate? (I purchased all three of the programs I just named, only Revo Uninstaller appears to deliver what it promises. It is scary to press 'delete' when there are 500 'hidden' portions of the program that was previously supposed to have been uninstalled (SlimDriver). Search on my computer couldn't find it, but Revo did. :)

Ok, enough chatter. Here are the two logs you requested:

23:37:42.0953 3668 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
23:37:44.0143 3668 ============================================================
23:37:44.0143 3668 Current date / time: 2013/01/19 23:37:44.0143
23:37:44.0143 3668 SystemInfo:
23:37:44.0143 3668
23:37:44.0143 3668 OS Version: 6.1.7601 ServicePack: 1.0
23:37:44.0143 3668 Product type: Workstation
23:37:44.0143 3668 ComputerName: LAPTOP
23:37:44.0143 3668 UserName: Vicky
23:37:44.0143 3668 Windows directory: C:\Windows
23:37:44.0143 3668 System windows directory: C:\Windows
23:37:44.0143 3668 Running under WOW64
23:37:44.0143 3668 Processor architecture: Intel x64
23:37:44.0143 3668 Number of processors: 2
23:37:44.0143 3668 Page size: 0x1000
23:37:44.0143 3668 Boot type: Normal boot
23:37:44.0143 3668 ============================================================
23:37:45.0843 3668 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:37:45.0853 3668 ============================================================
23:37:45.0853 3668 \Device\Harddisk0\DR0:
23:37:45.0853 3668 MBR partitions:
23:37:45.0853 3668 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
23:37:45.0853 3668 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3899B000
23:37:45.0853 3668 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x389FF000, BlocksNum 0x1986800
23:37:45.0853 3668 ============================================================
23:37:45.0883 3668 C: <-> \Device\Harddisk0\DR0\Partition2
23:37:45.0923 3668 D: <-> \Device\Harddisk0\DR0\Partition3
23:37:45.0923 3668 ============================================================
23:37:45.0923 3668 Initialize success
23:37:45.0923 3668 ============================================================
23:39:10.0196 8256 Deinitialize success


