Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Virus/Malware?Trojan? [Solved]

Started by darlinbassmaster , Jan 28 2013 05:23 PM

This topic is locked

#16
darlinbassmaster

Posted 29 January 2013 - 08:07 PM

Member

Topic Starter
Member
39 posts

# AdwCleaner v2.109 - Logfile created 01/29/2013 at 20:35:13
# Updated 26/01/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Darlene - DARLENE-PC
# Boot Mode : Normal
# Running from : C:\Users\Darlene\Downloads\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

Deleted on reboot : C:\Users\Darlene\Software
File Deleted : C:\user.js
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\Users\Darlene\AppData\Roaming\iWin

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\searchqutb
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\5d55da8de53bef47
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Deal Vault_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Deal Vault_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Deal Vault-InternalInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Deal Vault-InternalInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{08858AF6-42AD-4914-95D2-AC3AB0DC8E28}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111981166}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111981166}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1C888195-0160-4883-91B7-294C0CE2F277}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8E9CF769-3D3B-40EB-9E2D-76E7A205E4D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{99ACA0F7-D864-45CB-8C40-FD42A077E7CA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform [FunWebProducts]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16438

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/ --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main - Start Page] = hxxp://websearch.good-results.info/ --> hxxp://www.google.com

-\\ Mozilla Firefox v18.0.1 (en-US)

File : C:\Users\Darlene\AppData\Roaming\Mozilla\Firefox\Profiles\9j309dhz.default\prefs.js

C:\Users\Darlene\AppData\Roaming\Mozilla\Firefox\Profiles\9j309dhz.default\user.js ... Deleted !

Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Deleted : user_pref("aol_toolbar.default.search.check", false);
Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Deleted : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v24.0.1312.56

File : C:\Users\Darlene\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.15] : homepage = "hxxp://websearch.good-results.info/",
Deleted [l.19] : urls_to_restore_on_startup = [ "hxxp://websearch.good-results.info/" ]
Deleted [l.59] : icon_url = "hxxp://www.ask.com/favicon.ico",
Deleted [l.65] : search_url = "hxxp://nortonsafe.search.ask.com/web?q={searchTerms}&o=15527&prt=360&am[...]
Deleted [l.1996] : homepage = "hxxp://websearch.good-results.info/",
Deleted [l.2576] : urls_to_restore_on_startup = [ "hxxp://websearch.good-results.info/" ]

*************************

AdwCleaner[R1].txt - [7272 octets] - [29/01/2013 20:34:08]
AdwCleaner[S1].txt - [7343 octets] - [29/01/2013 20:35:13]

########## EOF - C:\AdwCleaner[S1].txt - [7403 octets] ##########

I am still having issues with some of my windows programs working. I am not sure what that may be.

#17
emeraldnzl

Posted 29 January 2013 - 08:48 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello darlinbassmaster,