23:43:00.0027 5832 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
23:43:02.0039 5832 ============================================================
23:43:02.0039 5832 Current date / time: 2013/01/19 23:43:02.0039
23:43:02.0039 5832 SystemInfo:
23:43:02.0039 5832
23:43:02.0039 5832 OS Version: 6.1.7601 ServicePack: 1.0
23:43:02.0039 5832 Product type: Workstation
23:43:02.0039 5832 ComputerName: LAPTOP
23:43:02.0039 5832 UserName: Vicky
23:43:02.0039 5832 Windows directory: C:\Windows
23:43:02.0039 5832 System windows directory: C:\Windows
23:43:02.0039 5832 Running under WOW64
23:43:02.0039 5832 Processor architecture: Intel x64
23:43:02.0039 5832 Number of processors: 2
23:43:02.0039 5832 Page size: 0x1000
23:43:02.0039 5832 Boot type: Normal boot
23:43:02.0039 5832 ============================================================
23:43:28.0575 5832 BG loaded
23:43:30.0244 5832 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:43:30.0338 5832 ============================================================
23:43:30.0338 5832 \Device\Harddisk0\DR0:
23:43:30.0400 5832 MBR partitions:
23:43:30.0400 5832 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
23:43:30.0400 5832 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3899B000
23:43:30.0400 5832 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x389FF000, BlocksNum 0x1986800
23:43:30.0400 5832 ============================================================
23:43:30.0978 5832 C: <-> \Device\Harddisk0\DR0\Partition2
23:43:31.0383 5832 D: <-> \Device\Harddisk0\DR0\Partition3
23:43:31.0383 5832 ============================================================
23:43:31.0383 5832 Initialize success
23:43:31.0383 5832 ============================================================
23:44:16.0873 4788 ============================================================
23:44:16.0873 4788 Scan started
23:44:16.0873 4788 Mode: Manual; SigCheck; TDLFS;
23:44:16.0873 4788 ============================================================
23:44:19.0619 4788 ================ Scan system memory ========================
23:44:19.0619 4788 System memory - ok
23:44:19.0619 4788 ================ Scan services =============================
23:44:21.0163 4788 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:44:21.0397 4788 1394ohci - ok
23:44:21.0475 4788 [ 3E2427D4966C7606097341E55AB4E105 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
23:44:21.0522 4788 Accelerometer - ok
23:44:21.0584 4788 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:44:21.0631 4788 ACPI - ok
23:44:21.0709 4788 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:44:27.0325 4788 AcpiPmi - ok
23:44:27.0481 4788 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:44:32.0192 4788 AdobeARMservice - ok
23:44:33.0067 4788 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:44:33.0145 4788 AdobeFlashPlayerUpdateSvc - ok
23:44:33.0238 4788 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:44:33.0738 4788 adp94xx - ok
23:44:33.0878 4788 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:44:34.0096 4788 adpahci - ok
23:44:34.0112 4788 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:44:34.0221 4788 adpu320 - ok
23:44:34.0377 4788 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:44:35.0719 4788 AeLookupSvc - ok
23:44:35.0953 4788 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
23:44:36.0124 4788 AESTFilters - ok
23:44:36.0327 4788 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
23:44:36.0546 4788 AFD - ok
23:44:36.0639 4788 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
23:44:36.0764 4788 AgereModemAudio - ok
23:44:36.0967 4788 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
23:44:37.0076 4788 AgereSoftModem - ok
23:44:37.0154 4788 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
23:44:37.0201 4788 agp440 - ok
23:44:37.0279 4788 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
23:44:37.0404 4788 ALG - ok
23:44:37.0544 4788 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
23:44:37.0591 4788 aliide - ok
23:44:37.0622 4788 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
23:44:37.0684 4788 amdide - ok
23:44:37.0731 4788 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:44:37.0840 4788 AmdK8 - ok
23:44:37.0840 4788 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:44:37.0996 4788 AmdPPM - ok
23:44:38.0028 4788 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:44:38.0090 4788 amdsata - ok
23:44:38.0137 4788 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:44:38.0184 4788 amdsbs - ok
23:44:38.0215 4788 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:44:38.0262 4788 amdxata - ok
23:44:38.0293 4788 [ 157B1C973637919DCD0D0464167C86BA ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
23:44:38.0386 4788 AMPPAL - ok
23:44:38.0402 4788 [ 157B1C973637919DCD0D0464167C86BA ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
23:44:38.0449 4788 AMPPALP - ok
23:44:38.0589 4788 [ FB70F8C1283C8CC6BFAA6F9971107E68 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
23:44:38.0652 4788 AMPPALR3 - ok
23:44:38.0698 4788 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
23:44:38.0808 4788 Andbus - ok
23:44:38.0823 4788 AndDiag - ok
23:44:38.0823 4788 AndGps - ok
23:44:38.0854 4788 ANDModem - ok
23:44:38.0948 4788 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
23:44:40.0024 4788 AppID - ok
23:44:40.0102 4788 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:44:40.0243 4788 AppIDSvc - ok
23:44:40.0290 4788 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
23:44:40.0399 4788 Appinfo - ok
23:44:40.0446 4788 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
23:44:40.0508 4788 arc - ok
23:44:40.0524 4788 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:44:40.0586 4788 arcsas - ok
23:44:40.0711 4788 aspnet_state - ok
23:44:40.0789 4788 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:44:40.0945 4788 AsyncMac - ok
23:44:41.0007 4788 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
23:44:41.0054 4788 atapi - ok
23:44:41.0740 4788 [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag C:\Windows\system32\drivers\atikmdag.sys
23:44:42.0552 4788 atikmdag - ok
23:44:42.0723 4788 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:44:42.0864 4788 AudioEndpointBuilder - ok
23:44:42.0988 4788 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:44:43.0082 4788 AudioSrv - ok
23:44:43.0285 4788 [ B447DB072BF939DB9E07BEF2ADF4ECBD ] AvgLdx64 C:\Windows\system32\Drivers\avgldx64.sys
23:44:43.0347 4788 AvgLdx64 - ok
23:44:43.0410 4788 [ 0DB5A749ACD8E66091736F88C40207BD ] AvgMfx64 C:\Windows\system32\Drivers\avgmfx64.sys
23:44:43.0441 4788 AvgMfx64 - ok
23:44:43.0534 4788 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
23:44:43.0581 4788 avgtp - ok
23:44:43.0690 4788 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:44:44.0439 4788 AxInstSV - ok
23:44:44.0580 4788 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:44:44.0751 4788 b06bdrv - ok
23:44:45.0640 4788 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:44:45.0750 4788 b57nd60a - ok
23:44:45.0859 4788 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
23:44:45.0952 4788 BDESVC - ok
23:44:46.0015 4788 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
23:44:46.0124 4788 Beep - ok
23:44:46.0280 4788 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
23:44:46.0405 4788 BFE - ok
23:44:46.0561 4788 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
23:44:46.0732 4788 BITS - ok
23:44:46.0826 4788 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:44:46.0873 4788 blbdrive - ok
23:44:46.0935 4788 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:44:47.0060 4788 bowser - ok
23:44:47.0122 4788 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:44:47.0232 4788 BrFiltLo - ok
23:44:47.0247 4788 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:44:47.0325 4788 BrFiltUp - ok
23:44:47.0388 4788 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
23:44:47.0497 4788 Browser - ok
23:44:47.0575 4788 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:44:47.0746 4788 Brserid - ok
23:44:47.0778 4788 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:44:47.0871 4788 BrSerWdm - ok
23:44:47.0918 4788 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:44:48.0074 4788 BrUsbMdm - ok
23:44:48.0090 4788 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:44:48.0214 4788 BrUsbSer - ok
23:44:48.0230 4788 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:44:48.0370 4788 BTHMODEM - ok
23:44:48.0480 4788 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
23:44:48.0589 4788 bthserv - ok
23:44:48.0636 4788 [ FA2D081709A764F6BEE16B7FFE03E36C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
23:44:48.0667 4788 BTHSSecurityMgr - ok
23:44:48.0714 4788 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:44:48.0885 4788 cdfs - ok
23:44:48.0948 4788 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:44:49.0057 4788 cdrom - ok
23:44:49.0119 4788 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
23:44:49.0291 4788 CertPropSvc - ok
23:44:49.0509 4788 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
23:44:49.0556 4788 cfwids - ok
23:44:49.0603 4788 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:44:49.0696 4788 circlass - ok
23:44:49.0759 4788 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
23:44:49.0837 4788 CLFS - ok
23:44:49.0946 4788 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:44:49.0993 4788 clr_optimization_v2.0.50727_32 - ok
23:44:50.0227 4788 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:44:50.0289 4788 clr_optimization_v2.0.50727_64 - ok
23:44:50.0430 4788 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:44:50.0492 4788 clr_optimization_v4.0.30319_32 - ok
23:44:50.0632 4788 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:44:50.0710 4788 clr_optimization_v4.0.30319_64 - ok
23:44:50.0788 4788 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:44:50.0882 4788 CmBatt - ok
23:44:50.0913 4788 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:44:50.0976 4788 cmdide - ok
23:44:51.0054 4788 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
23:44:51.0178 4788 CNG - ok
23:44:51.0490 4788 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
23:44:51.0537 4788 Com4QLBEx - ok
23:44:51.0584 4788 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:44:51.0646 4788 Compbatt - ok
23:44:51.0787 4788 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:44:52.0114 4788 CompositeBus - ok
23:44:52.0146 4788 COMSysApp - ok
23:44:52.0224 4788 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:44:52.0302 4788 crcdisk - ok
23:44:52.0395 4788 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:44:52.0551 4788 CryptSvc - ok
23:44:52.0645 4788 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:44:52.0770 4788 DcomLaunch - ok
23:44:52.0848 4788 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
23:44:52.0972 4788 defragsvc - ok
23:44:53.0035 4788 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:44:53.0191 4788 DfsC - ok
23:44:53.0316 4788 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
23:44:53.0409 4788 Dhcp - ok
23:44:53.0440 4788 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
23:44:53.0581 4788 discache - ok
23:44:54.0049 4788 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:44:54.0127 4788 Disk - ok
23:44:54.0595 4788 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:44:54.0704 4788 Dnscache - ok
23:44:54.0798 4788 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
23:44:54.0907 4788 dot3svc - ok
23:44:54.0985 4788 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
23:44:55.0078 4788 Dot4 - ok
23:44:55.0125 4788 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
23:44:55.0219 4788 Dot4Print - ok
23:44:55.0266 4788 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
23:44:55.0390 4788 dot4usb - ok
23:44:55.0437 4788 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
23:44:55.0531 4788 DPS - ok
23:44:55.0578 4788 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:44:55.0936 4788 drmkaud - ok
23:44:56.0155 4788 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:44:56.0217 4788 DXGKrnl - ok
23:44:56.0358 4788 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
23:44:56.0482 4788 EapHost - ok
23:44:57.0153 4788 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:44:57.0621 4788 ebdrv - ok
23:44:57.0668 4788 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
23:44:57.0762 4788 EFS - ok
23:44:58.0370 4788 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:44:58.0635 4788 ehRecvr - ok
23:44:58.0698 4788 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
23:44:58.0822 4788 ehSched - ok
23:44:58.0869 4788 [ D38A883309E04B9FBFFE1ACA60EA3BBF ] ElRawDisk C:\Windows\system32\drivers\elrawdsk.sys
23:44:58.0916 4788 ElRawDisk - ok
23:44:59.0056 4788 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:44:59.0134 4788 elxstor - ok
23:44:59.0166 4788 [ 524C79054636D2E5751169005006460B ] enecir C:\Windows\system32\DRIVERS\enecir.sys
23:44:59.0259 4788 enecir - ok
23:44:59.0509 4788 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:44:59.0602 4788 ErrDev - ok
23:44:59.0696 4788 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
23:44:59.0805 4788 EventSystem - ok
23:44:59.0883 4788 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
23:45:00.0039 4788 exfat - ok
23:45:00.0070 4788 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:45:00.0226 4788 fastfat - ok
23:45:00.0382 4788 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
23:45:00.0476 4788 Fax - ok
23:45:00.0554 4788 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:45:00.0616 4788 fdc - ok
23:45:00.0710 4788 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
23:45:00.0788 4788 fdPHost - ok
23:45:00.0835 4788 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
23:45:00.0913 4788 FDResPub - ok
23:45:00.0944 4788 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:45:00.0975 4788 FileInfo - ok
23:45:01.0038 4788 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:45:01.0162 4788 Filetrace - ok
23:45:01.0256 4788 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:45:01.0412 4788 flpydisk - ok
23:45:01.0537 4788 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:45:01.0615 4788 FltMgr - ok
23:45:01.0786 4788 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
23:45:01.0880 4788 FontCache - ok
23:45:02.0005 4788 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:45:02.0036 4788 FontCache3.0.0.0 - ok
23:45:02.0098 4788 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:45:02.0145 4788 FsDepends - ok
23:45:02.0239 4788 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:45:02.0270 4788 fssfltr - ok
23:45:02.0613 4788 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:45:02.0847 4788 fsssvc - ok
23:45:02.0878 4788 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:45:02.0941 4788 Fs_Rec - ok
23:45:03.0019 4788 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:45:03.0081 4788 fvevol - ok
23:45:03.0128 4788 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:45:03.0175 4788 gagp30kx - ok
23:45:03.0268 4788 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
23:45:03.0378 4788 gpsvc - ok
23:45:03.0580 4788 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:45:03.0627 4788 gupdate - ok
23:45:03.0705 4788 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:45:03.0752 4788 gupdatem - ok
23:45:03.0861 4788 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
23:45:03.0924 4788 gusvc - ok
23:45:04.0189 4788 [ F478DBABD9FDA2437293E7525C3979B9 ] HauppaugeTVServer C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE
23:45:04.0236 4788 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - warning
23:45:04.0236 4788 HauppaugeTVServer - detected UnsignedFile.Multi.Generic (1)
23:45:04.0267 4788 [ 1081923159A00B1C834CE3643DA68238 ] hcw72ADFilter C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
23:45:04.0392 4788 hcw72ADFilter - ok
23:45:04.0672 4788 [ 428B7CA6D0CBFA2B8143BCAFD0AAE1AB ] hcw72ATV C:\Windows\system32\DRIVERS\hcw72ATV.sys
23:45:04.0906 4788 hcw72ATV - ok
23:45:05.0187 4788 [ F46F6EF98DED9575A350A152B1089C68 ] hcw72DTV C:\Windows\system32\DRIVERS\hcw72DTV.sys
23:45:05.0390 4788 hcw72DTV - ok
23:45:05.0624 4788 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:45:05.0764 4788 HdAudAddService - ok
23:45:05.0827 4788 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:45:05.0920 4788 HDAudBus - ok
23:45:05.0936 4788 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:45:06.0061 4788 HidBatt - ok
23:45:06.0076 4788 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:45:06.0201 4788 HidBth - ok
23:45:06.0295 4788 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:45:06.0342 4788 HidIr - ok
23:45:06.0404 4788 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
23:45:06.0513 4788 hidserv - ok
23:45:06.0576 4788 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
23:45:06.0622 4788 HidUsb - ok
23:45:06.0825 4788 [ 852681A14AFEE00C0C3179429A08C868 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
23:45:06.0872 4788 HipShieldK - ok
23:45:06.0919 4788 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:45:07.0012 4788 hkmsvc - ok
23:45:07.0059 4788 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:45:07.0324 4788 HomeGroupListener - ok
23:45:07.0434 4788 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:45:07.0527 4788 HomeGroupProvider - ok
23:45:07.0917 4788 [ 389BC447DF363450A78845D35DBA0047 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:07.0948 4788 HomeNetSvc - ok
23:45:08.0104 4788 [ 45A12CACB97B4F15858FCFD59355A1E9 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
23:45:08.0151 4788 HP Health Check Service - ok
23:45:08.0276 4788 [ F55442690A70A0278A7EED4FAAEBF576 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
23:45:08.0338 4788 HPDrvMntSvc.exe - ok
23:45:08.0448 4788 [ CCBE758967CC0F53F5BA3B271653C4E6 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
23:45:08.0494 4788 hpdskflt - ok
23:45:08.0916 4788 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
23:45:08.0947 4788 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
23:45:08.0947 4788 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
23:45:08.0994 4788 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
23:45:09.0009 4788 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
23:45:09.0009 4788 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
23:45:09.0103 4788 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
23:45:09.0165 4788 HpqKbFiltr - ok
23:45:09.0259 4788 [ 640E51DB253265C3EAC075866B3D2B33 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
23:45:09.0321 4788 hpqwmiex - ok
23:45:09.0368 4788 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:45:09.0430 4788 HpSAMD - ok
23:45:09.0555 4788 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
23:45:09.0680 4788 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
23:45:09.0680 4788 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
23:45:09.0774 4788 [ E2223A37896A76861D7F79FD81A2A193 ] hpsrv C:\Windows\system32\Hpservice.exe
23:45:09.0820 4788 hpsrv - ok
23:45:09.0961 4788 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:45:10.0070 4788 HTTP - ok
23:45:10.0117 4788 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:45:10.0164 4788 hwpolicy - ok
23:45:10.0288 4788 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:45:10.0335 4788 i8042prt - ok
23:45:10.0585 4788 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:45:10.0632 4788 IAANTMON - ok
23:45:10.0772 4788 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:45:10.0803 4788 iaStor - ok
23:45:10.0866 4788 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:45:11.0053 4788 iaStorV - ok
23:45:11.0318 4788 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:45:11.0380 4788 idsvc - ok
23:45:12.0363 4788 [ F59AC361DFE9BFD9BE81E20B04EADAA2 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:45:12.0862 4788 igfx - ok
23:45:12.0894 4788 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:45:12.0956 4788 iirsp - ok
23:45:13.0065 4788 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
23:45:13.0174 4788 IKEEXT - ok
23:45:13.0284 4788 [ B014CE58F0A8048D3924BA8D5CCBC5F1 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
23:45:13.0393 4788 IntcHdmiAddService - ok
23:45:13.0455 4788 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
23:45:13.0502 4788 intelide - ok
23:45:13.0580 4788 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:45:13.0642 4788 intelppm - ok
23:45:13.0783 4788 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:45:13.0861 4788 IPBusEnum - ok
23:45:13.0923 4788 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:45:14.0032 4788 IpFilterDriver - ok
23:45:14.0126 4788 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:45:14.0220 4788 iphlpsvc - ok
23:45:14.0282 4788 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:45:14.0391 4788 IPMIDRV - ok
23:45:14.0469 4788 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:45:14.0563 4788 IPNAT - ok
23:45:14.0625 4788 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:45:14.0968 4788 IRENUM - ok
23:45:15.0015 4788 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:45:15.0078 4788 isapnp - ok
23:45:15.0140 4788 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:45:15.0218 4788 iScsiPrt - ok
23:45:15.0265 4788 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
23:45:15.0312 4788 kbdclass - ok
23:45:15.0343 4788 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
23:45:15.0405 4788 kbdhid - ok
23:45:15.0468 4788 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
23:45:15.0514 4788 KeyIso - ok
23:45:15.0546 4788 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:45:15.0592 4788 KSecDD - ok
23:45:15.0608 4788 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:45:15.0670 4788 KSecPkg - ok
23:45:15.0717 4788 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:45:15.0826 4788 ksthunk - ok
23:45:15.0967 4788 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
23:45:16.0123 4788 KtmRm - ok
23:45:16.0372 4788 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:45:16.0482 4788 LanmanServer - ok
23:45:16.0544 4788 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:45:16.0716 4788 LanmanWorkstation - ok
23:45:16.0872 4788 [ 285954C6C6EF43B78AB84034750FAC6A ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
23:45:17.0386 4788 libusb0 - ok
23:45:17.0511 4788 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:45:17.0683 4788 lltdio - ok
23:45:17.0714 4788 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:45:17.0854 4788 lltdsvc - ok
23:45:17.0917 4788 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:45:18.0010 4788 lmhosts - ok
23:45:18.0088 4788 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:45:18.0151 4788 LSI_FC - ok
23:45:18.0213 4788 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:45:18.0276 4788 LSI_SAS - ok
23:45:18.0307 4788 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:45:18.0369 4788 LSI_SAS2 - ok
23:45:18.0416 4788 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:45:18.0478 4788 LSI_SCSI - ok
23:45:18.0494 4788 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
23:45:18.0650 4788 luafv - ok
23:45:18.0728 4788 [ 092D6F6F9FF6AE6C3A3D36DD17CC9D96 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
23:45:18.0775 4788 massfilter_hs - ok
23:45:18.0946 4788 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:45:18.0993 4788 McAfee SiteAdvisor Service - ok
23:45:19.0071 4788 [ 389BC447DF363450A78845D35DBA0047 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:19.0118 4788 McMPFSvc - ok
23:45:19.0149 4788 [ 389BC447DF363450A78845D35DBA0047 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:19.0180 4788 McNaiAnn - ok
23:45:19.0461 4788 [ 93432FAEA699F7A2B4F4AC5949D0B6AB ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
23:45:19.0570 4788 McODS - ok
23:45:19.0695 4788 [ 389BC447DF363450A78845D35DBA0047 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:19.0742 4788 mcpltsvc - ok
23:45:19.0804 4788 [ 389BC447DF363450A78845D35DBA0047 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:19.0851 4788 McProxy - ok
23:45:19.0898 4788 [ D0885CA52ACD97E0C93A565BDD2270D9 ] McPvDrv C:\Windows\system32\drivers\McPvDrv.sys
23:45:19.0929 4788 McPvDrv - ok
23:45:20.0007 4788 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:45:20.0054 4788 Mcx2Svc - ok
23:45:20.0101 4788 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:45:20.0148 4788 megasas - ok
23:45:20.0194 4788 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:45:20.0272 4788 MegaSR - ok
23:45:20.0444 4788 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
23:45:20.0475 4788 mfeapfk - ok
23:45:20.0553 4788 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
23:45:20.0584 4788 mfeavfk - ok
23:45:20.0694 4788 mfeavfk01 - ok
23:45:20.0881 4788 [ 38D1F23EE031B615A8CA51DD1E523579 ] mfecore C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
23:45:20.0943 4788 mfecore - ok
23:45:21.0068 4788 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
23:45:21.0115 4788 mfefire - ok
23:45:21.0240 4788 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
23:45:21.0318 4788 mfefirek - ok
23:45:21.0442 4788 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
23:45:21.0567 4788 mfehidk - ok
23:45:21.0754 4788 [ 9C9FC3770BD600B2D761D666234C244D ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
23:45:21.0817 4788 mfencbdc - ok
23:45:21.0864 4788 [ 93241CC8509B622B47EEA1B8505CF511 ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
23:45:21.0910 4788 mfencrk - ok
23:45:21.0973 4788 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
23:45:22.0020 4788 mfevtp - ok
23:45:22.0113 4788 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
23:45:22.0176 4788 mfewfpk - ok
23:45:22.0347 4788 Microsoft SharePoint Workspace Audit Service - ok
23:45:22.0410 4788 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
23:45:22.0519 4788 MMCSS - ok
23:45:22.0628 4788 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
23:45:22.0675 4788 MOBKbackup - ok
23:45:22.0706 4788 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
23:45:22.0737 4788 MOBKFilter - ok
23:45:22.0784 4788 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
23:45:22.0893 4788 Modem - ok
23:45:22.0909 4788 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:45:22.0987 4788 monitor - ok
23:45:23.0049 4788 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
23:45:23.0096 4788 mouclass - ok
23:45:23.0143 4788 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:45:23.0252 4788 mouhid - ok
23:45:23.0330 4788 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:45:23.0377 4788 mountmgr - ok
23:45:23.0408 4788 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
23:45:23.0470 4788 mpio - ok
23:45:23.0533 4788 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:45:23.0611 4788 mpsdrv - ok
23:45:23.0751 4788 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:45:23.0876 4788 MpsSvc - ok
23:45:23.0892 4788 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:45:23.0985 4788 MRxDAV - ok
23:45:24.0032 4788 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:45:24.0126 4788 mrxsmb - ok
23:45:24.0141 4788 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:45:24.0219 4788 mrxsmb10 - ok
23:45:24.0250 4788 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:45:24.0297 4788 mrxsmb20 - ok
23:45:24.0328 4788 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
23:45:24.0391 4788 msahci - ok
23:45:24.0406 4788 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:45:24.0469 4788 msdsm - ok
23:45:24.0516 4788 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
23:45:24.0594 4788 MSDTC - ok
23:45:24.0640 4788 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:45:24.0718 4788 Msfs - ok
23:45:24.0796 4788 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:45:24.0921 4788 mshidkmdf - ok
23:45:24.0952 4788 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:45:25.0015 4788 msisadrv - ok
23:45:25.0077 4788 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:45:25.0202 4788 MSiSCSI - ok
23:45:25.0202 4788 msiserver - ok
23:45:25.0264 4788 [ 389BC447DF363450A78845D35DBA0047 ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:45:25.0311 4788 MSK80Service - ok
23:45:25.0358 4788 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:45:25.0452 4788 MSKSSRV - ok
23:45:25.0530 4788 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:45:25.0654 4788 MSPCLOCK - ok
23:45:25.0670 4788 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:45:25.0764 4788 MSPQM - ok
23:45:25.0810 4788 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:45:25.0904 4788 MsRPC - ok
23:45:25.0935 4788 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:45:25.0982 4788 mssmbios - ok
23:45:26.0044 4788 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:45:26.0138 4788 MSTEE - ok
23:45:26.0169 4788 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:45:26.0232 4788 MTConfig - ok
23:45:26.0325 4788 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
23:45:26.0372 4788 Mup - ok
23:45:26.0497 4788 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
23:45:26.0622 4788 napagent - ok
23:45:26.0700 4788 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:45:26.0809 4788 NativeWifiP - ok
23:45:26.0949 4788 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
23:45:27.0012 4788 NDIS - ok
23:45:27.0105 4788 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:45:27.0292 4788 NdisCap - ok
23:45:27.0324 4788 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:45:27.0417 4788 NdisTapi - ok
23:45:27.0480 4788 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:45:27.0558 4788 Ndisuio - ok
23:45:27.0604 4788 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:45:27.0729 4788 NdisWan - ok
23:45:27.0776 4788 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:45:27.0901 4788 NDProxy - ok
23:45:28.0072 4788 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:45:28.0135 4788 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
23:45:28.0135 4788 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
23:45:28.0213 4788 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:45:28.0384 4788 NetBIOS - ok
23:45:28.0416 4788 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:45:28.0556 4788 NetBT - ok
23:45:28.0572 4788 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
23:45:28.0634 4788 Netlogon - ok
23:45:28.0774 4788 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
23:45:28.0884 4788 Netman - ok
23:45:28.0946 4788 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
23:45:29.0149 4788 netprofm - ok
23:45:29.0180 4788 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:45:29.0227 4788 NetTcpPortSharing - ok
23:45:30.0584 4788 [ E72F4522801FFB8F0456924FB0017BFF ] NETw1v64 C:\Windows\system32\DRIVERS\NETw1v64.sys
23:45:31.0068 4788 NETw1v64 - ok
23:45:31.0660 4788 [ 39EDE676D17F37AF4573C2B33EC28ACA ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
23:45:31.0972 4788 NETw5s64 - ok
23:45:32.0862 4788 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
23:45:33.0189 4788 netw5v64 - ok
23:45:34.0094 4788 [ FAD6C5610D020534401966CD72A1C306 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
23:45:34.0437 4788 NETwNs64 - ok
23:45:34.0546 4788 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:45:34.0593 4788 nfrd960 - ok
23:45:34.0734 4788 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:45:34.0843 4788 NlaSvc - ok
23:45:34.0890 4788 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:45:34.0968 4788 Npfs - ok
23:45:35.0030 4788 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
23:45:35.0202 4788 nsi - ok
23:45:35.0217 4788 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:45:35.0373 4788 nsiproxy - ok
23:45:35.0514 4788 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:45:35.0732 4788 Ntfs - ok
23:45:35.0810 4788 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
23:45:35.0888 4788 Null - ok
23:45:35.0966 4788 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:45:36.0028 4788 nvraid - ok
23:45:36.0091 4788 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:45:36.0122 4788 nvstor - ok
23:45:36.0153 4788 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:45:36.0216 4788 nv_agp - ok
23:45:36.0262 4788 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:45:36.0278 4788 ohci1394 - ok
23:45:36.0777 4788 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:45:36.0840 4788 ose - ok
23:45:38.0025 4788 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:45:38.0353 4788 osppsvc - ok
23:45:38.0415 4788 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:45:38.0540 4788 p2pimsvc - ok
23:45:38.0649 4788 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
23:45:38.0743 4788 p2psvc - ok
23:45:38.0805 4788 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:45:38.0868 4788 Parport - ok
23:45:38.0914 4788 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:45:38.0961 4788 partmgr - ok
23:45:39.0180 4788 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:45:39.0289 4788 PcaSvc - ok
23:45:39.0351 4788 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
23:45:39.0476 4788 pci - ok
23:45:39.0570 4788 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
23:45:39.0663 4788 pciide - ok
23:45:40.0381 4788 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:45:40.0771 4788 pcmcia - ok
23:45:40.0786 4788 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
23:45:40.0849 4788 pcw - ok
23:45:41.0192 4788 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:45:41.0379 4788 PEAUTH - ok
23:45:42.0300 4788 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:45:42.0456 4788 PerfHost - ok
23:45:42.0721 4788 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
23:45:42.0877 4788 pla - ok
23:45:43.0095 4788 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:45:43.0251 4788 PlugPlay - ok
23:45:43.0376 4788 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:45:43.0392 4788 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
23:45:43.0392 4788 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
23:45:43.0470 4788 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:45:43.0563 4788 PNRPAutoReg - ok
23:45:43.0626 4788 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:45:43.0672 4788 PNRPsvc - ok
23:45:43.0797 4788 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:45:43.0891 4788 PolicyAgent - ok
23:45:43.0922 4788 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
23:45:44.0047 4788 Power - ok
23:45:44.0140 4788 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:45:44.0281 4788 PptpMiniport - ok
23:45:44.0359 4788 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:45:45.0123 4788 Processor - ok
23:45:45.0217 4788 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
23:45:45.0513 4788 ProfSvc - ok
23:45:45.0560 4788 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:45:45.0607 4788 ProtectedStorage - ok
23:45:45.0685 4788 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:45:45.0794 4788 Psched - ok
23:45:46.0090 4788 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:45:46.0293 4788 ql2300 - ok
23:45:46.0371 4788 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:45:46.0402 4788 ql40xx - ok
23:45:46.0480 4788 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
23:45:46.0543 4788 QWAVE - ok
23:45:46.0668 4788 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:45:46.0761 4788 QWAVEdrv - ok
23:45:46.0792 4788 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:45:46.0964 4788 RasAcd - ok
23:45:47.0073 4788 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:45:47.0151 4788 RasAgileVpn - ok
23:45:47.0276 4788 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
23:45:47.0479 4788 RasAuto - ok
23:45:47.0572 4788 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:45:47.0682 4788 Rasl2tp - ok
23:45:47.0806 4788 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
23:45:47.0900 4788 RasMan - ok
23:45:47.0947 4788 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:45:48.0072 4788 RasPppoe - ok
23:45:48.0103 4788 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:45:48.0196 4788 RasSstp - ok
23:45:48.0243 4788 [ 96597C96D5ACF4A3EF0B24D396853879 ] rcmirror C:\Windows\system32\DRIVERS\rcmirror.sys
23:45:48.0430 4788 rcmirror - ok
23:45:48.0508 4788 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:45:48.0664 4788 rdbss - ok
23:45:48.0680 4788 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:45:48.0789 4788 rdpbus - ok
23:45:48.0805 4788 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:45:48.0930 4788 RDPCDD - ok
23:45:48.0976 4788 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:45:49.0086 4788 RDPENCDD - ok
23:45:49.0148 4788 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:45:49.0226 4788 RDPREFMP - ok
23:45:49.0273 4788 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:45:49.0351 4788 RDPWD - ok
23:45:49.0398 4788 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:45:49.0460 4788 rdyboost - ok
23:45:49.0538 4788 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:45:49.0647 4788 RemoteAccess - ok
23:45:49.0694 4788 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:45:49.0834 4788 RemoteRegistry - ok
23:45:49.0897 4788 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
23:45:49.0928 4788 Revoflt - ok
23:45:49.0959 4788 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:45:50.0068 4788 RpcEptMapper - ok
23:45:50.0115 4788 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
23:45:50.0193 4788 RpcLocator - ok
23:45:50.0240 4788 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
23:45:50.0334 4788 RpcSs - ok
23:45:50.0427 4788 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:45:50.0599 4788 rspndr - ok
23:45:50.0692 4788 RSUSBSTOR - ok
23:45:50.0755 4788 [ 91296F0B2653281B2F11E0FCE56AA427 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:45:50.0833 4788 RTL8167 - ok
23:45:50.0864 4788 RtsUIR - ok
23:45:50.0895 4788 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
23:45:50.0942 4788 SamSs - ok
23:45:50.0942 4788 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:45:51.0004 4788 sbp2port - ok
23:45:51.0036 4788 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:45:51.0129 4788 SCardSvr - ok
23:45:51.0160 4788 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:45:51.0285 4788 scfilter - ok
23:45:51.0394 4788 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
23:45:51.0519 4788 Schedule - ok
23:45:51.0613 4788 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:45:51.0691 4788 SCPolicySvc - ok
23:45:51.0753 4788 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
23:45:51.0831 4788 sdbus - ok
23:45:51.0862 4788 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:45:52.0050 4788 SDRSVC - ok
23:45:52.0096 4788 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:45:52.0206 4788 secdrv - ok
23:45:52.0252 4788 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
23:45:52.0330 4788 seclogon - ok
23:45:52.0362 4788 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
23:45:52.0486 4788 SENS - ok
23:45:52.0518 4788 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:45:52.0642 4788 SensrSvc - ok
23:45:52.0705 4788 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:45:52.0767 4788 Serenum - ok
23:45:52.0798 4788 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:45:52.0845 4788 Serial - ok
23:45:52.0923 4788 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:45:52.0986 4788 sermouse - ok
23:45:53.0048 4788 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
23:45:53.0157 4788 SessionEnv - ok
23:45:53.0173 4788 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:45:53.0266 4788 sffdisk - ok
23:45:53.0344 4788 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:45:53.0422 4788 sffp_mmc - ok
23:45:53.0469 4788 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:45:53.0547 4788 sffp_sd - ok
23:45:53.0641 4788 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:45:53.0688 4788 sfloppy - ok
23:45:53.0766 4788 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:45:53.0859 4788 SharedAccess - ok
23:45:53.0906 4788 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:45:54.0015 4788 ShellHWDetection - ok
23:45:54.0078 4788 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:45:54.0140 4788 SiSRaid2 - ok
23:45:54.0156 4788 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:45:54.0202 4788 SiSRaid4 - ok
23:45:54.0327 4788 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:45:54.0358 4788 SkypeUpdate - ok
23:45:54.0421 4788 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:45:54.0514 4788 Smb - ok
23:45:54.0561 4788 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:45:54.0670 4788 SNMPTRAP - ok
23:45:54.0702 4788 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
23:45:54.0748 4788 spldr - ok
23:45:54.0842 4788 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
23:45:54.0904 4788 Spooler - ok
23:45:55.0248 4788 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
23:45:55.0419 4788 sppsvc - ok
23:45:55.0497 4788 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:45:55.0684 4788 sppuinotify - ok
23:45:55.0747 4788 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
23:45:55.0840 4788 srv - ok
23:45:55.0934 4788 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:45:55.0981 4788 srv2 - ok
23:45:56.0043 4788 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
23:45:56.0152 4788 SrvHsfHDA - ok
23:45:56.0293 4788 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
23:45:56.0511 4788 SrvHsfV92 - ok
23:45:56.0620 4788 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
23:45:56.0714 4788 SrvHsfWinac - ok
23:45:56.0761 4788 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:45:56.0808 4788 srvnet - ok
23:45:56.0855 4788 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:45:56.0964 4788 SSDPSRV - ok
23:45:57.0026 4788 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:45:57.0104 4788 SstpSvc - ok
23:45:57.0338 4788 [ 6CD0118F9663045E5F5EE9C83F06DDB7 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
23:45:57.0588 4788 STacSV - ok
23:45:57.0635 4788 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:45:57.0681 4788 stexstor - ok
23:45:57.0775 4788 [ 4626777CA516512F6BB4D0166FBC6666 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
23:45:57.0822 4788 STHDA - ok
23:45:57.0869 4788 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
23:45:57.0962 4788 StillCam - ok
23:45:58.0071 4788 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
23:45:58.0165 4788 stisvc - ok
23:45:58.0243 4788 [ 85BF0B7CE3D9B6D1611E05872E1C3E56 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
23:45:58.0274 4788 SWDUMon - ok
23:45:58.0337 4788 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
23:45:58.0368 4788 swenum - ok
23:45:58.0446 4788 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
23:45:58.0571 4788 swprv - ok
23:45:58.0680 4788 [ 3A706A967295E16511E40842B1A2761D ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
23:45:58.0727 4788 SynTP - ok
23:45:58.0992 4788 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
23:45:59.0101 4788 SysMain - ok
23:45:59.0163 4788 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:45:59.0241 4788 TabletInputService - ok
23:45:59.0304 4788 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
23:45:59.0413 4788 TapiSrv - ok
23:45:59.0444 4788 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
23:45:59.0538 4788 TBS - ok
23:46:00.0021 4788 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:46:00.0255 4788 Tcpip - ok
23:46:00.0411 4788 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:46:00.0489 4788 TCPIP6 - ok
23:46:00.0552 4788 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:46:00.0614 4788 tcpipreg - ok
23:46:00.0692 4788 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:46:00.0786 4788 TDPIPE - ok
23:46:00.0801 4788 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:46:00.0864 4788 TDTCP - ok
23:46:00.0879 4788 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:46:01.0004 4788 tdx - ok
23:46:01.0051 4788 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
23:46:01.0098 4788 TermDD - ok
23:46:01.0160 4788 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
23:46:01.0301 4788 TermService - ok
23:46:01.0379 4788 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
23:46:01.0425 4788 Themes - ok
23:46:01.0519 4788 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
23:46:01.0613 4788 THREADORDER - ok
23:46:01.0644 4788 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
23:46:01.0722 4788 TrkWks - ok
23:46:01.0847 4788 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:46:01.0956 4788 TrustedInstaller - ok
23:46:02.0018 4788 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:46:02.0127 4788 tssecsrv - ok
23:46:02.0159 4788 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:46:02.0252 4788 TsUsbFlt - ok
23:46:02.0377 4788 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:46:02.0471 4788 tunnel - ok
23:46:02.0736 4788 [ 3048A48D730C2C905897A0A25AE8822D ] TVCapSvc c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
23:46:02.0767 4788 TVCapSvc - ok
23:46:02.0845 4788 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:46:02.0907 4788 uagp35 - ok
23:46:02.0970 4788 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:46:03.0063 4788 udfs - ok
23:46:03.0110 4788 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:46:03.0173 4788 UI0Detect - ok
23:46:03.0173 4788 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:46:03.0235 4788 uliagpkx - ok
23:46:03.0266 4788 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:46:03.0344 4788 umbus - ok
23:46:03.0360 4788 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:46:03.0438 4788 UmPass - ok
23:46:03.0485 4788 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
23:46:03.0609 4788 upnphost - ok
23:46:03.0687 4788 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
23:46:03.0765 4788 usbaudio - ok
23:46:03.0781 4788 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:46:03.0890 4788 usbccgp - ok
23:46:03.0890 4788 USBCCID - ok
23:46:03.0937 4788 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:46:03.0999 4788 usbcir - ok
23:46:04.0015 4788 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
23:46:04.0077 4788 usbehci - ok
23:46:04.0187 4788 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:46:04.0265 4788 usbhub - ok
23:46:04.0296 4788 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:46:04.0405 4788 usbohci - ok
23:46:04.0436 4788 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:46:04.0545 4788 usbprint - ok
23:46:04.0592 4788 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
23:46:04.0670 4788 usbscan - ok
23:46:04.0701 4788 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:46:04.0811 4788 USBSTOR - ok
23:46:04.0826 4788 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
23:46:04.0873 4788 usbuhci - ok
23:46:04.0889 4788 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:46:04.0951 4788 usbvideo - ok
23:46:04.0982 4788 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
23:46:05.0076 4788 UxSms - ok
23:46:05.0123 4788 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
23:46:05.0169 4788 VaultSvc - ok
23:46:05.0216 4788 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:46:05.0279 4788 vdrvroot - ok
23:46:05.0435 4788 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
23:46:05.0544 4788 vds - ok
23:46:05.0606 4788 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:46:05.0669 4788 vga - ok
23:46:05.0747 4788 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
23:46:05.0871 4788 VgaSave - ok
23:46:05.0903 4788 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:46:05.0965 4788 vhdmp - ok
23:46:06.0027 4788 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
23:46:06.0090 4788 viaide - ok
23:46:06.0137 4788 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:46:06.0199 4788 volmgr - ok
23:46:06.0230 4788 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:46:06.0277 4788 volmgrx - ok
23:46:06.0324 4788 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:46:06.0449 4788 volsnap - ok
23:46:06.0480 4788 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:46:06.0542 4788 vsmraid - ok
23:46:06.0948 4788 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
23:46:07.0088 4788 VSS - ok
23:46:07.0385 4788 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
23:46:07.0431 4788 vToolbarUpdater13.2.0 - ok
23:46:07.0509 4788 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:46:07.0572 4788 vwifibus - ok
23:46:07.0619 4788 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:46:07.0712 4788 VWiFiFlt - ok
23:46:07.0899 4788 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
23:46:07.0946 4788 vwifimp - ok
23:46:07.0993 4788 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
23:46:08.0087 4788 W32Time - ok
23:46:08.0133 4788 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:46:08.0180 4788 WacomPen - ok
23:46:08.0352 4788 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:46:08.0477 4788 WANARP - ok
23:46:08.0508 4788 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:46:08.0586 4788 Wanarpv6 - ok
23:46:08.0820 4788 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:46:08.0945 4788 WatAdminSvc - ok
23:46:09.0225 4788 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
23:46:09.0350 4788 wbengine - ok
23:46:09.0397 4788 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:46:09.0459 4788 WbioSrvc - ok
23:46:09.0506 4788 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:46:09.0584 4788 wcncsvc - ok
23:46:09.0631 4788 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:46:09.0803 4788 WcsPlugInService - ok
23:46:09.0849 4788 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:46:09.0927 4788 Wd - ok
23:46:10.0208 4788 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:46:10.0286 4788 Wdf01000 - ok
23:46:10.0380 4788 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:46:11.0082 4788 WdiServiceHost - ok
23:46:11.0175 4788 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:46:11.0222 4788 WdiSystemHost - ok
23:46:11.0316 4788 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
23:46:11.0409 4788 WebClient - ok
23:46:11.0472 4788 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:46:11.0581 4788 Wecsvc - ok
23:46:11.0643 4788 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:46:11.0737 4788 wercplsupport - ok
23:46:11.0815 4788 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
23:46:11.0940 4788 WerSvc - ok
23:46:12.0080 4788 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:46:12.0158 4788 WfpLwf - ok
23:46:12.0189 4788 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:46:12.0236 4788 WIMMount - ok
23:46:12.0299 4788 WinDefend - ok
23:46:12.0299 4788 WinHttpAutoProxySvc - ok
23:46:12.0533 4788 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:46:12.0673 4788 Winmgmt - ok
23:46:12.0969 4788 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
23:46:13.0125 4788 WinRM - ok
23:46:13.0344 4788 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:46:13.0453 4788 WinUsb - ok
23:46:13.0671 4788 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
23:46:13.0749 4788 Wlansvc - ok
23:46:13.0921 4788 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:46:13.0968 4788 wlcrasvc - ok
23:46:14.0545 4788 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:46:14.0639 4788 wlidsvc - ok
23:46:14.0857 4788 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:46:14.0935 4788 WmiAcpi - ok
23:46:14.0997 4788 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:46:15.0075 4788 wmiApSrv - ok
23:46:15.0138 4788 WMPNetworkSvc - ok
23:46:15.0185 4788 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:46:15.0247 4788 WPCSvc - ok
23:46:15.0325 4788 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:46:15.0372 4788 WPDBusEnum - ok
23:46:15.0434 4788 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:46:15.0621 4788 ws2ifsl - ok
23:46:15.0668 4788 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
23:46:15.0746 4788 wscsvc - ok
23:46:15.0933 4788 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
23:46:15.0996 4788 WSDPrintDevice - ok
23:46:16.0027 4788 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
23:46:16.0089 4788 WSDScan - ok
23:46:16.0089 4788 WSearch - ok
23:46:16.0370 4788 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
23:46:16.0495 4788 wuauserv - ok
23:46:16.0542 4788 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:46:16.0635 4788 WudfPf - ok
23:46:16.0713 4788 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:46:16.0760 4788 WUDFRd - ok
23:46:16.0854 4788 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:46:16.0947 4788 wudfsvc - ok
23:46:16.0994 4788 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
23:46:17.0072 4788 WwanSvc - ok
23:46:17.0135 4788 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
23:46:17.0306 4788 yukonw7 - ok
23:46:17.0369 4788 [ 741D9BBFE2A392031157A39D921CE052 ] zghsdiag C:\Windows\system32\DRIVERS\zghsdiag.sys
23:46:17.0509 4788 zghsdiag - ok
23:46:17.0587 4788 [ 741D9BBFE2A392031157A39D921CE052 ] zghsmdm C:\Windows\system32\DRIVERS\zghsmdm.sys
23:46:17.0634 4788 zghsmdm - ok
23:46:17.0743 4788 [ 741D9BBFE2A392031157A39D921CE052 ] zghsnmea C:\Windows\system32\DRIVERS\zghsnmea.sys
23:46:17.0805 4788 zghsnmea - ok
23:46:17.0852 4788 ================ Scan global ===============================
23:46:17.0930 4788 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:46:18.0039 4788 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
23:46:18.0086 4788 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
23:46:18.0149 4788 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:46:18.0273 4788 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:46:18.0289 4788 [Global] - ok
23:46:18.0289 4788 ================ Scan MBR ==================================
23:46:18.0305 4788 [ 775BA290D665A2E7E22923D1AF9171FA ] \Device\Harddisk0\DR0
23:46:18.0305 4788 Suspicious mbr (Forged): \Device\Harddisk0\DR0
23:46:19.0069 4788 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
23:46:19.0069 4788 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0)
23:46:19.0303 4788 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
23:46:19.0303 4788 \Device\Harddisk0\DR0 - detected TDSS File System (1)
23:46:19.0303 4788 ================ Scan VBR ==================================
23:46:19.0319 4788 [ BFC6EC5A4925C5D17A2335A3A4919792 ] \Device\Harddisk0\DR0\Partition1
23:46:19.0319 4788 \Device\Harddisk0\DR0\Partition1 - ok
23:46:19.0365 4788 [ 48D19DA73CE8384FBFDB605E19329507 ] \Device\Harddisk0\DR0\Partition2
23:46:19.0365 4788 \Device\Harddisk0\DR0\Partition2 - ok
23:46:19.0506 4788 [ 7CB748F60EE6E5374ECD0FAD09074376 ] \Device\Harddisk0\DR0\Partition3
23:46:19.0521 4788 \Device\Harddisk0\DR0\Partition3 - ok
23:46:19.0521 4788 ================ Scan active images ========================
23:46:19.0521 4788 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
23:46:19.0521 4788 C:\Windows\System32\drivers\crashdmp.sys - ok
23:46:19.0521 4788 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
23:46:19.0537 4788 C:\Windows\System32\drivers\iaStor.sys - ok
23:46:19.0537 4788 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
23:46:19.0537 4788 C:\Windows\System32\drivers\dumpfve.sys - ok
23:46:19.0553 4788 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
23:46:19.0553 4788 C:\Windows\System32\drivers\cdrom.sys - ok
23:46:19.0553 4788 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] C:\Windows\System32\drivers\MOBK.sys
23:46:19.0553 4788 C:\Windows\System32\drivers\MOBK.sys - ok
23:46:19.0568 4788 [ 371428CF0F71934CB0F2344823ADFA32 ] C:\Windows\System32\drivers\avgtpx64.sys
23:46:19.0568 4788 C:\Windows\System32\drivers\avgtpx64.sys - ok
23:46:19.0568 4788 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
23:46:19.0568 4788 C:\Windows\System32\drivers\beep.sys - ok
23:46:19.0584 4788 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
23:46:19.0584 4788 C:\Windows\System32\drivers\null.sys - ok
23:46:19.0584 4788 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
23:46:19.0584 4788 C:\Windows\System32\drivers\RDPCDD.sys - ok
23:46:19.0599 4788 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
23:46:19.0599 4788 C:\Windows\System32\drivers\RDPENCDD.sys - ok
23:46:19.0599 4788 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
23:46:19.0599 4788 C:\Windows\System32\drivers\vga.sys - ok
23:46:19.0615 4788 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
23:46:19.0615 4788 C:\Windows\System32\drivers\videoprt.sys - ok
23:46:19.0631 4788 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
23:46:19.0631 4788 C:\Windows\System32\drivers\watchdog.sys - ok
23:46:19.0631 4788 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
23:46:19.0631 4788 C:\Windows\System32\drivers\msfs.sys - ok
23:46:19.0646 4788 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
23:46:19.0646 4788 C:\Windows\System32\drivers\npfs.sys - ok
23:46:19.0646 4788 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
23:46:19.0646 4788 C:\Windows\System32\drivers\RDPREFMP.sys - ok
23:46:19.0662 4788 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
23:46:19.0662 4788 C:\Windows\System32\drivers\netbt.sys - ok
23:46:19.0662 4788 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
23:46:19.0662 4788 C:\Windows\System32\drivers\tdi.sys - ok
23:46:19.0677 4788 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
23:46:19.0677 4788 C:\Windows\System32\drivers\tdx.sys - ok
23:46:19.0677 4788 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
23:46:19.0677 4788 C:\Windows\System32\drivers\afd.sys - ok
23:46:19.0693 4788 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
23:46:19.0693 4788 C:\Windows\System32\drivers\wfplwf.sys - ok
23:46:19.0709 4788 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
23:46:19.0709 4788 C:\Windows\System32\drivers\pacer.sys - ok
23:46:19.0709 4788 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
23:46:19.0709 4788 C:\Windows\System32\drivers\vwififlt.sys - ok
23:46:19.0724 4788 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
23:46:19.0724 4788 C:\Windows\System32\drivers\netbios.sys - ok
23:46:19.0724 4788 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
23:46:19.0724 4788 C:\Windows\System32\drivers\serial.sys - ok
23:46:19.0740 4788 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
23:46:19.0740 4788 C:\Windows\System32\drivers\termdd.sys - ok
23:46:19.0740 4788 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
23:46:19.0740 4788 C:\Windows\System32\drivers\wanarp.sys - ok
23:46:19.0755 4788 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
23:46:19.0755 4788 C:\Windows\System32\drivers\nsiproxy.sys - ok
23:46:19.0755 4788 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
23:46:19.0755 4788 C:\Windows\System32\drivers\rdbss.sys - ok
23:46:19.0771 4788 [ D38A883309E04B9FBFFE1ACA60EA3BBF ] C:\Windows\System32\drivers\elrawdsk.sys
23:46:19.0771 4788 C:\Windows\System32\drivers\elrawdsk.sys - ok
23:46:19.0771 4788 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
23:46:19.0771 4788 C:\Windows\System32\drivers\mssmbios.sys - ok
23:46:19.0787 4788 [ 0DB5A749ACD8E66091736F88C40207BD ] C:\Windows\System32\drivers\avgmfx64.sys
23:46:19.0787 4788 C:\Windows\System32\drivers\avgmfx64.sys - ok
23:46:19.0787 4788 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
23:46:19.0787 4788 C:\Windows\System32\drivers\blbdrive.sys - ok
23:46:19.0802 4788 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
23:46:19.0802 4788 C:\Windows\System32\drivers\dfsc.sys - ok
23:46:19.0818 4788 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
23:46:19.0818 4788 C:\Windows\System32\drivers\discache.sys - ok
23:46:19.0818 4788 [ B447DB072BF939DB9E07BEF2ADF4ECBD ] C:\Windows\System32\drivers\avgldx64.sys
23:46:19.0818 4788 C:\Windows\System32\drivers\avgldx64.sys - ok
23:46:19.0833 4788 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
23:46:19.0833 4788 C:\Windows\System32\drivers\CmBatt.sys - ok
23:46:19.0833 4788 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
23:46:19.0833 4788 C:\Windows\System32\drivers\intelppm.sys - ok
23:46:19.0849 4788 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
23:46:19.0849 4788 C:\Windows\System32\drivers\tunnel.sys - ok
23:46:19.0849 4788 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
23:46:19.0849 4788 C:\Windows\System32\ntdll.dll - ok
23:46:19.0865 4788 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
23:46:19.0865 4788 C:\Windows\System32\smss.exe - ok
23:46:19.0865 4788 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
23:46:19.0865 4788 C:\Windows\System32\autochk.exe - ok
23:46:19.0880 4788 [ F59AC361DFE9BFD9BE81E20B04EADAA2 ] C:\Windows\System32\drivers\igdkmd64.sys
23:46:19.0880 4788 C:\Windows\System32\drivers\igdkmd64.sys - ok
23:46:19.0880 4788 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
23:46:19.0880 4788 C:\Windows\System32\drivers\dxgkrnl.sys - ok
23:46:19.0896 4788 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
23:46:19.0896 4788 C:\Windows\System32\drivers\dxgmms1.sys - ok
23:46:19.0911 4788 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
23:46:19.0911 4788 C:\Windows\System32\drivers\hdaudbus.sys - ok
23:46:19.0911 4788 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
23:46:19.0911 4788 C:\Windows\System32\drivers\usbehci.sys - ok
23:46:19.0927 4788 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
23:46:19.0927 4788 C:\Windows\System32\drivers\usbport.sys - ok
23:46:19.0927 4788 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
23:46:19.0927 4788 C:\Windows\System32\drivers\usbuhci.sys - ok
23:46:19.0943 4788 [ FAD6C5610D020534401966CD72A1C306 ] C:\Windows\System32\drivers\Netwsw00.sys
23:46:19.0943 4788 C:\Windows\System32\drivers\Netwsw00.sys - ok
23:46:19.0943 4788 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
23:46:19.0943 4788 C:\Windows\System32\drivers\vwifibus.sys - ok
23:46:19.0958 4788 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
23:46:19.0958 4788 C:\Windows\System32\drivers\i8042prt.sys - ok
23:46:19.0958 4788 [ 91296F0B2653281B2F11E0FCE56AA427 ] C:\Windows\System32\drivers\Rt64win7.sys
23:46:19.0958 4788 C:\Windows\System32\drivers\Rt64win7.sys - ok
23:46:19.0974 4788 [ 9AF482D058BE59CC28BCE52E7C4B747C ] C:\Windows\System32\drivers\HpqKbFiltr.sys
23:46:19.0974 4788 C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
23:46:19.0974 4788 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
23:46:19.0974 4788 C:\Windows\System32\drivers\kbdclass.sys - ok
23:46:19.0989 4788 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
23:46:19.0989 4788 C:\Windows\System32\drivers\mouclass.sys - ok
23:46:19.0989 4788 [ 3A706A967295E16511E40842B1A2761D ] C:\Windows\System32\drivers\SynTP.sys
23:46:19.0989 4788 C:\Windows\System32\drivers\SynTP.sys - ok
23:46:20.0005 4788 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
23:46:20.0005 4788 C:\Windows\System32\drivers\usbd.sys - ok
23:46:20.0021 4788 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
23:46:20.0021 4788 C:\Windows\System32\shlwapi.dll - ok
23:46:20.0021 4788 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
23:46:20.0021 4788 C:\Windows\System32\iertutil.dll - ok
23:46:20.0036 4788 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
23:46:20.0036 4788 C:\Windows\System32\gdi32.dll - ok
23:46:20.0036 4788 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
23:46:20.0036 4788 C:\Windows\System32\lpk.dll - ok
23:46:20.0052 4788 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
23:46:20.0052 4788 C:\Windows\System32\advapi32.dll - ok
23:46:20.0052 4788 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
23:46:20.0052 4788 C:\Windows\System32\user32.dll - ok
23:46:20.0067 4788 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
23:46:20.0067 4788 C:\Windows\System32\msctf.dll - ok
23:46:20.0067 4788 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
23:46:20.0067 4788 C:\Windows\System32\sechost.dll - ok
23:46:20.0083 4788 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
23:46:20.0083 4788 C:\Windows\System32\setupapi.dll - ok
23:46:20.0083 4788 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
23:46:20.0083 4788 C:\Windows\System32\usp10.dll - ok
23:46:20.0099 4788 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
23:46:20.0099 4788 C:\Windows\System32\difxapi.dll - ok
23:46:20.0099 4788 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
23:46:20.0114 4788 C:\Windows\System32\ws2_32.dll - ok
23:46:20.0114 4788 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
23:46:20.0114 4788 C:\Windows\System32\shell32.dll - ok
23:46:20.0130 4788 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
23:46:20.0130 4788 C:\Windows\System32\ole32.dll - ok
23:46:20.0130 4788 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
23:46:20.0130 4788 C:\Windows\System32\comdlg32.dll - ok
23:46:20.0145 4788 [ 3E2427D4966C7606097341E55AB4E105 ] C:\Windows\System32\drivers\Accelerometer.sys
23:46:20.0145 4788 C:\Windows\System32\drivers\Accelerometer.sys - ok
23:46:20.0145 4788 [ 524C79054636D2E5751169005006460B ] C:\Windows\System32\drivers\enecir.sys
23:46:20.0145 4788 C:\Windows\System32\drivers\enecir.sys - ok
23:46:20.0161 4788 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
23:46:20.0161 4788 C:\Windows\System32\drivers\wmiacpi.sys - ok
23:46:20.0161 4788 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
23:46:20.0161 4788 C:\Windows\System32\normaliz.dll - ok
23:46:20.0177 4788 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
23:46:20.0177 4788 C:\Windows\System32\nsi.dll - ok
23:46:20.0192 4788 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
23:46:20.0192 4788 C:\Windows\System32\clbcatq.dll - ok
23:46:20.0192 4788 [ 157B1C973637919DCD0D0464167C86BA ] C:\Windows\System32\drivers\AmpPal.sys
23:46:20.0192 4788 C:\Windows\System32\drivers\AmpPal.sys - ok
23:46:20.0208 4788 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
23:46:20.0208 4788 C:\Windows\System32\imagehlp.dll - ok
23:46:20.0208 4788 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
23:46:20.0208 4788 C:\Windows\System32\urlmon.dll - ok
23:46:20.0223 4788 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
23:46:20.0223 4788 C:\Windows\System32\imm32.dll - ok
23:46:20.0223 4788 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
23:46:20.0223 4788 C:\Windows\System32\psapi.dll - ok
23:46:20.0239 4788 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
23:46:20.0239 4788 C:\Windows\System32\wininet.dll - ok
23:46:20.0239 4788 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
23:46:20.0239 4788 C:\Windows\System32\msvcrt.dll - ok
23:46:20.0255 4788 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
23:46:20.0255 4788 C:\Windows\System32\rpcrt4.dll - ok
23:46:20.0255 4788 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
23:46:20.0255 4788 C:\Windows\System32\drivers\agilevpn.sys - ok
23:46:20.0270 4788 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
23:46:20.0270 4788 C:\Windows\System32\drivers\CompositeBus.sys - ok
23:46:20.0286 4788 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
23:46:20.0286 4788 C:\Windows\System32\drivers\ndistapi.sys - ok
23:46:20.0286 4788 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
23:46:20.0286 4788 C:\Windows\System32\drivers\rasl2tp.sys - ok
23:46:20.0301 4788 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
23:46:20.0301 4788 C:\Windows\System32\kernel32.dll - ok
23:46:20.0301 4788 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
23:46:20.0301 4788 C:\Windows\System32\drivers\ndiswan.sys - ok
23:46:20.0317 4788 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
23:46:20.0317 4788 C:\Windows\System32\drivers\raspppoe.sys - ok
23:46:20.0317 4788 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
23:46:20.0317 4788 C:\Windows\System32\drivers\raspptp.sys - ok
23:46:20.0333 4788 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
23:46:20.0333 4788 C:\Windows\System32\drivers\ks.sys - ok
23:46:20.0348 4788 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
23:46:20.0348 4788 C:\Windows\System32\drivers\rassstp.sys - ok
23:46:20.0348 4788 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
23:46:20.0348 4788 C:\Windows\System32\drivers\swenum.sys - ok
23:46:20.0364 4788 [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys
23:46:20.0364 4788 C:\Windows\System32\drivers\circlass.sys - ok
23:46:20.0364 4788 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
23:46:20.0364 4788 C:\Windows\System32\drivers\umbus.sys - ok
23:46:20.0379 4788 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
23:46:20.0379 4788 C:\Windows\System32\Wldap32.dll - ok
23:46:20.0379 4788 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
23:46:20.0379 4788 C:\Windows\System32\oleaut32.dll - ok
23:46:20.0395 4788 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
23:46:20.0395 4788 C:\Windows\System32\wintrust.dll - ok
23:46:20.0395 4788 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
23:46:20.0395 4788 C:\Windows\System32\KernelBase.dll - ok
23:46:20.0411 4788 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
23:46:20.0411 4788 C:\Windows\System32\cfgmgr32.dll - ok
23:46:20.0426 4788 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
23:46:20.0426 4788 C:\Windows\System32\comctl32.dll - ok
23:46:20.0426 4788 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
23:46:20.0426 4788 C:\Windows\System32\crypt32.dll - ok
23:46:20.0442 4788 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
23:46:20.0442 4788 C:\Windows\System32\devobj.dll - ok
23:46:20.0442 4788 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
23:46:20.0442 4788 C:\Windows\System32\msasn1.dll - ok
23:46:20.0457 4788 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
23:46:20.0457 4788 C:\Windows\SysWOW64\normaliz.dll - ok
23:46:20.0457 4788 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
23:46:20.0457 4788 C:\Windows\System32\drivers\usbhub.sys - ok
23:46:20.0473 4788 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
23:46:20.0473 4788 C:\Windows\System32\drivers\ndproxy.sys - ok
23:46:20.0473 4788 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
23:46:20.0489 4788 C:\Windows\System32\drivers\drmk.sys - ok
23:46:20.0489 4788 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
23:46:20.0489 4788 C:\Windows\System32\drivers\portcls.sys - ok
23:46:20.0504 4788 [ 4626777CA516512F6BB4D0166FBC6666 ] C:\Windows\System32\drivers\stwrt64.sys
23:46:20.0504 4788 C:\Windows\System32\drivers\stwrt64.sys - ok
23:46:20.0520 4788 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
23:46:20.0520 4788 C:\Windows\System32\drivers\ksthunk.sys - ok
23:46:20.0535 4788 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] C:\Windows\System32\drivers\agrsm64.sys
23:46:20.0535 4788 C:\Windows\System32\drivers\agrsm64.sys - ok
23:46:20.0535 4788 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
23:46:20.0535 4788 C:\Windows\System32\drivers\modem.sys - ok
23:46:20.0551 4788 [ B014CE58F0A8048D3924BA8D5CCBC5F1 ] C:\Windows\System32\drivers\IntcHdmi.sys
23:46:20.0551 4788 C:\Windows\System32\drivers\IntcHdmi.sys - ok
23:46:20.0551 4788 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
23:46:20.0551 4788 C:\Windows\System32\drivers\hidclass.sys - ok
23:46:20.0567 4788 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] C:\Windows\System32\drivers\hidir.sys
23:46:20.0567 4788 C:\Windows\System32\drivers\hidir.sys - ok
23:46:20.0567 4788 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
23:46:20.0582 4788 C:\Windows\System32\drivers\hidparse.sys - ok
23:46:20.0582 4788 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
23:46:20.0582 4788 C:\Windows\System32\drivers\kbdhid.sys - ok
23:46:20.0598 4788 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
23:46:20.0598 4788 C:\Windows\System32\drivers\mouhid.sys - ok
23:46:20.0598 4788 [ C0EAF4F2367C44157E1DE4817238FEC2 ] C:\Windows\System32\drivers\mfeavfk.sys
23:46:20.0598 4788 C:\Windows\System32\drivers\mfeavfk.sys - ok
23:46:20.0613 4788 [ 6856931F9F5B757E9D09369CC35096B9 ] C:\Windows\System32\drivers\mfefirek.sys
23:46:20.0613 4788 C:\Windows\System32\drivers\mfefirek.sys - ok
23:46:20.0613 4788 [ 9C9FC3770BD600B2D761D666234C244D ] C:\Windows\System32\drivers\mfencbdc.sys
23:46:20.0613 4788 C:\Windows\System32\drivers\mfencbdc.sys - ok
23:46:20.0629 4788 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
23:46:20.0629 4788 C:\Windows\System32\drivers\dxapi.sys - ok
23:46:20.0629 4788 [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
23:46:20.0629 4788 C:\Windows\System32\win32k.sys - ok
23:46:20.0645 4788 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
23:46:20.0645 4788 C:\Windows\System32\csrsrv.dll - ok
23:46:20.0645 4788 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
23:46:20.0645 4788 C:\Windows\System32\csrss.exe - ok
23:46:20.0660 4788 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
23:46:20.0660 4788 C:\Windows\System32\basesrv.dll - ok
23:46:20.0676 4788 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\System32\winsrv.dll
23:46:20.0676 4788 C:\Windows\System32\winsrv.dll - ok
23:46:20.0676 4788 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
23:46:20.0676 4788 C:\Windows\System32\drivers\usbccgp.sys - ok
23:46:20.0691 4788 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
23:46:20.0691 4788 C:\Windows\System32\drivers\usbvideo.sys - ok
23:46:20.0691 4788 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
23:46:20.0691 4788 C:\Windows\System32\drivers\monitor.sys - ok
23:46:20.0707 4788 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
23:46:20.0707 4788 C:\Windows\System32\tsddd.dll - ok
23:46:20.0707 4788 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
23:46:20.0707 4788 C:\Windows\System32\sxssrv.dll - ok
23:46:20.0723 4788 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
23:46:20.0723 4788 C:\Windows\System32\wininit.exe - ok
23:46:20.0723 4788 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
23:46:20.0723 4788 C:\Windows\System32\KBDUS.DLL - ok
23:46:20.0738 4788 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
23:46:20.0738 4788 C:\Windows\System32\profapi.dll - ok
23:46:20.0754 4788 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
23:46:20.0754 4788 C:\Windows\System32\RpcRtRemote.dll - ok
23:46:20.0754 4788 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
23:46:20.0754 4788 C:\Windows\System32\cdd.dll - ok
23:46:20.0769 4788 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
23:46:20.0769 4788 C:\Windows\System32\WlS0WndH.dll - ok
23:46:20.0769 4788 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
23:46:20.0769 4788 C:\Windows\System32\sxs.dll - ok
23:46:20.0785 4788 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
23:46:20.0785 4788 C:\Windows\System32\cryptbase.dll - ok
23:46:20.0785 4788 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
23:46:20.0785 4788 C:\Windows\System32\apphelp.dll - ok
23:46:20.0801 4788 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
23:46:20.0801 4788 C:\Windows\System32\lsass.exe - ok
23:46:20.0801 4788 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
23:46:20.0801 4788 C:\Windows\System32\lsm.exe - ok
23:46:20.0816 4788 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
23:46:20.0816 4788 C:\Windows\System32\services.exe - ok
23:46:20.0816 4788 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
23:46:20.0816 4788 C:\Windows\System32\lsasrv.dll - ok
23:46:20.0832 4788 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
23:46:20.0832 4788 C:\Windows\System32\sspicli.dll - ok
23:46:20.0832 4788 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
23:46:20.0832 4788 C:\Windows\System32\sspisrv.dll - ok
23:46:20.0847 4788 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
23:46:20.0847 4788 C:\Windows\System32\sysntfy.dll - ok
23:46:20.0847 4788 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
23:46:20.0847 4788 C:\Windows\System32\wmsgapi.dll - ok
23:46:20.0863 4788 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
23:46:20.0863 4788 C:\Windows\System32\samsrv.dll - ok
23:46:20.0863 4788 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
23:46:20.0863 4788 C:\Windows\System32\scesrv.dll - ok
23:46:20.0879 4788 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
23:46:20.0879 4788 C:\Windows\System32\scext.dll - ok
23:46:20.0879 4788 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
23:46:20.0879 4788 C:\Windows\System32\secur32.dll - ok
23:46:20.0894 4788 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
23:46:20.0894 4788 C:\Windows\System32\srvcli.dll - ok
23:46:20.0910 4788 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
23:46:20.0910 4788 C:\Windows\System32\aelupsvc.dll - ok
23:46:20.0910 4788 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
23:46:20.0910 4788 C:\Windows\System32\cryptdll.dll - ok
23:46:20.0925 4788 [ 3290D6946B5E30E70414990574883DDB ] C:\Windows\System32\alg.exe
23:46:20.0925 4788 C:\Windows\System32\alg.exe - ok
23:46:20.0925 4788 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
23:46:20.0925 4788 C:\Windows\System32\wevtapi.dll - ok
23:46:20.0941 4788 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
23:46:20.0941 4788 C:\Windows\System32\authz.dll - ok
23:46:20.0941 4788 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
23:46:20.0941 4788 C:\Windows\System32\cngaudit.dll - ok
23:46:20.0957 4788 [ 0BC381A15355A3982216F7172F545DE1 ] C:\Windows\System32\appidsvc.dll
23:46:20.0957 4788 C:\Windows\System32\appidsvc.dll - ok
23:46:20.0957 4788 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
23:46:20.0957 4788 C:\Windows\System32\ncrypt.dll - ok
23:46:20.0972 4788 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
23:46:20.0972 4788 C:\Windows\System32\appinfo.dll - ok
23:46:20.0988 4788 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
23:46:20.0988 4788 C:\Windows\System32\bcrypt.dll - ok
23:46:20.0988 4788 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
23:46:20.0988 4788 C:\Windows\System32\msprivs.dll - ok
23:46:21.0003 4788 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
23:46:21.0003 4788 C:\Windows\System32\rascfg.dll - ok
23:46:21.0003 4788 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
23:46:21.0003 4788 C:\Windows\System32\atmfd.dll - ok
23:46:21.0019 4788 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
23:46:21.0019 4788 C:\Windows\System32\audiosrv.dll - ok
23:46:21.0019 4788 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
23:46:21.0019 4788 C:\Windows\System32\netjoin.dll - ok
23:46:21.0035 4788 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
23:46:21.0035 4788 C:\Windows\System32\negoexts.dll - ok
23:46:21.0035 4788 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
23:46:21.0035 4788 C:\Windows\System32\kerberos.dll - ok
23:46:21.0050 4788 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] C:\Windows\System32\AxInstSv.dll
23:46:21.0050 4788 C:\Windows\System32\AxInstSv.dll - ok
23:46:21.0050 4788 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
23:46:21.0050 4788 C:\Windows\System32\cryptsp.dll - ok
23:46:21.0066 4788 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
23:46:21.0066 4788 C:\Windows\System32\mswsock.dll - ok
23:46:21.0066 4788 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
23:46:21.0066 4788 C:\Windows\System32\msv1_0.dll - ok
23:46:21.0081 4788 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
23:46:21.0081 4788 C:\Windows\System32\wship6.dll - ok
23:46:21.0081 4788 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
23:46:21.0081 4788 C:\Windows\System32\netlogon.dll - ok
23:46:21.0097 4788 [ FDE360167101B4E45A96F939F388AEB0 ] C:\Windows\System32\bdesvc.dll
23:46:21.0097 4788 C:\Windows\System32\bdesvc.dll - ok
23:46:21.0097 4788 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
23:46:21.0097 4788 C:\Windows\System32\BFE.DLL - ok
23:46:21.0113 4788 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
23:46:21.0113 4788 C:\Windows\System32\qmgr.dll - ok
23:46:21.0113 4788 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
23:46:21.0113 4788 C:\Windows\System32\winlogon.exe - ok
23:46:21.0128 4788 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
23:46:21.0128 4788 C:\Windows\System32\dnsapi.dll - ok
23:46:21.0144 4788 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
23:46:21.0144 4788 C:\Windows\System32\winsta.dll - ok
23:46:21.0144 4788 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
23:46:21.0144 4788 C:\Windows\System32\logoncli.dll - ok
23:46:21.0159 4788 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
23:46:21.0159 4788 C:\Windows\System32\schannel.dll - ok
23:46:21.0159 4788 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
23:46:21.0159 4788 C:\Windows\System32\browser.dll - ok
23:46:21.0175 4788 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
23:46:21.0175 4788 C:\Windows\System32\wdigest.dll - ok