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

#18
darlinbassmaster

Posted 30 January 2013 - 10:12 AM

Member

Topic Starter
Member
39 posts

11:07:36.0742 3024 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
11:07:37.0647 3024 ============================================================
11:07:37.0662 3024 Current date / time: 2013/01/30 11:07:37.0647
11:07:37.0662 3024 SystemInfo:
11:07:37.0662 3024
11:07:37.0662 3024 OS Version: 6.1.7601 ServicePack: 1.0
11:07:37.0662 3024 Product type: Workstation
11:07:37.0662 3024 ComputerName: DARLENE-PC
11:07:37.0662 3024 UserName: Darlene
11:07:37.0662 3024 Windows directory: C:\Windows
11:07:37.0662 3024 System windows directory: C:\Windows
11:07:37.0662 3024 Running under WOW64
11:07:37.0662 3024 Processor architecture: Intel x64
11:07:37.0662 3024 Number of processors: 2
11:07:37.0662 3024 Page size: 0x1000
11:07:37.0662 3024 Boot type: Normal boot
11:07:37.0662 3024 ============================================================
11:07:37.0959 3024 BG loaded
11:07:38.0676 3024 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:07:38.0723 3024 ============================================================
11:07:38.0723 3024 \Device\Harddisk0\DR0:
11:07:38.0723 3024 MBR partitions:
11:07:38.0723 3024 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1800800, BlocksNum 0x32000
11:07:38.0723 3024 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1832800, BlocksNum 0x1B992800
11:07:38.0723 3024 ============================================================
11:07:38.0942 3024 C: <-> \Device\Harddisk0\DR0\Partition2
11:07:38.0942 3024 ============================================================
11:07:38.0942 3024 Initialize success
11:07:38.0942 3024 ============================================================
11:07:59.0409 4804 ============================================================
11:07:59.0409 4804 Scan started
11:07:59.0409 4804 Mode: Manual; SigCheck; TDLFS;
11:07:59.0409 4804 ============================================================
11:08:00.0126 4804 ================ Scan system memory ========================
11:08:00.0126 4804 System memory - ok
11:08:00.0126 4804 ================ Scan services =============================
11:08:00.0329 4804 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:08:00.0470 4804 1394ohci - ok
11:08:00.0501 4804 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:08:00.0532 4804 ACPI - ok
11:08:00.0563 4804 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:08:00.0641 4804 AcpiPmi - ok
11:08:00.0735 4804 [ 3FD8DC2C9735C2AA70155102CFB93EDA ] AdobeActiveFileMonitor7.0 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
11:08:00.0766 4804 AdobeActiveFileMonitor7.0 - ok
11:08:00.0828 4804 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:08:00.0844 4804 AdobeARMservice - ok
11:08:01.0000 4804 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:08:01.0016 4804 AdobeFlashPlayerUpdateSvc - ok
11:08:01.0062 4804 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:08:01.0094 4804 adp94xx - ok
11:08:01.0109 4804 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:08:01.0140 4804 adpahci - ok
11:08:01.0172 4804 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:08:01.0187 4804 adpu320 - ok
11:08:01.0250 4804 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
11:08:01.0265 4804 AdvancedSystemCareService6 - ok
11:08:01.0312 4804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:08:01.0452 4804 AeLookupSvc - ok
11:08:01.0515 4804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:08:01.0562 4804 AFD - ok
11:08:01.0608 4804 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:08:01.0624 4804 agp440 - ok
11:08:01.0655 4804 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:08:01.0718 4804 ALG - ok
11:08:01.0749 4804 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:08:01.0780 4804 aliide - ok
11:08:01.0796 4804 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:08:01.0827 4804 amdide - ok
11:08:01.0842 4804 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:08:01.0889 4804 AmdK8 - ok
11:08:01.0905 4804 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:08:01.0936 4804 AmdPPM - ok
11:08:01.0967 4804 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:08:02.0810 4804 amdsata - ok
11:08:02.0841 4804 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:08:02.0872 4804 amdsbs - ok
11:08:02.0888 4804 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:08:02.0903 4804 amdxata - ok
11:08:02.0966 4804 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
11:08:03.0028 4804 AppHostSvc - ok
11:08:03.0059 4804 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:08:03.0200 4804 AppID - ok
11:08:03.0231 4804 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:08:03.0309 4804 AppIDSvc - ok
11:08:03.0340 4804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:08:03.0402 4804 Appinfo - ok
11:08:03.0434 4804 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:08:03.0449 4804 arc - ok
11:08:03.0465 4804 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:08:03.0496 4804 arcsas - ok
11:08:03.0621 4804 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:08:03.0668 4804 aspnet_state - ok
11:08:03.0683 4804 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:08:03.0761 4804 AsyncMac - ok
11:08:03.0808 4804 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:08:03.0824 4804 atapi - ok
11:08:03.0902 4804 [ 0B034E43E0B4A33BB5624C28EFE3C6ED ] athr C:\Windows\system32\DRIVERS\athrx.sys
11:08:03.0980 4804 athr - ok
11:08:04.0026 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:08:04.0104 4804 AudioEndpointBuilder - ok
11:08:04.0120 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:08:04.0167 4804 AudioSrv - ok
11:08:04.0167 4804 AVGIDSHA - ok
11:08:04.0214 4804 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
11:08:04.0229 4804 Avgloga - ok
11:08:04.0276 4804 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:08:04.0354 4804 AxInstSV - ok
11:08:04.0385 4804 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:08:04.0432 4804 b06bdrv - ok
11:08:04.0463 4804 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:08:04.0510 4804 b57nd60a - ok
11:08:04.0541 4804 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:08:04.0604 4804 BDESVC - ok
11:08:04.0619 4804 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:08:04.0682 4804 Beep - ok
11:08:04.0744 4804 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:08:04.0806 4804 BFE - ok
11:08:04.0869 4804 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
11:08:04.0947 4804 BITS - ok
11:08:04.0978 4804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:08:05.0009 4804 blbdrive - ok
11:08:05.0056 4804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:08:05.0103 4804 bowser - ok
11:08:05.0134 4804 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:08:05.0165 4804 BrFiltLo - ok
11:08:05.0181 4804 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:08:05.0228 4804 BrFiltUp - ok
11:08:05.0259 4804 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:08:05.0306 4804 BridgeMP - ok
11:08:05.0337 4804 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:08:05.0384 4804 Browser - ok
11:08:05.0399 4804 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:08:05.0462 4804 Brserid - ok
11:08:05.0493 4804 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:08:05.0524 4804 BrSerWdm - ok
11:08:05.0540 4804 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:08:05.0571 4804 BrUsbMdm - ok
11:08:05.0586 4804 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:08:05.0618 4804 BrUsbSer - ok
11:08:05.0633 4804 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:08:05.0664 4804 BTHMODEM - ok
11:08:05.0696 4804 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:08:05.0742 4804 bthserv - ok
11:08:05.0805 4804 Canon IJ Wireless Setup Assistant - ok
11:08:05.0820 4804 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
11:08:05.0883 4804 CAXHWAZL - ok
11:08:05.0945 4804 [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_NST C:\Windows\system32\drivers\NSTx64\7DD02010.021\ccSetx64.sys
11:08:05.0961 4804 ccSet_NST - ok
11:08:05.0992 4804 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:08:06.0023 4804 cdfs - ok
11:08:06.0070 4804 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
11:08:06.0086 4804 cdrom - ok
11:08:06.0132 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:08:06.0179 4804 CertPropSvc - ok
11:08:06.0226 4804 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:08:06.0257 4804 circlass - ok
11:08:06.0288 4804 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:08:06.0320 4804 CLFS - ok
11:08:06.0366 4804 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:08:06.0398 4804 clr_optimization_v2.0.50727_32 - ok
11:08:06.0429 4804 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:08:06.0444 4804 clr_optimization_v2.0.50727_64 - ok
11:08:06.0522 4804 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:08:06.0616 4804 clr_optimization_v4.0.30319_32 - ok
11:08:06.0647 4804 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:08:06.0710 4804 clr_optimization_v4.0.30319_64 - ok
11:08:06.0741 4804 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:08:06.0788 4804 CmBatt - ok
11:08:06.0850 4804 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:08:06.0866 4804 cmdide - ok
11:08:06.0912 4804 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
11:08:06.0959 4804 CNG - ok
11:08:07.0037 4804 [ 0D23C3312838EEA1ED55D5F135BCA613 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
11:08:07.0068 4804 CnxtHdAudService - ok
11:08:07.0100 4804 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:08:07.0115 4804 Compbatt - ok
11:08:07.0146 4804 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:08:07.0178 4804 CompositeBus - ok
11:08:07.0193 4804 COMSysApp - ok
11:08:07.0209 4804 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:08:07.0224 4804 crcdisk - ok
11:08:07.0256 4804 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:08:07.0318 4804 CryptSvc - ok
11:08:07.0365 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:08:07.0443 4804 DcomLaunch - ok
11:08:07.0490 4804 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:08:07.0552 4804 defragsvc - ok
11:08:07.0583 4804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:08:07.0661 4804 DfsC - ok
11:08:07.0692 4804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:08:07.0755 4804 Dhcp - ok
11:08:07.0817 4804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:08:07.0911 4804 discache - ok
11:08:07.0958 4804 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:08:07.0989 4804 Disk - ok
11:08:08.0036 4804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:08:08.0207 4804 Dnscache - ok
11:08:08.0301 4804 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:08:08.0457 4804 dot3svc - ok
11:08:08.0535 4804 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:08:08.0613 4804 DPS - ok
11:08:08.0660 4804 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:08:08.0722 4804 drmkaud - ok
11:08:09.0018 4804 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:08:09.0050 4804 DXGKrnl - ok
11:08:09.0143 4804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:08:09.0237 4804 EapHost - ok
11:08:09.0564 4804 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:08:09.0736 4804 ebdrv - ok
11:08:09.0752 4804 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:08:09.0814 4804 EFS - ok
11:08:09.0923 4804 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:08:10.0001 4804 ehRecvr - ok
11:08:10.0048 4804 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:08:10.0079 4804 ehSched - ok
11:08:10.0126 4804 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:08:10.0157 4804 elxstor - ok
11:08:10.0313 4804 [ 7C35C6865957289D9EFE6CC73F4AB2E1 ] ePowerSvc C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
11:08:10.0344 4804 ePowerSvc - ok
11:08:10.0376 4804 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:08:10.0422 4804 ErrDev - ok
11:08:10.0500 4804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:08:10.0594 4804 EventSystem - ok
11:08:10.0641 4804 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:08:10.0719 4804 exfat - ok
11:08:10.0750 4804 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:08:10.0828 4804 fastfat - ok
11:08:11.0000 4804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:08:11.0078 4804 Fax - ok
11:08:11.0109 4804 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:08:11.0171 4804 fdc - ok
11:08:11.0234 4804 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:08:11.0327 4804 fdPHost - ok
11:08:11.0343 4804 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:08:11.0421 4804 FDResPub - ok
11:08:11.0483 4804 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:08:11.0530 4804 FileInfo - ok
11:08:11.0717 4804 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
11:08:11.0733 4804 FileMonitor - ok
11:08:11.0764 4804 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:08:11.0889 4804 Filetrace - ok
11:08:12.0092 4804 [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:08:12.0123 4804 FLEXnet Licensing Service - ok
11:08:12.0170 4804 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:08:12.0201 4804 flpydisk - ok
11:08:12.0248 4804 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:08:12.0279 4804 FltMgr - ok
11:08:12.0419 4804 [ 5B92E2B067F64DC53698EB84966B3F0D ] FontCache C:\Windows\system32\FntCache.dll
11:08:12.0482 4804 FontCache - ok
11:08:12.0528 4804 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:08:12.0544 4804 FontCache3.0.0.0 - ok
11:08:12.0575 4804 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:08:12.0606 4804 FsDepends - ok
11:08:12.0622 4804 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:08:12.0638 4804 Fs_Rec - ok
11:08:12.0684 4804 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:08:12.0700 4804 fvevol - ok
11:08:12.0716 4804 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:08:12.0731 4804 gagp30kx - ok
11:08:12.0809 4804 [ 58F9EE8357271A5529CCCBD35A80E599 ] GameConsoleService C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe
11:08:12.0840 4804 GameConsoleService - ok
11:08:12.0887 4804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:08:12.0965 4804 gpsvc - ok
11:08:13.0106 4804 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
11:08:13.0137 4804 Greg_Service - ok
11:08:13.0246 4804 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:13.0277 4804 gupdate - ok
11:08:13.0293 4804 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:08:13.0308 4804 gupdatem - ok
11:08:13.0324 4804 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:08:13.0402 4804 hcw85cir - ok
11:08:13.0433 4804 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:08:13.0480 4804 HdAudAddService - ok
11:08:13.0496 4804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:08:13.0527 4804 HDAudBus - ok
11:08:13.0542 4804 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:08:13.0574 4804 HidBatt - ok
11:08:13.0589 4804 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:08:13.0620 4804 HidBth - ok
11:08:13.0652 4804 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:08:13.0714 4804 HidIr - ok
11:08:13.0745 4804 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
11:08:13.0808 4804 hidserv - ok
11:08:13.0839 4804 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:08:13.0870 4804 HidUsb - ok
11:08:13.0901 4804 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:08:13.0995 4804 hkmsvc - ok
11:08:14.0026 4804 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:08:14.0073 4804 HomeGroupListener - ok
11:08:14.0120 4804 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:08:14.0151 4804 HomeGroupProvider - ok
11:08:14.0182 4804 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys
11:08:14.0244 4804 HP8207_8307 - ok
11:08:14.0291 4804 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:08:14.0322 4804 HpSAMD - ok
11:08:14.0603 4804 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
11:08:14.0634 4804 HsfXAudioService - ok
11:08:14.0806 4804 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
11:08:14.0868 4804 HSF_DPV - ok
11:08:14.0993 4804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:08:15.0087 4804 HTTP - ok
11:08:15.0118 4804 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:08:15.0134 4804 hwpolicy - ok
11:08:15.0165 4804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:08:15.0180 4804 i8042prt - ok
11:08:15.0227 4804 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
11:08:15.0243 4804 IAANTMON - ok
11:08:15.0290 4804 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
11:08:15.0305 4804 iaStor - ok
11:08:15.0383 4804 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:08:15.0430 4804 iaStorV - ok
11:08:15.0492 4804 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:08:15.0539 4804 idsvc - ok
11:08:15.0882 4804 [ 2D18C9E1F23970DE32D78D3B1CDDA0A7 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:08:16.0023 4804 igfx - ok
11:08:16.0070 4804 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:08:16.0085 4804 iirsp - ok
11:08:16.0148 4804 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:08:16.0194 4804 IKEEXT - ok
11:08:16.0288 4804 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
11:08:16.0319 4804 IMFservice - ok
11:08:16.0475 4804 [ 8C7FA71CB1EBCD3EDE8958D27B1BF0B4 ] int15.sys C:\Windows\System32\OEM\Factory\int15.sys
11:08:16.0506 4804 int15.sys - ok
11:08:16.0538 4804 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
11:08:16.0600 4804 IntcHdmiAddService - ok
11:08:16.0647 4804 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:08:16.0694 4804 intelide - ok
11:08:16.0740 4804 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:08:16.0818 4804 intelppm - ok
11:08:16.0881 4804 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:08:16.0943 4804 IPBusEnum - ok
11:08:16.0974 4804 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:08:17.0037 4804 IpFilterDriver - ok
11:08:17.0099 4804 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:08:17.0162 4804 iphlpsvc - ok
11:08:17.0208 4804 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:08:17.0240 4804 IPMIDRV - ok
11:08:17.0286 4804 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:08:17.0364 4804 IPNAT - ok
11:08:17.0380 4804 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:08:17.0411 4804 IRENUM - ok
11:08:17.0442 4804 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:08:17.0458 4804 isapnp - ok
11:08:17.0536 4804 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:08:17.0583 4804 iScsiPrt - ok
11:08:17.0598 4804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:08:17.0614 4804 kbdclass - ok
11:08:17.0630 4804 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:08:17.0692 4804 kbdhid - ok
11:08:17.0723 4804 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:08:17.0739 4804 KeyIso - ok
11:08:17.0801 4804 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:08:17.0832 4804 KSecDD - ok
11:08:17.0895 4804 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:08:17.0926 4804 KSecPkg - ok
11:08:17.0957 4804 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:08:18.0004 4804 ksthunk - ok
11:08:18.0051 4804 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:08:18.0113 4804 KtmRm - ok
11:08:18.0144 4804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:08:18.0207 4804 LanmanServer - ok
11:08:18.0254 4804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:08:18.0316 4804 LanmanWorkstation - ok
11:08:18.0332 4804 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:08:18.0378 4804 lltdio - ok
11:08:18.0425 4804 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:08:18.0488 4804 lltdsvc - ok
11:08:18.0519 4804 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:08:18.0581 4804 lmhosts - ok
11:08:18.0659 4804 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:08:18.0690 4804 LSI_FC - ok
11:08:18.0706 4804 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:08:18.0737 4804 LSI_SAS - ok
11:08:18.0768 4804 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:08:18.0784 4804 LSI_SAS2 - ok
11:08:18.0800 4804 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:08:18.0815 4804 LSI_SCSI - ok
11:08:18.0846 4804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:08:18.0940 4804 luafv - ok
11:08:18.0987 4804 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
11:08:19.0018 4804 mcdbus - ok
11:08:19.0049 4804 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:08:19.0080 4804 Mcx2Svc - ok
11:08:19.0112 4804 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
11:08:19.0143 4804 mdmxsdk - ok
11:08:19.0174 4804 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:08:19.0221 4804 megasas - ok
11:08:19.0236 4804 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:08:19.0283 4804 MegaSR - ok
11:08:19.0346 4804 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
11:08:19.0377 4804 Microsoft Office Groove Audit Service - ok
11:08:19.0424 4804 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:08:19.0486 4804 MMCSS - ok
11:08:19.0533 4804 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:08:19.0580 4804 Modem - ok
11:08:19.0595 4804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:08:19.0626 4804 monitor - ok
11:08:19.0658 4804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:08:19.0689 4804 mouclass - ok
11:08:19.0704 4804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:08:19.0736 4804 mouhid - ok
11:08:19.0782 4804 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:08:19.0798 4804 mountmgr - ok
11:08:19.0814 4804 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:08:19.0845 4804 mpio - ok
11:08:19.0860 4804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:08:19.0907 4804 mpsdrv - ok
11:08:20.0032 4804 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:08:20.0110 4804 MpsSvc - ok
11:08:20.0157 4804 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:08:20.0188 4804 MRxDAV - ok
11:08:20.0235 4804 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:08:20.0250 4804 mrxsmb - ok
11:08:20.0282 4804 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:08:20.0313 4804 mrxsmb10 - ok
11:08:20.0328 4804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:08:20.0344 4804 mrxsmb20 - ok
11:08:20.0391 4804 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:08:20.0438 4804 msahci - ok
11:08:20.0469 4804 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:08:20.0516 4804 msdsm - ok
11:08:20.0547 4804 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:08:20.0594 4804 MSDTC - ok
11:08:20.0625 4804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:08:20.0687 4804 Msfs - ok
11:08:20.0718 4804 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:08:20.0812 4804 mshidkmdf - ok
11:08:20.0843 4804 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:08:20.0859 4804 msisadrv - ok
11:08:20.0874 4804 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:08:20.0937 4804 MSiSCSI - ok
11:08:20.0952 4804 msiserver - ok
11:08:20.0984 4804 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:08:21.0030 4804 MSKSSRV - ok
11:08:21.0046 4804 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:08:21.0093 4804 MSPCLOCK - ok
11:08:21.0108 4804 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:08:21.0171 4804 MSPQM - ok
11:08:21.0218 4804 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:08:21.0249 4804 MsRPC - ok
11:08:21.0280 4804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:08:21.0296 4804 mssmbios - ok
11:08:21.0358 4804 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:08:21.0436 4804 MSTEE - ok
11:08:21.0452 4804 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:08:21.0483 4804 MTConfig - ok
11:08:21.0514 4804 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:08:21.0530 4804 Mup - ok
11:08:21.0576 4804 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:08:21.0670 4804 napagent - ok
11:08:21.0701 4804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:08:21.0732 4804 NativeWifiP - ok
11:08:21.0826 4804 [ 4BA84C832E0741A294C4444556DFE993 ] NCO C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe
11:08:21.0842 4804 NCO - ok
11:08:21.0966 4804 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:08:22.0060 4804 NDIS - ok
11:08:22.0076 4804 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:08:22.0154 4804 NdisCap - ok
11:08:22.0169 4804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:08:22.0232 4804 NdisTapi - ok
11:08:22.0263 4804 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:08:22.0294 4804 Ndisuio - ok
11:08:22.0356 4804 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:08:22.0434 4804 NdisWan - ok
11:08:22.0450 4804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:08:22.0512 4804 NDProxy - ok
11:08:22.0544 4804 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:08:22.0606 4804 NetBIOS - ok
11:08:22.0637 4804 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:08:22.0731 4804 NetBT - ok
11:08:22.0746 4804 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:08:22.0762 4804 Netlogon - ok
11:08:22.0809 4804 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:08:22.0887 4804 Netman - ok
11:08:22.0934 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:22.0980 4804 NetMsmqActivator - ok
11:08:22.0980 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:23.0012 4804 NetPipeActivator - ok
11:08:23.0043 4804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:08:23.0105 4804 netprofm - ok
11:08:23.0121 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:23.0136 4804 NetTcpActivator - ok
11:08:23.0152 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:23.0168 4804 NetTcpPortSharing - ok
11:08:23.0199 4804 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:08:23.0214 4804 nfrd960 - ok
11:08:23.0292 4804 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:08:23.0324 4804 NlaSvc - ok
11:08:23.0370 4804 Norton PC Checkup Application Launcher - ok
11:08:23.0386 4804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:08:23.0433 4804 Npfs - ok
11:08:23.0464 4804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:08:23.0526 4804 nsi - ok
11:08:23.0558 4804 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:08:23.0604 4804 nsiproxy - ok
11:08:23.0745 4804 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:08:23.0823 4804 Ntfs - ok
11:08:23.0854 4804 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:08:23.0901 4804 Null - ok
11:08:23.0948 4804 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:08:23.0963 4804 nvraid - ok
11:08:23.0979 4804 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:08:24.0010 4804 nvstor - ok
11:08:24.0026 4804 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:08:24.0057 4804 nv_agp - ok
11:08:24.0104 4804 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
11:08:24.0150 4804 O2FLASH - ok
11:08:24.0166 4804 [ 26DA4B40670AD436F7DAEC053A2A9ECA ] O2MDRDR C:\Windows\system32\DRIVERS\o2mdx64.sys
11:08:24.0182 4804 O2MDRDR - ok
11:08:24.0197 4804 [ 2E69A2ADC12DAA7AC7B4FFD8601E88B0 ] O2SDRDR C:\Windows\system32\DRIVERS\o2sdx64.sys
11:08:24.0213 4804 O2SDRDR - ok
11:08:24.0369 4804 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:08:24.0400 4804 odserv - ok
11:08:24.0447 4804 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:08:24.0494 4804 ohci1394 - ok
11:08:24.0572 4804 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:08:24.0618 4804 ose - ok
11:08:24.0665 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:08:24.0743 4804 p2pimsvc - ok
11:08:24.0790 4804 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:08:24.0821 4804 p2psvc - ok
11:08:24.0852 4804 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:08:24.0884 4804 Parport - ok
11:08:24.0930 4804 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:08:24.0962 4804 partmgr - ok
11:08:24.0977 4804 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:08:25.0040 4804 PcaSvc - ok
11:08:25.0086 4804 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:08:25.0133 4804 pci - ok
11:08:25.0149 4804 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:08:25.0164 4804 pciide - ok
11:08:25.0196 4804 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:08:25.0227 4804 pcmcia - ok
11:08:25.0274 4804 [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
11:08:25.0305 4804 pcouffin - ok
11:08:25.0320 4804 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:08:25.0336 4804 pcw - ok
11:08:25.0383 4804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:08:25.0430 4804 PEAUTH - ok
11:08:25.0539 4804 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:08:25.0570 4804 PerfHost - ok
11:08:25.0648 4804 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:08:25.0773 4804 pla - ok
11:08:25.0866 4804 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:08:25.0944 4804 PlugPlay - ok
11:08:25.0960 4804 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:08:25.0976 4804 PNRPAutoReg - ok
11:08:25.0991 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:08:26.0022 4804 PNRPsvc - ok
11:08:26.0100 4804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:08:26.0163 4804 PolicyAgent - ok
11:08:26.0210 4804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:08:26.0256 4804 Power - ok
11:08:26.0303 4804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:08:26.0366 4804 PptpMiniport - ok
11:08:26.0412 4804 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:08:26.0459 4804 Processor - ok
11:08:26.0490 4804 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:08:26.0537 4804 ProfSvc - ok
11:08:26.0553 4804 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:08:26.0568 4804 ProtectedStorage - ok
11:08:26.0631 4804 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:08:26.0678 4804 Psched - ok
11:08:26.0724 4804 [ A6BF0A9B5A30D743623CA0D3BE35DF05 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
11:08:26.0756 4804 PxHlpa64 - ok
11:08:26.0802 4804 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:08:26.0880 4804 ql2300 - ok
11:08:26.0912 4804 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:08:26.0943 4804 ql40xx - ok
11:08:26.0974 4804 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:08:27.0005 4804 QWAVE - ok
11:08:27.0036 4804 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:08:27.0099 4804 QWAVEdrv - ok
11:08:27.0114 4804 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:08:27.0192 4804 RasAcd - ok
11:08:27.0208 4804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:08:27.0286 4804 RasAgileVpn - ok
11:08:27.0317 4804 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:08:27.0380 4804 RasAuto - ok
11:08:27.0411 4804 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:08:27.0458 4804 Rasl2tp - ok
11:08:27.0505 4804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:08:27.0567 4804 RasMan - ok
11:08:27.0598 4804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:08:27.0676 4804 RasPppoe - ok
11:08:27.0692 4804 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:08:27.0739 4804 RasSstp - ok
11:08:27.0770 4804 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:08:27.0832 4804 rdbss - ok
11:08:27.0879 4804 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:08:27.0926 4804 rdpbus - ok
11:08:27.0957 4804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:08:28.0035 4804 RDPCDD - ok
11:08:28.0066 4804 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:08:28.0129 4804 RDPENCDD - ok
11:08:28.0160 4804 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:08:28.0207 4804 RDPREFMP - ok
11:08:28.0269 4804 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:08:28.0300 4804 RdpVideoMiniport - ok
11:08:28.0363 4804 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:08:28.0409 4804 RDPWD - ok
11:08:28.0441 4804 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:08:28.0472 4804 rdyboost - ok
11:08:28.0565 4804 [ 5F9AC3243C206EC95F32E4348AE67C13 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
11:08:28.0597 4804 RegFilter - ok
11:08:28.0659 4804 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:08:28.0721 4804 RemoteAccess - ok
11:08:28.0753 4804 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:08:28.0815 4804 RemoteRegistry - ok
11:08:28.0846 4804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:08:28.0955 4804 RpcEptMapper - ok
11:08:28.0987 4804 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:08:29.0018 4804 RpcLocator - ok
11:08:29.0096 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
11:08:29.0143 4804 RpcSs - ok
11:08:29.0189 4804 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:08:29.0236 4804 rspndr - ok
11:08:29.0252 4804 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:08:29.0283 4804 SamSs - ok
11:08:29.0486 4804 SASDIFSV - ok
11:08:29.0486 4804 SASKUTIL - ok
11:08:29.0533 4804 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:08:29.0579 4804 sbp2port - ok
11:08:29.0626 4804 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:08:29.0720 4804 SCardSvr - ok
11:08:29.0751 4804 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:08:29.0813 4804 scfilter - ok
11:08:30.0001 4804 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:08:30.0079 4804 Schedule - ok
11:08:30.0157 4804 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:08:30.0219 4804 SCPolicySvc - ok
11:08:30.0281 4804 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
11:08:30.0344 4804 sdbus - ok
11:08:30.0406 4804 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:08:30.0437 4804 SDRSVC - ok
11:08:30.0484 4804 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:08:30.0531 4804 secdrv - ok
11:08:30.0562 4804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:08:30.0625 4804 seclogon - ok
11:08:30.0656 4804 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
11:08:30.0734 4804 SENS - ok
11:08:30.0765 4804 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:08:30.0827 4804 SensrSvc - ok
11:08:30.0859 4804 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:08:30.0874 4804 Serenum - ok
11:08:30.0921 4804 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:08:30.0937 4804 Serial - ok
11:08:30.0968 4804 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:08:31.0015 4804 sermouse - ok
11:08:31.0077 4804 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:08:31.0124 4804 SessionEnv - ok
11:08:31.0171 4804 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:08:31.0233 4804 sffdisk - ok
11:08:31.0249 4804 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:08:31.0280 4804 sffp_mmc - ok
11:08:31.0311 4804 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:08:31.0358 4804 sffp_sd - ok
11:08:31.0389 4804 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:08:31.0420 4804 sfloppy - ok
11:08:31.0467 4804 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:08:31.0545 4804 SharedAccess - ok
11:08:31.0623 4804 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:08:31.0685 4804 ShellHWDetection - ok
11:08:31.0748 4804 [ E9E830D540EDEDED650F906628468548 ] simptcp C:\Windows\System32\tcpsvcs.exe
11:08:31.0810 4804 simptcp - ok
11:08:31.0841 4804 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:08:31.0888 4804 SiSRaid2 - ok
11:08:31.0919 4804 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:08:31.0951 4804 SiSRaid4 - ok
11:08:31.0966 4804 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:08:32.0013 4804 Smb - ok
11:08:32.0029 4804 SMR311 - ok
11:08:32.0075 4804 [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP C:\Windows\System32\snmp.exe
11:08:32.0122 4804 SNMP - ok
11:08:32.0138 4804 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:08:32.0169 4804 SNMPTRAP - ok
11:08:32.0216 4804 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:08:32.0231 4804 spldr - ok
11:08:32.0278 4804 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:08:32.0356 4804 Spooler - ok
11:08:32.0575 4804 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:08:32.0684 4804 sppsvc - ok
11:08:32.0715 4804 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:08:32.0809 4804 sppuinotify - ok
11:08:32.0902 4804 [ 893C6AEC077665F438C1B570E82655EC ] SRS_HDAL_Service C:\Windows\system32\drivers\SRS_HDAL_amd64.sys
11:08:32.0933 4804 SRS_HDAL_Service - ok
11:08:33.0011 4804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:08:33.0074 4804 srv - ok
11:08:33.0121 4804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:08:33.0152 4804 srv2 - ok
11:08:33.0199 4804 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
11:08:33.0245 4804 SrvHsfHDA - ok
11:08:33.0323 4804 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
11:08:33.0386 4804 SrvHsfV92 - ok
11:08:33.0495 4804 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
11:08:33.0542 4804 SrvHsfWinac - ok
11:08:33.0604 4804 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:08:33.0635 4804 srvnet - ok
11:08:33.0698 4804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:08:33.0776 4804 SSDPSRV - ok
11:08:33.0791 4804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:08:33.0838 4804 SstpSvc - ok
11:08:33.0869 4804 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:08:33.0901 4804 stexstor - ok
11:08:33.0979 4804 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:08:34.0057 4804 stisvc - ok