23:46:21.0175 4788 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
23:46:21.0175 4788 C:\Windows\System32\bthserv.dll - ok
23:46:21.0191 4788 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
23:46:21.0191 4788 C:\Windows\System32\rsaenh.dll - ok
23:46:21.0191 4788 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
23:46:21.0191 4788 C:\Windows\System32\TSpkg.dll - ok
23:46:21.0206 4788 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
23:46:21.0206 4788 C:\Windows\System32\pku2u.dll - ok
23:46:21.0222 4788 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
23:46:21.0222 4788 C:\Windows\System32\LIVESSP.DLL - ok
23:46:21.0222 4788 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
23:46:21.0222 4788 C:\Windows\System32\bcryptprimitives.dll - ok
23:46:21.0237 4788 [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
23:46:21.0237 4788 C:\Windows\System32\certprop.dll - ok
23:46:21.0237 4788 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
23:46:21.0237 4788 C:\Windows\System32\credssp.dll - ok
23:46:21.0253 4788 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
23:46:21.0253 4788 C:\Windows\System32\efslsaext.dll - ok
23:46:21.0253 4788 [ FE1EC06F2253F691FE36217C592A0206 ] C:\Windows\System32\clfs.sys
23:46:21.0253 4788 C:\Windows\System32\clfs.sys - ok
23:46:21.0269 4788 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
23:46:21.0269 4788 C:\Windows\System32\scecli.dll - ok
23:46:21.0269 4788 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
23:46:21.0269 4788 C:\Windows\System32\comres.dll - ok
23:46:21.0269 4788 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
23:46:21.0269 4788 C:\Windows\System32\cryptsvc.dll - ok
23:46:21.0284 4788 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
23:46:21.0284 4788 C:\Windows\System32\oleres.dll - ok
23:46:21.0300 4788 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] C:\Windows\System32\defragsvc.dll
23:46:21.0300 4788 C:\Windows\System32\defragsvc.dll - ok
23:46:21.0300 4788 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
23:46:21.0300 4788 C:\Windows\System32\dhcpcore.dll - ok
23:46:21.0315 4788 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] C:\Windows\System32\dot3svc.dll
23:46:21.0315 4788 C:\Windows\System32\dot3svc.dll - ok
23:46:21.0315 4788 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
23:46:21.0315 4788 C:\Windows\System32\dps.dll - ok
23:46:21.0331 4788 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
23:46:21.0331 4788 C:\Windows\System32\eapsvc.dll - ok
23:46:21.0331 4788 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
23:46:21.0331 4788 C:\Windows\System32\efssvc.dll - ok
23:46:21.0347 4788 [ C4002B6B41975F057D98C439030CEA07 ] C:\Windows\ehome\ehrecvr.exe
23:46:21.0347 4788 C:\Windows\ehome\ehrecvr.exe - ok
23:46:21.0347 4788 [ 4705E8EF9934482C5BB488CE28AFC681 ] C:\Windows\ehome\ehsched.exe
23:46:21.0347 4788 C:\Windows\ehome\ehsched.exe - ok
23:46:21.0347 4788 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
23:46:21.0347 4788 C:\Windows\System32\wevtsvc.dll - ok
23:46:21.0362 4788 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
23:46:21.0362 4788 C:\Windows\System32\FXSRESM.dll - ok
23:46:21.0362 4788 [ 655661BE46B5F5F3FD454E2C3095B930 ] C:\Windows\System32\drivers\fileinfo.sys
23:46:21.0362 4788 C:\Windows\System32\drivers\fileinfo.sys - ok
23:46:21.0378 4788 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
23:46:21.0378 4788 C:\Windows\System32\fdPHost.dll - ok
23:46:21.0378 4788 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
23:46:21.0378 4788 C:\Windows\System32\FDResPub.dll - ok
23:46:21.0393 4788 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] C:\Windows\System32\drivers\filetrace.sys
23:46:21.0393 4788 C:\Windows\System32\drivers\filetrace.sys - ok
23:46:21.0393 4788 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
23:46:21.0393 4788 C:\Windows\System32\drivers\fltMgr.sys - ok
23:46:21.0409 4788 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
23:46:21.0409 4788 C:\Windows\System32\FntCache.dll - ok
23:46:21.0409 4788 [ 8A1846C0817513AD18BA48B4427771FC ] C:\Windows\System32\PresentationHost.exe
23:46:21.0409 4788 C:\Windows\System32\PresentationHost.exe - ok
23:46:21.0409 4788 [ D43703496149971890703B4B1B723EAC ] C:\Windows\System32\drivers\fsdepends.sys
23:46:21.0409 4788 C:\Windows\System32\drivers\fsdepends.sys - ok
23:46:21.0425 4788 [ 1F7B25B858FA27015169FE95E54108ED ] C:\Windows\System32\drivers\fvevol.sys
23:46:21.0425 4788 C:\Windows\System32\drivers\fvevol.sys - ok
23:46:21.0425 4788 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
23:46:21.0425 4788 C:\Windows\System32\gpapi.dll - ok
23:46:21.0440 4788 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
23:46:21.0440 4788 C:\Windows\System32\hidserv.dll - ok
23:46:21.0440 4788 [ 387E72E739E15E3D37907A86D9FF98E2 ] C:\Windows\System32\KMSVC.DLL
23:46:21.0440 4788 C:\Windows\System32\KMSVC.DLL - ok
23:46:21.0456 4788 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
23:46:21.0456 4788 C:\Windows\System32\ListSvc.dll - ok
23:46:21.0456 4788 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
23:46:21.0456 4788 C:\Windows\System32\provsvc.dll - ok
23:46:21.0471 4788 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
23:46:21.0471 4788 C:\Windows\System32\drivers\http.sys - ok
23:46:21.0471 4788 [ A5462BD6884960C9DC85ED49D34FF392 ] C:\Windows\System32\drivers\hwpolicy.sys
23:46:21.0471 4788 C:\Windows\System32\drivers\hwpolicy.sys - ok
23:46:21.0471 4788 [ B9E2DAF71E44626011D70B4889171504 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
23:46:21.0471 4788 C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
23:46:21.0487 4788 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
23:46:21.0487 4788 C:\Windows\System32\IKEEXT.DLL - ok
23:46:21.0487 4788 [ 098A91C54546A3B878DAD6A7E90A455B ] C:\Windows\System32\IPBusEnum.dll
23:46:21.0487 4788 C:\Windows\System32\IPBusEnum.dll - ok
23:46:21.0503 4788 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
23:46:21.0503 4788 C:\Windows\System32\iphlpsvc.dll - ok
23:46:21.0503 4788 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
23:46:21.0503 4788 C:\Windows\System32\drivers\irenum.sys - ok
23:46:21.0518 4788 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
23:46:21.0518 4788 C:\Windows\System32\keyiso.dll - ok
23:46:21.0518 4788 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
23:46:21.0518 4788 C:\Windows\System32\srvsvc.dll - ok
23:46:21.0534 4788 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
23:46:21.0534 4788 C:\Windows\System32\wkssvc.dll - ok
23:46:21.0534 4788 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
23:46:21.0534 4788 C:\Windows\System32\drivers\luafv.sys - ok
23:46:21.0534 4788 [ 7A757C41C3879CD34BDE15F0563C0CE2 ] C:\Windows\System32\lltdres.dll
23:46:21.0534 4788 C:\Windows\System32\lltdres.dll - ok
23:46:21.0549 4788 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
23:46:21.0549 4788 C:\Windows\System32\lmhsvc.dll - ok
23:46:21.0549 4788 [ E5DE3FFD785B6730291AD98E491D58BA ] C:\Windows\ehome\ehres.dll
23:46:21.0549 4788 C:\Windows\ehome\ehres.dll - ok
23:46:21.0565 4788 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] C:\Windows\System32\drivers\mountmgr.sys
23:46:21.0565 4788 C:\Windows\System32\drivers\mountmgr.sys - ok
23:46:21.0565 4788 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
23:46:21.0565 4788 C:\Windows\System32\mmcss.dll - ok
23:46:21.0581 4788 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
23:46:21.0581 4788 C:\Windows\System32\FirewallAPI.dll - ok
23:46:21.0581 4788 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] C:\Windows\System32\WebClnt.dll
23:46:21.0581 4788 C:\Windows\System32\WebClnt.dll - ok
23:46:21.0581 4788 [ F9D215A46A8B9753F61767FA72A20326 ] C:\Windows\System32\drivers\mshidkmdf.sys
23:46:21.0581 4788 C:\Windows\System32\drivers\mshidkmdf.sys - ok
23:46:21.0596 4788 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
23:46:21.0596 4788 C:\Windows\System32\iscsidsc.dll - ok
23:46:21.0596 4788 [ 8EE1C893C50D1C02D4675978BAC756BA ] C:\Windows\System32\msimsg.dll
23:46:21.0596 4788 C:\Windows\System32\msimsg.dll - ok
23:46:21.0612 4788 [ F9A18612FD3526FE473C1BDA678D61C8 ] C:\Windows\System32\drivers\mup.sys
23:46:21.0612 4788 C:\Windows\System32\drivers\mup.sys - ok
23:46:21.0612 4788 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
23:46:21.0612 4788 C:\Windows\System32\QAGENTRT.DLL - ok
23:46:21.0627 4788 [ 760E38053BF56E501D562B70AD796B88 ] C:\Windows\System32\drivers\ndis.sys
23:46:21.0627 4788 C:\Windows\System32\drivers\ndis.sys - ok
23:46:21.0627 4788 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
23:46:21.0627 4788 C:\Windows\System32\netman.dll - ok
23:46:21.0643 4788 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
23:46:21.0643 4788 C:\Windows\System32\netprofm.dll - ok
23:46:21.0643 4788 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
23:46:21.0643 4788 C:\Windows\System32\nlasvc.dll - ok
23:46:21.0659 4788 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
23:46:21.0659 4788 C:\Windows\System32\nsisvc.dll - ok
23:46:21.0659 4788 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
23:46:21.0659 4788 C:\Windows\System32\pnrpsvc.dll - ok
23:46:21.0659 4788 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
23:46:21.0659 4788 C:\Windows\System32\p2psvc.dll - ok
23:46:21.0674 4788 [ E9766131EEADE40A27DC27D2D68FBA9C ] C:\Windows\System32\drivers\partmgr.sys
23:46:21.0674 4788 C:\Windows\System32\drivers\partmgr.sys - ok
23:46:21.0674 4788 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
23:46:21.0674 4788 C:\Windows\System32\pcasvc.dll - ok
23:46:21.0690 4788 [ C7CF6A6E137463219E1259E3F0F0DD6C ] C:\Windows\System32\pla.dll
23:46:21.0690 4788 C:\Windows\System32\pla.dll - ok
23:46:21.0690 4788 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
23:46:21.0690 4788 C:\Windows\System32\umpnpmgr.dll - ok
23:46:21.0705 4788 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] C:\Windows\System32\pnrpauto.dll
23:46:21.0705 4788 C:\Windows\System32\pnrpauto.dll - ok
23:46:21.0705 4788 [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650 ] C:\Windows\System32\polstore.dll
23:46:21.0705 4788 C:\Windows\System32\polstore.dll - ok
23:46:21.0721 4788 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
23:46:21.0721 4788 C:\Windows\System32\umpo.dll - ok
23:46:21.0721 4788 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
23:46:21.0721 4788 C:\Windows\System32\profsvc.dll - ok
23:46:21.0737 4788 [ AB95FBAE4F9A5A56B177CEC427B2B35E ] C:\Windows\System32\psbase.dll
23:46:21.0737 4788 C:\Windows\System32\psbase.dll - ok
23:46:21.0737 4788 [ 906191634E99AEA92C4816150BDA3732 ] C:\Windows\System32\qwave.dll
23:46:21.0737 4788 C:\Windows\System32\qwave.dll - ok
23:46:21.0737 4788 [ 76707BB36430888D9CE9D705398ADB6C ] C:\Windows\System32\drivers\qwavedrv.sys
23:46:21.0737 4788 C:\Windows\System32\drivers\qwavedrv.sys - ok
23:46:21.0752 4788 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] C:\Windows\System32\rasauto.dll
23:46:21.0752 4788 C:\Windows\System32\rasauto.dll - ok
23:46:21.0752 4788 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
23:46:21.0752 4788 C:\Windows\System32\rasmans.dll - ok
23:46:21.0768 4788 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
23:46:21.0768 4788 C:\Windows\System32\sstpsvc.dll - ok
23:46:21.0768 4788 [ 254FB7A22D74E5511C73A3F6D802F192 ] C:\Windows\System32\mprdim.dll
23:46:21.0768 4788 C:\Windows\System32\mprdim.dll - ok
23:46:21.0783 4788 [ E4D94F24081440B5FC5AA556C7C62702 ] C:\Windows\System32\regsvc.dll
23:46:21.0783 4788 C:\Windows\System32\regsvc.dll - ok
23:46:21.0783 4788 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
23:46:21.0783 4788 C:\Windows\System32\RpcEpMap.dll - ok
23:46:21.0799 4788 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] C:\Windows\System32\Locator.exe
23:46:21.0799 4788 C:\Windows\System32\Locator.exe - ok
23:46:21.0799 4788 [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
23:46:21.0799 4788 C:\Windows\System32\SCardSvr.dll - ok
23:46:21.0799 4788 [ 253F38D0D7074C02FF8DEB9836C97D2B ] C:\Windows\System32\drivers\scfilter.sys
23:46:21.0799 4788 C:\Windows\System32\drivers\scfilter.sys - ok
23:46:21.0815 4788 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
23:46:21.0815 4788 C:\Windows\System32\schedsvc.dll - ok
23:46:21.0815 4788 [ 6EA4234DC55346E0709560FE7C2C1972 ] C:\Windows\System32\sdrsvc.dll
23:46:21.0815 4788 C:\Windows\System32\sdrsvc.dll - ok
23:46:21.0830 4788 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
23:46:21.0830 4788 C:\Windows\System32\seclogon.dll - ok
23:46:21.0830 4788 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
23:46:21.0830 4788 C:\Windows\System32\Sens.dll - ok
23:46:21.0846 4788 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] C:\Windows\System32\sensrsvc.dll
23:46:21.0846 4788 C:\Windows\System32\sensrsvc.dll - ok
23:46:21.0846 4788 [ 0B6231BF38174A1628C4AC812CC75804 ] C:\Windows\System32\SessEnv.dll
23:46:21.0846 4788 C:\Windows\System32\SessEnv.dll - ok
23:46:21.0846 4788 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
23:46:21.0846 4788 C:\Windows\System32\ipnathlp.dll - ok
23:46:21.0861 4788 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
23:46:21.0861 4788 C:\Windows\System32\shsvcs.dll - ok
23:46:21.0861 4788 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
23:46:21.0861 4788 C:\Windows\System32\tcpipcfg.dll - ok
23:46:21.0877 4788 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
23:46:21.0877 4788 C:\Windows\System32\snmptrap.exe - ok
23:46:21.0877 4788 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
23:46:21.0877 4788 C:\Windows\System32\spoolsv.exe - ok
23:46:21.0893 4788 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
23:46:21.0893 4788 C:\Windows\System32\sppsvc.exe - ok
23:46:21.0893 4788 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] C:\Windows\System32\sppuinotify.dll
23:46:21.0893 4788 C:\Windows\System32\sppuinotify.dll - ok
23:46:21.0908 4788 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
23:46:21.0908 4788 C:\Windows\System32\ssdpsrv.dll - ok
23:46:21.0908 4788 [ D8F970A92086126292A285937E0DF970 ] C:\Windows\System32\stlang64.dll
23:46:21.0908 4788 C:\Windows\System32\stlang64.dll - ok
23:46:21.0924 4788 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
23:46:21.0924 4788 C:\Windows\System32\wiaservc.dll - ok
23:46:21.0924 4788 [ E08E46FDD841B7184194011CA1955A0B ] C:\Windows\System32\swprv.dll
23:46:21.0924 4788 C:\Windows\System32\swprv.dll - ok
23:46:21.0924 4788 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
23:46:21.0924 4788 C:\Windows\System32\sysmain.dll - ok
23:46:21.0939 4788 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] C:\Windows\System32\TabSvc.dll
23:46:21.0939 4788 C:\Windows\System32\TabSvc.dll - ok
23:46:21.0939 4788 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
23:46:21.0939 4788 C:\Windows\System32\tapisrv.dll - ok
23:46:21.0955 4788 [ 1BE03AC720F4D302EA01D40F588162F6 ] C:\Windows\System32\tbssvc.dll
23:46:21.0955 4788 C:\Windows\System32\tbssvc.dll - ok
23:46:21.0955 4788 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
23:46:21.0955 4788 C:\Windows\System32\termsrv.dll - ok
23:46:21.0971 4788 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
23:46:21.0971 4788 C:\Windows\System32\themeservice.dll - ok
23:46:21.0971 4788 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
23:46:21.0971 4788 C:\Windows\System32\trkwks.dll - ok
23:46:21.0986 4788 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
23:46:21.0986 4788 C:\Windows\servicing\TrustedInstaller.exe - ok
23:46:21.0986 4788 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] C:\Windows\System32\drivers\tssecsrv.sys
23:46:21.0986 4788 C:\Windows\System32\drivers\tssecsrv.sys - ok
23:46:21.0986 4788 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] C:\Windows\System32\UI0Detect.exe
23:46:21.0986 4788 C:\Windows\System32\UI0Detect.exe - ok
23:46:22.0002 4788 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
23:46:22.0002 4788 C:\Windows\System32\upnphost.dll - ok
23:46:22.0002 4788 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
23:46:22.0002 4788 C:\Windows\System32\dwm.exe - ok
23:46:22.0017 4788 [ 567BC1309E05FCFA680ADB6E02260736 ] C:\Windows\System32\vaultsvc.dll
23:46:22.0017 4788 C:\Windows\System32\vaultsvc.dll - ok
23:46:22.0017 4788 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
23:46:22.0017 4788 C:\Windows\System32\vds.exe - ok
23:46:22.0033 4788 [ A255814907C89BE58B79EF2F189B843B ] C:\Windows\System32\drivers\volmgrx.sys
23:46:22.0033 4788 C:\Windows\System32\drivers\volmgrx.sys - ok
23:46:22.0033 4788 [ B60BA0BC31B0CB414593E169F6F21CC2 ] C:\Windows\System32\VSSVC.exe
23:46:22.0033 4788 C:\Windows\System32\VSSVC.exe - ok
23:46:22.0033 4788 [ 1C9D80CC3849B3788048078C26486E1A ] C:\Windows\System32\w32time.dll
23:46:22.0033 4788 C:\Windows\System32\w32time.dll - ok
23:46:22.0049 4788 [ 05E9265E2228799B68DC0F58A94E1AB8 ] C:\Windows\System32\Wat\WatUX.exe
23:46:22.0049 4788 C:\Windows\System32\Wat\WatUX.exe - ok
23:46:22.0049 4788 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] C:\Windows\System32\wbengine.exe
23:46:22.0049 4788 C:\Windows\System32\wbengine.exe - ok
23:46:22.0064 4788 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] C:\Windows\System32\wbiosrvc.dll
23:46:22.0064 4788 C:\Windows\System32\wbiosrvc.dll - ok
23:46:22.0064 4788 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] C:\Windows\System32\wcncsvc.dll
23:46:22.0064 4788 C:\Windows\System32\wcncsvc.dll - ok
23:46:22.0080 4788 [ 20F7441334B18CEE52027661DF4A6129 ] C:\Windows\System32\WcsPlugInService.dll
23:46:22.0080 4788 C:\Windows\System32\WcsPlugInService.dll - ok
23:46:22.0080 4788 [ 442783E2CB0DA19873B7A63833FF4CB4 ] C:\Windows\System32\drivers\Wdf01000.sys
23:46:22.0080 4788 C:\Windows\System32\drivers\Wdf01000.sys - ok
23:46:22.0095 4788 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
23:46:22.0095 4788 C:\Windows\System32\wdi.dll - ok
23:46:22.0095 4788 [ C749025A679C5103E575E3B48E092C43 ] C:\Windows\System32\wecsvc.dll
23:46:22.0095 4788 C:\Windows\System32\wecsvc.dll - ok
23:46:22.0095 4788 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
23:46:22.0095 4788 C:\Windows\System32\wercplsupport.dll - ok
23:46:22.0111 4788 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
23:46:22.0111 4788 C:\Windows\System32\wersvc.dll - ok
23:46:22.0111 4788 [ 2DA738A0A6BEE483A5647A76695AF3B0 ] C:\Program Files\Windows Defender\MsMpRes.dll
23:46:22.0111 4788 C:\Program Files\Windows Defender\MsMpRes.dll - ok
23:46:22.0127 4788 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
23:46:22.0127 4788 C:\Windows\System32\winhttp.dll - ok
23:46:22.0127 4788 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
23:46:22.0127 4788 C:\Windows\System32\wbem\WMIsvc.dll - ok
23:46:22.0142 4788 [ BCB1310604AA415C4508708975B3931E ] C:\Windows\System32\WsmSvc.dll
23:46:22.0142 4788 C:\Windows\System32\WsmSvc.dll - ok
23:46:22.0142 4788 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
23:46:22.0142 4788 C:\Windows\System32\wlansvc.dll - ok
23:46:22.0158 4788 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] C:\Windows\System32\wbem\WmiApSrv.exe
23:46:22.0158 4788 C:\Windows\System32\wbem\WmiApSrv.exe - ok
23:46:22.0158 4788 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
23:46:22.0158 4788 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
23:46:22.0158 4788 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] C:\Windows\System32\wpcsvc.dll
23:46:22.0158 4788 C:\Windows\System32\wpcsvc.dll - ok
23:46:22.0173 4788 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
23:46:22.0173 4788 C:\Windows\System32\wpdbusenum.dll - ok
23:46:22.0173 4788 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
23:46:22.0173 4788 C:\Windows\System32\drivers\ws2ifsl.sys - ok
23:46:22.0189 4788 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
23:46:22.0189 4788 C:\Windows\System32\wscsvc.dll - ok
23:46:22.0189 4788 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
23:46:22.0189 4788 C:\Windows\System32\SearchIndexer.exe - ok
23:46:22.0205 4788 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
23:46:22.0205 4788 C:\Windows\System32\wuaueng.dll - ok
23:46:22.0205 4788 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
23:46:22.0205 4788 C:\Windows\System32\drivers\WUDFPf.sys - ok
23:46:22.0220 4788 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
23:46:22.0220 4788 C:\Windows\System32\WUDFSvc.dll - ok
23:46:22.0220 4788 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] C:\Windows\System32\wwansvc.dll
23:46:22.0220 4788 C:\Windows\System32\wwansvc.dll - ok
23:46:22.0220 4788 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
23:46:22.0220 4788 C:\Windows\System32\ubpm.dll - ok
23:46:22.0236 4788 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
23:46:22.0236 4788 C:\Windows\System32\svchost.exe - ok
23:46:22.0236 4788 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
23:46:22.0236 4788 C:\Windows\System32\SPInf.dll - ok
23:46:22.0251 4788 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
23:46:22.0251 4788 C:\Windows\System32\devrtl.dll - ok
23:46:22.0251 4788 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
23:46:22.0251 4788 C:\Windows\System32\userenv.dll - ok
23:46:22.0267 4788 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
23:46:22.0267 4788 C:\Windows\System32\pcwum.dll - ok
23:46:22.0267 4788 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
23:46:22.0267 4788 C:\Windows\System32\powrprof.dll - ok
23:46:22.0283 4788 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
23:46:22.0283 4788 C:\Windows\System32\rpcss.dll - ok
23:46:22.0283 4788 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
23:46:22.0283 4788 C:\Windows\System32\wshqos.dll - ok
23:46:22.0298 4788 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
23:46:22.0298 4788 C:\Windows\System32\WSHTCPIP.DLL - ok
23:46:22.0298 4788 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
23:46:22.0298 4788 C:\Windows\System32\version.dll - ok
23:46:22.0314 4788 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
23:46:22.0314 4788 C:\Windows\System32\LogonUI.exe - ok
23:46:22.0314 4788 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
23:46:22.0314 4788 C:\Windows\System32\authui.dll - ok
23:46:22.0314 4788 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
23:46:22.0314 4788 C:\Windows\System32\cryptui.dll - ok
23:46:22.0329 4788 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
23:46:22.0329 4788 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
23:46:22.0329 4788 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
23:46:22.0329 4788 C:\Windows\System32\ntmarta.dll - ok
23:46:22.0345 4788 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
23:46:22.0345 4788 C:\Windows\System32\MMDevAPI.dll - ok
23:46:22.0345 4788 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
23:46:22.0345 4788 C:\Windows\System32\adtschema.dll - ok
23:46:22.0361 4788 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
23:46:22.0361 4788 C:\Windows\System32\propsys.dll - ok
23:46:22.0361 4788 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
23:46:22.0361 4788 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
23:46:22.0361 4788 [ 6CD0118F9663045E5F5EE9C83F06DDB7 ] C:\Program Files\IDT\WDM\stacsv64.exe
23:46:22.0361 4788 C:\Program Files\IDT\WDM\stacsv64.exe - ok
23:46:22.0376 4788 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
23:46:22.0376 4788 C:\Windows\System32\avrt.dll - ok
23:46:22.0376 4788 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
23:46:22.0376 4788 C:\Windows\System32\shacct.dll - ok
23:46:22.0392 4788 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
23:46:22.0392 4788 C:\Windows\System32\samlib.dll - ok
23:46:22.0392 4788 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
23:46:22.0392 4788 C:\Windows\System32\uxtheme.dll - ok
23:46:22.0407 4788 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
23:46:22.0407 4788 C:\Windows\System32\PSHED.DLL - ok
23:46:22.0407 4788 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
23:46:22.0407 4788 C:\Windows\System32\atl.dll - ok
23:46:22.0423 4788 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
23:46:22.0423 4788 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
23:46:22.0423 4788 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
23:46:22.0423 4788 C:\Windows\System32\MPSSVC.dll - ok
23:46:22.0423 4788 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
23:46:22.0423 4788 C:\Windows\System32\dsound.dll - ok
23:46:22.0439 4788 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
23:46:22.0439 4788 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
23:46:22.0439 4788 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
23:46:22.0439 4788 C:\Windows\System32\winmm.dll - ok
23:46:22.0454 4788 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
23:46:22.0454 4788 C:\Windows\System32\dui70.dll - ok
23:46:22.0454 4788 [ D8B55C68AE4469C50860DDA7087F3F8B ] C:\Windows\System32\stapi64.dll
23:46:22.0454 4788 C:\Windows\System32\stapi64.dll - ok
23:46:22.0470 4788 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
23:46:22.0470 4788 C:\Windows\System32\duser.dll - ok
23:46:22.0470 4788 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
23:46:22.0470 4788 C:\Windows\System32\audiodg.exe - ok
23:46:22.0470 4788 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
23:46:22.0470 4788 C:\Windows\System32\SndVolSSO.dll - ok
23:46:22.0485 4788 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
23:46:22.0485 4788 C:\Windows\System32\hid.dll - ok
23:46:22.0485 4788 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
23:46:22.0485 4788 C:\Windows\System32\dwmapi.dll - ok
23:46:22.0501 4788 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
23:46:22.0501 4788 C:\Windows\System32\xmllite.dll - ok
23:46:22.0501 4788 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
23:46:22.0501 4788 C:\Windows\System32\WindowsCodecs.dll - ok
23:46:22.0517 4788 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
23:46:22.0517 4788 C:\Windows\System32\VaultCredProvider.dll - ok
23:46:22.0517 4788 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
23:46:22.0517 4788 C:\Windows\System32\winbrand.dll - ok
23:46:22.0532 4788 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
23:46:22.0532 4788 C:\Windows\System32\wtsapi32.dll - ok
23:46:22.0532 4788 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
23:46:22.0532 4788 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
23:46:22.0532 4788 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
23:46:22.0532 4788 C:\Windows\System32\AudioSes.dll - ok
23:46:22.0548 4788 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
23:46:22.0548 4788 C:\Windows\System32\BioCredProv.dll - ok
23:46:22.0548 4788 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
23:46:22.0548 4788 C:\Windows\System32\winbio.dll - ok
23:46:22.0563 4788 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
23:46:22.0563 4788 C:\Windows\System32\credui.dll - ok
23:46:22.0563 4788 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
23:46:22.0563 4788 C:\Windows\System32\gpsvc.dll - ok
23:46:22.0579 4788 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
23:46:22.0579 4788 C:\Windows\System32\AudioEng.dll - ok
23:46:22.0595 4788 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
23:46:22.0595 4788 C:\Windows\System32\netapi32.dll - ok
23:46:22.0595 4788 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
23:46:22.0595 4788 C:\Windows\System32\vaultcli.dll - ok
23:46:22.0595 4788 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
23:46:22.0595 4788 C:\Windows\System32\netutils.dll - ok
23:46:22.0610 4788 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
23:46:22.0610 4788 C:\Windows\System32\wkscli.dll - ok
23:46:22.0610 4788 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
23:46:22.0610 4788 C:\Windows\System32\samcli.dll - ok
23:46:22.0626 4788 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
23:46:22.0626 4788 C:\Windows\System32\certCredProvider.dll - ok
23:46:22.0626 4788 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
23:46:22.0626 4788 C:\Windows\System32\AUDIOKSE.dll - ok
23:46:22.0626 4788 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
23:46:22.0626 4788 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
23:46:22.0641 4788 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
23:46:22.0641 4788 C:\Windows\System32\ksuser.dll - ok
23:46:22.0641 4788 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
23:46:22.0641 4788 C:\Windows\System32\nlaapi.dll - ok
23:46:22.0657 4788 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
23:46:22.0657 4788 C:\Windows\System32\dsrole.dll - ok
23:46:22.0657 4788 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
23:46:22.0657 4788 C:\Windows\System32\rasplap.dll - ok
23:46:22.0673 4788 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
23:46:22.0673 4788 C:\Windows\System32\slc.dll - ok
23:46:22.0673 4788 [ 951F198E13C73DD8340B29283477E31E ] C:\Windows\System32\stapo64.dll
23:46:22.0673 4788 C:\Windows\System32\stapo64.dll - ok
23:46:22.0688 4788 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
23:46:22.0688 4788 C:\Windows\System32\es.dll - ok
23:46:22.0688 4788 [ E2223A37896A76861D7F79FD81A2A193 ] C:\Windows\System32\hpservice.exe
23:46:22.0688 4788 C:\Windows\System32\hpservice.exe - ok
23:46:22.0704 4788 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
23:46:22.0704 4788 C:\Windows\System32\rasapi32.dll - ok
23:46:22.0704 4788 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
23:46:22.0704 4788 C:\Windows\System32\mfc42u.dll - ok
23:46:22.0704 4788 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
23:46:22.0704 4788 C:\Windows\System32\rasman.dll - ok
23:46:22.0719 4788 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
23:46:22.0719 4788 C:\Windows\System32\rtutils.dll - ok
23:46:22.0719 4788 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
23:46:22.0719 4788 C:\Windows\System32\UXInit.dll - ok
23:46:22.0735 4788 [ 5E65E90DA3A478C377F7332A9386B023 ] C:\Windows\System32\AESTAC64.dll
23:46:22.0735 4788 C:\Windows\System32\AESTAC64.dll - ok
23:46:22.0735 4788 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
23:46:22.0735 4788 C:\Windows\System32\oleacc.dll - ok
23:46:22.0751 4788 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
23:46:22.0751 4788 C:\Windows\System32\UIAutomationCore.dll - ok
23:46:22.0751 4788 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
23:46:22.0751 4788 C:\Windows\System32\odbc32.dll - ok
23:46:22.0766 4788 [ B7EEA7A7A6F8F80DD6A22E585F619C20 ] C:\Windows\System32\accelerometerdll.DLL
23:46:22.0766 4788 C:\Windows\System32\accelerometerdll.DLL - ok
23:46:22.0766 4788 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
23:46:22.0766 4788 C:\Windows\System32\odbcint.dll - ok
23:46:22.0766 4788 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
23:46:22.0782 4788 C:\Windows\System32\uxsms.dll - ok
23:46:22.0782 4788 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
23:46:22.0782 4788 C:\Windows\System32\WUDFPlatform.dll - ok
23:46:22.0782 4788 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
23:46:22.0782 4788 C:\Windows\System32\imageres.dll - ok
23:46:22.0797 4788 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
23:46:22.0797 4788 C:\Windows\System32\drivers\lltdio.sys - ok
23:46:22.0797 4788 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
23:46:22.0797 4788 C:\Windows\System32\drivers\nwifi.sys - ok
23:46:22.0813 4788 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
23:46:22.0813 4788 C:\Windows\System32\drivers\ndisuio.sys - ok
23:46:22.0813 4788 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
23:46:22.0813 4788 C:\Windows\System32\drivers\rspndr.sys - ok
23:46:22.0829 4788 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
23:46:22.0829 4788 C:\Windows\System32\IPHLPAPI.DLL - ok
23:46:22.0829 4788 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
23:46:22.0829 4788 C:\Windows\System32\winnsi.dll - ok
23:46:22.0829 4788 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
23:46:22.0844 4788 C:\Windows\System32\dhcpcore6.dll - ok
23:46:22.0844 4788 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
23:46:22.0844 4788 C:\Windows\System32\nrpsrv.dll - ok
23:46:22.0844 4788 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
23:46:22.0844 4788 C:\Windows\System32\dnsrslvr.dll - ok
23:46:22.0860 4788 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
23:46:22.0860 4788 C:\Windows\System32\eapphost.dll - ok
23:46:22.0860 4788 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
23:46:22.0860 4788 C:\Windows\System32\FWPUCLNT.DLL - ok
23:46:22.0875 4788 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
23:46:22.0875 4788 C:\Windows\System32\dnsext.dll - ok
23:46:22.0875 4788 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
23:46:22.0875 4788 C:\Windows\System32\dhcpcsvc6.dll - ok
23:46:22.0875 4788 [ 7373DE70D405FF08DC53336B83989138 ] C:\Windows\System32\rastls.dll
23:46:22.0875 4788 C:\Windows\System32\rastls.dll - ok
23:46:22.0891 4788 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
23:46:22.0891 4788 C:\Windows\System32\dhcpcsvc.dll - ok
23:46:22.0891 4788 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
23:46:22.0891 4788 C:\Windows\System32\raschap.dll - ok
23:46:22.0891 4788 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
23:46:22.0891 4788 C:\Windows\System32\umb.dll - ok
23:46:22.0907 4788 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
23:46:22.0907 4788 C:\Windows\System32\wlanmsm.dll - ok
23:46:22.0907 4788 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
23:46:22.0907 4788 C:\Windows\System32\wlansec.dll - ok
23:46:22.0922 4788 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
23:46:22.0922 4788 C:\Windows\System32\eappprxy.dll - ok
23:46:22.0922 4788 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
23:46:22.0922 4788 C:\Windows\System32\onex.dll - ok
23:46:22.0922 4788 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
23:46:22.0922 4788 C:\Windows\System32\eappcfg.dll - ok
23:46:22.0938 4788 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
23:46:22.0938 4788 C:\Windows\System32\l2gpstore.dll - ok
23:46:22.0938 4788 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
23:46:22.0938 4788 C:\Windows\System32\WinSCard.dll - ok
23:46:22.0938 4788 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
23:46:22.0938 4788 C:\Windows\System32\wlanutil.dll - ok
23:46:22.0953 4788 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
23:46:22.0953 4788 C:\Windows\System32\wlgpclnt.dll - ok
23:46:22.0953 4788 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
23:46:22.0953 4788 C:\Windows\System32\msxml6.dll - ok
23:46:22.0953 4788 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
23:46:22.0969 4788 C:\Windows\System32\ktmw32.dll - ok
23:46:22.0969 4788 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
23:46:22.0969 4788 C:\Windows\System32\fveapi.dll - ok
23:46:22.0969 4788 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
23:46:22.0969 4788 C:\Windows\System32\fvecerts.dll - ok
23:46:22.0985 4788 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
23:46:22.0985 4788 C:\Windows\System32\taskcomp.dll - ok
23:46:22.0985 4788 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
23:46:22.0985 4788 C:\Windows\System32\tbs.dll - ok
23:46:22.0985 4788 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
23:46:22.0985 4788 C:\Windows\System32\netcfgx.dll - ok
23:46:23.0000 4788 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
23:46:23.0000 4788 C:\Windows\System32\wiarpc.dll - ok
23:46:23.0000 4788 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
23:46:23.0000 4788 C:\Windows\System32\drivers\vwifimp.sys - ok
23:46:23.0016 4788 [ C07D5582F2107ACAB4564E1DAE977C64 ] C:\Windows\ehome\ehprivjob.exe
23:46:23.0016 4788 C:\Windows\ehome\ehprivjob.exe - ok
23:46:23.0016 4788 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
23:46:23.0016 4788 C:\Windows\System32\conhost.exe - ok
23:46:23.0016 4788 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
23:46:23.0016 4788 C:\Windows\System32\dllhost.exe - ok
23:46:23.0031 4788 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
23:46:23.0031 4788 C:\Windows\System32\sppc.dll - ok
23:46:23.0031 4788 [ 9E0FF5DDD8B908DA5611445C35D6CD24 ] C:\Windows\System32\slcext.dll
23:46:23.0031 4788 C:\Windows\System32\slcext.dll - ok
23:46:23.0031 4788 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
23:46:23.0031 4788 C:\Windows\System32\sppcext.dll - ok
23:46:23.0047 4788 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
23:46:23.0047 4788 C:\Windows\System32\webio.dll - ok
23:46:23.0047 4788 [ 3BDCBB29D727C49DC3E3256253467281 ] C:\Windows\System32\wmdrmsdk.dll
23:46:23.0047 4788 C:\Windows\System32\wmdrmsdk.dll - ok
23:46:23.0063 4788 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
23:46:23.0063 4788 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
23:46:23.0063 4788 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
23:46:23.0063 4788 C:\Windows\System32\mfplat.dll - ok
23:46:23.0063 4788 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
23:46:23.0063 4788 C:\Windows\System32\IDStore.dll - ok
23:46:23.0078 4788 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
23:46:23.0078 4788 C:\Windows\ehome\ehtrace.dll - ok
23:46:23.0078 4788 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
23:46:23.0078 4788 C:\Windows\System32\taskhost.exe - ok
23:46:23.0078 4788 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
23:46:23.0078 4788 C:\Windows\System32\AtBroker.exe - ok
23:46:23.0094 4788 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
23:46:23.0094 4788 C:\Windows\System32\mpr.dll - ok
23:46:23.0094 4788 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
23:46:23.0094 4788 C:\Windows\System32\drivers\bowser.sys - ok
23:46:23.0109 4788 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
23:46:23.0109 4788 C:\Windows\System32\drivers\mpsdrv.sys - ok
23:46:23.0109 4788 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
23:46:23.0109 4788 C:\Windows\System32\MsCtfMonitor.dll - ok
23:46:23.0109 4788 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
23:46:23.0109 4788 C:\Windows\System32\msutb.dll - ok
23:46:23.0125 4788 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
23:46:23.0125 4788 C:\Windows\System32\drivers\mrxsmb.sys - ok
23:46:23.0125 4788 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
23:46:23.0125 4788 C:\Windows\System32\userinit.exe - ok
23:46:23.0141 4788 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
23:46:23.0141 4788 C:\Windows\System32\drivers\mrxsmb10.sys - ok
23:46:23.0141 4788 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
23:46:23.0141 4788 C:\Windows\System32\taskeng.exe - ok
23:46:23.0141 4788 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
23:46:23.0141 4788 C:\Windows\System32\drivers\mrxsmb20.sys - ok
23:46:23.0156 4788 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
23:46:23.0156 4788 C:\Windows\System32\HotStartUserAgent.dll - ok
23:46:23.0156 4788 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
23:46:23.0156 4788 C:\Windows\System32\PlaySndSrv.dll - ok
23:46:23.0156 4788 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
23:46:23.0156 4788 C:\Windows\System32\dwmredir.dll - ok
23:46:23.0172 4788 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
23:46:23.0172 4788 C:\Windows\System32\dwmcore.dll - ok
23:46:23.0172 4788 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
23:46:23.0172 4788 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
23:46:23.0187 4788 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
23:46:23.0187 4788 C:\Windows\System32\rasadhlp.dll - ok
23:46:23.0187 4788 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
23:46:23.0187 4788 C:\Windows\System32\d3d10_1.dll - ok
23:46:23.0187 4788 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
23:46:23.0187 4788 C:\Windows\System32\d3d10_1core.dll - ok
23:46:23.0203 4788 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
23:46:23.0203 4788 C:\Windows\System32\dxgi.dll - ok
23:46:23.0203 4788 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
23:46:23.0203 4788 C:\Windows\System32\wfapigp.dll - ok
23:46:23.0203 4788 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:46:23.0203 4788 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
23:46:23.0219 4788 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
23:46:23.0219 4788 C:\Windows\System32\localspl.dll - ok
23:46:23.0219 4788 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
23:46:23.0219 4788 C:\Windows\System32\TSChannel.dll - ok
23:46:23.0234 4788 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
23:46:23.0234 4788 C:\Windows\SysWOW64\ntdll.dll - ok
23:46:23.0234 4788 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
23:46:23.0234 4788 C:\Windows\explorer.exe - ok
23:46:23.0234 4788 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
23:46:23.0234 4788 C:\Windows\System32\mscms.dll - ok
23:46:23.0250 4788 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
23:46:23.0250 4788 C:\Windows\System32\spoolss.dll - ok
23:46:23.0250 4788 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
23:46:23.0250 4788 C:\Windows\System32\winspool.drv - ok
23:46:23.0265 4788 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
23:46:23.0265 4788 C:\Windows\System32\wow64.dll - ok
23:46:23.0265 4788 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
23:46:23.0265 4788 C:\Windows\System32\wow64win.dll - ok
23:46:23.0265 4788 [ CCFF1C78B46A4DC09CBC5BAB99A5EFDF ] C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
23:46:23.0265 4788 C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe - ok
23:46:23.0281 4788 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
23:46:23.0281 4788 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
23:46:23.0281 4788 [ 0C9E61D80D143209FCFB7F62FF96B206 ] C:\Windows\System32\igd10umd64.dll
23:46:23.0281 4788 C:\Windows\System32\igd10umd64.dll - ok
23:46:23.0297 4788 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
23:46:23.0297 4788 C:\Windows\System32\wow64cpu.dll - ok
23:46:23.0297 4788 [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMFIA.DLL
23:46:23.0297 4788 C:\Windows\System32\E_ILMFIA.DLL - ok
23:46:23.0297 4788 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
23:46:23.0297 4788 C:\Windows\System32\PrintIsolationProxy.dll - ok
23:46:23.0312 4788 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
23:46:23.0312 4788 C:\Windows\SysWOW64\kernel32.dll - ok
23:46:23.0312 4788 [ 50F9F2BCF53491C43755A553D6E39DB6 ] C:\Windows\System32\hpf3l092.dll
23:46:23.0312 4788 C:\Windows\System32\hpf3l092.dll - ok
23:46:23.0312 4788 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
23:46:23.0312 4788 C:\Windows\System32\FXSMON.dll - ok
23:46:23.0328 4788 [ E2B08D19F5F3BDD73A6F046E2B371A41 ] C:\Windows\System32\HPZLLWN7.DLL
23:46:23.0328 4788 C:\Windows\System32\HPZLLWN7.DLL - ok
23:46:23.0328 4788 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
23:46:23.0328 4788 C:\Windows\System32\tcpmon.dll - ok
23:46:23.0343 4788 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
23:46:23.0343 4788 C:\Windows\System32\snmpapi.dll - ok
23:46:23.0343 4788 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
23:46:23.0343 4788 C:\Windows\System32\wsnmp32.dll - ok
23:46:23.0343 4788 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
23:46:23.0343 4788 C:\Windows\System32\usbmon.dll - ok
23:46:23.0359 4788 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
23:46:23.0359 4788 C:\Windows\System32\WSDMon.dll - ok
23:46:23.0359 4788 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:46:23.0359 4788 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
23:46:23.0359 4788 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
23:46:23.0359 4788 C:\Windows\System32\taskschd.dll - ok
23:46:23.0375 4788 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
23:46:23.0375 4788 C:\Windows\System32\WSDApi.dll - ok
23:46:23.0375 4788 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
23:46:23.0375 4788 C:\Windows\System32\webservices.dll - ok
23:46:23.0390 4788 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
23:46:23.0390 4788 C:\Windows\System32\fundisc.dll - ok
23:46:23.0390 4788 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
23:46:23.0390 4788 C:\Windows\System32\fdPnp.dll - ok
23:46:23.0390 4788 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
23:46:23.0390 4788 C:\Windows\System32\wsdchngr.dll - ok
23:46:23.0406 4788 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
23:46:23.0406 4788 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
23:46:23.0406 4788 [ 5208EBD5AB37F0A6AE026DB4F1AEED2A ] C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll
23:46:23.0406 4788 C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll - ok
23:46:23.0406 4788 [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
23:46:23.0421 4788 C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
23:46:23.0421 4788 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
23:46:23.0421 4788 C:\Windows\System32\uDWM.dll - ok
23:46:23.0421 4788 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
23:46:23.0421 4788 C:\Windows\System32\win32spl.dll - ok
23:46:23.0437 4788 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
23:46:23.0437 4788 C:\Windows\SysWOW64\advapi32.dll - ok
23:46:23.0437 4788 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
23:46:23.0437 4788 C:\Windows\SysWOW64\KernelBase.dll - ok
23:46:23.0437 4788 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
23:46:23.0437 4788 C:\Windows\System32\ExplorerFrame.dll - ok
23:46:23.0453 4788 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
23:46:23.0453 4788 C:\Windows\SysWOW64\user32.dll - ok
23:46:23.0453 4788 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
23:46:23.0453 4788 C:\Windows\SysWOW64\gdi32.dll - ok
23:46:23.0453 4788 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
23:46:23.0453 4788 C:\Windows\System32\inetpp.dll - ok
23:46:23.0468 4788 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
23:46:23.0468 4788 C:\Windows\SysWOW64\msvcrt.dll - ok
23:46:23.0468 4788 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
23:46:23.0468 4788 C:\Windows\SysWOW64\lpk.dll - ok
23:46:23.0484 4788 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
23:46:23.0484 4788 C:\Windows\SysWOW64\usp10.dll - ok
23:46:23.0484 4788 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
23:46:23.0484 4788 C:\Windows\SysWOW64\rpcrt4.dll - ok
23:46:23.0484 4788 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
23:46:23.0484 4788 C:\Windows\SysWOW64\sechost.dll - ok
23:46:23.0499 4788 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
23:46:23.0499 4788 C:\Windows\System32\cscapi.dll - ok
23:46:23.0499 4788 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
23:46:23.0499 4788 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
23:46:23.0499 4788 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
23:46:23.0499 4788 C:\Windows\SysWOW64\cryptbase.dll - ok
23:46:23.0515 4788 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
23:46:23.0515 4788 C:\Windows\SysWOW64\ole32.dll - ok
23:46:23.0515 4788 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
23:46:23.0515 4788 C:\Windows\SysWOW64\shell32.dll - ok
23:46:23.0531 4788 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
23:46:23.0531 4788 C:\Windows\SysWOW64\sspicli.dll - ok
23:46:23.0531 4788 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
23:46:23.0531 4788 C:\Windows\System32\mgmtapi.dll - ok
23:46:23.0531 4788 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
23:46:23.0531 4788 C:\Windows\System32\tcpmib.dll - ok
23:46:23.0546 4788 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\unidrv.dll
23:46:23.0546 4788 C:\Windows\System32\spool\drivers\x64\3\unidrv.dll - ok
23:46:23.0546 4788 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
23:46:23.0546 4788 C:\Windows\SysWOW64\imm32.dll - ok
23:46:23.0562 4788 [ C89C024827F15F047FC8A5910F2A100B ] C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll
23:46:23.0562 4788 C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll - ok
23:46:23.0562 4788 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
23:46:23.0562 4788 C:\Windows\SysWOW64\msctf.dll - ok
23:46:23.0562 4788 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
23:46:23.0562 4788 C:\Windows\System32\EhStorShell.dll - ok
23:46:23.0577 4788 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
23:46:23.0577 4788 C:\Windows\SysWOW64\shlwapi.dll - ok
23:46:23.0577 4788 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
23:46:23.0577 4788 C:\Windows\SysWOW64\ws2_32.dll - ok
23:46:23.0577 4788 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
23:46:23.0577 4788 C:\Windows\SysWOW64\nsi.dll - ok
23:46:23.0593 4788 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
23:46:23.0593 4788 C:\Windows\SysWOW64\atl.dll - ok
23:46:23.0593 4788 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
23:46:23.0593 4788 C:\Windows\SysWOW64\wininet.dll - ok
23:46:23.0593 4788 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
23:46:23.0593 4788 C:\Windows\SysWOW64\iertutil.dll - ok
23:46:23.0609 4788 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
23:46:23.0609 4788 C:\Windows\SysWOW64\urlmon.dll - ok
23:46:23.0609 4788 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
23:46:23.0609 4788 C:\Windows\SysWOW64\oleaut32.dll - ok
23:46:23.0624 4788 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
23:46:23.0624 4788 C:\Windows\SysWOW64\winmm.dll - ok
23:46:23.0624 4788 [ 53F631B5ECEB4D441F48DEEE37B8688A ] C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll
23:46:23.0624 4788 C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll - ok
23:46:23.0624 4788 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
23:46:23.0624 4788 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
23:46:23.0640 4788 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
23:46:23.0640 4788 C:\Windows\SysWOW64\crypt32.dll - ok
23:46:23.0640 4788 [ A6189F9CBE3D0CCF546CFCF1238533A1 ] C:\Windows\System32\spool\drivers\x64\3\unires.dll
23:46:23.0640 4788 C:\Windows\System32\spool\drivers\x64\3\unires.dll - ok
23:46:23.0655 4788 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
23:46:23.0655 4788 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
23:46:23.0655 4788 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
23:46:23.0655 4788 C:\Windows\SysWOW64\netapi32.dll - ok
23:46:23.0655 4788 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
23:46:23.0655 4788 C:\Windows\SysWOW64\netutils.dll - ok
23:46:23.0671 4788 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
23:46:23.0671 4788 C:\Windows\SysWOW64\srvcli.dll - ok
23:46:23.0671 4788 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
23:46:23.0671 4788 C:\Windows\SysWOW64\winnsi.dll - ok
23:46:23.0687 4788 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
23:46:23.0687 4788 C:\Windows\SysWOW64\wkscli.dll - ok
23:46:23.0687 4788 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
23:46:23.0687 4788 C:\Windows\SysWOW64\msasn1.dll - ok
23:46:23.0687 4788 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
23:46:23.0687 4788 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
23:46:23.0702 4788 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
23:46:23.0702 4788 C:\Windows\SysWOW64\wintrust.dll - ok
23:46:23.0702 4788 [ 3C89D68CD17612D03F3FB59765C8967E ] C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll
23:46:23.0702 4788 C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll - ok
23:46:23.0702 4788 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
23:46:23.0702 4788 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
23:46:23.0718 4788 [ 8E408F9F2E7A84C1F60D791C7B54E8F8 ] C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll
23:46:23.0718 4788 C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll - ok
23:46:23.0718 4788 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
23:46:23.0718 4788 C:\Program Files\IDT\WDM\AESTSr64.exe - ok
23:46:23.0733 4788 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
23:46:23.0733 4788 C:\Windows\SysWOW64\imagehlp.dll - ok
23:46:23.0733 4788 [ BF4A7C7A25F8266A9F22043B1472ADC5 ] C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll
23:46:23.0733 4788 C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll - ok
23:46:23.0733 4788 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
23:46:23.0733 4788 C:\Windows\SysWOW64\msi.dll - ok
23:46:23.0749 4788 [ 4FE9C6DC32B0A8751BA5D9652647FFD8 ] C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll
23:46:23.0749 4788 C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll - ok
23:46:23.0749 4788 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
23:46:23.0749 4788 C:\Windows\SysWOW64\version.dll - ok
23:46:23.0765 4788 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
23:46:23.0765 4788 C:\Windows\SysWOW64\cscapi.dll - ok
23:46:23.0765 4788 [ 13DAACA26818567F7A868703AB0E5274 ] C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll
23:46:23.0765 4788 C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll - ok
23:46:23.0765 4788 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
23:46:23.0765 4788 C:\Windows\SysWOW64\ntmarta.dll - ok
23:46:23.0780 4788 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
23:46:23.0780 4788 C:\Windows\SysWOW64\Wldap32.dll - ok
23:46:23.0780 4788 [ BB77858B20C9402256C6C46BB7B09601 ] C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll
23:46:23.0780 4788 C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll - ok
23:46:23.0780 4788 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
23:46:23.0780 4788 C:\Windows\SysWOW64\comdlg32.dll - ok
23:46:23.0796 4788 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
23:46:23.0796 4788 C:\Windows\SysWOW64\msimg32.dll - ok
23:46:23.0796 4788 [ B65F8DBA54F251906BBE8611B5A0E7AB ] C:\Program Files\LSI SoftModem\agr64svc.exe
23:46:23.0796 4788 C:\Program Files\LSI SoftModem\agr64svc.exe - ok
23:46:23.0811 4788 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
23:46:23.0811 4788 C:\Windows\SysWOW64\dbghelp.dll - ok
23:46:23.0811 4788 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
23:46:23.0811 4788 C:\Windows\System32\cryptnet.dll - ok
23:46:23.0811 4788 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
23:46:23.0811 4788 C:\Windows\System32\efscore.dll - ok
23:46:23.0827 4788 [ 3022EBE8221C13385EA59C9212F0408B ] C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll
23:46:23.0827 4788 C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll - ok
23:46:23.0827 4788 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
23:46:23.0827 4788 C:\Windows\System32\vssapi.dll - ok
23:46:23.0843 4788 [ F478DBABD9FDA2437293E7525C3979B9 ] C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE
23:46:23.0843 4788 C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE - ok
23:46:23.0843 4788 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
23:46:23.0843 4788 C:\Windows\System32\efsutil.dll - ok
23:46:23.0843 4788 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
23:46:23.0843 4788 C:\Windows\SysWOW64\winspool.drv - ok
23:46:23.0858 4788 [ 6D5D668F1D0B242836F1FFB04C136436 ] C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll
23:46:23.0858 4788 C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll - ok
23:46:23.0858 4788 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
23:46:23.0858 4788 C:\Windows\SysWOW64\setupapi.dll - ok
23:46:23.0874 4788 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
23:46:23.0874 4788 C:\Windows\SysWOW64\cfgmgr32.dll - ok
23:46:23.0874 4788 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
23:46:23.0874 4788 C:\Windows\SysWOW64\devobj.dll - ok
23:46:23.0874 4788 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
23:46:23.0874 4788 C:\Windows\SysWOW64\riched20.dll - ok
23:46:23.0889 4788 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
23:46:23.0889 4788 C:\Windows\System32\vsstrace.dll - ok
23:46:23.0889 4788 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
23:46:23.0889 4788 C:\Windows\SysWOW64\profapi.dll - ok
23:46:23.0905 4788 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
23:46:23.0905 4788 C:\Windows\SysWOW64\userenv.dll - ok
23:46:23.0905 4788 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
23:46:23.0905 4788 C:\Windows\SysWOW64\oledlg.dll - ok
23:46:23.0905 4788 [ A6154A954F08E99D27CEA4D3B9563172 ] C:\Windows\SysWOW64\newdev.dll
23:46:23.0905 4788 C:\Windows\SysWOW64\newdev.dll - ok
23:46:23.0921 4788 [ 5963633010616B25503EE126F55E8DE4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
23:46:23.0921 4788 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
23:46:23.0921 4788 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
23:46:23.0921 4788 C:\Windows\SysWOW64\apphelp.dll - ok
23:46:23.0921 4788 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
23:46:23.0921 4788 C:\Windows\SysWOW64\uxtheme.dll - ok
23:46:23.0936 4788 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
23:46:23.0936 4788 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
23:46:23.0936 4788 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
23:46:23.0936 4788 C:\Windows\SysWOW64\devrtl.dll - ok
23:46:23.0952 4788 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
23:46:23.0952 4788 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
23:46:23.0952 4788 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
23:46:23.0952 4788 C:\Windows\SysWOW64\clbcatq.dll - ok
23:46:23.0952 4788 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
23:46:23.0952 4788 C:\Windows\SysWOW64\mstask.dll - ok
23:46:23.0967 4788 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
23:46:23.0967 4788 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
23:46:23.0967 4788 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
23:46:23.0967 4788 C:\Windows\System32\dbghelp.dll - ok
23:46:23.0967 4788 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
23:46:23.0967 4788 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
23:46:23.0983 4788 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
23:46:23.0983 4788 C:\Windows\SysWOW64\dwmapi.dll - ok
23:46:23.0983 4788 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
23:46:23.0983 4788 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
23:46:23.0983 4788 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
23:46:23.0983 4788 C:\Windows\SysWOW64\wbemcomn.dll - ok
23:46:23.0999 4788 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
23:46:23.0999 4788 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
23:46:23.0999 4788 [ F55442690A70A0278A7EED4FAAEBF576 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
23:46:23.0999 4788 C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
23:46:24.0014 4788 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
23:46:24.0014 4788 C:\Windows\SysWOW64\cryptsp.dll - ok
23:46:24.0014 4788 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
23:46:24.0014 4788 C:\Windows\SysWOW64\rsaenh.dll - ok
23:46:24.0014 4788 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
23:46:24.0014 4788 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
23:46:24.0030 4788 [ 2B3BCC476DE273DD846985DF1F82C6F1 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~3.EXE
23:46:24.0030 4788 C:\PROGRA~2\WinTV\TVServer\CAPTUR~3.EXE - ok
23:46:24.0030 4788 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
23:46:24.0030 4788 C:\Windows\System32\httpapi.dll - ok
23:46:24.0045 4788 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
23:46:24.0045 4788 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
23:46:24.0045 4788 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
23:46:24.0045 4788 C:\Windows\SysWOW64\svchost.exe - ok
23:46:24.0061 4788 [ F928E5E72BBA15DD0CE9A26E0413D236 ] C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:46:24.0061 4788 C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe - ok
23:46:24.0061 4788 [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
23:46:24.0061 4788 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
23:46:24.0077 4788 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
23:46:24.0077 4788 C:\Windows\System32\vpnikeapi.dll - ok
23:46:24.0077 4788 [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
23:46:24.0077 4788 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
23:46:24.0077 4788 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Windows\System32\msvcr100.dll
23:46:24.0077 4788 C:\Windows\System32\msvcr100.dll - ok
23:46:24.0092 4788 [ F4AB66EC2FB7D1DF0219D59C7CF38BCC ] C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll
23:46:24.0092 4788 C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll - ok
23:46:24.0092 4788 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
23:46:24.0092 4788 C:\Windows\SysWOW64\sxs.dll - ok
23:46:24.0108 4788 [ DC5483CAD90D95D65B618E35C66E28DF ] C:\Windows\System32\mfevtps.exe
23:46:24.0108 4788 C:\Windows\System32\mfevtps.exe - ok
23:46:24.0108 4788 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
23:46:24.0108 4788 C:\Windows\System32\sfc.dll - ok
23:46:24.0123 4788 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
23:46:24.0123 4788 C:\Windows\System32\sfc_os.dll - ok
23:46:24.0123 4788 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
23:46:24.0123 4788 C:\Windows\System32\HPZinw12.dll - ok
23:46:24.0139 4788 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
23:46:24.0139 4788 C:\Windows\System32\wsock32.dll - ok
23:46:24.0139 4788 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
23:46:24.0139 4788 C:\Windows\System32\aepic.dll - ok
23:46:24.0139 4788 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
23:46:24.0139 4788 C:\Windows\System32\ncsi.dll - ok
23:46:24.0155 4788 [ 325D5963BFC15BEA175C11E1871E5561 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~4.EXE
23:46:24.0155 4788 C:\PROGRA~2\WinTV\TVServer\CAPTUR~4.EXE - ok
23:46:24.0170 4788 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
23:46:24.0170 4788 C:\Windows\System32\ssdpapi.dll - ok
23:46:24.0170 4788 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
23:46:24.0170 4788 C:\Windows\System32\drivers\PEAuth.sys - ok
23:46:24.0170 4788 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
23:46:24.0170 4788 C:\Windows\System32\aeevts.dll - ok
23:46:24.0186 4788 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
23:46:24.0186 4788 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
23:46:24.0186 4788 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
23:46:24.0186 4788 C:\Windows\System32\drivers\secdrv.sys - ok
23:46:24.0201 4788 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
23:46:24.0201 4788 C:\Windows\System32\HPZipm12.dll - ok
23:46:24.0201 4788 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
23:46:24.0201 4788 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
23:46:24.0217 4788 [ F0C3B543A95006ED2B2D07E1DA426813 ] C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll
23:46:24.0217 4788 C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll - ok
23:46:24.0217 4788 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
23:46:24.0217 4788 C:\Windows\SysWOW64\psapi.dll - ok
23:46:24.0217 4788 [ A325B4285781771F21EE38B849D6B7F2 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~2.EXE
23:46:24.0217 4788 C:\PROGRA~2\WinTV\TVServer\CAPTUR~2.EXE - ok
23:46:24.0233 4788 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
23:46:24.0233 4788 C:\Windows\SysWOW64\wtsapi32.dll - ok
23:46:24.0233 4788 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
23:46:24.0233 4788 C:\Windows\System32\drivers\srvnet.sys - ok
23:46:24.0248 4788 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
23:46:24.0248 4788 C:\Windows\System32\rundll32.exe - ok
23:46:24.0248 4788 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
23:46:24.0248 4788 C:\Windows\System32\drivers\tcpipreg.sys - ok
23:46:24.0264 4788 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
23:46:24.0264 4788 C:\Windows\System32\wiatrace.dll - ok
23:46:24.0264 4788 [ BB1D82C70960FC9F28BAD16A5D7D010D ] C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll
23:46:24.0264 4788 C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll - ok
23:46:24.0279 4788 [ 3048A48D730C2C905897A0A25AE8822D ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
23:46:24.0279 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe - ok
23:46:24.0279 4788 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
23:46:24.0279 4788 C:\Windows\SysWOW64\devenum.dll - ok
23:46:24.0295 4788 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
23:46:24.0295 4788 C:\Windows\SysWOW64\msdmo.dll - ok
23:46:24.0295 4788 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
23:46:24.0295 4788 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
23:46:24.0311 4788 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
23:46:24.0311 4788 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
23:46:24.0311 4788 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
23:46:24.0311 4788 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
23:46:24.0326 4788 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
23:46:24.0326 4788 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
23:46:24.0326 4788 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
23:46:24.0326 4788 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
23:46:24.0342 4788 [ 7D110D645030C05A06C3CD08D1E47D0A ] C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
23:46:24.0342 4788 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe - ok
23:46:24.0342 4788 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
23:46:24.0342 4788 C:\Windows\SysWOW64\rundll32.exe - ok
23:46:24.0357 4788 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
23:46:24.0357 4788 C:\Windows\SysWOW64\shfolder.dll - ok
23:46:24.0357 4788 [ A3C8D7B34E1262B9B9060876FEB691D8 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll
23:46:24.0357 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll - ok
23:46:24.0373 4788 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
23:46:24.0373 4788 C:\Windows\SysWOW64\mfc42.dll - ok
23:46:24.0373 4788 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:46:24.0373 4788 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
23:46:24.0389 4788 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
23:46:24.0389 4788 C:\Windows\System32\wbemcomn.dll - ok
23:46:24.0389 4788 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
23:46:24.0389 4788 C:\Windows\System32\SensApi.dll - ok
23:46:24.0389 4788 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
23:46:24.0389 4788 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
23:46:24.0404 4788 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
23:46:24.0404 4788 C:\Windows\System32\wer.dll - ok
23:46:24.0404 4788 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
23:46:24.0404 4788 C:\Windows\System32\wbem\WinMgmtR.dll - ok
23:46:24.0420 4788 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
23:46:24.0420 4788 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
23:46:24.0420 4788 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
23:46:24.0420 4788 C:\Windows\System32\wbem\fastprox.dll - ok
23:46:24.0435 4788 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
23:46:24.0435 4788 C:\Windows\System32\wbem\wbemcore.dll - ok
23:46:24.0435 4788 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
23:46:24.0435 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
23:46:24.0451 4788 [ 526BFE5365425630DC0A5666BF4EF975 ] C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll
23:46:24.0451 4788 C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll - ok
23:46:24.0451 4788 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
23:46:24.0451 4788 C:\Windows\System32\ntdsapi.dll - ok
23:46:24.0467 4788 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
23:46:24.0467 4788 C:\Windows\System32\wbem\wbemprox.dll - ok
23:46:24.0467 4788 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
23:46:24.0467 4788 C:\Windows\System32\wbem\esscli.dll - ok
23:46:24.0482 4788 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
23:46:24.0482 4788 C:\Windows\System32\wbem\wbemsvc.dll - ok
23:46:24.0482 4788 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
23:46:24.0482 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
23:46:24.0482 4788 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
23:46:24.0482 4788 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
23:46:24.0498 4788 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
23:46:24.0498 4788 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
23:46:24.0498 4788 [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
23:46:24.0498 4788 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
23:46:24.0513 4788 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
23:46:24.0513 4788 C:\Windows\System32\msxml3.dll - ok
23:46:24.0513 4788 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
23:46:24.0513 4788 C:\Windows\System32\ntshrui.dll - ok
23:46:24.0529 4788 [ 38D1F23EE031B615A8CA51DD1E523579 ] C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
23:46:24.0529 4788 C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe - ok
23:46:24.0529 4788 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
23:46:24.0529 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
23:46:24.0529 4788 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
23:46:24.0529 4788 C:\Windows\System32\IconCodecService.dll - ok
23:46:24.0545 4788 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
23:46:24.0545 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
23:46:24.0545 4788 [ A35679BDD1687623ECCA8CEA9B2AE6C2 ] C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll
23:46:24.0545 4788 C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll - ok
23:46:24.0560 4788 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
23:46:24.0560 4788 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
23:46:24.0560 4788 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
23:46:24.0560 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
23:46:24.0576 4788 [ FD89893D9FA82A0EE0E41D79D1F134A3 ] C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll
23:46:24.0576 4788 C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll - ok
23:46:24.0576 4788 [ CFF89FED4516F3850383ED66E0973A0D ] C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll
23:46:24.0576 4788 C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll - ok
23:46:24.0591 4788 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
23:46:24.0591 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
23:46:24.0591 4788 [ 05248F2E6E1AFA6972D058C36199DEB7 ] C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
23:46:24.0591 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe - ok
23:46:24.0607 4788 [ 983E4E902E9857CE4E5B876165683686 ] C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll
23:46:24.0607 4788 C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll - ok
23:46:24.0607 4788 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
23:46:24.0607 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
23:46:24.0623 4788 [ 270DB70DF6289F49A5FC7B462D5F6146 ] C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll
23:46:24.0623 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll - ok
23:46:24.0623 4788 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
23:46:24.0623 4788 C:\Windows\System32\dssenh.dll - ok
23:46:24.0638 4788 [ 6B8DAB849C74538EEA1EDD34E84E7924 ] C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll
23:46:24.0638 4788 C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll - ok
23:46:24.0638 4788 [ 9BAACAAEAD44E4CACEBC960452E628FA ] C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll
23:46:24.0638 4788 C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll - ok
23:46:24.0654 4788 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
23:46:24.0654 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
23:46:24.0654 4788 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
23:46:24.0654 4788 C:\Windows\System32\drivers\srv2.sys - ok
23:46:24.0669 4788 [ 389BC447DF363450A78845D35DBA0047 ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
23:46:24.0669 4788 C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe - ok
23:46:24.0669 4788 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
23:46:24.0669 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
23:46:24.0685 4788 [ A76F263FF0E341213955BCC69A488350 ] C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll
23:46:24.0685 4788 C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll - ok
23:46:24.0685 4788 [ 45AD07D2FCA4F62C37883EED850BB7BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll
23:46:24.0685 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll - ok
23:46:24.0701 4788 [ 295657F93F6B19DEEA804048E1CB4FF9 ] C:\Windows\System32\lz32.dll
23:46:24.0701 4788 C:\Windows\System32\lz32.dll - ok
23:46:24.0701 4788 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
23:46:24.0701 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
23:46:24.0701 4788 [ 6AA0A0A53729FF73A27089F1C956FDC9 ] C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll
23:46:24.0701 4788 C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll - ok
23:46:24.0716 4788 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
23:46:24.0716 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
23:46:24.0716 4788 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
23:46:24.0716 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
23:46:24.0732 4788 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
23:46:24.0732 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
23:46:24.0732 4788 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
23:46:24.0732 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
23:46:24.0747 4788 [ 06480AAD7B811DE77FBDEA49579EB76A ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll
23:46:24.0747 4788 C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll - ok
23:46:24.0747 4788 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
23:46:24.0747 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
23:46:24.0763 4788 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
23:46:24.0763 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
23:46:24.0763 4788 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
23:46:24.0763 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
23:46:24.0779 4788 [ 7760899D95C2D1AAC5C1D34AF41A11C7 ] C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat
23:46:24.0779 4788 C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat - ok
23:46:24.0779 4788 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
23:46:24.0779 4788 C:\Windows\System32\drivers\srv.sys - ok
23:46:24.0794 4788 [ 4077AB86BF544BD8AFE95394DC0D06F2 ] C:\PROGRA~1\McAfee\MPF\MpfSvc.dll
23:46:24.0794 4788 C:\PROGRA~1\McAfee\MPF\MpfSvc.dll - ok
23:46:24.0794 4788 [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Windows\System32\atl100.dll
23:46:24.0794 4788 C:\Windows\System32\atl100.dll - ok
23:46:24.0794 4788 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Windows\System32\msvcp100.dll
23:46:24.0794 4788 C:\Windows\System32\msvcp100.dll - ok
23:46:24.0810 4788 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
23:46:24.0810 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
23:46:24.0810 4788 [ 5AA7C15994DA44CFF8D2CDB0E0000188 ] C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll
23:46:24.0810 4788 C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll - ok
23:46:24.0825 4788 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
23:46:24.0825 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
23:46:24.0825 4788 [ 7CA22382E2B042DDF838E8880397BFF1 ] C:\PROGRA~1\McAfee\MSK\msksrvr.dll
23:46:24.0825 4788 C:\PROGRA~1\McAfee\MSK\msksrvr.dll - ok
23:46:24.0841 4788 [ 47CDFF9055CF0A95E01AB60B4A435B4E ] C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll
23:46:24.0841 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll - ok
23:46:24.0841 4788 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
23:46:24.0841 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
23:46:24.0857 4788 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
23:46:24.0857 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
23:46:24.0857 4788 [ 47EB9DCD62C9CF3C93A5CE820379BF37 ] C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll
23:46:24.0857 4788 C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll - ok
23:46:24.0872 4788 [ C85841E14D7BD4188BD09A221EA3C7B0 ] C:\Program Files\Common Files\McAfee\Platform\LangSel.dll
23:46:24.0872 4788 C:\Program Files\Common Files\McAfee\Platform\LangSel.dll - ok
23:46:24.0872 4788 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
23:46:24.0872 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
23:46:24.0888 4788 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
23:46:24.0888 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
23:46:24.0888 4788 [ 66DDB2D2ECA7674590712CA5A088BBC8 ] C:\PROGRA~1\McAfee\MPS\mps.dll
23:46:24.0888 4788 C:\PROGRA~1\McAfee\MPS\mps.dll - ok
23:46:24.0903 4788 [ 14AA26963C00F2B7498661257D276009 ] C:\PROGRA~1\McAfee\MSK\mskengn.dll
23:46:24.0903 4788 C:\PROGRA~1\McAfee\MSK\mskengn.dll - ok
23:46:24.0903 4788 [ 951E1430E222A40D9A72F90403F4BABC ] C:\Program Files\McAfee\MPS\mpscfg.dll
23:46:24.0903 4788 C:\Program Files\McAfee\MPS\mpscfg.dll - ok
23:46:24.0903 4788 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
23:46:24.0919 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
23:46:24.0919 4788 [ FAF9949FE74EFF0C931767C8670E4648 ] C:\PROGRA~1\McAfee\MSK\mskupd.dll
23:46:24.0919 4788 C:\PROGRA~1\McAfee\MSK\mskupd.dll - ok
23:46:24.0919 4788 [ E50929C46B8089A3ED607FE4D42690E3 ] C:\Program Files\McAfee\MSC\mclwapi.dll
23:46:24.0919 4788 C:\Program Files\McAfee\MSC\mclwapi.dll - ok
23:46:24.0935 4788 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
23:46:24.0935 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
23:46:24.0935 4788 [ E21ACA2F36B26282971FABFC5DA3FED4 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll
23:46:24.0935 4788 C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll - ok
23:46:24.0950 4788 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
23:46:24.0950 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
23:46:24.0950 4788 [ 787234856EDDA48D5D49B48C2B37B373 ] C:\PROGRA~1\McAfee\MSK\mskwm.dll
23:46:24.0950 4788 C:\PROGRA~1\McAfee\MSK\mskwm.dll - ok
23:46:24.0966 4788 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
23:46:24.0966 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
23:46:24.0966 4788 [ FFF2F32E37DB06D2D67E2BC090F86313 ] C:\PROGRA~1\McAfee\MSK\mskxaif.dll
23:46:24.0966 4788 C:\PROGRA~1\McAfee\MSK\mskxaif.dll - ok
23:46:24.0981 4788 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
23:46:24.0981 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
23:46:24.0981 4788 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
23:46:24.0981 4788 C:\Windows\System32\wbem\wmiutils.dll - ok
23:46:24.0997 4788 [ AA8C627E45F78443A844074E791EB310 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll
23:46:24.0997 4788 C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll - ok
23:46:24.0997 4788 [ D3535286093074C91465DADE917905E4 ] C:\PROGRA~1\McAfee\MPS\mpsevh.dll
23:46:24.0997 4788 C:\PROGRA~1\McAfee\MPS\mpsevh.dll - ok
23:46:25.0013 4788 [ 72F79F28538B54BBA0FBE233C7778310 ] C:\PROGRA~1\McAfee\MPS\MPSMisp.dll
23:46:25.0013 4788 C:\PROGRA~1\McAfee\MPS\MPSMisp.dll - ok
23:46:25.0013 4788 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
23:46:25.0013 4788 C:\Windows\AppPatch\AcLayers.dll - ok
23:46:25.0013 4788 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
23:46:25.0013 4788 C:\Windows\SysWOW64\mpr.dll - ok
23:46:25.0028 4788 [ E337DE8814EABEDEA01919B94D323078 ] C:\Windows\AppPatch\acwow64.dll
23:46:25.0028 4788 C:\Windows\AppPatch\acwow64.dll - ok
23:46:25.0028 4788 [ 43EF8CA8FA9DC5F998FBC4C12C9556E2 ] C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll
23:46:25.0028 4788 C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll - ok
23:46:25.0044 4788 [ 76B71087B838BFB68F199CB4E194CF64 ] C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat
23:46:25.0044 4788 C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat - ok
23:46:25.0044 4788 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
23:46:25.0044 4788 C:\Windows\SysWOW64\odbc32.dll - ok
23:46:25.0059 4788 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
23:46:25.0059 4788 C:\Windows\SysWOW64\msvcp60.dll - ok
23:46:25.0059 4788 [ 71BCE52E3143FA4E12958C897962FB1D ] C:\PROGRA~1\McAfee\MPF\MpfEvt.dll
23:46:25.0059 4788 C:\PROGRA~1\McAfee\MPF\MpfEvt.dll - ok
23:46:25.0059 4788 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