11:08:34.0103 4804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:08:34.0119 4804 swenum - ok
11:08:34.0197 4804 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:08:34.0275 4804 swprv - ok
11:08:34.0322 4804 [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:08:34.0353 4804 SynTP - ok
11:08:34.0571 4804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:08:34.0634 4804 SysMain - ok
11:08:34.0681 4804 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:08:34.0712 4804 TabletInputService - ok
11:08:34.0759 4804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:08:34.0805 4804 TapiSrv - ok
11:08:34.0837 4804 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:08:34.0883 4804 TBS - ok
11:08:35.0086 4804 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:08:35.0211 4804 Tcpip - ok
11:08:35.0461 4804 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:08:35.0523 4804 TCPIP6 - ok
11:08:35.0570 4804 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:08:35.0601 4804 tcpipreg - ok
11:08:35.0663 4804 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:08:35.0726 4804 TDPIPE - ok
11:08:35.0757 4804 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:08:35.0804 4804 TDTCP - ok
11:08:35.0851 4804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:08:35.0897 4804 tdx - ok
11:08:35.0944 4804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:08:35.0960 4804 TermDD - ok
11:08:36.0022 4804 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:08:36.0085 4804 TermService - ok
11:08:36.0116 4804 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:08:36.0147 4804 Themes - ok
11:08:36.0194 4804 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:08:36.0225 4804 THREADORDER - ok
11:08:36.0272 4804 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:08:36.0334 4804 TrkWks - ok
11:08:36.0397 4804 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:08:36.0475 4804 TrustedInstaller - ok
11:08:36.0521 4804 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:08:36.0615 4804 tssecsrv - ok
11:08:36.0646 4804 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:08:36.0693 4804 TsUsbFlt - ok
11:08:36.0724 4804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:08:36.0787 4804 tunnel - ok
11:08:36.0818 4804 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:08:36.0833 4804 uagp35 - ok
11:08:36.0880 4804 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:08:36.0958 4804 udfs - ok
11:08:37.0005 4804 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:08:37.0052 4804 UI0Detect - ok
11:08:37.0099 4804 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:08:37.0130 4804 uliagpkx - ok
11:08:37.0177 4804 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:08:37.0208 4804 umbus - ok
11:08:37.0239 4804 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:08:37.0286 4804 UmPass - ok
11:08:37.0348 4804 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
11:08:37.0379 4804 Updater Service - ok
11:08:37.0442 4804 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:08:37.0520 4804 upnphost - ok
11:08:37.0551 4804 [ 241080F1B28E68F0D00F8F1066A3780D ] UrlFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
11:08:37.0567 4804 UrlFilter - ok
11:08:37.0613 4804 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:08:37.0645 4804 usbccgp - ok
11:08:37.0660 4804 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:08:37.0707 4804 usbcir - ok
11:08:37.0754 4804 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:08:37.0801 4804 usbehci - ok
11:08:37.0816 4804 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:08:37.0879 4804 usbhub - ok
11:08:37.0910 4804 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:08:37.0941 4804 usbohci - ok
11:08:37.0988 4804 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:08:38.0035 4804 usbprint - ok
11:08:38.0081 4804 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:08:38.0097 4804 usbscan - ok
11:08:38.0144 4804 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:08:38.0191 4804 USBSTOR - ok
11:08:38.0237 4804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:08:38.0269 4804 usbuhci - ok
11:08:38.0300 4804 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:08:38.0331 4804 usbvideo - ok
11:08:38.0378 4804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:08:38.0425 4804 UxSms - ok
11:08:38.0456 4804 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:08:38.0471 4804 VaultSvc - ok
11:08:38.0518 4804 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:08:38.0534 4804 vdrvroot - ok
11:08:38.0627 4804 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:08:38.0705 4804 vds - ok
11:08:38.0737 4804 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:08:38.0768 4804 vga - ok
11:08:38.0783 4804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:08:38.0846 4804 VgaSave - ok
11:08:38.0877 4804 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:08:38.0908 4804 vhdmp - ok
11:08:38.0939 4804 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:08:38.0955 4804 viaide - ok
11:08:38.0986 4804 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:08:39.0002 4804 volmgr - ok
11:08:39.0064 4804 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:08:39.0111 4804 volmgrx - ok
11:08:39.0189 4804 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:08:39.0220 4804 volsnap - ok
11:08:39.0251 4804 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:08:39.0267 4804 vsmraid - ok
11:08:39.0454 4804 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:08:39.0579 4804 VSS - ok
11:08:39.0610 4804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:08:39.0641 4804 vwifibus - ok
11:08:39.0657 4804 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:08:39.0719 4804 vwififlt - ok
11:08:39.0766 4804 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:08:39.0829 4804 W32Time - ok
11:08:39.0907 4804 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
11:08:39.0969 4804 W3SVC - ok
11:08:40.0000 4804 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:08:40.0031 4804 WacomPen - ok
11:08:40.0078 4804 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:08:40.0172 4804 WANARP - ok
11:08:40.0172 4804 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:08:40.0219 4804 Wanarpv6 - ok
11:08:40.0265 4804 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
11:08:40.0281 4804 WAS - ok
11:08:40.0390 4804 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:08:40.0499 4804 WatAdminSvc - ok
11:08:40.0624 4804 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:08:40.0702 4804 wbengine - ok
11:08:40.0765 4804 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:08:40.0827 4804 WbioSrvc - ok
11:08:40.0889 4804 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:08:40.0921 4804 wcncsvc - ok
11:08:40.0936 4804 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:08:41.0014 4804 WcsPlugInService - ok
11:08:41.0045 4804 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:08:41.0061 4804 Wd - ok
11:08:41.0139 4804 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:08:41.0186 4804 Wdf01000 - ok
11:08:41.0217 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:08:41.0357 4804 WdiServiceHost - ok
11:08:41.0373 4804 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:08:41.0389 4804 WdiSystemHost - ok
11:08:41.0482 4804 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:08:41.0529 4804 WebClient - ok
11:08:41.0576 4804 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:08:41.0623 4804 Wecsvc - ok
11:08:41.0654 4804 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:08:41.0701 4804 wercplsupport - ok
11:08:41.0732 4804 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:08:41.0779 4804 WerSvc - ok
11:08:41.0810 4804 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:08:41.0857 4804 WfpLwf - ok
11:08:41.0888 4804 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:08:41.0903 4804 WIMMount - ok
11:08:41.0950 4804 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
11:08:41.0981 4804 winachsf - ok
11:08:42.0013 4804 WinDefend - ok
11:08:42.0044 4804 WinHttpAutoProxySvc - ok
11:08:42.0106 4804 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:08:42.0153 4804 Winmgmt - ok
11:08:42.0278 4804 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:08:42.0418 4804 WinRM - ok
11:08:42.0481 4804 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:08:42.0512 4804 WinUsb - ok
11:08:42.0574 4804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:08:42.0668 4804 Wlansvc - ok
11:08:43.0198 4804 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:08:43.0276 4804 wlidsvc - ok
11:08:43.0323 4804 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:08:43.0370 4804 WmiAcpi - ok
11:08:43.0432 4804 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:08:43.0463 4804 wmiApSrv - ok
11:08:43.0510 4804 WMPNetworkSvc - ok
11:08:43.0541 4804 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:08:43.0588 4804 WPCSvc - ok
11:08:43.0651 4804 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:08:43.0682 4804 WPDBusEnum - ok
11:08:43.0729 4804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:08:43.0775 4804 ws2ifsl - ok
11:08:43.0822 4804 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
11:08:43.0869 4804 wscsvc - ok
11:08:43.0931 4804 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
11:08:43.0963 4804 WSDPrintDevice - ok
11:08:43.0994 4804 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
11:08:44.0025 4804 WSDScan - ok
11:08:44.0025 4804 WSearch - ok
11:08:44.0134 4804 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:08:44.0243 4804 wuauserv - ok
11:08:44.0290 4804 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:08:44.0321 4804 WudfPf - ok
11:08:44.0353 4804 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:08:44.0384 4804 wudfsvc - ok
11:08:44.0415 4804 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:08:44.0462 4804 WwanSvc - ok
11:08:44.0493 4804 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
11:08:44.0524 4804 XAudio - ok
11:08:44.0602 4804 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:08:44.0618 4804 YahooAUService - ok
11:08:44.0665 4804 [ E1E858AEF2ED420CBB7605D3ECCEC69A ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
11:08:44.0680 4804 yukonw7 - ok
11:08:44.0711 4804 ================ Scan global ===============================
11:08:44.0743 4804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:08:44.0774 4804 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
11:08:44.0789 4804 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
11:08:44.0805 4804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:08:44.0852 4804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:08:44.0852 4804 [Global] - ok
11:08:44.0852 4804 ================ Scan MBR ==================================
11:08:44.0867 4804 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:08:45.0195 4804 \Device\Harddisk0\DR0 - ok
11:08:45.0195 4804 ================ Scan VBR ==================================
11:08:45.0211 4804 [ 1BFB6AC7F1835F4029F9C3BB5A7F4132 ] \Device\Harddisk0\DR0\Partition1
11:08:45.0211 4804 \Device\Harddisk0\DR0\Partition1 - ok
11:08:45.0242 4804 [ D7CA39E1EC179A2B6B6085AFE312F047 ] \Device\Harddisk0\DR0\Partition2
11:08:45.0242 4804 \Device\Harddisk0\DR0\Partition2 - ok
11:08:45.0242 4804 ================ Scan active images ========================
11:08:45.0242 4804 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
11:08:45.0242 4804 C:\Windows\System32\drivers\crashdmp.sys - ok
11:08:45.0257 4804 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
11:08:45.0257 4804 C:\Windows\System32\drivers\dumpfve.sys - ok
11:08:45.0257 4804 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] C:\Windows\System32\drivers\iaStor.sys
11:08:45.0257 4804 C:\Windows\System32\drivers\iaStor.sys - ok
11:08:45.0273 4804 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
11:08:45.0273 4804 C:\Windows\System32\drivers\cdrom.sys - ok
11:08:45.0273 4804 [ 248C952C82DF1E23775432774CBB20F1 ] C:\Windows\System32\drivers\NSTx64\7DD02010.021\ccSetx64.sys
11:08:45.0273 4804 C:\Windows\System32\drivers\NSTx64\7DD02010.021\ccSetx64.sys - ok
11:08:45.0289 4804 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
11:08:45.0289 4804 C:\Windows\System32\drivers\beep.sys - ok
11:08:45.0289 4804 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
11:08:45.0289 4804 C:\Windows\System32\drivers\null.sys - ok
11:08:45.0289 4804 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
11:08:45.0289 4804 C:\Windows\System32\drivers\msfs.sys - ok
11:08:45.0304 4804 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
11:08:45.0304 4804 C:\Windows\System32\drivers\RDPCDD.sys - ok
11:08:45.0304 4804 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
11:08:45.0304 4804 C:\Windows\System32\drivers\RDPENCDD.sys - ok
11:08:45.0320 4804 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
11:08:45.0320 4804 C:\Windows\System32\drivers\RDPREFMP.sys - ok
11:08:45.0320 4804 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
11:08:45.0320 4804 C:\Windows\System32\drivers\vga.sys - ok
11:08:45.0335 4804 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
11:08:45.0335 4804 C:\Windows\System32\drivers\videoprt.sys - ok
11:08:45.0335 4804 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
11:08:45.0335 4804 C:\Windows\System32\drivers\watchdog.sys - ok
11:08:45.0351 4804 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
11:08:45.0351 4804 C:\Windows\System32\drivers\npfs.sys - ok
11:08:45.0351 4804 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
11:08:45.0351 4804 C:\Windows\System32\drivers\tdi.sys - ok
11:08:45.0367 4804 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
11:08:45.0367 4804 C:\Windows\System32\drivers\tdx.sys - ok
11:08:45.0367 4804 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
11:08:45.0367 4804 C:\Windows\System32\drivers\afd.sys - ok
11:08:45.0382 4804 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
11:08:45.0382 4804 C:\Windows\System32\drivers\netbt.sys - ok
11:08:45.0382 4804 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
11:08:45.0382 4804 C:\Windows\System32\drivers\ws2ifsl.sys - ok
11:08:45.0382 4804 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
11:08:45.0382 4804 C:\Windows\System32\drivers\wfplwf.sys - ok
11:08:45.0398 4804 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
11:08:45.0398 4804 C:\Windows\System32\drivers\pacer.sys - ok
11:08:45.0398 4804 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
11:08:45.0398 4804 C:\Windows\System32\drivers\vwififlt.sys - ok
11:08:45.0413 4804 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
11:08:45.0413 4804 C:\Windows\System32\drivers\netbios.sys - ok
11:08:45.0413 4804 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
11:08:45.0413 4804 C:\Windows\System32\drivers\wanarp.sys - ok
11:08:45.0429 4804 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
11:08:45.0429 4804 C:\Windows\System32\drivers\termdd.sys - ok
11:08:45.0429 4804 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
11:08:45.0429 4804 C:\Windows\System32\drivers\rdbss.sys - ok
11:08:45.0445 4804 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
11:08:45.0445 4804 C:\Windows\System32\drivers\mssmbios.sys - ok
11:08:45.0445 4804 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
11:08:45.0445 4804 C:\Windows\System32\drivers\nsiproxy.sys - ok
11:08:45.0460 4804 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
11:08:45.0460 4804 C:\Windows\System32\drivers\discache.sys - ok
11:08:45.0460 4804 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
11:08:45.0460 4804 C:\Windows\System32\drivers\dfsc.sys - ok
11:08:45.0460 4804 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
11:08:45.0460 4804 C:\Windows\System32\drivers\blbdrive.sys - ok
11:08:45.0476 4804 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
11:08:45.0476 4804 C:\Windows\System32\drivers\tunnel.sys - ok
11:08:45.0476 4804 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
11:08:45.0476 4804 C:\Windows\System32\ntdll.dll - ok
11:08:45.0491 4804 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
11:08:45.0491 4804 C:\Windows\System32\smss.exe - ok
11:08:45.0491 4804 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
11:08:45.0491 4804 C:\Windows\System32\autochk.exe - ok
11:08:45.0507 4804 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
11:08:45.0507 4804 C:\Windows\System32\shlwapi.dll - ok
11:08:45.0507 4804 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
11:08:45.0507 4804 C:\Windows\System32\lpk.dll - ok
11:08:45.0523 4804 [ 2D18C9E1F23970DE32D78D3B1CDDA0A7 ] C:\Windows\System32\drivers\igdkmd64.sys
11:08:45.0523 4804 C:\Windows\System32\drivers\igdkmd64.sys - ok
11:08:45.0523 4804 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
11:08:45.0523 4804 C:\Windows\System32\comdlg32.dll - ok
11:08:45.0538 4804 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
11:08:45.0538 4804 C:\Windows\System32\drivers\dxgkrnl.sys - ok
11:08:45.0538 4804 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
11:08:45.0538 4804 C:\Windows\System32\drivers\dxgmms1.sys - ok
11:08:45.0538 4804 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
11:08:45.0538 4804 C:\Windows\System32\imagehlp.dll - ok
11:08:45.0554 4804 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
11:08:45.0554 4804 C:\Windows\System32\drivers\usbport.sys - ok
11:08:45.0554 4804 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
11:08:45.0554 4804 C:\Windows\System32\drivers\usbuhci.sys - ok
11:08:45.0569 4804 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
11:08:45.0569 4804 C:\Windows\System32\drivers\usbehci.sys - ok
11:08:45.0569 4804 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
11:08:45.0569 4804 C:\Windows\System32\drivers\hdaudbus.sys - ok
11:08:45.0585 4804 [ 0B034E43E0B4A33BB5624C28EFE3C6ED ] C:\Windows\System32\drivers\athrx.sys
11:08:45.0585 4804 C:\Windows\System32\drivers\athrx.sys - ok
11:08:45.0585 4804 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
11:08:45.0585 4804 C:\Windows\System32\drivers\vwifibus.sys - ok
11:08:45.0601 4804 [ E1E858AEF2ED420CBB7605D3ECCEC69A ] C:\Windows\System32\drivers\yk62x64.sys
11:08:45.0601 4804 C:\Windows\System32\drivers\yk62x64.sys - ok
11:08:45.0601 4804 [ 26DA4B40670AD436F7DAEC053A2A9ECA ] C:\Windows\System32\drivers\o2mdx64.sys
11:08:45.0601 4804 C:\Windows\System32\drivers\o2mdx64.sys - ok
11:08:45.0601 4804 [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
11:08:45.0601 4804 C:\Windows\System32\drivers\scsiport.sys - ok
11:08:45.0616 4804 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
11:08:45.0616 4804 C:\Windows\System32\difxapi.dll - ok
11:08:45.0616 4804 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
11:08:45.0616 4804 C:\Windows\System32\drivers\i8042prt.sys - ok
11:08:45.0632 4804 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
11:08:45.0632 4804 C:\Windows\System32\drivers\kbdclass.sys - ok
11:08:45.0632 4804 [ 2E69A2ADC12DAA7AC7B4FFD8601E88B0 ] C:\Windows\System32\drivers\o2sdx64.sys
11:08:45.0632 4804 C:\Windows\System32\drivers\o2sdx64.sys - ok
11:08:45.0647 4804 [ E0EBEEA1D6278FB7D634249DAEA660AA ] C:\Windows\System32\urlmon.dll
11:08:45.0647 4804 C:\Windows\System32\urlmon.dll - ok
11:08:45.0647 4804 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
11:08:45.0647 4804 C:\Windows\System32\oleaut32.dll - ok
11:08:45.0663 4804 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
11:08:45.0663 4804 C:\Windows\System32\user32.dll - ok
11:08:45.0663 4804 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
11:08:45.0663 4804 C:\Windows\System32\clbcatq.dll - ok
11:08:45.0663 4804 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
11:08:45.0663 4804 C:\Windows\System32\msvcrt.dll - ok
11:08:45.0679 4804 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
11:08:45.0679 4804 C:\Windows\System32\usp10.dll - ok
11:08:45.0679 4804 [ 573ED6EEA42AB00917C53BCF8CA64737 ] C:\Windows\System32\wininet.dll
11:08:45.0679 4804 C:\Windows\System32\wininet.dll - ok
11:08:45.0694 4804 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
11:08:45.0694 4804 C:\Windows\System32\ole32.dll - ok
11:08:45.0694 4804 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
11:08:45.0694 4804 C:\Windows\System32\gdi32.dll - ok
11:08:45.0710 4804 [ 2C76E0490C67DCD4019611BCEBE8BF2B ] C:\Windows\System32\iertutil.dll
11:08:45.0710 4804 C:\Windows\System32\iertutil.dll - ok
11:08:45.0710 4804 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
11:08:45.0710 4804 C:\Windows\System32\msctf.dll - ok
11:08:45.0725 4804 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
11:08:45.0725 4804 C:\Windows\System32\normaliz.dll - ok
11:08:45.0725 4804 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
11:08:45.0725 4804 C:\Windows\System32\sechost.dll - ok
11:08:45.0725 4804 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
11:08:45.0725 4804 C:\Windows\System32\Wldap32.dll - ok
11:08:45.0741 4804 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
11:08:45.0741 4804 C:\Windows\System32\advapi32.dll - ok
11:08:45.0741 4804 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
11:08:45.0741 4804 C:\Windows\System32\kernel32.dll - ok
11:08:45.0757 4804 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
11:08:45.0757 4804 C:\Windows\System32\nsi.dll - ok
11:08:45.0757 4804 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
11:08:45.0757 4804 C:\Windows\System32\shell32.dll - ok
11:08:45.0772 4804 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
11:08:45.0772 4804 C:\Windows\System32\rpcrt4.dll - ok
11:08:45.0772 4804 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
11:08:45.0772 4804 C:\Windows\System32\imm32.dll - ok
11:08:45.0788 4804 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
11:08:45.0788 4804 C:\Windows\System32\psapi.dll - ok
11:08:45.0788 4804 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
11:08:45.0788 4804 C:\Windows\System32\setupapi.dll - ok
11:08:45.0788 4804 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
11:08:45.0788 4804 C:\Windows\System32\ws2_32.dll - ok
11:08:45.0803 4804 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
11:08:45.0803 4804 C:\Windows\System32\wintrust.dll - ok
11:08:45.0803 4804 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
11:08:45.0803 4804 C:\Windows\System32\comctl32.dll - ok
11:08:45.0819 4804 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
11:08:45.0819 4804 C:\Windows\System32\devobj.dll - ok
11:08:45.0819 4804 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
11:08:45.0819 4804 C:\Windows\System32\cfgmgr32.dll - ok
11:08:45.0835 4804 [ 89F50F3F257219A9D3F609A5D7324EE5 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
11:08:45.0835 4804 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
11:08:45.0835 4804 [ 76D5ACDFB103ED967A1E09B7FE65918B ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
11:08:45.0835 4804 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
11:08:45.0835 4804 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
11:08:45.0835 4804 C:\Windows\System32\crypt32.dll - ok
11:08:45.0850 4804 [ 5A6CFCDA5D8402153436381E398A9E9B ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
11:08:45.0850 4804 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
11:08:45.0850 4804 [ 441BC6DCC581F3AEAA2F3DF3AC3CD31B ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
11:08:45.0850 4804 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
11:08:45.0866 4804 [ 69D72DC5D952E517A98A7FB0F6EC5DBB ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
11:08:45.0866 4804 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
11:08:45.0866 4804 [ 11CAE72F84BE030DF970D47A9FBAFE5E ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
11:08:45.0866 4804 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
11:08:45.0881 4804 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
11:08:45.0881 4804 C:\Windows\System32\KernelBase.dll - ok
11:08:45.0881 4804 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
11:08:45.0881 4804 C:\Windows\System32\msasn1.dll - ok
11:08:45.0897 4804 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
11:08:45.0897 4804 C:\Windows\SysWOW64\normaliz.dll - ok
11:08:45.0897 4804 [ BCF305959B53B200CEB2AD25AD22F8A7 ] C:\Windows\System32\drivers\SynTP.sys
11:08:45.0897 4804 C:\Windows\System32\drivers\SynTP.sys - ok
11:08:45.0913 4804 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
11:08:45.0913 4804 C:\Windows\System32\drivers\usbd.sys - ok
11:08:45.0913 4804 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
11:08:45.0913 4804 C:\Windows\System32\drivers\intelppm.sys - ok
11:08:45.0913 4804 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
11:08:45.0913 4804 C:\Windows\System32\drivers\mouclass.sys - ok
11:08:45.0928 4804 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
11:08:45.0928 4804 C:\Windows\System32\drivers\CmBatt.sys - ok
11:08:45.0928 4804 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
11:08:45.0928 4804 C:\Windows\System32\drivers\wmiacpi.sys - ok
11:08:45.0944 4804 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
11:08:45.0944 4804 C:\Windows\System32\drivers\agilevpn.sys - ok
11:08:45.0944 4804 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
11:08:45.0944 4804 C:\Windows\System32\drivers\CompositeBus.sys - ok
11:08:45.0959 4804 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
11:08:45.0959 4804 C:\Windows\System32\drivers\ndistapi.sys - ok
11:08:45.0959 4804 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
11:08:45.0959 4804 C:\Windows\System32\drivers\ndiswan.sys - ok
11:08:45.0975 4804 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
11:08:45.0975 4804 C:\Windows\System32\drivers\rasl2tp.sys - ok
11:08:45.0975 4804 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
11:08:45.0975 4804 C:\Windows\System32\drivers\raspppoe.sys - ok
11:08:45.0991 4804 [ 79D51E7F5926E8CE1B3EBECEBAE28CFF ] C:\Windows\System32\drivers\mcdbus.sys
11:08:45.0991 4804 C:\Windows\System32\drivers\mcdbus.sys - ok
11:08:45.0991 4804 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
11:08:45.0991 4804 C:\Windows\System32\drivers\raspptp.sys - ok
11:08:46.0006 4804 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
11:08:46.0006 4804 C:\Windows\System32\drivers\rassstp.sys - ok
11:08:46.0006 4804 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
11:08:46.0006 4804 C:\Windows\System32\drivers\ks.sys - ok
11:08:46.0006 4804 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
11:08:46.0006 4804 C:\Windows\System32\drivers\swenum.sys - ok
11:08:46.0022 4804 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
11:08:46.0022 4804 C:\Windows\System32\drivers\umbus.sys - ok
11:08:46.0022 4804 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
11:08:46.0022 4804 C:\Windows\System32\drivers\usbhub.sys - ok
11:08:46.0037 4804 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
11:08:46.0037 4804 C:\Windows\System32\drivers\ndproxy.sys - ok
11:08:46.0037 4804 [ 0D23C3312838EEA1ED55D5F135BCA613 ] C:\Windows\System32\drivers\CHDRT64.sys
11:08:46.0037 4804 C:\Windows\System32\drivers\CHDRT64.sys - ok
11:08:46.0053 4804 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
11:08:46.0053 4804 C:\Windows\System32\drivers\drmk.sys - ok
11:08:46.0053 4804 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
11:08:46.0053 4804 C:\Windows\System32\drivers\portcls.sys - ok
11:08:46.0069 4804 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] C:\Windows\System32\drivers\CAXHWAZL.sys
11:08:46.0069 4804 C:\Windows\System32\drivers\CAXHWAZL.sys - ok
11:08:46.0069 4804 [ 26C5D00321937E49B6BC91029947D094 ] C:\Windows\System32\drivers\CAX_DPV.sys
11:08:46.0069 4804 C:\Windows\System32\drivers\CAX_DPV.sys - ok
11:08:46.0069 4804 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] C:\Windows\System32\drivers\CAX_CNXT.sys
11:08:46.0069 4804 C:\Windows\System32\drivers\CAX_CNXT.sys - ok
11:08:46.0084 4804 [ D485D3BD3E2179AA86853A182F70699F ] C:\Windows\System32\drivers\IntcHdmi.sys
11:08:46.0084 4804 C:\Windows\System32\drivers\IntcHdmi.sys - ok
11:08:46.0084 4804 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
11:08:46.0084 4804 C:\Windows\System32\drivers\modem.sys - ok
11:08:46.0100 4804 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
11:08:46.0100 4804 C:\Windows\System32\drivers\dxapi.sys - ok
11:08:46.0100 4804 [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
11:08:46.0100 4804 C:\Windows\System32\win32k.sys - ok
11:08:46.0115 4804 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
11:08:46.0115 4804 C:\Windows\System32\csrsrv.dll - ok
11:08:46.0115 4804 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
11:08:46.0115 4804 C:\Windows\System32\csrss.exe - ok
11:08:46.0115 4804 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
11:08:46.0115 4804 C:\Windows\System32\basesrv.dll - ok
11:08:46.0131 4804 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\System32\winsrv.dll
11:08:46.0131 4804 C:\Windows\System32\winsrv.dll - ok
11:08:46.0131 4804 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
11:08:46.0131 4804 C:\Windows\System32\drivers\usbccgp.sys - ok
11:08:46.0147 4804 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
11:08:46.0147 4804 C:\Windows\System32\drivers\ksthunk.sys - ok
11:08:46.0147 4804 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
11:08:46.0147 4804 C:\Windows\System32\drivers\usbvideo.sys - ok
11:08:46.0162 4804 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
11:08:46.0162 4804 C:\Windows\System32\drivers\hidclass.sys - ok
11:08:46.0162 4804 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
11:08:46.0162 4804 C:\Windows\System32\drivers\hidparse.sys - ok
11:08:46.0178 4804 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
11:08:46.0178 4804 C:\Windows\System32\drivers\hidusb.sys - ok
11:08:46.0178 4804 [ 3015B37029AD15C67EBCA5053C422F90 ] C:\Windows\System32\drivers\HP8207_8307.sys
11:08:46.0178 4804 C:\Windows\System32\drivers\HP8207_8307.sys - ok
11:08:46.0193 4804 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
11:08:46.0193 4804 C:\Windows\System32\drivers\monitor.sys - ok
11:08:46.0193 4804 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
11:08:46.0193 4804 C:\Windows\System32\drivers\mouhid.sys - ok
11:08:46.0193 4804 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
11:08:46.0193 4804 C:\Windows\System32\sxssrv.dll - ok
11:08:46.0209 4804 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
11:08:46.0209 4804 C:\Windows\System32\tsddd.dll - ok
11:08:46.0209 4804 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
11:08:46.0209 4804 C:\Windows\System32\wininit.exe - ok
11:08:46.0225 4804 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
11:08:46.0225 4804 C:\Windows\System32\cdd.dll - ok
11:08:46.0225 4804 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
11:08:46.0225 4804 C:\Windows\System32\KBDUS.DLL - ok
11:08:46.0240 4804 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
11:08:46.0240 4804 C:\Windows\System32\profapi.dll - ok
11:08:46.0240 4804 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
11:08:46.0240 4804 C:\Windows\System32\RpcRtRemote.dll - ok
11:08:46.0256 4804 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
11:08:46.0256 4804 C:\Windows\System32\sxs.dll - ok
11:08:46.0256 4804 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
11:08:46.0256 4804 C:\Windows\System32\WlS0WndH.dll - ok
11:08:46.0256 4804 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
11:08:46.0256 4804 C:\Windows\System32\cryptbase.dll - ok
11:08:46.0271 4804 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
11:08:46.0271 4804 C:\Windows\System32\apphelp.dll - ok
11:08:46.0271 4804 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
11:08:46.0271 4804 C:\Windows\System32\lsass.exe - ok
11:08:46.0287 4804 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
11:08:46.0287 4804 C:\Windows\System32\lsm.exe - ok
11:08:46.0287 4804 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
11:08:46.0287 4804 C:\Windows\System32\services.exe - ok
11:08:46.0303 4804 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
11:08:46.0303 4804 C:\Windows\System32\scesrv.dll - ok
11:08:46.0303 4804 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
11:08:46.0303 4804 C:\Windows\System32\scext.dll - ok
11:08:46.0318 4804 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
11:08:46.0318 4804 C:\Windows\System32\secur32.dll - ok
11:08:46.0318 4804 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
11:08:46.0318 4804 C:\Windows\System32\sspicli.dll - ok
11:08:46.0334 4804 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
11:08:46.0334 4804 C:\Windows\System32\sspisrv.dll - ok
11:08:46.0334 4804 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
11:08:46.0334 4804 C:\Windows\System32\lsasrv.dll - ok
11:08:46.0349 4804 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
11:08:46.0349 4804 C:\Windows\System32\sysntfy.dll - ok
11:08:46.0349 4804 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
11:08:46.0349 4804 C:\Windows\System32\wmsgapi.dll - ok
11:08:46.0349 4804 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
11:08:46.0349 4804 C:\Windows\System32\samsrv.dll - ok
11:08:46.0365 4804 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
11:08:46.0365 4804 C:\Windows\System32\srvcli.dll - ok
11:08:46.0365 4804 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
11:08:46.0365 4804 C:\Windows\System32\cryptdll.dll - ok
11:08:46.0381 4804 [ 17C6B51CBCCDED95B3CC14E22791F85E ] C:\Windows\System32\drivers\TsUsbFlt.sys
11:08:46.0381 4804 C:\Windows\System32\drivers\TsUsbFlt.sys - ok
11:08:46.0381 4804 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
11:08:46.0381 4804 C:\Windows\System32\wevtapi.dll - ok
11:08:46.0381 4804 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
11:08:46.0381 4804 C:\Windows\System32\cngaudit.dll - ok
11:08:46.0396 4804 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
11:08:46.0396 4804 C:\Windows\System32\authz.dll - ok
11:08:46.0396 4804 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
11:08:46.0396 4804 C:\Windows\System32\ncrypt.dll - ok
11:08:46.0412 4804 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
11:08:46.0412 4804 C:\Windows\System32\bcrypt.dll - ok
11:08:46.0412 4804 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
11:08:46.0412 4804 C:\Windows\System32\msprivs.dll - ok
11:08:46.0427 4804 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
11:08:46.0427 4804 C:\Windows\System32\atmfd.dll - ok
11:08:46.0427 4804 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
11:08:46.0427 4804 C:\Windows\System32\netjoin.dll - ok
11:08:46.0443 4804 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
11:08:46.0443 4804 C:\Windows\System32\negoexts.dll - ok
11:08:46.0443 4804 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
11:08:46.0443 4804 C:\Windows\System32\kerberos.dll - ok
11:08:46.0443 4804 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
11:08:46.0443 4804 C:\Windows\System32\cryptsp.dll - ok
11:08:46.0459 4804 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
11:08:46.0459 4804 C:\Windows\System32\mswsock.dll - ok
11:08:46.0459 4804 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
11:08:46.0459 4804 C:\Windows\System32\msv1_0.dll - ok
11:08:46.0474 4804 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
11:08:46.0474 4804 C:\Windows\System32\wship6.dll - ok
11:08:46.0474 4804 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
11:08:46.0474 4804 C:\Windows\System32\netlogon.dll - ok
11:08:46.0490 4804 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
11:08:46.0490 4804 C:\Windows\System32\dnsapi.dll - ok
11:08:46.0490 4804 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
11:08:46.0490 4804 C:\Windows\System32\logoncli.dll - ok
11:08:46.0505 4804 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
11:08:46.0505 4804 C:\Windows\System32\schannel.dll - ok
11:08:46.0505 4804 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
11:08:46.0505 4804 C:\Windows\System32\wdigest.dll - ok
11:08:46.0505 4804 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
11:08:46.0505 4804 C:\Windows\System32\rsaenh.dll - ok
11:08:46.0521 4804 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
11:08:46.0521 4804 C:\Windows\System32\TSpkg.dll - ok
11:08:46.0521 4804 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
11:08:46.0521 4804 C:\Windows\System32\pku2u.dll - ok
11:08:46.0537 4804 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
11:08:46.0537 4804 C:\Windows\System32\LIVESSP.DLL - ok
11:08:46.0537 4804 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
11:08:46.0537 4804 C:\Windows\System32\bcryptprimitives.dll - ok
11:08:46.0552 4804 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
11:08:46.0552 4804 C:\Windows\System32\credssp.dll - ok
11:08:46.0552 4804 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
11:08:46.0552 4804 C:\Windows\System32\efslsaext.dll - ok
11:08:46.0568 4804 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
11:08:46.0568 4804 C:\Windows\System32\scecli.dll - ok
11:08:46.0568 4804 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
11:08:46.0568 4804 C:\Windows\System32\ubpm.dll - ok
11:08:46.0583 4804 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