23:46:25.0059 4788 C:\Windows\SysWOW64\odbcint.dll - ok
23:46:25.0075 4788 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
23:46:25.0075 4788 C:\Windows\SysWOW64\ntdsapi.dll - ok
23:46:25.0075 4788 [ AE923380F5ABB8917A5A8B774541064A ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\PCMRRec4.dll
23:46:25.0075 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\PCMRRec4.dll - ok
23:46:25.0091 4788 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
23:46:25.0091 4788 C:\Windows\SysWOW64\bcrypt.dll - ok
23:46:25.0091 4788 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
23:46:25.0091 4788 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
23:46:25.0106 4788 [ 3FDB77D0BBEEB36AE35077ABC0BF80EC ] C:\Windows\SysWOW64\odbcjt32.dll
23:46:25.0106 4788 C:\Windows\SysWOW64\odbcjt32.dll - ok
23:46:25.0106 4788 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
23:46:25.0106 4788 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
23:46:25.0122 4788 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
23:46:25.0122 4788 C:\Windows\SysWOW64\msjet40.dll - ok
23:46:25.0122 4788 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
23:46:25.0122 4788 C:\Windows\SysWOW64\mswstr10.dll - ok
23:46:25.0137 4788 [ 03F86B6A95728E83364B67FCA192DFE9 ] C:\Windows\SysWOW64\odbcji32.dll
23:46:25.0137 4788 C:\Windows\SysWOW64\odbcji32.dll - ok
23:46:25.0137 4788 [ 0219B6F2329F4C1BC24580C83D0F3645 ] C:\Windows\SysWOW64\msjint40.dll
23:46:25.0137 4788 C:\Windows\SysWOW64\msjint40.dll - ok
23:46:25.0137 4788 [ 870285A6C2429CFC47FF95DA49313664 ] C:\Windows\SysWOW64\msjter40.dll
23:46:25.0137 4788 C:\Windows\SysWOW64\msjter40.dll - ok
23:46:25.0153 4788 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
23:46:25.0153 4788 C:\Windows\System32\sqmapi.dll - ok
23:46:25.0153 4788 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
23:46:25.0153 4788 C:\Windows\System32\wdscore.dll - ok
23:46:25.0169 4788 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
23:46:25.0169 4788 C:\Windows\System32\wbem\repdrvfs.dll - ok
23:46:25.0169 4788 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
23:46:25.0169 4788 C:\Windows\SysWOW64\avicap32.dll - ok
23:46:25.0184 4788 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
23:46:25.0184 4788 C:\Windows\SysWOW64\msvfw32.dll - ok
23:46:25.0184 4788 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
23:46:25.0184 4788 C:\Windows\SysWOW64\vfwwdm32.dll - ok
23:46:25.0200 4788 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
23:46:25.0200 4788 C:\Windows\System32\netmsg.dll - ok
23:46:25.0200 4788 [ 9DD88A4B975D0D8EDDA6C7654BC7DFC3 ] C:\PROGRA~2\WinTV\TVServer\HauppaugeTVServerps.dll
23:46:25.0200 4788 C:\PROGRA~2\WinTV\TVServer\HauppaugeTVServerps.dll - ok
23:46:25.0215 4788 [ F74CEEFC48001CBFD086AE5044E5F556 ] C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll
23:46:25.0215 4788 C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll - ok
23:46:25.0215 4788 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
23:46:25.0215 4788 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
23:46:25.0231 4788 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
23:46:25.0231 4788 C:\Windows\System32\ncobjapi.dll - ok
23:46:25.0231 4788 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
23:46:25.0231 4788 C:\Windows\System32\wbem\wbemess.dll - ok
23:46:25.0231 4788 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
23:46:25.0231 4788 C:\Windows\System32\clusapi.dll - ok
23:46:25.0247 4788 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
23:46:25.0247 4788 C:\Windows\System32\sscore.dll - ok
23:46:25.0247 4788 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
23:46:25.0247 4788 C:\Windows\SysWOW64\MMDevAPI.dll - ok
23:46:25.0262 4788 [ B4B133DE7161E7489DDC73184347FCF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll
23:46:25.0262 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll - ok
23:46:25.0262 4788 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
23:46:25.0262 4788 C:\Windows\System32\resutils.dll - ok
23:46:25.0278 4788 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
23:46:25.0278 4788 C:\Windows\SysWOW64\propsys.dll - ok
23:46:25.0278 4788 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
23:46:25.0278 4788 C:\Windows\SysWOW64\wdmaud.drv - ok
23:46:25.0293 4788 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
23:46:25.0293 4788 C:\Windows\System32\nci.dll - ok
23:46:25.0293 4788 [ D13A0F67DC8943DB94329C10D5C6E86A ] C:\Program Files\McAfee\MSC\oemui.dll
23:46:25.0293 4788 C:\Program Files\McAfee\MSC\oemui.dll - ok
23:46:25.0309 4788 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
23:46:25.0309 4788 C:\Windows\SysWOW64\ksuser.dll - ok
23:46:25.0309 4788 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
23:46:25.0309 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
23:46:25.0309 4788 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
23:46:25.0309 4788 C:\Windows\System32\hnetcfg.dll - ok
23:46:25.0325 4788 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
23:46:25.0325 4788 C:\Windows\SysWOW64\avrt.dll - ok
23:46:25.0325 4788 [ 8A40AF19D06214C410E5ED8E178F66FB ] C:\Program Files\McAfee\MPF\L10N.dll
23:46:25.0325 4788 C:\Program Files\McAfee\MPF\L10N.dll - ok
23:46:25.0340 4788 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
23:46:25.0340 4788 C:\Windows\SysWOW64\AudioSes.dll - ok
23:46:25.0340 4788 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
23:46:25.0340 4788 C:\Windows\SysWOW64\msacm32.drv - ok
23:46:25.0356 4788 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
23:46:25.0356 4788 C:\Windows\SysWOW64\msacm32.dll - ok
23:46:25.0356 4788 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
23:46:25.0356 4788 C:\Windows\SysWOW64\midimap.dll - ok
23:46:25.0371 4788 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
23:46:25.0371 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
23:46:25.0371 4788 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
23:46:25.0371 4788 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
23:46:25.0387 4788 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
23:46:25.0387 4788 C:\Windows\SysWOW64\oleacc.dll - ok
23:46:25.0387 4788 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
23:46:25.0387 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
23:46:25.0403 4788 [ B508A4EE516D905730458BB50B79979B ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
23:46:25.0403 4788 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe - ok
23:46:25.0403 4788 [ C65B115A03DB0260895DE96681E88221 ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
23:46:25.0403 4788 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe - ok
23:46:25.0403 4788 [ 682A19CEA431A29D0B5A931332ADBC2A ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
23:46:25.0403 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe - ok
23:46:25.0418 4788 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
23:46:25.0418 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
23:46:25.0418 4788 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
23:46:25.0418 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
23:46:25.0434 4788 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
23:46:25.0434 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
23:46:25.0434 4788 [ AD563223033972BF1CFBAA36C8AFCF95 ] C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll
23:46:25.0434 4788 C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll - ok
23:46:25.0449 4788 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
23:46:25.0449 4788 C:\Windows\System32\npmproxy.dll - ok
23:46:25.0449 4788 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
23:46:25.0449 4788 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
23:46:25.0465 4788 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
23:46:25.0465 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
23:46:25.0465 4788 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
23:46:25.0465 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
23:46:25.0481 4788 [ 328C62E8462C073AE2E1C6290BA05468 ] C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll
23:46:25.0481 4788 C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll - ok
23:46:25.0481 4788 [ DF8D07059E7237E0BE9C1421EF5F9482 ] C:\Windows\System32\drivers\cfwids.sys
23:46:25.0481 4788 C:\Windows\System32\drivers\cfwids.sys - ok
23:46:25.0496 4788 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
23:46:25.0496 4788 C:\Windows\SysWOW64\msvcp71.dll - ok
23:46:25.0496 4788 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
23:46:25.0496 4788 C:\Windows\System32\NapiNSP.dll - ok
23:46:25.0512 4788 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
23:46:25.0512 4788 C:\Windows\SysWOW64\msvcr71.dll - ok
23:46:25.0512 4788 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
23:46:25.0512 4788 C:\Windows\System32\pnrpnsp.dll - ok
23:46:25.0527 4788 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
23:46:25.0527 4788 C:\Windows\System32\winrnr.dll - ok
23:46:25.0527 4788 [ A91A5019E7338A96E08B8CAAA621D936 ] C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll
23:46:25.0527 4788 C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll - ok
23:46:25.0527 4788 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
23:46:25.0543 4788 C:\Windows\System32\wbem\cimwin32.dll - ok
23:46:25.0543 4788 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
23:46:25.0543 4788 C:\Windows\System32\framedynos.dll - ok
23:46:25.0543 4788 [ CD0BC0B6B8D219808AEA3ECD4E889B19 ] C:\Windows\System32\raserver.exe
23:46:25.0543 4788 C:\Windows\System32\raserver.exe - ok
23:46:25.0559 4788 [ 0ACA94DFBDE5C99378A6C9E6038DAA04 ] C:\Program Files\McAfee\MSC\mcoemres.dll
23:46:25.0559 4788 C:\Program Files\McAfee\MSC\mcoemres.dll - ok
23:46:25.0574 4788 [ E6D5B3D94AE65BBD437C2749701225B5 ] C:\Program Files\Common Files\McAfee\Platform\Core\mccoreps.dll
23:46:25.0574 4788 C:\Program Files\Common Files\McAfee\Platform\Core\mccoreps.dll - ok
23:46:25.0574 4788 [ 77BEC56CFEC15FF113236A0B9F81C232 ] C:\Program Files\McAfee\MSC\mcprlres.dll
23:46:25.0574 4788 C:\Program Files\McAfee\MSC\mcprlres.dll - ok
23:46:25.0590 4788 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
23:46:25.0590 4788 C:\Windows\System32\wbem\wmipcima.dll - ok
23:46:25.0590 4788 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
23:46:25.0605 4788 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
23:46:25.0605 4788 [ C1D8836625296DE901938B593842238E ] C:\PROGRA~1\McAfee\MSC\McAPExe.exe
23:46:25.0605 4788 C:\PROGRA~1\McAfee\MSC\McAPExe.exe - ok
23:46:25.0605 4788 [ 3C31382EA064F271DB5E9C78DABAEDB1 ] C:\Program Files\Common Files\McAfee\Platform\sqlite3.dll
23:46:25.0605 4788 C:\Program Files\Common Files\McAfee\Platform\sqlite3.dll - ok
23:46:25.0621 4788 [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Windows\SysWOW64\MFC71u.dll
23:46:25.0621 4788 C:\Windows\SysWOW64\MFC71u.dll - ok
23:46:25.0621 4788 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
23:46:25.0621 4788 C:\Windows\System32\perftrack.dll - ok
23:46:25.0637 4788 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
23:46:25.0637 4788 C:\Windows\System32\PortableDeviceApi.dll - ok
23:46:25.0637 4788 [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
23:46:25.0637 4788 C:\Windows\System32\msra.exe - ok
23:46:25.0652 4788 [ 322A96BFB36CEAA506F74D5F98CDA723 ] C:\Program Files\Windows Media Player\wmplayer.exe
23:46:25.0652 4788 C:\Program Files\Windows Media Player\wmplayer.exe - ok
23:46:25.0652 4788 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
23:46:25.0652 4788 C:\Windows\SysWOW64\ddraw.dll - ok
23:46:25.0652 4788 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
23:46:25.0668 4788 C:\Windows\SysWOW64\dciman32.dll - ok
23:46:25.0668 4788 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
23:46:25.0668 4788 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
23:46:25.0683 4788 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
23:46:25.0683 4788 C:\Windows\System32\IPSECSVC.DLL - ok
23:46:25.0683 4788 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
23:46:25.0683 4788 C:\Windows\System32\diagperf.dll - ok
23:46:25.0683 4788 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
23:46:25.0683 4788 C:\Windows\System32\ndiscapCfg.dll - ok
23:46:25.0699 4788 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
23:46:25.0699 4788 C:\Windows\System32\pnpts.dll - ok
23:46:25.0699 4788 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
23:46:25.0699 4788 C:\Windows\System32\mprapi.dll - ok
23:46:25.0715 4788 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
23:46:25.0715 4788 C:\Windows\System32\radardt.dll - ok
23:46:25.0715 4788 [ 552109D914C92269FECBB3AE7EC1B20D ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
23:46:25.0715 4788 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll - ok
23:46:25.0730 4788 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
23:46:25.0730 4788 C:\Windows\System32\wdiasqmmodule.dll - ok
23:46:25.0730 4788 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
23:46:25.0730 4788 C:\Windows\System32\Apphlpdm.dll - ok
23:46:25.0746 4788 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
23:46:25.0746 4788 C:\Windows\System32\mprmsg.dll - ok
23:46:25.0746 4788 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
23:46:25.0746 4788 C:\Windows\SysWOW64\msxml3.dll - ok
23:46:25.0746 4788 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
23:46:25.0746 4788 C:\Windows\System32\FwRemoteSvr.dll - ok
23:46:25.0761 4788 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
23:46:25.0761 4788 C:\Windows\SysWOW64\d3d9.dll - ok
23:46:25.0761 4788 [ F860DD3F552437E37AD35D2AC0258CF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll
23:46:25.0761 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll - ok
23:46:25.0777 4788 [ 161A7C9EC2F7CA0F0AB151E5A133672A ] C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll
23:46:25.0777 4788 C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll - ok
23:46:25.0777 4788 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
23:46:25.0777 4788 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
23:46:25.0793 4788 [ 1E773E34A9ACD5CCF82CF6275A5A3865 ] C:\PROGRA~1\McAfee\MPF\MpfApi.dll
23:46:25.0793 4788 C:\PROGRA~1\McAfee\MPF\MpfApi.dll - ok
23:46:25.0793 4788 [ 2D53234C24B0103FDE0BE06782AA6F80 ] C:\Windows\System32\drivers\mfeapfk.sys
23:46:25.0793 4788 C:\Windows\System32\drivers\mfeapfk.sys - ok
23:46:25.0808 4788 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
23:46:25.0808 4788 C:\Windows\SysWOW64\secur32.dll - ok
23:46:25.0808 4788 [ 2CEFF13ACE25A40BD8D97654944297CD ] C:\Windows\svchost.exe
23:46:25.0808 4788 C:\Windows\svchost.exe - ok
23:46:25.0808 4788 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
23:46:25.0808 4788 C:\Windows\SysWOW64\d3d8thk.dll - ok
23:46:25.0824 4788 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Windows\SysWOW64\MFC71.dll
23:46:25.0824 4788 C:\Windows\SysWOW64\MFC71.dll - ok
23:46:25.0824 4788 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
23:46:25.0824 4788 C:\Windows\System32\runonce.exe - ok
23:46:25.0839 4788 [ 4CC0649A5761CF5DADA9666857E7F851 ] C:\Program Files\McAfee\VirusScan\McVSPP.dll
23:46:25.0839 4788 C:\Program Files\McAfee\VirusScan\McVSPP.dll - ok
23:46:25.0839 4788 [ 968176B20CF774C938E4CE320AD33CB5 ] C:\Program Files\McAfee\VirusScan\mcvsocfg.dll
23:46:25.0839 4788 C:\Program Files\McAfee\VirusScan\mcvsocfg.dll - ok
23:46:25.0855 4788 [ 6B5BDF5A9119E693AC7EE93FD72E6934 ] C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll
23:46:25.0855 4788 C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll - ok
23:46:25.0855 4788 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
23:46:25.0855 4788 C:\Windows\SysWOW64\runonce.exe - ok
23:46:25.0871 4788 [ 7D4DC95A1F5E0818E74A399960569EA1 ] C:\Windows\SysWOW64\wuapi.dll
23:46:25.0871 4788 C:\Windows\SysWOW64\wuapi.dll - ok
23:46:25.0871 4788 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
23:46:25.0871 4788 C:\Windows\SysWOW64\dsound.dll - ok
23:46:25.0871 4788 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
23:46:25.0871 4788 C:\Windows\SysWOW64\cabinet.dll - ok
23:46:25.0886 4788 [ FB633DCC8664E4CCACF562DB5BAE38CF ] C:\Windows\SysWOW64\wups.dll
23:46:25.0886 4788 C:\Windows\SysWOW64\wups.dll - ok
23:46:25.0886 4788 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
23:46:25.0886 4788 C:\Windows\SysWOW64\powrprof.dll - ok
23:46:25.0902 4788 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
23:46:25.0902 4788 C:\Windows\SysWOW64\SPInf.dll - ok
23:46:25.0902 4788 [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\SysWOW64\spfileq.dll
23:46:25.0902 4788 C:\Windows\SysWOW64\spfileq.dll - ok
23:46:25.0917 4788 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
23:46:25.0917 4788 C:\Windows\SysWOW64\drprov.dll - ok
23:46:25.0917 4788 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
23:46:25.0917 4788 C:\Windows\SysWOW64\winsta.dll - ok
23:46:25.0933 4788 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
23:46:25.0933 4788 C:\Windows\SysWOW64\ntlanman.dll - ok
23:46:25.0933 4788 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
23:46:25.0933 4788 C:\Windows\SysWOW64\davclnt.dll - ok
23:46:25.0949 4788 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
23:46:25.0949 4788 C:\Windows\SysWOW64\davhlpr.dll - ok
23:46:25.0949 4788 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
23:46:25.0949 4788 C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL - ok
23:46:25.0964 4788 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
23:46:25.0964 4788 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
23:46:25.0964 4788 [ AD7F44A140909E6F26F681F0BBDE198E ] C:\Program Files\McAfee\VirusScan\mcvsoshl.dll
23:46:25.0964 4788 C:\Program Files\McAfee\VirusScan\mcvsoshl.dll - ok
23:46:25.0964 4788 [ 4977839ED04B02F66A43EA1EBF4B69D5 ] C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll
23:46:25.0964 4788 C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll - ok
23:46:25.0980 4788 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
23:46:25.0980 4788 C:\Windows\System32\dimsjob.dll - ok
23:46:25.0980 4788 [ 775A019594F4F82467F8388558E2EA0A ] C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll
23:46:25.0980 4788 C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll - ok
23:46:25.0995 4788 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
23:46:25.0995 4788 C:\Windows\SysWOW64\cmd.exe - ok
23:46:25.0995 4788 [ 0ED5991EC13A811F27C31A98B70715BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll
23:46:25.0995 4788 C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll - ok
23:46:26.0011 4788 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
23:46:26.0011 4788 C:\Windows\System32\pautoenr.dll - ok
23:46:26.0011 4788 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
23:46:26.0011 4788 C:\Windows\System32\certcli.dll - ok
23:46:26.0027 4788 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
23:46:26.0027 4788 C:\Windows\System32\CertEnroll.dll - ok
23:46:26.0027 4788 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
23:46:26.0027 4788 C:\Windows\SysWOW64\winbrand.dll - ok
23:46:26.0042 4788 [ 7CAB8079DA80480477435FC57F5C8F38 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll
23:46:26.0042 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll - ok
23:46:26.0042 4788 [ 3F126756F43B4EE74A4831145D99B9BA ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll
23:46:26.0042 4788 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll - ok
23:46:26.0042 4788 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
23:46:26.0042 4788 C:\Windows\SysWOW64\ieframe.dll - ok
23:46:26.0058 4788 [ 088CF5B6380FB9002F2A4246F812225D ] C:\Windows\SysWOW64\asycfilt.dll
23:46:26.0058 4788 C:\Windows\SysWOW64\asycfilt.dll - ok
23:46:26.0058 4788 [ 7BF6F992F69A4FFD0ACE7B6F817C6589 ] C:\Windows\SysWOW64\igdumdx32.dll
23:46:26.0058 4788 C:\Windows\SysWOW64\igdumdx32.dll - ok
23:46:26.0073 4788 [ 3B685BA6B17F774504C0C65988600689 ] C:\Windows\SysWOW64\igdumd32.dll
23:46:26.0073 4788 C:\Windows\SysWOW64\igdumd32.dll - ok
23:46:26.0073 4788 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
23:46:26.0073 4788 C:\Windows\SysWOW64\shdocvw.dll - ok
23:46:26.0089 4788 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Vicky\AppData\Local\Temp\CBFF848B-D558-4F3F-9117-6EB4B1239949.exe
23:46:26.0089 4788 C:\Users\Vicky\AppData\Local\Temp\CBFF848B-D558-4F3F-9117-6EB4B1239949.exe - ok
23:46:26.0089 4788 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
23:46:26.0089 4788 C:\Windows\SysWOW64\dnsapi.dll - ok
23:46:26.0105 4788 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
23:46:26.0105 4788 C:\Windows\SysWOW64\rasapi32.dll - ok
23:46:26.0105 4788 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
23:46:26.0105 4788 C:\Windows\SysWOW64\rasman.dll - ok
23:46:26.0105 4788 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
23:46:26.0105 4788 C:\Windows\SysWOW64\rtutils.dll - ok
23:46:26.0120 4788 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
23:46:26.0120 4788 C:\Windows\SysWOW64\ncrypt.dll - ok
23:46:26.0120 4788 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
23:46:26.0120 4788 C:\Windows\SysWOW64\gpapi.dll - ok
23:46:26.0136 4788 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
23:46:26.0136 4788 C:\Windows\SysWOW64\SensApi.dll - ok
23:46:26.0136 4788 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
23:46:26.0136 4788 C:\Windows\SysWOW64\mswsock.dll - ok
23:46:26.0151 4788 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
23:46:26.0151 4788 C:\Windows\SysWOW64\cryptnet.dll - ok
23:46:26.0151 4788 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
23:46:26.0151 4788 C:\Windows\SysWOW64\wship6.dll - ok
23:46:26.0167 4788 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
23:46:26.0167 4788 C:\Windows\SysWOW64\netprofm.dll - ok
23:46:26.0167 4788 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
23:46:26.0167 4788 C:\Windows\SysWOW64\nlaapi.dll - ok
23:46:26.0183 4788 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
23:46:26.0183 4788 C:\Windows\SysWOW64\npmproxy.dll - ok
23:46:26.0183 4788 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
23:46:26.0183 4788 C:\Windows\SysWOW64\rasadhlp.dll - ok
23:46:26.0198 4788 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
23:46:26.0198 4788 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
23:46:26.0198 4788 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
23:46:26.0198 4788 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
23:46:26.0214 4788 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
23:46:26.0214 4788 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
23:46:26.0214 4788 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
23:46:26.0214 4788 C:\Windows\SysWOW64\EhStorShell.dll - ok
23:46:26.0214 4788 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
23:46:26.0214 4788 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
23:46:26.0229 4788 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll
23:46:26.0229 4788 C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll - ok
23:46:26.0229 4788 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
23:46:26.0229 4788 C:\Windows\SysWOW64\ntshrui.dll - ok
23:46:26.0245 4788 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
23:46:26.0245 4788 C:\Windows\System32\wlaninst.dll - ok
23:46:26.0245 4788 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
23:46:26.0245 4788 C:\Windows\System32\wwaninst.dll - ok
23:46:26.0261 4788 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
23:46:26.0261 4788 C:\Windows\SysWOW64\slc.dll - ok
23:46:26.0261 4788 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
23:46:26.0261 4788 C:\Windows\SysWOW64\imageres.dll - ok
23:46:26.0276 4788 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
23:46:26.0276 4788 C:\Windows\System32\spfileq.dll - ok
23:46:26.0276 4788 [ E4CF00BD38B2F3E5A2473690B94B1785 ] C:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Common\CLRCEngine3.dll
23:46:26.0276 4788 C:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Common\CLRCEngine3.dll - ok
23:46:26.0276 4788 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
23:46:26.0276 4788 C:\Windows\System32\wmi.dll - ok
23:46:26.0292 4788 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
23:46:26.0292 4788 C:\Windows\System32\browcli.dll - ok
23:46:26.0292 4788 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
23:46:26.0292 4788 C:\Windows\System32\schedcli.dll - ok
23:46:26.0307 4788 [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
23:46:26.0307 4788 C:\Windows\SysWOW64\mshtml.dll - ok
23:46:26.0307 4788 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
23:46:26.0307 4788 C:\Windows\SysWOW64\mlang.dll - ok
23:46:26.0323 4788 [ 06C14CE6EE41C0498027D8ED7BC895AE ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapX.dll
23:46:26.0323 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapX.dll - ok
23:46:26.0323 4788 [ A03BE0BEDD773F73A79E0AFBEAA26DE2 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLAuMixer.dll
23:46:26.0323 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLAuMixer.dll - ok
23:46:26.0339 4788 [ 260D941246F52B6F456765D24F7D5A6B ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll
23:46:26.0339 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll - ok
23:46:26.0339 4788 [ 24CAEDCD73B5B0E22226283B7B2468C7 ] C:\Windows\SysWOW64\mfc42u.dll
23:46:26.0339 4788 C:\Windows\SysWOW64\mfc42u.dll - ok
23:46:26.0354 4788 [ 212616970ECE8076B8AFDC171F1E6E64 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll
23:46:26.0354 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll - ok
23:46:26.0354 4788 [ A4D34A0ACCF461C0F2D5D67FDE87F92E ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll
23:46:26.0354 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll - ok
23:46:26.0370 4788 [ F71829B5FBB262B0641F47A7773EA735 ] C:\Program Files\McAfee\MSK\MskSet64.dll
23:46:26.0370 4788 C:\Program Files\McAfee\MSK\MskSet64.dll - ok
23:46:26.0370 4788 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
23:46:26.0370 4788 C:\Windows\SysWOW64\msimtf.dll - ok
23:46:26.0370 4788 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
23:46:26.0370 4788 C:\Windows\SysWOW64\msls31.dll - ok
23:46:26.0385 4788 [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
23:46:26.0385 4788 C:\Windows\SysWOW64\jscript9.dll - ok
23:46:26.0385 4788 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
23:46:26.0385 4788 C:\Windows\SysWOW64\d2d1.dll - ok
23:46:26.0401 4788 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
23:46:26.0401 4788 C:\Windows\SysWOW64\DWrite.dll - ok
23:46:26.0401 4788 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
23:46:26.0401 4788 C:\Windows\SysWOW64\dxgi.dll - ok
23:46:26.0417 4788 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
23:46:26.0417 4788 C:\Windows\SysWOW64\d3d10_1.dll - ok
23:46:26.0417 4788 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
23:46:26.0417 4788 C:\Windows\SysWOW64\d3d10_1core.dll - ok
23:46:26.0417 4788 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
23:46:26.0432 4788 C:\Windows\SysWOW64\d3d10warp.dll - ok
23:46:26.0432 4788 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
23:46:26.0432 4788 C:\Windows\SysWOW64\sfc.dll - ok
23:46:26.0432 4788 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
23:46:26.0432 4788 C:\Windows\SysWOW64\sfc_os.dll - ok
23:46:26.0448 4788 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
23:46:26.0448 4788 C:\Windows\System32\esent.dll - ok
23:46:26.0448 4788 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
23:46:26.0448 4788 C:\Windows\System32\wmploc.DLL - ok
23:46:26.0463 4788 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
23:46:26.0463 4788 C:\Windows\System32\wbem\NCProv.dll - ok
23:46:26.0463 4788 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
23:46:26.0463 4788 C:\Windows\SysWOW64\winhttp.dll - ok
23:46:26.0463 4788 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
23:46:26.0463 4788 C:\Windows\SysWOW64\webio.dll - ok
23:46:26.0479 4788 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
23:46:26.0479 4788 C:\Windows\SysWOW64\credssp.dll - ok
23:46:26.0479 4788 [ 2C647ABE9A424E55B5F3DAE4629B4277 ] C:\Windows\System32\themeui.dll
23:46:26.0479 4788 C:\Windows\System32\themeui.dll - ok
23:46:26.0495 4788 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
23:46:26.0495 4788 C:\Windows\System32\ie4uinit.exe - ok
23:46:26.0495 4788 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
23:46:26.0495 4788 C:\Windows\System32\iedkcs32.dll - ok
23:46:26.0510 4788 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
23:46:26.0510 4788 C:\Windows\System32\timedate.cpl - ok
23:46:26.0510 4788 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
23:46:26.0510 4788 C:\Windows\System32\actxprxy.dll - ok
23:46:26.0526 4788 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
23:46:26.0526 4788 C:\Windows\System32\shdocvw.dll - ok
23:46:26.0526 4788 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
23:46:26.0526 4788 C:\Windows\System32\msiltcfg.dll - ok
23:46:26.0541 4788 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
23:46:26.0541 4788 C:\Windows\System32\msi.dll - ok
23:46:26.0541 4788 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
23:46:26.0541 4788 C:\Windows\System32\linkinfo.dll - ok
23:46:26.0541 4788 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
23:46:26.0541 4788 C:\Windows\System32\ieframe.dll - ok
23:46:26.0557 4788 [ FD28E3B46F63337EAF905120F1E00070 ] C:\Windows\System32\accessibilitycpl.dll
23:46:26.0557 4788 C:\Windows\System32\accessibilitycpl.dll - ok
23:46:26.0557 4788 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
23:46:26.0557 4788 C:\Windows\System32\msftedit.dll - ok
23:46:26.0573 4788 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
23:46:26.0573 4788 C:\Windows\System32\msls31.dll - ok
23:46:26.0573 4788 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
23:46:26.0573 4788 C:\Windows\System32\wucltux.dll - ok
23:46:26.0588 4788 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
23:46:26.0588 4788 C:\Windows\System32\DeviceCenter.dll - ok
23:46:26.0588 4788 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
23:46:26.0588 4788 C:\Program Files\Windows Sidebar\sidebar.exe - ok
23:46:26.0604 4788 [ 26D207379AF9B717538D1F7E2D9A58CB ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
23:46:26.0604 4788 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
23:46:26.0604 4788 [ 4C590463E5B60310DBE660686C6CCF7B ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
23:46:26.0604 4788 C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ok
23:46:26.0604 4788 [ FDA49D1D0C201F6C76BD2593F562BF80 ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
23:46:26.0604 4788 C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
23:46:26.0619 4788 [ DFCA0E9868F98B565CE512D1F74D77D8 ] C:\Windows\System32\hkcmd.exe
23:46:26.0619 4788 C:\Windows\System32\hkcmd.exe - ok
23:46:26.0619 4788 [ 77DE46E7DC1292EF3389691C51F1AD07 ] C:\Windows\System32\igfxpers.exe
23:46:26.0619 4788 C:\Windows\System32\igfxpers.exe - ok
23:46:26.0635 4788 [ E0EAD28A447A286264B0F2BE75362729 ] C:\Program Files\IDT\WDM\sttray64.exe
23:46:26.0635 4788 C:\Program Files\IDT\WDM\sttray64.exe - ok
23:46:26.0635 4788 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
23:46:26.0635 4788 C:\Windows\System32\thumbcache.dll - ok
23:46:26.0651 4788 [ E83D2495D5867E224FBF42EF40D8856C ] C:\Program Files\DVD Maker\DVDMaker.exe
23:46:26.0651 4788 C:\Program Files\DVD Maker\DVDMaker.exe - ok
23:46:26.0651 4788 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
23:46:26.0651 4788 C:\Windows\System32\networkexplorer.dll - ok
23:46:26.0651 4788 [ E27F9CC5BAEEDEF832415D1513382AF6 ] C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll
23:46:26.0651 4788 C:\PROGRA~2\WIC4A1~1\Mail\maillang.dll - ok
23:46:26.0666 4788 [ 9157189DC07511ECBBE1D2615D8A2FED ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
23:46:26.0666 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
23:46:26.0666 4788 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
23:46:26.0666 4788 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
23:46:26.0682 4788 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
23:46:26.0682 4788 C:\Windows\System32\wdmaud.drv - ok
23:46:26.0682 4788 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
23:46:26.0682 4788 C:\Windows\SysWOW64\mscoree.dll - ok
23:46:26.0697 4788 [ 2D05DB6FB64F5290499D0A0B7F6FFF7E ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL
23:46:26.0697 4788 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\MOVIEM~2.DLL - ok
23:46:26.0697 4788 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
23:46:26.0713 4788 C:\Windows\System32\msacm32.drv - ok
23:46:26.0713 4788 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
23:46:26.0713 4788 C:\Windows\System32\msacm32.dll - ok
23:46:26.0713 4788 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
23:46:26.0713 4788 C:\Windows\System32\midimap.dll - ok
23:46:26.0729 4788 [ 49FD14B8F41EFA4BC2181ECECB441425 ] C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL
23:46:26.0729 4788 C:\PROGRA~2\WIC4A1~1\PHOTOG~1\WL09BB~1.DLL - ok
23:46:26.0729 4788 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
23:46:26.0729 4788 C:\Windows\System32\WMALFXGFXDSP.dll - ok
23:46:26.0744 4788 [ 24B1666FD14CC71C7B0679AC61625B90 ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
23:46:26.0744 4788 C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe - ok
23:46:26.0744 4788 [ 074DDB033D38D2F7D97BC11DB713F6EC ] C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe
23:46:26.0744 4788 C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe - ok
23:46:26.0760 4788 [ 8E0831382D3313E75614C9D85237B99F ] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
23:46:26.0760 4788 C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE - ok
23:46:26.0760 4788 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
23:46:26.0760 4788 C:\Windows\System32\AESTAR64.dll - ok
23:46:26.0775 4788 [ EA897FD834D809DAE63FA656DC48D6BE ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
23:46:26.0775 4788 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
23:46:26.0775 4788 [ 707633E21DC06D20DAB86423C9EB9F27 ] C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
23:46:26.0775 4788 C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe - ok
23:46:26.0791 4788 [ 492CB6A624D5DAD73EE0294B5DB37DD6 ] C:\Windows\System32\xpsrchvw.exe
23:46:26.0791 4788 C:\Windows\System32\xpsrchvw.exe - ok
23:46:26.0791 4788 [ C546E2A9CB4FB0E32FED5C92DF1349A6 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
23:46:26.0791 4788 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
23:46:26.0791 4788 [ FDE33ABD8B24FBB84530D226595A8988 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
23:46:26.0791 4788 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
23:46:26.0807 4788 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
23:46:26.0807 4788 C:\Windows\System32\d2d1.dll - ok
23:46:26.0807 4788 [ CCFCEC7890A787773186EE62BE312C0A ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
23:46:26.0807 4788 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
23:46:26.0822 4788 [ 7426279D625196393EABBEFE1C60A0C2 ] C:\Windows\System32\DWrite.dll
23:46:26.0822 4788 C:\Windows\System32\DWrite.dll - ok
23:46:26.0822 4788 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
23:46:26.0822 4788 C:\Windows\System32\stobject.dll - ok
23:46:26.0838 4788 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
23:46:26.0838 4788 C:\Windows\System32\batmeter.dll - ok
23:46:26.0838 4788 [ B795E6138E29A37508285FC31E92BD78 ] C:\Windows\System32\DisplaySwitch.exe
23:46:26.0838 4788 C:\Windows\System32\DisplaySwitch.exe - ok
23:46:26.0853 4788 [ 7E8CF01F51F5842CE504CBC4B7C60C0F ] C:\Windows\System32\hccutils.dll
23:46:26.0853 4788 C:\Windows\System32\hccutils.dll - ok
23:46:26.0853 4788 [ 043FE3C9088BEADC6A9FFC033C84F20F ] C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
23:46:26.0853 4788 C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE - ok
23:46:26.0869 4788 [ 62BF6B6F700B911BDD2EB3B38730C608 ] C:\Windows\System32\SynCOM.dll
23:46:26.0869 4788 C:\Windows\System32\SynCOM.dll - ok
23:46:26.0869 4788 [ D8F970A92086126292A285937E0DF970 ] C:\Program Files\IDT\WDM\stlang64.dll
23:46:26.0869 4788 C:\Program Files\IDT\WDM\stlang64.dll - ok
23:46:26.0869 4788 [ FA4C36B574BF387D9582ED2C54A347A8 ] C:\Windows\System32\mblctr.exe
23:46:26.0869 4788 C:\Windows\System32\mblctr.exe - ok
23:46:26.0885 4788 [ F5E5F7B55544BBDB1EBC4EBACD566874 ] C:\Windows\System32\SynTPAPI.dll
23:46:26.0885 4788 C:\Windows\System32\SynTPAPI.dll - ok
23:46:26.0885 4788 [ E1D6AF9F11B319D0A216B5019D623209 ] C:\Windows\System32\igfxsrvc.exe
23:46:26.0885 4788 C:\Windows\System32\igfxsrvc.exe - ok
23:46:26.0900 4788 [ 1BE8B67DB72BB7F650D9092E9BA6196E ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
23:46:26.0900 4788 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
23:46:26.0900 4788 [ 50F739538EF014B2E7EC59431749D838 ] C:\Windows\System32\mstsc.exe
23:46:26.0900 4788 C:\Windows\System32\mstsc.exe - ok
23:46:26.0916 4788 [ FC4C561550E5407FFA29D4F6C69B272F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
23:46:26.0916 4788 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
23:46:26.0916 4788 [ 7633F554EEAFDE7F144B41C2FCAF5F63 ] C:\Windows\System32\SnippingTool.exe
23:46:26.0916 4788 C:\Windows\System32\SnippingTool.exe - ok
23:46:26.0916 4788 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
23:46:26.0916 4788 C:\Windows\System32\consent.exe - ok
23:46:26.0931 4788 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
23:46:26.0931 4788 C:\Windows\System32\SyncCenter.dll - ok
23:46:26.0931 4788 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
23:46:26.0931 4788 C:\Windows\System32\prnfldr.dll - ok
23:46:26.0947 4788 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
23:46:26.0947 4788 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
23:46:26.0947 4788 [ FCF433BFE9F44C8FD2FAF1E8DED23D72 ] C:\Windows\System32\OobeFldr.dll
23:46:26.0947 4788 C:\Windows\System32\OobeFldr.dll - ok
23:46:26.0963 4788 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
23:46:26.0963 4788 C:\Windows\SysWOW64\wsock32.dll - ok
23:46:26.0963 4788 [ F121FF27B30D62EB148E928C4769328B ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
23:46:26.0963 4788 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
23:46:26.0978 4788 [ 4664ABADE37F75551CAB943EA6077946 ] C:\Program Files (x86)\Microsoft Office\Office14\1033\ospintl.dll
23:46:26.0978 4788 C:\Program Files (x86)\Microsoft Office\Office14\1033\ospintl.dll - ok
23:46:26.0978 4788 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
23:46:26.0978 4788 C:\Windows\SysWOW64\wer.dll - ok
23:46:26.0994 4788 [ ABCFAD4C6F973A568D453CE601091B83 ] C:\ProgramData\OfficeGuardian\reminder\SkinCrafterDll.dll
23:46:26.0994 4788 C:\ProgramData\OfficeGuardian\reminder\SkinCrafterDll.dll - ok
23:46:26.0994 4788 [ 4C0DA2B69F8DE16E97FCEC0E19312923 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL
23:46:26.0994 4788 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL - ok
23:46:26.0994 4788 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
23:46:26.0994 4788 C:\Windows\System32\DXP.dll - ok
23:46:27.0009 4788 [ 13667333C4E3D16FD1B038902173A9A7 ] C:\Windows\System32\igfxsrvc.dll
23:46:27.0009 4788 C:\Windows\System32\igfxsrvc.dll - ok
23:46:27.0009 4788 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
23:46:27.0009 4788 C:\Windows\System32\msimg32.dll - ok
23:46:27.0025 4788 [ 938DA7D57AFF4D3EF8500E7FF48AA0E2 ] C:\Windows\System32\igfxdev.dll
23:46:27.0025 4788 C:\Windows\System32\igfxdev.dll - ok
23:46:27.0025 4788 [ C7301A1D3DB09DE86528D9D916069859 ] C:\Windows\System32\dfrgui.exe
23:46:27.0025 4788 C:\Windows\System32\dfrgui.exe - ok
23:46:27.0041 4788 [ A1CFDEF143B1B4047E0FD3510F85DE97 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSPTLS.DLL
23:46:27.0041 4788 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSPTLS.DLL - ok
23:46:27.0041 4788 [ 8F89E6CB82E6DB45BC993D423CD0FDBD ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
23:46:27.0041 4788 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe - ok
23:46:27.0056 4788 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
23:46:27.0056 4788 C:\Windows\System32\Syncreg.dll - ok
23:46:27.0056 4788 [ CFF3C4ABDCC5356B0674743BDF0FB674 ] C:\Windows\System32\mshtml.dll
23:46:27.0056 4788 C:\Windows\System32\mshtml.dll - ok
23:46:27.0056 4788 [ 45406FFD87F6BA4345B018E303A64FF1 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
23:46:27.0072 4788 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
23:46:27.0072 4788 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
23:46:27.0072 4788 C:\Windows\ehome\ehSSO.dll - ok
23:46:27.0072 4788 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
23:46:27.0072 4788 C:\Windows\System32\netshell.dll - ok
23:46:27.0087 4788 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
23:46:27.0087 4788 C:\Windows\SysWOW64\WinSCard.dll - ok
23:46:27.0087 4788 [ DA4ED31DD43ABB0AF99888E236FFDB91 ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
23:46:27.0087 4788 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
23:46:27.0103 4788 [ D25C90F166CB25DCB85755F3DAA984B3 ] C:\Program Files (x86)\Windows Live\Shared\wldlog.dll
23:46:27.0103 4788 C:\Program Files (x86)\Windows Live\Shared\wldlog.dll - ok
23:46:27.0103 4788 [ 8EB5E95365AC5796E0C8175267D50744 ] C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll
23:46:27.0103 4788 C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll - ok
23:46:27.0119 4788 [ 98A078F838A70F84E1BD490D7C7675F4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:46:27.0119 4788 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
23:46:27.0119 4788 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
23:46:27.0119 4788 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
23:46:27.0134 4788 [ B26D229AA7B53DCF9BA636BF1DBBA8AA ] C:\Program Files\McAfee.com\Agent\mcagent.exe
23:46:27.0134 4788 C:\Program Files\McAfee.com\Agent\mcagent.exe - ok
23:46:27.0134 4788 [ 65BD1CD6A765A0B86879D4E6E0D71FAA ] C:\Windows\System32\GfxUI.exe
23:46:27.0134 4788 C:\Windows\System32\GfxUI.exe - ok
23:46:27.0134 4788 [ 3680FB34AD9DD294B18192CF36CC3B5A ] C:\Windows\System32\igfxrenu.lrc
23:46:27.0134 4788 C:\Windows\System32\igfxrenu.lrc - ok
23:46:27.0150 4788 [ C25602103B927A359B3ED9307EB37ED6 ] C:\Program Files (x86)\AVG Secure Search\vprot.exe
23:46:27.0150 4788 C:\Program Files (x86)\AVG Secure Search\vprot.exe - ok
23:46:27.0150 4788 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
23:46:27.0150 4788 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
23:46:27.0165 4788 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
23:46:27.0165 4788 C:\Windows\System32\WPDShServiceObj.dll - ok
23:46:27.0165 4788 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
23:46:27.0165 4788 C:\Windows\System32\PortableDeviceTypes.dll - ok
23:46:27.0181 4788 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
23:46:27.0181 4788 C:\Windows\System32\ActionCenter.dll - ok
23:46:27.0181 4788 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
23:46:27.0181 4788 C:\Windows\System32\AltTab.dll - ok
23:46:27.0197 4788 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
23:46:27.0197 4788 C:\Windows\System32\pnidui.dll - ok
23:46:27.0197 4788 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
23:46:27.0197 4788 C:\Windows\System32\mscoree.dll - ok
23:46:27.0212 4788 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
23:46:27.0212 4788 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
23:46:27.0212 4788 [ E0E967442FA72D286DD29311C3358C3C ] C:\ProgramData\OfficeGuardian\reminder\devutil.dll
23:46:27.0212 4788 C:\ProgramData\OfficeGuardian\reminder\devutil.dll - ok
23:46:27.0228 4788 [ ACEB5E6F416223806421D8864FC0EEB4 ] C:\Program Files (x86)\Windows Live\Shared\uxcore.dll
23:46:27.0228 4788 C:\Program Files (x86)\Windows Live\Shared\uxcore.dll - ok
23:46:27.0228 4788 [ F95D81149B20B49FD4897F6AAD22451D ] C:\ProgramData\OfficeGuardian\reminder\iCommon.dll
23:46:27.0228 4788 C:\ProgramData\OfficeGuardian\reminder\iCommon.dll - ok
23:46:27.0228 4788 [ 847906C941A4C83FEA8974D0C18B464F ] C:\ProgramData\OfficeGuardian\reminder\NUDiskDll20.dll
23:46:27.0228 4788 C:\ProgramData\OfficeGuardian\reminder\NUDiskDll20.dll - ok
23:46:27.0243 4788 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
23:46:27.0243 4788 C:\Windows\System32\QUTIL.DLL - ok
23:46:27.0243 4788 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
23:46:27.0243 4788 C:\Windows\System32\srchadmin.dll - ok
23:46:27.0259 4788 [ 1AA571774936717EE776DBED51E9EDF4 ] C:\Windows\SysWOW64\d3dx10_41.dll
23:46:27.0259 4788 C:\Windows\SysWOW64\d3dx10_41.dll - ok
23:46:27.0259 4788 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
23:46:27.0259 4788 C:\Windows\System32\bthprops.cpl - ok
23:46:27.0275 4788 [ 9DBD149CAF43D2E7C874C5F40600825C ] C:\Program Files (x86)\Windows Live\Shared\wldcore.dll
23:46:27.0275 4788 C:\Program Files (x86)\Windows Live\Shared\wldcore.dll - ok
23:46:27.0275 4788 [ FC19F3D46E21EF65EEA990B8AF2076F6 ] C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL
23:46:27.0275 4788 C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL - ok
23:46:27.0290 4788 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
23:46:27.0290 4788 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
23:46:27.0290 4788 [ 51AE7FB541762F4E66303146E03AD15C ] C:\Program Files (x86)\Windows Live\Shared\uxctl.dll
23:46:27.0290 4788 C:\Program Files (x86)\Windows Live\Shared\uxctl.dll - ok
23:46:27.0306 4788 [ 18C49CF5352BF8DE47BD2B1E5A912886 ] C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll
23:46:27.0306 4788 C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll - ok
23:46:27.0306 4788 [ D779D935A3109B2D20FD84EA097E3E4A ] C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll
23:46:27.0306 4788 C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll - ok
23:46:27.0321 4788 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
23:46:27.0321 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
23:46:27.0321 4788 [ EB24684437EC448D680A7CACBDE94C94 ] C:\Program Files (x86)\Windows Live\Shared\wlidux.dll
23:46:27.0321 4788 C:\Program Files (x86)\Windows Live\Shared\wlidux.dll - ok
23:46:27.0337 4788 [ ED27D1D75BF5E683AD3EDD9E3123520A ] C:\Windows\SysWOW64\inetcomm.dll
23:46:27.0337 4788 C:\Windows\SysWOW64\inetcomm.dll - ok
23:46:27.0337 4788 [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
23:46:27.0337 4788 C:\Windows\SysWOW64\msoert2.dll - ok
23:46:27.0353 4788 [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
23:46:27.0353 4788 C:\Windows\SysWOW64\INETRES.dll - ok
23:46:27.0353 4788 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
23:46:27.0353 4788 C:\Windows\System32\FXSST.dll - ok
23:46:27.0353 4788 [ 6E26EE228F60D75C732D209688FB546C ] C:\Windows\System32\wdc.dll
23:46:27.0353 4788 C:\Windows\System32\wdc.dll - ok
23:46:27.0368 4788 [ AFF3C845926422E135A08AE474DE27EA ] C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm
23:46:27.0368 4788 C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm - ok
23:46:27.0368 4788 [ EB7368D501B9D22E777F6011F72F60FE ] C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui
23:46:27.0368 4788 C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui - ok
23:46:27.0384 4788 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
23:46:27.0384 4788 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
23:46:27.0384 4788 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
23:46:27.0384 4788 C:\Windows\System32\FXSAPI.dll - ok
23:46:27.0399 4788 [ D291620D4C51C5F5FFA62CCDC52C5C13 ] C:\Windows\System32\msinfo32.exe
23:46:27.0399 4788 C:\Windows\System32\msinfo32.exe - ok
23:46:27.0399 4788 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
23:46:27.0399 4788 C:\Windows\System32\msimtf.dll - ok
23:46:27.0415 4788 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
23:46:27.0415 4788 C:\Windows\System32\FXSSVC.exe - ok
23:46:27.0415 4788 [ 7BC3C4F729750415DC72F348A7837064 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Csi.dll
23:46:27.0415 4788 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Csi.dll - ok
23:46:27.0431 4788 [ 51D186B582C905E49D84B70322F70B21 ] C:\Windows\System32\miguiresource.dll
23:46:27.0431 4788 C:\Windows\System32\miguiresource.dll - ok
23:46:27.0431 4788 [ 9568BB33BBAD356EDD6CDE988E570523 ] C:\Windows\System32\jscript9.dll
23:46:27.0431 4788 C:\Windows\System32\jscript9.dll - ok
23:46:27.0431 4788 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll
23:46:27.0431 4788 C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll - ok
23:46:27.0446 4788 [ A440A6EFED28AB4A8741E76BBDCF4B78 ] C:\Windows\System32\migwiz\wet.dll
23:46:27.0446 4788 C:\Windows\System32\migwiz\wet.dll - ok
23:46:27.0446 4788 [ BFD17358837F27235BFC1640905C683C ] C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll
23:46:27.0446 4788 C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll - ok
23:46:27.0462 4788 [ B8956806B33366E28C08C261E746B0B8 ] C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll
23:46:27.0462 4788 C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll - ok
23:46:27.0462 4788 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
23:46:27.0462 4788 C:\Windows\SysWOW64\hid.dll - ok
23:46:27.0477 4788 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
23:46:27.0477 4788 C:\Windows\System32\tquery.dll - ok
23:46:27.0477 4788 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
23:46:27.0477 4788 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
23:46:27.0493 4788 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
23:46:27.0493 4788 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
23:46:27.0493 4788 [ 5B87A7DC54059ECD919DB94441318B0B ] C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
23:46:27.0493 4788 C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe - ok
23:46:27.0509 4788 [ FE875F44CEB44161F1D7F781393C53AB ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll
23:46:27.0509 4788 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll - ok
23:46:27.0509 4788 [ E301F09BEB39DAF997D6609C5913599F ] C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll
23:46:27.0509 4788 C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll - ok
23:46:27.0524 4788 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
23:46:27.0524 4788 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
23:46:27.0524 4788 [ 531E3414858A817152EDEDE9C1BF9DE3 ] C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll
23:46:27.0524 4788 C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll - ok
23:46:27.0540 4788 [ 5AA4DF6CD3C96086955064BEC1CD0C9B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
23:46:27.0540 4788 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
23:46:27.0540 4788 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
23:46:27.0540 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
23:46:27.0540 4788 [ D0261792CECC182F2879C64A290A2FDF ] C:\Program Files (x86)\WinTV\WinTV7\DataModel.dll
23:46:27.0540 4788 C:\Program Files (x86)\WinTV\WinTV7\DataModel.dll - ok
23:46:27.0555 4788 [ 64ABE1250EC1A1CFD1442E7C8800216E ] C:\Windows\System32\d3d10warp.dll
23:46:27.0555 4788 C:\Windows\System32\d3d10warp.dll - ok
23:46:27.0555 4788 [ EC942385712BF39E1A8D0BB3E57EE754 ] C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll
23:46:27.0555 4788 C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll - ok
23:46:27.0571 4788 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
23:46:27.0571 4788 C:\Windows\SysWOW64\wpdshext.dll - ok
23:46:27.0571 4788 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
23:46:27.0571 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
23:46:27.0587 4788 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
23:46:27.0587 4788 C:\Windows\System32\mssrch.dll - ok
23:46:27.0587 4788 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
23:46:27.0587 4788 C:\Windows\SysWOW64\es.dll - ok
23:46:27.0602 4788 [ 39D8EAA29CC2CC144E2B1214FA774F6A ] C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll
23:46:27.0602 4788 C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll - ok
23:46:27.0602 4788 [ 906BDD9EDB43F74868293A38377C57DC ] C:\Windows\System32\igdumd64.dll
23:46:27.0602 4788 C:\Windows\System32\igdumd64.dll - ok
23:46:27.0618 4788 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
23:46:27.0618 4788 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
23:46:27.0618 4788 [ BA2655001D1F017EDFD9132D5C07E941 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe
23:46:27.0618 4788 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe - ok
23:46:27.0618 4788 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
23:46:27.0618 4788 C:\Windows\System32\msidle.dll - ok
23:46:27.0633 4788 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
23:46:27.0633 4788 C:\Windows\System32\mssprxy.dll - ok
23:46:27.0633 4788 [ 852D67A27E454BD389FA7F02A8CBE23F ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
23:46:27.0633 4788 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
23:46:27.0649 4788 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
23:46:27.0649 4788 C:\Windows\System32\rasdlg.dll - ok
23:46:27.0649 4788 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
23:46:27.0649 4788 C:\Windows\System32\dot3api.dll - ok
23:46:27.0665 4788 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
23:46:27.0665 4788 C:\Windows\System32\en-US\tquery.dll.mui - ok
23:46:27.0665 4788 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
23:46:27.0665 4788 C:\Windows\System32\wlanhlp.dll - ok
23:46:27.0665 4788 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
23:46:27.0665 4788 C:\Windows\System32\wlanapi.dll - ok
23:46:27.0680 4788 [ 282B951CEB670834C13B8A187B69E817 ] C:\Windows\SysWOW64\igd10umd32.dll
23:46:27.0680 4788 C:\Windows\SysWOW64\igd10umd32.dll - ok
23:46:27.0680 4788 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\72231084.sys
23:46:27.0680 4788 C:\Windows\System32\drivers\72231084.sys - ok
23:46:27.0696 4788 [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll
23:46:27.0696 4788 C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll - ok
23:46:27.0696 4788 [ 06A6FE79BD96C7FEF7322AFE5B45FFFF ] C:\Windows\System32\mycomput.dll
23:46:27.0696 4788 C:\Windows\System32\mycomput.dll - ok
23:46:27.0711 4788 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
23:46:27.0711 4788 C:\Windows\System32\rastapi.dll - ok
23:46:27.0711 4788 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
23:46:27.0711 4788 C:\Windows\System32\tapi32.dll - ok
23:46:27.0727 4788 [ B9CE8CF2FF2D5EAFFDBAA340E7B385A5 ] C:\Windows\System32\iscsicpl.dll
23:46:27.0727 4788 C:\Windows\System32\iscsicpl.dll - ok
23:46:27.0727 4788 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
23:46:27.0727 4788 C:\Windows\System32\unimdm.tsp - ok
23:46:27.0727 4788 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
23:46:27.0727 4788 C:\Windows\System32\uniplat.dll - ok
23:46:27.0743 4788 [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
23:46:27.0743 4788 C:\Windows\System32\unimdmat.dll - ok
23:46:27.0743 4788 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
23:46:27.0743 4788 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
23:46:27.0758 4788 [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
23:46:27.0758 4788 C:\Windows\System32\modemui.dll - ok
23:46:27.0758 4788 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
23:46:27.0758 4788 C:\Windows\System32\kmddsp.tsp - ok
23:46:27.0774 4788 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
23:46:27.0774 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
23:46:27.0774 4788 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
23:46:27.0774 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
23:46:27.0789 4788 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
23:46:27.0789 4788 C:\Windows\System32\ndptsp.tsp - ok
23:46:27.0789 4788 [ A3287F8EB6182FB060C818524C7D6A63 ] C:\Windows\System32\dxtrans.dll
23:46:27.0789 4788 C:\Windows\System32\dxtrans.dll - ok
23:46:27.0805 4788 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
23:46:27.0805 4788 C:\Windows\System32\hidphone.tsp - ok
23:46:27.0805 4788 [ 3EEC0FB1DDD317AA1E8933B912439736 ] C:\Windows\System32\MdSched.exe
23:46:27.0805 4788 C:\Windows\System32\MdSched.exe - ok
23:46:27.0821 4788 [ 640E51DB253265C3EAC075866B3D2B33 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
23:46:27.0821 4788 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
23:46:27.0821 4788 [ 5DB64F0ADBAD651B1CD099A79ECAAB2B ] C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll
23:46:27.0821 4788 C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll - ok
23:46:27.0821 4788 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
23:46:27.0821 4788 C:\Windows\System32\rasppp.dll - ok
23:46:27.0836 4788 [ 4938A4350327E1A5DEB0CD134AC1AAA3 ] C:\Windows\System32\ddrawex.dll
23:46:27.0836 4788 C:\Windows\System32\ddrawex.dll - ok
23:46:27.0836 4788 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
23:46:27.0836 4788 C:\Windows\System32\ddraw.dll - ok
23:46:27.0852 4788 [ DE038C40F3033EDA732655FA42DCBD18 ] C:\Windows\System32\filemgmt.dll
23:46:27.0852 4788 C:\Windows\System32\filemgmt.dll - ok
23:46:27.0852 4788 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
23:46:27.0852 4788 C:\Windows\System32\vpnike.dll - ok
23:46:27.0867 4788 [ E19D102BAF266F34592F7C742FBFA886 ] C:\Windows\System32\msconfig.exe
23:46:27.0867 4788 C:\Windows\System32\msconfig.exe - ok
23:46:27.0867 4788 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
23:46:27.0867 4788 C:\Windows\System32\gameux.dll - ok
23:46:27.0883 4788 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
23:46:27.0883 4788 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
23:46:27.0883 4788 [ 31E7CF1736A3CB25098CEE6E07FE270C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
23:46:27.0883 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll - ok
23:46:27.0899 4788 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
23:46:27.0899 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
23:46:27.0899 4788 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
23:46:27.0899 4788 C:\Windows\SysWOW64\duser.dll - ok
23:46:27.0899 4788 [ 01720E7E8FF53EE47A88DC11C7385848 ] C:\Windows\LPRES.DLL
23:46:27.0899 4788 C:\Windows\LPRES.DLL - ok
23:46:27.0914 4788 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
23:46:27.0914 4788 C:\Windows\SysWOW64\dui70.dll - ok
23:46:27.0914 4788 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
23:46:27.0914 4788 C:\Windows\System32\dciman32.dll - ok
23:46:27.0930 4788 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
23:46:27.0930 4788 C:\Windows\SysWOW64\wlanapi.dll - ok
23:46:27.0930 4788 [ D6A99F26E31C9F15D8D8CC42FFE6D16B ] C:\Windows\System32\dxtmsft.dll
23:46:27.0930 4788 C:\Windows\System32\dxtmsft.dll - ok
23:46:27.0945 4788 [ E7B1B5D5A1D1E4C77AE995D725A1FEE5 ] C:\Windows\System32\sdcpl.dll
23:46:27.0945 4788 C:\Windows\System32\sdcpl.dll - ok
23:46:27.0945 4788 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
23:46:27.0945 4788 C:\Windows\SysWOW64\wlanutil.dll - ok
23:46:27.0945 4788 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
23:46:27.0945 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
23:46:27.0961 4788 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
23:46:27.0961 4788 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
23:46:27.0961 4788 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
23:46:27.0961 4788 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
23:46:27.0977 4788 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
23:46:27.0977 4788 C:\Windows\System32\WWanAPI.dll - ok
23:46:27.0977 4788 [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
23:46:27.0977 4788 C:\Windows\SysWOW64\ksproxy.ax - ok
23:46:27.0992 4788 [ F3B306179F1840C0813DC6771B018358 ] C:\Windows\System32\recdisc.exe
23:46:27.0992 4788 C:\Windows\System32\recdisc.exe - ok
23:46:27.0992 4788 [ 6E6602DE23AB3776007702FC9540E8E9 ] C:\Windows\System32\vbscript.dll
23:46:27.0992 4788 C:\Windows\System32\vbscript.dll - ok
23:46:28.0008 4788 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
23:46:28.0008 4788 C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
23:46:28.0008 4788 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
23:46:28.0008 4788 C:\Windows\SysWOW64\vidcap.ax - ok
23:46:28.0008 4788 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
23:46:28.0008 4788 C:\Windows\System32\wwapi.dll - ok
23:46:28.0023 4788 [ 630A31F277349109299E590856A4B004 ] C:\Windows\SysWOW64\Kswdmcap.ax
23:46:28.0023 4788 C:\Windows\SysWOW64\Kswdmcap.ax - ok
23:46:28.0023 4788 [ BC73A5B5CE18BF398EE457243F0570B5 ] C:\PROGRA~2\WIC4A1~1\FAMILY~1\fsui.dll
23:46:28.0023 4788 C:\PROGRA~2\WIC4A1~1\FAMILY~1\fsui.dll - ok
23:46:28.0039 4788 [ 31B09C0D0E9BEC4F0C2A957272737CCF ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax
23:46:28.0039 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax - ok
23:46:28.0039 4788 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
23:46:28.0039 4788 C:\Windows\System32\QAGENT.DLL - ok
23:46:28.0055 4788 [ 6ADD008B7B9B8FB9EB7C99564F98540A ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll
23:46:28.0055 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll - ok
23:46:28.0055 4788 [ 07361B097FD0F68C8D7B6EAE06D0B745 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll
23:46:28.0055 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll - ok
23:46:28.0070 4788 [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
23:46:28.0070 4788 C:\Windows\System32\d3d10.dll - ok
23:46:28.0070 4788 [ 756FD9B1415A9BD05293FE07FA9F098B ] C:\PROGRA~2\WIC4A1~1\Mesh\WLSYNC~3.DLL
23:46:28.0070 4788 C:\PROGRA~2\WIC4A1~1\Mesh\WLSYNC~3.DLL - ok
23:46:28.0086 4788 [ B8CE4B5AB8A02E6F1334CCCF4014C5F2 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll
23:46:28.0086 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll - ok
23:46:28.0086 4788 [ 809A3B17E0785B3BC7CA1A4C0F3EF27A ] C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL
23:46:28.0086 4788 C:\PROGRA~2\WIC4A1~1\Writer\WI68BE~1.DLL - ok
23:46:28.0086 4788 [ 0F6652951129F283C72E1A5A951FF948 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
23:46:28.0086 4788 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
23:46:28.0101 4788 [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
23:46:28.0101 4788 C:\Windows\System32\d3d10core.dll - ok
23:46:28.0101 4788 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
23:46:28.0101 4788 C:\Windows\System32\wbem\wmiprov.dll - ok
23:46:28.0117 4788 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
23:46:28.0117 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
23:46:28.0117 4788 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
23:46:28.0117 4788 C:\Windows\System32\UIAnimation.dll - ok
23:46:28.0133 4788 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
23:46:28.0133 4788 C:\Windows\System32\riched20.dll - ok
23:46:28.0133 4788 [ 6278AD5B8C56F6795076444DF086765A ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
23:46:28.0133 4788 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
23:46:28.0148 4788 [ B6884AE857E0C2106FA718A6C688CD7C ] C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui
23:46:28.0148 4788 C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui - ok
23:46:28.0148 4788 [ 7DE7B4E228AF7C38A5C84D23A659AF57 ] C:\Program Files (x86)\Windows Live\Installer\wlshim.dll
23:46:28.0148 4788 C:\Program Files (x86)\Windows Live\Installer\wlshim.dll - ok
23:46:28.0164 4788 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
23:46:28.0164 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
23:46:28.0164 4788 [ C1EF4900EAC105E0139764C3E4469061 ] C:\Program Files (x86)\Windows Live\Installer\wlsres.dll
23:46:28.0164 4788 C:\Program Files (x86)\Windows Live\Installer\wlsres.dll - ok
23:46:28.0179 4788 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
23:46:28.0179 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
23:46:28.0179 4788 [ D870F564BA017FEFC51D2B3C7E2B568B ] C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
23:46:28.0179 4788 C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll - ok
23:46:28.0195 4788 [ 7F97E56CC619E6B457D8B55E31EF4033 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax
23:46:28.0195 4788 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax - ok
23:46:28.0195 4788 [ BC787418159AB8965A7BD5121EDE265C ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll
23:46:28.0195 4788 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll - ok
23:46:28.0195 4788 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
23:46:28.0195 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
23:46:28.0211 4788 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
23:46:28.0211 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
23:46:28.0226 4788 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
23:46:28.0226 4788 C:\Windows\SysWOW64\ncobjapi.dll - ok
23:46:28.0226 4788 [ F9A79C5B27037821112C50A9C8FB367A ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
23:46:28.0226 4788 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe - ok
23:46:28.0226 4788 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
23:46:28.0226 4788 C:\Windows\SysWOW64\actxprxy.dll - ok
23:46:28.0242 4788 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
23:46:28.0242 4788 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
23:46:28.0242 4788 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
23:46:28.0242 4788 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
23:46:28.0257 4788 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
23:46:28.0257 4788 C:\Windows\SysWOW64\WinSATAPI.dll - ok
23:46:28.0273 4788 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
23:46:28.0273 4788 C:\Windows\SysWOW64\msxml6.dll - ok
23:46:28.0273 4788 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
23:46:28.0273 4788 C:\Windows\SysWOW64\quartz.dll - ok
23:46:28.0289 4788 [ CC5BF60E9D3F181C0B62AC91AD8634B8 ] C:\Windows\SysWOW64\qcap.dll
23:46:28.0289 4788 C:\Windows\SysWOW64\qcap.dll - ok
23:46:28.0289 4788 [ 4ED981241DB27C3383D72092B618A1D0 ] C:\Windows\System32\drivers\mspqm.sys
23:46:28.0289 4788 C:\Windows\System32\drivers\mspqm.sys - ok
23:46:28.0304 4788 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
23:46:28.0304 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
23:46:28.0320 4788 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
23:46:28.0320 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
23:46:28.0320 4788 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
23:46:28.0320 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
23:46:28.0320 4788 [ 107243179484027540978F075F6941D4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll
23:46:28.0320 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll - ok
23:46:28.0335 4788 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
23:46:28.0335 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
23:46:28.0351 4788 [ DAB4A6FF1F80A573682400CCCC624B95 ] C:\Program Files (x86)\WinTV\WinTV7\MultiMediaServices.dll
23:46:28.0351 4788 C:\Program Files (x86)\WinTV\WinTV7\MultiMediaServices.dll - ok
23:46:28.0351 4788 [ 920C7E5544B2C88B5C99586B6B0707E7 ] C:\Program Files (x86)\WinTV\WinTV7\NativeMMS.dll
23:46:28.0351 4788 C:\Program Files (x86)\WinTV\WinTV7\NativeMMS.dll - ok
23:46:28.0351 4788 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
23:46:28.0351 4788 C:\Windows\SysWOW64\olepro32.dll - ok
23:46:28.0367 4788 [ 0272B199B434CB15FCF821884E5153D7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
23:46:28.0367 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll - ok
23:46:28.0367 4788 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
23:46:28.0367 4788 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
23:46:28.0382 4788 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
23:46:28.0382 4788 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
23:46:28.0382 4788 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
23:46:28.0382 4788 C:\Windows\SysWOW64\msjtes40.dll - ok
23:46:28.0398 4788 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
23:46:28.0398 4788 C:\Windows\SysWOW64\vbajet32.dll - ok
23:46:28.0398 4788 [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
23:46:28.0398 4788 C:\Windows\SysWOW64\expsrv.dll - ok
23:46:28.0413 4788 [ 6DE03A2A7AE555B2CB2631DF043067A8 ] C:\Program Files\McAfee\MSK\masecore64.dll
23:46:28.0413 4788 C:\Program Files\McAfee\MSK\masecore64.dll - ok
23:46:28.0413 4788 [ 396F72E102E368E402736813ED6683C7 ] C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll
23:46:28.0413 4788 C:\Program Files (x86)\Common Files\AVG Secure Search\DNTInstaller\13.2.0\avgdttbx.dll - ok
23:46:28.0429 4788 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
23:46:28.0429 4788 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
23:46:28.0429 4788 [ 54E2D3E2B827A8C3E4B907A4711A31AF ] C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll
23:46:28.0429 4788 C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\SiteSafety.dll - ok
23:46:28.0445 4788 [ B6F8B660A02CF540DFD56D6496B81819 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
23:46:28.0445 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll - ok
23:46:28.0445 4788 [ AB3CB333E08766BA05F468C540188C0E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
23:46:28.0445 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll - ok
23:46:28.0460 4788 [ 20A771958DB2B8CA4372EB95F59FDF3F ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
23:46:28.0460 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll - ok
23:46:28.0460 4788 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
23:46:28.0460 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
23:46:28.0476 4788 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
23:46:28.0476 4788 C:\Windows\System32\shfolder.dll - ok
23:46:28.0476 4788 [ D1FF91E5D243A1F9632A8D2F9B264271 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll
23:46:28.0476 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll - ok
23:46:28.0491 4788 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
23:46:28.0491 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
23:46:28.0491 4788 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
23:46:28.0491 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
23:46:28.0507 4788 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
23:46:28.0507 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
23:46:28.0507 4788 [ 51D2F66C0C55419CA4A797C8D1B0AD8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
23:46:28.0507 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll - ok
23:46:28.0523 4788 [ A71C81BD43FBF06B241996B63385C263 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll
23:46:28.0523 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll - ok
23:46:28.0523 4788 [ 0A7C1BC5DDB3EA975A33DD5FA9A5994E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll
23:46:28.0523 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll - ok
23:46:28.0538 4788 [ 8C972171A3AEC39380CA74061D2675F7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll
23:46:28.0538 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll - ok
23:46:28.0538 4788 [ EC7BAC2F868BED8EF3BF7CCD6BAEA6FF ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll
23:46:28.0538 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll - ok
23:46:28.0554 4788 [ 04A9086C1DF3BB5272CB509D9C54AC1A ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
23:46:28.0554 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll - ok
23:46:28.0554 4788 [ F761DC16DD0086C5FFB889C2CB7824DB ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll
23:46:28.0554 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll - ok
23:46:28.0569 4788 [ 35066007A1EB30180BDC020D0B677F88 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
23:46:28.0569 4788 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll - ok
23:46:28.0569 4788 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
23:46:28.0569 4788 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
23:46:28.0585 4788 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
23:46:28.0585 4788 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
23:46:28.0585 4788 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
23:46:28.0585 4788 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
23:46:28.0585 4788 [ 6DD675661470892FF09D2CE266DF26B2 ] C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe
23:46:28.0585 4788 C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe - ok
23:46:28.0601 4788 [ 77BD0166102F3B9BB9499B2952C3BCFA ] C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
23:46:28.0601 4788 C:\Program Files (x86)\Windows Live\Mail\wlmail.exe - ok
23:46:28.0601 4788 [ 9CB27AE21BF0553BF20F571DD9E2C3A0 ] C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
23:46:28.0601 4788 C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok
23:46:28.0616 4788 [ 82E53EC685889AD8CFB3AD812A906489 ] C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
23:46:28.0616 4788 C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe - ok
23:46:28.0616 4788 [ 6EE227818F6A756126275905CA8C1B70 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe
23:46:28.0616 4788 C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe - ok
23:46:28.0632 4788 [ 6DCFADDA4F2A6D3396D13F0554D672E8 ] C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
23:46:28.0632 4788 C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe - ok
23:46:28.0632 4788 [ D28CF84A1CD2E6D9BF91C50C589EE437 ] C:\Program Files (x86)\Windows Live\Companion\companionuser.exe
23:46:28.0632 4788 C:\Program Files (x86)\Windows Live\Companion\companionuser.exe - ok
23:46:28.0647 4788 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
23:46:28.0647 4788 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
23:46:28.0647 4788 [ 4BCAC176BE9F87E0A85A4C9A5EB63B3E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll
23:46:28.0647 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll - ok
23:46:28.0663 4788 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
23:46:28.0663 4788 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
23:46:28.0663 4788 [ 8615971971B7CF1D5E24094289C97012 ] C:\Windows\System32\gfxSrvc.dll
23:46:28.0663 4788 C:\Windows\System32\gfxSrvc.dll - ok
23:46:28.0679 4788 [ FBBF3D1932ADBC7AB06DBA730F572840 ] C:\Windows\System32\IGFXDEVLib.dll
23:46:28.0679 4788 C:\Windows\System32\IGFXDEVLib.dll - ok
23:46:28.0679 4788 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
23:46:28.0679 4788 C:\Windows\System32\d3d9.dll - ok
23:46:28.0694 4788 [ 0DE3C7622EC33126579B1742260F08C2 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
23:46:28.0694 4788 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe - ok
23:46:28.0694 4788 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
23:46:28.0694 4788 C:\Windows\System32\d3d8thk.dll - ok
23:46:28.0710 4788 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
23:46:28.0710 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
23:46:28.0710 4788 [ 37D14C4747D16A24CC469E25FB536A17 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
23:46:28.0710 4788 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
23:46:28.0725 4788 [ 5B960B90785B947942AA7341FE67221F ] C:\PROGRA~2\McAfee\SITEAD~1\x64\MCSACO~1.DLL
23:46:28.0725 4788 C:\PROGRA~2\McAfee\SITEAD~1\x64\MCSACO~1.DLL - ok
23:46:28.0725 4788 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
23:46:28.0725 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
23:46:28.0725 4788 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
23:46:28.0725 4788 C:\Windows\System32\WindowsCodecsExt.dll - ok
23:46:28.0741 4788 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
23:46:28.0741 4788 C:\Windows\System32\icm32.dll - ok
23:46:28.0741 4788 [ 65E77DE21ECDB99625B754D304E33534 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll
23:46:28.0741 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll - ok
23:46:28.0757 4788 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
23:46:28.0757 4788 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
23:46:28.0757 4788 [ A33E8B930719D98A6EED129E69D971B5 ] C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\gti\123.6\ts.dat
23:46:28.0757 4788 C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\gti\123.6\ts.dat - ok
23:46:28.0772 4788 [ EE9DE3EF0A90416CA3B889CD3CBC18F8 ] C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\gti\123.6\amgti.dat
23:46:28.0772 4788 C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\gti\123.6\amgti.dat - ok
23:46:28.0772 4788 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
23:46:28.0772 4788 C:\Windows\System32\webcheck.dll - ok
23:46:28.0788 4788 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
23:46:28.0788 4788 C:\Windows\System32\mlang.dll - ok
23:46:28.0788 4788 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
23:46:28.0788 4788 C:\Windows\System32\imapi2.dll - ok
23:46:28.0788 4788 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
23:46:28.0788 4788 C:\Windows\System32\SearchProtocolHost.exe - ok
23:46:28.0803 4788 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
23:46:28.0803 4788 C:\Windows\System32\hgcpl.dll - ok
23:46:28.0803 4788 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
23:46:28.0803 4788 C:\Windows\System32\msshooks.dll - ok
23:46:28.0819 4788 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
23:46:28.0819 4788 C:\Windows\System32\SearchFilterHost.exe - ok
23:46:28.0819 4788 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
23:46:28.0819 4788 C:\Windows\System32\NaturalLanguage6.dll - ok
23:46:28.0835 4788 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
23:46:28.0835 4788 C:\Windows\System32\NlsData0009.dll - ok
23:46:28.0835 4788 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
23:46:28.0835 4788 C:\Windows\System32\NlsLexicons0009.dll - ok
23:46:28.0850 4788 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
23:46:28.0850 4788 C:\Windows\System32\mssph.dll - ok
23:46:28.0850 4788 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
23:46:28.0850 4788 C:\Windows\System32\mapi32.dll - ok
23:46:28.0850 4788 ============================================================
23:46:28.0850 4788 Scan finished
23:46:28.0850 4788 ============================================================
23:46:28.0866 4772 Detected object count: 8
23:46:28.0866 4772 Actual detected object count: 8
23:48:08.0378 4772 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0378 4772 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:08.0378 4772 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0378 4772 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:08.0378 4772 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0394 4772 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:08.0394 4772 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0394 4772 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:08.0394 4772 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0394 4772 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:08.0394 4772 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
23:48:08.0394 4772 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:48:09.0626 4772 \Device\Harddisk0\DR0\# - copied to quarantine
23:48:09.0673 4772 \Device\Harddisk0\DR0 - copied to quarantine
23:48:09.0954 4772 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
23:48:25.0289 4772 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
23:48:26.0537 4772 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
23:48:26.0708 4772 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
23:48:27.0442 4772 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
23:48:27.0520 4772 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
23:48:27.0691 4772 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
23:48:27.0878 4772 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
23:48:28.0627 4772 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
23:48:29.0298 4772 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
23:48:29.0376 4772 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
23:48:29.0423 4772 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
23:48:29.0610 4772 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
23:48:29.0610 4772 \Device\Harddisk0\DR0 - ok
23:48:30.0998 4772 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
23:48:30.0998 4772 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
23:48:30.0998 4772 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
23:48:43.0634 5764 Deinitialize success
  • 0