11:08:46.0583 4804 C:\Windows\System32\winsta.dll - ok
11:08:46.0583 4804 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
11:08:46.0583 4804 C:\Windows\System32\svchost.exe - ok
11:08:46.0599 4804 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
11:08:46.0599 4804 C:\Windows\System32\umpnpmgr.dll - ok
11:08:46.0599 4804 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
11:08:46.0599 4804 C:\Windows\System32\devrtl.dll - ok
11:08:46.0599 4804 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
11:08:46.0599 4804 C:\Windows\System32\SPInf.dll - ok
11:08:46.0615 4804 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
11:08:46.0615 4804 C:\Windows\System32\gpapi.dll - ok
11:08:46.0615 4804 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
11:08:46.0615 4804 C:\Windows\System32\userenv.dll - ok
11:08:46.0630 4804 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
11:08:46.0630 4804 C:\Windows\System32\pcwum.dll - ok
11:08:46.0630 4804 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
11:08:46.0630 4804 C:\Windows\System32\umpo.dll - ok
11:08:46.0630 4804 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
11:08:46.0630 4804 C:\Windows\System32\powrprof.dll - ok
11:08:46.0646 4804 [ CBFAA333EBA2E402A0439A3A0E5413F3 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
11:08:46.0646 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe - ok
11:08:46.0646 4804 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
11:08:46.0646 4804 C:\Windows\SysWOW64\ntdll.dll - ok
11:08:46.0661 4804 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
11:08:46.0661 4804 C:\Windows\System32\wow64.dll - ok
11:08:46.0661 4804 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
11:08:46.0661 4804 C:\Windows\System32\wow64cpu.dll - ok
11:08:46.0677 4804 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
11:08:46.0677 4804 C:\Windows\System32\wow64win.dll - ok
11:08:46.0677 4804 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
11:08:46.0677 4804 C:\Windows\SysWOW64\kernel32.dll - ok
11:08:46.0693 4804 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
11:08:46.0693 4804 C:\Windows\SysWOW64\KernelBase.dll - ok
11:08:46.0693 4804 [ DDB9BCFF8CBF73638A15579FEC223229 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\rtl120.bpl
11:08:46.0693 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\rtl120.bpl - ok
11:08:46.0708 4804 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
11:08:46.0708 4804 C:\Windows\SysWOW64\oleaut32.dll - ok
11:08:46.0708 4804 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
11:08:46.0708 4804 C:\Windows\SysWOW64\ole32.dll - ok
11:08:46.0708 4804 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
11:08:46.0708 4804 C:\Windows\SysWOW64\msvcrt.dll - ok
11:08:46.0724 4804 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
11:08:46.0724 4804 C:\Windows\SysWOW64\gdi32.dll - ok
11:08:46.0724 4804 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
11:08:46.0724 4804 C:\Windows\SysWOW64\user32.dll - ok
11:08:46.0739 4804 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
11:08:46.0739 4804 C:\Windows\SysWOW64\advapi32.dll - ok
11:08:46.0739 4804 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
11:08:46.0739 4804 C:\Windows\SysWOW64\rpcrt4.dll - ok
11:08:46.0755 4804 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
11:08:46.0755 4804 C:\Windows\SysWOW64\sechost.dll - ok
11:08:46.0755 4804 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
11:08:46.0755 4804 C:\Windows\SysWOW64\cryptbase.dll - ok
11:08:46.0771 4804 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
11:08:46.0771 4804 C:\Windows\SysWOW64\lpk.dll - ok
11:08:46.0771 4804 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
11:08:46.0771 4804 C:\Windows\SysWOW64\sspicli.dll - ok
11:08:46.0786 4804 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
11:08:46.0786 4804 C:\Windows\SysWOW64\usp10.dll - ok
11:08:46.0786 4804 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
11:08:46.0786 4804 C:\Windows\SysWOW64\imagehlp.dll - ok
11:08:46.0786 4804 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
11:08:46.0786 4804 C:\Windows\SysWOW64\mpr.dll - ok
11:08:46.0802 4804 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
11:08:46.0802 4804 C:\Windows\SysWOW64\version.dll - ok
11:08:46.0802 4804 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
11:08:46.0802 4804 C:\Windows\SysWOW64\nsi.dll - ok
11:08:46.0817 4804 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
11:08:46.0817 4804 C:\Windows\SysWOW64\oleacc.dll - ok
11:08:46.0817 4804 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
11:08:46.0817 4804 C:\Windows\SysWOW64\ws2_32.dll - ok
11:08:46.0833 4804 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
11:08:46.0833 4804 C:\Windows\SysWOW64\wsock32.dll - ok
11:08:46.0833 4804 [ 8290E04F8A4D9594BFB53D520B677B8A ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\vcl120.bpl
11:08:46.0833 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\vcl120.bpl - ok
11:08:46.0849 4804 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
11:08:46.0849 4804 C:\Windows\SysWOW64\msimg32.dll - ok
11:08:46.0849 4804 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
11:08:46.0849 4804 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
11:08:46.0849 4804 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
11:08:46.0849 4804 C:\Windows\SysWOW64\shell32.dll - ok
11:08:46.0864 4804 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
11:08:46.0864 4804 C:\Windows\SysWOW64\shlwapi.dll - ok
11:08:46.0864 4804 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
11:08:46.0864 4804 C:\Windows\SysWOW64\comdlg32.dll - ok
11:08:46.0880 4804 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
11:08:46.0880 4804 C:\Windows\SysWOW64\winspool.drv - ok
11:08:46.0880 4804 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
11:08:46.0880 4804 C:\Windows\SysWOW64\oledlg.dll - ok
11:08:46.0895 4804 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
11:08:46.0895 4804 C:\Windows\SysWOW64\winmm.dll - ok
11:08:46.0895 4804 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
11:08:46.0895 4804 C:\Windows\SysWOW64\imm32.dll - ok
11:08:46.0911 4804 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
11:08:46.0911 4804 C:\Windows\SysWOW64\profapi.dll - ok
11:08:46.0911 4804 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
11:08:46.0911 4804 C:\Windows\SysWOW64\userenv.dll - ok
11:08:46.0911 4804 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
11:08:46.0911 4804 C:\Windows\SysWOW64\msctf.dll - ok
11:08:46.0927 4804 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
11:08:46.0927 4804 C:\Windows\System32\drivers\luafv.sys - ok
11:08:46.0927 4804 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
11:08:46.0927 4804 C:\Windows\System32\rpcss.dll - ok
11:08:46.0942 4804 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
11:08:46.0942 4804 C:\Windows\System32\RpcEpMap.dll - ok
11:08:46.0942 4804 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
11:08:46.0942 4804 C:\Windows\System32\wshqos.dll - ok
11:08:46.0958 4804 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
11:08:46.0958 4804 C:\Windows\System32\WSHTCPIP.DLL - ok
11:08:46.0958 4804 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
11:08:46.0958 4804 C:\Windows\System32\FirewallAPI.dll - ok
11:08:46.0973 4804 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
11:08:46.0973 4804 C:\Windows\System32\version.dll - ok
11:08:46.0973 4804 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
11:08:46.0973 4804 C:\Windows\System32\winlogon.exe - ok
11:08:46.0973 4804 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
11:08:46.0973 4804 C:\Windows\System32\wevtsvc.dll - ok
11:08:46.0989 4804 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
11:08:46.0989 4804 C:\Windows\System32\LogonUI.exe - ok
11:08:46.0989 4804 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
11:08:46.0989 4804 C:\Windows\System32\authui.dll - ok
11:08:47.0005 4804 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
11:08:47.0005 4804 C:\Windows\System32\audiosrv.dll - ok
11:08:47.0005 4804 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
11:08:47.0005 4804 C:\Windows\System32\avrt.dll - ok
11:08:47.0020 4804 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
11:08:47.0020 4804 C:\Windows\System32\mmcss.dll - ok
11:08:47.0020 4804 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
11:08:47.0020 4804 C:\Windows\System32\MMDevAPI.dll - ok
11:08:47.0036 4804 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
11:08:47.0036 4804 C:\Windows\System32\propsys.dll - ok
11:08:47.0036 4804 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
11:08:47.0036 4804 C:\Windows\System32\audiodg.exe - ok
11:08:47.0051 4804 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
11:08:47.0051 4804 C:\Windows\System32\cryptui.dll - ok
11:08:47.0051 4804 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
11:08:47.0051 4804 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
11:08:47.0051 4804 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
11:08:47.0051 4804 C:\Windows\System32\samlib.dll - ok
11:08:47.0067 4804 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
11:08:47.0067 4804 C:\Windows\System32\shacct.dll - ok
11:08:47.0067 4804 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
11:08:47.0067 4804 C:\Windows\System32\uxtheme.dll - ok
11:08:47.0083 4804 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
11:08:47.0083 4804 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
11:08:47.0083 4804 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
11:08:47.0083 4804 C:\Windows\System32\dui70.dll - ok
11:08:47.0098 4804 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
11:08:47.0098 4804 C:\Windows\System32\duser.dll - ok
11:08:47.0098 4804 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
11:08:47.0098 4804 C:\Windows\System32\SndVolSSO.dll - ok
11:08:47.0114 4804 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
11:08:47.0114 4804 C:\Windows\System32\hid.dll - ok
11:08:47.0114 4804 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
11:08:47.0114 4804 C:\Windows\System32\dwmapi.dll - ok
11:08:47.0129 4804 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
11:08:47.0129 4804 C:\Windows\System32\xmllite.dll - ok
11:08:47.0129 4804 [ B4B806BCA03C27785173750E1BFB54C8 ] C:\Windows\System32\WindowsCodecs.dll
11:08:47.0129 4804 C:\Windows\System32\WindowsCodecs.dll - ok
11:08:47.0129 4804 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
11:08:47.0129 4804 C:\Windows\System32\winbrand.dll - ok
11:08:47.0145 4804 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
11:08:47.0145 4804 C:\Windows\System32\VaultCredProvider.dll - ok
11:08:47.0145 4804 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
11:08:47.0145 4804 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
11:08:47.0161 4804 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
11:08:47.0161 4804 C:\Windows\System32\wtsapi32.dll - ok
11:08:47.0161 4804 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
11:08:47.0161 4804 C:\Windows\System32\BioCredProv.dll - ok
11:08:47.0176 4804 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
11:08:47.0176 4804 C:\Windows\System32\credui.dll - ok
11:08:47.0176 4804 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
11:08:47.0176 4804 C:\Windows\System32\winbio.dll - ok
11:08:47.0176 4804 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
11:08:47.0176 4804 C:\Windows\System32\netapi32.dll - ok
11:08:47.0192 4804 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
11:08:47.0192 4804 C:\Windows\System32\netutils.dll - ok
11:08:47.0192 4804 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
11:08:47.0192 4804 C:\Windows\System32\samcli.dll - ok
11:08:47.0207 4804 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
11:08:47.0207 4804 C:\Windows\System32\vaultcli.dll - ok
11:08:47.0207 4804 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
11:08:47.0207 4804 C:\Windows\System32\wkscli.dll - ok
11:08:47.0223 4804 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
11:08:47.0223 4804 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
11:08:47.0223 4804 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
11:08:47.0223 4804 C:\Windows\System32\certCredProvider.dll - ok
11:08:47.0239 4804 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
11:08:47.0239 4804 C:\Windows\System32\rasplap.dll - ok
11:08:47.0239 4804 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
11:08:47.0239 4804 C:\Windows\System32\rasapi32.dll - ok
11:08:47.0254 4804 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
11:08:47.0254 4804 C:\Windows\System32\rasman.dll - ok
11:08:47.0254 4804 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
11:08:47.0254 4804 C:\Windows\System32\rtutils.dll - ok
11:08:47.0254 4804 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
11:08:47.0254 4804 C:\Windows\System32\atl.dll - ok
11:08:47.0270 4804 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
11:08:47.0270 4804 C:\Windows\System32\profsvc.dll - ok
11:08:47.0270 4804 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
11:08:47.0270 4804 C:\Windows\System32\themeservice.dll - ok
11:08:47.0285 4804 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
11:08:47.0285 4804 C:\Windows\System32\adtschema.dll - ok
11:08:47.0285 4804 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
11:08:47.0285 4804 C:\Windows\System32\netprofm.dll - ok
11:08:47.0301 4804 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
11:08:47.0301 4804 C:\Windows\System32\ntmarta.dll - ok
11:08:47.0301 4804 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
11:08:47.0301 4804 C:\Windows\System32\es.dll - ok
11:08:47.0317 4804 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
11:08:47.0317 4804 C:\Windows\System32\comres.dll - ok
11:08:47.0317 4804 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
11:08:47.0317 4804 C:\Windows\System32\Sens.dll - ok
11:08:47.0317 4804 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
11:08:47.0317 4804 C:\Windows\System32\gpsvc.dll - ok
11:08:47.0332 4804 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
11:08:47.0332 4804 C:\Windows\System32\dsrole.dll - ok
11:08:47.0332 4804 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
11:08:47.0332 4804 C:\Windows\System32\nlaapi.dll - ok
11:08:47.0348 4804 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
11:08:47.0348 4804 C:\Windows\System32\slc.dll - ok
11:08:47.0348 4804 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
11:08:47.0348 4804 C:\Windows\System32\drivers\lltdio.sys - ok
11:08:47.0363 4804 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
11:08:47.0363 4804 C:\Windows\System32\uxsms.dll - ok
11:08:47.0363 4804 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
11:08:47.0363 4804 C:\Windows\System32\drivers\nwifi.sys - ok
11:08:47.0379 4804 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
11:08:47.0379 4804 C:\Windows\System32\drivers\ndisuio.sys - ok
11:08:47.0379 4804 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
11:08:47.0379 4804 C:\Windows\System32\drivers\rspndr.sys - ok
11:08:47.0395 4804 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
11:08:47.0395 4804 C:\Windows\System32\dhcpcore.dll - ok
11:08:47.0395 4804 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
11:08:47.0395 4804 C:\Windows\System32\IPHLPAPI.DLL - ok
11:08:47.0410 4804 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
11:08:47.0410 4804 C:\Windows\System32\lmhsvc.dll - ok
11:08:47.0410 4804 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
11:08:47.0410 4804 C:\Windows\System32\nrpsrv.dll - ok
11:08:47.0410 4804 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
11:08:47.0410 4804 C:\Windows\System32\nsisvc.dll - ok
11:08:47.0426 4804 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
11:08:47.0426 4804 C:\Windows\System32\winnsi.dll - ok
11:08:47.0426 4804 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
11:08:47.0426 4804 C:\Windows\System32\dnsrslvr.dll - ok
11:08:47.0441 4804 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
11:08:47.0441 4804 C:\Windows\System32\keyiso.dll - ok
11:08:47.0441 4804 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
11:08:47.0441 4804 C:\Windows\System32\UXInit.dll - ok
11:08:47.0457 4804 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
11:08:47.0457 4804 C:\Windows\System32\dhcpcore6.dll - ok
11:08:47.0457 4804 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
11:08:47.0457 4804 C:\Windows\System32\eapphost.dll - ok
11:08:47.0473 4804 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
11:08:47.0473 4804 C:\Windows\System32\eapsvc.dll - ok
11:08:47.0473 4804 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
11:08:47.0473 4804 C:\Windows\System32\umb.dll - ok
11:08:47.0488 4804 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
11:08:47.0488 4804 C:\Windows\System32\FWPUCLNT.DLL - ok
11:08:47.0488 4804 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
11:08:47.0488 4804 C:\Windows\System32\dnsext.dll - ok
11:08:47.0488 4804 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
11:08:47.0504 4804 C:\Windows\System32\dhcpcsvc.dll - ok
11:08:47.0504 4804 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
11:08:47.0504 4804 C:\Windows\System32\dhcpcsvc6.dll - ok
11:08:47.0504 4804 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
11:08:47.0504 4804 C:\Windows\System32\imageres.dll - ok
11:08:47.0519 4804 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
11:08:47.0519 4804 C:\Windows\System32\wlansvc.dll - ok
11:08:47.0519 4804 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
11:08:47.0519 4804 C:\Windows\System32\wlanmsm.dll - ok
11:08:47.0535 4804 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
11:08:47.0535 4804 C:\Windows\System32\eappprxy.dll - ok
11:08:47.0535 4804 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
11:08:47.0535 4804 C:\Windows\System32\onex.dll - ok
11:08:47.0551 4804 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
11:08:47.0551 4804 C:\Windows\System32\wlansec.dll - ok
11:08:47.0551 4804 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
11:08:47.0551 4804 C:\Windows\System32\eappcfg.dll - ok
11:08:47.0566 4804 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
11:08:47.0566 4804 C:\Windows\System32\wlgpclnt.dll - ok
11:08:47.0566 4804 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
11:08:47.0566 4804 C:\Windows\System32\l2gpstore.dll - ok
11:08:47.0582 4804 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
11:08:47.0582 4804 C:\Windows\System32\wlanutil.dll - ok
11:08:47.0582 4804 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
11:08:47.0582 4804 C:\Windows\System32\WinSCard.dll - ok
11:08:47.0597 4804 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
11:08:47.0597 4804 C:\Windows\System32\msxml6.dll - ok
11:08:47.0613 4804 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
11:08:47.0613 4804 C:\Windows\System32\shsvcs.dll - ok
11:08:47.0613 4804 [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
11:08:47.0613 4804 C:\Windows\System32\wlanext.exe - ok
11:08:47.0629 4804 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
11:08:47.0629 4804 C:\Windows\System32\schedsvc.dll - ok
11:08:47.0629 4804 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
11:08:47.0629 4804 C:\Windows\System32\conhost.exe - ok
11:08:47.0644 4804 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
11:08:47.0644 4804 C:\Windows\System32\ktmw32.dll - ok
11:08:47.0660 4804 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
11:08:47.0660 4804 C:\Windows\System32\fveapi.dll - ok
11:08:47.0660 4804 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
11:08:47.0660 4804 C:\Windows\System32\fvecerts.dll - ok
11:08:47.0675 4804 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
11:08:47.0675 4804 C:\Windows\System32\tbs.dll - ok
11:08:47.0691 4804 [ 98403597390ADEE4284331B1D7D498D7 ] C:\Program Files (x86)\Atheros\AthIhvWlanExt.dll
11:08:47.0691 4804 C:\Program Files (x86)\Atheros\AthIhvWlanExt.dll - ok
11:08:47.0691 4804 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
11:08:47.0691 4804 C:\Windows\System32\taskcomp.dll - ok
11:08:47.0707 4804 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
11:08:47.0707 4804 C:\Windows\System32\wiarpc.dll - ok
11:08:47.0707 4804 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
11:08:47.0707 4804 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
11:08:47.0722 4804 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
11:08:47.0722 4804 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
11:08:47.0738 4804 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
11:08:47.0738 4804 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
11:08:47.0738 4804 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
11:08:47.0738 4804 C:\Windows\System32\wlanapi.dll - ok
11:08:47.0753 4804 [ 00D1675272C6B9CDFABF7E15E2C429A6 ] C:\Program Files (x86)\Atheros\AthIhvWpaP2p.dll
11:08:47.0753 4804 C:\Program Files (x86)\Atheros\AthIhvWpaP2p.dll - ok
11:08:47.0753 4804 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
11:08:47.0753 4804 C:\Windows\System32\MPSSVC.dll - ok
11:08:47.0769 4804 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
11:08:47.0769 4804 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
11:08:47.0785 4804 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
11:08:47.0785 4804 C:\Windows\System32\drivers\fltMgr.sys - ok
11:08:47.0785 4804 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
11:08:47.0785 4804 C:\Windows\System32\PSHED.DLL - ok
11:08:47.0800 4804 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
11:08:47.0800 4804 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
11:08:47.0800 4804 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
11:08:47.0800 4804 C:\Windows\System32\netcfgx.dll - ok
11:08:47.0816 4804 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
11:08:47.0816 4804 C:\Windows\System32\drivers\http.sys - ok
11:08:47.0816 4804 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
11:08:47.0816 4804 C:\Windows\System32\spoolsv.exe - ok
11:08:47.0831 4804 [ 8AE99EBE30E8338907361018D9030835 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
11:08:47.0831 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe - ok
11:08:47.0831 4804 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
11:08:47.0831 4804 C:\Windows\System32\BFE.DLL - ok
11:08:47.0847 4804 [ DD82EB68D97944B192C7803EB585B03C ] C:\Program Files (x86)\IObit\IObit Malware Fighter\rtl120.bpl
11:08:47.0847 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\rtl120.bpl - ok
11:08:47.0847 4804 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
11:08:47.0847 4804 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
11:08:47.0863 4804 [ 773EBD87010A6F644869A59D98792C9C ] C:\Program Files (x86)\IObit\IObit Malware Fighter\vcl120.bpl
11:08:47.0863 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\vcl120.bpl - ok
11:08:47.0863 4804 [ 8A73E259446AEADF64EA884F2BCE4E69 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\datastate.dll
11:08:47.0863 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\datastate.dll - ok
11:08:47.0863 4804 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
11:08:47.0863 4804 C:\Windows\System32\drivers\bowser.sys - ok
11:08:47.0878 4804 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
11:08:47.0878 4804 C:\Windows\System32\drivers\mpsdrv.sys - ok
11:08:47.0878 4804 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
11:08:47.0878 4804 C:\Windows\System32\drivers\mrxsmb.sys - ok
11:08:47.0894 4804 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
11:08:47.0894 4804 C:\Windows\System32\drivers\mrxsmb10.sys - ok
11:08:47.0894 4804 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
11:08:47.0894 4804 C:\Windows\System32\drivers\mrxsmb20.sys - ok
11:08:47.0909 4804 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
11:08:47.0909 4804 C:\Windows\System32\wfapigp.dll - ok
11:08:47.0909 4804 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
11:08:47.0909 4804 C:\Windows\System32\wkssvc.dll - ok
11:08:47.0925 4804 [ CA62AE004E98374BF7F082CD765EEA02 ] C:\Windows\System32\snmp.exe
11:08:47.0925 4804 C:\Windows\System32\snmp.exe - ok
11:08:47.0925 4804 [ 3FD8DC2C9735C2AA70155102CFB93EDA ] C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
11:08:47.0925 4804 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe - ok
11:08:47.0941 4804 [ C34984319992C4D07296D9CB9F4AF4C3 ] C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\platform.DLL
11:08:47.0941 4804 C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\platform.DLL - ok
11:08:47.0941 4804 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
11:08:47.0941 4804 C:\Windows\System32\mscms.dll - ok
11:08:47.0941 4804 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
11:08:47.0941 4804 C:\Windows\System32\pcasvc.dll - ok
11:08:47.0956 4804 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
11:08:47.0956 4804 C:\Windows\System32\snmptrap.exe - ok
11:08:47.0956 4804 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
11:08:47.0956 4804 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
11:08:47.0972 4804 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
11:08:47.0972 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
11:08:47.0972 4804 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
11:08:47.0972 4804 C:\Windows\SysWOW64\mswsock.dll - ok
11:08:47.0987 4804 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
11:08:47.0987 4804 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
11:08:47.0987 4804 [ B1A8D4A2974CA902148F0B0FC00D877E ] C:\Windows\System32\inetsrv\iisres.dll
11:08:47.0987 4804 C:\Windows\System32\inetsrv\iisres.dll - ok
11:08:48.0003 4804 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
11:08:48.0003 4804 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
11:08:48.0003 4804 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
11:08:48.0003 4804 C:\Windows\System32\provsvc.dll - ok
11:08:48.0019 4804 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
11:08:48.0019 4804 C:\Windows\System32\sstpsvc.dll - ok
11:08:48.0019 4804 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:08:48.0019 4804 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
11:08:48.0034 4804 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
11:08:48.0034 4804 C:\Windows\SysWOW64\crypt32.dll - ok
11:08:48.0034 4804 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
11:08:48.0034 4804 C:\Windows\SysWOW64\msasn1.dll - ok
11:08:48.0050 4804 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
11:08:48.0050 4804 C:\Windows\SysWOW64\wintrust.dll - ok
11:08:48.0050 4804 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
11:08:48.0050 4804 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
11:08:48.0065 4804 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
11:08:48.0065 4804 C:\Windows\System32\cryptsvc.dll - ok
11:08:48.0065 4804 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] C:\Windows\System32\inetsrv\apphostsvc.dll
11:08:48.0065 4804 C:\Windows\System32\inetsrv\apphostsvc.dll - ok
11:08:48.0065 4804 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
11:08:48.0081 4804 C:\Windows\System32\cryptnet.dll - ok
11:08:48.0081 4804 [ 7C35C6865957289D9EFE6CC73F4AB2E1 ] C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
11:08:48.0081 4804 C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe - ok
11:08:48.0081 4804 [ BF210F7E658B204295211EA8CA5FFA61 ] C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll
11:08:48.0081 4804 C:\Program Files\Gateway\Gateway Power Management\PowerSettingControl.dll - ok
11:08:48.0097 4804 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
11:08:48.0097 4804 C:\Windows\System32\vssapi.dll - ok
11:08:48.0097 4804 [ C99C5AD6E5412A8D37D40E780113D7B5 ] C:\Windows\System32\inetsrv\iisutil.dll
11:08:48.0097 4804 C:\Windows\System32\inetsrv\iisutil.dll - ok
11:08:48.0112 4804 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
11:08:48.0112 4804 C:\Windows\System32\vsstrace.dll - ok
11:08:48.0112 4804 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
11:08:48.0112 4804 C:\Windows\SysWOW64\ntmarta.dll - ok
11:08:48.0128 4804 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
11:08:48.0128 4804 C:\Windows\SysWOW64\Wldap32.dll - ok
11:08:48.0128 4804 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
11:08:48.0128 4804 C:\Windows\System32\dllhost.exe - ok
11:08:48.0143 4804 [ A77EA0AF89B0147A9B38211E3096A2E0 ] C:\Windows\System32\inetsrv\nativerd.dll
11:08:48.0143 4804 C:\Windows\System32\inetsrv\nativerd.dll - ok
11:08:48.0143 4804 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
11:08:48.0143 4804 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
11:08:48.0159 4804 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
11:08:48.0159 4804 C:\Windows\System32\IDStore.dll - ok
11:08:48.0159 4804 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
11:08:48.0159 4804 C:\Windows\System32\taskhost.exe - ok
11:08:48.0175 4804 [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
11:08:48.0175 4804 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
11:08:48.0175 4804 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
11:08:48.0175 4804 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
11:08:48.0175 4804 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
11:08:48.0175 4804 C:\Windows\System32\PlaySndSrv.dll - ok
11:08:48.0190 4804 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
11:08:48.0190 4804 C:\Windows\System32\dbghelp.dll - ok
11:08:48.0190 4804 [ EFB68A2FF180E7DCA21CD6914E4DCEEE ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
11:08:48.0190 4804 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
11:08:48.0206 4804 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
11:08:48.0206 4804 C:\Windows\System32\MsCtfMonitor.dll - ok
11:08:48.0206 4804 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
11:08:48.0206 4804 C:\Windows\System32\mlang.dll - ok
11:08:48.0221 4804 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
11:08:48.0221 4804 C:\Windows\System32\oleacc.dll - ok
11:08:48.0221 4804 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
11:08:48.0221 4804 C:\Windows\System32\winspool.drv - ok
11:08:48.0237 4804 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
11:08:48.0237 4804 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
11:08:48.0237 4804 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
11:08:48.0237 4804 C:\Windows\System32\rasadhlp.dll - ok
11:08:48.0237 4804 [ 816FD5A6F3C2F3D600900096632FC60E ] C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
11:08:48.0237 4804 C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe - ok
11:08:48.0253 4804 [ E4F44EC214B3E381E1FC844A02926666 ] C:\Windows\System32\drivers\mdmxsdk.sys
11:08:48.0253 4804 C:\Windows\System32\drivers\mdmxsdk.sys - ok
11:08:48.0253 4804 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
11:08:48.0253 4804 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
11:08:48.0268 4804 [ 447256D1C026654C5CD3CC17E7B20631 ] C:\Windows\SysWOW64\XAudio64.dll
11:08:48.0268 4804 C:\Windows\SysWOW64\XAudio64.dll - ok
11:08:48.0268 4804 [ 4BA84C832E0741A294C4444556DFE993 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe
11:08:48.0268 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe - ok
11:08:48.0284 4804 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
11:08:48.0284 4804 C:\Windows\System32\IKEEXT.DLL - ok
11:08:48.0284 4804 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\msvcp100.dll
11:08:48.0284 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\msvcp100.dll - ok
11:08:48.0299 4804 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\msvcr100.dll
11:08:48.0299 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\msvcr100.dll - ok
11:08:48.0299 4804 [ 6E39DA2FD9F64A723363CD0CE8981DA5 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccL120U.dll
11:08:48.0299 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccL120U.dll - ok
11:08:48.0315 4804 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
11:08:48.0315 4804 C:\Windows\System32\vpnikeapi.dll - ok
11:08:48.0315 4804 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
11:08:48.0315 4804 C:\Windows\SysWOW64\dbghelp.dll - ok
11:08:48.0331 4804 [ D22CD77D4F0D63D1169BB35911BFF12D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:08:48.0331 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe - ok
11:08:48.0331 4804 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
11:08:48.0331 4804 C:\Windows\System32\netman.dll - ok
11:08:48.0346 4804 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
11:08:48.0346 4804 C:\Windows\SysWOW64\cfgmgr32.dll - ok
11:08:48.0346 4804 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
11:08:48.0346 4804 C:\Windows\SysWOW64\psapi.dll - ok
11:08:48.0362 4804 [ A580CC1974214DEB330BB3824AE7950A ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccVrTrst.dll
11:08:48.0362 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccVrTrst.dll - ok
11:08:48.0362 4804 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
11:08:48.0362 4804 C:\Windows\SysWOW64\cryptsp.dll - ok
11:08:48.0377 4804 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
11:08:48.0377 4804 C:\Windows\System32\mscoree.dll - ok
11:08:48.0377 4804 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
11:08:48.0377 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
11:08:48.0377 4804 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
11:08:48.0377 4804 C:\Windows\SysWOW64\rsaenh.dll - ok
11:08:48.0393 4804 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
11:08:48.0393 4804 C:\Windows\SysWOW64\ncrypt.dll - ok
11:08:48.0393 4804 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
11:08:48.0393 4804 C:\Windows\SysWOW64\bcrypt.dll - ok
11:08:48.0409 4804 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
11:08:48.0409 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
11:08:48.0409 4804 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
11:08:48.0409 4804 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
11:08:48.0424 4804 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
11:08:48.0424 4804 C:\Windows\SysWOW64\gpapi.dll - ok
11:08:48.0424 4804 [ 4EE3A812A8DB2CA32B2392A7EA49427C ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvc.dll
11:08:48.0424 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvc.dll - ok
11:08:48.0440 4804 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
11:08:48.0440 4804 C:\Windows\System32\msutb.dll - ok
11:08:48.0440 4804 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
11:08:48.0440 4804 C:\Windows\System32\HotStartUserAgent.dll - ok
11:08:48.0455 4804 [ D6B65DEB5E34936C6576873D1875385D ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccIPC.dll
11:08:48.0455 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccIPC.dll - ok
11:08:48.0455 4804 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
11:08:48.0455 4804 C:\Windows\SysWOW64\cryptnet.dll - ok
11:08:48.0471 4804 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
11:08:48.0471 4804 C:\Windows\SysWOW64\SensApi.dll - ok
11:08:48.0471 4804 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
11:08:48.0471 4804 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
11:08:48.0471 4804 [ C9531C79AEAA6B36C8337245595E4DE3 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\diMaster.dll
11:08:48.0471 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\diMaster.dll - ok
11:08:48.0487 4804 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
11:08:48.0487 4804 C:\Windows\SysWOW64\winhttp.dll - ok
11:08:48.0487 4804 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
11:08:48.0487 4804 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
11:08:48.0502 4804 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
11:08:48.0502 4804 C:\Windows\SysWOW64\secur32.dll - ok
11:08:48.0502 4804 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
11:08:48.0502 4804 C:\Windows\SysWOW64\webio.dll - ok
11:08:48.0518 4804 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
11:08:48.0518 4804 C:\Windows\SysWOW64\winnsi.dll - ok
11:08:48.0518 4804 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
11:08:48.0518 4804 C:\Windows\SysWOW64\wtsapi32.dll - ok
11:08:48.0533 4804 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
11:08:48.0533 4804 C:\Windows\System32\taskeng.exe - ok
11:08:48.0533 4804 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
11:08:48.0533 4804 C:\Windows\System32\localspl.dll - ok
11:08:48.0533 4804 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
11:08:48.0533 4804 C:\Windows\System32\TSChannel.dll - ok
11:08:48.0549 4804 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
11:08:48.0549 4804 C:\Windows\SysWOW64\winsta.dll - ok
11:08:48.0549 4804 [ 178A681B49A33FAF084E6D2DBA7678CC ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSet.dll
11:08:48.0549 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSet.dll - ok
11:08:48.0565 4804 [ EF5027D4C0DE77C238761D6576C635BF ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coSvcPlg.dll
11:08:48.0565 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coSvcPlg.dll - ok
11:08:48.0565 4804 [ 0D426F7D3F362F6DF5B48F31BB6B7C57 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coFFPlgn.dll
11:08:48.0565 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coFFPlgn.dll - ok
11:08:48.0580 4804 [ 575E80D2B1A8112DF130ACDBF7C0081D ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGEvt.dll
11:08:48.0580 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGEvt.dll - ok
11:08:48.0580 4804 [ D6E081235FE41979BBFBD81B72A5993A ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGLog.dll
11:08:48.0580 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGLog.dll - ok
11:08:48.0596 4804 [ 0D426F7D3F362F6DF5B48F31BB6B7C57 ] C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\components\coFFPlgn.dll
11:08:48.0596 4804 C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\components\coFFPlgn.dll - ok
11:08:48.0596 4804 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
11:08:48.0596 4804 C:\Windows\System32\AtBroker.exe - ok
11:08:48.0611 4804 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
11:08:48.0611 4804 C:\Windows\System32\mpr.dll - ok
11:08:48.0611 4804 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
11:08:48.0611 4804 C:\Windows\System32\esent.dll - ok
11:08:48.0627 4804 [ 5A78D672EAE975D40DE35CE6B650282B ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
11:08:48.0627 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe - ok
11:08:48.0627 4804 [ 114CF6C8F5897162DFC00A7C920DDF16 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl
11:08:48.0627 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl - ok
11:08:48.0643 4804 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
11:08:48.0643 4804 C:\Windows\System32\winmm.dll - ok
11:08:48.0643 4804 [ F58732600FC92413A8B2451FEC5B2FC9 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl
11:08:48.0643 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl - ok
11:08:48.0658 4804 [ 8838B1D35DA190061890A8FED8596EAE ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl
11:08:48.0658 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl - ok
11:08:48.0658 4804 [ F22344A88B6C55AEF9C23FB7A6589384 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\taskmgr.dll
11:08:48.0658 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\taskmgr.dll - ok
11:08:48.0658 4804 [ 31C364E11F4F37160AF8716861BB5039 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\datastate.dll
11:08:48.0658 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\datastate.dll - ok
11:08:48.0674 4804 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
11:08:48.0674 4804 C:\Windows\System32\userinit.exe - ok
11:08:48.0674 4804 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
11:08:48.0674 4804 C:\Windows\System32\dwm.exe - ok
11:08:48.0689 4804 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
11:08:48.0689 4804 C:\Windows\System32\dwmredir.dll - ok
11:08:48.0689 4804 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
11:08:48.0689 4804 C:\Windows\System32\dwmcore.dll - ok
11:08:48.0705 4804 [ 2C5DC03EBC5EA11E3C49F29234C0CA97 ] C:\Windows\System32\d3d10_1.dll
11:08:48.0705 4804 C:\Windows\System32\d3d10_1.dll - ok
11:08:48.0705 4804 [ E0B65265F7C2A2EF47DB047D31FC5033 ] C:\Windows\System32\d3d10_1core.dll
11:08:48.0705 4804 C:\Windows\System32\d3d10_1core.dll - ok
11:08:48.0721 4804 [ 1CDB40B825320049C9E704ABA26B43FA ] C:\Windows\System32\dxgi.dll
11:08:48.0721 4804 C:\Windows\System32\dxgi.dll - ok
11:08:48.0721 4804 [ 6BF3F5D5B3DA033F4BBDEE8803528826 ] C:\Windows\System32\d3d11.dll
11:08:48.0721 4804 C:\Windows\System32\d3d11.dll - ok
11:08:48.0736 4804 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
11:08:48.0736 4804 C:\Windows\explorer.exe - ok
11:08:48.0736 4804 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
11:08:48.0736 4804 C:\Windows\System32\ExplorerFrame.dll - ok
11:08:48.0736 4804 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
11:08:48.0736 4804 C:\Windows\System32\EhStorShell.dll - ok
11:08:48.0752 4804 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
11:08:48.0752 4804 C:\Windows\System32\ntshrui.dll - ok
11:08:48.0752 4804 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
11:08:48.0752 4804 C:\Windows\System32\cscapi.dll - ok
11:08:48.0767 4804 [ 0704205E1C718F156FAB7D938EA7FC14 ] C:\Windows\System32\igd10umd64.dll
11:08:48.0767 4804 C:\Windows\System32\igd10umd64.dll - ok
11:08:48.0767 4804 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
11:08:48.0767 4804 C:\Windows\System32\IconCodecService.dll - ok
11:08:48.0783 4804 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
11:08:48.0783 4804 C:\Windows\System32\msvcr100_clr0400.dll - ok
11:08:48.0783 4804 [ 0DE5BA4CEFB5BC123C45B974A182557D ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\webres.dll
11:08:48.0783 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\webres.dll - ok
11:08:48.0799 4804 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
11:08:48.0799 4804 C:\Windows\SysWOW64\propsys.dll - ok
11:08:48.0799 4804 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
11:08:48.0799 4804 C:\Windows\SysWOW64\setupapi.dll - ok
11:08:48.0799 4804 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
11:08:48.0799 4804 C:\Windows\SysWOW64\devobj.dll - ok
11:08:48.0814 4804 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
11:08:48.0814 4804 C:\Windows\SysWOW64\clbcatq.dll - ok
11:08:48.0814 4804 [ 3958B8304E31B9C674EC33A436C1C259 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccJobMgr.dll
11:08:48.0814 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccJobMgr.dll - ok
11:08:48.0830 4804 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
11:08:48.0830 4804 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
11:08:48.0830 4804 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
11:08:48.0830 4804 C:\Windows\SysWOW64\powrprof.dll - ok
11:08:48.0845 4804 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
11:08:48.0845 4804 C:\Windows\System32\spoolss.dll - ok
11:08:48.0845 4804 [ D38E5A781E4F4763387AFE0B866DFEE2 ] C:\Windows\System32\AdobePDF.dll
11:08:48.0845 4804 C:\Windows\System32\AdobePDF.dll - ok
11:08:48.0861 4804 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
11:08:48.0861 4804 C:\Windows\System32\PrintIsolationProxy.dll - ok
11:08:48.0861 4804 [ 488256C0AFA4D9C1CB3084C2956288DF ] C:\Windows\System32\CNMLMAG.DLL
11:08:48.0861 4804 C:\Windows\System32\CNMLMAG.DLL - ok
11:08:48.0877 4804 [ A14F896D4E5314E4E8732F894661F03B ] C:\Windows\System32\CNMN6PPM.DLL
11:08:48.0877 4804 C:\Windows\System32\CNMN6PPM.DLL - ok
11:08:48.0877 4804 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
11:08:48.0877 4804 C:\Windows\System32\FXSMON.dll - ok
11:08:48.0877 4804 [ C5E82BCFD577AF98F3A7937A69A338B9 ] C:\Windows\System32\HPZ3LWN7.DLL
11:08:48.0877 4804 C:\Windows\System32\HPZ3LWN7.DLL - ok
11:08:48.0892 4804 [ BFB9D2EAD08F3588E8631BA6FE1236DC ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSubEng.dll
11:08:48.0892 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSubEng.dll - ok
11:08:48.0892 4804 [ 608603EEF84B9CB4349B3D3E02892CE5 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccEmlPxy.dll
11:08:48.0892 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccEmlPxy.dll - ok
11:08:48.0908 4804 [ B6D429347889C25566B387C2A6065818 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SpocClnt.dll
11:08:48.0908 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SpocClnt.dll - ok
11:08:48.0908 4804 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
11:08:48.0908 4804 C:\Windows\System32\tcpmon.dll - ok
11:08:48.0923 4804 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
11:08:48.0923 4804 C:\Windows\System32\snmpapi.dll - ok
11:08:48.0923 4804 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
11:08:48.0923 4804 C:\Windows\System32\wsnmp32.dll - ok
11:08:48.0939 4804 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
11:08:48.0939 4804 C:\Windows\System32\usbmon.dll - ok
11:08:48.0939 4804 [ 2BBCB5D083119A1266B6116C90BF05D1 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\DataStor.dll
11:08:48.0939 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\DataStor.dll - ok
11:08:48.0955 4804 [ FF51CD0B1F4E01A83E10FCD20AD8AFCD ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SQLite.dll
11:08:48.0955 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SQLite.dll - ok
11:08:48.0955 4804 [ B4D77DE168C975ED37F94099438D1EE0 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\Comm.dll
11:08:48.0955 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\Comm.dll - ok
11:08:48.0970 4804 [ 7F59AD733BF52EA3A77AF8130EBEE554 ] C:\Windows\SysWOW64\wininet.dll
11:08:48.0970 4804 C:\Windows\SysWOW64\wininet.dll - ok
11:08:48.0970 4804 [ 635958B47D579344DC023AE324E05B43 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\5eeca24ada8f0fed132d1450c01f880a\mscorlib.ni.dll
11:08:48.0970 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\5eeca24ada8f0fed132d1450c01f880a\mscorlib.ni.dll - ok
11:08:48.0986 4804 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
11:08:48.0986 4804 C:\Windows\System32\WSDMon.dll - ok
11:08:48.0986 4804 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
11:08:48.0986 4804 C:\Windows\System32\WSDApi.dll - ok
11:08:49.0001 4804 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
11:08:49.0001 4804 C:\Windows\System32\webservices.dll - ok
11:08:49.0001 4804 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
11:08:49.0001 4804 C:\Windows\SysWOW64\uxtheme.dll - ok
11:08:49.0001 4804 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
11:08:49.0001 4804 C:\Windows\System32\fundisc.dll - ok
11:08:49.0017 4804 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
11:08:49.0017 4804 C:\Windows\SysWOW64\dwmapi.dll - ok
11:08:49.0017 4804 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
11:08:49.0017 4804 C:\Windows\System32\fdPnp.dll - ok
11:08:49.0033 4804 [ B5ED5424F3719BA248C6A1497DF2407C ] C:\Windows\System32\spool\prtprocs\x64\CNMPDAG.DLL
11:08:49.0033 4804 C:\Windows\System32\spool\prtprocs\x64\CNMPDAG.DLL - ok
11:08:49.0033 4804 [ 8F1C949FD695C83C4E30C3BFC004C81F ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
11:08:49.0033 4804 C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
11:08:49.0048 4804 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
11:08:49.0048 4804 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
11:08:49.0048 4804 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
11:08:49.0048 4804 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
11:08:49.0064 4804 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
11:08:49.0064 4804 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
11:08:49.0064 4804 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
11:08:49.0064 4804 C:\Windows\System32\win32spl.dll - ok
11:08:49.0064 4804 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
11:08:49.0064 4804 C:\Windows\System32\inetpp.dll - ok
11:08:49.0079 4804 [ 3E56B178AEC90721DE14A09D712B4520 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
11:08:49.0079 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
11:08:49.0079 4804 [ 8B6789269B29647CDDF4D5ED6BB441F5 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
11:08:49.0079 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
11:08:49.0095 4804 [ 7729AEB90A5A80A24BB5884C550CA2F1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
11:08:49.0095 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
11:08:49.0095 4804 [ A7E40966B9A4BBB47C5381BA9A945685 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
11:08:49.0095 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
11:08:49.0111 4804 [ B5969821FA05CF8259FADFA50BEDE2E7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
11:08:49.0111 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
11:08:49.0111 4804 [ 430D4EC72EED2C7BC20A66BCBBB41DA0 ] C:\Windows\SysWOW64\iertutil.dll
11:08:49.0111 4804 C:\Windows\SysWOW64\iertutil.dll - ok
11:08:49.0126 4804 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
11:08:49.0126 4804 C:\Windows\SysWOW64\netapi32.dll - ok
11:08:49.0126 4804 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
11:08:49.0126 4804 C:\Windows\SysWOW64\netutils.dll - ok
11:08:49.0142 4804 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
11:08:49.0142 4804 C:\Windows\SysWOW64\samcli.dll - ok
11:08:49.0142 4804 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
11:08:49.0142 4804 C:\Windows\SysWOW64\srvcli.dll - ok
11:08:49.0157 4804 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
11:08:49.0157 4804 C:\Windows\SysWOW64\wkscli.dll - ok
11:08:49.0157 4804 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
11:08:49.0157 4804 C:\Windows\SysWOW64\apphelp.dll - ok
11:08:49.0157 4804 [ 84E1FFCBE3C05A0DCB01F7DDF10144A9 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ProxyClt.dll
11:08:49.0157 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ProxyClt.dll - ok
11:08:49.0173 4804 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
11:08:49.0173 4804 C:\Windows\SysWOW64\credssp.dll - ok
11:08:49.0173 4804 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
11:08:49.0173 4804 C:\Windows\SysWOW64\wship6.dll - ok
11:08:49.0189 4804 [ 4374B2528BCBB8F95FB12CC6C8FF0773 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
11:08:49.0189 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
11:08:49.0189 4804 [ 1416C4E2EF61E70F4A0BDA14708B188F ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\6e3ec94d3a2f035ade14602aef4c89dc\System.ni.dll
11:08:49.0189 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\6e3ec94d3a2f035ade14602aef4c89dc\System.ni.dll - ok
11:08:49.0204 4804 [ 2D7377A106F1F0DF5D9FC0CDD7612E3A ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coDataPr.dll
11:08:49.0204 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coDataPr.dll - ok
11:08:49.0204 4804 [ 20F3048F19C93B9DFC6F24AF8D5A00CC ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coShdObj.dll
11:08:49.0204 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coShdObj.dll - ok
11:08:49.0220 4804 [ 44525700CBA89D39D66859BBC18D24DC ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coActMgr.dll
11:08:49.0220 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\coActMgr.dll - ok
11:08:49.0220 4804 [ 45D5610E63EA3EAFCE94B12EC3F3EF7E ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\wincfi39.dll
11:08:49.0220 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\wincfi39.dll - ok
11:08:49.0235 4804 [ EEB8FCBB435FBF1A5252710D7EA9D0ED ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\diStRptr.dll
11:08:49.0235 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\diStRptr.dll - ok
11:08:49.0235 4804 [ C8C7DE6765F98F0F5341692991F4E75E ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\cltAlDis.dll
11:08:49.0235 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\cltAlDis.dll - ok
11:08:49.0251 4804 [ 9630EB50A7A90F8FB628C391D10ED7A7 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\cltPE.dll
11:08:49.0251 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\cltPE.dll - ok
11:08:49.0251 4804 [ 860E975660040D2516DF83A709B9AA14 ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\UserCtxt.dll
11:08:49.0251 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\UserCtxt.dll - ok
11:08:49.0267 4804 [ D8E15724EB012E4DC3DE9BB2C0554D4C ] C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\naHelper.dll
11:08:49.0267 4804 C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\naHelper.dll - ok
11:08:49.0267 4804 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
11:08:49.0267 4804 C:\Windows\SysWOW64\dnsapi.dll - ok
11:08:49.0267 4804 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
11:08:49.0267 4804 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
11:08:49.0282 4804 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
11:08:49.0282 4804 C:\Windows\SysWOW64\rasadhlp.dll - ok
11:08:49.0282 4804 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
11:08:49.0282 4804 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
11:08:49.0298 4804 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
11:08:49.0298 4804 C:\Windows\SysWOW64\schannel.dll - ok
11:08:49.0298 4804 [ 6ACEC2075480A9DC385D5B969119EEE0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\2d99dca5a920f16c6255ed63b5125187\SMSvcHost.ni.exe
11:08:49.0298 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\2d99dca5a920f16c6255ed63b5125187\SMSvcHost.ni.exe - ok
11:08:49.0313 4804 [ B945A8893289FAE926876874BA2BB92D ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\6619004960ba8ab53d39edc34846ce21\System.Core.ni.dll
11:08:49.0313 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\6619004960ba8ab53d39edc34846ce21\System.Core.ni.dll - ok
11:08:49.0313 4804 [ 324BDF8277C4893ABC530F72B74060B9 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceModel\c53290c63fa5bdd860571f88277a89b1\System.ServiceModel.ni.dll
11:08:49.0313 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceModel\c53290c63fa5bdd860571f88277a89b1\System.ServiceModel.ni.dll - ok
11:08:49.0329 4804 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
11:08:49.0329 4804 C:\Windows\System32\dssenh.dll - ok
11:08:49.0329 4804 [ 0F7E33520B5F85AB8735573E1B41329A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\SMDiagnostics\9c136b6c81c6655d339beeca52b279a5\SMDiagnostics.ni.dll
11:08:49.0329 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\SMDiagnostics\9c136b6c81c6655d339beeca52b279a5\SMDiagnostics.ni.dll - ok
11:08:49.0345 4804 [ F7CFCCA5E27E940B9DD2821109A00DDD ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\43a7eb5e38f25e971be374a4cc262923\System.ServiceProcess.ni.dll
11:08:49.0345 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\43a7eb5e38f25e971be374a4cc262923\System.ServiceProcess.ni.dll - ok
11:08:49.0345 4804 [ 6A12E8B9CA7A29BB9A7B536F851D3DF3 ] C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
11:08:49.0345 4804 C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe - ok
11:08:49.0360 4804 [ 685211D4E206F5CC7B1B7CAB1F784C89 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Dura#\3d7dc3a1786f5ad47c97d9dadd6918a9\System.Runtime.DurableInstancing.ni.dll
11:08:49.0360 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Dura#\3d7dc3a1786f5ad47c97d9dadd6918a9\System.Runtime.DurableInstancing.ni.dll - ok
11:08:49.0360 4804 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
11:08:49.0360 4804 C:\Windows\System32\nlasvc.dll - ok
11:08:49.0376 4804 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
11:08:49.0376 4804 C:\Windows\System32\ncsi.dll - ok
11:08:49.0376 4804 [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
11:08:49.0376 4804 C:\Windows\AppPatch\AcLayers.dll - ok
11:08:49.0391 4804 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
11:08:49.0391 4804 C:\Windows\System32\winhttp.dll - ok
11:08:49.0391 4804 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
11:08:49.0391 4804 C:\Windows\System32\webio.dll - ok
11:08:49.0407 4804 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
11:08:49.0407 4804 C:\Windows\System32\ssdpapi.dll - ok
11:08:49.0407 4804 [ 38693F4113F28AF8844B5180F525F02C ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\aedbb18ed13a788899e1569e4f1af8e0\System.Configuration.ni.dll
11:08:49.0407 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\aedbb18ed13a788899e1569e4f1af8e0\System.Configuration.ni.dll - ok
11:08:49.0407 4804 [ D955D5DE998DB2476BF0892BE3A96C26 ] C:\Windows\System32\drivers\o2flash.exe
11:08:49.0407 4804 C:\Windows\System32\drivers\o2flash.exe - ok
11:08:49.0423 4804 [ 221833F11B08D4A620482C5C4B1B6082 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\2ceda64eb7b7751bcf485d727e4bc007\System.Xml.ni.dll
11:08:49.0423 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\2ceda64eb7b7751bcf485d727e4bc007\System.Xml.ni.dll - ok
11:08:49.0423 4804 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
11:08:49.0423 4804 C:\Windows\System32\drivers\PEAuth.sys - ok
11:08:49.0438 4804 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
11:08:49.0438 4804 C:\Windows\System32\drivers\secdrv.sys - ok
11:08:49.0438 4804 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
11:08:49.0438 4804 C:\Windows\System32\seclogon.dll - ok
11:08:49.0454 4804 [ 4E5FB7AE0C82B65BDA97BE1774F56B31 ] C:\Windows\System32\simptcp.dll
11:08:49.0454 4804 C:\Windows\System32\simptcp.dll - ok
11:08:49.0454 4804 [ E9E830D540EDEDED650F906628468548 ] C:\Windows\System32\TCPSVCS.EXE
11:08:49.0454 4804 C:\Windows\System32\TCPSVCS.EXE - ok
11:08:49.0469 4804 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
11:08:49.0469 4804 C:\Windows\System32\NapiNSP.dll - ok
11:08:49.0469 4804 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
11:08:49.0469 4804 C:\Windows\System32\pnrpnsp.dll - ok
11:08:49.0485 4804 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
11:08:49.0485 4804 C:\Windows\System32\sppsvc.exe - ok
11:08:49.0485 4804 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
11:08:49.0485 4804 C:\Windows\System32\winrnr.dll - ok
11:08:49.0501 4804 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
11:08:49.0501 4804 C:\Windows\System32\drivers\srvnet.sys - ok
11:08:49.0501 4804 [ 94B0B1A2635004267C14301270C8CE37 ] C:\Windows\System32\inetsrv\httpmib.dll
11:08:49.0501 4804 C:\Windows\System32\inetsrv\httpmib.dll - ok
11:08:49.0501 4804 [ C68646093AB79AC5D794E5CED965BAE7 ] C:\Windows\System32\wow64mib.dll
11:08:49.0501 4804 C:\Windows\System32\wow64mib.dll - ok
11:08:49.0516 4804 [ 8F5171C837E64FF0AC48F0A29DD9E180 ] C:\Windows\SysWOW64\snmp.exe
11:08:49.0516 4804 C:\Windows\SysWOW64\snmp.exe - ok
11:08:49.0516 4804 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
11:08:49.0516 4804 C:\Windows\System32\httpapi.dll - ok
11:08:49.0532 4804 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
11:08:49.0532 4804 C:\Windows\System32\tapisrv.dll - ok
11:08:49.0532 4804 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
11:08:49.0532 4804 C:\Windows\SysWOW64\snmpapi.dll - ok
11:08:49.0547 4804 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
11:08:49.0547 4804 C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe - ok
11:08:49.0547 4804 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
11:08:49.0547 4804 C:\Windows\System32\drivers\tcpipreg.sys - ok
11:08:49.0563 4804 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
11:08:49.0563 4804 C:\Windows\System32\SearchIndexer.exe - ok
11:08:49.0563 4804 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
11:08:49.0563 4804 C:\Windows\System32\drivers\spsys.sys - ok
11:08:49.0563 4804 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
11:08:49.0563 4804 C:\Windows\System32\sppwinob.dll - ok
11:08:49.0579 4804 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
11:08:49.0579 4804 C:\Windows\System32\wbem\WMIsvc.dll - ok
11:08:49.0579 4804 [ B32009DB1972E7F2C227499289C4384A ] C:\Windows\System32\inetsrv\iisw3adm.dll
11:08:49.0579 4804 C:\Windows\System32\inetsrv\iisw3adm.dll - ok
11:08:49.0594 4804 [ 49F9AF60349A514C1BCF14DB9C843C5A ] C:\Windows\System32\inetsrv\w3tp.dll
11:08:49.0594 4804 C:\Windows\System32\inetsrv\w3tp.dll - ok
11:08:49.0594 4804 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
11:08:49.0594 4804 C:\Windows\System32\sysmain.dll - ok
11:08:49.0610 4804 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
11:08:49.0610 4804 C:\Windows\System32\sppobjs.dll - ok
11:08:49.0610 4804 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
11:08:49.0610 4804 C:\Windows\System32\taskschd.dll - ok
11:08:49.0625 4804 [ D6ED4A6F4E9F3BBDE52FAC3C9D1F3266 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\125e2e0f6db2e124502c867fc8ebda4d\System.Runtime.Serialization.ni.dll
11:08:49.0625 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\125e2e0f6db2e124502c867fc8ebda4d\System.Runtime.Serialization.ni.dll - ok
11:08:49.0625 4804 [ B8BEF9AB1A017A7DB787FE2C30482EC9 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.IdentityModel\6fa3ed042332091b13de591788520b24\System.IdentityModel.ni.dll
11:08:49.0625 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.IdentityModel\6fa3ed042332091b13de591788520b24\System.IdentityModel.ni.dll - ok
11:08:49.0641 4804 [ 269229EDF9A046B8E7135D9A2E640C5D ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\4536c8b41db3045074ce78986b569060\System.Xaml.ni.dll
11:08:49.0641 4804 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\4536c8b41db3045074ce78986b569060\System.Xaml.ni.dll - ok
11:08:49.0641 4804 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
11:08:49.0641 4804 C:\Windows\System32\wbemcomn.dll - ok
11:08:49.0657 4804 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
11:08:49.0657 4804 C:\Windows\System32\wbem\WinMgmtR.dll - ok
11:08:49.0657 4804 [ 836B8F87DC42AD95D4FE95BD1E374DF2 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
11:08:49.0657 4804 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
11:08:49.0657 4804 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
11:08:49.0657 4804 C:\Windows\System32\tquery.dll - ok
11:08:49.0672 4804 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
11:08:49.0672 4804 C:\Windows\System32\wbem\fastprox.dll - ok
11:08:49.0672 4804 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
11:08:49.0672 4804 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
11:08:49.0688 4804 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
11:08:49.0688 4804 C:\Windows\System32\mssrch.dll - ok
11:08:49.0688 4804 [ E8F3FA126A06F8E7088F63757112A186 ] C:\Windows\System32\drivers\XAudio64.sys
11:08:49.0688 4804 C:\Windows\System32\drivers\XAudio64.sys - ok
11:08:49.0703 4804 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
11:08:49.0703 4804 C:\Windows\System32\msidle.dll - ok
11:08:49.0703 4804 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
11:08:49.0703 4804 C:\Windows\System32\ntdsapi.dll - ok
11:08:49.0719 4804 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
11:08:49.0719 4804 C:\Windows\System32\wbem\wbemprox.dll - ok
11:08:49.0719 4804 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
11:08:49.0719 4804 C:\Windows\System32\wbem\wbemcore.dll - ok
11:08:49.0735 4804 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
11:08:49.0735 4804 C:\Windows\System32\en-US\tquery.dll.mui - ok
11:08:49.0735 4804 [ CF2C95D5FF3E37A535D0C9F2E7A1E0A2 ] C:\Windows\System32\evntagnt.dll
11:08:49.0735 4804 C:\Windows\System32\evntagnt.dll - ok
11:08:49.0735 4804 [ 85C81F2367126BAD531C86998CB4418A ] C:\Windows\System32\hostmib.dll
11:08:49.0735 4804 C:\Windows\System32\hostmib.dll - ok
11:08:49.0750 4804 [ 90CC31E54E79E9E5800FFF3CCF2FC5DB ] C:\Windows\System32\inetmib1.dll
11:08:49.0750 4804 C:\Windows\System32\inetmib1.dll - ok
11:08:49.0750 4804 [ C55A9A7FDDDD58347F320E08BBA76FD3 ] C:\Windows\System32\snmpmib.dll
11:08:49.0750 4804 C:\Windows\System32\snmpmib.dll - ok
11:08:49.0766 4804 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
11:08:49.0766 4804 C:\Windows\System32\wsock32.dll - ok
11:08:49.0766 4804 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
11:08:49.0766 4804 C:\Windows\System32\wbem\esscli.dll - ok
11:08:49.0781 4804 [ 2693448F9BE4CE1809188495D1D711E1 ] C:\Windows\System32\lmmib2.dll
11:08:49.0781 4804 C:\Windows\System32\lmmib2.dll - ok
11:08:49.0781 4804 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
11:08:49.0781 4804 C:\Windows\System32\wbem\wbemsvc.dll - ok
11:08:49.0797 4804 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
11:08:49.0797 4804 C:\Windows\System32\browcli.dll - ok
11:08:49.0797 4804 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
11:08:49.0797 4804 C:\Windows\System32\wbem\repdrvfs.dll - ok
11:08:49.0797 4804 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
11:08:49.0797 4804 C:\Windows\System32\wbem\wmiutils.dll - ok
11:08:49.0813 4804 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
11:08:49.0813 4804 C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
11:08:49.0813 4804 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
11:08:49.0813 4804 C:\Windows\AppPatch\AcGenral.dll - ok
11:08:49.0828 4804 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
11:08:49.0828 4804 C:\Windows\SysWOW64\msacm32.dll - ok
11:08:49.0828 4804 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
11:08:49.0828 4804 C:\Windows\SysWOW64\sfc.dll - ok
11:08:49.0844 4804 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
11:08:49.0844 4804 C:\Windows\SysWOW64\sfc_os.dll - ok
11:08:49.0844 4804 [ 5683122F987805DE4464430A9DED86E9 ] C:\Windows\SysWOW64\urlmon.dll
11:08:49.0844 4804 C:\Windows\SysWOW64\urlmon.dll - ok
11:08:49.0859 4804 [ 3CF23F061EDCB0549CDBD991DDD1DF93 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
11:08:49.0859 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
11:08:49.0859 4804 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
11:08:49.0859 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
11:08:49.0875 4804 [ 5621D03ADC16EADE46D2242C39E1A99C ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll
11:08:49.0875 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
11:08:49.0875 4804 [ A74A5322ABE5AC634A9CAEFBFC1B3AE3 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
11:08:49.0875 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
11:08:49.0891 4804 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
11:08:49.0891 4804 C:\Windows\System32\iphlpsvc.dll - ok
11:08:49.0891 4804 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
11:08:49.0891 4804 C:\Windows\System32\drivers\srv2.sys - ok
11:08:49.0906 4804 [ F8BA8A317B5675629854FC9700F8AF6D ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
11:08:49.0906 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
11:08:49.0906 4804 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
11:08:49.0906 4804 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
11:08:49.0922 4804 [ E601860AA04CE2198DBC6AC2AF80AFF7 ] C:\Windows\System32\perfos.dll
11:08:49.0922 4804 C:\Windows\System32\perfos.dll - ok
11:08:49.0922 4804 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
11:08:49.0922 4804 C:\Windows\System32\drivers\srv.sys - ok
11:08:49.0937 4804 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
11:08:49.0937 4804 C:\Windows\System32\sqmapi.dll - ok
11:08:49.0937 4804 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
11:08:49.0937 4804 C:\Windows\System32\wdscore.dll - ok
11:08:49.0937 4804 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
11:08:49.0937 4804 C:\Windows\SysWOW64\wbemcomn.dll - ok
11:08:49.0953 4804 [ 5D5F5D4F9ABF02AEB268EBCE8BD44FE8 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
11:08:49.0953 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
11:08:49.0953 4804 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
11:08:49.0953 4804 C:\Windows\System32\rasmans.dll - ok
11:08:49.0969 4804 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
11:08:49.0969 4804 C:\Windows\System32\srvsvc.dll - ok
11:08:49.0969 4804 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
11:08:49.0969 4804 C:\Windows\System32\browser.dll - ok
11:08:49.0984 4804 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
11:08:49.0984 4804 C:\Windows\System32\rastapi.dll - ok
11:08:49.0984 4804 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
11:08:49.0984 4804 C:\Windows\System32\tapi32.dll - ok
11:08:50.0000 4804 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
11:08:50.0000 4804 C:\Windows\System32\clusapi.dll - ok
11:08:50.0000 4804 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
11:08:50.0000 4804 C:\Windows\System32\netmsg.dll - ok
11:08:50.0000 4804 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
11:08:50.0000 4804 C:\Windows\System32\sscore.dll - ok
11:08:50.0015 4804 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
11:08:50.0015 4804 C:\Windows\System32\resutils.dll - ok
11:08:50.0015 4804 [ 6A3A5E566D792BA30AFF5EC949FF9F49 ] C:\Windows\System32\inetsrv\wbhstipm.dll
11:08:50.0015 4804 C:\Windows\System32\inetsrv\wbhstipm.dll - ok
11:08:50.0031 4804 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
11:08:50.0031 4804 C:\Windows\System32\hnetcfg.dll - ok
11:08:50.0031 4804 [ B6CAC0C662A334C19BF0DF479F675F08 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
11:08:50.0031 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
11:08:50.0047 4804 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
11:08:50.0047 4804 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
11:08:50.0047 4804 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
11:08:50.0047 4804 C:\Windows\System32\ncobjapi.dll - ok
11:08:50.0062 4804 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
11:08:50.0062 4804 C:\Windows\System32\wbem\wbemess.dll - ok
11:08:50.0062 4804 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
11:08:50.0062 4804 C:\Windows\System32\unimdm.tsp - ok
11:08:50.0062 4804 [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
11:08:50.0062 4804 C:\Windows\System32\unimdmat.dll - ok
11:08:50.0078 4804 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
11:08:50.0078 4804 C:\Windows\System32\uniplat.dll - ok
11:08:50.0078 4804 [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
11:08:50.0078 4804 C:\Windows\System32\modemui.dll - ok
11:08:50.0093 4804 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
11:08:50.0093 4804 C:\Windows\System32\hidphone.tsp - ok
11:08:50.0093 4804 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
11:08:50.0093 4804 C:\Windows\System32\kmddsp.tsp - ok
11:08:50.0109 4804 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
11:08:50.0109 4804 C:\Windows\System32\ndptsp.tsp - ok
11:08:50.0109 4804 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
11:08:50.0109 4804 C:\Windows\System32\rasppp.dll - ok
11:08:50.0125 4804 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
11:08:50.0125 4804 C:\Windows\System32\vpnike.dll - ok
11:08:50.0125 4804 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
11:08:50.0125 4804 C:\Windows\System32\raschap.dll - ok
11:08:50.0125 4804 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
11:08:50.0125 4804 C:\Windows\System32\ipnathlp.dll - ok
11:08:50.0140 4804 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
11:08:50.0140 4804 C:\Windows\System32\mprapi.dll - ok
11:08:50.0140 4804 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
11:08:50.0140 4804 C:\Windows\System32\netshell.dll - ok
11:08:50.0156 4804 [ 653DD317EFBE8E6D1EA44FC807D26552 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
11:08:50.0156 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
11:08:50.0156 4804 [ C2C4849161C778641E3A73106AC115F4 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
11:08:50.0156 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
11:08:50.0171 4804 [ EBC36161D7BF42E6BDCD719BB3A7E701 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
11:08:50.0171 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
11:08:50.0171 4804 [ DEE23F98A46BC6500E64A647B6CE4E83 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
11:08:50.0171 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
11:08:50.0187 4804 [ 10C2C77EC8A9B81B4E95CAF8F7D84234 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
11:08:50.0187 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
11:08:50.0187 4804 [ 0B1B7568CED61ABF5FD717F28175C96A ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
11:08:50.0187 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
11:08:50.0203 4804 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
11:08:50.0203 4804 C:\Windows\System32\appinfo.dll - ok
11:08:50.0203 4804 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
11:08:50.0203 4804 C:\Windows\System32\SearchProtocolHost.exe - ok
11:08:50.0218 4804 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
11:08:50.0218 4804 C:\Windows\System32\wpdbusenum.dll - ok
11:08:50.0218 4804 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
11:08:50.0218 4804 C:\Windows\System32\npmproxy.dll - ok
11:08:50.0218 4804 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
11:08:50.0218 4804 C:\Windows\System32\PortableDeviceApi.dll - ok
11:08:50.0234 4804 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
11:08:50.0234 4804 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
11:08:50.0234 4804 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
11:08:50.0234 4804 C:\Windows\System32\msshooks.dll - ok
11:08:50.0249 4804 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
11:08:50.0249 4804 C:\Windows\System32\IPSECSVC.DLL - ok
11:08:50.0249 4804 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
11:08:50.0249 4804 C:\Windows\System32\FwRemoteSvr.dll - ok
11:08:50.0265 4804 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
11:08:50.0265 4804 C:\Windows\System32\SearchFilterHost.exe - ok
11:08:50.0265 4804 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
11:08:50.0265 4804 C:\Windows\System32\dimsjob.dll - ok
11:08:50.0281 4804 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
11:08:50.0281 4804 C:\Windows\System32\mssprxy.dll - ok
11:08:50.0281 4804 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
11:08:50.0281 4804 C:\Windows\System32\pautoenr.dll - ok
11:08:50.0296 4804 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