#7
Jasmyne
Posted 21 January 2013 - 06:52 AM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts

Thank you, Jasmyne & Dakeyras! We've only just met but I think I'm falling in love with both of you. :wub:

You're welcome!!!!

Wondering if I should also remove a program called DriverUpdate? (I purchased all three of the programs I just named, only Revo Uninstaller appears to deliver what it promises. It is scary to press 'delete' when there are 500 'hidden' portions of the program that was previously supposed to have been uninstalled (SlimDriver). Search on my computer couldn't find it, but Revo did. :)

Revo rocks! I love that program. It is a little scary when you see the list of files, a lot of those may have been registry files which get left behind a lot of times with software. There is only one program I've used from time to time to update, which is Driver Max. It can be downloaded here. Once downloaded it opens their website with the out of date drivers you can update. With the free version you can update 2 drivers a day.'

Now for the not so great news about the infection on your computer...

Note: You have a backdoor infection.

This allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would advise you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the trojan has been identified and has been killed for now, because of its backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

Let me know what you wish to do. If you wish not to do a format and reinstall, please continue reading this post to do the following:

Step 1 Re-Run TDSSKiller

Re-run TDSSKiller with the same parameters as before, when the following appears select delete:

\Device\Harddisk0\DR0 ( TDSS File System )

Step 2 ComboFix
Download ComboFix from Here or Here to your Desktop.

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
  • Double click on ComboFix.exe & follow the prompts.
  • Accept the disclaimer and allow to update if it asks
  • Also allow the installation of the recovery console
Posted Image

Posted Image
  • When finished, it shall produce a log for you.
  • Please include the C:\ComboFix.txt in your next reply.

Notes:
  • Do not mouse-click Combofix's window while it is running. That may cause it to stall.
  • Do not "re-run" ComboFix. If you have a problem, reply back for further instructions.
  • If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.


Step 3 Farbar Service Scanner
Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

~~~~~~~~~~~~~~~~~~~~ Things Needed for Your Next Post ~~~~~~~~~~~~~~~~~~~~
1. New TDSSKiller Log
2. ComboFix Log
3. Farbar Service Scanner Log
4. How is your computer running now?
  • 0

#8
Vicky227
Posted 22 January 2013 - 06:46 PM

Vicky227

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Computer was working very well. Keyboard racing like racehorse. As I finished copying the final log, it slowed to a crawl and the keys acted like they were in quicksand again

:confused:

Questions: is there anyway to tell how long it has been infected?

The TDSS killer found more suspicious items on the second run. I fully uninstalled two questionable programs (Slimware Drivers and PC Health), but when I tried to uninstall DriverUpdate, Revo did not give me an option to eliminate the full ... not sure what you call them ... the roots, perhaps? When I look for that name on my computer, or REVO, it does not show up. I'd allowed one of their service techs to take remote of my computer on the 12th of January ... was having problems with 900+ crashes (blue screen?) /warnings about an out of date graphics driver. That's when HP was unable to recognize my laptop as being one they manufactured. I can scan that log to you if you like ... or is it another issue? It's where I discovered all of this ...

Thanks, Jasmyne. I am thankful for your help!

Scans below.

18:17:28.0278 7464 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:17:28.0309 7464 ============================================================
18:17:28.0309 7464 Current date / time: 2013/01/22 18:17:28.0309
18:17:28.0309 7464 SystemInfo:
18:17:28.0309 7464
18:17:28.0309 7464 OS Version: 6.1.7601 ServicePack: 1.0
18:17:28.0309 7464 Product type: Workstation
18:17:28.0309 7464 ComputerName: LAPTOP
18:17:28.0309 7464 UserName: Vicky
18:17:28.0309 7464 Windows directory: C:\Windows
18:17:28.0309 7464 System windows directory: C:\Windows
18:17:28.0309 7464 Running under WOW64
18:17:28.0309 7464 Processor architecture: Intel x64
18:17:28.0309 7464 Number of processors: 2
18:17:28.0309 7464 Page size: 0x1000
18:17:28.0309 7464 Boot type: Normal boot
18:17:28.0309 7464 ============================================================
18:17:29.0073 7464 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:17:29.0089 7464 ============================================================
18:17:29.0089 7464 \Device\Harddisk0\DR0:
18:17:29.0089 7464 MBR partitions:
18:17:29.0089 7464 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:17:29.0089 7464 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3899B000
18:17:29.0089 7464 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x389FF000, BlocksNum 0x1986800
18:17:29.0089 7464 ============================================================
18:17:29.0120 7464 C: <-> \Device\Harddisk0\DR0\Partition2
18:17:29.0151 7464 D: <-> \Device\Harddisk0\DR0\Partition3
18:17:29.0151 7464 ============================================================
18:17:29.0151 7464 Initialize success
18:17:29.0151 7464 ============================================================
18:19:07.0385 7448 Deinitialize success




18:21:05.0204 0416 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:21:05.0251 0416 ============================================================
18:21:05.0251 0416 Current date / time: 2013/01/22 18:21:05.0251
18:21:05.0251 0416 SystemInfo:
18:21:05.0251 0416
18:21:05.0251 0416 OS Version: 6.1.7601 ServicePack: 1.0
18:21:05.0251 0416 Product type: Workstation
18:21:05.0251 0416 ComputerName: LAPTOP
18:21:05.0251 0416 UserName: Vicky
18:21:05.0251 0416 Windows directory: C:\Windows
18:21:05.0251 0416 System windows directory: C:\Windows
18:21:05.0251 0416 Running under WOW64
18:21:05.0251 0416 Processor architecture: Intel x64
18:21:05.0251 0416 Number of processors: 2
18:21:05.0251 0416 Page size: 0x1000
18:21:05.0251 0416 Boot type: Normal boot
18:21:05.0251 0416 ============================================================
18:21:19.0326 0416 BG loaded
18:21:23.0741 0416 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:21:23.0756 0416 ============================================================
18:21:23.0756 0416 \Device\Harddisk0\DR0:
18:21:23.0756 0416 MBR partitions:
18:21:23.0756 0416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:21:23.0756 0416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x3899B000
18:21:23.0756 0416 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x389FF000, BlocksNum 0x1986800
18:21:23.0756 0416 ============================================================
18:21:24.0053 0416 C: <-> \Device\Harddisk0\DR0\Partition2
18:21:27.0267 0416 D: <-> \Device\Harddisk0\DR0\Partition3
18:21:27.0267 0416 ============================================================
18:21:27.0267 0416 Initialize success
18:21:27.0267 0416 ============================================================
18:22:02.0346 5684 ============================================================
18:22:02.0346 5684 Scan started
18:22:02.0346 5684 Mode: Manual; SigCheck; TDLFS;
18:22:02.0346 5684 ============================================================
18:22:03.0548 5684 ================ Scan system memory ========================
18:22:03.0548 5684 System memory - ok
18:22:03.0563 5684 ================ Scan services =============================
18:22:03.0735 5684 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:22:03.0906 5684 1394ohci - ok
18:22:03.0969 5684 [ 3E2427D4966C7606097341E55AB4E105 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
18:22:04.0031 5684 Accelerometer - ok
18:22:04.0062 5684 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:22:04.0156 5684 ACPI - ok
18:22:04.0187 5684 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:22:04.0530 5684 AcpiPmi - ok
18:22:04.0905 5684 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:22:04.0952 5684 AdobeARMservice - ok
18:22:06.0122 5684 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:22:06.0184 5684 AdobeFlashPlayerUpdateSvc - ok
18:22:06.0231 5684 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:22:06.0324 5684 adp94xx - ok
18:22:06.0356 5684 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:22:06.0418 5684 adpahci - ok
18:22:06.0465 5684 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:22:06.0512 5684 adpu320 - ok
18:22:06.0590 5684 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:22:06.0761 5684 AeLookupSvc - ok
18:22:06.0855 5684 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
18:22:06.0933 5684 AESTFilters - ok
18:22:06.0964 5684 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:22:07.0011 5684 AFD - ok
18:22:07.0120 5684 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
18:22:07.0214 5684 AgereModemAudio - ok
18:22:07.0323 5684 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
18:22:07.0416 5684 AgereSoftModem - ok
18:22:07.0463 5684 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:22:07.0510 5684 agp440 - ok
18:22:07.0588 5684 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:22:07.0697 5684 ALG - ok
18:22:07.0744 5684 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:22:07.0791 5684 aliide - ok
18:22:07.0806 5684 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:22:07.0884 5684 amdide - ok
18:22:07.0900 5684 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:22:07.0994 5684 AmdK8 - ok
18:22:08.0009 5684 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:22:08.0087 5684 AmdPPM - ok
18:22:08.0118 5684 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:22:08.0165 5684 amdsata - ok
18:22:08.0181 5684 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:22:08.0243 5684 amdsbs - ok
18:22:08.0259 5684 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:22:08.0321 5684 amdxata - ok
18:22:08.0352 5684 [ 157B1C973637919DCD0D0464167C86BA ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
18:22:08.0430 5684 AMPPAL - ok
18:22:08.0446 5684 [ 157B1C973637919DCD0D0464167C86BA ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
18:22:08.0493 5684 AMPPALP - ok
18:22:08.0571 5684 [ FB70F8C1283C8CC6BFAA6F9971107E68 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
18:22:08.0664 5684 AMPPALR3 - ok
18:22:08.0696 5684 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
18:22:08.0789 5684 Andbus - ok
18:22:08.0789 5684 AndDiag - ok
18:22:08.0805 5684 AndGps - ok
18:22:08.0820 5684 ANDModem - ok
18:22:08.0867 5684 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:22:09.0070 5684 AppID - ok
18:22:09.0101 5684 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:22:09.0242 5684 AppIDSvc - ok
18:22:09.0257 5684 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:22:09.0398 5684 Appinfo - ok
18:22:09.0429 5684 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:22:09.0491 5684 arc - ok
18:22:09.0507 5684 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:22:09.0569 5684 arcsas - ok
18:22:09.0616 5684 aspnet_state - ok
18:22:09.0663 5684 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:22:09.0772 5684 AsyncMac - ok
18:22:09.0803 5684 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:22:09.0866 5684 atapi - ok
18:22:10.0006 5684 [ 3EFD964D52221360AF0673CD61C2F4F5 ] atikmdag C:\Windows\system32\drivers\atikmdag.sys
18:22:10.0287 5684 atikmdag - ok
18:22:10.0365 5684 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:22:10.0490 5684 AudioEndpointBuilder - ok
18:22:10.0536 5684 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:22:10.0630 5684 AudioSrv - ok
18:22:10.0708 5684 [ B447DB072BF939DB9E07BEF2ADF4ECBD ] AvgLdx64 C:\Windows\system32\Drivers\avgldx64.sys
18:22:10.0770 5684 AvgLdx64 - ok
18:22:10.0786 5684 [ 0DB5A749ACD8E66091736F88C40207BD ] AvgMfx64 C:\Windows\system32\Drivers\avgmfx64.sys
18:22:10.0833 5684 AvgMfx64 - ok
18:22:10.0880 5684 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:22:11.0004 5684 AxInstSV - ok
18:22:11.0036 5684 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:22:11.0129 5684 b06bdrv - ok
18:22:11.0160 5684 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:22:11.0238 5684 b57nd60a - ok
18:22:11.0254 5684 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:22:11.0363 5684 BDESVC - ok
18:22:11.0394 5684 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:22:11.0504 5684 Beep - ok
18:22:11.0550 5684 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:22:11.0675 5684 BFE - ok
18:22:11.0753 5684 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:22:11.0894 5684 BITS - ok
18:22:11.0925 5684 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:22:12.0003 5684 blbdrive - ok
18:22:12.0034 5684 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:22:12.0128 5684 bowser - ok
18:22:12.0159 5684 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:22:12.0221 5684 BrFiltLo - ok
18:22:12.0237 5684 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:22:12.0299 5684 BrFiltUp - ok
18:22:12.0330 5684 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:22:12.0408 5684 Browser - ok
18:22:12.0440 5684 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:22:12.0549 5684 Brserid - ok
18:22:12.0549 5684 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:22:12.0627 5684 BrSerWdm - ok
18:22:12.0642 5684 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:22:12.0705 5684 BrUsbMdm - ok
18:22:12.0705 5684 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:22:12.0783 5684 BrUsbSer - ok
18:22:12.0783 5684 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:22:12.0861 5684 BTHMODEM - ok
18:22:12.0892 5684 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:22:13.0017 5684 bthserv - ok
18:22:13.0048 5684 [ FA2D081709A764F6BEE16B7FFE03E36C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
18:22:13.0095 5684 BTHSSecurityMgr - ok
18:22:13.0142 5684 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:22:13.0266 5684 cdfs - ok
18:22:13.0298 5684 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:22:13.0376 5684 cdrom - ok
18:22:13.0438 5684 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:22:13.0563 5684 CertPropSvc - ok
18:22:13.0610 5684 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
18:22:13.0656 5684 cfwids - ok
18:22:13.0688 5684 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:22:13.0750 5684 circlass - ok
18:22:13.0766 5684 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:22:13.0844 5684 CLFS - ok
18:22:13.0875 5684 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:22:13.0922 5684 clr_optimization_v2.0.50727_32 - ok
18:22:14.0000 5684 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:22:14.0046 5684 clr_optimization_v2.0.50727_64 - ok
18:22:14.0124 5684 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:22:14.0202 5684 clr_optimization_v4.0.30319_32 - ok
18:22:14.0265 5684 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:22:14.0327 5684 clr_optimization_v4.0.30319_64 - ok
18:22:14.0374 5684 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:22:14.0452 5684 CmBatt - ok
18:22:14.0452 5684 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:22:14.0499 5684 cmdide - ok
18:22:14.0530 5684 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:22:14.0624 5684 CNG - ok
18:22:14.0717 5684 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:22:14.0780 5684 Com4QLBEx - ok
18:22:14.0795 5684 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:22:14.0842 5684 Compbatt - ok
18:22:14.0873 5684 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:22:14.0936 5684 CompositeBus - ok
18:22:14.0967 5684 COMSysApp - ok
18:22:14.0998 5684 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:22:15.0060 5684 crcdisk - ok
18:22:15.0123 5684 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:22:15.0216 5684 CryptSvc - ok
18:22:15.0263 5684 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:22:15.0404 5684 DcomLaunch - ok
18:22:15.0435 5684 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:22:15.0560 5684 defragsvc - ok
18:22:15.0591 5684 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:22:15.0700 5684 DfsC - ok
18:22:15.0747 5684 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:22:15.0840 5684 Dhcp - ok
18:22:15.0856 5684 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:22:15.0950 5684 discache - ok
18:22:15.0981 5684 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:22:16.0043 5684 Disk - ok
18:22:16.0090 5684 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:22:16.0168 5684 Dnscache - ok
18:22:16.0199 5684 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:22:16.0324 5684 dot3svc - ok
18:22:16.0386 5684 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
18:22:16.0464 5684 Dot4 - ok
18:22:16.0496 5684 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:22:16.0589 5684 Dot4Print - ok
18:22:16.0605 5684 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
18:22:16.0683 5684 dot4usb - ok
18:22:16.0714 5684 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:22:16.0823 5684 DPS - ok
18:22:16.0854 5684 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:22:16.0932 5684 drmkaud - ok
18:22:16.0995 5684 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:22:17.0057 5684 DXGKrnl - ok
18:22:17.0104 5684 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:22:17.0229 5684 EapHost - ok
18:22:17.0322 5684 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:22:17.0525 5684 ebdrv - ok
18:22:17.0572 5684 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:22:17.0681 5684 EFS - ok
18:22:17.0759 5684 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:22:17.0884 5684 ehRecvr - ok
18:22:17.0900 5684 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:22:18.0009 5684 ehSched - ok
18:22:18.0024 5684 [ D38A883309E04B9FBFFE1ACA60EA3BBF ] ElRawDisk C:\Windows\system32\drivers\elrawdsk.sys
18:22:18.0087 5684 ElRawDisk - ok
18:22:18.0134 5684 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:22:18.0212 5684 elxstor - ok
18:22:18.0243 5684 [ 524C79054636D2E5751169005006460B ] enecir C:\Windows\system32\DRIVERS\enecir.sys
18:22:18.0321 5684 enecir - ok
18:22:18.0352 5684 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:22:18.0430 5684 ErrDev - ok
18:22:18.0492 5684 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:22:18.0617 5684 EventSystem - ok
18:22:18.0633 5684 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:22:18.0758 5684 exfat - ok
18:22:18.0773 5684 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:22:18.0898 5684 fastfat - ok
18:22:18.0945 5684 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:22:19.0054 5684 Fax - ok
18:22:19.0085 5684 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:22:19.0148 5684 fdc - ok
18:22:19.0179 5684 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:22:19.0272 5684 fdPHost - ok
18:22:19.0288 5684 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:22:19.0397 5684 FDResPub - ok
18:22:19.0413 5684 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:22:19.0460 5684 FileInfo - ok
18:22:19.0475 5684 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:22:19.0600 5684 Filetrace - ok
18:22:19.0616 5684 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:22:19.0694 5684 flpydisk - ok
18:22:19.0740 5684 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:22:19.0803 5684 FltMgr - ok
18:22:19.0834 5684 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:22:19.0912 5684 FontCache - ok
18:22:19.0974 5684 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:22:20.0021 5684 FontCache3.0.0.0 - ok
18:22:20.0037 5684 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:22:20.0099 5684 FsDepends - ok
18:22:20.0130 5684 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
18:22:20.0177 5684 fssfltr - ok
18:22:20.0286 5684 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:22:20.0505 5684 fsssvc - ok
18:22:20.0536 5684 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:22:20.0583 5684 Fs_Rec - ok
18:22:20.0614 5684 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:22:20.0676 5684 fvevol - ok
18:22:20.0708 5684 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:22:20.0754 5684 gagp30kx - ok
18:22:20.0817 5684 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:22:20.0942 5684 gpsvc - ok
18:22:21.0035 5684 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:22:21.0082 5684 gupdate - ok
18:22:21.0098 5684 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:22:21.0160 5684 gupdatem - ok
18:22:21.0222 5684 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:22:21.0300 5684 gusvc - ok
18:22:21.0394 5684 [ F478DBABD9FDA2437293E7525C3979B9 ] HauppaugeTVServer C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE
18:22:21.0456 5684 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - warning
18:22:21.0456 5684 HauppaugeTVServer - detected UnsignedFile.Multi.Generic (1)
18:22:21.0503 5684 [ 1081923159A00B1C834CE3643DA68238 ] hcw72ADFilter C:\Windows\system32\DRIVERS\hcw72ADFilter.sys
18:22:21.0566 5684 hcw72ADFilter - ok
18:22:21.0612 5684 [ 428B7CA6D0CBFA2B8143BCAFD0AAE1AB ] hcw72ATV C:\Windows\system32\DRIVERS\hcw72ATV.sys
18:22:21.0737 5684 hcw72ATV - ok
18:22:21.0784 5684 [ F46F6EF98DED9575A350A152B1089C68 ] hcw72DTV C:\Windows\system32\DRIVERS\hcw72DTV.sys
18:22:21.0893 5684 hcw72DTV - ok
18:22:21.0956 5684 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:22:22.0049 5684 HdAudAddService - ok
18:22:22.0065 5684 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:22:22.0143 5684 HDAudBus - ok
18:22:22.0158 5684 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:22:22.0221 5684 HidBatt - ok
18:22:22.0221 5684 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:22:22.0330 5684 HidBth - ok
18:22:22.0361 5684 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:22:22.0424 5684 HidIr - ok
18:22:22.0455 5684 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:22:22.0704 5684 hidserv - ok
18:22:22.0782 5684 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:22:22.0829 5684 HidUsb - ok
18:22:22.0923 5684 [ 852681A14AFEE00C0C3179429A08C868 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
18:22:22.0985 5684 HipShieldK - ok
18:22:23.0032 5684 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:22:23.0157 5684 hkmsvc - ok
18:22:23.0188 5684 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:22:23.0313 5684 HomeGroupListener - ok
18:22:23.0344 5684 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:22:23.0438 5684 HomeGroupProvider - ok
18:22:23.0562 5684 [ 389BC447DF363450A78845D35DBA0047 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:23.0625 5684 HomeNetSvc - ok
18:22:23.0687 5684 [ 45A12CACB97B4F15858FCFD59355A1E9 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
18:22:23.0734 5684 HP Health Check Service - ok
18:22:23.0781 5684 [ F55442690A70A0278A7EED4FAAEBF576 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:22:23.0843 5684 HPDrvMntSvc.exe - ok
18:22:23.0874 5684 [ CCBE758967CC0F53F5BA3B271653C4E6 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
18:22:23.0937 5684 hpdskflt - ok
18:22:24.0015 5684 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:22:24.0077 5684 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
18:22:24.0077 5684 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
18:22:24.0093 5684 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:22:24.0124 5684 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
18:22:24.0124 5684 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
18:22:24.0171 5684 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:22:24.0249 5684 HpqKbFiltr - ok
18:22:24.0296 5684 [ 640E51DB253265C3EAC075866B3D2B33 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:22:24.0342 5684 hpqwmiex - ok
18:22:24.0389 5684 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:22:24.0436 5684 HpSAMD - ok
18:22:24.0483 5684 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:22:24.0530 5684 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
18:22:24.0530 5684 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
18:22:24.0576 5684 [ E2223A37896A76861D7F79FD81A2A193 ] hpsrv C:\Windows\system32\Hpservice.exe
18:22:24.0623 5684 hpsrv - ok
18:22:24.0654 5684 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:22:24.0764 5684 HTTP - ok
18:22:24.0795 5684 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:22:24.0842 5684 hwpolicy - ok
18:22:24.0888 5684 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:22:24.0935 5684 i8042prt - ok
18:22:25.0044 5684 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:22:25.0091 5684 IAANTMON - ok
18:22:25.0122 5684 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:22:25.0169 5684 iaStor - ok
18:22:25.0185 5684 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:22:25.0263 5684 iaStorV - ok
18:22:25.0310 5684 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:22:25.0388 5684 idsvc - ok
18:22:25.0653 5684 [ F59AC361DFE9BFD9BE81E20B04EADAA2 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:22:25.0918 5684 igfx - ok
18:22:25.0949 5684 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:22:25.0996 5684 iirsp - ok
18:22:26.0043 5684 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:22:26.0168 5684 IKEEXT - ok
18:22:26.0214 5684 [ B014CE58F0A8048D3924BA8D5CCBC5F1 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
18:22:26.0292 5684 IntcHdmiAddService - ok
18:22:26.0308 5684 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:22:26.0355 5684 intelide - ok
18:22:26.0370 5684 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:22:26.0433 5684 intelppm - ok
18:22:26.0464 5684 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:22:26.0558 5684 IPBusEnum - ok
18:22:26.0589 5684 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:22:26.0682 5684 IpFilterDriver - ok
18:22:26.0729 5684 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:22:26.0838 5684 iphlpsvc - ok
18:22:26.0854 5684 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:22:26.0916 5684 IPMIDRV - ok
18:22:26.0932 5684 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:22:27.0041 5684 IPNAT - ok
18:22:27.0072 5684 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:22:27.0244 5684 IRENUM - ok
18:22:27.0260 5684 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:22:27.0291 5684 isapnp - ok
18:22:27.0322 5684 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:22:27.0384 5684 iScsiPrt - ok
18:22:27.0400 5684 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:22:27.0447 5684 kbdclass - ok
18:22:27.0478 5684 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:22:27.0540 5684 kbdhid - ok
18:22:27.0572 5684 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:22:27.0603 5684 KeyIso - ok
18:22:27.0634 5684 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:22:27.0665 5684 KSecDD - ok
18:22:27.0696 5684 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:22:27.0743 5684 KSecPkg - ok
18:22:27.0743 5684 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:22:27.0852 5684 ksthunk - ok
18:22:27.0899 5684 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:22:28.0008 5684 KtmRm - ok
18:22:28.0055 5684 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:22:28.0164 5684 LanmanServer - ok
18:22:28.0196 5684 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:22:28.0289 5684 LanmanWorkstation - ok
18:22:28.0352 5684 [ 285954C6C6EF43B78AB84034750FAC6A ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys
18:22:28.0430 5684 libusb0 - ok
18:22:28.0476 5684 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:22:28.0586 5684 lltdio - ok
18:22:28.0617 5684 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:22:28.0726 5684 lltdsvc - ok
18:22:28.0757 5684 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:22:28.0851 5684 lmhosts - ok
18:22:28.0882 5684 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:22:28.0929 5684 LSI_FC - ok
18:22:28.0929 5684 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:22:28.0976 5684 LSI_SAS - ok
18:22:28.0991 5684 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:22:29.0038 5684 LSI_SAS2 - ok
18:22:29.0038 5684 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:22:29.0085 5684 LSI_SCSI - ok
18:22:29.0100 5684 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:22:29.0194 5684 luafv - ok
18:22:29.0256 5684 [ 092D6F6F9FF6AE6C3A3D36DD17CC9D96 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
18:22:29.0319 5684 massfilter_hs - ok
18:22:29.0381 5684 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:22:29.0428 5684 McAfee SiteAdvisor Service - ok
18:22:29.0459 5684 [ 389BC447DF363450A78845D35DBA0047 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:29.0506 5684 McMPFSvc - ok
18:22:29.0522 5684 [ 389BC447DF363450A78845D35DBA0047 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:29.0568 5684 McNaiAnn - ok
18:22:29.0646 5684 [ 93432FAEA699F7A2B4F4AC5949D0B6AB ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
18:22:29.0709 5684 McODS - ok
18:22:29.0740 5684 [ 389BC447DF363450A78845D35DBA0047 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:29.0787 5684 mcpltsvc - ok
18:22:29.0818 5684 [ 389BC447DF363450A78845D35DBA0047 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:29.0865 5684 McProxy - ok
18:22:29.0896 5684 [ D0885CA52ACD97E0C93A565BDD2270D9 ] McPvDrv C:\Windows\system32\drivers\McPvDrv.sys
18:22:29.0943 5684 McPvDrv - ok
18:22:29.0990 5684 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:22:30.0052 5684 Mcx2Svc - ok
18:22:30.0083 5684 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:22:30.0130 5684 megasas - ok
18:22:30.0146 5684 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:22:30.0192 5684 MegaSR - ok
18:22:30.0239 5684 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
18:22:30.0286 5684 mfeapfk - ok
18:22:30.0317 5684 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
18:22:30.0364 5684 mfeavfk - ok
18:22:30.0395 5684 mfeavfk01 - ok
18:22:30.0458 5684 [ 38D1F23EE031B615A8CA51DD1E523579 ] mfecore C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
18:22:30.0536 5684 mfecore - ok
18:22:30.0598 5684 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
18:22:30.0645 5684 mfefire - ok
18:22:30.0692 5684 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
18:22:30.0738 5684 mfefirek - ok
18:22:30.0785 5684 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
18:22:30.0863 5684 mfehidk - ok
18:22:30.0910 5684 [ 9C9FC3770BD600B2D761D666234C244D ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
18:22:30.0957 5684 mfencbdc - ok
18:22:30.0988 5684 [ 93241CC8509B622B47EEA1B8505CF511 ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
18:22:31.0050 5684 mfencrk - ok
18:22:31.0082 5684 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
18:22:31.0128 5684 mfevtp - ok
18:22:31.0175 5684 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
18:22:31.0238 5684 mfewfpk - ok
18:22:31.0284 5684 Microsoft SharePoint Workspace Audit Service - ok
18:22:31.0331 5684 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:22:31.0425 5684 MMCSS - ok
18:22:31.0518 5684 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
18:22:31.0550 5684 MOBKbackup - ok
18:22:31.0596 5684 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
18:22:31.0643 5684 MOBKFilter - ok
18:22:31.0674 5684 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:22:31.0784 5684 Modem - ok
18:22:31.0799 5684 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:22:31.0877 5684 monitor - ok
18:22:31.0893 5684 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:22:31.0940 5684 mouclass - ok
18:22:31.0971 5684 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:22:32.0033 5684 mouhid - ok
18:22:32.0049 5684 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:22:32.0111 5684 mountmgr - ok
18:22:32.0142 5684 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:22:32.0205 5684 mpio - ok
18:22:32.0220 5684 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:22:32.0314 5684 mpsdrv - ok
18:22:32.0392 5684 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:22:32.0501 5684 MpsSvc - ok
18:22:32.0532 5684 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:22:32.0642 5684 MRxDAV - ok
18:22:32.0688 5684 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:22:32.0844 5684 mrxsmb - ok
18:22:32.0860 5684 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:22:32.0938 5684 mrxsmb10 - ok
18:22:32.0985 5684 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:22:33.0032 5684 mrxsmb20 - ok
18:22:33.0047 5684 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:22:33.0094 5684 msahci - ok
18:22:33.0125 5684 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:22:33.0172 5684 msdsm - ok
18:22:33.0188 5684 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:22:33.0250 5684 MSDTC - ok
18:22:33.0281 5684 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:22:33.0359 5684 Msfs - ok
18:22:33.0422 5684 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:22:33.0578 5684 mshidkmdf - ok
18:22:33.0624 5684 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:22:33.0656 5684 msisadrv - ok
18:22:33.0687 5684 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:22:33.0796 5684 MSiSCSI - ok
18:22:33.0812 5684 msiserver - ok
18:22:33.0858 5684 [ 389BC447DF363450A78845D35DBA0047 ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:22:33.0890 5684 MSK80Service - ok
18:22:33.0921 5684 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:22:33.0999 5684 MSKSSRV - ok
18:22:34.0030 5684 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:22:34.0108 5684 MSPCLOCK - ok
18:22:34.0139 5684 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:22:34.0202 5684 MSPQM - ok
18:22:34.0248 5684 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:22:34.0342 5684 MsRPC - ok
18:22:34.0373 5684 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:22:34.0436 5684 mssmbios - ok
18:22:34.0467 5684 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:22:34.0592 5684 MSTEE - ok
18:22:34.0623 5684 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:22:34.0763 5684 MTConfig - ok
18:22:34.0826 5684 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:22:34.0872 5684 Mup - ok
18:22:34.0997 5684 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:22:35.0512 5684 napagent - ok
18:22:35.0606 5684 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:22:35.0746 5684 NativeWifiP - ok
18:22:35.0793 5684 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:22:35.0871 5684 NDIS - ok
18:22:35.0996 5684 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:22:36.0120 5684 NdisCap - ok
18:22:36.0167 5684 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:22:36.0276 5684 NdisTapi - ok
18:22:36.0323 5684 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:22:36.0432 5684 Ndisuio - ok
18:22:36.0479 5684 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:22:36.0620 5684 NdisWan - ok
18:22:36.0651 5684 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:22:36.0916 5684 NDProxy - ok
18:22:37.0056 5684 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:22:37.0212 5684 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:22:37.0212 5684 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:22:37.0587 5684 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:22:37.0805 5684 NetBIOS - ok
18:22:37.0868 5684 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:22:38.0195 5684 NetBT - ok
18:22:38.0226 5684 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:22:38.0289 5684 Netlogon - ok
18:22:38.0398 5684 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:22:38.0648 5684 Netman - ok
18:22:38.0757 5684 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:22:38.0866 5684 netprofm - ok
18:22:38.0928 5684 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:22:38.0975 5684 NetTcpPortSharing - ok
18:22:39.0662 5684 [ E72F4522801FFB8F0456924FB0017BFF ] NETw1v64 C:\Windows\system32\DRIVERS\NETw1v64.sys
18:22:40.0020 5684 NETw1v64 - ok
18:22:40.0754 5684 [ 39EDE676D17F37AF4573C2B33EC28ACA ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
18:22:41.0097 5684 NETw5s64 - ok
18:22:41.0471 5684 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
18:22:41.0783 5684 netw5v64 - ok
18:22:42.0470 5684 [ FAD6C5610D020534401966CD72A1C306 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
18:22:42.0891 5684 NETwNs64 - ok
18:22:42.0938 5684 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:22:43.0343 5684 nfrd960 - ok
18:22:43.0452 5684 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:22:43.0640 5684 NlaSvc - ok
18:22:43.0733 5684 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:22:43.0827 5684 Npfs - ok
18:22:43.0874 5684 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:22:43.0952 5684 nsi - ok
18:22:43.0983 5684 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:22:44.0123 5684 nsiproxy - ok
18:22:44.0279 5684 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:22:44.0388 5684 Ntfs - ok
18:22:44.0451 5684 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:22:44.0560 5684 Null - ok
18:22:44.0700 5684 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:22:44.0903 5684 nvraid - ok
18:22:44.0966 5684 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:22:45.0075 5684 nvstor - ok
18:22:45.0153 5684 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:22:45.0387 5684 nv_agp - ok
18:22:45.0418 5684 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:22:45.0512 5684 ohci1394 - ok
18:22:45.0668 5684 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:22:45.0761 5684 ose - ok
18:22:46.0276 5684 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:22:46.0588 5684 osppsvc - ok
18:22:46.0713 5684 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:22:46.0869 5684 p2pimsvc - ok
18:22:46.0962 5684 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:22:47.0150 5684 p2psvc - ok
18:22:47.0212 5684 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:22:47.0259 5684 Parport - ok
18:22:47.0321 5684 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:22:47.0368 5684 partmgr - ok
18:22:47.0446 5684 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:22:47.0586 5684 PcaSvc - ok
18:22:47.0618 5684 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:22:47.0680 5684 pci - ok
18:22:47.0696 5684 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:22:47.0758 5684 pciide - ok
18:22:47.0789 5684 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:22:47.0836 5684 pcmcia - ok
18:22:47.0852 5684 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:22:47.0883 5684 pcw - ok
18:22:48.0210 5684 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:22:48.0772 5684 PEAUTH - ok
18:22:49.0614 5684 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:22:49.0817 5684 PerfHost - ok
18:22:49.0989 5684 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:22:50.0176 5684 pla - ok
18:22:50.0301 5684 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:22:50.0441 5684 PlugPlay - ok
18:22:50.0582 5684 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:22:50.0597 5684 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:22:50.0597 5684 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:22:50.0738 5684 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:22:50.0816 5684 PNRPAutoReg - ok
18:22:50.0862 5684 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:22:50.0925 5684 PNRPsvc - ok
18:22:51.0003 5684 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:22:51.0128 5684 PolicyAgent - ok
18:22:51.0190 5684 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:22:51.0330 5684 Power - ok
18:22:51.0486 5684 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:22:51.0596 5684 PptpMiniport - ok
18:22:51.0892 5684 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:22:52.0001 5684 Processor - ok
18:22:52.0064 5684 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:22:52.0142 5684 ProfSvc - ok
18:22:52.0157 5684 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:22:52.0204 5684 ProtectedStorage - ok
18:22:52.0313 5684 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:22:52.0422 5684 Psched - ok
18:22:52.0610 5684 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:22:52.0719 5684 ql2300 - ok
18:22:52.0750 5684 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:22:52.0797 5684 ql40xx - ok
18:22:52.0844 5684 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:22:52.0922 5684 QWAVE - ok
18:22:53.0000 5684 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:22:53.0187 5684 QWAVEdrv - ok
18:22:53.0202 5684 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:22:53.0358 5684 RasAcd - ok
18:22:53.0468 5684 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:22:53.0546 5684 RasAgileVpn - ok
18:22:53.0592 5684 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:22:53.0858 5684 RasAuto - ok
18:22:53.0951 5684 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:22:54.0092 5684 Rasl2tp - ok
18:22:54.0154 5684 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:22:54.0263 5684 RasMan - ok
18:22:54.0326 5684 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:22:54.0435 5684 RasPppoe - ok
18:22:54.0482 5684 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:22:54.0669 5684 RasSstp - ok
18:22:54.0794 5684 [ 96597C96D5ACF4A3EF0B24D396853879 ] rcmirror C:\Windows\system32\DRIVERS\rcmirror.sys
18:22:54.0856 5684 rcmirror - ok
18:22:54.0934 5684 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:22:55.0074 5684 rdbss - ok
18:22:55.0106 5684 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:22:55.0168 5684 rdpbus - ok
18:22:55.0184 5684 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:22:55.0308 5684 RDPCDD - ok
18:22:55.0355 5684 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:22:55.0496 5684 RDPENCDD - ok
18:22:55.0511 5684 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:22:55.0605 5684 RDPREFMP - ok
18:22:55.0698 5684 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:22:56.0088 5684 RDPWD - ok
18:22:56.0120 5684 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:22:56.0198 5684 rdyboost - ok
18:22:56.0276 5684 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:22:56.0432 5684 RemoteAccess - ok
18:22:56.0478 5684 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:22:56.0650 5684 RemoteRegistry - ok
18:22:57.0009 5684 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
18:22:57.0102 5684 Revoflt - ok
18:22:57.0212 5684 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:22:57.0414 5684 RpcEptMapper - ok
18:22:57.0492 5684 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:22:57.0648 5684 RpcLocator - ok
18:22:57.0773 5684 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:22:57.0882 5684 RpcSs - ok
18:22:57.0976 5684 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:22:58.0054 5684 rspndr - ok
18:22:58.0132 5684 RSUSBSTOR - ok
18:22:58.0194 5684 [ 91296F0B2653281B2F11E0FCE56AA427 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:22:58.0272 5684 RTL8167 - ok
18:22:58.0288 5684 RtsUIR - ok
18:22:58.0366 5684 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:22:58.0397 5684 SamSs - ok
18:22:58.0428 5684 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:22:58.0475 5684 sbp2port - ok
18:22:58.0522 5684 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:22:58.0616 5684 SCardSvr - ok
18:22:58.0647 5684 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:22:58.0818 5684 scfilter - ok
18:22:58.0943 5684 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:22:59.0068 5684 Schedule - ok
18:22:59.0162 5684 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:22:59.0240 5684 SCPolicySvc - ok
18:22:59.0318 5684 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:22:59.0380 5684 sdbus - ok
18:22:59.0442 5684 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:22:59.0552 5684 SDRSVC - ok
18:22:59.0630 5684 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:22:59.0723 5684 secdrv - ok
18:22:59.0739 5684 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:22:59.0832 5684 seclogon - ok
18:22:59.0910 5684 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:23:00.0035 5684 SENS - ok
18:23:00.0082 5684 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:23:00.0160 5684 SensrSvc - ok
18:23:00.0222 5684 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:23:00.0285 5684 Serenum - ok
18:23:00.0316 5684 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:23:00.0347 5684 Serial - ok
18:23:00.0425 5684 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:23:00.0488 5684 sermouse - ok
18:23:00.0550 5684 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:23:00.0675 5684 SessionEnv - ok
18:23:00.0706 5684 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:23:00.0815 5684 sffdisk - ok
18:23:00.0846 5684 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:23:00.0909 5684 sffp_mmc - ok
18:23:00.0924 5684 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:23:00.0987 5684 sffp_sd - ok
18:23:01.0049 5684 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:23:01.0096 5684 sfloppy - ok
18:23:01.0205 5684 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:23:01.0314 5684 SharedAccess - ok
18:23:01.0392 5684 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:23:01.0517 5684 ShellHWDetection - ok
18:23:01.0595 5684 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:23:01.0642 5684 SiSRaid2 - ok
18:23:01.0658 5684 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:23:01.0704 5684 SiSRaid4 - ok
18:23:01.0845 5684 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:23:01.0876 5684 SkypeUpdate - ok
18:23:01.0938 5684 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:23:02.0032 5684 Smb - ok
18:23:02.0094 5684 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:23:02.0188 5684 SNMPTRAP - ok
18:23:02.0219 5684 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:23:02.0250 5684 spldr - ok
18:23:02.0344 5684 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:23:02.0438 5684 Spooler - ok
18:23:02.0687 5684 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:23:02.0890 5684 sppsvc - ok
18:23:02.0937 5684 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:23:03.0030 5684 sppuinotify - ok
18:23:03.0093 5684 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:23:03.0249 5684 srv - ok
18:23:03.0342 5684 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:23:03.0389 5684 srv2 - ok
18:23:03.0420 5684 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:23:03.0467 5684 SrvHsfHDA - ok
18:23:03.0670 5684 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:23:03.0842 5684 SrvHsfV92 - ok
18:23:03.0904 5684 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:23:04.0029 5684 SrvHsfWinac - ok
18:23:04.0044 5684 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:23:04.0107 5684 srvnet - ok
18:23:04.0278 5684 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:23:04.0372 5684 SSDPSRV - ok
18:23:04.0419 5684 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:23:04.0497 5684 SstpSvc - ok
18:23:04.0793 5684 [ 6CD0118F9663045E5F5EE9C83F06DDB7 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
18:23:04.0918 5684 STacSV - ok
18:23:04.0980 5684 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:23:05.0027 5684 stexstor - ok
18:23:05.0136 5684 [ 4626777CA516512F6BB4D0166FBC6666 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
18:23:05.0199 5684 STHDA - ok
18:23:05.0261 5684 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
18:23:05.0370 5684 StillCam - ok
18:23:05.0464 5684 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:23:05.0589 5684 stisvc - ok
18:23:05.0667 5684 [ 85BF0B7CE3D9B6D1611E05872E1C3E56 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys
18:23:05.0745 5684 SWDUMon - ok
18:23:05.0807 5684 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:23:05.0854 5684 swenum - ok
18:23:05.0948 5684 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:23:06.0135 5684 swprv - ok
18:23:06.0228 5684 [ 3A706A967295E16511E40842B1A2761D ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:23:06.0306 5684 SynTP - ok
18:23:06.0494 5684 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:23:06.0603 5684 SysMain - ok
18:23:06.0634 5684 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:23:06.0759 5684 TabletInputService - ok
18:23:06.0774 5684 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:23:06.0899 5684 TapiSrv - ok
18:23:06.0946 5684 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:23:07.0040 5684 TBS - ok
18:23:07.0305 5684 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:23:07.0430 5684 Tcpip - ok
18:23:07.0679 5684 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:23:07.0773 5684 TCPIP6 - ok
18:23:07.0820 5684 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:23:07.0929 5684 tcpipreg - ok
18:23:07.0991 5684 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:23:08.0100 5684 TDPIPE - ok
18:23:08.0132 5684 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:23:08.0194 5684 TDTCP - ok
18:23:08.0256 5684 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:23:08.0412 5684 tdx - ok
18:23:08.0475 5684 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:23:08.0537 5684 TermDD - ok
18:23:08.0615 5684 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:23:08.0771 5684 TermService - ok
18:23:08.0802 5684 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:23:08.0880 5684 Themes - ok
18:23:08.0912 5684 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:23:09.0005 5684 THREADORDER - ok
18:23:09.0052 5684 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:23:09.0161 5684 TrkWks - ok
18:23:09.0270 5684 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:23:09.0395 5684 TrustedInstaller - ok
18:23:09.0442 5684 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:23:09.0551 5684 tssecsrv - ok
18:23:09.0598 5684 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:23:09.0723 5684 TsUsbFlt - ok
18:23:09.0879 5684 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:23:09.0957 5684 tunnel - ok
18:23:10.0284 5684 [ 3048A48D730C2C905897A0A25AE8822D ] TVCapSvc c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
18:23:10.0316 5684 TVCapSvc - ok
18:23:10.0347 5684 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:23:10.0394 5684 uagp35 - ok
18:23:10.0472 5684 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:23:10.0581 5684 udfs - ok
18:23:10.0628 5684 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:23:10.0674 5684 UI0Detect - ok
18:23:10.0706 5684 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:23:10.0737 5684 uliagpkx - ok
18:23:10.0784 5684 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:23:10.0862 5684 umbus - ok
18:23:10.0908 5684 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:23:10.0986 5684 UmPass - ok
18:23:11.0049 5684 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:23:11.0174 5684 upnphost - ok
18:23:11.0267 5684 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:23:11.0392 5684 usbaudio - ok
18:23:11.0423 5684 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:23:11.0501 5684 usbccgp - ok
18:23:11.0501 5684 USBCCID - ok
18:23:11.0532 5684 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:23:11.0595 5684 usbcir - ok
18:23:11.0610 5684 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:23:11.0720 5684 usbehci - ok
18:23:11.0798 5684 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:23:11.0860 5684 usbhub - ok
18:23:11.0938 5684 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:23:12.0000 5684 usbohci - ok
18:23:12.0063 5684 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:23:12.0141 5684 usbprint - ok
18:23:12.0188 5684 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:23:12.0297 5684 usbscan - ok
18:23:12.0328 5684 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:23:12.0437 5684 USBSTOR - ok
18:23:12.0453 5684 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:23:12.0500 5684 usbuhci - ok
18:23:12.0531 5684 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:23:12.0593 5684 usbvideo - ok
18:23:12.0624 5684 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:23:12.0734 5684 UxSms - ok
18:23:12.0765 5684 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:23:12.0812 5684 VaultSvc - ok
18:23:12.0874 5684 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:23:12.0936 5684 vdrvroot - ok
18:23:13.0014 5684 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:23:13.0155 5684 vds - ok
18:23:13.0248 5684 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:23:13.0311 5684 vga - ok
18:23:13.0358 5684 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:23:13.0482 5684 VgaSave - ok
18:23:13.0529 5684 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:23:13.0576 5684 vhdmp - ok
18:23:13.0592 5684 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:23:13.0623 5684 viaide - ok
18:23:13.0654 5684 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:23:13.0701 5684 volmgr - ok
18:23:13.0763 5684 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:23:13.0826 5684 volmgrx - ok
18:23:13.0857 5684 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:23:13.0919 5684 volsnap - ok
18:23:13.0966 5684 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:23:14.0013 5684 vsmraid - ok
18:23:14.0153 5684 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:23:14.0294 5684 VSS - ok
18:23:14.0372 5684 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:23:14.0434 5684 vwifibus - ok
18:23:14.0481 5684 [ 6A3D66263414FF0D6FA754C646612F3F ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:23:14.0621 5684 VWiFiFlt - ok
18:23:14.0699 5684 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:23:14.0746 5684 vwifimp - ok
18:23:14.0793 5684 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:23:14.0902 5684 W32Time - ok
18:23:14.0933 5684 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:23:14.0996 5684 WacomPen - ok
18:23:15.0058 5684 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:23:15.0183 5684 WANARP - ok
18:23:15.0198 5684 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:23:15.0276 5684 Wanarpv6 - ok
18:23:15.0448 5684 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:23:15.0604 5684 WatAdminSvc - ok
18:23:15.0791 5684 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:23:15.0947 5684 wbengine - ok
18:23:15.0978 5684 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:23:16.0041 5684 WbioSrvc - ok
18:23:16.0088 5684 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:23:16.0166 5684 wcncsvc - ok
18:23:16.0181 5684 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:23:16.0259 5684 WcsPlugInService - ok
18:23:16.0337 5684 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:23:16.0384 5684 Wd - ok
18:23:16.0462 5684 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:23:16.0587 5684 Wdf01000 - ok
18:23:16.0634 5684 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:23:16.0836 5684 WdiServiceHost - ok
18:23:16.0852 5684 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:23:16.0914 5684 WdiSystemHost - ok
18:23:16.0930 5684 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:23:17.0039 5684 WebClient - ok
18:23:17.0070 5684 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:23:17.0242 5684 Wecsvc - ok
18:23:17.0273 5684 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:23:17.0414 5684 wercplsupport - ok
18:23:17.0476 5684 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:23:17.0679 5684 WerSvc - ok
18:23:17.0772 5684 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:23:17.0866 5684 WfpLwf - ok
18:23:17.0897 5684 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:23:17.0960 5684 WIMMount - ok
18:23:17.0991 5684 WinDefend - ok
18:23:18.0006 5684 WinHttpAutoProxySvc - ok
18:23:18.0194 5684 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:23:18.0334 5684 Winmgmt - ok
18:23:18.0818 5684 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:23:19.0067 5684 WinRM - ok
18:23:19.0130 5684 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:23:19.0223 5684 WinUsb - ok
18:23:19.0364 5684 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:23:19.0442 5684 Wlansvc - ok
18:23:19.0551 5684 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:23:19.0613 5684 wlcrasvc - ok
18:23:19.0941 5684 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:23:20.0050 5684 wlidsvc - ok
18:23:20.0144 5684 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:23:20.0222 5684 WmiAcpi - ok
18:23:20.0284 5684 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:23:20.0393 5684 wmiApSrv - ok
18:23:20.0440 5684 WMPNetworkSvc - ok
18:23:20.0471 5684 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:23:20.0549 5684 WPCSvc - ok
18:23:20.0565 5684 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:23:20.0643 5684 WPDBusEnum - ok
18:23:20.0674 5684 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:23:20.0768 5684 ws2ifsl - ok
18:23:20.0799 5684 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:23:20.0908 5684 wscsvc - ok
18:23:21.0033 5684 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
18:23:21.0095 5684 WSDPrintDevice - ok
18:23:21.0111 5684 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
18:23:21.0158 5684 WSDScan - ok
18:23:21.0173 5684 WSearch - ok
18:23:21.0454 5684 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:23:21.0579 5684 wuauserv - ok
18:23:21.0641 5684 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:23:21.0751 5684 WudfPf - ok
18:23:21.0813 5684 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:23:21.0875 5684 WUDFRd - ok
18:23:22.0063 5684 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:23:22.0172 5684 wudfsvc - ok
18:23:22.0250 5684 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:23:22.0375 5684 WwanSvc - ok
18:23:22.0484 5684 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:23:22.0921 5684 yukonw7 - ok
18:23:22.0967 5684 [ 741D9BBFE2A392031157A39D921CE052 ] zghsdiag C:\Windows\system32\DRIVERS\zghsdiag.sys
18:23:23.0108 5684 zghsdiag - ok
18:23:23.0139 5684 [ 741D9BBFE2A392031157A39D921CE052 ] zghsmdm C:\Windows\system32\DRIVERS\zghsmdm.sys
18:23:23.0373 5684 zghsmdm - ok
18:23:23.0389 5684 [ 741D9BBFE2A392031157A39D921CE052 ] zghsnmea C:\Windows\system32\DRIVERS\zghsnmea.sys
18:23:23.0467 5684 zghsnmea - ok
18:23:23.0513 5684 ================ Scan global ===============================
18:23:23.0560 5684 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:23:23.0607 5684 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
18:23:23.0623 5684 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
18:23:23.0669 5684 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:23:23.0794 5684 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:23:23.0810 5684 [Global] - ok
18:23:23.0810 5684 ================ Scan MBR ==================================
18:23:23.0825 5684 [ 775BA290D665A2E7E22923D1AF9171FA ] \Device\Harddisk0\DR0
18:23:27.0242 5684 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:23:27.0242 5684 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:23:27.0242 5684 ================ Scan VBR ==================================
18:23:27.0289 5684 [ BFC6EC5A4925C5D17A2335A3A4919792 ] \Device\Harddisk0\DR0\Partition1
18:23:27.0289 5684 \Device\Harddisk0\DR0\Partition1 - ok
18:23:27.0320 5684 [ 48D19DA73CE8384FBFDB605E19329507 ] \Device\Harddisk0\DR0\Partition2
18:23:27.0367 5684 \Device\Harddisk0\DR0\Partition2 - ok
18:23:28.0256 5684 [ 7CB748F60EE6E5374ECD0FAD09074376 ] \Device\Harddisk0\DR0\Partition3
18:23:28.0256 5684 \Device\Harddisk0\DR0\Partition3 - ok
18:23:28.0271 5684 ================ Scan active images ========================
18:23:28.0271 5684 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
18:23:28.0271 5684 C:\Windows\System32\drivers\crashdmp.sys - ok
18:23:28.0287 5684 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] C:\Windows\System32\drivers\iaStor.sys
18:23:28.0287 5684 C:\Windows\System32\drivers\iaStor.sys - ok
18:23:28.0287 5684 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
18:23:28.0287 5684 C:\Windows\System32\drivers\dumpfve.sys - ok
18:23:28.0303 5684 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
18:23:28.0303 5684 C:\Windows\System32\drivers\cdrom.sys - ok
18:23:28.0318 5684 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] C:\Windows\System32\drivers\MOBK.sys
18:23:28.0318 5684 C:\Windows\System32\drivers\MOBK.sys - ok
18:23:28.0334 5684 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
18:23:28.0334 5684 C:\Windows\System32\drivers\null.sys - ok
18:23:28.0334 5684 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
18:23:28.0334 5684 C:\Windows\System32\drivers\beep.sys - ok
18:23:28.0349 5684 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
18:23:28.0349 5684 C:\Windows\System32\drivers\RDPCDD.sys - ok
18:23:28.0365 5684 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
18:23:28.0365 5684 C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:23:28.0381 5684 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
18:23:28.0381 5684 C:\Windows\System32\drivers\vga.sys - ok
18:23:28.0381 5684 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
18:23:28.0381 5684 C:\Windows\System32\drivers\videoprt.sys - ok
18:23:28.0396 5684 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
18:23:28.0396 5684 C:\Windows\System32\drivers\watchdog.sys - ok
18:23:28.0412 5684 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
18:23:28.0412 5684 C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:23:28.0412 5684 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
18:23:28.0412 5684 C:\Windows\System32\drivers\msfs.sys - ok
18:23:28.0427 5684 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
18:23:28.0427 5684 C:\Windows\System32\drivers\npfs.sys - ok
18:23:28.0443 5684 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
18:23:28.0443 5684 C:\Windows\System32\drivers\tdi.sys - ok
18:23:28.0459 5684 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
18:23:28.0459 5684 C:\Windows\System32\drivers\tdx.sys - ok
18:23:28.0459 5684 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
18:23:28.0459 5684 C:\Windows\System32\drivers\netbt.sys - ok
18:23:28.0474 5684 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
18:23:28.0474 5684 C:\Windows\System32\drivers\afd.sys - ok
18:23:28.0474 5684 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
18:23:28.0474 5684 C:\Windows\System32\drivers\wfplwf.sys - ok
18:23:28.0490 5684 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
18:23:28.0490 5684 C:\Windows\System32\drivers\pacer.sys - ok
18:23:28.0505 5684 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
18:23:28.0505 5684 C:\Windows\System32\drivers\vwififlt.sys - ok
18:23:28.0505 5684 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
18:23:28.0505 5684 C:\Windows\System32\drivers\netbios.sys - ok
18:23:28.0521 5684 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] C:\Windows\System32\drivers\serial.sys
18:23:28.0521 5684 C:\Windows\System32\drivers\serial.sys - ok
18:23:28.0521 5684 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
18:23:28.0521 5684 C:\Windows\System32\drivers\wanarp.sys - ok
18:23:28.0537 5684 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
18:23:28.0537 5684 C:\Windows\System32\drivers\termdd.sys - ok
18:23:28.0552 5684 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
18:23:28.0552 5684 C:\Windows\System32\drivers\rdbss.sys - ok
18:23:28.0552 5684 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
18:23:28.0552 5684 C:\Windows\System32\drivers\nsiproxy.sys - ok
18:23:28.0568 5684 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
18:23:28.0568 5684 C:\Windows\System32\drivers\discache.sys - ok
18:23:28.0583 5684 [ D38A883309E04B9FBFFE1ACA60EA3BBF ] C:\Windows\System32\drivers\elrawdsk.sys
18:23:28.0583 5684 C:\Windows\System32\drivers\elrawdsk.sys - ok
18:23:28.0583 5684 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
18:23:28.0583 5684 C:\Windows\System32\drivers\mssmbios.sys - ok
18:23:28.0599 5684 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
18:23:28.0599 5684 C:\Windows\System32\drivers\dfsc.sys - ok
18:23:28.0615 5684 [ 0DB5A749ACD8E66091736F88C40207BD ] C:\Windows\System32\drivers\avgmfx64.sys
18:23:28.0615 5684 C:\Windows\System32\drivers\avgmfx64.sys - ok
18:23:28.0615 5684 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
18:23:28.0615 5684 C:\Windows\System32\drivers\blbdrive.sys - ok
18:23:28.0630 5684 [ B447DB072BF939DB9E07BEF2ADF4ECBD ] C:\Windows\System32\drivers\avgldx64.sys
18:23:28.0630 5684 C:\Windows\System32\drivers\avgldx64.sys - ok
18:23:28.0630 5684 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
18:23:28.0630 5684 C:\Windows\System32\drivers\tunnel.sys - ok
18:23:28.0646 5684 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
18:23:28.0646 5684 C:\Windows\System32\drivers\CmBatt.sys - ok
18:23:28.0661 5684 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
18:23:28.0661 5684 C:\Windows\System32\drivers\intelppm.sys - ok
18:23:28.0661 5684 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
18:23:28.0661 5684 C:\Windows\System32\ntdll.dll - ok
18:23:28.0677 5684 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
18:23:28.0677 5684 C:\Windows\System32\smss.exe - ok
18:23:28.0677 5684 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
18:23:28.0677 5684 C:\Windows\System32\autochk.exe - ok
18:23:28.0693 5684 [ F59AC361DFE9BFD9BE81E20B04EADAA2 ] C:\Windows\System32\drivers\igdkmd64.sys
18:23:28.0693 5684 C:\Windows\System32\drivers\igdkmd64.sys - ok
18:23:28.0708 5684 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
18:23:28.0708 5684 C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:23:28.0708 5684 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
18:23:28.0708 5684 C:\Windows\System32\drivers\dxgmms1.sys - ok
18:23:28.0724 5684 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
18:23:28.0724 5684 C:\Windows\System32\drivers\usbport.sys - ok
18:23:28.0724 5684 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
18:23:28.0724 5684 C:\Windows\System32\drivers\usbuhci.sys - ok
18:23:28.0739 5684 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
18:23:28.0739 5684 C:\Windows\System32\drivers\hdaudbus.sys - ok
18:23:28.0755 5684 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
18:23:28.0755 5684 C:\Windows\System32\drivers\usbehci.sys - ok
18:23:28.0755 5684 [ FAD6C5610D020534401966CD72A1C306 ] C:\Windows\System32\drivers\Netwsw00.sys
18:23:28.0755 5684 C:\Windows\System32\drivers\Netwsw00.sys - ok
18:23:28.0771 5684 [ 91296F0B2653281B2F11E0FCE56AA427 ] C:\Windows\System32\drivers\Rt64win7.sys
18:23:28.0771 5684 C:\Windows\System32\drivers\Rt64win7.sys - ok
18:23:28.0771 5684 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
18:23:28.0771 5684 C:\Windows\System32\drivers\vwifibus.sys - ok
18:23:28.0786 5684 [ 9AF482D058BE59CC28BCE52E7C4B747C ] C:\Windows\System32\drivers\HpqKbFiltr.sys
18:23:28.0786 5684 C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
18:23:28.0802 5684 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
18:23:28.0802 5684 C:\Windows\System32\drivers\i8042prt.sys - ok
18:23:28.0802 5684 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
18:23:28.0802 5684 C:\Windows\System32\drivers\kbdclass.sys - ok
18:23:28.0817 5684 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
18:23:28.0817 5684 C:\Windows\System32\drivers\mouclass.sys - ok
18:23:28.0817 5684 [ 3A706A967295E16511E40842B1A2761D ] C:\Windows\System32\drivers\SynTP.sys
18:23:28.0817 5684 C:\Windows\System32\drivers\SynTP.sys - ok
18:23:28.0833 5684 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
18:23:28.0833 5684 C:\Windows\System32\drivers\usbd.sys - ok
18:23:28.0849 5684 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
18:23:28.0849 5684 C:\Windows\System32\user32.dll - ok
18:23:28.0849 5684 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
18:23:28.0849 5684 C:\Windows\System32\ws2_32.dll - ok
18:23:28.0864 5684 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
18:23:28.0864 5684 C:\Windows\System32\oleaut32.dll - ok
18:23:28.0864 5684 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
18:23:28.0864 5684 C:\Windows\System32\setupapi.dll - ok
18:23:28.0880 5684 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
18:23:28.0880 5684 C:\Windows\System32\advapi32.dll - ok
18:23:28.0895 5684 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
18:23:28.0895 5684 C:\Windows\System32\psapi.dll - ok
18:23:28.0895 5684 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
18:23:28.0895 5684 C:\Windows\System32\gdi32.dll - ok
18:23:28.0911 5684 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
18:23:28.0911 5684 C:\Windows\System32\sechost.dll - ok
18:23:28.0911 5684 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
18:23:28.0911 5684 C:\Windows\System32\usp10.dll - ok
18:23:28.0927 5684 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
18:23:28.0927 5684 C:\Windows\System32\shlwapi.dll - ok
18:23:28.0942 5684 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
18:23:28.0942 5684 C:\Windows\System32\rpcrt4.dll - ok
18:23:28.0942 5684 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
18:23:28.0942 5684 C:\Windows\System32\difxapi.dll - ok
18:23:28.0958 5684 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
18:23:28.0958 5684 C:\Windows\System32\iertutil.dll - ok
18:23:28.0958 5684 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
18:23:28.0958 5684 C:\Windows\System32\clbcatq.dll - ok
18:23:28.0973 5684 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
18:23:28.0973 5684 C:\Windows\System32\urlmon.dll - ok
18:23:28.0973 5684 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
18:23:28.0973 5684 C:\Windows\System32\normaliz.dll - ok
18:23:28.0989 5684 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
18:23:28.0989 5684 C:\Windows\System32\wininet.dll - ok
18:23:29.0005 5684 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
18:23:29.0005 5684 C:\Windows\System32\Wldap32.dll - ok
18:23:29.0005 5684 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
18:23:29.0005 5684 C:\Windows\System32\imagehlp.dll - ok
18:23:29.0020 5684 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
18:23:29.0020 5684 C:\Windows\System32\imm32.dll - ok
18:23:29.0020 5684 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
18:23:29.0020 5684 C:\Windows\System32\msvcrt.dll - ok
18:23:29.0036 5684 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
18:23:29.0036 5684 C:\Windows\System32\shell32.dll - ok
18:23:29.0051 5684 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
18:23:29.0051 5684 C:\Windows\System32\comdlg32.dll - ok
18:23:29.0051 5684 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
18:23:29.0051 5684 C:\Windows\System32\kernel32.dll - ok
18:23:29.0067 5684 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
18:23:29.0067 5684 C:\Windows\System32\lpk.dll - ok
18:23:29.0067 5684 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
18:23:29.0067 5684 C:\Windows\System32\nsi.dll - ok
18:23:29.0083 5684 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
18:23:29.0083 5684 C:\Windows\System32\ole32.dll - ok
18:23:29.0083 5684 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
18:23:29.0083 5684 C:\Windows\System32\msctf.dll - ok
18:23:29.0098 5684 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
18:23:29.0098 5684 C:\Windows\System32\comctl32.dll - ok
18:23:29.0098 5684 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
18:23:29.0098 5684 C:\Windows\System32\cfgmgr32.dll - ok
18:23:29.0098 5684 [ 3E2427D4966C7606097341E55AB4E105 ] C:\Windows\System32\drivers\Accelerometer.sys
18:23:29.0098 5684 C:\Windows\System32\drivers\Accelerometer.sys - ok
18:23:29.0114 5684 [ 157B1C973637919DCD0D0464167C86BA ] C:\Windows\System32\drivers\AmpPal.sys
18:23:29.0114 5684 C:\Windows\System32\drivers\AmpPal.sys - ok
18:23:29.0114 5684 [ 524C79054636D2E5751169005006460B ] C:\Windows\System32\drivers\enecir.sys
18:23:29.0114 5684 C:\Windows\System32\drivers\enecir.sys - ok
18:23:29.0129 5684 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
18:23:29.0129 5684 C:\Windows\System32\drivers\wmiacpi.sys - ok
18:23:29.0129 5684 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
18:23:29.0129 5684 C:\Windows\System32\wintrust.dll - ok
18:23:29.0145 5684 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
18:23:29.0145 5684 C:\Windows\System32\KernelBase.dll - ok
18:23:29.0145 5684 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
18:23:29.0145 5684 C:\Windows\System32\crypt32.dll - ok
18:23:29.0161 5684 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
18:23:29.0161 5684 C:\Windows\System32\devobj.dll - ok
18:23:29.0161 5684 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
18:23:29.0161 5684 C:\Windows\System32\msasn1.dll - ok
18:23:29.0176 5684 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
18:23:29.0176 5684 C:\Windows\SysWOW64\normaliz.dll - ok
18:23:29.0176 5684 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
18:23:29.0176 5684 C:\Windows\System32\drivers\agilevpn.sys - ok
18:23:29.0192 5684 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
18:23:29.0192 5684 C:\Windows\System32\drivers\CompositeBus.sys - ok
18:23:29.0192 5684 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
18:23:29.0192 5684 C:\Windows\System32\drivers\ndistapi.sys - ok
18:23:29.0207 5684 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
18:23:29.0207 5684 C:\Windows\System32\drivers\rasl2tp.sys - ok
18:23:29.0223 5684 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
18:23:29.0223 5684 C:\Windows\System32\drivers\ndiswan.sys - ok
18:23:29.0223 5684 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
18:23:29.0223 5684 C:\Windows\System32\drivers\raspppoe.sys - ok
18:23:29.0239 5684 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
18:23:29.0239 5684 C:\Windows\System32\drivers\raspptp.sys - ok
18:23:29.0239 5684 [ D7CD5C4E1B71FA62050515314CFB52CF ] C:\Windows\System32\drivers\circlass.sys
18:23:29.0239 5684 C:\Windows\System32\drivers\circlass.sys - ok
18:23:29.0254 5684 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
18:23:29.0254 5684 C:\Windows\System32\drivers\ks.sys - ok
18:23:29.0254 5684 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
18:23:29.0254 5684 C:\Windows\System32\drivers\rassstp.sys - ok
18:23:29.0254 5684 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
18:23:29.0254 5684 C:\Windows\System32\drivers\swenum.sys - ok
18:23:29.0270 5684 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
18:23:29.0270 5684 C:\Windows\System32\drivers\umbus.sys - ok
18:23:29.0285 5684 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
18:23:29.0285 5684 C:\Windows\System32\drivers\usbhub.sys - ok
18:23:29.0285 5684 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
18:23:29.0285 5684 C:\Windows\System32\drivers\ndproxy.sys - ok
18:23:29.0285 5684 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
18:23:29.0285 5684 C:\Windows\System32\drivers\drmk.sys - ok
18:23:29.0301 5684 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
18:23:29.0301 5684 C:\Windows\System32\drivers\ksthunk.sys - ok
18:23:29.0301 5684 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
18:23:29.0301 5684 C:\Windows\System32\drivers\portcls.sys - ok
18:23:29.0317 5684 [ 4626777CA516512F6BB4D0166FBC6666 ] C:\Windows\System32\drivers\stwrt64.sys
18:23:29.0317 5684 C:\Windows\System32\drivers\stwrt64.sys - ok
18:23:29.0317 5684 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] C:\Windows\System32\drivers\agrsm64.sys
18:23:29.0317 5684 C:\Windows\System32\drivers\agrsm64.sys - ok
18:23:29.0332 5684 [ B014CE58F0A8048D3924BA8D5CCBC5F1 ] C:\Windows\System32\drivers\IntcHdmi.sys
18:23:29.0332 5684 C:\Windows\System32\drivers\IntcHdmi.sys - ok
18:23:29.0332 5684 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
18:23:29.0332 5684 C:\Windows\System32\drivers\modem.sys - ok
18:23:29.0348 5684 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
18:23:29.0348 5684 C:\Windows\System32\drivers\hidclass.sys - ok
18:23:29.0348 5684 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] C:\Windows\System32\drivers\hidir.sys
18:23:29.0348 5684 C:\Windows\System32\drivers\hidir.sys - ok
18:23:29.0363 5684 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
18:23:29.0363 5684 C:\Windows\System32\drivers\hidparse.sys - ok
18:23:29.0363 5684 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
18:23:29.0363 5684 C:\Windows\System32\drivers\kbdhid.sys - ok
18:23:29.0379 5684 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
18:23:29.0379 5684 C:\Windows\System32\drivers\mouhid.sys - ok
18:23:29.0379 5684 [ C0EAF4F2367C44157E1DE4817238FEC2 ] C:\Windows\System32\drivers\mfeavfk.sys
18:23:29.0379 5684 C:\Windows\System32\drivers\mfeavfk.sys - ok
18:23:29.0395 5684 [ 6856931F9F5B757E9D09369CC35096B9 ] C:\Windows\System32\drivers\mfefirek.sys
18:23:29.0395 5684 C:\Windows\System32\drivers\mfefirek.sys - ok
18:23:29.0395 5684 [ 9C9FC3770BD600B2D761D666234C244D ] C:\Windows\System32\drivers\mfencbdc.sys
18:23:29.0395 5684 C:\Windows\System32\drivers\mfencbdc.sys - ok
18:23:29.0410 5684 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
18:23:29.0410 5684 C:\Windows\System32\drivers\dxapi.sys - ok
18:23:29.0410 5684 [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
18:23:29.0410 5684 C:\Windows\System32\win32k.sys - ok
18:23:29.0426 5684 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
18:23:29.0426 5684 C:\Windows\System32\csrsrv.dll - ok
18:23:29.0426 5684 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
18:23:29.0426 5684 C:\Windows\System32\csrss.exe - ok
18:23:29.0441 5684 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
18:23:29.0441 5684 C:\Windows\System32\basesrv.dll - ok
18:23:29.0441 5684 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\System32\winsrv.dll
18:23:29.0441 5684 C:\Windows\System32\winsrv.dll - ok
18:23:29.0457 5684 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
18:23:29.0457 5684 C:\Windows\System32\drivers\usbccgp.sys - ok
18:23:29.0457 5684 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
18:23:29.0457 5684 C:\Windows\System32\drivers\usbvideo.sys - ok
18:23:29.0457 5684 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
18:23:29.0457 5684 C:\Windows\System32\drivers\monitor.sys - ok
18:23:29.0473 5684 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
18:23:29.0473 5684 C:\Windows\System32\tsddd.dll - ok
18:23:29.0488 5684 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
18:23:29.0488 5684 C:\Windows\System32\profapi.dll - ok
18:23:29.0488 5684 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
18:23:29.0488 5684 C:\Windows\System32\sxssrv.dll - ok
18:23:29.0488 5684 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
18:23:29.0488 5684 C:\Windows\System32\wininit.exe - ok
18:23:29.0504 5684 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
18:23:29.0504 5684 C:\Windows\System32\KBDUS.DLL - ok
18:23:29.0519 5684 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
18:23:29.0519 5684 C:\Windows\System32\RpcRtRemote.dll - ok
18:23:29.0519 5684 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
18:23:29.0519 5684 C:\Windows\System32\cdd.dll - ok
18:23:29.0519 5684 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
18:23:29.0519 5684 C:\Windows\System32\sxs.dll - ok
18:23:29.0535 5684 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
18:23:29.0535 5684 C:\Windows\System32\WlS0WndH.dll - ok
18:23:29.0535 5684 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
18:23:29.0535 5684 C:\Windows\System32\cryptbase.dll - ok
18:23:29.0551 5684 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
18:23:29.0551 5684 C:\Windows\System32\apphelp.dll - ok
18:23:29.0551 5684 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
18:23:29.0551 5684 C:\Windows\System32\lsm.exe - ok
18:23:29.0566 5684 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
18:23:29.0566 5684 C:\Windows\System32\services.exe - ok
18:23:29.0566 5684 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
18:23:29.0566 5684 C:\Windows\System32\sspicli.dll - ok
18:23:29.0582 5684 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
18:23:29.0582 5684 C:\Windows\System32\scesrv.dll - ok
18:23:29.0582 5684 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
18:23:29.0582 5684 C:\Windows\System32\scext.dll - ok
18:23:29.0597 5684 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
18:23:29.0597 5684 C:\Windows\System32\secur32.dll - ok
18:23:29.0597 5684 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
18:23:29.0597 5684 C:\Windows\System32\sysntfy.dll - ok
18:23:29.0613 5684 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
18:23:29.0613 5684 C:\Windows\System32\wmsgapi.dll - ok
18:23:29.0613 5684 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
18:23:29.0613 5684 C:\Windows\System32\lsasrv.dll - ok
18:23:29.0629 5684 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
18:23:29.0629 5684 C:\Windows\System32\lsass.exe - ok
18:23:29.0629 5684 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
18:23:29.0629 5684 C:\Windows\System32\sspisrv.dll - ok
18:23:29.0629 5684 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
18:23:29.0629 5684 C:\Windows\System32\samsrv.dll - ok
18:23:29.0644 5684 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
18:23:29.0644 5684 C:\Windows\System32\srvcli.dll - ok
18:23:29.0644 5684 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
18:23:29.0644 5684 C:\Windows\System32\cryptdll.dll - ok
18:23:29.0660 5684 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
18:23:29.0660 5684 C:\Windows\System32\wevtapi.dll - ok
18:23:29.0660 5684 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
18:23:29.0660 5684 C:\Windows\System32\authz.dll - ok
18:23:29.0675 5684 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
18:23:29.0675 5684 C:\Windows\System32\cngaudit.dll - ok
18:23:29.0675 5684 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
18:23:29.0675 5684 C:\Windows\System32\ncrypt.dll - ok
18:23:29.0691 5684 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
18:23:29.0691 5684 C:\Windows\System32\bcrypt.dll - ok
18:23:29.0691 5684 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
18:23:29.0691 5684 C:\Windows\System32\msprivs.dll - ok
18:23:29.0691 5684 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
18:23:29.0691 5684 C:\Windows\System32\atmfd.dll - ok
18:23:29.0707 5684 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
18:23:29.0707 5684 C:\Windows\System32\netjoin.dll - ok
18:23:29.0707 5684 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
18:23:29.0707 5684 C:\Windows\System32\negoexts.dll - ok
18:23:29.0707 5684 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
18:23:29.0707 5684 C:\Windows\System32\kerberos.dll - ok
18:23:29.0722 5684 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
18:23:29.0722 5684 C:\Windows\System32\cryptsp.dll - ok
18:23:29.0722 5684 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
18:23:29.0722 5684 C:\Windows\System32\mswsock.dll - ok
18:23:29.0738 5684 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
18:23:29.0738 5684 C:\Windows\System32\msv1_0.dll - ok
18:23:29.0738 5684 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
18:23:29.0738 5684 C:\Windows\System32\wship6.dll - ok
18:23:29.0753 5684 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
18:23:29.0753 5684 C:\Windows\System32\netlogon.dll - ok
18:23:29.0753 5684 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
18:23:29.0753 5684 C:\Windows\System32\dnsapi.dll - ok
18:23:29.0753 5684 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
18:23:29.0753 5684 C:\Windows\System32\logoncli.dll - ok
18:23:29.0769 5684 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
18:23:29.0769 5684 C:\Windows\System32\schannel.dll - ok
18:23:29.0769 5684 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
18:23:29.0769 5684 C:\Windows\System32\wdigest.dll - ok
18:23:29.0785 5684 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
18:23:29.0785 5684 C:\Windows\System32\rsaenh.dll - ok
18:23:29.0785 5684 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
18:23:29.0785 5684 C:\Windows\System32\TSpkg.dll - ok
18:23:29.0785 5684 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
18:23:29.0785 5684 C:\Windows\System32\pku2u.dll - ok
18:23:29.0800 5684 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
18:23:29.0800 5684 C:\Windows\System32\LIVESSP.DLL - ok
18:23:29.0800 5684 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
18:23:29.0800 5684 C:\Windows\System32\bcryptprimitives.dll - ok
18:23:29.0800 5684 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
18:23:29.0800 5684 C:\Windows\System32\credssp.dll - ok
18:23:29.0816 5684 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
18:23:29.0816 5684 C:\Windows\System32\efslsaext.dll - ok
18:23:29.0816 5684 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
18:23:29.0816 5684 C:\Windows\System32\scecli.dll - ok
18:23:29.0831 5684 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
18:23:29.0831 5684 C:\Windows\System32\ubpm.dll - ok
18:23:29.0831 5684 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
18:23:29.0831 5684 C:\Windows\System32\winlogon.exe - ok
18:23:29.0831 5684 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
18:23:29.0831 5684 C:\Windows\System32\winsta.dll - ok
18:23:29.0847 5684 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
18:23:29.0847 5684 C:\Windows\System32\svchost.exe - ok
18:23:29.0847 5684 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
18:23:29.0847 5684 C:\Windows\System32\umpnpmgr.dll - ok
18:23:29.0847 5684 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
18:23:29.0847 5684 C:\Windows\System32\SPInf.dll - ok
18:23:29.0863 5684 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
18:23:29.0863 5684 C:\Windows\System32\devrtl.dll - ok
18:23:29.0863 5684 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
18:23:29.0863 5684 C:\Windows\System32\gpapi.dll - ok
18:23:29.0863 5684 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
18:23:29.0863 5684 C:\Windows\System32\userenv.dll - ok
18:23:29.0878 5684 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
18:23:29.0878 5684 C:\Windows\System32\umpo.dll - ok
18:23:29.0878 5684 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
18:23:29.0878 5684 C:\Windows\System32\pcwum.dll - ok
18:23:29.0878 5684 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
18:23:29.0878 5684 C:\Windows\System32\powrprof.dll - ok
18:23:29.0894 5684 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
18:23:29.0894 5684 C:\Windows\System32\drivers\luafv.sys - ok
18:23:29.0894 5684 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
18:23:29.0894 5684 C:\Windows\System32\drivers\WUDFPf.sys - ok
18:23:29.0909 5684 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
18:23:29.0909 5684 C:\Windows\System32\rpcss.dll - ok
18:23:29.0909 5684 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
18:23:29.0909 5684 C:\Windows\System32\RpcEpMap.dll - ok
18:23:29.0909 5684 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
18:23:29.0909 5684 C:\Windows\System32\wshqos.dll - ok
18:23:29.0925 5684 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
18:23:29.0925 5684 C:\Windows\System32\WSHTCPIP.DLL - ok
18:23:29.0925 5684 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
18:23:29.0925 5684 C:\Windows\System32\FirewallAPI.dll - ok
18:23:29.0925 5684 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
18:23:29.0925 5684 C:\Windows\System32\version.dll - ok
18:23:29.0941 5684 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
18:23:29.0941 5684 C:\Windows\System32\wevtsvc.dll - ok
18:23:29.0941 5684 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
18:23:29.0941 5684 C:\Windows\System32\ntmarta.dll - ok
18:23:29.0956 5684 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
18:23:29.0956 5684 C:\Windows\System32\profsvc.dll - ok
18:23:29.0956 5684 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
18:23:29.0956 5684 C:\Windows\System32\audiosrv.dll - ok
18:23:29.0956 5684 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
18:23:29.0956 5684 C:\Windows\System32\LogonUI.exe - ok
18:23:29.0972 5684 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
18:23:29.0972 5684 C:\Windows\System32\MMDevAPI.dll - ok
18:23:29.0972 5684 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
18:23:29.0972 5684 C:\Windows\System32\propsys.dll - ok
18:23:29.0987 5684 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
18:23:29.0987 5684 C:\Windows\System32\avrt.dll - ok
18:23:29.0987 5684 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
18:23:29.0987 5684 C:\Windows\System32\authui.dll - ok
18:23:29.0987 5684 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
18:23:29.0987 5684 C:\Windows\System32\adtschema.dll - ok
18:23:30.0003 5684 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
18:23:30.0003 5684 C:\Windows\System32\mmcss.dll - ok
18:23:30.0003 5684 [ 6CD0118F9663045E5F5EE9C83F06DDB7 ] C:\Program Files\IDT\WDM\stacsv64.exe
18:23:30.0003 5684 C:\Program Files\IDT\WDM\stacsv64.exe - ok
18:23:30.0019 5684 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
18:23:30.0019 5684 C:\Windows\System32\atl.dll - ok
18:23:30.0019 5684 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
18:23:30.0019 5684 C:\Windows\System32\dsound.dll - ok
18:23:30.0034 5684 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
18:23:30.0034 5684 C:\Windows\System32\wlansvc.dll - ok
18:23:30.0034 5684 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
18:23:30.0034 5684 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
18:23:30.0034 5684 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
18:23:30.0034 5684 C:\Windows\System32\drivers\fltMgr.sys - ok
18:23:30.0050 5684 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
18:23:30.0050 5684 C:\Windows\System32\cryptui.dll - ok
18:23:30.0050 5684 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
18:23:30.0050 5684 C:\Windows\System32\PSHED.DLL - ok
18:23:30.0065 5684 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:23:30.0065 5684 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:23:30.0065 5684 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
18:23:30.0065 5684 C:\Windows\System32\winmm.dll - ok
18:23:30.0081 5684 [ D8B55C68AE4469C50860DDA7087F3F8B ] C:\Windows\System32\stapi64.dll
18:23:30.0081 5684 C:\Windows\System32\stapi64.dll - ok
18:23:30.0081 5684 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
18:23:30.0081 5684 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
18:23:30.0097 5684 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
18:23:30.0097 5684 C:\Windows\System32\audiodg.exe - ok
18:23:30.0097 5684 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
18:23:30.0097 5684 C:\Windows\System32\shacct.dll - ok
18:23:30.0112 5684 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
18:23:30.0112 5684 C:\Windows\System32\samlib.dll - ok
18:23:30.0112 5684 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
18:23:30.0112 5684 C:\Windows\System32\uxtheme.dll - ok
18:23:30.0112 5684 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
18:23:30.0112 5684 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
18:23:30.0128 5684 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
18:23:30.0128 5684 C:\Windows\System32\dui70.dll - ok
18:23:30.0128 5684 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
18:23:30.0128 5684 C:\Windows\System32\duser.dll - ok
18:23:30.0143 5684 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
18:23:30.0143 5684 C:\Windows\System32\hid.dll - ok
18:23:30.0143 5684 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
18:23:30.0143 5684 C:\Windows\System32\SndVolSSO.dll - ok
18:23:30.0143 5684 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
18:23:30.0143 5684 C:\Windows\System32\dwmapi.dll - ok
18:23:30.0159 5684 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
18:23:30.0159 5684 C:\Windows\System32\xmllite.dll - ok
18:23:30.0159 5684 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
18:23:30.0159 5684 C:\Windows\System32\WindowsCodecs.dll - ok
18:23:30.0175 5684 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
18:23:30.0175 5684 C:\Windows\System32\AudioSes.dll - ok
18:23:30.0175 5684 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
18:23:30.0175 5684 C:\Windows\System32\gpsvc.dll - ok
18:23:30.0190 5684 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
18:23:30.0190 5684 C:\Windows\System32\winbrand.dll - ok
18:23:30.0190 5684 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
18:23:30.0190 5684 C:\Windows\System32\nlaapi.dll - ok
18:23:30.0190 5684 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
18:23:30.0190 5684 C:\Windows\System32\themeservice.dll - ok
18:23:30.0206 5684 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
18:23:30.0206 5684 C:\Windows\System32\VaultCredProvider.dll - ok
18:23:30.0206 5684 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
18:23:30.0206 5684 C:\Windows\System32\dsrole.dll - ok
18:23:30.0221 5684 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:23:30.0221 5684 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:23:30.0221 5684 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
18:23:30.0221 5684 C:\Windows\System32\wtsapi32.dll - ok
18:23:30.0237 5684 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
18:23:30.0237 5684 C:\Windows\System32\BioCredProv.dll - ok
18:23:30.0237 5684 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
18:23:30.0237 5684 C:\Windows\System32\slc.dll - ok
18:23:30.0237 5684 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
18:23:30.0237 5684 C:\Windows\System32\credui.dll - ok
18:23:30.0253 5684 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
18:23:30.0253 5684 C:\Windows\System32\es.dll - ok
18:23:30.0253 5684 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
18:23:30.0253 5684 C:\Windows\System32\winbio.dll - ok
18:23:30.0268 5684 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
18:23:30.0268 5684 C:\Windows\System32\netapi32.dll - ok
18:23:30.0268 5684 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
18:23:30.0268 5684 C:\Windows\System32\vaultcli.dll - ok
18:23:30.0268 5684 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
18:23:30.0268 5684 C:\Windows\System32\netutils.dll - ok
18:23:30.0284 5684 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
18:23:30.0284 5684 C:\Windows\System32\samcli.dll - ok
18:23:30.0284 5684 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
18:23:30.0284 5684 C:\Windows\System32\wkscli.dll - ok
18:23:30.0299 5684 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
18:23:30.0299 5684 C:\Windows\System32\certCredProvider.dll - ok
18:23:30.0299 5684 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
18:23:30.0299 5684 C:\Windows\System32\comres.dll - ok
18:23:30.0315 5684 [ E2223A37896A76861D7F79FD81A2A193 ] C:\Windows\System32\hpservice.exe
18:23:30.0315 5684 C:\Windows\System32\hpservice.exe - ok
18:23:30.0315 5684 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