11:08:50.0296 4804 C:\Windows\System32\certcli.dll - ok
11:08:50.0296 4804 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
11:08:50.0296 4804 C:\Windows\System32\mssph.dll - ok
11:08:50.0312 4804 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
11:08:50.0312 4804 C:\Windows\System32\mapi32.dll - ok
11:08:50.0312 4804 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
11:08:50.0312 4804 C:\Windows\System32\runonce.exe - ok
11:08:50.0312 4804 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
11:08:50.0312 4804 C:\Windows\SysWOW64\runonce.exe - ok
11:08:50.0327 4804 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
11:08:50.0327 4804 C:\Windows\System32\Query.dll - ok
11:08:50.0327 4804 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
11:08:50.0327 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
11:08:50.0343 4804 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
11:08:50.0343 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
11:08:50.0343 4804 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
11:08:50.0343 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
11:08:50.0359 4804 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
11:08:50.0359 4804 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
11:08:50.0359 4804 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
11:08:50.0359 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
11:08:50.0374 4804 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
11:08:50.0374 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
11:08:50.0374 4804 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
11:08:50.0374 4804 C:\Windows\SysWOW64\msxml3.dll - ok
11:08:50.0390 4804 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
11:08:50.0390 4804 C:\Windows\System32\ndiscapCfg.dll - ok
11:08:50.0390 4804 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
11:08:50.0390 4804 C:\Windows\System32\rascfg.dll - ok
11:08:50.0390 4804 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
11:08:50.0390 4804 C:\Windows\System32\mprmsg.dll - ok
11:08:50.0405 4804 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
11:08:50.0405 4804 C:\Windows\System32\tcpipcfg.dll - ok
11:08:50.0405 4804 [ 08A6F58239DABE1435386038A66F7E9E ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
11:08:50.0405 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
11:08:50.0421 4804 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
11:08:50.0421 4804 C:\Windows\SysWOW64\cmd.exe - ok
11:08:50.0421 4804 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
11:08:50.0421 4804 C:\Windows\SysWOW64\winbrand.dll - ok
11:08:50.0437 4804 [ ED2606C9FA45AF0443169CCF8C963D3E ] C:\Windows\SysWOW64\ieframe.dll
11:08:50.0437 4804 C:\Windows\SysWOW64\ieframe.dll - ok
11:08:50.0437 4804 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
11:08:50.0437 4804 C:\Windows\System32\aelupsvc.dll - ok
11:08:50.0452 4804 [ AD4F6E4E4A8C62D20F3F49BA42E909B3 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
11:08:50.0452 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
11:08:50.0452 4804 [ 6658AA2D9CF1A85C6E4F4C2A08025BE2 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
11:08:50.0452 4804 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
11:08:50.0468 4804 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
11:08:50.0468 4804 C:\Windows\SysWOW64\shdocvw.dll - ok
11:08:50.0468 4804 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
11:08:50.0468 4804 C:\Windows\System32\CertEnroll.dll - ok
11:08:50.0483 4804 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Darlene\AppData\Local\Temp\DF048E27-E8EB-4372-A6B5-52B1F0CE6567.exe
11:08:50.0483 4804 C:\Users\Darlene\AppData\Local\Temp\DF048E27-E8EB-4372-A6B5-52B1F0CE6567.exe - ok
11:08:50.0483 4804 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
11:08:50.0483 4804 C:\Windows\SysWOW64\devrtl.dll - ok
11:08:50.0483 4804 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
11:08:50.0483 4804 C:\Windows\System32\aepic.dll - ok
11:08:50.0499 4804 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
11:08:50.0499 4804 C:\Windows\System32\sfc.dll - ok
11:08:50.0499 4804 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
11:08:50.0499 4804 C:\Windows\System32\sfc_os.dll - ok
11:08:50.0515 4804 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
11:08:50.0515 4804 C:\Windows\System32\timedate.cpl - ok
11:08:50.0515 4804 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
11:08:50.0515 4804 C:\Windows\System32\actxprxy.dll - ok
11:08:50.0530 4804 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
11:08:50.0530 4804 C:\Windows\System32\nci.dll - ok
11:08:50.0530 4804 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
11:08:50.0530 4804 C:\Windows\System32\wlaninst.dll - ok
11:08:50.0546 4804 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
11:08:50.0546 4804 C:\Windows\System32\wwaninst.dll - ok
11:08:50.0546 4804 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
11:08:50.0546 4804 C:\Windows\System32\shdocvw.dll - ok
11:08:50.0561 4804 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
11:08:50.0561 4804 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
11:08:50.0561 4804 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
11:08:50.0561 4804 C:\Windows\System32\gameux.dll - ok
11:08:50.0577 4804 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
11:08:50.0577 4804 C:\Windows\System32\wer.dll - ok
11:08:50.0577 4804 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
11:08:50.0577 4804 C:\Windows\System32\msftedit.dll - ok
11:08:50.0593 4804 [ 4E582F30F980256B58984069E5E6FCD8 ] C:\Windows\System32\msls31.dll
11:08:50.0593 4804 C:\Windows\System32\msls31.dll - ok
11:08:50.0593 4804 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
11:08:50.0593 4804 C:\Windows\System32\msiltcfg.dll - ok
11:08:50.0593 4804 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
11:08:50.0593 4804 C:\Windows\System32\msi.dll - ok
11:08:50.0608 4804 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
11:08:50.0608 4804 C:\Windows\System32\linkinfo.dll - ok
11:08:50.0608 4804 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
11:08:50.0608 4804 C:\Windows\System32\thumbcache.dll - ok
11:08:50.0624 4804 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
11:08:50.0624 4804 C:\Windows\System32\networkexplorer.dll - ok
11:08:50.0624 4804 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
11:08:50.0624 4804 C:\Windows\System32\davclnt.dll - ok
11:08:50.0639 4804 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
11:08:50.0639 4804 C:\Windows\System32\drprov.dll - ok
11:08:50.0639 4804 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
11:08:50.0639 4804 C:\Windows\System32\ntlanman.dll - ok
11:08:50.0655 4804 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
11:08:50.0655 4804 C:\Windows\System32\davhlpr.dll - ok
11:08:50.0655 4804 [ FD217F6DDBB90D84A46B36E17E99CA0C ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
11:08:50.0655 4804 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
11:08:50.0671 4804 [ C0CE1FD30CE222852A061207A579A6FC ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
11:08:50.0671 4804 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
11:08:50.0671 4804 [ 0C4F4CFFA3A613D175BB25728514C0C4 ] C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe
11:08:50.0671 4804 C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe - ok
11:08:50.0686 4804 [ EBF3456B2C7663E6A13940FA10B4E0F8 ] C:\Windows\System32\igfxtray.exe
11:08:50.0686 4804 C:\Windows\System32\igfxtray.exe - ok
11:08:50.0686 4804 [ EA8009061898202FAFE9073EEEBA3808 ] C:\Windows\System32\hccutils.dll
11:08:50.0686 4804 C:\Windows\System32\hccutils.dll - ok
11:08:50.0686 4804 [ B45EA7CAE2ACDBEB3522181E7F5A98AC ] C:\Windows\System32\hkcmd.exe
11:08:50.0686 4804 C:\Windows\System32\hkcmd.exe - ok
11:08:50.0702 4804 [ DEA7D385517BBF31AA0940E1D75D01F4 ] C:\Windows\System32\igfxpers.exe
11:08:50.0702 4804 C:\Windows\System32\igfxpers.exe - ok
11:08:50.0702 4804 [ 521BE0575EE9CBD360ECC57BDE9A0309 ] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
11:08:50.0702 4804 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe - ok
11:08:50.0717 4804 [ 8629773FE7379BB7095A61936CC6BD24 ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
11:08:50.0717 4804 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
11:08:50.0717 4804 [ 5184B9A8DA54C8D34D8D93DEEBE2FE38 ] C:\Windows\System32\igfxsrvc.exe
11:08:50.0717 4804 C:\Windows\System32\igfxsrvc.exe - ok
11:08:50.0733 4804 [ 142F26F396CC3E9699360C06B7A73E5C ] C:\Program Files\Gateway\Gateway Power Management\BrightnessControl.dll
11:08:50.0733 4804 C:\Program Files\Gateway\Gateway Power Management\BrightnessControl.dll - ok
11:08:50.0733 4804 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\97908435.sys
11:08:50.0733 4804 C:\Windows\System32\drivers\97908435.sys - ok
11:08:50.0749 4804 [ 37F04C533F3D8BA106B9F52FCE76616A ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
11:08:50.0749 4804 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
11:08:50.0749 4804 [ 442AC4C12E0FA2575402A9C1E3D8B3C8 ] C:\Windows\System32\SynCOM.dll
11:08:50.0749 4804 C:\Windows\System32\SynCOM.dll - ok
11:08:50.0764 4804 [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
11:08:50.0764 4804 C:\Windows\System32\dxva2.dll - ok
11:08:50.0764 4804 [ C984A23C68995C5C9B6BADC8E60662FE ] C:\Windows\System32\SynTPAPI.dll
11:08:50.0764 4804 C:\Windows\System32\SynTPAPI.dll - ok
11:08:50.0780 4804 [ 9AFC5B61FC366B95CB5D7DF0F28A42A0 ] C:\Program Files\Gateway\Gateway Power Management\CommonControl.dll
11:08:50.0780 4804 C:\Program Files\Gateway\Gateway Power Management\CommonControl.dll - ok
11:08:50.0780 4804 [ DCB210B91DF6CA6DA15815BFA5CF08D0 ] C:\Program Files\Gateway\Gateway Power Management\NetAdapterControl.dll
11:08:50.0780 4804 C:\Program Files\Gateway\Gateway Power Management\NetAdapterControl.dll - ok
11:08:50.0780 4804 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
11:08:50.0780 4804 C:\Windows\SysWOW64\msi.dll - ok
11:08:50.0795 4804 [ 94AD6E6496D500AF2B87D50F9950F9A7 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
11:08:50.0795 4804 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
11:08:50.0795 4804 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
11:08:50.0795 4804 C:\Windows\System32\aeevts.dll - ok
11:08:50.0811 4804 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
11:08:50.0811 4804 C:\Windows\System32\spfileq.dll - ok
11:08:50.0811 4804 [ C6BE59AE498497F78EC46DADB5335766 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
11:08:50.0811 4804 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
11:08:50.0827 4804 [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
11:08:50.0827 4804 C:\Windows\System32\consent.exe - ok
11:08:50.0827 4804 [ 4DD2AA3845D260EF4B8A5276E1237A10 ] C:\Windows\System32\igfxsrvc.dll
11:08:50.0827 4804 C:\Windows\System32\igfxsrvc.dll - ok
11:08:50.0842 4804 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
11:08:50.0842 4804 C:\Windows\System32\msimg32.dll - ok
11:08:50.0842 4804 [ BC6A2175D5EAC9D9CDB0D8A2C901202B ] C:\Windows\System32\igfxdev.dll
11:08:50.0842 4804 C:\Windows\System32\igfxdev.dll - ok
11:08:50.0858 4804 [ 6AFF84B17F88C807C1E9089ED6263C66 ] C:\Windows\System32\igfxrenu.lrc
11:08:50.0858 4804 C:\Windows\System32\igfxrenu.lrc - ok
11:08:50.0858 4804 [ B6AA578BF0519D2A614CF839631BB50D ] C:\Windows\System32\igfxress.dll
11:08:50.0858 4804 C:\Windows\System32\igfxress.dll - ok
11:08:50.0858 4804 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
11:08:50.0858 4804 C:\Windows\SysWOW64\riched20.dll - ok
11:08:50.0873 4804 [ 3B78ACCCAA5132638E7CF419F4A965C7 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
11:08:50.0873 4804 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE - ok
11:08:50.0873 4804 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
11:08:50.0873 4804 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
11:08:50.0889 4804 [ C14CF3A71C99E7AD48ECC928886317AC ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
11:08:50.0889 4804 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe - ok
11:08:50.0889 4804 [ 521202AA6F2B74FCCC6BC7E162109D71 ] C:\Windows\System32\wbem\unsecapp.exe
11:08:50.0889 4804 C:\Windows\System32\wbem\unsecapp.exe - ok
11:08:50.0905 4804 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
11:08:50.0905 4804 C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
11:08:50.0905 4804 [ 880798F61D6FAA41556CE9FA25E146F5 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
11:08:50.0905 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe - ok
11:08:50.0920 4804 [ 6D92F7FD38888894EC509DFAB6CD3CDA ] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll
11:08:50.0920 4804 C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNSU_ENU.dll - ok
11:08:50.0920 4804 [ B3B13025E236417E8B6BC8E96D7773EF ] C:\Windows\SysWOW64\CNMNPPM.DLL
11:08:50.0920 4804 C:\Windows\SysWOW64\CNMNPPM.DLL - ok
11:08:50.0936 4804 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
11:08:50.0936 4804 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
11:08:50.0936 4804 [ 59726901C436C19CA51A6B008239CD9D ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
11:08:50.0936 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe - ok
11:08:50.0951 4804 [ 48E6868781B4E8BF4B77DBEC7694BCE8 ] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
11:08:50.0951 4804 C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe - ok
11:08:50.0951 4804 [ 4A57709B15C0AD663C4E4C34064308AA ] C:\Program Files (x86)\IObit\IObit Malware Fighter\Scan.dll
11:08:50.0951 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\Scan.dll - ok
11:08:50.0967 4804 [ 8269C503475678F513B8837B9450DF00 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
11:08:50.0967 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll - ok
11:08:50.0967 4804 [ F83F424661737A60C163F0200CA7C94A ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IntegrateFilter.dll
11:08:50.0967 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\IntegrateFilter.dll - ok
11:08:50.0983 4804 [ EE5B38DD8B8EBBE8868B9EF00B815585 ] C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll
11:08:50.0983 4804 C:\Program Files (x86)\Real\RealPlayer\Update\setu3270.dll - ok
11:08:50.0983 4804 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
11:08:50.0983 4804 C:\Windows\System32\wbem\NCProv.dll - ok
11:08:50.0983 4804 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
11:08:50.0983 4804 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
11:08:50.0998 4804 [ D49E943F9741074C0C23916720CD143F ] C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
11:08:50.0998 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll - ok
11:08:50.0998 4804 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\SysWOW64\msvcp100.dll
11:08:50.0998 4804 C:\Windows\SysWOW64\msvcp100.dll - ok
11:08:51.0014 4804 [ 016A43C02FBA0E0EF400C944533BE00E ] C:\Program Files (x86)\IObit\IObit Malware Fighter\FileMonitor.dll
11:08:51.0014 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\FileMonitor.dll - ok
11:08:51.0014 4804 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
11:08:51.0014 4804 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
11:08:51.0029 4804 [ C34A9CB3B30902123E48910F6D6C3207 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\URLFilter.dll
11:08:51.0029 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\URLFilter.dll - ok
11:08:51.0029 4804 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\SysWOW64\msvcr100.dll
11:08:51.0029 4804 C:\Windows\SysWOW64\msvcr100.dll - ok
11:08:51.0045 4804 [ 0B81540A7A179F2C3A4ABF904E0B5B21 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
11:08:51.0045 4804 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
11:08:51.0045 4804 [ 9C9D20DEBE53283E619E47BDABB6ED0A ] C:\Program Files (x86)\IObit\IObit Malware Fighter\RegFilter.dll
11:08:51.0045 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\RegFilter.dll - ok
11:08:51.0061 4804 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\SysWOW64\activeds.dll
11:08:51.0061 4804 C:\Windows\SysWOW64\activeds.dll - ok
11:08:51.0061 4804 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
11:08:51.0061 4804 C:\Windows\System32\wbem\wmiprov.dll - ok
11:08:51.0076 4804 [ 8F77B32860FA6541F7F4AE494EEA670F ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Esl\Aiod.dll
11:08:51.0076 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Esl\Aiod.dll - ok
11:08:51.0092 4804 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\SysWOW64\adsldpc.dll
11:08:51.0092 4804 C:\Windows\SysWOW64\adsldpc.dll - ok
11:08:51.0092 4804 [ 3F2D0111ED59CF2847E0E2551117D3F3 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe
11:08:51.0092 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodist.exe - ok
11:08:51.0107 4804 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
11:08:51.0107 4804 C:\Windows\SysWOW64\atl.dll - ok
11:08:51.0107 4804 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
11:08:51.0107 4804 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
11:08:51.0123 4804 [ 9422A2BD1EF0C182C0FA3E39B88934FD ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL
11:08:51.0123 4804 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL - ok
11:08:51.0123 4804 [ E9B14E7118FFE08D44B93CACA8AD50AD ] C:\Program Files (x86)\Real\RealPlayer\converter\RealConverter.exe
11:08:51.0123 4804 C:\Program Files (x86)\Real\RealPlayer\converter\RealConverter.exe - ok
11:08:51.0123 4804 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
11:08:51.0123 4804 C:\Windows\SysWOW64\duser.dll - ok
11:08:51.0139 4804 [ 27A6ADA12783F1065924460674BE4191 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodistdll.dll
11:08:51.0139 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrodistdll.dll - ok
11:08:51.0139 4804 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
11:08:51.0139 4804 C:\Windows\SysWOW64\dui70.dll - ok
11:08:51.0154 4804 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
11:08:51.0154 4804 C:\Windows\twain_32.dll - ok
11:08:51.0154 4804 [ 3BA92D4695E2F610B6E186EF0B761CBA ] C:\Windows\twain_32\MG6100 series\CISDS.DS
11:08:51.0154 4804 C:\Windows\twain_32\MG6100 series\CISDS.DS - ok
11:08:51.0154 4804 [ 3BA92D4695E2F610B6E186EF0B761CBA ] C:\Windows\twain_32\MG6100 series\CISDS_8887177827A9.DS
11:08:51.0154 4804 C:\Windows\twain_32\MG6100 series\CISDS_8887177827A9.DS - ok
11:08:51.0170 4804 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
11:08:51.0170 4804 C:\Windows\SysWOW64\wiadss.dll - ok
11:08:51.0170 4804 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
11:08:51.0170 4804 C:\Windows\twain_32\wiatwain.ds - ok
11:08:51.0185 4804 [ D8BFD3E541D03293A42E8BAD84FA3824 ] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL
11:08:51.0185 4804 C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL - ok
11:08:51.0185 4804 [ 7301A8574C11A22CB63C45260F69988D ] C:\Program Files (x86)\Real\RealPlayer\realjbox.exe
11:08:51.0185 4804 C:\Program Files (x86)\Real\RealPlayer\realjbox.exe - ok
11:08:51.0201 4804 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
11:08:51.0201 4804 C:\Windows\SysWOW64\msxml6.dll - ok
11:08:51.0201 4804 [ 05CD57EA1BD2FBEFE617B815487C2144 ] C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe
11:08:51.0201 4804 C:\Program Files\Gateway\Gateway Power Management\ePowerEvent.exe - ok
11:08:51.0201 4804 [ 01243FA89FBEC041E873DE8386138440 ] C:\Program Files (x86)\Real\RealPlayer\realplay.exe
11:08:51.0201 4804 C:\Program Files (x86)\Real\RealPlayer\realplay.exe - ok
11:08:51.0217 4804 [ 209FAAAFA5A6D8AB59ADF239E48434D6 ] C:\Program Files\Gateway\Gateway Power Management\SysHook.dll
11:08:51.0217 4804 C:\Program Files\Gateway\Gateway Power Management\SysHook.dll - ok
11:08:51.0217 4804 [ 97EA663282E10C6306769FEAD4E76867 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ahclient.dll
11:08:51.0217 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ahclient.dll - ok
11:08:51.0232 4804 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
11:08:51.0232 4804 C:\Windows\SysWOW64\shfolder.dll - ok
11:08:51.0232 4804 [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
11:08:51.0232 4804 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
11:08:51.0248 4804 [ 06CABCD25920159660B4F73B8BE85D5A ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeXMP.dll
11:08:51.0248 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeXMP.dll - ok
11:08:51.0248 4804 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
11:08:51.0248 4804 C:\Windows\System32\SensApi.dll - ok
11:08:51.0248 4804 [ D202F8A7BF7391A099F99B4BC9057F93 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL
11:08:51.0248 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL - ok
11:08:51.0263 4804 [ D0278156167EC2D8B4206CEFB0FF9FF5 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL
11:08:51.0263 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL - ok
11:08:51.0263 4804 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
11:08:51.0263 4804 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
11:08:51.0279 4804 [ F063B868865F684B24F65312749C1B47 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDM.DLL
11:08:51.0279 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDM.DLL - ok
11:08:51.0279 4804 [ 819EB5ABEAE5B1728EDFF0AC8B696769 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ACE.dll
11:08:51.0279 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ACE.dll - ok
11:08:51.0295 4804 [ 802467DB6F104AD4EF8789206E1755D6 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDMRC.DLL
11:08:51.0295 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDMRC.DLL - ok
11:08:51.0295 4804 [ 4A31D1D93A0E359639FADC23B006883E ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL
11:08:51.0295 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL - ok
11:08:51.0310 4804 [ B9BFE20689398A7618C4AF5137F4068C ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL
11:08:51.0310 4804 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL - ok
11:08:51.0310 4804 [ 020D5F7ABD814935C1BBD55D97F11DB8 ] C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll
11:08:51.0310 4804 C:\Program Files (x86)\Real\RealPlayer\rpwa3260.dll - ok
11:08:51.0310 4804 [ C7E02E0BF58E7764CD8E0B526C56C434 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobePDFL.dll
11:08:51.0310 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobePDFL.dll - ok
11:08:51.0326 4804 [ 1F9DC13B4232F3CEE5D8310D3991AD6E ] C:\Windows\System32\spool\drivers\x64\3\CNMDRAG.DLL
11:08:51.0326 4804 C:\Windows\System32\spool\drivers\x64\3\CNMDRAG.DLL - ok
11:08:51.0326 4804 [ 127AA81343A7C6F665C22CB1293B0A90 ] C:\Windows\splwow64.exe
11:08:51.0326 4804 C:\Windows\splwow64.exe - ok
11:08:51.0341 4804 [ AD9D9A9C01EC3C2F68605F739AA38DDC ] C:\Windows\System32\spool\drivers\x64\3\CNMUIAG.DLL
11:08:51.0341 4804 C:\Windows\System32\spool\drivers\x64\3\CNMUIAG.DLL - ok
11:08:51.0341 4804 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
11:08:51.0341 4804 C:\Windows\System32\SyncCenter.dll - ok
11:08:51.0357 4804 [ FDB069972B81AA52BFBA7AE45FF7BF7B ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\JP2KLib.dll
11:08:51.0357 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\JP2KLib.dll - ok
11:08:51.0357 4804 [ 759D71FC9442AB5A9B5749C0F6C0C263 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIB.dll
11:08:51.0357 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIB.dll - ok
11:08:51.0373 4804 [ B05953F956EB87A02E62096EAAFA9C5F ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIBUtils.dll
11:08:51.0373 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\BIBUtils.dll - ok
11:08:51.0373 4804 [ AB9D511F0CA51F683CD72870AB989141 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AGM.dll
11:08:51.0373 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AGM.dll - ok
11:08:51.0373 4804 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
11:08:51.0373 4804 C:\Windows\System32\PrintIsolationHost.exe - ok
11:08:51.0388 4804 [ 09E133D98C4A6474470FB82A9B80E157 ] C:\Windows\System32\spool\drivers\x64\3\CNMBS3AG.DLL
11:08:51.0388 4804 C:\Windows\System32\spool\drivers\x64\3\CNMBS3AG.DLL - ok
11:08:51.0388 4804 [ EC465914B68B10410AB57C2885D0A361 ] C:\Windows\System32\spool\drivers\x64\3\CNMCPAG.DLL
11:08:51.0388 4804 C:\Windows\System32\spool\drivers\x64\3\CNMCPAG.DLL - ok
11:08:51.0404 4804 [ A7934B26A096F39B15960E0A56C1C8C4 ] C:\Windows\SysWOW64\bidispl.dll
11:08:51.0404 4804 C:\Windows\SysWOW64\bidispl.dll - ok
11:08:51.0404 4804 [ 87EFA9CF72AA7059022008348BF6085A ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\CoolType.dll
11:08:51.0404 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\CoolType.dll - ok
11:08:51.0404 4804 [ 0CFB90C28768E26498834D780FBBD754 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AXE8SharedExpat.dll
11:08:51.0404 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\AXE8SharedExpat.dll - ok
11:08:51.0419 4804 [ 79BFC537A2D5005EDE7CBDE543B2C114 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ARE.dll
11:08:51.0419 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\ARE.dll - ok
11:08:51.0419 4804 [ 73CB26E2DD5A28B08C7260CEC63172C1 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Adist.dll
11:08:51.0419 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Adist.dll - ok
11:08:51.0435 4804 [ FE51EEF2F9842C7A14768A48219F96C2 ] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\adistres.dll
11:08:51.0435 4804 C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\adistres.dll - ok
11:08:51.0435 4804 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
11:08:51.0435 4804 C:\Windows\System32\stobject.dll - ok
11:08:51.0451 4804 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
11:08:51.0451 4804 C:\Windows\System32\batmeter.dll - ok
11:08:51.0451 4804 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
11:08:51.0451 4804 C:\Windows\SysWOW64\mscms.dll - ok
11:08:51.0466 4804 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
11:08:51.0466 4804 C:\Windows\System32\prnfldr.dll - ok
11:08:51.0466 4804 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
11:08:51.0466 4804 C:\Windows\System32\AudioSes.dll - ok
11:08:51.0466 4804 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
11:08:51.0466 4804 C:\Windows\System32\DXP.dll - ok
11:08:51.0482 4804 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
11:08:51.0482 4804 C:\Windows\System32\Syncreg.dll - ok
11:08:51.0482 4804 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
11:08:51.0482 4804 C:\Windows\ehome\ehSSO.dll - ok
11:08:51.0497 4804 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
11:08:51.0497 4804 C:\Windows\System32\AltTab.dll - ok
11:08:51.0497 4804 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
11:08:51.0497 4804 C:\Windows\System32\WPDShServiceObj.dll - ok
11:08:51.0497 4804 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
11:08:51.0497 4804 C:\Windows\System32\PortableDeviceTypes.dll - ok
11:08:51.0513 4804 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
11:08:51.0513 4804 C:\Windows\System32\pnidui.dll - ok
11:08:51.0513 4804 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
11:08:51.0513 4804 C:\Windows\System32\QUTIL.DLL - ok
11:08:51.0529 4804 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
11:08:51.0529 4804 C:\Windows\System32\rasdlg.dll - ok
11:08:51.0529 4804 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
11:08:51.0529 4804 C:\Windows\System32\srchadmin.dll - ok
11:08:51.0544 4804 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
11:08:51.0544 4804 C:\Windows\System32\dot3api.dll - ok
11:08:51.0544 4804 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
11:08:51.0544 4804 C:\Windows\System32\wlanhlp.dll - ok
11:08:51.0544 4804 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
11:08:51.0544 4804 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
11:08:51.0560 4804 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
11:08:51.0560 4804 C:\Windows\System32\WWanAPI.dll - ok
11:08:51.0560 4804 [ DD9526EFA1CD458B4C45A464173EDDE2 ] C:\Windows\System32\webcheck.dll
11:08:51.0560 4804 C:\Windows\System32\webcheck.dll - ok
11:08:51.0575 4804 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
11:08:51.0575 4804 C:\Windows\System32\wwapi.dll - ok
11:08:51.0575 4804 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
11:08:51.0575 4804 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
11:08:51.0575 4804 [ 421F0262968A7B18DB68576BBFF10522 ] C:\Windows\System32\ieframe.dll
11:08:51.0575 4804 C:\Windows\System32\ieframe.dll - ok
11:08:51.0591 4804 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
11:08:51.0591 4804 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
11:08:51.0591 4804 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
11:08:51.0591 4804 C:\Windows\System32\wmdrmdev.dll - ok
11:08:51.0607 4804 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
11:08:51.0607 4804 C:\Windows\System32\drmv2clt.dll - ok
11:08:51.0607 4804 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
11:08:51.0607 4804 C:\Windows\System32\mfplat.dll - ok
11:08:51.0622 4804 [ A6CC7472CC7DC57813DF26134ECA0DEB ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
11:08:51.0622 4804 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
11:08:51.0622 4804 [ E013C6C44524EB1C125548629946671A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
11:08:51.0622 4804 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
11:08:51.0622 4804 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
11:08:51.0622 4804 C:\Windows\System32\QAGENT.DLL - ok
11:08:51.0638 4804 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
11:08:51.0638 4804 C:\Windows\System32\ActionCenter.dll - ok
11:08:51.0638 4804 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
11:08:51.0638 4804 C:\Windows\System32\bthprops.cpl - ok
11:08:51.0653 4804 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
11:08:51.0653 4804 C:\Windows\System32\wmp.dll - ok
11:08:51.0653 4804 [ F9ABDE7A2219AE6772379C08D216FC4B ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01_64.key
11:08:51.0653 4804 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv01_64.key - ok
11:08:51.0653 4804 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
11:08:51.0653 4804 C:\Windows\System32\imapi2.dll - ok
11:08:51.0669 4804 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
11:08:51.0669 4804 C:\Windows\System32\blackbox.dll - ok
11:08:51.0669 4804 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
11:08:51.0669 4804 C:\Windows\System32\hgcpl.dll - ok
11:08:51.0685 4804 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
11:08:51.0685 4804 C:\Windows\System32\fdPHost.dll - ok
11:08:51.0685 4804 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
11:08:51.0685 4804 C:\Windows\System32\fdSSDP.dll - ok
11:08:51.0685 4804 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
11:08:51.0685 4804 C:\Windows\System32\fdWSD.dll - ok
11:08:51.0700 4804 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
11:08:51.0700 4804 C:\Windows\System32\FDResPub.dll - ok
11:08:51.0700 4804 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
11:08:51.0700 4804 C:\Windows\System32\upnp.dll - ok
11:08:51.0716 4804 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
11:08:51.0716 4804 C:\Windows\System32\wmploc.DLL - ok
11:08:51.0716 4804 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
11:08:51.0716 4804 C:\Windows\System32\ssdpsrv.dll - ok
11:08:51.0731 4804 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
11:08:51.0731 4804 C:\Windows\System32\fdProxy.dll - ok
11:08:51.0731 4804 [ 165B615B59C1F4ABE062F98A9F894261 ] C:\Program Files\Internet Explorer\ieproxy.dll
11:08:51.0731 4804 C:\Program Files\Internet Explorer\ieproxy.dll - ok
11:08:51.0731 4804 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
11:08:51.0731 4804 C:\Windows\System32\wmpps.dll - ok
11:08:51.0747 4804 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
11:08:51.0747 4804 C:\Windows\System32\ListSvc.dll - ok
11:08:51.0747 4804 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
11:08:51.0747 4804 C:\Windows\System32\P2P.dll - ok
11:08:51.0763 4804 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
11:08:51.0763 4804 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
11:08:51.0763 4804 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
11:08:51.0763 4804 C:\Windows\System32\p2pcollab.dll - ok
11:08:51.0763 4804 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
11:08:51.0763 4804 C:\Windows\System32\pnrpsvc.dll - ok
11:08:51.0778 4804 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
11:08:51.0778 4804 C:\Windows\System32\IdListen.dll - ok
11:08:51.0778 4804 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
11:08:51.0778 4804 C:\Windows\System32\hgprint.dll - ok
11:08:51.0794 4804 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
11:08:51.0794 4804 C:\Windows\System32\QAGENTRT.DLL - ok
11:08:51.0794 4804 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
11:08:51.0794 4804 C:\Windows\System32\fveui.dll - ok
11:08:51.0809 4804 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
11:08:51.0809 4804 C:\Windows\System32\p2psvc.dll - ok
11:08:51.0809 4804 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
11:08:51.0809 4804 C:\Windows\System32\P2PGraph.dll - ok
11:08:51.0825 4804 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
11:08:51.0825 4804 C:\Windows\System32\FXSST.dll - ok
11:08:51.0825 4804 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
11:08:51.0825 4804 C:\Windows\System32\FXSAPI.dll - ok
11:08:51.0825 4804 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
11:08:51.0825 4804 C:\Windows\System32\FXSRESM.dll - ok
11:08:51.0841 4804 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
11:08:51.0841 4804 C:\Windows\System32\FXSSVC.exe - ok
11:08:51.0841 4804 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
11:08:51.0841 4804 C:\Windows\SysWOW64\sxs.dll - ok
11:08:51.0856 4804 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
11:08:51.0856 4804 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
11:08:51.0856 4804 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
11:08:51.0856 4804 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
11:08:51.0856 4804 [ CA4EAA028C5BA041E57AF93D20860C36 ] C:\Windows\SysWOW64\WindowsCodecs.dll
11:08:51.0856 4804 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
11:08:51.0872 4804 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
11:08:51.0872 4804 C:\Windows\SysWOW64\EhStorShell.dll - ok
11:08:51.0872 4804 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
11:08:51.0872 4804 C:\Windows\SysWOW64\imageres.dll - ok
11:08:51.0887 4804 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
11:08:51.0887 4804 C:\Windows\SysWOW64\IconCodecService.dll - ok
11:08:51.0887 4804 [ 8A4883F5E7AC37444F23279239553878 ] C:\Windows\SysWOW64\regedit.exe
11:08:51.0887 4804 C:\Windows\SysWOW64\regedit.exe - ok
11:08:51.0903 4804 [ DF551690EEB462238A09BE3AB6D43ECE ] C:\Program Files (x86)\IObit\IObit Malware Fighter\TaskSchedule.exe
11:08:51.0903 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\TaskSchedule.exe - ok
11:08:51.0903 4804 [ BBE34DAA066FFC44AB2F785F3E29CAC3 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\taskmgr.dll
11:08:51.0903 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\taskmgr.dll - ok
11:08:51.0903 4804 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
11:08:51.0903 4804 C:\Windows\SysWOW64\taskschd.dll - ok
11:08:51.0919 4804 [ C0227B33BAB59AE7BDF36FF7D4EFDD9A ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IWsIMF.exe
11:08:51.0919 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\IWsIMF.exe - ok
11:08:51.0919 4804 [ 5F9AC3243C206EC95F32E4348AE67C13 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys
11:08:51.0919 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys - ok
11:08:51.0934 4804 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
11:08:51.0934 4804 C:\Windows\SysWOW64\fltLib.dll - ok
11:08:51.0934 4804 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
11:08:51.0934 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys - ok
11:08:51.0950 4804 [ 241080F1B28E68F0D00F8F1066A3780D ] C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys
11:08:51.0950 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys - ok
11:08:51.0950 4804 [ 95DE4979E10867EA28B1A7BF43C96F4B ] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFUpdater.exe
11:08:51.0950 4804 C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFUpdater.exe - ok
11:08:51.0950 4804 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
11:08:51.0950 4804 C:\Windows\System32\msxml3.dll - ok
11:08:51.0965 4804 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
11:08:51.0965 4804 C:\Windows\System32\drttransport.dll - ok
11:08:51.0965 4804 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
11:08:51.0965 4804 C:\Windows\System32\drt.dll - ok
11:08:51.0965 4804 ============================================================
11:08:51.0981 4804 Scan finished
11:08:51.0981 4804 ============================================================
11:08:51.0997 4796 Detected object count: 0
11:08:51.0997 4796 Actual detected object count: 0
11:11:24.0795 0524 Deinitialize success

#19
emeraldnzl

Posted 30 January 2013 - 11:40 AM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello darlinbassmaster,

Looking good.

Now

Please download Farbar Service Scanner and run.

Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Other Services

[*]Press Scan
[*]A log (FSS.txt) will be created in the same directory the tool is run.
[*]Copy and paste the log back here.
[/list]After that

Please download Security Check by screen317 from here .

Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

So when you return please post
FSS.txt
checkup.txt

#20
darlinbassmaster

Posted 30 January 2013 - 12:05 PM

Member

Topic Starter
Member
39 posts

Farbar Service Scanner Version: 16-01-2013
Ran by Darlene (administrator) on 30-01-2013 at 13:00:51
Running from "C:\Users\Darlene\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============

Firewall Disabled Policy:
==================

System Restore:
============

System Restore Disabled Policy:
========================

Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

FARBAR REPORT

#21
darlinbassmaster

Posted 30 January 2013 - 12:07 PM

Member

Topic Starter
Member
39 posts

Results of screen317's Security Check version 0.99.57
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 9
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
Java™ 6 Update 37
Java version out of Date!
Adobe Flash Player 10 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (18.0.1)
Google Chrome 23.0.1271.91
Google Chrome 24.0.1312.56
Google Chrome plugins...
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

#22
emeraldnzl

Posted 30 January 2013 - 12:16 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello darlinbassmaster,

Looking good.

Let's have an update on the OTL scan.

Close all windows and open OTL again.
under the Extra Registry heading please check Use SafeList
Click Run Scan and let the program run uninterrupted
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.

#23
darlinbassmaster

Posted 30 January 2013 - 03:09 PM

Member

Topic Starter
Member
39 posts

OTL logfile created on: 1/30/2013 3:42:31 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Darlene\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16438)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.87 Gb Total Physical Memory | 1.87 Gb Available Physical Memory | 65.28% Memory free
5.73 Gb Paging File | 4.45 Gb Available in Paging File | 77.55% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 220.79 Gb Total Space | 175.35 Gb Free Space | 79.42% Space Free | Partition Type: NTFS

Computer Name: DARLENE-PC | User Name: Darlene | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2013/01/30 15:40:56 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Darlene\Downloads\OTL (1).exe
PRC - [2013/01/28 13:08:55 | 000,295,072 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
PRC - [2013/01/15 18:47:28 | 000,703,808 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe
PRC - [2013/01/15 18:47:12 | 000,491,840 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
PRC - [2013/01/15 18:47:10 | 000,465,216 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
PRC - [2012/12/25 17:35:10 | 004,474,832 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
PRC - [2012/12/04 21:40:04 | 000,143,928 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe
PRC - [2012/09/09 20:52:38 | 000,212,432 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
PRC - [2012/08/22 13:44:30 | 000,132,056 | ---- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe
PRC - [2012/07/27 15:51:38 | 000,823,224 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
PRC - [2012/07/27 12:51:28 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/01/09 20:17:44 | 000,821,592 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
PRC - [2010/04/02 09:18:54 | 001,185,112 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
PRC - [2010/03/02 18:52:00 | 000,140,640 | ---- | M] (CANON INC.) -- C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
PRC - [2009/08/07 07:29:54 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/08/07 07:29:36 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2009/07/03 20:47:12 | 000,240,160 | ---- | M] (Acer) -- C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
PRC - [2009/06/04 08:04:50 | 001,150,496 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
PRC - [2008/09/16 12:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe

========== Modules (No Company Name) ==========

MOD - [2013/01/15 18:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl
MOD - [2013/01/15 18:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl
MOD - [2013/01/15 18:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl
MOD - [2013/01/15 18:47:56 | 000,893,248 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\webres.dll
MOD - [2012/05/30 10:51:08 | 000,699,280 | R--- | M] () -- C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\wincfi39.dll

========== Services (SafeList) ==========

SRV:64bit: - [2010/11/20 08:25:18 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\snmp.exe -- (SNMP)
SRV:64bit: - [2009/08/05 23:30:58 | 000,844,320 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 20:39:47 | 000,010,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\TCPSVCS.EXE -- (simptcp)
SRV:64bit: - [2009/07/03 20:47:12 | 000,240,160 | ---- | M] (Acer) [Auto | Running] -- C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe -- (Updater Service)
SRV:64bit: - [2007/02/12 03:43:44 | 000,065,536 | ---- | M] (O2Micro International) [Auto | Running] -- C:\Windows\SysNative\drivers\o2flash.exe -- (O2FLASH)
SRV - [2013/01/15 18:47:10 | 000,465,216 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe -- (AdvancedSystemCareService6)
SRV - [2013/01/08 18:24:37 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/04 21:40:04 | 000,143,928 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccSvcHst.exe -- (NCO)
SRV - [2012/08/22 13:44:30 | 000,132,056 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton PC Checkup 3.0\SymcPCCULaunchSvc.exe -- (Norton PC Checkup Application Launcher)
SRV - [2012/07/27 12:51:28 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/01/09 20:17:44 | 000,821,592 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe -- (IMFservice)
SRV - [2010/11/20 07:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 07:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
SRV - [2010/11/20 07:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010/11/20 07:17:42 | 000,047,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\snmp.exe -- (SNMP)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/11/29 21:57:59 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/11/13 15:13:04 | 000,238,328 | ---- | M] (WildTangent, Inc.) [Disabled | Stopped] -- C:\Program Files (x86)\Gateway Games\Gateway Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/08/07 07:29:36 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2009/07/13 20:14:42 | 000,009,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\TCPSVCS.EXE -- (simptcp)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/04 08:04:50 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2009/04/28 22:21:18 | 000,436,736 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\SysWOW64\XAudio64.dll -- (HsfXAudioService)
SRV - [2008/11/09 15:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)
SRV - [2008/09/16 12:03:18 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor7.0)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/11/14 18:01:23 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/11/14 18:01:22 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/08/20 15:50:10 | 000,168,096 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\ccSetx64.sys -- (ccSet_NST)
DRV:64bit: - [2012/03/27 09:48:00 | 000,398,112 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2012/03/21 06:43:02 | 002,808,832 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012/03/01 01:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 01:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 01:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/12/03 05:48:23 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2010/11/20 08:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 04:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/15 14:29:02 | 000,533,280 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SRS_HDAL_amd64.sys -- (SRS_HDAL_Service)
DRV:64bit: - [2010/02/04 15:20:26 | 000,015,360 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HP8207_8307.sys -- (HP8207_8307)
DRV:64bit: - [2009/11/29 22:14:21 | 000,052,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/09/02 18:54:20 | 007,369,728 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/08/07 07:24:14 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 19:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2009/07/13 19:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2009/06/18 07:12:32 | 000,272,432 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2009/06/14 21:47:26 | 000,668,672 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2009/06/10 16:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 16:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 16:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/25 15:13:10 | 000,138,752 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2009/05/07 01:29:16 | 000,049,696 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\o2sdx64.sys -- (O2SDRDR)
DRV:64bit: - [2009/05/07 01:20:08 | 000,063,264 | ---- | M] (O2Micro ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\o2mdx64.sys -- (O2MDRDR)
DRV:64bit: - [2009/04/28 22:21:08 | 000,010,240 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\XAudio64.sys -- (XAudio)
DRV:64bit: - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mcdbus.sys -- (mcdbus)
DRV:64bit: - [2009/02/12 09:24:56 | 001,485,824 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAX_DPV.sys -- (HSF_DPV)
DRV:64bit: - [2009/02/12 09:20:56 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAXHWAZL.sys -- (CAXHWAZL)
DRV:64bit: - [2009/02/12 09:19:34 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CAX_CNXT.sys -- (winachsf)
DRV:64bit: - [2008/03/28 10:25:30 | 000,017,952 | ---- | M] (Acer, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\OEM\factory\int15.sys -- (int15.sys)
DRV:64bit: - [2006/06/17 17:27:24 | 000,017,024 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\mdmxsdk.sys -- (mdmxsdk)
DRV - [2012/07/05 13:53:22 | 000,021,904 | ---- | M] (IObit.com) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys -- (UrlFilter)
DRV - [2012/07/05 13:53:18 | 000,033,224 | ---- | M] (IObit.com) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys -- (RegFilter)
DRV - [2012/01/05 18:07:14 | 000,021,384 | ---- | M] (IObit) [File_System | On_Demand | Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys -- (FileMonitor)
DRV - [2009/07/13 20:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/02/24 18:35:44 | 000,255,552 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\drivers\mcdbus.sys -- (mcdbus)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{420efb88-346f-4cb5-bbb1-cfd5efad5439}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{47DB563C-4C43-48F7-83B3-0AC985A7E6E5}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKCU\..\SearchScopes\{6885CC07-581F-42E4-9288-D824DD0A5679}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{813A9C80-570C-4F23-8282-F94759267674}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{CE050722-BA4A-4DD7-AB46-6863E132E1F3}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{DE884100-3BE3-4D0D-BB91-F95C6F0C702D}: "URL" = http://search.yahoo....19630,0,18,6923
IE - HKCU\..\SearchScopes\{E509268D-967F-4137-8070-015354806DD0}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{EA1E3189-8E84-4F7F-BCF3-5081186D1513}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:18.0.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@meadco.com/neptune plugin,version=2.0.0.29: C:\PROGRA~2\MEADCO~1\npmeadax.dll (MeadCo Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.0.282: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012/08/16 07:59:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\ProgramDataMozilla\Extensions\[email protected]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\ [2013/01/24 17:44:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013/01/25 10:39:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 18.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013/01/24 22:38:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Darlene\AppData\Roaming\Mozilla\Extensions
[2013/01/25 10:39:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/01/16 15:11:06 | 000,262,552 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2013/01/16 15:10:30 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2013/01/16 15:10:30 | 000,002,058 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Norton Safe Search (Enabled)
CHR - default_search_provider: search_url = http://nortonsafe.se..._US&tpr=111
CHR - default_search_provider: suggest_url =
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll
CHR - plugin: A Youtube Downloader Free NPAPI (Enabled) = C:\Users\Darlene\AppData\Local\Google\Chrome\User Data\Default\Extensions\difjeglapnfioclmlgbfkepgjnmhjnnb\3.0.0.0_0\A Youtube Downloader Free-np.dll
CHR - plugin: Norton Identity Safe (Enabled) = C:\Users\Darlene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2013.2.1.33_0\npcoplgn.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll
CHR - plugin: MeadCo's Neptune (Enabled) = C:\PROGRA~2\MEADCO~1\npmeadax.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 6 U37 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: RealPlayer Download Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Java Deployment Toolkit 6.0.370.6 (Enabled) = C:\Windows\SysWOW64\npdeployJava1.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: Norton Identity Protection = C:\Users\Darlene\AppData\Local\Google\Chrome\User Data\Default\Extensions\nppllibpnmahfaklnpggkibhkapjkeob\2013.2.1.33_0\

O1 HOSTS File: ([2013/01/28 10:54:58 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Norton Identity Protection) - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (no name) - AutorunsDisabled - No CLSID value found.
O3 - HKLM\..\Toolbar: (Norton Identity Safe Toolbar) - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Program Files\Gateway\Gateway Power Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [IJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (CANON INC.)
O4 - HKLM..\Run: [IObit Malware Fighter] C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe (IObit)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [Advanced SystemCare 6] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe (IObit)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O16 - DPF: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} http://www.addonchat.com/404.html (Web Browser Applet Control)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB (Reg Error: Value error.)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll (Reg Error: Value error.)
O16 - DPF: {6824D897-F7E1-4E41-B84B-B1D3FA4BF1BD} http://utilities.pcp...opAntiVirus.dll (Reg Error: Value error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {94E5218F-9737-4FC2-8457-567B1FF23DC0} http://utilities.pcp...DiskMD3Ctrl.dll (diskhealth Class)
O16 - DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} http://zone.msn.com/...tz.cab99160.cab (MSN Games – Hearts)
O16 - DPF: {9A57B18E-2F5D-11D5-8997-00104BD12D94} http://support.gatew...rvest/gwCID.CAB (compid Class)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn...k.cab102118.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Value error.)
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcp.../PCPitStop2.cab (Reg Error: Value error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 69.174.176.2 69.174.176.3 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A4B6E206-29AC-483C-9139-F700421DDDAB}: DhcpNameServer = 69.174.176.2 69.174.176.3 8.8.8.8
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\gopher - No CLSID value found
O18 - Protocol\Handler\mhtml - No CLSID value found
O18 - Protocol\Handler\wlmailhtml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/01/30 13:13:14 | 000,000,000 | ---D | C] -- C:\Users\Darlene\FrostWire
[2013/01/30 13:13:10 | 000,000,000 | ---D | C] -- C:\Users\Darlene\.frostwire5
[2013/01/30 13:13:04 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 5
[2013/01/30 13:12:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FrostWire 5
[2013/01/29 21:00:31 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\Apps
[2013/01/28 18:20:24 | 000,000,000 | ---D | C] -- C:\Users\Darlene\Documents\comp.info
[2013/01/28 13:33:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
[2013/01/28 13:33:06 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2013/01/28 13:09:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2013/01/28 11:01:30 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013/01/28 10:55:18 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/01/28 10:22:24 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\Malwarebytes
[2013/01/28 10:22:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/01/28 10:22:05 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/01/28 10:22:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/01/28 10:21:48 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\Programs
[2013/01/26 14:42:17 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\WinISO Computing
[2013/01/26 14:42:17 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\WinISO Computing
[2013/01/26 14:42:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinISO Computing
[2013/01/25 00:07:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64\1402010.016
[2013/01/24 22:38:44 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\Mozilla
[2013/01/24 22:38:44 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\Mozilla
[2013/01/24 22:38:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013/01/24 22:38:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013/01/24 18:58:38 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Swift Sound
[2013/01/24 18:53:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited
[2013/01/24 17:53:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2013/01/24 17:52:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\N360x64
[2013/01/24 17:37:01 | 000,168,096 | R--- | C] (Symantec Corporation) -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\ccSetx64.sys
[2013/01/24 17:34:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSTx64
[2013/01/24 17:34:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021
[2013/01/24 17:33:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Identity Safe
[2013/01/24 17:33:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Identity Safe
[2013/01/24 14:22:45 | 000,000,000 | ---D | C] -- C:\_945401_
[2013/01/24 14:20:43 | 000,000,000 | ---D | C] -- C:\_823657_
[2013/01/24 13:54:21 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\SpeedyPC Software
[2013/01/24 13:53:39 | 000,000,000 | ---D | C] -- C:\ProgramData\SpeedyPC Software
[2013/01/24 13:36:54 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2013/01/24 13:19:00 | 000,000,000 | ---D | C] -- C:\ProgramData\ClickIT
[2013/01/24 13:18:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WebSearch
[2013/01/23 22:32:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Emsisoft Anti-Malware
[2013/01/23 20:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
[2013/01/23 20:03:36 | 000,000,000 | ---D | C] -- C:\Windows\tasks\TaskDisabled
[2013/01/23 19:59:32 | 000,000,000 | ---D | C] -- C:\Users\Darlene\Documents\Visual Studio 2005
[2013/01/23 19:59:31 | 000,000,000 | ---D | C] -- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
[2013/01/23 19:54:45 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJEPPEX2
[2013/01/23 19:54:45 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonEPP
[2013/01/23 19:30:05 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Uninstall Information
[2013/01/23 19:22:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6
[2013/01/23 19:05:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[2013/01/23 15:13:36 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\WiseDrivers
[2013/01/23 15:06:59 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\RegGenie
[2013/01/23 14:00:29 | 000,000,000 | ---D | C] -- C:\CAT-Logs
[2013/01/23 13:32:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton PC Checkup 3.0
[2013/01/23 13:31:15 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\PCCUStubInstaller
[2013/01/21 19:40:55 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\VS Revo Group
[2013/01/17 19:04:27 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\GlarySoft
[2013/01/17 17:23:25 | 000,000,000 | ---D | C] -- C:\ProgramData\RegInOut
[2013/01/14 21:32:30 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Roaming\DriverCure
[2013/01/14 18:31:07 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2013/01/14 18:28:43 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/01/14 18:28:43 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/01/14 18:28:43 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/01/14 18:28:43 | 000,718,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/01/14 18:28:43 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/01/14 18:28:43 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/01/14 18:28:43 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/01/14 18:28:43 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/01/14 18:28:43 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/01/14 18:28:43 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/01/14 18:28:43 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/01/14 18:28:43 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/01/14 18:28:43 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/01/14 18:28:43 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/01/14 18:28:43 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/01/14 18:28:43 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/01/14 18:28:43 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/01/14 18:28:43 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/01/14 18:28:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/01/14 18:28:43 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/01/14 18:28:43 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/01/14 18:28:43 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/01/14 18:28:43 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/01/14 18:28:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/01/14 18:28:43 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/01/14 18:28:43 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/01/14 18:28:43 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/01/14 18:28:43 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/01/14 18:28:43 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/01/14 18:28:43 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/01/14 18:28:43 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/01/14 18:28:42 | 003,966,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/01/14 18:28:42 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/01/14 18:28:42 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/01/14 18:28:42 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/01/14 18:28:42 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/01/14 18:28:42 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/01/14 18:28:42 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/01/14 18:28:42 | 000,593,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/01/14 18:28:42 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/01/14 18:28:42 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/01/14 18:28:42 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/01/14 18:28:42 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/01/14 18:28:42 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/01/14 18:28:42 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/01/14 18:28:42 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/01/14 18:28:42 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/01/14 18:28:42 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/01/14 18:28:42 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/01/14 18:28:42 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/01/14 18:28:42 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/01/14 18:28:42 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/01/14 18:28:42 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/01/14 18:28:42 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/01/14 18:28:42 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/01/14 18:28:42 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/01/14 18:28:42 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/01/14 18:28:42 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/01/14 18:28:42 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/01/14 18:28:42 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/01/14 18:28:42 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/01/14 18:28:42 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/01/14 18:28:42 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/01/14 18:28:42 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/01/14 18:28:42 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/01/14 18:28:42 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/01/14 18:28:42 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/01/14 18:28:42 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/01/14 18:27:28 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/01/14 18:27:28 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/01/14 18:27:28 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/01/14 18:27:28 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/01/14 18:27:27 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/01/14 18:27:27 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/01/14 18:27:27 | 002,434,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/01/14 18:27:27 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/01/14 18:27:27 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/01/14 18:27:27 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/01/14 18:27:27 | 001,643,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/01/14 18:27:27 | 001,504,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/01/14 18:27:27 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/01/14 18:27:27 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/01/14 18:27:27 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/01/14 18:27:27 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/01/14 18:27:27 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/01/14 18:27:27 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/01/14 18:27:27 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/01/14 18:27:27 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/01/14 18:27:27 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/01/14 18:27:27 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/01/14 18:27:27 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/01/14 18:27:27 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/01/14 18:27:27 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/01/14 18:27:27 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/01/14 18:27:27 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/01/12 18:31:04 | 000,000,000 | ---D | C] -- C:\ProgramData\RegAce
[2013/01/12 17:35:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smart Driver Updater
[2013/01/12 17:02:03 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/01/12 17:01:47 | 000,000,000 | ---D | C] -- C:\JRT
[2013/01/12 16:52:39 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013/01/09 22:03:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2013/01/09 16:36:48 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2013/01/09 16:36:48 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2013/01/09 16:36:47 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2013/01/09 16:36:47 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2013/01/09 16:36:47 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2013/01/09 16:36:47 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2013/01/09 16:36:47 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2013/01/09 16:36:47 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2013/01/09 16:36:47 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2013/01/09 16:36:47 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2013/01/09 16:36:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2013/01/09 16:36:47 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2013/01/09 16:36:47 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2013/01/09 16:36:47 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2013/01/09 16:36:47 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2013/01/09 16:36:47 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2013/01/09 16:36:47 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2013/01/09 16:36:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2013/01/09 16:36:47 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2013/01/09 16:36:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2013/01/09 16:36:32 | 000,750,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2013/01/09 16:36:32 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2013/01/09 16:36:10 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2013/01/09 16:36:10 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2013/01/09 16:35:59 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2013/01/09 16:35:59 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2013/01/09 16:35:59 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2013/01/09 16:35:59 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2013/01/09 16:35:59 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2013/01/09 16:35:59 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2013/01/09 16:35:59 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2013/01/09 16:35:59 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2013/01/09 16:35:59 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2013/01/09 16:35:59 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2013/01/09 16:35:59 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2013/01/09 16:35:59 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2013/01/09 16:35:59 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2013/01/09 16:35:59 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2013/01/09 16:35:59 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2013/01/09 16:35:59 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2013/01/09 16:35:59 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2013/01/09 16:35:59 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2013/01/09 16:35:59 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2013/01/09 16:35:59 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2013/01/09 16:35:59 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2013/01/09 16:35:59 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2013/01/09 16:35:59 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2013/01/09 16:35:59 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2013/01/09 16:35:58 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2013/01/09 16:35:58 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2013/01/09 16:35:58 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2013/01/09 16:35:58 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2013/01/09 16:35:58 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2013/01/09 16:35:58 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2013/01/09 16:35:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2013/01/09 16:35:58 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2013/01/09 16:34:33 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2013/01/08 18:24:17 | 015,739,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013/01/05 19:54:43 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\N360_BACKUP
[2013/01/05 08:14:50 | 000,000,000 | ---D | C] -- C:\Users\Darlene\AppData\Local\NPE
[2010/12/03 05:48:23 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\Darlene\AppData\Roaming\pcouffin.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/01/30 15:23:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/01/30 12:11:50 | 000,009,920 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/01/30 12:11:50 | 000,009,920 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/01/30 12:06:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/01/30 12:06:25 | 2309,689,344 | -HS- | M] () -- C:\hiberfil.sys
[2013/01/28 13:10:02 | 000,201,424 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2013/01/28 13:09:22 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2013/01/28 13:09:22 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2013/01/28 10:54:58 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/01/25 21:25:27 | 000,000,706 | ---- | M] () -- C:\Users\Darlene\Desktop\ubuntu-12.04.1-desktop-amd64 - Shortcut.lnk
[2013/01/25 12:17:38 | 000,874,788 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/01/25 12:17:38 | 000,729,538 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/01/25 12:17:38 | 000,145,542 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/01/25 10:18:20 | 001,649,712 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\1402010.016\Cat.DB
[2013/01/25 10:17:48 | 000,014,818 | ---- | M] () -- C:\Windows\SysNative\drivers\N360x64\1402010.016\VT20130115.021
[2013/01/24 17:50:14 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2013/01/24 14:00:12 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\SBRC.dat
[2013/01/24 14:00:12 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\SBFC.dat
[2013/01/23 15:44:45 | 000,429,768 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/23 13:32:10 | 000,017,494 | ---- | M] () -- C:\Users\Darlene\Desktop\602663_10152459602635010_687421705_n.jpg
[2013/01/22 13:52:27 | 000,107,819 | ---- | M] () -- C:\Users\Darlene\Desktop\MARTINOMEN.jpg
[2013/01/15 18:49:06 | 000,026,432 | ---- | M] (IObit) -- C:\Windows\SysNative\RegistryDefragBootTime.exe
[2013/01/14 21:10:44 | 000,000,036 | ---- | M] () -- C:\Users\Darlene\AppData\Roaming\mbam.context.scan
[2013/01/14 18:28:43 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2013/01/14 18:28:43 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2013/01/14 18:28:43 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2013/01/14 18:28:43 | 000,718,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2013/01/14 18:28:43 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2013/01/14 18:28:43 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2013/01/14 18:28:43 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2013/01/14 18:28:43 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2013/01/14 18:28:43 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2013/01/14 18:28:43 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2013/01/14 18:28:43 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2013/01/14 18:28:43 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2013/01/14 18:28:43 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2013/01/14 18:28:43 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2013/01/14 18:28:43 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2013/01/14 18:28:43 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2013/01/14 18:28:43 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2013/01/14 18:28:43 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2013/01/14 18:28:43 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2013/01/14 18:28:43 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2013/01/14 18:28:43 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2013/01/14 18:28:43 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2013/01/14 18:28:43 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2013/01/14 18:28:43 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2013/01/14 18:28:43 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2013/01/14 18:28:43 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2013/01/14 18:28:43 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2013/01/14 18:28:43 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2013/01/14 18:28:43 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2013/01/14 18:28:43 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/01/14 18:28:43 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2013/01/14 18:28:43 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2013/01/14 18:28:42 | 003,966,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2013/01/14 18:28:42 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2013/01/14 18:28:42 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2013/01/14 18:28:42 | 000,905,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2013/01/14 18:28:42 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2013/01/14 18:28:42 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2013/01/14 18:28:42 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2013/01/14 18:28:42 | 000,593,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2013/01/14 18:28:42 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2013/01/14 18:28:42 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2013/01/14 18:28:42 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2013/01/14 18:28:42 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2013/01/14 18:28:42 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2013/01/14 18:28:42 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2013/01/14 18:28:42 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2013/01/14 18:28:42 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2013/01/14 18:28:42 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2013/01/14 18:28:42 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2013/01/14 18:28:42 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2013/01/14 18:28:42 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2013/01/14 18:28:42 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2013/01/14 18:28:42 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2013/01/14 18:28:42 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2013/01/14 18:28:42 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2013/01/14 18:28:42 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2013/01/14 18:28:42 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2013/01/14 18:28:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2013/01/14 18:28:42 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2013/01/14 18:28:42 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2013/01/14 18:28:42 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2013/01/14 18:28:42 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2013/01/14 18:28:42 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2013/01/14 18:28:42 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2013/01/14 18:28:42 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2013/01/14 18:28:42 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2013/01/14 18:28:42 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013/01/14 18:28:42 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2013/01/14 18:28:42 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2013/01/14 18:27:28 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2013/01/14 18:27:28 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/01/14 18:27:28 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/01/14 18:27:28 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013/01/14 18:27:28 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/01/14 18:27:28 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013/01/14 18:27:27 | 003,928,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2013/01/14 18:27:27 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2013/01/14 18:27:27 | 002,434,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2013/01/14 18:27:27 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2013/01/14 18:27:27 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2013/01/14 18:27:27 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2013/01/14 18:27:27 | 001,643,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013/01/14 18:27:27 | 001,504,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2013/01/14 18:27:27 | 001,424,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013/01/14 18:27:27 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2013/01/14 18:27:27 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2013/01/14 18:27:27 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2013/01/14 18:27:27 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2013/01/14 18:27:27 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2013/01/14 18:27:27 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2013/01/14 18:27:27 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2013/01/14 18:27:27 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2013/01/14 18:27:27 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2013/01/14 18:27:27 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2013/01/14 18:27:27 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2013/01/14 18:27:27 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2013/01/14 18:27:27 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2013/01/08 18:24:35 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/01/08 18:24:35 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/01/08 18:24:17 | 015,739,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerInstaller.exe
[2013/01/04 12:16:16 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\isolate.ini
[2013/01/01 21:25:38 | 000,152,461 | ---- | M] () -- C:\Windows\wininit.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/01/25 21:25:27 | 000,000,706 | ---- | C] () -- C:\Users\Darlene\Desktop\ubuntu-12.04.1-desktop-amd64 - Shortcut.lnk
[2013/01/25 10:17:48 | 001,649,712 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\1402010.016\Cat.DB
[2013/01/25 10:17:48 | 000,014,818 | ---- | C] () -- C:\Windows\SysNative\drivers\N360x64\1402010.016\VT20130115.021
[2013/01/24 17:34:06 | 000,000,853 | R--- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\ccSetx64.inf
[2013/01/24 17:34:01 | 000,007,611 | R--- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\ccsetx64.cat
[2013/01/24 17:34:01 | 000,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NSTx64\7DD02010.021\isolate.ini
[2013/01/24 14:00:00 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\SBRC.dat
[2013/01/24 14:00:00 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\SBFC.dat
[2013/01/23 22:46:00 | 015,937,536 | ---- | C] () -- C:\Users\Darlene\SYSTEM
[2013/01/23 22:45:18 | 070,270,976 | ---- | C] () -- C:\Users\Darlene\SOFTWARE
[2013/01/23 14:46:25 | 000,299,544 | ---- | C] () -- C:\Windows\RegGenieOnUninstall.exe
[2013/01/23 13:32:28 | 000,017,494 | ---- | C] () -- C:\Users\Darlene\Desktop\602663_10152459602635010_687421705_n.jpg
[2013/01/23 12:17:56 | 000,429,768 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/01/22 13:52:49 | 000,107,819 | ---- | C] () -- C:\Users\Darlene\Desktop\MARTINOMEN.jpg
[2013/01/14 21:10:44 | 000,000,036 | ---- | C] () -- C:\Users\Darlene\AppData\Roaming\mbam.context.scan
[2013/01/14 21:07:47 | 000,001,424 | ---- | C] () -- C:\Users\Darlene\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013/01/14 18:28:43 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013/01/14 18:28:42 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2012/11/07 19:30:39 | 000,000,125 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
[2012/10/17 09:29:17 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-DARLENE-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2012/10/15 16:40:46 | 000,000,218 | ---- | C] () -- C:\Windows\iepreview.ini
[2012/10/08 17:43:34 | 000,000,000 | ---- | C] () -- C:\Users\Darlene\AppData\Local\Preferences
[2012/02/23 12:32:34 | 000,000,024 | ---- | C] () -- C:\Windows\cdplayer.ini
[2011/05/12 14:23:51 | 000,001,940 | ---- | C] () -- C:\Users\Darlene\AppData\Local\{96C87F53-AC72-4604-A9CC-186A49F17F3C}.ini
[2011/04/27 17:53:01 | 000,000,085 | -HS- | C] () -- C:\ProgramData\.zreglib
[2011/03/10 13:38:13 | 000,000,880 | ---- | C] () -- C:\Users\Darlene\.recently-used.xbel
[2010/12/03 05:48:23 | 000,007,859 | ---- | C] () -- C:\Users\Darlene\AppData\Roaming\pcouffin.cat
[2010/12/03 05:48:23 | 000,001,167 | ---- | C] () -- C:\Users\Darlene\AppData\Roaming\pcouffin.inf
[2010/07/07 15:33:26 | 000,009,728 | ---- | C] () -- C:\Users\Darlene\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/04 17:33:28 | 000,002,464 | ---- | C] () -- C:\Users\Darlene\AppData\Roaming\wklnhst.dat

========== ZeroAccess Check ==========

[2009/07/13 23:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/09 00:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 23:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 20:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\SysWow64\wbem\fastprox.dll -- [2010/11/20 07:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 20:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

#24
darlinbassmaster

Posted 30 January 2013 - 03:10 PM

Member

Topic Starter
Member
39 posts

OTL Extras logfile created on: 1/30/2013 3:42:31 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Darlene\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16438)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.87 Gb Total Physical Memory | 1.87 Gb Available Physical Memory | 65.28% Memory free
5.73 Gb Paging File | 4.45 Gb Available in Paging File | 77.55% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 220.79 Gb Total Space | 175.35 Gb Free Space | 79.42% Space Free | Partition Type: NTFS

Computer Name: DARLENE-PC | User Name: Darlene | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
.txt [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
"DoNotAllowExceptions" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0AE65303-5D69-49CB-ACE3-E2512F4018F8}" = lport=51384 | protocol=6 | dir=in | name=akamai netsession interface |
"{0B0ADB61-8F1B-4927-885B-811760AF5F39}" = lport=10243 | protocol=6 | dir=in | app=system |
"{0CD36858-57A3-41B5-8BEC-2F36FA109926}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe |
"{0D24C2C4-49C1-4F10-94A6-65D80A5F42DE}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{123517B4-F706-46EB-957E-575E1E905679}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{28AFA1C2-9591-4481-B8B5-F3784B3029DF}" = rport=137 | protocol=17 | dir=out | app=system |
"{2AF5CD49-C142-41EE-9B68-B08B8A925F6E}" = lport=138 | protocol=17 | dir=in | app=system |
"{2BC981DB-87AB-418C-B825-926A668D8767}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3D5397E0-F58E-4D5A-9557-F463EEF81E57}" = lport=2869 | protocol=6 | dir=in | app=system |
"{4B17421B-A0E6-472E-A4E1-87898DCF1038}" = rport=139 | protocol=6 | dir=out | app=system |
"{5F7FC444-BE2E-4D4A-A902-62702A1E1E1B}" = lport=137 | protocol=17 | dir=in | app=system |
"{6616701C-AB3F-45CB-975D-313E1FB8D0EC}" = lport=139 | protocol=6 | dir=in | app=system |
"{68DE2889-DA7A-4049-9814-4D553753AD64}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{69707F0F-9899-44A3-B27C-CC675BC8C58D}" = rport=445 | protocol=6 | dir=out | app=system |
"{74552714-7D4A-4DD0-A2D7-A7B384223D08}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{74925266-F6BC-46F4-9A15-5D016BB72FCA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{774B5CCA-558C-4926-9A28-2BEDCD9BAAF9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7A6DDDCB-522D-4BA5-ABCA-DBDE5F9BB6DF}" = lport=5000 | protocol=17 | dir=in | name=akamai netsession interface |
"{7CD29916-08C7-477E-95E5-D8DA7FA8E360}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{866AB0D0-BA03-4448-AD8F-B785CCA2ECD4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{90B1295F-4AD4-4086-8BCE-4886F1E1D472}" = rport=138 | protocol=17 | dir=out | app=system |
"{9D1726C5-83FD-4DB4-8176-F2CD881258ED}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{BA8BA568-CC11-4050-9B4B-3A81C3D6736F}" = lport=5353 | protocol=6 | dir=in | name=adobe csi cs4 |
"{D1A51F4F-AA65-49CC-BE78-A789BCC9A2C3}" = rport=10243 | protocol=6 | dir=out | app=system |
"{D90C6B54-70C1-4842-8EA7-6F3F120E0679}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E30211C0-FF11-422E-AFCE-24A9174E3B6A}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E515B5DD-52CB-41A6-9F42-8763CFE7859D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EFBB3AD8-60AC-47B8-91E0-4E1FDB59304F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F375AAC3-5463-4418-9AE4-E085CEFF51CA}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{F7C6F5AF-8D3A-4AC3-8603-710EBB6630ED}" = lport=445 | protocol=6 | dir=in | app=system |
"{FC09C9B5-97C6-4495-9C1C-3A7B46CF789F}" = lport=2869 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{12FE02B8-18B6-4920-B1A9-871C8B95A3BF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1551A0BF-C30A-460D-A52F-56E69EEECDBF}" = protocol=6 | dir=out | app=system |
"{1940E09B-40F4-4E4A-A606-2B3A169CCDE5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{19F774BD-2C7F-4FB1-B0E6-8CE1C39D023D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{33276615-7581-486F-86C1-6AB2E1AE6C10}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3E4C0E83-4A76-4667-9327-73ABB2F1B866}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{41397B79-2606-4A64-8069-A9F0ED905F53}" = protocol=58 | dir=out | [email protected],-28546 |
"{45DA9460-A522-4963-99DA-B22B75BC9C5E}" = protocol=1 | dir=out | [email protected],-28544 |
"{48057974-5ED4-4245-9578-995CA35BA48B}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4CD25856-F3E3-42E1-8465-4FB38A8A5486}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd8\powerdvd8.exe |
"{5372E0A3-A653-4E06-B230-ACC0FC5FD635}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{67BFDAF5-F650-4ABF-96D3-978ACAE2ED32}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7A37FCF3-869E-429C-AFB1-0D0A7AE73A98}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7D6BFF80-96F9-44CE-AE1D-31F70C0A53A9}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |
"{853F9EC4-4C24-47F4-8FCD-307EF4689F49}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{9406AEF4-791C-4888-B37C-AA82E7C1122F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9DF81A09-0A27-4A6D-8476-C856072EE7AD}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{9E629E6B-421A-4D07-A4DA-7491C7283EA1}" = protocol=58 | dir=in | [email protected],-28545 |
"{A49A7294-4E33-45FE-8C53-06375A1686CD}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{B212B988-40E4-4A7C-B322-C5243A06A4F3}" = protocol=17 | dir=in | app=c:\users\darlene\appdata\local\temp\7zs2e1d.tmp\symnrt.exe |
"{B77C2A25-494E-4A7C-AA75-ABCC58B351BE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C1449B8C-CC63-454E-88E2-6038796644D8}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{C4B3BAF2-52F5-4E60-9082-C35CBF2B716B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CA9D6F84-631D-401B-9EA0-85359122B42A}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire 5\frostwire.exe |
"{CEA4B18F-4186-4AD8-9D95-3F6CF479145A}" = protocol=1 | dir=in | [email protected],-28543 |
"{DEF695DC-D8F1-46B4-97DE-31AB83C14D5A}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe |
"{DF1F0EB3-F6D8-4FD0-A3A9-C3AD6AA58650}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{EA4539FD-B30D-4CC1-B76F-4CD607B457B6}" = protocol=6 | dir=in | app=c:\users\darlene\appdata\local\temp\7zs2e1d.tmp\symnrt.exe |
"{F13BFA8C-005C-4D7C-94DB-DC4F0EF1687E}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F5A7F9D8-2C61-4A53-BE61-85CBCF022DF9}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{FF38297C-FC3C-4C69-8ED3-4A897415F195}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{027E5FAB-1476-4C59-AAB4-32EF28520399}" = Windows Live Language Selector
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6100_series" = Canon MG6100 series MP Drivers
"{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
"{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{7C552757-172E-4C18-AA3E-3DFAC5A15DAA}" = O2Micro Flash Memory Card Reader Driver
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{D5D8CB90-785A-458E-A5D1-3D084A1B4EE9}" = Microsoft Camera Codec Pack
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"63AD5694BB6DAB8863713F85AE50BA9F539D7A3E" = Windows Driver Package - Hewlett - Packard (HidUsb) HIDClass (01/26/2010 1.12.7600.16385)
"90B012BF3F529E820A22374831C4C7D340A4CD3D" = Windows Driver Package - Hewlett-Packard (HidUsb) HIDClass (01/26/2010 1.12.7600.16385)
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CNXT_MODEM_HDA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
"HDMI" = Intel® Graphics Media Accelerator Driver
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Speccy" = Speccy
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{12A1B519-5934-4508-ADBD-335347B0DC87}" = Video Web Camera
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{213FF60A-9899-4145-8428-D144778BE117}" = HP Mouse Suite
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 37
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros WiFi Driver Installation
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"{2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Gateway Power Management
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{67E03279-F703-408F-B4BF-46B5FC8D70CD}" = Microsoft Works
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Gateway Recovery Management
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{A1BF9950-8CDB-468E-83FA-EACFB00EA7D5}" = Windows Live Sync
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-1033-F400-7760-000000000005}" = Adobe Acrobat X Pro - English, Français, Deutsch
"{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.5.2 MUI
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CB6075D9-F912-40AE-BEA6-E590DA24F16B}" = Adobe Photoshop Elements 7.0
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Gateway Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop Elements 7" = Adobe Photoshop Elements 7.0
"Advanced SystemCare 6_is1" = Advanced SystemCare 6
"Bible360" = Bible360 [en-us]
"Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data" = Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data
"Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data" = Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data
"Canon MG6100 series User Registration" = Canon MG6100 series User Registration
"Canon_IJ_Network_Scan_UTILITY" = Canon IJ Network Scan Utility
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"Cisco Connect" = Cisco Connect
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"Easy-PhotoPrint Pro" = Canon Easy-PhotoPrint Pro
"Easy-WebPrint EX" = Canon Easy-WebPrint EX
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FrostWire 5" = FrostWire 5.5.2
"Gateway InfoCentre" = Gateway InfoCentre
"Gateway Registration" = Gateway Registration
"Gateway Welcome Center" = Welcome Center
"Google Chrome" = Google Chrome
"Identity Card" = Identity Card
"InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = CyberLink PowerDVD 8
"IObit Malware Fighter_is1" = IObit Malware Fighter
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Marvell Miniport Driver" = Marvell Miniport Driver
"Monopoly by Parker Brothers" = Monopoly by Parker Brothers
"Monopoly Here & Now Edition" = Monopoly Here & Now Edition
"Mozilla Firefox 18.0.1 (x86 en-US)" = Mozilla Firefox 18.0.1 (x86 en-US)
"MP Navigator EX 4.0" = Canon MP Navigator EX 4.0
"Norton PC Checkup_is1" = Norton PC Checkup
"NST" = Norton Identity Safe
"RealPlayer 12.0" = RealPlayer
"RealPlayer 16.0" = RealPlayer
"RSKDL" = Risk (remove only)
"SCRABBLE" = SCRABBLE
"Switch" = Switch Sound File Converter
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.0.0
"WildTangent gateway Master Uninstall" = Gateway Games
"WinLiveSuite" = Windows Live Essentials

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/29/2013 10:17:43 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 11719
Description = Product: Compatibility Pack for the 2007 Office system -- Error 1719.
The Windows Installer Service could not be accessed. This can occur if the Windows
Installer is not correctly installed. Contact your support personnel for assistance.

Error - 1/29/2013 10:17:43 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 1024
Description = Product: Compatibility Pack for the 2007 Office system - Update 'Security
Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition ' could not
be installed. Error code 1603. Windows Installer can create logs to help troubleshoot
issues with installing software packages. Use the following link for instructions
on turning on logging support: http://go.microsoft....k/?LinkId=23127

Error - 1/29/2013 10:18:00 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 11719
Description = Product: Compatibility Pack for the 2007 Office system -- Error 1719.
The Windows Installer Service could not be accessed. This can occur if the Windows
Installer is not correctly installed. Contact your support personnel for assistance.

Error - 1/29/2013 10:18:00 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 1024
Description = Product: Compatibility Pack for the 2007 Office system - Update 'Security
Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition ' could not
be installed. Error code 1603. Windows Installer can create logs to help troubleshoot
issues with installing software packages. Use the following link for instructions
on turning on logging support: http://go.microsoft....k/?LinkId=23127

Error - 1/29/2013 10:18:16 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 11719
Description = Product: Microsoft Office Enterprise 2007 -- Error 1719.The Windows
Installer Service could not be accessed. This can occur if the Windows Installer
is not correctly installed. Contact your support personnel for assistance.

Error - 1/29/2013 10:18:16 PM | Computer Name = Darlene-PC | Source = MsiInstaller | ID = 1024
Description = Product: Microsoft Office Enterprise 2007 - Update 'Update for Microsoft
Office Outlook 2007 Junk Email Filter (KB2760586) 32-Bit Edition' could not be
installed. Error code 1603. Windows Installer can create logs to help troubleshoot
issues with installing software packages. Use the following link for instructions
on turning on logging support: http://go.microsoft....k/?LinkId=23127

Error - 1/30/2013 1:27:40 PM | Computer Name = Darlene-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksCal.exe".
Dependent
Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 1/30/2013 1:27:40 PM | Computer Name = Darlene-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksdb.exe".
Dependent
Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 1/30/2013 1:27:40 PM | Computer Name = Darlene-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "C:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\wksss.exe".
Dependent
Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 1/30/2013 1:27:40 PM | Computer Name = Darlene-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\Windows\Installer\{67E03279-F703-408F-B4BF-46B5FC8D70CD}\WksWP.exe".
Dependent
Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

[ System Events ]
Error - 1/30/2013 12:07:03 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7003
Description = The Net.Msmq Listener Adapter service depends the following service:
msmq. This service might not be installed.

Error - 1/30/2013 12:07:15 PM | Computer Name = Darlene-PC | Source = SNMP | ID = 16713180
Description = The SNMP Service encountered an error while accessing the registry
key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error - 1/30/2013 12:07:19 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7023
Description = The Yahoo! Updater service terminated with the following error: %%-2147221163

Error - 1/30/2013 12:07:31 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
AVGIDSHA SASDIFSV SASKUTIL SMR311

Error - 1/30/2013 12:22:02 PM | Computer Name = Darlene-PC | Source = DCOM | ID = 10010
Description =

Error - 1/30/2013 1:06:40 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7003
Description = The Net.Msmq Listener Adapter service depends the following service:
msmq. This service might not be installed.

Error - 1/30/2013 1:06:46 PM | Computer Name = Darlene-PC | Source = SNMP | ID = 16713180
Description = The SNMP Service encountered an error while accessing the registry
key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.

Error - 1/30/2013 1:06:50 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7023
Description = The Yahoo! Updater service terminated with the following error: %%-2147221163

Error - 1/30/2013 1:07:01 PM | Computer Name = Darlene-PC | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL SMR311

Error - 1/30/2013 1:21:40 PM | Computer Name = Darlene-PC | Source = DCOM | ID = 10010
Description =

< End of report >

#25
emeraldnzl

Posted 30 January 2013 - 07:26 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello darlinbassmaster,

Consider uninstalling:

SpeedyPC Software

Link http://answers.micro...18-e2a5a876daa1

Do you use these ones?

Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll

See link http://www.mydigital...printer-plugin/

and

MeadCo's Neptune (Enabled) = C:\PROGRA~2\MEADCO~1\npmeadax.dll

Some people have found it to cause problems see link http://www.meadco.com/index.asp for an explanation of what it does.

I have included them below for removal. If you do want to keep them then just remove and do not include in the OTL fix.

Now

Please run OTL.exe

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL
IE - HKCU\..\SearchScopes\{420efb88-346f-4cb5-bbb1-cfd5efad5439}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{47DB563C-4C43-48F7-83B3-0AC985A7E6E5}: "URL" = http://www.mysearchr...q={searchTerms}
IE - HKCU\..\SearchScopes\{6885CC07-581F-42E4-9288-D824DD0A5679}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{813A9C80-570C-4F23-8282-F94759267674}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{CE050722-BA4A-4DD7-AB46-6863E132E1F3}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{DE884100-3BE3-4D0D-BB91-F95C6F0C702D}: "URL" = http://search.yahoo....19630,0,18,6923
IE - HKCU\..\SearchScopes\{E509268D-967F-4137-8070-015354806DD0}: "URL" = http://apype.com/res...q={searchTerms}
IE - HKCU\..\SearchScopes\{EA1E3189-8E84-4F7F-BCF3-5081186D1513}: "URL" = http://apype.com/res...q={searchTerms}
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\ [2013/01/24 17:44:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D}: C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\ [2013/01/24 17:44:30 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@meadco.com/neptune plugin,version=2.0.0.29: C:\PROGRA~2\MEADCO~1\npmeadax.dll (MeadCo Corp.)
CHR - default_search_provider: search_url = http://nortonsafe.se...=US&ver=20&locale=en_U
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll
CHR - plugin: MeadCo's Neptune (Enabled) = C:\PROGRA~2\MEADCO~1\npmeadax.dll
O2 - BHO: (Norton Identity Protection) - {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} - C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Norton Identity Safe Toolbar) - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll (Symantec Corporation)
[2013/01/24 17:33:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Identity Safe
[2013/01/24 13:18:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WebSearch
[2013/01/23 19:05:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

:Files
ipconfig /flushdns /c

:Commands
[resethosts]
[emptytemp]

Then click the Run Fix button at the top
Let the program run unhindered, reboot when it is done
It will produce a log for you on reboot, please post that log in your next reply.The log is saved in the same location as OTL.

#26
darlinbassmaster

Posted 30 January 2013 - 08:22 PM

Member

Topic Starter
Member
39 posts

All processes killed
========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{420efb88-346f-4cb5-bbb1-cfd5efad5439}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{420efb88-346f-4cb5-bbb1-cfd5efad5439}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{47DB563C-4C43-48F7-83B3-0AC985A7E6E5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{47DB563C-4C43-48F7-83B3-0AC985A7E6E5}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6885CC07-581F-42E4-9288-D824DD0A5679}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6885CC07-581F-42E4-9288-D824DD0A5679}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{813A9C80-570C-4F23-8282-F94759267674}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{813A9C80-570C-4F23-8282-F94759267674}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CE050722-BA4A-4DD7-AB46-6863E132E1F3}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CE050722-BA4A-4DD7-AB46-6863E132E1F3}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DE884100-3BE3-4D0D-BB91-F95C6F0C702D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DE884100-3BE3-4D0D-BB91-F95C6F0C702D}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E509268D-967F-4137-8070-015354806DD0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E509268D-967F-4137-8070-015354806DD0}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EA1E3189-8E84-4F7F-BCF3-5081186D1513}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA1E3189-8E84-4F7F-BCF3-5081186D1513}\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F04D2D30-776C-4d02-8627-8E4385ECA58D}\ not found.
C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\content folder moved successfully.
C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\components folder moved successfully.
C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\chrome\skin folder moved successfully.
C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\chrome folder moved successfully.
C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F04D2D30-776C-4d02-8627-8E4385ECA58D} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F04D2D30-776C-4d02-8627-8E4385ECA58D}\ not found.
File C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2013.2.1.33\coFFPlgn\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@meadco.com/neptune plugin,version=2.0.0.29\ deleted successfully.
C:\PROGRA~2\MEADCO~1\npmeadax.dll moved successfully.
Use Chrome's Settings page to remove the default_search_provider items.
C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll moved successfully.
File C:\PROGRA~2\MEADCO~1\npmeadax.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AB4C7833-A6EC-433f-B9FE-6B14B1A2F836}\ deleted successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{A13C2648-91D4-4bf3-BC6D-0079707C4389} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A13C2648-91D4-4bf3-BC6D-0079707C4389}\ deleted successfully.
File C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CoIEPlg.dll not found.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\IMAGES folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1F\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1F folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1D\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1D folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1B\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\1B folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\19\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\19 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\18\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\18 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\16\02 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\16\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\16 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\15\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\15 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\14\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\14 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\13\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\13 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\12\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\12 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\11\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\11 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\10\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\10 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0E\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0E folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0D\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0D folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0C\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0C folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0B\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0B folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0A\03 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\0A folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\09\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\09 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\08\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\08 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\07\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\07 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\06\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\06 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\05\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\05 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\04\02 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\04\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\04 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\01\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI\2013.2.1.33 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\MUI folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine64\2013.2.1.33 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine64 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\SPManifests folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\Jobs folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\IMAGES\misc folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\IMAGES folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\Exts folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CmnClnt\ccSubSDK folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\CmnClnt folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGLog folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGEvt\Global folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33\ccGEvt folder moved successfully.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine scheduled to be moved on reboot.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1F\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1F folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1D\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1D folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1B\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\1B folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\19\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\19 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\18\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\18 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\16\02 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\16\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\16 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\15\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\15 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\14\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\14 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\13\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\13 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\12\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\12 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\11\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\11 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\10\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\10 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0E\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0E folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0D\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0D folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0C\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0C folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0B\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0B folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0A\03 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\0A folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\09\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\09 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\08\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\08 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\07\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\07 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\06\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\06 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\05\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\05 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\04\02 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\04\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\04 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\01\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33\01 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding\2013.2.1.33 folder moved successfully.
C:\Program Files (x86)\Norton Identity Safe\Branding folder moved successfully.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe scheduled to be moved on reboot.
C:\Program Files (x86)\WebSearch folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\Images folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1f\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1f folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1d\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1d folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1b\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\1b folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\19\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\19 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\18\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\18 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\16\02 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\16\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\16 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\15\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\15 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\14\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\14 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\13\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\13 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\12\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\12 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\11\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\11 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\10\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\10 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0e\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0e folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0d\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0d folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0c\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0c folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0b\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0b folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0a\03 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\0a folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\09\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\09 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\08\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\08 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\07\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\07 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\06\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\06 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\05\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\05 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\04\02 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\04\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\04 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\01\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33\01 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType\2013.2.1.33 folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST\LicenseType folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST folder moved successfully.
C:\Program Files (x86)\NortonInstaller\{92622AAD-05E8-4459-B256-765CE1E929FB} folder moved successfully.
C:\Program Files (x86)\NortonInstaller folder moved successfully.
C:\Windows\msdownld.tmp\AS08A054.tmp folder deleted successfully.
C:\Windows\msdownld.tmp\AS043AAE.tmp folder deleted successfully.
C:\Windows\msdownld.tmp\AS042A69.tmp folder deleted successfully.
C:\Windows\msdownld.tmp folder deleted successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Darlene\Downloads\cmd.bat deleted successfully.
C:\Users\Darlene\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Darlene
->Temp folder emptied: 28988059 bytes
->Temporary Internet Files folder emptied: 53080 bytes
->Java cache emptied: 560961 bytes
->FireFox cache emptied: 4765459 bytes
->Google Chrome cache emptied: 470103494 bytes
->Flash cache emptied: 506 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1447944 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50199 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 483.00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 01302013_211641

Files\Folders moved on Reboot...
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine\2013.2.1.33 scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe\Engine scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Norton Identity Safe scheduled to be moved on reboot.
C:\Users\Darlene\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Darlene\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

#27
emeraldnzl

Posted 30 January 2013 - 08:28 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello darlinbassmaster,

Before we move on tell me how your machine is now?

#28
darlinbassmaster

Posted 31 January 2013 - 11:53 AM

Member

Topic Starter
Member
39 posts

It seems to be alright the only problem I am having is windows installer. I tried to do some updates I needed to do and it was not able to there is an issue with it . Not uncommon I read with windows 7. I am very appreciate of your help. I am going to try to reinstall my Norton 360 and uninstall the other virus programs. As it should work now with all the work we have done. I Cannot tell you how much I appreciate you advice! and you guidance through this! :thumbsup:

THANK YOU. Is there anything else I need to do other then clean ups and defrags ect..

#29
emeraldnzl

Posted 31 January 2013 - 12:16 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Yes there is more to do.

I just wanted to check where we were before we went on.

Knowing what you have told me I would like you to try something. I think it might help with your machine.

Don't reinstall Norton for now, do this instead:

Uninstall IOBit and install Microsoft Security Essentials. It is free for personal use and it is designed by Microsoft to work with Win 7.

Go to Microsoft Security Essentials to download and install.

After you have installed it run a full scan with it and come back and tell me how you got on.

After that we will address any issues left with your computer and finally we will clear away the tools we have been using.

#30
darlinbassmaster

Posted 31 January 2013 - 07:12 PM

Member

Topic Starter
Member
39 posts

I do not see a report it also did not report anything back to me, So I am assuming it is clean. When I took the iobit out I had to download a tool to remove it because my uninstall programs in my computer did not want to remove it. I am hoping it is all out now. I looked for a tool specially to remove it, but did not find one.