18:23:30.0315 5684 C:\Windows\System32\Sens.dll - ok
18:23:30.0315 5684 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
18:23:30.0315 5684 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
18:23:30.0331 5684 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
18:23:30.0331 5684 C:\Windows\System32\mfc42u.dll - ok
18:23:30.0331 5684 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
18:23:30.0331 5684 C:\Windows\System32\odbc32.dll - ok
18:23:30.0346 5684 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
18:23:30.0346 5684 C:\Windows\System32\rasplap.dll - ok
18:23:30.0346 5684 [ B7EEA7A7A6F8F80DD6A22E585F619C20 ] C:\Windows\System32\accelerometerdll.DLL
18:23:30.0346 5684 C:\Windows\System32\accelerometerdll.DLL - ok
18:23:30.0362 5684 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
18:23:30.0362 5684 C:\Windows\System32\rasapi32.dll - ok
18:23:30.0362 5684 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
18:23:30.0362 5684 C:\Windows\System32\rasman.dll - ok
18:23:30.0377 5684 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
18:23:30.0377 5684 C:\Windows\System32\rtutils.dll - ok
18:23:30.0377 5684 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
18:23:30.0377 5684 C:\Windows\System32\odbcint.dll - ok
18:23:30.0377 5684 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
18:23:30.0377 5684 C:\Windows\System32\UXInit.dll - ok
18:23:30.0393 5684 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
18:23:30.0393 5684 C:\Windows\System32\oleacc.dll - ok
18:23:30.0393 5684 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
18:23:30.0393 5684 C:\Windows\System32\UIAutomationCore.dll - ok
18:23:30.0409 5684 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
18:23:30.0409 5684 C:\Windows\System32\uxsms.dll - ok
18:23:30.0409 5684 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
18:23:30.0409 5684 C:\Windows\System32\WUDFPlatform.dll - ok
18:23:30.0409 5684 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
18:23:30.0409 5684 C:\Windows\System32\WUDFSvc.dll - ok
18:23:30.0424 5684 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
18:23:30.0424 5684 C:\Windows\System32\drivers\lltdio.sys - ok
18:23:30.0424 5684 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
18:23:30.0424 5684 C:\Windows\System32\drivers\nwifi.sys - ok
18:23:30.0440 5684 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
18:23:30.0440 5684 C:\Windows\System32\drivers\ndisuio.sys - ok
18:23:30.0440 5684 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
18:23:30.0440 5684 C:\Windows\System32\drivers\rspndr.sys - ok
18:23:30.0455 5684 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
18:23:30.0455 5684 C:\Windows\System32\IPHLPAPI.DLL - ok
18:23:30.0455 5684 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
18:23:30.0455 5684 C:\Windows\System32\lmhsvc.dll - ok
18:23:30.0455 5684 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
18:23:30.0455 5684 C:\Windows\System32\dhcpcore.dll - ok
18:23:30.0471 5684 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
18:23:30.0471 5684 C:\Windows\System32\keyiso.dll - ok
18:23:30.0471 5684 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
18:23:30.0471 5684 C:\Windows\System32\nrpsrv.dll - ok
18:23:30.0487 5684 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
18:23:30.0487 5684 C:\Windows\System32\nsisvc.dll - ok
18:23:30.0487 5684 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
18:23:30.0487 5684 C:\Windows\System32\winnsi.dll - ok
18:23:30.0502 5684 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
18:23:30.0502 5684 C:\Windows\System32\dhcpcore6.dll - ok
18:23:30.0502 5684 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
18:23:30.0502 5684 C:\Windows\System32\dnsrslvr.dll - ok
18:23:30.0502 5684 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
18:23:30.0502 5684 C:\Windows\System32\eapphost.dll - ok
18:23:30.0518 5684 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
18:23:30.0518 5684 C:\Windows\System32\eapsvc.dll - ok
18:23:30.0518 5684 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
18:23:30.0518 5684 C:\Windows\System32\imageres.dll - ok
18:23:30.0533 5684 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
18:23:30.0533 5684 C:\Windows\System32\FWPUCLNT.DLL - ok
18:23:30.0533 5684 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
18:23:30.0533 5684 C:\Windows\System32\umb.dll - ok
18:23:30.0549 5684 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
18:23:30.0549 5684 C:\Windows\System32\wlanmsm.dll - ok
18:23:30.0549 5684 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
18:23:30.0549 5684 C:\Windows\System32\dnsext.dll - ok
18:23:30.0565 5684 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
18:23:30.0565 5684 C:\Windows\System32\AudioEng.dll - ok
18:23:30.0565 5684 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
18:23:30.0565 5684 C:\Windows\System32\dhcpcsvc6.dll - ok
18:23:30.0565 5684 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
18:23:30.0565 5684 C:\Windows\System32\wlansec.dll - ok
18:23:30.0580 5684 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
18:23:30.0580 5684 C:\Windows\System32\dhcpcsvc.dll - ok
18:23:30.0580 5684 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
18:23:30.0580 5684 C:\Windows\System32\eappcfg.dll - ok
18:23:30.0596 5684 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
18:23:30.0596 5684 C:\Windows\System32\eappprxy.dll - ok
18:23:30.0596 5684 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
18:23:30.0596 5684 C:\Windows\System32\onex.dll - ok
18:23:30.0611 5684 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
18:23:30.0611 5684 C:\Windows\System32\AUDIOKSE.dll - ok
18:23:30.0611 5684 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
18:23:30.0611 5684 C:\Windows\System32\l2gpstore.dll - ok
18:23:30.0611 5684 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
18:23:30.0611 5684 C:\Windows\System32\WinSCard.dll - ok
18:23:30.0627 5684 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
18:23:30.0627 5684 C:\Windows\System32\wlanutil.dll - ok
18:23:30.0627 5684 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
18:23:30.0627 5684 C:\Windows\System32\wlgpclnt.dll - ok
18:23:30.0643 5684 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
18:23:30.0643 5684 C:\Windows\System32\msxml6.dll - ok
18:23:30.0643 5684 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
18:23:30.0643 5684 C:\Windows\System32\ksuser.dll - ok
18:23:30.0658 5684 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
18:23:30.0658 5684 C:\Windows\System32\shsvcs.dll - ok
18:23:30.0658 5684 [ 951F198E13C73DD8340B29283477E31E ] C:\Windows\System32\stapo64.dll
18:23:30.0658 5684 C:\Windows\System32\stapo64.dll - ok
18:23:30.0658 5684 [ 5E65E90DA3A478C377F7332A9386B023 ] C:\Windows\System32\AESTAC64.dll
18:23:30.0658 5684 C:\Windows\System32\AESTAC64.dll - ok
18:23:30.0674 5684 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
18:23:30.0674 5684 C:\Windows\System32\dllhost.exe - ok
18:23:30.0674 5684 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
18:23:30.0674 5684 C:\Windows\System32\schedsvc.dll - ok
18:23:30.0689 5684 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
18:23:30.0689 5684 C:\Windows\System32\ktmw32.dll - ok
18:23:30.0689 5684 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
18:23:30.0689 5684 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
18:23:30.0705 5684 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
18:23:30.0705 5684 C:\Windows\System32\IDStore.dll - ok
18:23:30.0705 5684 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
18:23:30.0705 5684 C:\Windows\System32\netcfgx.dll - ok
18:23:30.0705 5684 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
18:23:30.0705 5684 C:\Windows\System32\drivers\vwifimp.sys - ok
18:23:30.0721 5684 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
18:23:30.0721 5684 C:\Windows\System32\taskcomp.dll - ok
18:23:30.0721 5684 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
18:23:30.0721 5684 C:\Windows\System32\AtBroker.exe - ok
18:23:30.0736 5684 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
18:23:30.0736 5684 C:\Windows\System32\mpr.dll - ok
18:23:30.0736 5684 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
18:23:30.0736 5684 C:\Windows\System32\drivers\http.sys - ok
18:23:30.0752 5684 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
18:23:30.0752 5684 C:\Windows\System32\spoolsv.exe - ok
18:23:30.0752 5684 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
18:23:30.0752 5684 C:\Windows\System32\userinit.exe - ok
18:23:30.0752 5684 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
18:23:30.0752 5684 C:\Windows\System32\fveapi.dll - ok
18:23:30.0767 5684 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
18:23:30.0767 5684 C:\Windows\System32\dwm.exe - ok
18:23:30.0767 5684 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
18:23:30.0767 5684 C:\Windows\System32\fvecerts.dll - ok
18:23:30.0783 5684 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
18:23:30.0783 5684 C:\Windows\System32\tbs.dll - ok
18:23:30.0783 5684 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
18:23:30.0783 5684 C:\Windows\System32\dwmredir.dll - ok
18:23:30.0799 5684 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
18:23:30.0799 5684 C:\Windows\System32\wiarpc.dll - ok
18:23:30.0799 5684 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
18:23:30.0799 5684 C:\Windows\System32\BFE.DLL - ok
18:23:30.0799 5684 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
18:23:30.0799 5684 C:\Windows\System32\dwmcore.dll - ok
18:23:30.0814 5684 [ C07D5582F2107ACAB4564E1DAE977C64 ] C:\Windows\ehome\ehprivjob.exe
18:23:30.0814 5684 C:\Windows\ehome\ehprivjob.exe - ok
18:23:30.0814 5684 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
18:23:30.0814 5684 C:\Windows\System32\conhost.exe - ok
18:23:30.0830 5684 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
18:23:30.0830 5684 C:\Windows\System32\taskhost.exe - ok
18:23:30.0830 5684 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
18:23:30.0830 5684 C:\Windows\System32\d3d10_1.dll - ok
18:23:30.0845 5684 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
18:23:30.0845 5684 C:\Windows\System32\d3d10_1core.dll - ok
18:23:30.0845 5684 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
18:23:30.0845 5684 C:\Windows\System32\dxgi.dll - ok
18:23:30.0861 5684 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
18:23:30.0861 5684 C:\Windows\System32\PlaySndSrv.dll - ok
18:23:30.0861 5684 [ 9E0FF5DDD8B908DA5611445C35D6CD24 ] C:\Windows\System32\slcext.dll
18:23:30.0861 5684 C:\Windows\System32\slcext.dll - ok
18:23:30.0861 5684 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
18:23:30.0861 5684 C:\Windows\System32\sppc.dll - ok
18:23:30.0877 5684 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
18:23:30.0877 5684 C:\Windows\explorer.exe - ok
18:23:30.0877 5684 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
18:23:30.0877 5684 C:\Windows\System32\sppcext.dll - ok
18:23:30.0892 5684 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
18:23:30.0892 5684 C:\Windows\System32\MsCtfMonitor.dll - ok
18:23:30.0892 5684 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
18:23:30.0892 5684 C:\Windows\System32\msutb.dll - ok
18:23:30.0908 5684 [ 0C9E61D80D143209FCFB7F62FF96B206 ] C:\Windows\System32\igd10umd64.dll
18:23:30.0908 5684 C:\Windows\System32\igd10umd64.dll - ok
18:23:30.0923 5684 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
18:23:30.0923 5684 C:\Windows\System32\HotStartUserAgent.dll - ok
18:23:30.0923 5684 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
18:23:30.0923 5684 C:\Windows\System32\drivers\bowser.sys - ok
18:23:30.0939 5684 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
18:23:30.0939 5684 C:\Windows\System32\drivers\mpsdrv.sys - ok
18:23:30.0939 5684 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
18:23:30.0939 5684 C:\Windows\System32\drivers\mrxsmb.sys - ok
18:23:30.0955 5684 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
18:23:30.0955 5684 C:\Windows\System32\MPSSVC.dll - ok
18:23:30.0955 5684 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
18:23:30.0955 5684 C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:23:30.0970 5684 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
18:23:30.0970 5684 C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:23:30.0970 5684 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
18:23:30.0970 5684 C:\Windows\System32\winhttp.dll - ok
18:23:30.0986 5684 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
18:23:30.0986 5684 C:\Windows\System32\ExplorerFrame.dll - ok
18:23:30.0986 5684 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
18:23:30.0986 5684 C:\Windows\System32\webio.dll - ok
18:23:30.0986 5684 [ 3BDCBB29D727C49DC3E3256253467281 ] C:\Windows\System32\wmdrmsdk.dll
18:23:30.0986 5684 C:\Windows\System32\wmdrmsdk.dll - ok
18:23:31.0001 5684 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
18:23:31.0001 5684 C:\Windows\System32\wkssvc.dll - ok
18:23:31.0001 5684 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:23:31.0001 5684 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
18:23:31.0017 5684 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
18:23:31.0017 5684 C:\Windows\System32\mfplat.dll - ok
18:23:31.0017 5684 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
18:23:31.0017 5684 C:\Windows\System32\uDWM.dll - ok
18:23:31.0033 5684 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
18:23:31.0033 5684 C:\Windows\SysWOW64\ntdll.dll - ok
18:23:31.0033 5684 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
18:23:31.0033 5684 C:\Windows\System32\wfapigp.dll - ok
18:23:31.0033 5684 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
18:23:31.0033 5684 C:\Windows\System32\wow64.dll - ok
18:23:31.0048 5684 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
18:23:31.0048 5684 C:\Windows\System32\wow64win.dll - ok
18:23:31.0048 5684 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
18:23:31.0048 5684 C:\Windows\System32\wow64cpu.dll - ok
18:23:31.0064 5684 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
18:23:31.0064 5684 C:\Windows\SysWOW64\kernel32.dll - ok
18:23:31.0064 5684 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
18:23:31.0064 5684 C:\Windows\System32\mscms.dll - ok
18:23:31.0079 5684 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
18:23:31.0079 5684 C:\Windows\SysWOW64\KernelBase.dll - ok
18:23:31.0079 5684 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
18:23:31.0079 5684 C:\Windows\SysWOW64\user32.dll - ok
18:23:31.0079 5684 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
18:23:31.0079 5684 C:\Windows\System32\taskeng.exe - ok
18:23:31.0095 5684 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
18:23:31.0095 5684 C:\Windows\System32\pcasvc.dll - ok
18:23:31.0095 5684 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
18:23:31.0095 5684 C:\Windows\System32\snmptrap.exe - ok
18:23:31.0111 5684 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
18:23:31.0111 5684 C:\Windows\SysWOW64\gdi32.dll - ok
18:23:31.0111 5684 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
18:23:31.0111 5684 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
18:23:31.0126 5684 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
18:23:31.0126 5684 C:\Windows\SysWOW64\lpk.dll - ok
18:23:31.0126 5684 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
18:23:31.0126 5684 C:\Windows\SysWOW64\msvcrt.dll - ok
18:23:31.0126 5684 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
18:23:31.0126 5684 C:\Windows\SysWOW64\usp10.dll - ok
18:23:31.0142 5684 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
18:23:31.0142 5684 C:\Windows\SysWOW64\advapi32.dll - ok
18:23:31.0142 5684 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
18:23:31.0142 5684 C:\Windows\System32\provsvc.dll - ok
18:23:31.0157 5684 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
18:23:31.0157 5684 C:\Windows\System32\EhStorShell.dll - ok
18:23:31.0157 5684 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
18:23:31.0157 5684 C:\Windows\System32\sstpsvc.dll - ok
18:23:31.0173 5684 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
18:23:31.0173 5684 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:23:31.0173 5684 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
18:23:31.0173 5684 C:\Windows\SysWOW64\sechost.dll - ok
18:23:31.0189 5684 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
18:23:31.0189 5684 C:\Windows\SysWOW64\cryptbase.dll - ok
18:23:31.0189 5684 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
18:23:31.0189 5684 C:\Windows\SysWOW64\shell32.dll - ok
18:23:31.0189 5684 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
18:23:31.0189 5684 C:\Windows\SysWOW64\sspicli.dll - ok
18:23:31.0204 5684 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
18:23:31.0204 5684 C:\Windows\SysWOW64\shlwapi.dll - ok
18:23:31.0204 5684 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
18:23:31.0204 5684 C:\Windows\SysWOW64\ole32.dll - ok
18:23:31.0220 5684 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
18:23:31.0220 5684 C:\Windows\SysWOW64\oleaut32.dll - ok
18:23:31.0220 5684 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
18:23:31.0220 5684 C:\Windows\SysWOW64\crypt32.dll - ok
18:23:31.0220 5684 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
18:23:31.0220 5684 C:\Windows\SysWOW64\msasn1.dll - ok
18:23:31.0235 5684 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
18:23:31.0235 5684 C:\Windows\SysWOW64\wintrust.dll - ok
18:23:31.0235 5684 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
18:23:31.0235 5684 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
18:23:31.0251 5684 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
18:23:31.0251 5684 C:\Windows\SysWOW64\imm32.dll - ok
18:23:31.0251 5684 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
18:23:31.0251 5684 C:\Windows\SysWOW64\msctf.dll - ok
18:23:31.0267 5684 [ A6FB9DB8F1A86861D955FD6975977AE0 ] C:\Program Files\IDT\WDM\AESTSr64.exe
18:23:31.0267 5684 C:\Program Files\IDT\WDM\AESTSr64.exe - ok
18:23:31.0267 5684 [ B65F8DBA54F251906BBE8611B5A0E7AB ] C:\Program Files\LSI SoftModem\agr64svc.exe
18:23:31.0267 5684 C:\Program Files\LSI SoftModem\agr64svc.exe - ok
18:23:31.0282 5684 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
18:23:31.0282 5684 C:\Windows\System32\cryptsvc.dll - ok
18:23:31.0282 5684 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
18:23:31.0282 5684 C:\Windows\System32\dps.dll - ok
18:23:31.0282 5684 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
18:23:31.0282 5684 C:\Windows\System32\efscore.dll - ok
18:23:31.0298 5684 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
18:23:31.0298 5684 C:\Windows\System32\efssvc.dll - ok
18:23:31.0298 5684 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
18:23:31.0298 5684 C:\Windows\System32\cryptnet.dll - ok
18:23:31.0313 5684 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
18:23:31.0313 5684 C:\Windows\System32\efsutil.dll - ok
18:23:31.0313 5684 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
18:23:31.0313 5684 C:\Windows\System32\FDResPub.dll - ok
18:23:31.0329 5684 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
18:23:31.0329 5684 C:\Windows\System32\WSDApi.dll - ok
18:23:31.0329 5684 [ F478DBABD9FDA2437293E7525C3979B9 ] C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE
18:23:31.0329 5684 C:\PROGRA~2\WinTV\TVServer\HAUPPA~1.EXE - ok
18:23:31.0345 5684 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
18:23:31.0345 5684 C:\Windows\System32\vssapi.dll - ok
18:23:31.0345 5684 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
18:23:31.0345 5684 C:\Windows\System32\taskschd.dll - ok
18:23:31.0360 5684 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
18:23:31.0360 5684 C:\Windows\System32\webservices.dll - ok
18:23:31.0360 5684 [ 5963633010616B25503EE126F55E8DE4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
18:23:31.0360 5684 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
18:23:31.0376 5684 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
18:23:31.0376 5684 C:\Windows\System32\fundisc.dll - ok
18:23:31.0376 5684 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
18:23:31.0376 5684 C:\Windows\System32\vsstrace.dll - ok
18:23:31.0391 5684 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
18:23:31.0391 5684 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
18:23:31.0391 5684 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
18:23:31.0391 5684 C:\Windows\SysWOW64\msimg32.dll - ok
18:23:31.0391 5684 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
18:23:31.0391 5684 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
18:23:31.0407 5684 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
18:23:31.0407 5684 C:\Windows\SysWOW64\dbghelp.dll - ok
18:23:31.0407 5684 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
18:23:31.0407 5684 C:\Windows\SysWOW64\uxtheme.dll - ok
18:23:31.0423 5684 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
18:23:31.0423 5684 C:\Windows\SysWOW64\dwmapi.dll - ok
18:23:31.0423 5684 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
18:23:31.0423 5684 C:\Windows\System32\TSChannel.dll - ok
18:23:31.0438 5684 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
18:23:31.0438 5684 C:\Windows\System32\httpapi.dll - ok
18:23:31.0438 5684 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
18:23:31.0438 5684 C:\Windows\ehome\ehtrace.dll - ok
18:23:31.0454 5684 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:23:31.0454 5684 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:23:31.0454 5684 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
18:23:31.0454 5684 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
18:23:31.0454 5684 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
18:23:31.0454 5684 C:\Windows\SysWOW64\clbcatq.dll - ok
18:23:31.0469 5684 [ F55442690A70A0278A7EED4FAAEBF576 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:23:31.0469 5684 C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
18:23:31.0469 5684 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
18:23:31.0469 5684 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
18:23:31.0485 5684 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
18:23:31.0485 5684 C:\Windows\SysWOW64\svchost.exe - ok
18:23:31.0485 5684 [ F928E5E72BBA15DD0CE9A26E0413D236 ] C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
18:23:31.0485 5684 C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe - ok
18:23:31.0501 5684 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
18:23:31.0501 5684 C:\Windows\System32\IKEEXT.DLL - ok
18:23:31.0501 5684 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:23:31.0501 5684 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:23:31.0501 5684 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
18:23:31.0501 5684 C:\Windows\SysWOW64\netapi32.dll - ok
18:23:31.0516 5684 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
18:23:31.0516 5684 C:\Windows\SysWOW64\netutils.dll - ok
18:23:31.0516 5684 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
18:23:31.0516 5684 C:\Windows\SysWOW64\nsi.dll - ok
18:23:31.0532 5684 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
18:23:31.0532 5684 C:\Windows\SysWOW64\winnsi.dll - ok
18:23:31.0532 5684 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
18:23:31.0532 5684 C:\Windows\SysWOW64\srvcli.dll - ok
18:23:31.0532 5684 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
18:23:31.0532 5684 C:\Windows\SysWOW64\wkscli.dll - ok
18:23:31.0547 5684 [ F3F72A2A86C22610BCA5439FA789DD52 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
18:23:31.0547 5684 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
18:23:31.0547 5684 [ 7E53957E73BFB209D49932A9DDEBEDE4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
18:23:31.0547 5684 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
18:23:31.0547 5684 [ DF3CA8D16BDED6A54977B30E66864D33 ] C:\Windows\System32\msvcr100.dll
18:23:31.0547 5684 C:\Windows\System32\msvcr100.dll - ok
18:23:31.0563 5684 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
18:23:31.0563 5684 C:\Windows\SysWOW64\setupapi.dll - ok
18:23:31.0563 5684 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
18:23:31.0563 5684 C:\Windows\System32\vpnikeapi.dll - ok
18:23:31.0579 5684 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:23:31.0579 5684 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:23:31.0579 5684 [ F4AB66EC2FB7D1DF0219D59C7CF38BCC ] C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll
18:23:31.0579 5684 C:\PROGRA~2\McAfee\SITEAD~1\sasshmod.dll - ok
18:23:31.0579 5684 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
18:23:31.0579 5684 C:\Windows\SysWOW64\devobj.dll - ok
18:23:31.0594 5684 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
18:23:31.0594 5684 C:\Windows\SysWOW64\version.dll - ok
18:23:31.0594 5684 [ DC5483CAD90D95D65B618E35C66E28DF ] C:\Windows\System32\mfevtps.exe
18:23:31.0594 5684 C:\Windows\System32\mfevtps.exe - ok
18:23:31.0610 5684 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
18:23:31.0610 5684 C:\Windows\System32\sfc.dll - ok
18:23:31.0610 5684 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
18:23:31.0610 5684 C:\Windows\System32\sfc_os.dll - ok
18:23:31.0610 5684 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
18:23:31.0610 5684 C:\Windows\SysWOW64\winspool.drv - ok
18:23:31.0625 5684 [ 2334DC48997BA203B794DF3EE70521DB ] C:\Windows\System32\HPZinw12.dll
18:23:31.0625 5684 C:\Windows\System32\HPZinw12.dll - ok
18:23:31.0625 5684 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
18:23:31.0625 5684 C:\Windows\System32\nlasvc.dll - ok
18:23:31.0641 5684 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
18:23:31.0641 5684 C:\Windows\System32\aepic.dll - ok
18:23:31.0641 5684 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
18:23:31.0641 5684 C:\Windows\System32\wsock32.dll - ok
18:23:31.0657 5684 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
18:23:31.0657 5684 C:\Windows\System32\ncsi.dll - ok
18:23:31.0657 5684 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
18:23:31.0657 5684 C:\Windows\System32\drivers\PEAuth.sys - ok
18:23:31.0672 5684 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] C:\Windows\System32\HPZipm12.dll
18:23:31.0672 5684 C:\Windows\System32\HPZipm12.dll - ok
18:23:31.0672 5684 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
18:23:31.0672 5684 C:\Windows\System32\ssdpapi.dll - ok
18:23:31.0688 5684 [ F0C3B543A95006ED2B2D07E1DA426813 ] C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll
18:23:31.0688 5684 C:\PROGRA~2\McAfee\SITEAD~1\saupkeep.dll - ok
18:23:31.0688 5684 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
18:23:31.0688 5684 C:\Windows\System32\rundll32.exe - ok
18:23:31.0688 5684 [ BB1D82C70960FC9F28BAD16A5D7D010D ] C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll
18:23:31.0688 5684 C:\PROGRA~2\McAfee\SITEAD~1\x64\saHook.dll - ok
18:23:31.0703 5684 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
18:23:31.0703 5684 C:\Windows\System32\drivers\secdrv.sys - ok
18:23:31.0703 5684 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
18:23:31.0703 5684 C:\Windows\System32\aeevts.dll - ok
18:23:31.0719 5684 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
18:23:31.0719 5684 C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
18:23:31.0719 5684 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
18:23:31.0719 5684 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
18:23:31.0735 5684 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
18:23:31.0735 5684 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
18:23:31.0735 5684 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
18:23:31.0735 5684 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
18:23:31.0750 5684 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
18:23:31.0750 5684 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
18:23:31.0750 5684 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
18:23:31.0750 5684 C:\Windows\SysWOW64\cryptsp.dll - ok
18:23:31.0750 5684 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
18:23:31.0750 5684 C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
18:23:31.0766 5684 [ 526BFE5365425630DC0A5666BF4EF975 ] C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll
18:23:31.0766 5684 C:\Program Files (x86)\McAfee Online Backup\MOBKshell.dll - ok
18:23:31.0766 5684 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
18:23:31.0766 5684 C:\Windows\System32\ntshrui.dll - ok
18:23:31.0781 5684 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
18:23:31.0781 5684 C:\Windows\System32\cscapi.dll - ok
18:23:31.0781 5684 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
18:23:31.0781 5684 C:\Windows\System32\IconCodecService.dll - ok
18:23:31.0797 5684 [ F07AF60B152221472FBDB2FECEC4896D ] C:\Program Files (x86)\Skype\Updater\Updater.exe
18:23:31.0797 5684 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
18:23:31.0797 5684 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
18:23:31.0797 5684 C:\Windows\SysWOW64\rundll32.exe - ok
18:23:31.0797 5684 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
18:23:31.0797 5684 C:\Windows\SysWOW64\imagehlp.dll - ok
18:23:31.0813 5684 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
18:23:31.0813 5684 C:\Windows\SysWOW64\profapi.dll - ok
18:23:31.0813 5684 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
18:23:31.0813 5684 C:\Windows\SysWOW64\psapi.dll - ok
18:23:31.0828 5684 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
18:23:31.0828 5684 C:\Windows\SysWOW64\userenv.dll - ok
18:23:31.0828 5684 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
18:23:31.0828 5684 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:23:31.0844 5684 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
18:23:31.0844 5684 C:\Windows\System32\drivers\srvnet.sys - ok
18:23:31.0844 5684 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
18:23:31.0844 5684 C:\Windows\System32\drivers\tcpipreg.sys - ok
18:23:31.0844 5684 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
18:23:31.0844 5684 C:\Windows\System32\sysmain.dll - ok
18:23:31.0875 5684 [ 3048A48D730C2C905897A0A25AE8822D ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
18:23:31.0875 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe - ok
18:23:31.0875 5684 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
18:23:31.0875 5684 C:\Windows\System32\trkwks.dll - ok
18:23:31.0891 5684 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:23:31.0891 5684 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
18:23:31.0906 5684 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
18:23:31.0906 5684 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
18:23:31.0906 5684 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
18:23:31.0906 5684 C:\Windows\System32\SensApi.dll - ok
18:23:31.0922 5684 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
18:23:31.0922 5684 C:\Windows\System32\wer.dll - ok
18:23:31.0922 5684 [ 38D1F23EE031B615A8CA51DD1E523579 ] C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
18:23:31.0922 5684 C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe - ok
18:23:31.0937 5684 [ 079FD1D59EAD19270C979AF174D881A3 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
18:23:31.0937 5684 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
18:23:31.0937 5684 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
18:23:31.0937 5684 C:\Windows\System32\msxml3.dll - ok
18:23:31.0953 5684 [ A35679BDD1687623ECCA8CEA9B2AE6C2 ] C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll
18:23:31.0953 5684 C:\Program Files\Common Files\McAfee\AMCore\quarantine.dll - ok
18:23:31.0969 5684 [ FD89893D9FA82A0EE0E41D79D1F134A3 ] C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll
18:23:31.0969 5684 C:\Program Files\Common Files\McAfee\AMCore\mfezip.dll - ok
18:23:31.0969 5684 [ CFF89FED4516F3850383ED66E0973A0D ] C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll
18:23:31.0969 5684 C:\Program Files\Common Files\McAfee\AMCore\mfeunzip.dll - ok
18:23:31.0984 5684 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
18:23:31.0984 5684 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
18:23:31.0984 5684 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
18:23:31.0984 5684 C:\Windows\System32\wbem\wbemprox.dll - ok
18:23:31.0984 5684 [ 983E4E902E9857CE4E5B876165683686 ] C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll
18:23:31.0984 5684 C:\Program Files\Common Files\McAfee\AMCore\MFE_DS.dll - ok
18:23:32.0000 5684 [ 05248F2E6E1AFA6972D058C36199DEB7 ] C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
18:23:32.0000 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe - ok
18:23:32.0000 5684 [ 6B8DAB849C74538EEA1EDD34E84E7924 ] C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll
18:23:32.0000 5684 C:\Program Files\Common Files\McAfee\AMCore\lua_lib.dll - ok
18:23:32.0015 5684 [ 270DB70DF6289F49A5FC7B462D5F6146 ] C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll
18:23:32.0015 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfehida.dll - ok
18:23:32.0015 5684 [ 9BAACAAEAD44E4CACEBC960452E628FA ] C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll
18:23:32.0015 5684 C:\Program Files\Common Files\McAfee\AMCore\MFE_CS.dll - ok
18:23:32.0031 5684 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
18:23:32.0031 5684 C:\Windows\System32\drivers\srv2.sys - ok
18:23:32.0047 5684 [ 389BC447DF363450A78845D35DBA0047 ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
18:23:32.0047 5684 C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe - ok
18:23:32.0047 5684 [ A76F263FF0E341213955BCC69A488350 ] C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll
18:23:32.0047 5684 C:\Program Files\Common Files\McAfee\AMCore\ncapi.dll - ok
18:23:32.0062 5684 [ 06480AAD7B811DE77FBDEA49579EB76A ] C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll
18:23:32.0062 5684 C:\Program Files\Common Files\McAfee\Platform\McSvcHost\LogCntrl.dll - ok
18:23:32.0078 5684 [ 45AD07D2FCA4F62C37883EED850BB7BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll
18:23:32.0078 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfeavfa.dll - ok
18:23:32.0093 5684 [ 295657F93F6B19DEEA804048E1CB4FF9 ] C:\Windows\System32\lz32.dll
18:23:32.0093 5684 C:\Windows\System32\lz32.dll - ok
18:23:32.0093 5684 [ 4077AB86BF544BD8AFE95394DC0D06F2 ] C:\PROGRA~1\McAfee\MPF\MpfSvc.dll
18:23:32.0093 5684 C:\PROGRA~1\McAfee\MPF\MpfSvc.dll - ok
18:23:32.0093 5684 [ 5A55E3E6F53592F8170623DEFA2B7954 ] C:\Windows\System32\atl100.dll
18:23:32.0093 5684 C:\Windows\System32\atl100.dll - ok
18:23:32.0109 5684 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
18:23:32.0109 5684 C:\Windows\System32\drivers\srv.sys - ok
18:23:32.0109 5684 [ 4F096D96285E06CD51AEF7D2D3DE04DA ] C:\Windows\System32\msvcp100.dll
18:23:32.0109 5684 C:\Windows\System32\msvcp100.dll - ok
18:23:32.0125 5684 [ 6AA0A0A53729FF73A27089F1C956FDC9 ] C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll
18:23:32.0125 5684 C:\Program Files\Common Files\McAfee\AMCore\EMMain.dll - ok
18:23:32.0140 5684 [ 5AA7C15994DA44CFF8D2CDB0E0000188 ] C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll
18:23:32.0140 5684 C:\Program Files\Common Files\McAfee\McProxy\McProxy.dll - ok
18:23:32.0140 5684 [ 7CA22382E2B042DDF838E8880397BFF1 ] C:\PROGRA~1\McAfee\MSK\msksrvr.dll
18:23:32.0140 5684 C:\PROGRA~1\McAfee\MSK\msksrvr.dll - ok
18:23:32.0156 5684 [ 47CDFF9055CF0A95E01AB60B4A435B4E ] C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll
18:23:32.0156 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfefwctl.dll - ok
18:23:32.0171 5684 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
18:23:32.0171 5684 C:\Windows\System32\wiaservc.dll - ok
18:23:32.0171 5684 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
18:23:32.0171 5684 C:\Windows\SysWOW64\apphelp.dll - ok
18:23:32.0187 5684 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
18:23:32.0187 5684 C:\Windows\AppPatch\AcLayers.dll - ok
18:23:32.0187 5684 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
18:23:32.0187 5684 C:\Windows\SysWOW64\mpr.dll - ok
18:23:32.0203 5684 [ 43EF8CA8FA9DC5F998FBC4C12C9556E2 ] C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll
18:23:32.0203 5684 C:\PROGRA~2\McAfee\SITEAD~1\sahook.dll - ok
18:23:32.0203 5684 [ E337DE8814EABEDEA01919B94D323078 ] C:\Windows\AppPatch\acwow64.dll
18:23:32.0203 5684 C:\Windows\AppPatch\acwow64.dll - ok
18:23:32.0218 5684 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
18:23:32.0218 5684 C:\Windows\System32\wiatrace.dll - ok
18:23:32.0218 5684 [ 7760899D95C2D1AAC5C1D34AF41A11C7 ] C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat
18:23:32.0218 5684 C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\avengine\5500.0000\mscan64a.dat - ok
18:23:32.0234 5684 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:23:32.0234 5684 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:23:32.0234 5684 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
18:23:32.0234 5684 C:\Windows\SysWOW64\rsaenh.dll - ok
18:23:32.0249 5684 [ 2B3BCC476DE273DD846985DF1F82C6F1 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~3.EXE
18:23:32.0249 5684 C:\PROGRA~2\WinTV\TVServer\CAPTUR~3.EXE - ok
18:23:32.0249 5684 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
18:23:32.0249 5684 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:23:32.0249 5684 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
18:23:32.0265 5684 C:\Windows\SysWOW64\shfolder.dll - ok
18:23:32.0265 5684 [ 76B71087B838BFB68F199CB4E194CF64 ] C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat
18:23:32.0265 5684 C:\Program Files\Common Files\McAfee\AMContent\content\amcore\normal\123.6\x86_64\MCNormalizer.dat - ok
18:23:32.0265 5684 [ A3C8D7B34E1262B9B9060876FEB691D8 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll
18:23:32.0265 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll - ok
18:23:32.0281 5684 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
18:23:32.0281 5684 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
18:23:32.0281 5684 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
18:23:32.0281 5684 C:\Windows\System32\wbemcomn.dll - ok
18:23:32.0296 5684 [ 47EB9DCD62C9CF3C93A5CE820379BF37 ] C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll
18:23:32.0296 5684 C:\Program Files\Common Files\McAfee\Platform\McRTMui.dll - ok
18:23:32.0296 5684 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
18:23:32.0296 5684 C:\Windows\SysWOW64\msi.dll - ok
18:23:32.0312 5684 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
18:23:32.0312 5684 C:\Windows\SysWOW64\mfc42.dll - ok
18:23:32.0312 5684 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
18:23:32.0312 5684 C:\Windows\System32\srvsvc.dll - ok
18:23:32.0327 5684 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
18:23:32.0327 5684 C:\Windows\SysWOW64\wininet.dll - ok
18:23:32.0327 5684 [ 7548066DF68A8A1A56B043359F915F37 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
18:23:32.0327 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
18:23:32.0343 5684 [ 71BCE52E3143FA4E12958C897962FB1D ] C:\PROGRA~1\McAfee\MPF\MpfEvt.dll
18:23:32.0343 5684 C:\PROGRA~1\McAfee\MPF\MpfEvt.dll - ok
18:23:32.0343 5684 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
18:23:32.0343 5684 C:\Windows\SysWOW64\iertutil.dll - ok
18:23:32.0359 5684 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
18:23:32.0359 5684 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
18:23:32.0374 5684 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
18:23:32.0374 5684 C:\Windows\System32\dssenh.dll - ok
18:23:32.0374 5684 [ C85841E14D7BD4188BD09A221EA3C7B0 ] C:\Program Files\Common Files\McAfee\Platform\LangSel.dll
18:23:32.0374 5684 C:\Program Files\Common Files\McAfee\Platform\LangSel.dll - ok
18:23:32.0374 5684 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
18:23:32.0374 5684 C:\Windows\SysWOW64\odbc32.dll - ok
18:23:32.0390 5684 [ 66DDB2D2ECA7674590712CA5A088BBC8 ] C:\PROGRA~1\McAfee\MPS\mps.dll
18:23:32.0390 5684 C:\PROGRA~1\McAfee\MPS\mps.dll - ok
18:23:32.0390 5684 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
18:23:32.0390 5684 C:\Windows\System32\browser.dll - ok
18:23:32.0405 5684 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\SysWOW64\msvcp60.dll
18:23:32.0405 5684 C:\Windows\SysWOW64\msvcp60.dll - ok
18:23:32.0405 5684 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
18:23:32.0405 5684 C:\Windows\System32\wbem\fastprox.dll - ok
18:23:32.0421 5684 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:23:32.0421 5684 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:23:32.0421 5684 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
18:23:32.0421 5684 C:\Windows\SysWOW64\urlmon.dll - ok
18:23:32.0437 5684 [ 951E1430E222A40D9A72F90403F4BABC ] C:\PROGRA~1\McAfee\MPS\mpscfg.dll
18:23:32.0437 5684 C:\PROGRA~1\McAfee\MPS\mpscfg.dll - ok
18:23:32.0437 5684 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
18:23:32.0437 5684 C:\Windows\SysWOW64\odbcint.dll - ok
18:23:32.0437 5684 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
18:23:32.0437 5684 C:\Windows\System32\netmsg.dll - ok
18:23:32.0452 5684 [ AE923380F5ABB8917A5A8B774541064A ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\PCMRRec4.dll
18:23:32.0452 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\PCMRRec4.dll - ok
18:23:32.0468 5684 [ B4B133DE7161E7489DDC73184347FCF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll
18:23:32.0468 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfevtpa.dll - ok
18:23:32.0468 5684 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
18:23:32.0468 5684 C:\Windows\System32\sscore.dll - ok
18:23:32.0468 5684 [ F74CEEFC48001CBFD086AE5044E5F556 ] C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll
18:23:32.0468 5684 C:\PROGRA~1\COMMON~1\McAfee\HACKER~1\HWAPI.dll - ok
18:23:32.0483 5684 [ AA8C627E45F78443A844074E791EB310 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll
18:23:32.0483 5684 C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\McEvtBrk.dll - ok
18:23:32.0483 5684 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
18:23:32.0483 5684 C:\Windows\System32\clusapi.dll - ok
18:23:32.0499 5684 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
18:23:32.0499 5684 C:\Windows\SysWOW64\cscapi.dll - ok
18:23:32.0499 5684 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
18:23:32.0499 5684 C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:23:32.0499 5684 [ E21ACA2F36B26282971FABFC5DA3FED4 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll
18:23:32.0499 5684 C:\PROGRA~1\COMMON~1\McAfee\Platform\mcutil.dll - ok
18:23:32.0515 5684 [ E50929C46B8089A3ED607FE4D42690E3 ] C:\PROGRA~1\McAfee\MSC\mclwapi.dll
18:23:32.0515 5684 C:\PROGRA~1\McAfee\MSC\mclwapi.dll - ok
18:23:32.0515 5684 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
18:23:32.0515 5684 C:\Windows\System32\ntdsapi.dll - ok
18:23:32.0515 5684 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
18:23:32.0515 5684 C:\Windows\SysWOW64\ntmarta.dll - ok
18:23:32.0530 5684 [ 14AA26963C00F2B7498661257D276009 ] C:\PROGRA~1\McAfee\MSK\mskengn.dll
18:23:32.0530 5684 C:\PROGRA~1\McAfee\MSK\mskengn.dll - ok
18:23:32.0530 5684 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
18:23:32.0530 5684 C:\Windows\SysWOW64\winmm.dll - ok
18:23:32.0530 5684 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
18:23:32.0530 5684 C:\Windows\SysWOW64\Wldap32.dll - ok
18:23:32.0546 5684 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
18:23:32.0546 5684 C:\Windows\SysWOW64\comdlg32.dll - ok
18:23:32.0546 5684 [ D3535286093074C91465DADE917905E4 ] C:\PROGRA~1\McAfee\MPS\mpsevh.dll
18:23:32.0546 5684 C:\PROGRA~1\McAfee\MPS\mpsevh.dll - ok
18:23:32.0561 5684 [ 72F79F28538B54BBA0FBE233C7778310 ] C:\PROGRA~1\McAfee\MPS\MPSMisp.dll
18:23:32.0561 5684 C:\PROGRA~1\McAfee\MPS\MPSMisp.dll - ok
18:23:32.0561 5684 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
18:23:32.0561 5684 C:\Windows\System32\resutils.dll - ok
18:23:32.0561 5684 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
18:23:32.0561 5684 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
18:23:32.0577 5684 [ E4024CCF225A936207294DE50925D4F6 ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll
18:23:32.0577 5684 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdateres_en.dll - ok
18:23:32.0577 5684 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\SysWOW64\msdmo.dll
18:23:32.0577 5684 C:\Windows\SysWOW64\msdmo.dll - ok
18:23:32.0577 5684 [ FAF9949FE74EFF0C931767C8670E4648 ] C:\PROGRA~1\McAfee\MSK\mskupd.dll
18:23:32.0577 5684 C:\PROGRA~1\McAfee\MSK\mskupd.dll - ok
18:23:32.0593 5684 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
18:23:32.0593 5684 C:\Windows\SysWOW64\ws2_32.dll - ok
18:23:32.0593 5684 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
18:23:32.0593 5684 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
18:23:32.0608 5684 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
18:23:32.0608 5684 C:\Windows\System32\wbem\wbemcore.dll - ok
18:23:32.0608 5684 [ 984BDAC9F4FC9993CE8D3A7D7DA3E9A5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
18:23:32.0608 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
18:23:32.0624 5684 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
18:23:32.0624 5684 C:\Windows\System32\wbem\esscli.dll - ok
18:23:32.0624 5684 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\SysWOW64\devenum.dll
18:23:32.0624 5684 C:\Windows\SysWOW64\devenum.dll - ok
18:23:32.0624 5684 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
18:23:32.0624 5684 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:23:32.0639 5684 [ E24FE90E9DE8D8AE70E59F7B01675DEF ] C:\Windows\SysWOW64\avicap32.dll
18:23:32.0639 5684 C:\Windows\SysWOW64\avicap32.dll - ok
18:23:32.0639 5684 [ 787234856EDDA48D5D49B48C2B37B373 ] C:\PROGRA~1\McAfee\MSK\mskwm.dll
18:23:32.0639 5684 C:\PROGRA~1\McAfee\MSK\mskwm.dll - ok
18:23:32.0655 5684 [ C335EC1182AC10B188705554E0BC1186 ] C:\Windows\SysWOW64\msvfw32.dll
18:23:32.0655 5684 C:\Windows\SysWOW64\msvfw32.dll - ok
18:23:32.0655 5684 [ 24498D084FAA7A459C91066EC241E1CE ] C:\Windows\SysWOW64\vfwwdm32.dll
18:23:32.0655 5684 C:\Windows\SysWOW64\vfwwdm32.dll - ok
18:23:32.0655 5684 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
18:23:32.0655 5684 C:\Windows\System32\wbem\wmiutils.dll - ok
18:23:32.0671 5684 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
18:23:32.0671 5684 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:23:32.0671 5684 [ 3960CEB4A6B13784252D827ECF65CED3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
18:23:32.0671 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
18:23:32.0671 5684 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
18:23:32.0671 5684 C:\Windows\SysWOW64\mstask.dll - ok
18:23:32.0686 5684 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
18:23:32.0686 5684 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
18:23:32.0686 5684 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
18:23:32.0686 5684 C:\Windows\System32\iphlpsvc.dll - ok
18:23:32.0702 5684 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
18:23:32.0702 5684 C:\Windows\System32\sqmapi.dll - ok
18:23:32.0702 5684 [ FFF2F32E37DB06D2D67E2BC090F86313 ] C:\PROGRA~1\McAfee\MSK\mskxaif.dll
18:23:32.0702 5684 C:\PROGRA~1\McAfee\MSK\mskxaif.dll - ok
18:23:32.0717 5684 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
18:23:32.0717 5684 C:\Windows\System32\wdscore.dll - ok
18:23:32.0717 5684 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
18:23:32.0717 5684 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
18:23:32.0717 5684 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
18:23:32.0717 5684 C:\Windows\SysWOW64\MMDevAPI.dll - ok
18:23:32.0733 5684 [ 1530DFBDFD68AAD1FD5FDA52EA44925E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
18:23:32.0733 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
18:23:32.0733 5684 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
18:23:32.0733 5684 C:\Windows\SysWOW64\propsys.dll - ok
18:23:32.0749 5684 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
18:23:32.0749 5684 C:\Windows\System32\rasadhlp.dll - ok
18:23:32.0749 5684 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:23:32.0749 5684 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:23:32.0764 5684 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
18:23:32.0764 5684 C:\Windows\System32\ncobjapi.dll - ok
18:23:32.0764 5684 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\SysWOW64\wdmaud.drv
18:23:32.0764 5684 C:\Windows\SysWOW64\wdmaud.drv - ok
18:23:32.0780 5684 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
18:23:32.0780 5684 C:\Windows\SysWOW64\ksuser.dll - ok
18:23:32.0780 5684 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
18:23:32.0780 5684 C:\Windows\System32\wbem\wbemess.dll - ok
18:23:32.0780 5684 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
18:23:32.0795 5684 C:\Windows\SysWOW64\avrt.dll - ok
18:23:32.0795 5684 [ 7FC0F6C8A0CEFBE4E60D8577C6FF8584 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
18:23:32.0795 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
18:23:32.0795 5684 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
18:23:32.0795 5684 C:\Windows\System32\nci.dll - ok
18:23:32.0811 5684 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
18:23:32.0811 5684 C:\Windows\SysWOW64\AudioSes.dll - ok
18:23:32.0811 5684 [ EEA7E552C2C992CFD4B50857010F39EA ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
18:23:32.0811 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
18:23:32.0827 5684 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\SysWOW64\msacm32.drv
18:23:32.0827 5684 C:\Windows\SysWOW64\msacm32.drv - ok
18:23:32.0827 5684 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
18:23:32.0827 5684 C:\Windows\SysWOW64\msacm32.dll - ok
18:23:32.0842 5684 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\SysWOW64\midimap.dll
18:23:32.0842 5684 C:\Windows\SysWOW64\midimap.dll - ok
18:23:32.0842 5684 [ 5E2623439A9936D320FE8DC1AB84526A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
18:23:32.0842 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
18:23:32.0842 5684 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
18:23:32.0842 5684 C:\Windows\System32\netprofm.dll - ok
18:23:32.0858 5684 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:23:32.0858 5684 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:23:32.0858 5684 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
18:23:32.0858 5684 C:\Windows\SysWOW64\wbemcomn.dll - ok
18:23:32.0873 5684 [ 8F1656DEB2E861D608909792F5A68C3B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
18:23:32.0873 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
18:23:32.0873 5684 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
18:23:32.0873 5684 C:\Windows\System32\hnetcfg.dll - ok
18:23:32.0889 5684 [ D13A0F67DC8943DB94329C10D5C6E86A ] C:\Program Files\McAfee\MSC\oemui.dll
18:23:32.0889 5684 C:\Program Files\McAfee\MSC\oemui.dll - ok
18:23:32.0889 5684 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:23:32.0889 5684 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:23:32.0905 5684 [ 78193AA97D679531522C3E2FA4A5EDFE ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
18:23:32.0905 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
18:23:32.0905 5684 [ 8A40AF19D06214C410E5ED8E178F66FB ] C:\Program Files\McAfee\MPF\L10N.dll
18:23:32.0905 5684 C:\Program Files\McAfee\MPF\L10N.dll - ok
18:23:32.0920 5684 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:23:32.0920 5684 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:23:32.0920 5684 [ 793A19EAB66BB232F019DFF9D1977A41 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
18:23:32.0920 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
18:23:32.0936 5684 [ BA726152513EC650EED219B7995DE852 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
18:23:32.0936 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
18:23:32.0936 5684 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
18:23:32.0936 5684 C:\Windows\SysWOW64\ntdsapi.dll - ok
18:23:32.0951 5684 [ 77C8E1779E784189EA29D9A5ECCDD9E9 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
18:23:32.0951 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
18:23:32.0951 5684 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:23:32.0951 5684 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:23:32.0967 5684 [ AFD87B70E2C48EC080CA28ADCC3175B5 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
18:23:32.0967 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
18:23:32.0967 5684 [ 5ECEA5F29DCEE8D320454C86A1CB3366 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
18:23:32.0967 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
18:23:32.0983 5684 [ 18873D2B1ABBB8826ED18F840CB8E0D3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
18:23:32.0983 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
18:23:32.0983 5684 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
18:23:32.0983 5684 C:\Windows\System32\dbghelp.dll - ok
18:23:32.0983 5684 [ 79ECBC83B844F7A474C66BE77AAF7180 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
18:23:32.0983 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
18:23:32.0998 5684 [ 069006BF253F32CD980E67E8671DFE3C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
18:23:32.0998 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
18:23:32.0998 5684 [ 5925F32114BF5ACF50C66500433B35CC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
18:23:32.0998 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
18:23:33.0014 5684 [ 03C7D7A1553E3009CEBE3013A578B0ED ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
18:23:33.0014 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
18:23:33.0014 5684 [ 4FFD3E3363EBAC7FC8BBA58EAD594AFF ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
18:23:33.0014 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
18:23:33.0029 5684 [ 2499E32320905E68F9710527593A0EDB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
18:23:33.0029 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
18:23:33.0029 5684 [ 591EA8B6991D99720B36EBC1CC16CEA8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
18:23:33.0029 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
18:23:33.0045 5684 [ A4487F6CEFED12F2C1257F6DBCDAEB1E ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
18:23:33.0045 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
18:23:33.0045 5684 [ 35989A505DEEC24DEF8D327D22FF14D4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
18:23:33.0045 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
18:23:33.0061 5684 [ 9D825B4E6B28F93F326538515EFC880B ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
18:23:33.0061 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
18:23:33.0061 5684 [ D9BFF3E59CBE32FE72D6D68F6AF348BD ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
18:23:33.0061 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
18:23:33.0076 5684 [ E84CB5D899098DDEA6D013057C9E4B5F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
18:23:33.0076 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
18:23:33.0076 5684 [ 15C42334805B711FBF0C788A1D751528 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
18:23:33.0076 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
18:23:33.0076 5684 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
18:23:33.0076 5684 C:\Windows\System32\framedynos.dll - ok
18:23:33.0092 5684 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
18:23:33.0092 5684 C:\Windows\System32\wbem\wmipcima.dll - ok
18:23:33.0092 5684 [ A5DBC74C5B91CF6E43B73D62936F8186 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
18:23:33.0092 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
18:23:33.0107 5684 [ 3CEF96890064B3CDB190963157F24BAC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
18:23:33.0107 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
18:23:33.0107 5684 [ 5BFB02BDA2700D078400E149BC4CF87A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
18:23:33.0107 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
18:23:33.0123 5684 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
18:23:33.0123 5684 C:\Windows\SysWOW64\oleacc.dll - ok
18:23:33.0123 5684 [ 3C29B98149A28FEDA42796D3EA904F62 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
18:23:33.0123 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
18:23:33.0139 5684 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
18:23:33.0139 5684 C:\Windows\SysWOW64\sxs.dll - ok
18:23:33.0139 5684 [ 38ADD53ECFC5F040EF1C647ECD22A2A4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
18:23:33.0139 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
18:23:33.0154 5684 [ F0BFA0FE6317B40CD4A3FE5EB6F8C55F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
18:23:33.0154 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
18:23:33.0154 5684 [ 325D5963BFC15BEA175C11E1871E5561 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~4.EXE
18:23:33.0154 5684 C:\PROGRA~2\WinTV\TVServer\CAPTUR~4.EXE - ok
18:23:33.0170 5684 [ C65B115A03DB0260895DE96681E88221 ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
18:23:33.0170 5684 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe - ok
18:23:33.0170 5684 [ B508A4EE516D905730458BB50B79979B ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
18:23:33.0170 5684 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe - ok
18:23:33.0185 5684 [ 43B02D7C43B77775F1DA63B1D1014F38 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
18:23:33.0185 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
18:23:33.0185 5684 [ 682A19CEA431A29D0B5A931332ADBC2A ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
18:23:33.0185 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe - ok
18:23:33.0185 5684 [ 5AF1E9600E3FF841E522703A4993ED0C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
18:23:33.0185 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
18:23:33.0201 5684 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Windows\SysWOW64\msvcp71.dll
18:23:33.0201 5684 C:\Windows\SysWOW64\msvcp71.dll - ok
18:23:33.0201 5684 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
18:23:33.0201 5684 C:\Windows\SysWOW64\ddraw.dll - ok
18:23:33.0217 5684 [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Windows\SysWOW64\MFC71u.dll
18:23:33.0217 5684 C:\Windows\SysWOW64\MFC71u.dll - ok
18:23:33.0217 5684 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Windows\SysWOW64\msvcr71.dll
18:23:33.0217 5684 C:\Windows\SysWOW64\msvcr71.dll - ok
18:23:33.0232 5684 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
18:23:33.0232 5684 C:\Windows\SysWOW64\dciman32.dll - ok
18:23:33.0232 5684 [ 552109D914C92269FECBB3AE7EC1B20D ] C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
18:23:33.0232 5684 C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll - ok
18:23:33.0248 5684 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
18:23:33.0248 5684 C:\Windows\SysWOW64\d3d9.dll - ok
18:23:33.0248 5684 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
18:23:33.0248 5684 C:\Windows\SysWOW64\msxml3.dll - ok
18:23:33.0248 5684 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\SysWOW64\drprov.dll
18:23:33.0248 5684 C:\Windows\SysWOW64\drprov.dll - ok
18:23:33.0263 5684 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
18:23:33.0263 5684 C:\Windows\SysWOW64\winsta.dll - ok
18:23:33.0263 5684 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\SysWOW64\davclnt.dll
18:23:33.0263 5684 C:\Windows\SysWOW64\davclnt.dll - ok
18:23:33.0279 5684 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\SysWOW64\ntlanman.dll
18:23:33.0279 5684 C:\Windows\SysWOW64\ntlanman.dll - ok
18:23:33.0279 5684 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\SysWOW64\davhlpr.dll
18:23:33.0279 5684 C:\Windows\SysWOW64\davhlpr.dll - ok
18:23:33.0295 5684 [ A325B4285781771F21EE38B849D6B7F2 ] C:\PROGRA~2\WinTV\TVServer\CAPTUR~2.EXE
18:23:33.0295 5684 C:\PROGRA~2\WinTV\TVServer\CAPTUR~2.EXE - ok
18:23:33.0295 5684 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
18:23:33.0295 5684 C:\Windows\SysWOW64\d3d8thk.dll - ok
18:23:33.0310 5684 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Windows\SysWOW64\MFC71.dll
18:23:33.0310 5684 C:\Windows\SysWOW64\MFC71.dll - ok
18:23:33.0310 5684 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
18:23:33.0310 5684 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
18:23:33.0326 5684 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
18:23:33.0326 5684 C:\Windows\SysWOW64\secur32.dll - ok
18:23:33.0326 5684 [ DF8D07059E7237E0BE9C1421EF5F9482 ] C:\Windows\System32\drivers\cfwids.sys
18:23:33.0326 5684 C:\Windows\System32\drivers\cfwids.sys - ok
18:23:33.0326 5684 [ CD0BC0B6B8D219808AEA3ECD4E889B19 ] C:\Windows\System32\raserver.exe
18:23:33.0326 5684 C:\Windows\System32\raserver.exe - ok
18:23:33.0341 5684 [ E79DF53BAD587E24B3CF965A5746C7B6 ] C:\Windows\System32\msra.exe
18:23:33.0341 5684 C:\Windows\System32\msra.exe - ok
18:23:33.0341 5684 [ 322A96BFB36CEAA506F74D5F98CDA723 ] C:\Program Files\Windows Media Player\wmplayer.exe
18:23:33.0341 5684 C:\Program Files\Windows Media Player\wmplayer.exe - ok
18:23:33.0357 5684 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:23:33.0357 5684 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:23:33.0357 5684 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
18:23:33.0357 5684 C:\Windows\SysWOW64\bcrypt.dll - ok
18:23:33.0373 5684 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:23:33.0373 5684 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:23:33.0373 5684 [ 3FDB77D0BBEEB36AE35077ABC0BF80EC ] C:\Windows\SysWOW64\odbcjt32.dll
18:23:33.0373 5684 C:\Windows\SysWOW64\odbcjt32.dll - ok
18:23:33.0388 5684 [ 7CAB8079DA80480477435FC57F5C8F38 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll
18:23:33.0388 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Helper.dll - ok
18:23:33.0388 5684 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
18:23:33.0388 5684 C:\Windows\SysWOW64\msjet40.dll - ok
18:23:33.0404 5684 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
18:23:33.0404 5684 C:\Windows\SysWOW64\mswstr10.dll - ok
18:23:33.0404 5684 [ 870285A6C2429CFC47FF95DA49313664 ] C:\Windows\SysWOW64\msjter40.dll
18:23:33.0404 5684 C:\Windows\SysWOW64\msjter40.dll - ok
18:23:33.0419 5684 [ 03F86B6A95728E83364B67FCA192DFE9 ] C:\Windows\SysWOW64\odbcji32.dll
18:23:33.0419 5684 C:\Windows\SysWOW64\odbcji32.dll - ok
18:23:33.0419 5684 [ 0219B6F2329F4C1BC24580C83D0F3645 ] C:\Windows\SysWOW64\msjint40.dll
18:23:33.0419 5684 C:\Windows\SysWOW64\msjint40.dll - ok
18:23:33.0419 5684 [ 9DD88A4B975D0D8EDDA6C7654BC7DFC3 ] C:\PROGRA~2\WinTV\TVServer\HauppaugeTVServerps.dll
18:23:33.0419 5684 C:\PROGRA~2\WinTV\TVServer\HauppaugeTVServerps.dll - ok
18:23:33.0435 5684 [ 7BF6F992F69A4FFD0ACE7B6F817C6589 ] C:\Windows\SysWOW64\igdumdx32.dll
18:23:33.0435 5684 C:\Windows\SysWOW64\igdumdx32.dll - ok
18:23:33.0435 5684 [ 3B685BA6B17F774504C0C65988600689 ] C:\Windows\SysWOW64\igdumd32.dll
18:23:33.0435 5684 C:\Windows\SysWOW64\igdumd32.dll - ok
18:23:33.0451 5684 [ 3F126756F43B4EE74A4831145D99B9BA ] C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll
18:23:33.0451 5684 C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll - ok
18:23:33.0451 5684 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
18:23:33.0451 5684 C:\Windows\SysWOW64\powrprof.dll - ok
18:23:33.0466 5684 [ AD563223033972BF1CFBAA36C8AFCF95 ] C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll
18:23:33.0466 5684 C:\Program Files\COMMON~1\McAfee\Platform\PlatformServiceFW.dll - ok
18:23:33.0466 5684 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
18:23:33.0466 5684 C:\Windows\System32\npmproxy.dll - ok
18:23:33.0482 5684 [ 328C62E8462C073AE2E1C6290BA05468 ] C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll
18:23:33.0482 5684 C:\PROGRA~1\McAfee\MSC\mcregobj\12_1_2~1\mcregobj.dll - ok
18:23:33.0482 5684 [ A91A5019E7338A96E08B8CAAA621D936 ] C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll
18:23:33.0482 5684 C:\Program Files\McAfee\MSC\McPrtMgrPlugin.dll - ok
18:23:33.0497 5684 [ 0ACA94DFBDE5C99378A6C9E6038DAA04 ] C:\Program Files\McAfee\MSC\mcoemres.dll
18:23:33.0497 5684 C:\Program Files\McAfee\MSC\mcoemres.dll - ok
18:23:33.0497 5684 [ 77BEC56CFEC15FF113236A0B9F81C232 ] C:\Program Files\McAfee\MSC\mcprlres.dll
18:23:33.0497 5684 C:\Program Files\McAfee\MSC\mcprlres.dll - ok
18:23:33.0513 5684 [ C1D8836625296DE901938B593842238E ] C:\PROGRA~1\McAfee\MSC\McAPExe.exe
18:23:33.0513 5684 C:\PROGRA~1\McAfee\MSC\McAPExe.exe - ok
18:23:33.0513 5684 [ 3C31382EA064F271DB5E9C78DABAEDB1 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\sqlite3.dll
18:23:33.0513 5684 C:\PROGRA~1\COMMON~1\McAfee\Platform\sqlite3.dll - ok
18:23:33.0529 5684 [ E6D5B3D94AE65BBD437C2749701225B5 ] C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\mccoreps.dll
18:23:33.0529 5684 C:\PROGRA~1\COMMON~1\McAfee\Platform\Core\mccoreps.dll - ok
18:23:33.0529 5684 [ 7425C32BA15AFD9ECE75029B00843F64 ] C:\Program Files (x86)\Google\Update\1.3.21.123\psmachine.dll
18:23:33.0529 5684 C:\Program Files (x86)\Google\Update\1.3.21.123\psmachine.dll - ok
18:23:33.0529 5684 [ E4CF00BD38B2F3E5A2473690B94B1785 ] C:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Common\CLRCEngine3.dll
18:23:33.0529 5684 C:\Program Files (x86)\Hewlett-Packard\Media\iTV\Kernel\Common\CLRCEngine3.dll - ok
18:23:33.0544 5684 [ F37882F128EFACEFE353E0BAE2766909 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
18:23:33.0544 5684 C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
18:23:33.0544 5684 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
18:23:33.0544 5684 C:\Windows\System32\appinfo.dll - ok
18:23:33.0560 5684 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
18:23:33.0560 5684 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
18:23:33.0560 5684 [ F860DD3F552437E37AD35D2AC0258CF0 ] C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll
18:23:33.0560 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfeapfa.dll - ok
18:23:33.0575 5684 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
18:23:33.0575 5684 C:\Windows\System32\wdi.dll - ok
18:23:33.0575 5684 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
18:23:33.0575 5684 C:\Windows\System32\aelupsvc.dll - ok
18:23:33.0591 5684 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
18:23:33.0591 5684 C:\Windows\System32\hidserv.dll - ok
18:23:33.0591 5684 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
18:23:33.0591 5684 C:\Windows\System32\wbem\cimwin32.dll - ok
18:23:33.0607 5684 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
18:23:33.0607 5684 C:\Windows\System32\winspool.drv - ok
18:23:33.0607 5684 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
18:23:33.0607 5684 C:\Windows\SysWOW64\winhttp.dll - ok
18:23:33.0622 5684 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
18:23:33.0622 5684 C:\Windows\System32\wpdbusenum.dll - ok
18:23:33.0622 5684 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
18:23:33.0622 5684 C:\Windows\SysWOW64\webio.dll - ok
18:23:33.0638 5684 [ 2D53234C24B0103FDE0BE06782AA6F80 ] C:\Windows\System32\drivers\mfeapfk.sys
18:23:33.0638 5684 C:\Windows\System32\drivers\mfeapfk.sys - ok
18:23:33.0638 5684 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
18:23:33.0638 5684 C:\Windows\System32\IPSECSVC.DLL - ok
18:23:33.0638 5684 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
18:23:33.0638 5684 C:\Windows\System32\diagperf.dll - ok
18:23:33.0653 5684 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
18:23:33.0653 5684 C:\Windows\System32\perftrack.dll - ok
18:23:33.0653 5684 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
18:23:33.0653 5684 C:\Windows\SysWOW64\credssp.dll - ok
18:23:33.0669 5684 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
18:23:33.0669 5684 C:\Windows\System32\FwRemoteSvr.dll - ok
18:23:33.0669 5684 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
18:23:33.0669 5684 C:\Windows\System32\PortableDeviceApi.dll - ok
18:23:33.0685 5684 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
18:23:33.0685 5684 C:\Windows\System32\pnpts.dll - ok
18:23:33.0685 5684 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
18:23:33.0685 5684 C:\Windows\System32\radardt.dll - ok
18:23:33.0700 5684 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
18:23:33.0700 5684 C:\Windows\System32\wdiasqmmodule.dll - ok
18:23:33.0700 5684 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
18:23:33.0700 5684 C:\Windows\System32\Apphlpdm.dll - ok
18:23:33.0716 5684 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
18:23:33.0716 5684 C:\Windows\System32\wmi.dll - ok
18:23:33.0716 5684 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:23:33.0716 5684 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:23:33.0716 5684 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
18:23:33.0716 5684 C:\Windows\System32\browcli.dll - ok
18:23:33.0731 5684 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
18:23:33.0731 5684 C:\Windows\System32\schedcli.dll - ok
18:23:33.0731 5684 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:23:33.0731 5684 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:23:33.0747 5684 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:23:33.0747 5684 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:23:33.0747 5684 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
18:23:33.0747 5684 C:\Windows\SysWOW64\mswsock.dll - ok
18:23:33.0763 5684 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:23:33.0763 5684 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:23:33.0763 5684 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
18:23:33.0763 5684 C:\Windows\SysWOW64\wship6.dll - ok
18:23:33.0763 5684 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
18:23:33.0763 5684 C:\Windows\SysWOW64\dnsapi.dll - ok
18:23:33.0778 5684 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
18:23:33.0778 5684 C:\Windows\System32\localspl.dll - ok
18:23:33.0778 5684 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
18:23:33.0778 5684 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
18:23:33.0794 5684 [ 161A7C9EC2F7CA0F0AB151E5A133672A ] C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll
18:23:33.0794 5684 C:\PROGRA~1\McAfee\MPF\McMPFPPv.dll - ok
18:23:33.0794 5684 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
18:23:33.0794 5684 C:\Windows\System32\spoolss.dll - ok
18:23:33.0809 5684 [ 1E773E34A9ACD5CCF82CF6275A5A3865 ] C:\PROGRA~1\McAfee\MPF\MpfApi.dll
18:23:33.0809 5684 C:\PROGRA~1\McAfee\MPF\MpfApi.dll - ok
18:23:33.0809 5684 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
18:23:33.0809 5684 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:23:33.0825 5684 [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMFIA.DLL
18:23:33.0825 5684 C:\Windows\System32\E_ILMFIA.DLL - ok
18:23:33.0825 5684 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
18:23:33.0825 5684 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:23:33.0825 5684 [ 50F9F2BCF53491C43755A553D6E39DB6 ] C:\Windows\System32\hpf3l092.dll
18:23:33.0825 5684 C:\Windows\System32\hpf3l092.dll - ok
18:23:33.0841 5684 [ E2B08D19F5F3BDD73A6F046E2B371A41 ] C:\Windows\System32\HPZLLWN7.DLL
18:23:33.0841 5684 C:\Windows\System32\HPZLLWN7.DLL - ok
18:23:33.0841 5684 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
18:23:33.0841 5684 C:\Windows\System32\FXSMON.dll - ok
18:23:33.0856 5684 [ 4CC0649A5761CF5DADA9666857E7F851 ] C:\Program Files\McAfee\VirusScan\McVSPP.dll
18:23:33.0856 5684 C:\Program Files\McAfee\VirusScan\McVSPP.dll - ok
18:23:33.0856 5684 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
18:23:33.0856 5684 C:\Windows\System32\runonce.exe - ok
18:23:33.0872 5684 [ 968176B20CF774C938E4CE320AD33CB5 ] C:\Program Files\McAfee\VirusScan\mcvsocfg.dll
18:23:33.0872 5684 C:\Program Files\McAfee\VirusScan\mcvsocfg.dll - ok
18:23:33.0872 5684 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
18:23:33.0872 5684 C:\Windows\System32\tcpmon.dll - ok
18:23:33.0872 5684 [ 6B5BDF5A9119E693AC7EE93FD72E6934 ] C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll
18:23:33.0872 5684 C:\PROGRA~1\McAfee\VIRUSS~1\vsann.dll - ok
18:23:33.0887 5684 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
18:23:33.0887 5684 C:\Windows\System32\NapiNSP.dll - ok
18:23:33.0887 5684 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
18:23:33.0887 5684 C:\Windows\System32\snmpapi.dll - ok
18:23:33.0903 5684 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
18:23:33.0903 5684 C:\Windows\System32\pnrpnsp.dll - ok
18:23:33.0903 5684 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
18:23:33.0903 5684 C:\Windows\System32\wsnmp32.dll - ok
18:23:33.0919 5684 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
18:23:33.0919 5684 C:\Windows\System32\winrnr.dll - ok
18:23:33.0919 5684 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
18:23:33.0919 5684 C:\Windows\System32\usbmon.dll - ok
18:23:33.0934 5684 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
18:23:33.0934 5684 C:\Windows\System32\WSDMon.dll - ok
18:23:33.0934 5684 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
18:23:33.0934 5684 C:\Windows\System32\fdPnp.dll - ok
18:23:33.0950 5684 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
18:23:33.0950 5684 C:\Windows\SysWOW64\runonce.exe - ok
18:23:33.0950 5684 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
18:23:33.0950 5684 C:\Windows\System32\wsdchngr.dll - ok
18:23:33.0950 5684 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:23:33.0950 5684 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:23:33.0965 5684 [ 5208EBD5AB37F0A6AE026DB4F1AEED2A ] C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll
18:23:33.0965 5684 C:\Windows\System32\spool\prtprocs\x64\hpfpp092.dll - ok
18:23:33.0965 5684 [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
18:23:33.0965 5684 C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
18:23:33.0981 5684 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
18:23:33.0981 5684 C:\Windows\System32\win32spl.dll - ok
18:23:33.0981 5684 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
18:23:33.0981 5684 C:\Windows\System32\inetpp.dll - ok
18:23:33.0997 5684 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
18:23:33.0997 5684 C:\Windows\System32\ndiscapCfg.dll - ok
18:23:33.0997 5684 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
18:23:33.0997 5684 C:\Windows\System32\FXSRESM.dll - ok
18:23:34.0012 5684 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
18:23:34.0012 5684 C:\Windows\System32\mprapi.dll - ok
18:23:34.0012 5684 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
18:23:34.0012 5684 C:\Windows\System32\rascfg.dll - ok
18:23:34.0028 5684 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
18:23:34.0028 5684 C:\Windows\System32\mprmsg.dll - ok
18:23:34.0028 5684 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
18:23:34.0028 5684 C:\Windows\System32\tcpipcfg.dll - ok
18:23:34.0028 5684 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
18:23:34.0028 5684 C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL - ok
18:23:34.0043 5684 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
18:23:34.0043 5684 C:\Windows\SysWOW64\mlang.dll - ok
18:23:34.0043 5684 [ 5AC3CB53406CB9AABB25D46B3385528F ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
18:23:34.0043 5684 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
18:23:34.0059 5684 [ 06C14CE6EE41C0498027D8ED7BC895AE ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapX.dll
18:23:34.0059 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapX.dll - ok
18:23:34.0059 5684 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
18:23:34.0059 5684 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
18:23:34.0075 5684 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
18:23:34.0075 5684 C:\Windows\SysWOW64\dsound.dll - ok
18:23:34.0075 5684 [ EFEC3847B47CC9357D5C33BBAB59B7EB ] C:\Windows\System32\mgmtapi.dll
18:23:34.0075 5684 C:\Windows\System32\mgmtapi.dll - ok
18:23:34.0075 5684 [ E81F5A2F6D52215C0E84F2849503EBA8 ] C:\Windows\System32\tcpmib.dll
18:23:34.0075 5684 C:\Windows\System32\tcpmib.dll - ok
18:23:34.0090 5684 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
18:23:34.0090 5684 C:\Windows\System32\wlaninst.dll - ok
18:23:34.0090 5684 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD ] C:\Windows\System32\spool\drivers\x64\3\unidrv.dll
18:23:34.0090 5684 C:\Windows\System32\spool\drivers\x64\3\unidrv.dll - ok
18:23:34.0106 5684 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
18:23:34.0106 5684 C:\Windows\System32\wwaninst.dll - ok
18:23:34.0106 5684 [ C89C024827F15F047FC8A5910F2A100B ] C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll
18:23:34.0106 5684 C:\Windows\System32\spool\drivers\x64\3\hpfui092.dll - ok
18:23:34.0121 5684 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
18:23:34.0121 5684 C:\Windows\SysWOW64\cmd.exe - ok
18:23:34.0121 5684 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
18:23:34.0121 5684 C:\Windows\System32\actxprxy.dll - ok
18:23:34.0121 5684 [ AD7F44A140909E6F26F681F0BBDE198E ] C:\Program Files\McAfee\VirusScan\mcvsoshl.dll
18:23:34.0121 5684 C:\Program Files\McAfee\VirusScan\mcvsoshl.dll - ok
18:23:34.0137 5684 [ A03BE0BEDD773F73A79E0AFBEAA26DE2 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLAuMixer.dll
18:23:34.0137 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLAuMixer.dll - ok
18:23:34.0137 5684 [ 4977839ED04B02F66A43EA1EBF4B69D5 ] C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll
18:23:34.0137 5684 C:\Program Files\Common Files\McAfee\AMCore\McShieldClient.dll - ok
18:23:34.0153 5684 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
18:23:34.0153 5684 C:\Windows\SysWOW64\winbrand.dll - ok
18:23:34.0153 5684 [ 775A019594F4F82467F8388558E2EA0A ] C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll
18:23:34.0153 5684 C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll - ok
18:23:34.0168 5684 [ 0ED5991EC13A811F27C31A98B70715BB ] C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll
18:23:34.0168 5684 C:\Program Files\Common Files\McAfee\SystemCore\mfeelama.dll - ok
18:23:34.0168 5684 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
18:23:34.0168 5684 C:\Windows\SysWOW64\ieframe.dll - ok
18:23:34.0184 5684 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
18:23:34.0184 5684 C:\Windows\SysWOW64\shdocvw.dll - ok
18:23:34.0184 5684 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Vicky\AppData\Local\Temp\4D94FFC7-0662-4C82-8080-DBABD6C13032.exe
18:23:34.0184 5684 C:\Users\Vicky\AppData\Local\Temp\4D94FFC7-0662-4C82-8080-DBABD6C13032.exe - ok
18:23:34.0184 5684 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
18:23:34.0184 5684 C:\Windows\SysWOW64\ncrypt.dll - ok
18:23:34.0199 5684 [ 53F631B5ECEB4D441F48DEEE37B8688A ] C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll
18:23:34.0199 5684 C:\Windows\System32\spool\drivers\x64\3\hpfst092.dll - ok
18:23:34.0199 5684 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
18:23:34.0199 5684 C:\Windows\SysWOW64\gpapi.dll - ok
18:23:34.0215 5684 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
18:23:34.0215 5684 C:\Windows\SysWOW64\cryptnet.dll - ok
18:23:34.0215 5684 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
18:23:34.0215 5684 C:\Windows\SysWOW64\SensApi.dll - ok
18:23:34.0231 5684 [ 260D941246F52B6F456765D24F7D5A6B ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll
18:23:34.0231 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll - ok
18:23:34.0231 5684 [ A6189F9CBE3D0CCF546CFCF1238533A1 ] C:\Windows\System32\spool\drivers\x64\3\unires.dll
18:23:34.0231 5684 C:\Windows\System32\spool\drivers\x64\3\unires.dll - ok
18:23:34.0246 5684 [ 24CAEDCD73B5B0E22226283B7B2468C7 ] C:\Windows\SysWOW64\mfc42u.dll
18:23:34.0246 5684 C:\Windows\SysWOW64\mfc42u.dll - ok
18:23:34.0246 5684 [ 3C89D68CD17612D03F3FB59765C8967E ] C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll
18:23:34.0246 5684 C:\Windows\System32\spool\drivers\x64\3\hpfvu092.dll - ok
18:23:34.0262 5684 [ 8E408F9F2E7A84C1F60D791C7B54E8F8 ] C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll
18:23:34.0262 5684 C:\Windows\System32\spool\drivers\x64\3\hpw450n3.dll - ok
18:23:34.0262 5684 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:23:34.0262 5684 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:23:34.0277 5684 [ 212616970ECE8076B8AFDC171F1E6E64 ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll
18:23:34.0277 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll - ok
18:23:34.0277 5684 [ BF4A7C7A25F8266A9F22043B1472ADC5 ] C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll
18:23:34.0277 5684 C:\Windows\System32\spool\drivers\x64\3\hpfev092.dll - ok
18:23:34.0293 5684 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
18:23:34.0293 5684 C:\Windows\SysWOW64\EhStorShell.dll - ok
18:23:34.0293 5684 [ 4FE9C6DC32B0A8751BA5D9652647FFD8 ] C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll
18:23:34.0293 5684 C:\Windows\System32\spool\drivers\x64\3\hpf3r092.dll - ok
18:23:34.0293 5684 [ 13DAACA26818567F7A868703AB0E5274 ] C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll
18:23:34.0293 5684 C:\Windows\System32\spool\drivers\x64\3\hpfrs092.dll - ok
18:23:34.0309 5684 [ BB77858B20C9402256C6C46BB7B09601 ] C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll
18:23:34.0309 5684 C:\Windows\System32\spool\drivers\x64\3\hpfie092.dll - ok
18:23:34.0309 5684 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll
18:23:34.0309 5684 C:\PROGRA~2\MICROS~4\Office14\1033\GrooveIntlResource.dll - ok
18:23:34.0324 5684 [ 3022EBE8221C13385EA59C9212F0408B ] C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll
18:23:34.0324 5684 C:\Windows\System32\spool\drivers\x64\3\hpfpr092.dll - ok
18:23:34.0324 5684 [ 6D5D668F1D0B242836F1FFB04C136436 ] C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll
18:23:34.0324 5684 C:\Windows\System32\spool\drivers\x64\3\HPCDMC64.dll - ok
18:23:34.0340 5684 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
18:23:34.0340 5684 C:\Windows\SysWOW64\ntshrui.dll - ok
18:23:34.0340 5684 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
18:23:34.0340 5684 C:\Windows\SysWOW64\slc.dll - ok
18:23:34.0355 5684 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
18:23:34.0355 5684 C:\Windows\SysWOW64\imageres.dll - ok
18:23:34.0355 5684 [ A4D34A0ACCF461C0F2D5D67FDE87F92E ] C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll
18:23:34.0355 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll - ok
18:23:34.0355 5684 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
18:23:34.0371 5684 C:\Windows\SysWOW64\xmllite.dll - ok
18:23:34.0371 5684 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
18:23:34.0371 5684 C:\Windows\SysWOW64\linkinfo.dll - ok
18:23:34.0371 5684 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\SysWOW64\networkexplorer.dll
18:23:34.0371 5684 C:\Windows\SysWOW64\networkexplorer.dll - ok
18:23:34.0387 5684 [ 424877CB9D5517F980FF7BACA2EB379D ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:34.0387 5684 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
18:23:34.0387 5684 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
18:23:34.0387 5684 C:\Windows\SysWOW64\sfc.dll - ok
18:23:34.0387 5684 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
18:23:34.0387 5684 C:\Windows\SysWOW64\sfc_os.dll - ok
18:23:34.0402 5684 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
18:23:34.0402 5684 C:\Windows\SysWOW64\devrtl.dll - ok
18:23:34.0402 5684 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
18:23:34.0402 5684 C:\Windows\System32\ie4uinit.exe - ok
18:23:34.0402 5684 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
18:23:34.0402 5684 C:\Windows\System32\iedkcs32.dll - ok
18:23:34.0418 5684 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
18:23:34.0418 5684 C:\Windows\System32\timedate.cpl - ok
18:23:34.0418 5684 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
18:23:34.0418 5684 C:\Windows\System32\shdocvw.dll - ok
18:23:34.0418 5684 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
18:23:34.0418 5684 C:\Windows\System32\msiltcfg.dll - ok
18:23:34.0433 5684 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
18:23:34.0433 5684 C:\Windows\System32\msi.dll - ok
18:23:34.0433 5684 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
18:23:34.0433 5684 C:\Windows\System32\linkinfo.dll - ok
18:23:34.0449 5684 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
18:23:34.0449 5684 C:\Windows\System32\ieframe.dll - ok
18:23:34.0449 5684 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
18:23:34.0449 5684 C:\Windows\System32\msftedit.dll - ok
18:23:34.0449 5684 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
18:23:34.0449 5684 C:\Windows\System32\msls31.dll - ok
18:23:34.0465 5684 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
18:23:34.0465 5684 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
18:23:34.0465 5684 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
18:23:34.0465 5684 C:\Windows\System32\DeviceCenter.dll - ok
18:23:34.0465 5684 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
18:23:34.0465 5684 C:\Windows\System32\gameux.dll - ok
18:23:34.0480 5684 [ 26D207379AF9B717538D1F7E2D9A58CB ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:23:34.0480 5684 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
18:23:34.0480 5684 [ 4C590463E5B60310DBE660686C6CCF7B ] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
18:23:34.0480 5684 C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe - ok
18:23:34.0480 5684 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
18:23:34.0480 5684 C:\Windows\System32\d2d1.dll - ok
18:23:34.0496 5684 [ DFCA0E9868F98B565CE512D1F74D77D8 ] C:\Windows\System32\hkcmd.exe
18:23:34.0496 5684 C:\Windows\System32\hkcmd.exe - ok
18:23:34.0496 5684 [ 77DE46E7DC1292EF3389691C51F1AD07 ] C:\Windows\System32\igfxpers.exe
18:23:34.0496 5684 C:\Windows\System32\igfxpers.exe - ok
18:23:34.0511 5684 [ FC4C561550E5407FFA29D4F6C69B272F ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
18:23:34.0511 5684 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
18:23:34.0511 5684 [ E0EAD28A447A286264B0F2BE75362729 ] C:\Program Files\IDT\WDM\sttray64.exe
18:23:34.0511 5684 C:\Program Files\IDT\WDM\sttray64.exe - ok
18:23:34.0511 5684 [ 7E8CF01F51F5842CE504CBC4B7C60C0F ] C:\Windows\System32\hccutils.dll
18:23:34.0511 5684 C:\Windows\System32\hccutils.dll - ok
18:23:34.0527 5684 [ 62BF6B6F700B911BDD2EB3B38730C608 ] C:\Windows\System32\SynCOM.dll
18:23:34.0527 5684 C:\Windows\System32\SynCOM.dll - ok
18:23:34.0527 5684 [ E1D6AF9F11B319D0A216B5019D623209 ] C:\Windows\System32\igfxsrvc.exe
18:23:34.0527 5684 C:\Windows\System32\igfxsrvc.exe - ok
18:23:34.0527 5684 [ 7426279D625196393EABBEFE1C60A0C2 ] C:\Windows\System32\DWrite.dll
18:23:34.0527 5684 C:\Windows\System32\DWrite.dll - ok
18:23:34.0543 5684 [ F5E5F7B55544BBDB1EBC4EBACD566874 ] C:\Windows\System32\SynTPAPI.dll
18:23:34.0543 5684 C:\Windows\System32\SynTPAPI.dll - ok
18:23:34.0543 5684 [ 13667333C4E3D16FD1B038902173A9A7 ] C:\Windows\System32\igfxsrvc.dll
18:23:34.0543 5684 C:\Windows\System32\igfxsrvc.dll - ok
18:23:34.0558 5684 [ 938DA7D57AFF4D3EF8500E7FF48AA0E2 ] C:\Windows\System32\igfxdev.dll
18:23:34.0558 5684 C:\Windows\System32\igfxdev.dll - ok
18:23:34.0558 5684 [ 1BE8B67DB72BB7F650D9092E9BA6196E ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
18:23:34.0558 5684 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
18:23:34.0558 5684 [ D8F970A92086126292A285937E0DF970 ] C:\Program Files\IDT\WDM\stlang64.dll
18:23:34.0558 5684 C:\Program Files\IDT\WDM\stlang64.dll - ok
18:23:34.0574 5684 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
18:23:34.0574 5684 C:\Windows\System32\consent.exe - ok
18:23:34.0574 5684 [ 65BD1CD6A765A0B86879D4E6E0D71FAA ] C:\Windows\System32\GfxUI.exe
18:23:34.0574 5684 C:\Windows\System32\GfxUI.exe - ok
18:23:34.0574 5684 [ 9157189DC07511ECBBE1D2615D8A2FED ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
18:23:34.0574 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe - ok
18:23:34.0589 5684 [ 3680FB34AD9DD294B18192CF36CC3B5A ] C:\Windows\System32\igfxrenu.lrc
18:23:34.0589 5684 C:\Windows\System32\igfxrenu.lrc - ok
18:23:34.0589 5684 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
18:23:34.0589 5684 C:\Windows\System32\msimg32.dll - ok
18:23:34.0605 5684 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
18:23:34.0605 5684 C:\Windows\System32\thumbcache.dll - ok
18:23:34.0605 5684 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
18:23:34.0605 5684 C:\Windows\System32\networkexplorer.dll - ok
18:23:34.0605 5684 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
18:23:34.0605 5684 C:\Windows\SysWOW64\mscoree.dll - ok
18:23:34.0621 5684 [ 24B1666FD14CC71C7B0679AC61625B90 ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
18:23:34.0621 5684 C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe - ok
18:23:34.0621 5684 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
18:23:34.0621 5684 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
18:23:34.0621 5684 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
18:23:34.0621 5684 C:\Windows\System32\wdmaud.drv - ok
18:23:34.0636 5684 [ 074DDB033D38D2F7D97BC11DB713F6EC ] C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe
18:23:34.0636 5684 C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe - ok
18:23:34.0636 5684 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
18:23:34.0636 5684 C:\Windows\System32\msacm32.drv - ok
18:23:34.0652 5684 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
18:23:34.0652 5684 C:\Windows\System32\msacm32.dll - ok
18:23:34.0652 5684 [ 8E0831382D3313E75614C9D85237B99F ] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
18:23:34.0652 5684 C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE - ok
18:23:34.0652 5684 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
18:23:34.0652 5684 C:\Windows\System32\midimap.dll - ok
18:23:34.0667 5684 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
18:23:34.0667 5684 C:\Windows\System32\FntCache.dll - ok
18:23:34.0667 5684 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
18:23:34.0667 5684 C:\Windows\System32\WMALFXGFXDSP.dll - ok
18:23:34.0667 5684 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
18:23:34.0667 5684 C:\Program Files\Windows Sidebar\sidebar.exe - ok
18:23:34.0683 5684 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
18:23:34.0683 5684 C:\Windows\System32\stobject.dll - ok
18:23:34.0683 5684 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
18:23:34.0683 5684 C:\Windows\System32\mscoree.dll - ok
18:23:34.0699 5684 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
18:23:34.0699 5684 C:\Windows\System32\batmeter.dll - ok
18:23:34.0699 5684 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:23:34.0699 5684 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:23:34.0699 5684 [ C469893743E18BA547DB3C7ED98B32F5 ] C:\Windows\System32\AESTAR64.dll
18:23:34.0699 5684 C:\Windows\System32\AESTAR64.dll - ok
18:23:34.0714 5684 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
18:23:34.0714 5684 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
18:23:34.0714 5684 [ EA897FD834D809DAE63FA656DC48D6BE ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
18:23:34.0714 5684 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
18:23:34.0714 5684 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
18:23:34.0714 5684 C:\Windows\System32\prnfldr.dll - ok
18:23:34.0730 5684 [ C546E2A9CB4FB0E32FED5C92DF1349A6 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
18:23:34.0730 5684 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
18:23:34.0730 5684 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
18:23:34.0730 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
18:23:34.0745 5684 [ 8F89E6CB82E6DB45BC993D423CD0FDBD ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
18:23:34.0745 5684 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe - ok
18:23:34.0745 5684 [ FDE33ABD8B24FBB84530D226595A8988 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
18:23:34.0745 5684 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
18:23:34.0745 5684 [ 707633E21DC06D20DAB86423C9EB9F27 ] C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
18:23:34.0745 5684 C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe - ok
18:23:34.0761 5684 [ CCFCEC7890A787773186EE62BE312C0A ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
18:23:34.0761 5684 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
18:23:34.0761 5684 [ DA4ED31DD43ABB0AF99888E236FFDB91 ] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
18:23:34.0761 5684 C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe - ok
18:23:34.0777 5684 [ 043FE3C9088BEADC6A9FFC033C84F20F ] C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
18:23:34.0777 5684 C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE - ok
18:23:34.0777 5684 [ 98A078F838A70F84E1BD490D7C7675F4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18:23:34.0777 5684 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
18:23:34.0777 5684 [ FC19F3D46E21EF65EEA990B8AF2076F6 ] C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL
18:23:34.0777 5684 C:\Program Files (x86)\Microsoft Office\Office14\1033\ONINTL.DLL - ok
18:23:34.0792 5684 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
18:23:34.0792 5684 C:\Windows\System32\DXP.dll - ok
18:23:34.0792 5684 [ B26D229AA7B53DCF9BA636BF1DBBA8AA ] C:\Program Files\McAfee.com\Agent\mcagent.exe
18:23:34.0792 5684 C:\Program Files\McAfee.com\Agent\mcagent.exe - ok
18:23:34.0792 5684 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
18:23:34.0792 5684 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
18:23:34.0808 5684 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
18:23:34.0808 5684 C:\Windows\System32\AltTab.dll - ok
18:23:34.0808 5684 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
18:23:34.0808 5684 C:\Windows\SysWOW64\wsock32.dll - ok
18:23:34.0823 5684 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
18:23:34.0823 5684 C:\Windows\System32\pnidui.dll - ok
18:23:34.0823 5684 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
18:23:34.0823 5684 C:\Windows\SysWOW64\wer.dll - ok
18:23:34.0823 5684 [ C637FC4638A96165256B28D38DE7B953 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
18:23:34.0823 5684 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
18:23:34.0839 5684 [ ABCFAD4C6F973A568D453CE601091B83 ] C:\ProgramData\OfficeGuardian\reminder\SkinCrafterDll.dll
18:23:34.0839 5684 C:\ProgramData\OfficeGuardian\reminder\SkinCrafterDll.dll - ok
18:23:34.0839 5684 [ 45406FFD87F6BA4345B018E303A64FF1 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
18:23:34.0839 5684 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
18:23:34.0855 5684 [ 4664ABADE37F75551CAB943EA6077946 ] C:\Program Files (x86)\Microsoft Office\Office14\1033\ospintl.dll
18:23:34.0855 5684 C:\Program Files (x86)\Microsoft Office\Office14\1033\ospintl.dll - ok
18:23:34.0855 5684 [ 4C0DA2B69F8DE16E97FCEC0E19312923 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL
18:23:34.0855 5684 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\RICHED20.DLL - ok
18:23:34.0855 5684 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:23:34.0855 5684 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
18:23:34.0870 5684 [ CFF3C4ABDCC5356B0674743BDF0FB674 ] C:\Windows\System32\mshtml.dll
18:23:34.0870 5684 C:\Windows\System32\mshtml.dll - ok
18:23:34.0870 5684 [ 5B87A7DC54059ECD919DB94441318B0B ] C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
18:23:34.0870 5684 C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe - ok
18:23:34.0870 5684 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
18:23:34.0870 5684 C:\Windows\SysWOW64\WinSCard.dll - ok
18:23:34.0886 5684 [ D25C90F166CB25DCB85755F3DAA984B3 ] C:\Program Files (x86)\Windows Live\Shared\wldlog.dll
18:23:34.0886 5684 C:\Program Files (x86)\Windows Live\Shared\wldlog.dll - ok
18:23:34.0886 5684 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
18:23:34.0886 5684 C:\Windows\System32\QUTIL.DLL - ok
18:23:34.0901 5684 [ 8EB5E95365AC5796E0C8175267D50744 ] C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll
18:23:34.0901 5684 C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll - ok
18:23:34.0901 5684 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
18:23:34.0901 5684 C:\Windows\System32\UIAnimation.dll - ok
18:23:34.0901 5684 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
18:23:34.0901 5684 C:\Windows\System32\Syncreg.dll - ok
18:23:34.0917 5684 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
18:23:34.0917 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
18:23:34.0917 5684 [ 64ABE1250EC1A1CFD1442E7C8800216E ] C:\Windows\System32\d3d10warp.dll
18:23:34.0917 5684 C:\Windows\System32\d3d10warp.dll - ok
18:23:34.0917 5684 [ A1CFDEF143B1B4047E0FD3510F85DE97 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSPTLS.DLL
18:23:34.0917 5684 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSPTLS.DLL - ok
18:23:34.0933 5684 [ ACEB5E6F416223806421D8864FC0EEB4 ] C:\Program Files (x86)\Windows Live\Shared\uxcore.dll
18:23:34.0933 5684 C:\Program Files (x86)\Windows Live\Shared\uxcore.dll - ok
18:23:34.0933 5684 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\82640001.sys
18:23:34.0933 5684 C:\Windows\System32\drivers\82640001.sys - ok
18:23:34.0933 5684 [ EC942385712BF39E1A8D0BB3E57EE754 ] C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll
18:23:34.0933 5684 C:\Program Files\Common Files\McAfee\Platform\mcuifw.dll - ok
18:23:34.0948 5684 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
18:23:34.0948 5684 C:\Windows\System32\FXSST.dll - ok
18:23:34.0948 5684 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
18:23:34.0948 5684 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
18:23:34.0964 5684 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
18:23:34.0964 5684 C:\Windows\SysWOW64\d2d1.dll - ok
18:23:34.0964 5684 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
18:23:34.0964 5684 C:\Windows\System32\FXSAPI.dll - ok
18:23:34.0964 5684 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
18:23:34.0964 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
18:23:34.0979 5684 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
18:23:34.0979 5684 C:\Windows\System32\ActionCenter.dll - ok
18:23:34.0979 5684 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
18:23:34.0979 5684 C:\Windows\ehome\ehSSO.dll - ok
18:23:34.0979 5684 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
18:23:34.0979 5684 C:\Windows\System32\bthprops.cpl - ok
18:23:34.0995 5684 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
18:23:34.0995 5684 C:\Windows\System32\msimtf.dll - ok
18:23:34.0995 5684 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
18:23:34.0995 5684 C:\Windows\System32\FXSSVC.exe - ok
18:23:34.0995 5684 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
18:23:34.0995 5684 C:\Windows\System32\netshell.dll - ok
18:23:35.0011 5684 [ 9568BB33BBAD356EDD6CDE988E570523 ] C:\Windows\System32\jscript9.dll
18:23:35.0011 5684 C:\Windows\System32\jscript9.dll - ok
18:23:35.0011 5684 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
18:23:35.0011 5684 C:\Windows\SysWOW64\d3d10_1.dll - ok
18:23:35.0026 5684 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
18:23:35.0026 5684 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
18:23:35.0026 5684 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
18:23:35.0026 5684 C:\Windows\System32\WPDShServiceObj.dll - ok
18:23:35.0026 5684 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
18:23:35.0026 5684 C:\Windows\SysWOW64\hid.dll - ok
18:23:35.0042 5684 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
18:23:35.0042 5684 C:\Windows\SysWOW64\d3d10_1core.dll - ok
18:23:35.0042 5684 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
18:23:35.0042 5684 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:23:35.0042 5684 [ 906BDD9EDB43F74868293A38377C57DC ] C:\Windows\System32\igdumd64.dll
18:23:35.0042 5684 C:\Windows\System32\igdumd64.dll - ok
18:23:35.0057 5684 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
18:23:35.0057 5684 C:\Windows\System32\srchadmin.dll - ok
18:23:35.0057 5684 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
18:23:35.0057 5684 C:\Windows\System32\SearchIndexer.exe - ok
18:23:35.0073 5684 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
18:23:35.0073 5684 C:\Windows\SysWOW64\riched20.dll - ok
18:23:35.0073 5684 [ E0E967442FA72D286DD29311C3358C3C ] C:\ProgramData\OfficeGuardian\reminder\devutil.dll
18:23:35.0073 5684 C:\ProgramData\OfficeGuardian\reminder\devutil.dll - ok
18:23:35.0073 5684 [ FE875F44CEB44161F1D7F781393C53AB ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll
18:23:35.0073 5684 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll - ok
18:23:35.0089 5684 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
18:23:35.0089 5684 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
18:23:35.0089 5684 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
18:23:35.0089 5684 C:\Windows\SysWOW64\dxgi.dll - ok
18:23:35.0089 5684 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
18:23:35.0089 5684 C:\Windows\System32\tquery.dll - ok
18:23:35.0104 5684 [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
18:23:35.0104 5684 C:\Windows\SysWOW64\wpdshext.dll - ok
18:23:35.0104 5684 [ 5AA4DF6CD3C96086955064BEC1CD0C9B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
18:23:35.0104 5684 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
18:23:35.0120 5684 [ 1AA571774936717EE776DBED51E9EDF4 ] C:\Windows\SysWOW64\d3dx10_41.dll
18:23:35.0120 5684 C:\Windows\SysWOW64\d3dx10_41.dll - ok
18:23:35.0120 5684 [ F95D81149B20B49FD4897F6AAD22451D ] C:\ProgramData\OfficeGuardian\reminder\iCommon.dll
18:23:35.0120 5684 C:\ProgramData\OfficeGuardian\reminder\iCommon.dll - ok
18:23:35.0120 5684 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
18:23:35.0120 5684 C:\Windows\SysWOW64\DWrite.dll - ok
18:23:35.0135 5684 [ 847906C941A4C83FEA8974D0C18B464F ] C:\ProgramData\OfficeGuardian\reminder\NUDiskDll20.dll
18:23:35.0135 5684 C:\ProgramData\OfficeGuardian\reminder\NUDiskDll20.dll - ok
18:23:35.0135 5684 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
18:23:35.0135 5684 C:\Windows\SysWOW64\oledlg.dll - ok
18:23:35.0135 5684 [ 9DBD149CAF43D2E7C874C5F40600825C ] C:\Program Files (x86)\Windows Live\Shared\wldcore.dll
18:23:35.0135 5684 C:\Program Files (x86)\Windows Live\Shared\wldcore.dll - ok
18:23:35.0151 5684 [ 51AE7FB541762F4E66303146E03AD15C ] C:\Program Files (x86)\Windows Live\Shared\uxctl.dll
18:23:35.0151 5684 C:\Program Files (x86)\Windows Live\Shared\uxctl.dll - ok
18:23:35.0151 5684 [ D0261792CECC182F2879C64A290A2FDF ] C:\Program Files (x86)\WinTV\WinTV7\DataModel.dll
18:23:35.0151 5684 C:\Program Files (x86)\WinTV\WinTV7\DataModel.dll - ok
18:23:35.0167 5684 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
18:23:35.0167 5684 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
18:23:35.0167 5684 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
18:23:35.0167 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
18:23:35.0167 5684 [ BA2655001D1F017EDFD9132D5C07E941 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe
18:23:35.0167 5684 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\hiddata.exe - ok
18:23:35.0182 5684 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
18:23:35.0182 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
18:23:35.0182 5684 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
18:23:35.0182 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
18:23:35.0182 5684 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
18:23:35.0182 5684 C:\Windows\System32\mssrch.dll - ok
18:23:35.0198 5684 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
18:23:35.0198 5684 C:\Windows\System32\riched20.dll - ok
18:23:35.0198 5684 [ 18C49CF5352BF8DE47BD2B1E5A912886 ] C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll
18:23:35.0198 5684 C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll - ok
18:23:35.0198 5684 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
18:23:35.0198 5684 C:\Windows\System32\esent.dll - ok
18:23:35.0213 5684 [ D779D935A3109B2D20FD84EA097E3E4A ] C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll
18:23:35.0213 5684 C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll - ok
18:23:35.0213 5684 [ A3287F8EB6182FB060C818524C7D6A63 ] C:\Windows\System32\dxtrans.dll
18:23:35.0213 5684 C:\Windows\System32\dxtrans.dll - ok
18:23:35.0229 5684 [ EB24684437EC448D680A7CACBDE94C94 ] C:\Program Files (x86)\Windows Live\Shared\wlidux.dll
18:23:35.0229 5684 C:\Program Files (x86)\Windows Live\Shared\wlidux.dll - ok
18:23:35.0229 5684 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
18:23:35.0229 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
18:23:35.0229 5684 [ 4938A4350327E1A5DEB0CD134AC1AAA3 ] C:\Windows\System32\ddrawex.dll
18:23:35.0229 5684 C:\Windows\System32\ddrawex.dll - ok
18:23:35.0245 5684 [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
18:23:35.0245 5684 C:\Windows\System32\ddraw.dll - ok
18:23:35.0245 5684 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
18:23:35.0245 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
18:23:35.0260 5684 [ ED27D1D75BF5E683AD3EDD9E3123520A ] C:\Windows\SysWOW64\inetcomm.dll
18:23:35.0260 5684 C:\Windows\SysWOW64\inetcomm.dll - ok
18:23:35.0260 5684 [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
18:23:35.0260 5684 C:\Windows\SysWOW64\msoert2.dll - ok
18:23:35.0260 5684 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
18:23:35.0260 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
18:23:35.0276 5684 [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
18:23:35.0276 5684 C:\Windows\SysWOW64\INETRES.dll - ok
18:23:35.0276 5684 [ AFF3C845926422E135A08AE474DE27EA ] C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm
18:23:35.0276 5684 C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm - ok
18:23:35.0276 5684 [ EB7368D501B9D22E777F6011F72F60FE ] C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui
18:23:35.0276 5684 C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui - ok
18:23:35.0291 5684 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
18:23:35.0291 5684 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
18:23:35.0291 5684 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
18:23:35.0291 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
18:23:35.0307 5684 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
18:23:35.0307 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
18:23:35.0307 5684 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
18:23:35.0307 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
18:23:35.0307 5684 [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
18:23:35.0307 5684 C:\Windows\System32\dciman32.dll - ok
18:23:35.0323 5684 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
18:23:35.0323 5684 C:\Windows\System32\netman.dll - ok
18:23:35.0323 5684 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:23:35.0323 5684 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:23:35.0338 5684 [ 31E7CF1736A3CB25098CEE6E07FE270C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
18:23:35.0338 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll - ok
18:23:35.0338 5684 [ 107243179484027540978F075F6941D4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll
18:23:35.0338 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll - ok
18:23:35.0338 5684 [ F71829B5FBB262B0641F47A7773EA735 ] C:\Program Files\McAfee\MSK\MskSet64.dll
18:23:35.0338 5684 C:\Program Files\McAfee\MSK\MskSet64.dll - ok
18:23:35.0354 5684 [ D6A99F26E31C9F15D8D8CC42FFE6D16B ] C:\Windows\System32\dxtmsft.dll
18:23:35.0354 5684 C:\Windows\System32\dxtmsft.dll - ok
18:23:35.0354 5684 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
18:23:35.0354 5684 C:\Windows\System32\msidle.dll - ok
18:23:35.0354 5684 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
18:23:35.0354 5684 C:\Windows\SysWOW64\duser.dll - ok
18:23:35.0369 5684 [ 6E6602DE23AB3776007702FC9540E8E9 ] C:\Windows\System32\vbscript.dll
18:23:35.0369 5684 C:\Windows\System32\vbscript.dll - ok
18:23:35.0369 5684 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
18:23:35.0369 5684 C:\Windows\System32\rasdlg.dll - ok
18:23:35.0369 5684 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
18:23:35.0369 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
18:23:35.0385 5684 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
18:23:35.0385 5684 C:\Windows\System32\mssprxy.dll - ok
18:23:35.0385 5684 [ 640E51DB253265C3EAC075866B3D2B33 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
18:23:35.0385 5684 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe - ok
18:23:35.0401 5684 [ 7BC3C4F729750415DC72F348A7837064 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Csi.dll
18:23:35.0401 5684 C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Csi.dll - ok
18:23:35.0401 5684 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
18:23:35.0401 5684 C:\Windows\SysWOW64\dui70.dll - ok
18:23:35.0401 5684 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
18:23:35.0401 5684 C:\Windows\System32\dot3api.dll - ok
18:23:35.0416 5684 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
18:23:35.0416 5684 C:\Windows\System32\wlanhlp.dll - ok
18:23:35.0416 5684 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
18:23:35.0416 5684 C:\Windows\System32\wlanapi.dll - ok
18:23:35.0416 5684 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
18:23:35.0416 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
18:23:35.0432 5684 [ BD66ECA9479C688412DDDA9F2CCD2C69 ] C:\Windows\System32\d3d10.dll
18:23:35.0432 5684 C:\Windows\System32\d3d10.dll - ok
18:23:35.0432 5684 [ B628DA8B548E6D11A35B86799714CB22 ] C:\Windows\System32\d3d10core.dll
18:23:35.0432 5684 C:\Windows\System32\d3d10core.dll - ok
18:23:35.0447 5684 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
18:23:35.0447 5684 C:\Windows\System32\en-US\tquery.dll.mui - ok
18:23:35.0447 5684 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll
18:23:35.0447 5684 C:\Program Files (x86)\Windows Live\Shared\sqmapi.dll - ok
18:23:35.0447 5684 [ BFD17358837F27235BFC1640905C683C ] C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll
18:23:35.0447 5684 C:\Program Files (x86)\Windows Live\Contacts\PresenceIM.dll - ok
18:23:35.0463 5684 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
18:23:35.0463 5684 C:\Windows\SysWOW64\netprofm.dll - ok
18:23:35.0463 5684 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
18:23:35.0463 5684 C:\Windows\System32\tapisrv.dll - ok
18:23:35.0463 5684 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
18:23:35.0463 5684 C:\Windows\SysWOW64\nlaapi.dll - ok
18:23:35.0479 5684 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
18:23:35.0479 5684 C:\Windows\System32\rasmans.dll - ok
18:23:35.0479 5684 [ B8956806B33366E28C08C261E746B0B8 ] C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll
18:23:35.0479 5684 C:\Program Files (x86)\Windows Live\Contacts\livetransport.dll - ok
18:23:35.0479 5684 [ E301F09BEB39DAF997D6609C5913599F ] C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll
18:23:35.0479 5684 C:\Program Files (x86)\Windows Live\Contacts\liveNatTrav.dll - ok
18:23:35.0494 5684 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
18:23:35.0494 5684 C:\Windows\System32\rastapi.dll - ok
18:23:35.0494 5684 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
18:23:35.0494 5684 C:\Windows\SysWOW64\npmproxy.dll - ok
18:23:35.0510 5684 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
18:23:35.0510 5684 C:\Windows\System32\tapi32.dll - ok
18:23:35.0510 5684 [ 531E3414858A817152EDEDE9C1BF9DE3 ] C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll
18:23:35.0510 5684 C:\Program Files (x86)\Windows Live\Contacts\ObjectStore.dll - ok
18:23:35.0510 5684 [ 6278AD5B8C56F6795076444DF086765A ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
18:23:35.0510 5684 C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
18:23:35.0525 5684 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
18:23:35.0525 5684 C:\Windows\System32\shfolder.dll - ok
18:23:35.0525 5684 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\SysWOW64\es.dll
18:23:35.0525 5684 C:\Windows\SysWOW64\es.dll - ok
18:23:35.0525 5684 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
18:23:35.0525 5684 C:\Windows\System32\unimdm.tsp - ok
18:23:35.0541 5684 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
18:23:35.0541 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
18:23:35.0541 5684 [ 39D8EAA29CC2CC144E2B1214FA774F6A ] C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll
18:23:35.0541 5684 C:\Program Files (x86)\Windows Live\Messenger\vvpltfrm.dll - ok
18:23:35.0557 5684 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
18:23:35.0557 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
18:23:35.0557 5684 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
18:23:35.0557 5684 C:\Windows\System32\uniplat.dll - ok
18:23:35.0557 5684 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
18:23:35.0557 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
18:23:35.0572 5684 [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
18:23:35.0572 5684 C:\Windows\System32\unimdmat.dll - ok
18:23:35.0572 5684 [ 282B951CEB670834C13B8A187B69E817 ] C:\Windows\SysWOW64\igd10umd32.dll
18:23:35.0572 5684 C:\Windows\SysWOW64\igd10umd32.dll - ok
18:23:35.0588 5684 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
18:23:35.0588 5684 C:\Windows\System32\wbem\NCProv.dll - ok
18:23:35.0588 5684 [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
18:23:35.0588 5684 C:\Windows\System32\modemui.dll - ok
18:23:35.0588 5684 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
18:23:35.0588 5684 C:\Windows\System32\wbem\wmiprov.dll - ok
18:23:35.0603 5684 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
18:23:35.0603 5684 C:\Windows\System32\kmddsp.tsp - ok
18:23:35.0603 5684 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
18:23:35.0603 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
18:23:35.0603 5684 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
18:23:35.0603 5684 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
18:23:35.0619 5684 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
18:23:35.0619 5684 C:\Windows\System32\ndptsp.tsp - ok
18:23:35.0619 5684 [ C2FB797884D9CC30AC0B5FB28146FE7A ] C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll
18:23:35.0619 5684 C:\Program Files (x86)\Windows Live\Messenger\uccapi.dll - ok
18:23:35.0635 5684 [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
18:23:35.0635 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
18:23:35.0635 5684 [ 5DB64F0ADBAD651B1CD099A79ECAAB2B ] C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll
18:23:35.0635 5684 C:\Program Files (x86)\Windows Live\Messenger\rtmpltfm.dll - ok
18:23:35.0635 5684 [ 732E668096B1A37B7BFD4B9021E69A8E ] C:\Windows\System32\oleres.dll
18:23:35.0635 5684 C:\Windows\System32\oleres.dll - ok
18:23:35.0650 5684 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
18:23:35.0650 5684 C:\Windows\System32\hidphone.tsp - ok
18:23:35.0650 5684 [ DAB4A6FF1F80A573682400CCCC624B95 ] C:\Program Files (x86)\WinTV\WinTV7\MultiMediaServices.dll
18:23:35.0650 5684 C:\Program Files (x86)\WinTV\WinTV7\MultiMediaServices.dll - ok
18:23:35.0650 5684 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
18:23:35.0650 5684 C:\Windows\System32\rasppp.dll - ok
18:23:35.0666 5684 [ 920C7E5544B2C88B5C99586B6B0707E7 ] C:\Program Files (x86)\WinTV\WinTV7\NativeMMS.dll
18:23:35.0666 5684 C:\Program Files (x86)\WinTV\WinTV7\NativeMMS.dll - ok
18:23:35.0666 5684 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
18:23:35.0666 5684 C:\Windows\System32\vpnike.dll - ok
18:23:35.0681 5684 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
18:23:35.0681 5684 C:\Windows\SysWOW64\olepro32.dll - ok
18:23:35.0681 5684 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
18:23:35.0681 5684 C:\Windows\System32\raschap.dll - ok
18:23:35.0681 5684 [ D34A527493F39AF4491B3E909DC697CA ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
18:23:35.0681 5684 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
18:23:35.0697 5684 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
18:23:35.0697 5684 C:\Windows\System32\WWanAPI.dll - ok
18:23:35.0697 5684 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
18:23:35.0697 5684 C:\Windows\System32\wwapi.dll - ok
18:23:35.0697 5684 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
18:23:35.0697 5684 C:\Windows\SysWOW64\msjtes40.dll - ok
18:23:35.0713 5684 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
18:23:35.0713 5684 C:\Windows\SysWOW64\wlanapi.dll - ok
18:23:35.0713 5684 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
18:23:35.0713 5684 C:\Windows\SysWOW64\vbajet32.dll - ok
18:23:35.0713 5684 [ 0272B199B434CB15FCF821884E5153D7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
18:23:35.0713 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll - ok
18:23:35.0728 5684 [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
18:23:35.0728 5684 C:\Windows\SysWOW64\expsrv.dll - ok
18:23:35.0728 5684 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
18:23:35.0728 5684 C:\Windows\SysWOW64\wlanutil.dll - ok
18:23:35.0728 5684 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
18:23:35.0728 5684 C:\Windows\System32\QAGENT.DLL - ok
18:23:35.0744 5684 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
18:23:35.0744 5684 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
18:23:35.0744 5684 [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\SysWOW64\ksproxy.ax
18:23:35.0744 5684 C:\Windows\SysWOW64\ksproxy.ax - ok
18:23:35.0759 5684 [ 0F6652951129F283C72E1A5A951FF948 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL
18:23:35.0759 5684 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDRES.DLL - ok
18:23:35.0759 5684 [ BC787418159AB8965A7BD5121EDE265C ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll
18:23:35.0759 5684 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\FnKyACTN.dll - ok
18:23:35.0759 5684 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
18:23:35.0759 5684 C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
18:23:35.0775 5684 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
18:23:35.0775 5684 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
18:23:35.0775 5684 [ 4DDACA8A66B95ABA02812FF3C13DE198 ] C:\Windows\SysWOW64\vidcap.ax
18:23:35.0775 5684 C:\Windows\SysWOW64\vidcap.ax - ok
18:23:35.0791 5684 [ F9A79C5B27037821112C50A9C8FB367A ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:23:35.0791 5684 C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe - ok
18:23:35.0791 5684 [ 630A31F277349109299E590856A4B004 ] C:\Windows\SysWOW64\Kswdmcap.ax
18:23:35.0791 5684 C:\Windows\SysWOW64\Kswdmcap.ax - ok
18:23:35.0791 5684 [ B6884AE857E0C2106FA718A6C688CD7C ] C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui
18:23:35.0791 5684 C:\Program Files (x86)\Windows Live\Shared\en\wliduxloc.dll.mui - ok
18:23:35.0806 5684 [ 7DE7B4E228AF7C38A5C84D23A659AF57 ] C:\Program Files (x86)\Windows Live\Installer\wlshim.dll
18:23:35.0806 5684 C:\Program Files (x86)\Windows Live\Installer\wlshim.dll - ok
18:23:35.0806 5684 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
18:23:35.0806 5684 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
18:23:35.0806 5684 [ 31B09C0D0E9BEC4F0C2A957272737CCF ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax
18:23:35.0806 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCWebCameraSource.ax - ok
18:23:35.0822 5684 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\SysWOW64\ncobjapi.dll
18:23:35.0822 5684 C:\Windows\SysWOW64\ncobjapi.dll - ok
18:23:35.0822 5684 [ B6F8B660A02CF540DFD56D6496B81819 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
18:23:35.0822 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll - ok
18:23:35.0837 5684 [ 6ADD008B7B9B8FB9EB7C99564F98540A ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll
18:23:35.0837 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MFC71u.dll - ok
18:23:35.0837 5684 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
18:23:35.0837 5684 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
18:23:35.0837 5684 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
18:23:35.0837 5684 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
18:23:35.0853 5684 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\SysWOW64\WinSATAPI.dll
18:23:35.0853 5684 C:\Windows\SysWOW64\WinSATAPI.dll - ok
18:23:35.0853 5684 [ AB3CB333E08766BA05F468C540188C0E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
18:23:35.0853 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll - ok
18:23:35.0869 5684 [ 07361B097FD0F68C8D7B6EAE06D0B745 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll
18:23:35.0869 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcr71.dll - ok
18:23:35.0869 5684 [ 20A771958DB2B8CA4372EB95F59FDF3F ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
18:23:35.0869 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll - ok
18:23:35.0869 5684 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
18:23:35.0869 5684 C:\Windows\SysWOW64\msxml6.dll - ok
18:23:35.0884 5684 [ B8CE4B5AB8A02E6F1334CCCF4014C5F2 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll
18:23:35.0884 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\msvcp71.dll - ok
18:23:35.0884 5684 [ C1EF4900EAC105E0139764C3E4469061 ] C:\Program Files (x86)\Windows Live\Installer\wlsres.dll
18:23:35.0884 5684 C:\Program Files (x86)\Windows Live\Installer\wlsres.dll - ok
18:23:35.0884 5684 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
18:23:35.0884 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
18:23:35.0900 5684 [ 8615971971B7CF1D5E24094289C97012 ] C:\Windows\System32\gfxSrvc.dll
18:23:35.0900 5684 C:\Windows\System32\gfxSrvc.dll - ok
18:23:35.0900 5684 [ FBBF3D1932ADBC7AB06DBA730F572840 ] C:\Windows\System32\IGFXDEVLib.dll
18:23:35.0900 5684 C:\Windows\System32\IGFXDEVLib.dll - ok
18:23:35.0915 5684 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
18:23:35.0915 5684 C:\Windows\SysWOW64\actxprxy.dll - ok
18:23:35.0915 5684 [ D1FF91E5D243A1F9632A8D2F9B264271 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll
18:23:35.0915 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll - ok
18:23:35.0915 5684 [ 7F97E56CC619E6B457D8B55E31EF4033 ] C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax
18:23:35.0915 5684 C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\YCRgl.ax - ok
18:23:35.0931 5684 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
18:23:35.0931 5684 C:\Windows\System32\d3d9.dll - ok
18:23:35.0931 5684 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
18:23:35.0931 5684 C:\Windows\SysWOW64\quartz.dll - ok
18:23:35.0931 5684 [ 51D2F66C0C55419CA4A797C8D1B0AD8D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
18:23:35.0931 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll - ok
18:23:35.0947 5684 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
18:23:35.0947 5684 C:\Windows\System32\d3d8thk.dll - ok
18:23:35.0947 5684 [ CC5BF60E9D3F181C0B62AC91AD8634B8 ] C:\Windows\SysWOW64\qcap.dll
18:23:35.0947 5684 C:\Windows\SysWOW64\qcap.dll - ok
18:23:35.0962 5684 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
18:23:35.0962 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
18:23:35.0962 5684 [ 4ED981241DB27C3383D72092B618A1D0 ] C:\Windows\System32\drivers\mspqm.sys
18:23:35.0962 5684 C:\Windows\System32\drivers\mspqm.sys - ok
18:23:35.0962 5684 [ A71C81BD43FBF06B241996B63385C263 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll
18:23:35.0962 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll - ok
18:23:35.0978 5684 [ 0A7C1BC5DDB3EA975A33DD5FA9A5994E ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll
18:23:35.0978 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll - ok
18:23:35.0978 5684 [ 8C972171A3AEC39380CA74061D2675F7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll
18:23:35.0978 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll - ok
18:23:35.0978 5684 [ EC7BAC2F868BED8EF3BF7CCD6BAEA6FF ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll
18:23:35.0978 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll - ok
18:23:35.0993 5684 [ 04A9086C1DF3BB5272CB509D9C54AC1A ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
18:23:35.0993 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll - ok
18:23:35.0993 5684 [ F761DC16DD0086C5FFB889C2CB7824DB ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll
18:23:35.0993 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll - ok
18:23:36.0009 5684 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
18:23:36.0009 5684 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
18:23:36.0009 5684 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
18:23:36.0009 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
18:23:36.0009 5684 [ 35066007A1EB30180BDC020D0B677F88 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
18:23:36.0009 5684 C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll - ok
18:23:36.0025 5684 [ 0DE3C7622EC33126579B1742260F08C2 ] C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
18:23:36.0025 5684 C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe - ok
18:23:36.0025 5684 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
18:23:36.0025 5684 C:\Windows\System32\WindowsCodecsExt.dll - ok
18:23:36.0040 5684 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
18:23:36.0040 5684 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
18:23:36.0040 5684 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
18:23:36.0040 5684 C:\Windows\System32\icm32.dll - ok
18:23:36.0040 5684 [ 65E77DE21ECDB99625B754D304E33534 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll
18:23:36.0040 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\f14d92947409b66f348ab20efb80da08\WindowsFormsIntegration.ni.dll - ok
18:23:36.0056 5684 [ 37D14C4747D16A24CC469E25FB536A17 ] C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
18:23:36.0056 5684 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe - ok
18:23:36.0056 5684 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
18:23:36.0056 5684 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
18:23:36.0056 5684 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
18:23:36.0056 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
18:23:36.0071 5684 [ 4BCAC176BE9F87E0A85A4C9A5EB63B3E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll
18:23:36.0071 5684 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll - ok
18:23:36.0071 5684 [ 80739D6157FDF84E444C659AC3B0E41E ] C:\Windows\SysWOW64\PresentationNative_v0300.dll
18:23:36.0071 5684 C:\Windows\SysWOW64\PresentationNative_v0300.dll - ok
18:23:36.0087 5684 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
18:23:36.0087 5684 C:\Windows\SysWOW64\msctfui.dll - ok
18:23:36.0087 5684 [ 6DD675661470892FF09D2CE266DF26B2 ] C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe
18:23:36.0087 5684 C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe - ok
18:23:36.0087 5684 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
18:23:36.0087 5684 C:\Windows\System32\webcheck.dll - ok
18:23:36.0103 5684 [ 77BD0166102F3B9BB9499B2952C3BCFA ] C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
18:23:36.0103 5684 C:\Program Files (x86)\Windows Live\Mail\wlmail.exe - ok
18:23:36.0103 5684 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
18:23:36.0103 5684 C:\Windows\System32\mlang.dll - ok
18:23:36.0103 5684 [ 9CB27AE21BF0553BF20F571DD9E2C3A0 ] C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
18:23:36.0103 5684 C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe - ok
18:23:36.0118 5684 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
18:23:36.0118 5684 C:\Windows\System32\SyncCenter.dll - ok
18:23:36.0118 5684 [ 82E53EC685889AD8CFB3AD812A906489 ] C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
18:23:36.0118 5684 C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe - ok
18:23:36.0134 5684 [ 6EE227818F6A756126275905CA8C1B70 ] C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe
18:23:36.0134 5684 C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe - ok
18:23:36.0134 5684 [ 6DCFADDA4F2A6D3396D13F0554D672E8 ] C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
18:23:36.0134 5684 C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe - ok
18:23:36.0134 5684 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
18:23:36.0134 5684 C:\Windows\System32\imapi2.dll - ok
18:23:36.0149 5684 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
18:23:36.0149 5684 C:\Windows\System32\SearchProtocolHost.exe - ok
18:23:36.0149 5684 [ D28CF84A1CD2E6D9BF91C50C589EE437 ] C:\Program Files (x86)\Windows Live\Companion\companionuser.exe
18:23:36.0149 5684 C:\Program Files (x86)\Windows Live\Companion\companionuser.exe - ok
18:23:36.0149 5684 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
18:23:36.0149 5684 C:\Windows\System32\hgcpl.dll - ok
18:23:36.0165 5684 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
18:23:36.0165 5684 C:\Windows\System32\msshooks.dll - ok
18:23:36.0165 5684 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
18:23:36.0165 5684 C:\Windows\System32\SearchFilterHost.exe - ok
18:23:36.0181 5684 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
18:23:36.0181 5684 C:\Windows\SysWOW64\cabinet.dll - ok
18:23:36.0181 5684 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
18:23:36.0181 5684 C:\Windows\System32\mssph.dll - ok
18:23:36.0181 5684 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
18:23:36.0181 5684 C:\Windows\System32\mapi32.dll - ok
18:23:36.0181 5684 ============================================================
18:23:36.0181 5684 Scan finished
18:23:36.0181 5684 ============================================================
18:23:36.0196 5676 Detected object count: 7
18:23:36.0196 5676 Actual detected object count: 7
18:26:14.0911 5676 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0911 5676 HauppaugeTVServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:14.0926 5676 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0926 5676 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:14.0926 5676 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0926 5676 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:14.0926 5676 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0926 5676 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:14.0926 5676 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0926 5676 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:14.0926 5676 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:26:14.0926 5676 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:26:15.0129 5676 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
18:26:28.0810 5676 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
18:26:29.0731 5676 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
18:26:29.0949 5676 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
18:26:30.0495 5676 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
18:26:30.0542 5676 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
18:26:30.0589 5676 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
18:26:30.0667 5676 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
18:26:31.0119 5676 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
18:26:31.0525 5676 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
18:26:31.0665 5676 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
18:26:31.0728 5676 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
18:26:31.0790 5676 \Device\Harddisk0\DR0\TDLFS - deleted
18:26:31.0790 5676 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete



ComboFix 13-01-22.01 - Vicky 01/22/2013 18:42:28.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3999.1908 [GMT -5:00]
Running from: c:\users\Vicky\Downloads\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\users\Public\videos\HP MediaSmart Demo.exe
c:\users\Vicky\AppData\Roaming\.#
c:\users\Vicky\Documents\~WRL0001.tmp
c:\users\Vicky\Documents\~WRL0002.tmp
c:\users\Vicky\Documents\~WRL0003.tmp
c:\users\Vicky\Documents\~WRL0004.tmp
c:\users\Vicky\Documents\~WRL0005.tmp
c:\users\Vicky\Documents\~WRL0006.tmp
c:\users\Vicky\Documents\~WRL0065.tmp
c:\users\Vicky\Documents\~WRL1166.tmp
c:\users\Vicky\Documents\~WRL1610.tmp
c:\users\Vicky\Documents\~WRL1615.tmp
c:\users\Vicky\Documents\~WRL1869.tmp
c:\users\Vicky\Documents\~WRL2084.tmp
c:\users\Vicky\Documents\~WRL3227.tmp
c:\users\Vicky\Documents\~WRL3736.tmp
c:\users\Vicky\Documents\~WRL3960.tmp
c:\users\Vicky\GoToAssistDownloadHelper.exe
c:\windows\svchost.exe
c:\windows\SysWow64\URTTemp
c:\windows\SysWow64\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-12-22 to 2013-01-22 )))))))))))))))))))))))))))))))
.
.
2013-01-22 23:56 . 2013-01-22 23:56 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-20 04:48 . 2013-01-22 23:26 -------- d-----w- C:\TDSSKiller_Quarantine
2013-01-12 03:28 . 2013-01-12 12:30 -------- d-----w- c:\users\Vicky\AppData\Local\LogMeIn Rescue Applet
2013-01-10 17:25 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-10 17:25 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-10 17:25 . 2012-11-20 05:48 307200 ----a-w- c:\windows\system32\ncrypt.dll
2013-01-10 17:25 . 2012-11-20 04:51 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll
2013-01-10 17:24 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
2013-01-10 17:24 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
2013-01-10 17:24 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
2013-01-10 17:24 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2013-01-10 17:22 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
2013-01-10 17:22 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
2013-01-10 17:10 . 2013-01-10 17:10 -------- d-----w- c:\users\Vicky\AppData\Local\McAfee File Lock
2013-01-08 18:55 . 2012-05-28 15:28 197264 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
2013-01-08 18:53 . 2012-11-09 11:37 177680 ----a-w- c:\windows\system32\mfevtps.exe
2013-01-05 06:02 . 2000-01-01 00:00 1209856 ----a-w- c:\windows\system32\drivers\agrsm64.sys
2013-01-05 06:02 . 2000-01-01 00:00 64000 ----a-w- c:\windows\agrsmdel.exe
2013-01-05 06:02 . 2000-01-01 00:00 30720 ----a-w- c:\windows\agrdel64.exe
2013-01-03 06:30 . 2013-01-03 06:30 -------- d-----w- C:\found.000
2012-12-30 22:04 . 2012-12-30 22:04 -------- d-----w- c:\users\Vicky\AppData\Roaming\VS Revo Group
2012-12-30 17:59 . 2012-12-30 17:59 -------- d-----w- c:\users\Vicky\AppData\Local\VS Revo Group
2012-12-30 17:59 . 2009-12-30 16:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2012-12-30 17:59 . 2012-12-30 17:59 -------- d-----w- c:\program files\VS Revo Group
2012-12-30 17:40 . 2012-12-30 17:41 -------- d-----w- c:\programdata\NCH Software
2012-12-30 17:40 . 2012-12-30 19:06 -------- d-----w- c:\program files (x86)\NCH Software
2012-12-30 17:40 . 2012-12-30 19:06 -------- d-----w- c:\users\Vicky\AppData\Roaming\NCH Software
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-21 16:08 . 2012-08-20 19:29 15712 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2013-01-11 02:10 . 2010-05-30 02:28 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-10 17:21 . 2012-04-28 17:54 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-01-10 17:21 . 2011-09-06 22:28 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-16 17:11 . 2012-12-21 05:52 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-21 05:52 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-21 05:52 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-21 05:52 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-04 03:37 . 2010-06-03 01:32 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-12-04 03:37 . 2010-06-03 01:31 2876528 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-12-04 03:37 . 2010-06-05 14:49 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-12-04 03:37 . 2010-06-03 01:23 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-11-28 18:02 . 2012-06-02 03:37 13920 ----a-w- c:\windows\system32\drivers\SETAE96.tmp
2012-11-27 03:59 . 2010-06-05 14:49 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-11-14 07:06 . 2012-12-13 08:04 17811968 ----a-w- c:\windows\system32\mshtml.dll
2012-11-14 06:32 . 2012-12-13 08:03 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-11-14 06:11 . 2012-12-13 08:04 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-11-14 06:04 . 2012-12-13 08:04 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-11-14 06:04 . 2012-12-13 08:04 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-11-14 06:02 . 2012-12-13 08:04 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-11-14 06:02 . 2012-12-13 08:04 237056 ----a-w- c:\windows\system32\url.dll
2012-11-14 05:59 . 2012-12-13 08:04 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-11-14 05:58 . 2012-12-13 08:04 816640 ----a-w- c:\windows\system32\jscript.dll
2012-11-14 05:57 . 2012-12-13 08:04 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-11-14 05:57 . 2012-12-13 08:04 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-11-14 05:55 . 2012-12-13 08:04 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-11-14 05:55 . 2012-12-13 08:04 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-11-14 05:53 . 2012-12-13 08:04 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-11-14 05:52 . 2012-12-13 08:04 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-11-14 05:46 . 2012-12-13 08:04 248320 ----a-w- c:\windows\system32\ieui.dll
2012-11-14 02:09 . 2012-12-13 08:04 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-11-14 01:58 . 2012-12-13 08:04 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-11-14 01:57 . 2012-12-13 08:04 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-11-14 01:57 . 2012-12-13 08:04 1129472 ----a-w- c:\windows\SysWow64\wininet(2129).dll
2012-11-14 01:49 . 2012-12-13 08:04 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-11-14 01:48 . 2012-12-13 08:04 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-11-14 01:44 . 2012-12-13 08:04 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-11-09 11:40 . 2012-11-09 11:40 69672 ----a-w- c:\windows\system32\drivers\cfwids.sys
2012-11-09 11:37 . 2012-11-09 11:37 339776 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2012-11-09 11:35 . 2012-11-09 11:35 771096 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2012-11-09 11:34 . 2012-11-09 11:34 515528 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2012-11-09 11:34 . 2012-11-09 11:34 309400 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2012-11-09 11:33 . 2012-11-09 11:33 178840 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2012-11-09 05:45 . 2012-12-12 20:30 2048 ----a-w- c:\windows\system32\tzres.dll
2012-11-09 04:42 . 2012-12-12 20:30 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-11-02 06:46 . 2012-11-02 06:46 97208 ----a-w- c:\windows\system32\drivers\mfencrk.sys
2012-11-02 06:46 . 2012-11-02 06:46 328976 ----a-w- c:\windows\system32\drivers\mfencbdc.sys
2012-11-02 06:46 . 2012-11-02 06:46 10544 ----a-w- c:\windows\system32\drivers\mfeclnrk.sys
2012-11-02 05:59 . 2012-12-12 20:28 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-11-02 05:11 . 2012-12-12 20:28 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{ABD3B5E1-B268-407B-A150-2641DAB8D898}]
2009-06-08 21:41 120104 ----a-w- c:\program files (x86)\Common Files\Homepage Protection\HomepageProtection.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPADVISOR"="c:\program files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [2009-07-16 1668664]
"SacReminder"="c:\programdata\OfficeGuardian\reminder\SacReminder.exe" [2009-06-26 825152]
"OfficeSyncProcess"="c:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-21 719672]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-11-24 323640]
"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-10-07 454160]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-10-07 454160]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
.
c:\users\Vicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-12-21 227712]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
WinTV Recording Status..lnk - c:\program files (x86)\WinTV\WinTV7\WinTVTray.exe [2011-1-23 83456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\system]
"WallpaperStyle"= 2
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;c:\windows\system32\DRIVERS\amppal.sys [2012-01-09 195584]
R3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\DRIVERS\lgandbus64.sys [2012-03-02 19456]
R3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\DRIVERS\lganddiag64.sys [x]
R3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\DRIVERS\lgandgps64.sys [x]
R3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\DRIVERS\lgandmodem64.sys [x]
R3 hcw72ADFilter;WinTV HVR-950 USB Audio Filter Driver;c:\windows\system32\DRIVERS\hcw72ADFilter.sys [2010-01-11 38912]
R3 hcw72ATV;WinTV HVR-950 NTSC;c:\windows\system32\DRIVERS\hcw72ATV.sys [2010-01-11 1631488]
R3 hcw72DTV;WinTV HVR-950 ATSC/QAM;c:\windows\system32\DRIVERS\hcw72DTV.sys [2010-01-11 1634176]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-05-28 197264]
R3 libusb0;LibUsb-Win32 - Kernel Driver 06/04/2010,1.12.1.1;c:\windows\system32\DRIVERS\libusb0.sys [2011-09-22 43456]
R3 massfilter_hs;HS HandSet Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys [2011-12-12 18456]
R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys [2012-11-02 97208]
R3 NETw1v64;Intel® Wireless WiFi Link 1000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\NETw1v64.sys [2009-07-20 7058432]
R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2010-01-13 7675392]
R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 rcmirror;rcmirror;c:\windows\system32\DRIVERS\rcmirror.sys [2010-01-18 4608]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-07-13 233472]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [2013-01-21 15712]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-20 1255736]
R3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120]
R3 zghsdiag;ZTE General Handset Diagnostic Port;c:\windows\system32\DRIVERS\zghsdiag.sys [2011-01-13 122624]
R3 zghsmdm;ZTE General Handset USB Modem Proprietary;c:\windows\system32\DRIVERS\zghsmdm.sys [2011-01-13 122624]
R3 zghsnmea;ZTE General Handset NMEA Port;c:\windows\system32\DRIVERS\zghsnmea.sys [2011-01-13 122624]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 McPvDrv;McPvDrv Driver;c:\windows\system32\drivers\McPvDrv.sys [2012-10-19 74120]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-11-09 339776]
S1 AvgLdx64;AVG Free AVI Loader Driver x64;c:\windows\system32\Drivers\avgldx64.sys [2010-07-08 269904]
S1 AvgMfx64;AVG Free On-access Scanner Minifilter Driver x64;c:\windows\system32\Drivers\avgmfx64.sys [2011-09-13 35664]
S1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\elrawdsk.sys [2008-12-09 23464]
S1 MOBKFilter;MOBKFilter;c:\windows\system32\DRIVERS\MOBK.sys [2010-04-14 66040]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2000-01-01 89600]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-01-09 659968]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-01-17 135952]
S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 220856]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-01-25 92216]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2010-07-16 30520]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 220856]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 220856]
S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2012-10-07 220856]
S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [2012-10-06 1007288]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-11-09 218320]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-11-09 177680]
S2 MOBKbackup;McAfee Online Backup;c:\program files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-04-14 231224]
S2 TVCapSvc;TV Background Capture Service (TVBCS);c:\program files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe [2009-07-25 275840]
S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;c:\windows\system32\DRIVERS\AMPPAL.sys [2012-01-09 195584]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-11-09 69672]
S3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2009-06-29 70656]
S3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2000-01-01 145408]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-11-09 515528]
S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys [2012-11-02 328976]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2013-01-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-28 17:21]
.
2013-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-11-24 04:03]
.
2013-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-11-24 04:03]
.
2013-01-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000Core.job
- c:\users\Vicky\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-01 04:08]
.
2013-01-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000UA.job
- c:\users\Vicky\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-01 04:08]
.
2012-12-26 c:\windows\Tasks\HPCeeScheduleForVicky.job
- c:\program files (x86)\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2009-08-09 21:38]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK]
@="{3c3f3c1a-9153-7c05-f938-622e7003894d}"
[HKEY_CLASSES_ROOT\CLSID\{3c3f3c1a-9153-7c05-f938-622e7003894d}]
2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK2]
@="{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}"
[HKEY_CLASSES_ROOT\CLSID\{e6ea1d7d-144e-b977-98c4-84c53c1a69d0}]
2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\MOBK3]
@="{b4caf489-1eec-c617-49ad-8d7088598c06}"
[HKEY_CLASSES_ROOT\CLSID\{b4caf489-1eec-c617-49ad-8d7088598c06}]
2010-04-14 00:11 3816248 ----a-w- c:\program files (x86)\McAfee Online Backup\MOBKshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2009-07-21 610872]
"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2000-01-01 386840]
"Persistence"="c:\windows\system32\igfxpers.exe" [2000-01-01 417560]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2000-01-01 1425408]
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cnnb
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s%s
TCP: DhcpNameServer = 75.75.75.75 75.75.76.76
.
.
------- File Associations -------
.
JSEFile=NOTEPAD.EXE %1
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-08179140.sys
SafeBoot-27813583.sys
SafeBoot-41114273.sys
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Hauppauge WinTV Infrared Remote - c:\progra~2\WinTV\UNir32.EXE
AddRemove-{E92D47A1-D27D-430A-8368-0BAFD956507D} - c:\program files (x86)\InstallShield Installation Information\{E92D47A1-D27D-430A-8368-0BAFD956507D}\setup.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-01-22 19:01:34
ComboFix-quarantined-files.txt 2013-01-23 00:01
.
Pre-Run: 228,562,014,208 bytes free
Post-Run: 228,866,011,136 bytes free
.
- - End Of File - - D9E3B8D4189928C4934E3C1691DE3CE0



Farbar Service Scanner Version: 16-01-2013
Ran by Vicky (administrator) on 22-01-2013 at 19:06:09
Running from "C:\Users\Vicky\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S3XMAPHE"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
  • 0

#9
Jasmyne
Posted 23 January 2013 - 06:21 AM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts

Computer was working very well. Keyboard racing like racehorse. As I finished copying the final log, it slowed to a crawl and the keys acted like they were in quicksand again

:confused:

We're going to scan this time with a different tool to make sure the worst is gone and then we'll deal with what's left. A lot of these infections can be very complex and sometimes a little tricky!

Questions: is there anyway to tell how long it has been infected?

This is actually difficult to determine in a lot of cases because malware likes to change the dates/times on the files in order to hide itself. One possible "hint" in the scans shows errors with the computer trying to update around January 9th. With these types of infections many cases will have these type errors. That's also not to say there wasn't another reason for the error or that the error hadn't been occuring long before then. The best thing I can tell you is to think back to when your computer started acting strangely and that will probably be the best estimate.

The TDSS killer found more suspicious items on the second run. I fully uninstalled two questionable programs (Slimware Drivers and PC Health), but when I tried to uninstall DriverUpdate, Revo did not give me an option to eliminate the full ... not sure what you call them ... the roots, perhaps? When I look for that name on my computer, or REVO, it does not show up. I'd allowed one of their service techs to take remote of my computer on the 12th of January ... was having problems with 900+ crashes (blue screen?) /warnings about an out of date graphics driver. That's when HP was unable to recognize my laptop as being one they manufactured. I can scan that log to you if you like ... or is it another issue? It's where I discovered all of this ...

There's a good chance if you're not able to see any more remnants of the program, it's gone. I'm not familiar with Slimware but in reasearching I came across the product "Slimware Drivers Utility Driver Update" so it may be that they are one in the same. :) After we make sure all the malware is removed, I'll be glad to help trouble shoot any issues that are remaining.

Thanks, Jasmyne. I am thankful for your help!

You're very welcome! I've been in your boat before so I know how frustrating it all can be.

Now lets get some more scans to make sure this bad boy is gone and see if he left any friends hanging around....

Please make sure that you are moving any tools for scans to your desktop prior to using them.

Step 1 aswMBR Scan

Download aswMBR.exe to your desktop.
Double click the aswMBR.exe to run it Click the "Scan" button to start scan

Posted Image

On completion of the scan click save log, save it to your desktop and post in your next reply

Posted Image

Step 2 Fresh OTL Scan
  • Move OTL to your desktop.
  • Re-open OTL. Make sure all other windows are closed and to let it run uninterrupted.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open one notepad file, OTL.Txt. It will be saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of this file, and post them in your topic.

  • 0

#10
Vicky227
Posted 24 January 2013 - 03:32 PM

Vicky227

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Good Afternoon, Jasmyne! My laptop opens fast, connects to the web fast, opens everything fast, and closes fast. All thanks to you! :>)

Here are the most recent logs you requested:




aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-24 15:01:42
-----------------------------
15:01:42.671 OS Version: Windows x64 6.1.7601 Service Pack 1
15:01:42.671 Number of processors: 2 586 0x170A
15:01:42.671 ComputerName: LAPTOP UserName: Vicky
15:01:57.647 Initialize success
15:03:46.913 AVAST engine defs: 13012400
15:03:58.316 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:03:58.316 Disk 0 Vendor: ST950042 0006 Size: 476940MB BusType: 3
15:03:58.332 Disk 0 MBR read successfully
15:03:58.332 Disk 0 MBR scan
15:03:58.363 Disk 0 unknown MBR code
15:03:58.394 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
15:03:58.457 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 463670 MB offset 409600
15:03:58.582 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13069 MB offset 950005760
15:03:58.722 Disk 0 scanning C:\Windows\system32\drivers
15:04:43.338 Service scanning
15:05:38.391 Modules scanning
15:05:38.391 Disk 0 trace - called modules:
15:05:38.437 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys
15:05:38.437 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ced790]
15:05:38.453 3 CLASSPNP.SYS[fffff8800112c43f] -> nt!IofCallDriver -> [0xfffffa8004cde250]
15:05:38.469 5 hpdskflt.sys[fffff8800206f2bd] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80047c4050]
15:05:40.590 AVAST engine scan C:\Windows
15:06:08.561 AVAST engine scan C:\Windows\system32
15:20:16.750 AVAST engine scan C:\Windows\system32\drivers
15:21:03.020 AVAST engine scan C:\Users\Vicky
15:24:09.800 Disk 0 MBR has been saved successfully to "C:\Users\Vicky\Desktop\MBR.dat"
15:24:10.128 The log file has been saved successfully to "C:\Users\Vicky\Desktop\aswMBR.txt"








OTL logfile created on: 1/24/2013 3:26:04 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Vicky\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.91 Gb Total Physical Memory | 2.21 Gb Available Physical Memory | 56.52% Memory free
7.81 Gb Paging File | 5.81 Gb Available in Paging File | 74.42% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 452.80 Gb Total Space | 212.04 Gb Free Space | 46.83% Space Free | Partition Type: NTFS
Drive D: | 12.76 Gb Total Space | 2.12 Gb Free Space | 16.63% Space Free | Partition Type: NTFS

Computer Name: LAPTOP | User Name: Vicky | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/01/14 12:43:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Vicky\Downloads\OTL.exe
PRC - [2012/12/18 09:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2010/01/29 04:19:42 | 000,602,624 | ---- | M] (Hauppauge Computer Works) -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
PRC - [2010/01/13 17:49:58 | 000,083,456 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
PRC - [2009/07/24 20:24:14 | 000,275,840 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe
PRC - [2009/07/24 20:24:02 | 000,427,304 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
PRC - [2009/07/23 22:45:52 | 000,128,296 | ---- | M] (CyberLink Corp.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
PRC - [2009/07/23 13:37:16 | 000,206,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
PRC - [2009/06/26 06:23:44 | 000,825,152 | R--- | M] (SAC) -- C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe
PRC - [2009/06/04 19:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe


========== Modules (No Company Name) ==========

MOD - [2013/01/11 20:42:07 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\302207b4fa3083899fd8ab4db98cecc5\System.Management.ni.dll
MOD - [2013/01/11 18:40:16 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
MOD - [2013/01/11 18:39:39 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
MOD - [2013/01/11 18:39:31 | 006,611,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\dd20416f723ee13ffb4173ec1afc4ec4\System.Data.ni.dll
MOD - [2013/01/11 18:39:13 | 014,340,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
MOD - [2013/01/11 18:38:45 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\865d2bf19a7af7fab8660a42d92550fe\System.Windows.Forms.ni.dll
MOD - [2013/01/11 18:38:35 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
MOD - [2013/01/11 18:38:31 | 000,185,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\a7424b1be331f4b534ea24e0c21dbe47\UIAutomationTypes.ni.dll
MOD - [2013/01/11 18:38:29 | 012,237,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
MOD - [2013/01/11 18:38:14 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
MOD - [2013/01/11 18:38:06 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
MOD - [2013/01/11 18:36:59 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
MOD - [2013/01/11 18:36:58 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
MOD - [2013/01/11 18:36:46 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
MOD - [2011/07/05 14:40:49 | 000,123,448 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
MOD - [2010/11/04 20:58:05 | 002,927,616 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2010/01/13 17:45:44 | 000,022,528 | ---- | M] () -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
MOD - [2009/07/24 20:24:16 | 000,275,848 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapEngine.dll
MOD - [2009/07/24 20:24:16 | 000,124,288 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLSchMgr.dll
MOD - [2009/07/24 20:24:16 | 000,034,088 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLCapSvcps.dll
MOD - [2009/07/24 20:24:14 | 000,349,480 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CLTinyDB.dll
MOD - [2009/07/23 13:37:14 | 000,931,112 | ---- | M] () -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
MOD - [2009/07/15 19:51:04 | 000,061,440 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
MOD - [2009/07/15 19:51:02 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
MOD - [2009/07/15 19:50:58 | 000,040,960 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
MOD - [2009/07/15 19:50:56 | 000,036,864 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
MOD - [2009/07/15 19:50:56 | 000,007,680 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
MOD - [2009/07/15 19:50:54 | 000,005,632 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
MOD - [2009/07/15 19:50:52 | 000,018,944 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
MOD - [2009/07/15 19:50:44 | 000,028,672 | ---- | M] () -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/11/22 04:42:06 | 000,378,952 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV:64bit: - [2012/11/09 06:37:30 | 000,177,680 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:64bit: - [2012/11/09 06:34:50 | 000,218,320 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (MSK80Service)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McProxy)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (mcpltsvc)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV:64bit: - [2012/10/07 03:13:42 | 000,220,856 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe -- (HomeNetSvc)
SRV:64bit: - [2012/10/06 07:28:16 | 001,007,288 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe -- (mfecore)
SRV:64bit: - [2012/08/31 12:20:06 | 000,201,304 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV:64bit: - [2012/01/17 16:12:28 | 000,135,952 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012/01/09 12:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/07/16 15:03:58 | 000,030,520 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/27 21:10:16 | 000,016,896 | ---- | M] (LSI Corporation) [Auto | Running] -- C:\Program Files\LSI SoftModem\agr64svc.exe -- (AgereModemAudio)
SRV:64bit: - [1999/12/31 19:00:00 | 000,314,880 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [1999/12/31 19:00:00 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\IDT\WDM\AESTSr64.exe -- (AESTFilters)
SRV - [2013/01/10 12:21:46 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/18 09:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2011/01/25 16:40:22 | 000,092,216 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2010/10/22 12:08:18 | 001,039,360 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2010/04/13 19:11:18 | 000,231,224 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe -- (MOBKbackup)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/01/29 04:19:42 | 000,602,624 | ---- | M] (Hauppauge Computer Works) [Auto | Running] -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe -- (HauppaugeTVServer)
SRV - [2009/07/24 20:24:14 | 000,275,840 | ---- | M] () [Auto | Running] -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\TVCapSvc.exe -- (TVCapSvc)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 19:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/01/21 11:08:46 | 000,015,712 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SWDUMon.sys -- (SWDUMon)
DRV:64bit: - [2012/11/09 06:40:24 | 000,069,672 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:64bit: - [2012/11/09 06:37:42 | 000,339,776 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:64bit: - [2012/11/09 06:35:50 | 000,771,096 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:64bit: - [2012/11/09 06:34:58 | 000,515,528 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:64bit: - [2012/11/09 06:34:18 | 000,309,400 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:64bit: - [2012/11/09 06:33:58 | 000,178,840 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:64bit: - [2012/11/02 01:46:50 | 000,328,976 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfencbdc.sys -- (mfencbdc)
DRV:64bit: - [2012/11/02 01:46:50 | 000,097,208 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfencrk.sys -- (mfencrk)
DRV:64bit: - [2012/10/19 09:51:50 | 000,074,120 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\McPvDrv.sys -- (McPvDrv)
DRV:64bit: - [2012/05/28 10:28:18 | 000,197,264 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HipShieldK.sys -- (HipShieldK)
DRV:64bit: - [2012/03/08 17:40:52 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2012/03/02 15:02:00 | 000,019,456 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandbus64.sys -- (Andbus)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/02/21 03:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012/01/09 12:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012/01/09 12:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011/12/12 15:57:04 | 000,018,456 | ---- | M] (HandSet Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\massfilter_hs.sys -- (massfilter_hs)
DRV:64bit: - [2011/09/22 18:52:02 | 000,043,456 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\libusb0.sys -- (libusb0)
DRV:64bit: - [2011/09/13 13:30:50 | 000,035,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (AvgMfx64)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsnmea.sys -- (zghsnmea)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsmdm.sys -- (zghsmdm)
DRV:64bit: - [2011/01/13 02:17:30 | 000,122,624 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\zghsdiag.sys -- (zghsdiag)
DRV:64bit: - [2010/11/20 08:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 06:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 04:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/07/16 15:04:04 | 000,030,008 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2010/07/16 15:03:48 | 000,043,320 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2010/07/08 10:54:00 | 000,269,904 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (AvgLdx64)
DRV:64bit: - [2010/05/27 22:32:56 | 000,320,560 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/04/13 19:10:24 | 000,066,040 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\MOBK.sys -- (MOBKFilter)
DRV:64bit: - [2010/01/18 15:40:26 | 000,004,608 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rcmirror.sys -- (rcmirror)
DRV:64bit: - [2010/01/13 15:37:18 | 007,675,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw5s64.sys -- (NETw5s64)
DRV:64bit: - [2010/01/11 15:19:24 | 001,634,176 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72DTV.sys -- (hcw72DTV)
DRV:64bit: - [2010/01/11 15:13:28 | 001,631,488 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72ATV.sys -- (hcw72ATV)
DRV:64bit: - [2010/01/11 15:09:00 | 000,038,912 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw72ADFilter.sys -- (hcw72ADFilter)
DRV:64bit: - [2009/12/30 11:21:26 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)
DRV:64bit: - [2009/07/20 18:33:42 | 007,058,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw1v64.sys -- (NETw1v64)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 19:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2009/07/13 19:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2009/07/13 19:35:32 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\serscan.sys -- (StillCam)
DRV:64bit: - [2009/07/13 17:31:00 | 000,233,472 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/07/13 16:59:33 | 005,020,672 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (atikmdag)
DRV:64bit: - [2009/06/29 13:17:00 | 000,070,656 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\enecir.sys -- (enecir)
DRV:64bit: - [2009/06/10 16:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 16:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 16:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 15:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 15:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/04 18:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/04/29 10:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2008/12/09 14:26:50 | 000,023,464 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\elrawdsk.sys -- (ElRawDisk)
DRV:64bit: - [1999/12/31 19:00:00 | 010,628,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [1999/12/31 19:00:00 | 001,209,856 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [1999/12/31 19:00:00 | 000,536,064 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [1999/12/31 19:00:00 | 000,145,408 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {22348997-7FD7-4759-AB9D-EB2B7A365617}
IE:64bit: - HKLM\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE:64bit: - HKLM\..\SearchScopes\{22348997-7FD7-4759-AB9D-EB2B7A365617}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\..\SearchScopes,DefaultScope = {22348997-7FD7-4759-AB9D-EB2B7A365617}
IE - HKLM\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{22348997-7FD7-4759-AB9D-EB2B7A365617}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {268507ED-1AAF-4AF9-9E28-4B8595C54022}
IE - HKCU\..\SearchScopes\{0809851D-6B6B-49C8-93A3-D43B32E2A276}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{1722BCEB-54FE-4484-B841-4AD3EFC90D93}: "URL" = http://www.facebook....q={searchTerms}
IE - HKCU\..\SearchScopes\{268507ED-1AAF-4AF9-9E28-4B8595C54022}: "URL" = http://search.yahoo....p={SearchTerms}
IE - HKCU\..\SearchScopes\{3CCF5400-1106-4D0A-8B49-65EC9E72B495}: "URL" = http://query.nytimes...s}&opensearch=1
IE - HKCU\..\SearchScopes\{3D52C47D-1F49-45E8-B078-DA03F2432A92}: "URL" = http://search.yahoo....rtPage?}&fr=ie8
IE - HKCU\..\SearchScopes\{F432AD7E-C954-458D-A941-8F8855B1CFFB}: "URL" = http://www.google.co...Encoding?}&rlz=
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/MSC,version=10: c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Vicky\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Vicky\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Vicky\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\amazon.com/AmazonMP3DownloaderPlugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101772.dll (Amazon.com, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013/01/05 00:21:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor [2013/01/19 09:56:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\McAfee\MSK [2013/01/10 12:07:13 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\cofpahiphpdfimjjeohcldngadhfbaan\2.2_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\lambangeielkjcnmioccboaphdfcffib\2.2.4_0\
CHR - Extension: No name found = C:\Users\Vicky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/01/22 18:56:36 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
O2 - BHO: (hpBHO Class) - {ABD3B5E1-B268-407B-A150-2641DAB8D898} - C:\Program Files (x86)\Common Files\Homepage Protection\HomepageProtection.dll (AOL Products)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [mcpltui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKCU..\Run: [SacReminder] C:\ProgramData\OfficeGuardian\reminder\SacReminder.exe (SAC)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9:64bit: - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9:64bit: - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - Reg Error: Value error. File not found
O9:64bit: - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - Reg Error: Value error. File not found
O13 - gopher Prefix: missing
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.micros...n/ieawsdc32.cab (Microsoft Office Template and Media Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B5D6DA7-0854-4233-AEB6-B9F36C31E2C7}: DhcpNameServer = 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
O18 - Protocol\Filter\application/x-mfe-ipt {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/22 23:19:20 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/01/22 18:39:43 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/01/22 18:39:43 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/01/22 18:39:42 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/01/22 18:35:43 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/01/22 18:35:03 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/01/22 18:30:06 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{8DC06FA1-1C41-4711-851A-705EB84AF72D}
[2013/01/22 18:21:53 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{98228557-C1A8-4195-A8E2-00AA546AEF5D}
[2013/01/22 18:09:53 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{D31A5959-7943-4368-BB3C-B557480E74B3}
[2013/01/21 11:44:28 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{F169E0F2-21D9-4E5A-B066-D5193E4815CA}
[2013/01/20 11:44:10 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{D4B70B75-637C-4C47-83A8-D2C4434F0A38}
[2013/01/19 23:48:08 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2013/01/19 23:43:54 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{7F28C4C9-5CFC-4D4C-9F3D-7D8AF7E09FEC}
[2013/01/19 09:58:46 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{AD5DF2F9-EB8D-4F89-9DFE-130D88B27C5E}
[2013/01/15 13:44:40 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{113EAB08-8D79-4B65-83A9-B886F5894237}
[2013/01/14 09:51:55 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{FCA942C4-8E9F-4640-946B-D833A25DB89D}
[2013/01/13 15:14:11 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{B4DF21AE-9C5A-465F-9ECB-B794ECDC232A}
[2013/01/12 07:31:11 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{945CDACE-E77F-42DF-9BC6-EF767EA98AB5}
[2013/01/11 22:28:08 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\LogMeIn Rescue Applet
[2013/01/11 18:35:59 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{846E2B4F-9DF3-4202-AD0A-114829FFA503}
[2013/01/10 12:10:05 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\McAfee File Lock
[2013/01/10 12:09:00 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{E1E9CD68-D6CD-4295-9F6B-07B4BF088856}
[2013/01/08 13:55:31 | 000,197,264 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\drivers\HipShieldK.sys
[2013/01/08 13:53:19 | 000,177,680 | ---- | C] (McAfee, Inc.) -- C:\Windows\SysNative\mfevtps.exe
[2013/01/08 11:35:16 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{CD2DCFB1-3BED-4AA6-B7A3-521E6C205432}
[2013/01/07 09:46:51 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{1A91DA4F-B7AA-430A-A57F-696B8609400F}
[2013/01/06 10:27:47 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{3214ECB9-812D-4201-AC10-3B2BEB654ED3}
[2013/01/05 22:27:31 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{6EDF2F38-0F2E-4FE4-85FC-6BE4A64FECE1}
[2013/01/05 10:27:09 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{1B3B1795-2F40-4290-999B-A04E97336A79}
[2013/01/05 01:02:31 | 001,209,856 | ---- | C] (LSI Corporation) -- C:\Windows\SysNative\drivers\agrsm64.sys
[2013/01/05 01:02:30 | 000,064,000 | ---- | C] (LSI Corporation) -- C:\Windows\agrsmdel.exe
[2013/01/05 01:02:30 | 000,030,720 | ---- | C] (LSI Corporation) -- C:\Windows\agrdel64.exe
[2013/01/04 21:55:49 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{FA2A5D69-48AD-43A9-990D-BEB642F6E6F1}
[2013/01/03 02:32:19 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{4E8DE7A2-C06D-4E7B-8FE7-8729FE90E609}
[2013/01/03 01:30:58 | 000,000,000 | ---D | C] -- C:\found.000
[2013/01/02 08:54:29 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{04C34594-FCDC-4150-910E-730BA6564786}
[2013/01/01 13:01:19 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{37BD1C65-EF21-408C-A064-53FDF3A4EDD5}
[2012/12/31 11:48:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{296D108B-5572-440A-ACF1-0312F97867B3}
[2012/12/30 17:04:45 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Roaming\VS Revo Group
[2012/12/30 12:59:43 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\VS Revo Group
[2012/12/30 12:59:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
[2012/12/30 12:59:39 | 000,031,800 | ---- | C] (VS Revo Group) -- C:\Windows\SysNative\drivers\revoflt.sys
[2012/12/30 12:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2012/12/30 12:40:46 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2012/12/30 12:40:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NCH Software
[2012/12/30 12:40:10 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Roaming\NCH Software
[2012/12/29 16:42:02 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{84E63BC7-0EDD-4880-8CDF-06CC88A54467}
[2012/12/28 15:02:25 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{6E5496C9-13B2-4163-9353-36E940FDAD91}
[2012/12/26 11:53:56 | 000,000,000 | ---D | C] -- C:\Users\Vicky\AppData\Local\{9FA3422A-7F99-4E39-92AB-E4F116F0C682}
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Users\Vicky\Desktop\*.tmp files -> C:\Users\Vicky\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/24 15:24:10 | 000,000,512 | ---- | M] () -- C:\Users\Vicky\Desktop\MBR.dat
[2013/01/24 15:24:02 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000UA.job
[2013/01/24 15:21:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/24 15:20:04 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/01/24 15:07:30 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/24 15:07:29 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/24 14:59:34 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/01/24 14:59:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/24 14:59:24 | 3145,089,024 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/23 23:10:40 | 000,014,913 | ---- | M] () -- C:\Users\Vicky\Desktop\aswMBR - Shortcut.lnk
[2013/01/23 23:09:24 | 000,001,097 | ---- | M] () -- C:\Users\Vicky\Desktop\OTL - Shortcut.lnk
[2013/01/22 23:15:26 | 000,007,606 | ---- | M] () -- C:\Users\Vicky\AppData\Local\Resmon.ResmonCfg
[2013/01/22 19:04:15 | 000,014,939 | ---- | M] () -- C:\Users\Vicky\Desktop\ComboFix - Shortcut.lnk
[2013/01/22 18:56:36 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/01/21 11:45:56 | 000,000,178 | ---- | M] () -- C:\Users\Vicky\Desktop\When should I re-format How should I reinstall Security DSLReports.com, ISP Information.url
[2013/01/21 11:45:38 | 000,000,178 | ---- | M] () -- C:\Users\Vicky\Desktop\How to report ID theft, fraud, drive-by installs, hijacking and malware Security DSLReports.com, ISP Information.url
[2013/01/21 11:42:46 | 000,000,279 | ---- | M] () -- C:\Users\Vicky\Desktop\Graphics Driver not working; DOS-Aluron.A - Geeks to Go Forums.url
[2013/01/21 11:08:46 | 000,015,712 | ---- | M] () -- C:\Windows\SysNative\drivers\SWDUMon.sys
[2013/01/20 17:24:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2632891822-2667611553-3761156971-1000Core.job
[2013/01/19 23:35:54 | 000,001,144 | ---- | M] () -- C:\Users\Vicky\Desktop\tdsskiller - Shortcut.lnk
[2013/01/13 23:26:17 | 000,001,256 | ---- | M] () -- C:\Users\Vicky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
[2013/01/11 18:34:09 | 000,460,360 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/10 21:18:26 | 000,000,129 | ---- | M] () -- C:\Windows\SysNative\MRT.INI
[2013/01/06 22:59:47 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2012/12/30 14:02:13 | 043,311,029 | ---- | M] () -- C:\Users\Vicky\Documents\Pastor Fidel 12.30.2012 passion for God communion.wma
[2012/12/30 12:59:40 | 000,001,101 | ---- | M] () -- C:\Users\Vicky\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[2012/12/30 12:59:40 | 000,001,077 | ---- | M] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/12/26 11:52:29 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForVicky.job
[2012/12/26 11:52:08 | 483,794,193 | ---- | M] () -- C:\Windows\MEMORY.DMP
[1 C:\Windows\SysNative\drivers\*.tmp files -> C:\Windows\SysNative\drivers\*.tmp -> ]
[1 C:\Users\Vicky\Desktop\*.tmp files -> C:\Users\Vicky\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/24 15:24:09 | 000,000,512 | ---- | C] () -- C:\Users\Vicky\Desktop\MBR.dat
[2013/01/23 23:10:40 | 000,014,913 | ---- | C] () -- C:\Users\Vicky\Desktop\aswMBR - Shortcut.lnk
[2013/01/23 23:09:24 | 000,001,097 | ---- | C] () -- C:\Users\Vicky\Desktop\OTL - Shortcut.lnk
[2013/01/22 19:04:15 | 000,014,939 | ---- | C] () -- C:\Users\Vicky\Desktop\ComboFix - Shortcut.lnk
[2013/01/22 18:39:43 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/01/22 18:39:43 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/01/22 18:39:43 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/01/22 18:39:43 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/01/22 18:39:43 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/01/21 11:45:56 | 000,000,178 | ---- | C] () -- C:\Users\Vicky\Desktop\When should I re-format How should I reinstall Security DSLReports.com, ISP Information.url
[2013/01/21 11:45:37 | 000,000,178 | ---- | C] () -- C:\Users\Vicky\Desktop\How to report ID theft, fraud, drive-by installs, hijacking and malware Security DSLReports.com, ISP Information.url
[2013/01/21 11:42:45 | 000,000,279 | ---- | C] () -- C:\Users\Vicky\Desktop\Graphics Driver not working; DOS-Aluron.A - Geeks to Go Forums.url
[2013/01/19 23:35:54 | 000,001,144 | ---- | C] () -- C:\Users\Vicky\Desktop\tdsskiller - Shortcut.lnk
[2013/01/08 13:54:47 | 000,002,641 | ---- | C] () -- C:\Windows\SysNative\drivers\mfencrk.inf
[2013/01/08 13:54:46 | 000,002,946 | ---- | C] () -- C:\Windows\SysNative\drivers\mfencbdc.inf
[2013/01/06 22:59:47 | 000,002,175 | ---- | C] () -- C:\Users\Public\Desktop\Amazon Cloud Player.lnk
[2012/12/30 14:02:13 | 043,311,029 | ---- | C] () -- C:\Users\Vicky\Documents\Pastor Fidel 12.30.2012 passion for God communion.wma
[2012/12/30 12:59:40 | 000,001,101 | ---- | C] () -- C:\Users\Vicky\Application Data\Microsoft\Internet Explorer\Quick Launch\Revo Uninstaller Pro.lnk
[2012/12/30 12:59:40 | 000,001,077 | ---- | C] () -- C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
[2012/10/20 17:24:44 | 000,584,584 | ---- | C] () -- C:\Windows\adb.exe
[2012/01/30 12:07:29 | 000,000,000 | ---- | C] () -- C:\Users\Vicky\AppData\Local\{9A705876-1C27-4615-B342-F7362611E79B}
[2011/08/20 12:41:07 | 000,034,305 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\UserTile.png
[2011/08/20 08:34:25 | 000,005,120 | ---- | C] () -- C:\Users\Vicky\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/08/07 15:00:25 | 000,000,418 | ---- | C] () -- C:\Windows\hpwmdl28.dat.temp
[2011/08/07 14:37:52 | 000,207,637 | ---- | C] () -- C:\Windows\hpwins28.dat
[2011/03/02 13:56:09 | 000,001,854 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\GhostObjGAFix.xml
[2010/09/19 18:12:02 | 001,458,251 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp039.JPG
[2010/07/15 22:20:36 | 000,007,606 | ---- | C] () -- C:\Users\Vicky\AppData\Local\Resmon.ResmonCfg
[2010/06/14 18:07:35 | 000,000,600 | ---- | C] () -- C:\Users\Vicky\PUTTY.RND
[2010/06/06 22:14:23 | 000,811,158 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmpFIRST UPLOAD BALCONY DEAUVILLE 5.22.2010 056.JPG
[2010/06/06 21:57:06 | 000,854,285 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp073.JPG
[2010/06/06 09:11:17 | 001,145,161 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp191.JPG
[2010/06/06 09:11:16 | 004,802,537 | ---- | C] () -- C:\Users\Vicky\AppData\Local\tmp191.0
[2010/05/19 23:26:36 | 000,000,238 | ---- | C] () -- C:\Users\Vicky\AppData\Roaming\wklnhst.dat
[2009/07/13 23:54:24 | 000,000,174 | -HS- | C] () -- C:\Program Files\desktop(2039).ini
[2009/07/13 23:54:24 | 000,000,174 | -HS- | C] () -- C:\Program Files (x86)\desktop(2038).ini

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | ---- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2010/06/12 19:46:46 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Amazon
[2010/08/19 20:04:12 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/12/15 09:37:11 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Epson
[2012/02/06 11:52:29 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\IObit
[2013/01/05 00:23:34 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\iolo
[2013/01/05 00:23:34 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\JawboneUpdater
[2011/05/23 22:06:09 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\OpenOffice.org
[2010/06/07 05:33:44 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Template
[2012/12/30 17:04:45 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\VS Revo Group
[2011/01/06 23:35:28 | 000,000,000 | ---D | M] -- C:\Users\Vicky\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 180 bytes -> C:\Users\Vicky\Documents\Steve Brown Key Biscayne Pres.tiff:3or4kl4x13tuuug3Byamue2s4b

< End of report >
  • 0

Advertisements

#11
Jasmyne
Posted 25 January 2013 - 04:06 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts

Good Afternoon, Jasmyne! My laptop opens fast, connects to the web fast, opens everything fast, and closes fast. All thanks to you! :>)

That's good to hear!! and You're welcome. Let me know if you have any other problems after this. :)

Step 1 OTL Fix

Warning: This fix is relevant for this system and no other. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

1. Please copy all of the text in the code box below. To do this, highlight everything inside the code box, right click and click Copy.

:Commands
[CREATERESTOREPOINT]

:OTL
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.

:Commands
[emptytemp]

2. Please re-open Posted Image on your desktop.
3. Place the mouse pointer inside the Posted Image textbox, right click and click Paste. This will put the above script inside the textbox.
4. Click the Posted Image button.
5. Let the program run unhindered.
6. OTL may ask to reboot the machine. Please do so if asked.
7. Click the Posted Image button.
8. A report will open. Copy and Paste that report in your next reply.
9. If the machine reboots, the log will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, (where mmddyyyy_hhmmss is the date of the tool run).
10. Run OTL again and click the Posted Image button. Post the log it produces in your next reply.

Step 2 Security Check
Download Security Check from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

  • 0

#12
Vicky227
Posted 26 January 2013 - 04:29 PM

Vicky227

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Hello, Jasmyne! Hope you are having good weather today! Lovely here in South Florida. I Just finished following your last two instructions. Here are the results:

All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 2843 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: Vicky
->Temp folder emptied: 79802276 bytes
->Temporary Internet Files folder emptied: 1434556904 bytes
->Java cache emptied: 21517410 bytes
->Google Chrome cache emptied: 432003657 bytes
->Flash cache emptied: 49484 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 186663 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 66784 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes
RecycleBin emptied: 200 bytes

Total Files Cleaned = 1,877.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01262013_151842

Files\Folders moved on Reboot...
C:\Users\Vicky\AppData\Local\Temp\ehmsas.txt moved successfully.
C:\Users\Vicky\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...




Results of screen317's Security Check version 0.99.57
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
McAfee Anti-Virus and Anti-Spyware
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Adobe Reader 10.1.5 Adobe Reader out of Date!
````````Process Check: objlist.exe by Laurent````````
McAfee Online Backup MOBKbackup.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 1%
[b][u]````````````````````End of Log``````````````````
  • 0

#13
Jasmyne
Posted 26 January 2013 - 04:49 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts

Hello, Jasmyne! Hope you are having good weather today! Lovely here in South Florida.

Glad you're having a nice day today! It's cloudy and in the mid-40's here today but it's supposed 70 tomorrow so I'm looking forward to that. This time of year I enjoy those as much as possible because our weather is so crazy you never know what you're going to get!

Could you please re-open OTL and click the Quick Scan button and post that log so I can be sure everything is completely gone from it. :)

Thank you,

Jasmyne
  • 0

#14
Vicky227
Posted 26 January 2013 - 04:51 PM

Vicky227

    Member

  • Topic Starter
  • Member
  • PipPip
  • 19 posts
Uh-oh. :wacko: I missed your instruction to run OTL again (#10) and post the log. Doing that now, will then repeat the Security Check and re-post that log.
  • 0

#15
Jasmyne
Posted 26 January 2013 - 04:59 PM

Jasmyne

    Trusted Helper

  • Malware Removal
  • 2,010 posts
It's okay, I will just need the OTL quick scan log, the Security Check won't change from the one you've posted already. :)
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP